• What kind of access the configuration's set of Remote Management objects allow. These
objects determine the interface on which management access is permitted, what type of
access is allowed via that interface, and which source IP addresses the access can originate
from.
The Default Interface and IP for Management Access
The default management interface chosen by NetDefendOS can be different depending on the
hardware but is usually the first one found by NetDefendOS when the available interfaces are
first scanned on initial startup.
NetDefendOS assigns the default IPv4 address 192.168.10.1 to this management interface and
HTTPS access is allowed from the 192.168.10.0/24 network. The interface and IP address
assignments are summarized in the table below.
Hardware Management Interface Default IP Address
DFL-260E LAN 192.168.10.1
DFL-860E LAN 192.168.10.1
DFL-870 LAN1 192.168.10.1
DFL-1660 LAN1 192.168.10.1
DFL-2560 LAN1 192.168.10.1
DFL-2560G LAN1 192.168.10.1
Remote Management Objects
Remote access over a network to NetDefendOS is controlled by a set of Remote Management
objects and and these objects can be any of the following types:
• HTTP/HTTPS Management
A predefined object of this type called rmgmt_http already exists in the default NetDefendOS
configuration.
• SSH Management
This object type controls access via an SSH client.
• SNMP Management
This object type controls access via an SNMP client. No object of this type exists in the default
NetDefendOS configuration and one must be created to allow this kind of access.
SNMP access is discussed further in Section 2.5, “SNMP”.
As mentioned above, the following Remote Management objects are already predefined in
NetDefendOS:
• rmgmt_http
This is a RemoteMgmtHTTP object which controls HTTP and HTTPS access via the Web
Interface. By default, only HTTPS is allowed from the 192.168.1.0/24 network on the default
management interface.
• rmgmt_ssh
Chapter 2: Management and Maintenance
35
To Next Page
Loading...
