Avaya Port Matrix: Avaya Diagnostic Server 3.0

Size: px
Start display at page:

Download "Avaya Port Matrix: Avaya Diagnostic Server 3.0"

Transcription

1 Avaya Matrix: Avaya Diagnostic Server 3.0 Issue 2.0 February 208

2 ALL INFORMATION IS BELIEVED TO BE CORRECT AT THE TIME OF PUBLICATION AND IS PROVIDED "AS IS". AVAYA INC. DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE AND FURTHERMORE, AVAYA INC. MAKES NO REPRESENTATIONS OR WARRANTIES THAT THE INFORMATION PROVIDED HEREIN WILL ELIMINATE SECURITY THREATS TO CUSTOMERS SYSTEMS. AVAYA INC., ITS RELATED COMPANIES, DIRECTORS, EMPLOYEES, REPRESENTATIVES, SUPPLIERS OR AGENTS MAY NOT, UNDER ANY CIRCUMSTANCES BE HELD LIABLE FOR ANY DIRECT, INDIRECT, SPECIAL, PUNITIVE, EXEMPLARY, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE USE OF THE INFORMATION PROVIDED HEREIN. THIS INCLUDES, BUT IS NOT LIMITED TO, THE LOSS OF DATA OR LOSS OF PROFIT, EVEN IF AVAYA WAS ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. YOUR USE OF THIS INFORMATION CONSTITUTES ACCEPTANCE OF THESE TERMS. For the most current versions of this document, see the Avaya Support Web site: Avaya Inc. All Rights Reserved. All trademarks identified by the or are registered trademarks or trademarks, respectively, of Avaya Inc. All other trademarks are the property of their respective owners. 2 Avaya Matrix: Avaya Diagnostic Server 3.0 February 208

3 . Avaya Diagnostic Server Components Data flows and their sockets are owned and directed by an application. Avaya Diagnostic Server 3.0 running on RHEL 6.X or 7.X has many applications, such as Gateway User Interface, SAL, Server, etc. For all applications, sockets are created on the network interfaces on the host machine. The information of sockets and port usage by Avaya Diagnostic Server given here should be used for configuring the local firewall (iptables) on the same host machine. Additionally, this information could help configure firewall external to the host machine. Application components in the Avaya Diagnostic Server are listed as follows. Component Interface Description Gateway User Interface (GWUI) Eth0(public IP) Gateway User Interface is the management interface for configuring SAL Gateway. SAL Eth0(public IP) SAL is used for alarming, inventory and remote connectivity to the customer devices.. Net-SNMP Master User Interface server Eth0(public IP) Eth0(public IP) Eth0(public IP) 2. Usage Diagram It is an optional component and owned by the customer. It is required if the customer wants to run SNMP GET queries against SAL Gateway. User Interface is the management interface for configuring server. server is used to run QOS tests and also for troubleshooting issues between networks/endpoints. Avaya Matrix: Avaya Diagnostic Server 3.0 February 208 3

4 *Note: 4 Avaya Matrix: Avaya Diagnostic Server 3.0 February 208

5 The only port that needs to be opened in corporate firewall to the internet for Avaya Diagnostic Server is 443. In the case of connecting to Avaya support infrastructure, the port SHOULD NOT be re-configured unless otherwise advised by Avaya support. If connecting to a Business Partner support infrastructure, this port can be re-configured per the BP s requirement. The SSH port 22 for a Device may vary depending upon the device being supported, but normally is 22. Any SSH based remote access connection from SAL Gateway to the product that utilizes SSH Proxy will use a port between the defined range of on SSH Proxy. Avaya Diagnostic Server also supports, as needed by the products, other standard protocols for remote connectivity, e.g. HTTP, Telnet, etc. The ports for these access methods depend upon the individual product. Please consult the individual product documentation to get the complete list of remote connectivity ports supported by the product. Avaya Matrix: Avaya Diagnostic Server 3.0 February 208 5

