5-2
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
OL-7827-12
Chapter 5 Configuring the Management Interface and Security
About Management Interface and Security
About Management Interface and Security
The SCE platform is equipped with two RJ-45 management (MNG) ports. These ports provide access
from a remote management console to the SCE platform via a LAN.
The two management ports support management interface redundancy, providing the possibility for a
backup management link.
In addition to the Layer 1 security of a backup management link, the Service Control platform provides
a further management interface security feature; an IP filter that monitors for various types of TCP/IP
attacks. This filter can be configured with thresholds rates both for defining an attack and defining the
end of an attack.
Note The second management port is reflected in all objects related to it in the SNMP interface.
Perform the following tasks to configure the management interface and management interface security:
• Configure the management port:
–
Physical parameters
–
Specify active port (if not redundant installation)
–
Redundancy (if redundant installation)
• Configure management interface security
–
Enable IP fragment filtering
–
Configure the permitted and not-permitted IP address monitor
Configuring the Management Ports
Perform the following tasks to configure the management ports:
• Configure the IP address and subnet mask (only one IP address for the management interface, not
one IP address per port).
• Configure physical parameters:
–
Duplex
–
Speed
• Configure redundant management interface behavior (optional):
–
Fail-over mode
• If fail-over mode is disabled, specify the active port (optional).
To configure the system with management interface redundancy, see Configuring Management Interface
Redundancy, page 5-7 Configuring the Management Ports for Redundancy.
To Next Page
Loading...
