8.1.9 Other Security Measures
Hardening
Hardening is the process of securing a system by reducing its surface of vulnerability.
This includes the removal of unnecessary software, unnecessary usernames or logins
and the disabling or removal of unnecessary services.
By default, Reason H49 configuration is hardened according to CIS (Center for
Internet Security) recommendations.
Disabling Ports
The availability of unused ports could provide a security risk.
An authorized user with Engineer role can disable unused physical ports.
This action is done from the Network > Interface page.
Every interface is represented by a row in the table.
Note: When the device is configured in QuadBox mode, ports 5 and 6 are deactivated, thus they are not displayed in the list.
Firmware Update
Reason H49 firmware is digitally signed.
When uploading and installing a new firmware version on the device, the package
signature is verified before allowing the firmware to be installed.
Cyber security certificates and public and private keys used for the authentication
process are stored in the local hardware.
The engineer user can update the device firmware as described in the Management
section.
Configuration Update
The engineer user can update the device by downloading a Running and a Startup
configuration as described in the Management section.
To Next Page
Loading...