6 3. Usage Tables 3. Usage Table Heading Definitions Ingress Connections (In): This indicates connection requests that are initiated from external devices to open ports in Avaya Diagnostic Server. From the point of view of Avaya Diagnostic Server, the connection request is coming In. (Note that in most cases, traffic will flow in both directions.) Egress Connections (Out): This indicates connection requests that are initiated from Avaya Diagnostic Server to known ports on a remote device. From the point of view of Avaya Diagnostic Server, the connection request is going Out. (Note that in most cases, traffic will flow in both directions.) Intra-Host Connections: This indicates connection requests that both originate and terminate in Avaya Diagnostic Server. These would be handled on the loopback interface. These ports need not be configured on any firewall, but may show up on a port scan of Avaya Diagnostic Server. Destination : This is the default layer-4 port number to which the connection request is sent. Valid values include: A (C) next to the port number means that the port number is configurable. Refer to the Notes section after each table for specifics on valid port ranges. Network/Application Protocol: This is the name associated with the layer-4 protocol and layers-5-7 application. Optionally Enabled / Disabled: This field indicates whether customers can enable or disable a layer-4 port changing its default port setting. Valid values include: Yes or No No means the default port state cannot be changed (e.g. enable or disabled). Yes means the default port state can be changed and that the port can either be enabled or disabled. State: A port is either open, closed, filtered or N/A. Open ports will respond to queries Closed ports may or may not respond to queries and are only listed when they can be optionally enabled. Filtered ports can be open or closed. Filtered UDP ports will not respond to queries. Filtered TCP will respond to queries, but will not allow connectivity. N/A is used for the egress default port state since these are not listening ports in Avaya Diagnostic Server. External Device: This is the remote device that is initiating a connection request (Ingress Connections) or receiving a connection request (Egress Connections). 6 Avaya Matrix: Avaya Diagnostic Server 3.0 February 208

7 3.2 Tables The following tables document the port usage for SAL Gateway and Server. Table. s for (eth0) No. Destination (Configurable Range) Network / Application Protocol Optionally Enabled / Disabled? State External Device Description Notes INGRESS CONNECTIONS (CUSTOMER DEVICES TO SAL GATEWAY) 22 TCP/SSH No Open Admin terminal or SAL Gateway System mgmt requiring shell access. Secure Access Link Gateway User Interface uses this port for username/password authentication. 2 6 UDP/SNMP Yes Closed Admin terminal or NMS SNMP queries to Secure Access Link Gateway UDP/SNMP No Open listens for SNMP Traps from devices for the purpose of alarming TCP/HTTPS No Open Admin terminal This port is used for accessing SAL Gateway User Interface via Browser TCP/IPINADS Yes Open listens for IPINADS Traps from devices for the purpose of alarming., TCP/IPINADS CMS Yes Open listens for IPINADS CMS Traps from devices for the purpose of alarming.,6 INGRESS CONNECTIONS (INTERNET TO SAL GATEWAY) Avaya Matrix: Avaya Diagnostic Server 3.0 February 208 7

8 No. Destination (Configurable Range) Network / Application Protocol Optionally Enabled / Disabled? State External Device Description Notes N.A. EGRESS CONNECTIONS (SAL GATEWAY TO CUSTOMER DEVICES / SAL POLICY MANAGER WITH SSH PROXY) 2 62 (-65535) 443 (-65535) UDP/SNMP No N/A NMS TCP/HTTPS No N/A 3 22 TCP/SSH Yes N/A 4 23 TCP/Telnet Yes N/A (-65535) TCP/RDP Yes N/A Policy Server or SNMP traps from Secure Access Link Gateway. Policy Server It is an optional component. If configured, Remote Access connects to it for policy control. Remote Access can also connect to the devices over this port for providing remote access to the device. will connect to external devices using SSH over port 22 for remote connectivity. will connect to external devices using Telnet over port 23 for remote connectivity. will connect to external devices using RDP (Remote Desktop Protocol) over port 3389 for remote connectivity. 2,4,5 8 Avaya Matrix: Avaya Diagnostic Server 3.0 February 208

9 No. Destination (Configurable Range) Network / Application Protocol Optionally Enabled / Disabled? State External Device 6 23 UDP/NTP Yes N/A NTP Server 7 25 TCP/SMTP Yes N/A SMTP Server (-65535) HTTP Yes N/A 9 62 UDP/SNMP No Open TCP/IPINADS Yes Open 508 TCP/IPINADS CMS Yes Open TCP/Netty No Open TCP/SSH No Open EGRESS CONNECTIONS (SAL GATEWAY TO INTERNET) Internet Proxy Server SAL Policy Manager with SSH Proxy SAL Policy Manager with SSH Proxy Description NTP Network Time Protocol. This is used for connecting to an NTP Server for synchronizing the system clock. This port is NOT opened by SAL Gateway. Avaya highly recommends that the host machine should have NTP configured and running. The NTP client on the host will connect to the time server on this port. SMTP Simple Mail Transfer Protocol. It s optional and is used by SAL Gateway for sending s to administrators if configured. A customer may have an optional internet proxy server for all the outgoing internet connections. In this case SAL Gateway will go through the proxy server for any outgoing connections. Usually the proxy server is configured with port 8000 but may vary based on the particular proxy. sends an ACK using this port to the external devices sending SNMP alarm to the Gateway. sends an ACK using this port to the external devices sending IP INADS alarm to the Gateway. sends an ACK using this port to the external devices sending IP INADS CMS alarm to the Gateway. communicates with SAL Policy Manager over Netty SSL for new remote access request.. A temporary SSH Server is started on a port within this range by SAL SSH Proxy for the incoming SSH connection from the user. Notes 443 (-65535) TCP/HTTPS No N/A SAL Support Infrastructure Consists of Remote and Core Servers for providing remote access and alarming.,3 INTRA-HOST CONNECTIONS Avaya Matrix: Avaya Diagnostic Server 3.0 February 208 9

