Glossary
GL-19
Cisco ASA 5500 Series Configuration Guide using ASDM
OL-20339-01
SNMP
Simple Network Management Protocol. A standard method for managing network devices using data
structures called Management Information Bases.
split tunneling
Allows a remote VPN client simultaneous encrypted access to a private network and clear unencrypted
access to the Internet. If you do not enable split tunneling, all traffic between the VPN client and the
adaptive security appliance is sent through an IPsec tunnel. All traffic originating from the VPN client
is sent to the outside interface through a tunnel, and client access to the Internet from its remote site
is denied.
spoofing
A type of attack designed to foil network security mechanisms such as filters and access lists. A
spoofing attack sends a packet that claims to be from an address from which it was not actually sent.
SQL*Net
Structured Query Language Protocol. An Oracle protocol used to communicate between client and
server processes.
SSC
Security Services Card for the ASA 5505. For example, the AIP SSC.
SSH
Secure Shell. An application running on top of a reliable transport layer, such as TCP/IP, that provides
strong authentication and encryption capabilities.
SSL
Secure Sockets Layer. A protocol that resides between the application layer and TCP/IP to provide
transparent encryption of data traffic.
SSM
Security Services Module. For example, the AIP SSM or CSC SSM.
standby unit
See secondary unit.
stateful inspection
Network protocols maintain certain data, called state information, at each end of a network connection
between two hosts. State information is necessary to implement the features of a protocol, such as
guaranteed packet delivery, data sequencing, flow control, and transaction or session IDs. Some of the
protocol state information is sent in each packet while each protocol is being used. For example, a
browser connected to a web server uses HTTP and supporting TCP/IP protocols. Each protocol layer
maintains state information in the packets it sends and receives. The adaptive security appliance and
some other firewalls inspect the state information in each packet to verify that it is current and valid
for every protocol it contains. This feature is called stateful inspection and is designed to create a
powerful barrier to certain types of computer security threats.
Static PAT
Static Port Address Translation. Static PAT is a static address that also maps a local port to a global
port. See also Dynamic PAT, NAT.
subnetmask
See mask.
T
TACACS+
Terminal Access Controller Access Control System Plus. A client-server protocol that supports AAA
services, including command authorization. See also AAA, RADIUS.
TAPI
Telephony Application Programming Interface. A programming interface in Microsoft Windows that
supports telephony functions.
TCP
Transmission Control Protocol. Connection-oriented transport layer protocol that provides reliable
full-duplex data transmission.
To Next Page
Loading...
