SIP User's Manual 356 Document #: LTRT-65415
MediaPack Series
10.4 Security Parameters
This subsection describes the device's security parameters.
10.4.1 General Parameters
The general security parameters are described in the table below.
Table 10-18: General Security Parameters
Parameter Description
Web: Voice Menu
Password
[VoiceMenuPassword]
The password for accessing the device's voice menu for configuration and
status. To activate the menu, connect a POTS telephone and dial ***
(three stars) followed by the password.
The default value is 12345.
For detailed information on the voice menu, refer to the Installation
Manual.
Note: This parameter is applicable only to FXS interfaces.
[EnableSecureStartup]
Enables the Secure Startup mode. In this mode, downloading the ini file
to the device is restricted to a URL provided in initial configuration (see
the parameter IniFileURL) or using DHCP.
[0] Disable (default).
[1] Enable = disables TFTP and allows secure protocols such as
HTTPS to fetch the device configuration.
For a detailed explanation on Secure Startup, refer to the Product
Reference Manual.
Note: For this parameter to take effect, a device reset is required.
Web: Internal Firewall Parameters
EMS: Firewall Settings
[AccessList]
This ini file table parameter configures the device's access list (firewall),
which defines network traffic filtering rules. For each packet received on
the network interface, the table is scanned from the top down until a
matching rule is found. This rule can either deny (block) or permit (allow)
the packet. Once a rule in the table is located, subsequent rules further
down the table are ignored. If the end of the table is reached without a
match, the packet is accepted.
The format of this parameter is as follows:
[AccessList]
FORMAT AccessList_Index = AccessList_Source_IP,
AccessList_PrefixLen, AccessList_Start_Port, AccessList_End_Port,
AccessList_Protocol, AccessList_Use_Specific_Interface,
AccessList_Interface_ID, AccessList_Packet_Size,
AccessList_Byte_Rate, AccessList_Byte_Burst, AccessList_Allow_Type;
[\AccessList]
For example:
AccessList 10 = mgmt.customer.com, 32, 0, 80, tcp, 1, OAMP, 0, 0, 0,
allow;
AccessList 22 = 10.4.0.0, 16, 4000, 9000, any, 0, , 0, 0, 0, block;
In the example above, Rule #10 allows traffic from the host
‘mgmt.customer.com’ destined to TCP ports 0 to 80 on interface OAMP
(OAMP). Rule #22 blocks traffic from the subnet 10.4.xxx.yyy destined to
ports 4000 to 9000.
To Next Page
Loading...
Need help?
General
