EasyManua.ls Logo

Avocent Cyclades ACS 5000 - Security Certificates; Packet Filtering; Snmp

Avocent Cyclades ACS 5000
136 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Chapter 1: Introduction 5
Security Certificates
The console server generates its own self-signed SSL certificate for HTTPS using OpenSSL.
NOTE: It is highly recommended that you use the OpenSSL tool to replace the automatically generated
certificate. See the Cyclades ACS 5000 Command Reference Guide for procedures to obtain a Signed Digital
Certificate, configure a self-signed digital certificate and implement authentication of SSH sessions through
exchange of X.509 certificates.
Certificate for HTTP security
A certificate for HTTP security is
created by a Certificate Authority. Certificates are most
commonly obtained through generating public and private keys using a public key algorithm like
RSA or X.509. The keys can be generated by using a key generator software.
User configured digital certificate
You can generate a self-signed digital certificate.
X.509 certificate on ssh
The OpenSSH software included with the console server has
support for X.509 certificates. The
administrator must activate and configure SSH to use X.509.
Packet Filtering
An administrator can configure the device to filter packets like a firewall. Packet filtering is
controlled by chains. A chain is a named profile that must be configured with one or more rules that
define both a set of characteristics to look for in a packet and what to do with any packet that has
the defined characteristics.
The console server filter table contains a number of built-in chains that cannot be deleted; all input
and output packets and packets to be forwarded are accepted. The policy for how to handle built-in
chains can be modified.
To configure packet filtering, an administrator can do the following:
Add a new chain and specify rules for that chain
Add new rules to existing chains
Edit a built-in chain or delete the built-in chain rules
SNMP
An administrator can enable and configure the Simple Network Management Protocol (SNMP)
agent so that the SNMP agent sends notifications about significant events or traps to an SNMP
management application. The SNMP agent supports SNMP v1/v2 and v3. See Services on page 3
and Expert - Network - SNMP on page 50 for more information.

Table of Contents

Other manuals for Avocent Cyclades ACS 5000

Preview: Command Reference Guide
Command Reference Guide152 pages

Related product manuals