Zte ZXR10 M6000 Series - Logical Scope

Zte ZXR10 M6000 Series

57 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

Chapter1STINTRODUCTION

àZXR10M6000-16ZTEZXR10Software,

Version:M6000v1.00.30(1.0.70),ZXROSNGV1.00.20,ReleasesoftwareBuildon

2011/06/0709:27:25

àZXR10T8000-16ZTEZXR10Software,

Version:T8000v1.00.12(1.0.70),ZXROSNGV1.00.20,ReleasesoftwareBuildon

2011/06/0709:27:25

àZXR108902ESoftware,8900&8900EVersion:V3.00.01.B08P06,ZXROSNGV1.00.20RE-

LEASESOFTWARECompiled2011-6-8,16:51:27

lguidancedocuments

àZXR10M6000&T8000&8900ESeriesRoutersandSwitchesRunning

ZXROSNG_AGD_OPEv1.7

àZXR10M6000&T8000&8900ESeriesRoutersandSwitchesRunning

ZXROSNG_AGD_PREv1.3

1.4.2Logicalscope

TheTOEisconnectedtoaninternal(trusted)networkandtwoormoreexternal(untrusted)

networks.

Theexternalnetworksarethenetworkstoberoutedandsupporttheprimaryfunctionofthe

TOE:thehandlingofpacketowsfromonenetworktoanother.Typically,packetowsare

passedthroughtheinternetworkingdeviceandforwardedtotheircongureddestination.

Thepacketowscanbemanipulatedandmonitoredaswell.Routingprotocolsusedare

RIPv2,OSPFv2,IS-IS,andBGPv4.

Theinternalnetworkmaycontainthefollowingentities:

lARADIUSorTACACS+ServerforIdentication&Authentication(optional)

lASNMP/SYSLOGserverforlogging(required)

lANTPServerforexternaltimesynchronisation(required)

lAlocalconsoleformanagementoraremoteconsoleformanagement.Thisremote

consoleconnectswiththeTOEthroughtheSSH.(required)

TheTOEprovidesthefollowingservices:

lHandlingofpacketows:asdescribedaboveusingtheRIPv2,OSPFv2,IS-IS,and

BGPv4protocolswhichcanpreventthecommunicationwithtrustedroutersfrom

modication,insertionandreplayerrors.Packetowscanberestrictedtocomeonly

fromauthorizedsourcesand/orgotoauthorizeddestinations.

lLocal(throughaconsoleport)andremote(protectedthroughSSHorSNMPv3)

accesstotheTOEforadministrators.Thesesessionsaredroppedaftera

congurableamountoftotalsessiontimeorafteracongurableamountofidletime

topreventaccesstounattendedopensessions.

lAuthentication:Accesspermissioniscontrolledusing:TACACS+;RADIUS;or

localauthentication.Aprole,whichisbasedonadministratornameandpassword

congurations,isappliedfortheadministratorauthorizationprocesses.ThisST

1-7

SJ-20110815105844-030|2011/08/19（R1.6）ZTECORPORATION

Table of Contents

Related product manuals

Preview: Zte ZXR10

Preview: Zte ZXR10 ZSR

Preview: Zte ZXR10 GER

Preview: Zte ZXR10 2600

Preview: Zte ZXR10 T600

Preview: Zte ZXR10 ZSR V2

Zte ZXR10 ZSR V2

Zte ZXR10 3800-8

Zte ZXR10 2800-4

Preview: Zte ZXR10 1800-2S

Zte ZXR10 1800-2S

Preview: Zte ZXR10 ZSR V2 Series

Zte ZXR10 ZSR V2 Series

Preview: Zte ZXHN F660

Preview: Zte ZXV10 W300