10 No. Destination (Configurable Range) Network / Application Protocol Optionally Enabled / Disabled? State External Device 705 TCP/-X Yes Closed N/A Description It is a port opened by Net- SNMP Master. It is NOT opened by SAL Gateway but is used by SAL SNMP Sub to connect to the Net-SNMP Master if one is running. This port is NOT required to, and should NOT be, accessible over the LAN outside the host. Notes Table 2. s for Server (eth0) No. Destination (Configurable Range) Network / Application Protocol Optionally Enabled / Disabled? State External Device Description Notes INGRESS CONNECTIONS UDP No Open UDP No Open TCP/UDP No Open 4 45 TCP No Open UI TCP No Open WebLM Used for event monitoring Used for packet sniffing Used for exchanging data between server & agents Used for accessing UI Used for WebLM licensing EGRESS CONNECTIONS UDP No Open UDP No Open TCP/UDP No Open Used for event monitoring Used for packet sniffing Used for exchanging data between server & agents NOTES:. This interface is system-to-system only. 2. The SNMP port to which traps are sent is configurable to any valid port number (-65535), but will usually be port is the only port that needs to be opened in the firewall for internet connections from SAL Gateway. This is the case when connecting to Avaya support infrastructure. The port SHOULD NOT be re-configured unless otherwise advised by Avaya support. If connecting to a Business Partner support infrastructure, this port can be reconfigured per the BP s requirement. 0 Avaya Matrix: Avaya Diagnostic Server 3.0 February 208

11 4. The SSH port 22 for a Device may vary depending upon the device being supported, but normally is SAL Gateway 2.2 and higher can be configured to use SFTP (Secure File Transfer Protocol) on port 22 for its backup-restore feature. 6. SAL Gateway listens on these ports for IPINADS and IPINADS CMS which are alarming protocols from legacy products. The following table documents the port usage for (s). Table 3. s for (eth0) No. Destination (Configurable Range) Network / Application Protocol Optionally Enabled / Disabled? State External Device Description Notes INGRESS CONNECTIONS 5002 UDP No Open UDP No Open 3 - ICMP No EGRESS CONNECTIONS Not Applicable 5002 UDP No Open UDP No Open 3 - ICMP No Not Applicable Used for RTP Test Used for NTR Test Used for getting ICMP packets from intermediate destination Used for RTP Test Used for NTR Test Used for getting ICMP packets from intermediate destination 3.3 Table Changes Table 4. Changes From Avaya Diagnostic Server 2.5 to 3.0 No. Destination (Interface) Network / Application Protocol Optionally Enabled / Disabled? State External Device Description Notes PORTS ADDED NA PORTS REMOVED NA SAL Facing IP/FQDN Mapping Avaya Matrix: Avaya Diagnostic Server 3.0 February 208

12 SAL RA Sr. No. FQDN IP remote.sal.avaya.com sas2.sal.avaya.com sas3.sal.avaya.com SAL Alarming secure.alarming.avaya.com Avaya Matrix: Avaya Diagnostic Server 3.0 February 208

13 What are ports and how are they used? Appendix A: Overview of TCP/IP s TCP and UDP use ports (defined at to route traffic arriving at a particular IP device to the correct upper layer application. These ports are logical descriptors (numbers) that help devices multiplex and de-multiplex information streams. Consider your desktop PC. Multiple applications may be simultaneously receiving information. In this example, may use destination TCP port 25, a browser may use destination TCP port 80 and a telnet session may use destination TCP port 23. These logical ports allow the PC to demultiplex a single incoming serial data packet stream into three mini-streams inside the PC. Furthermore, each of the mini-streams is directed to the correct high-level application because the port numbers identify which application each data mini-stream belongs. Every IP device has incoming (Ingress) and outgoing (Egress) data streams. s are used in TCP and UDP to name the ends of logical connections which carry data flows. TCP and UDP streams have an IP address and port number for both source and destination IP devices. The pairing of an IP address and a port number is called a socket (discussed later). Therefore, each data stream is uniquely identified with two sockets. Source and destination sockets must be known by the source before a data stream can be sent to the destination. Some destination ports are open to receive data streams and are called listening ports. Listening ports actively wait for a source (client) to make contact to a destination (server) using a specific port that has a known protocol associate with that port number. HTTPS, as an example, is assigned port number 443. When a destination IP device is contacted by a source device using port 443, the destination uses the HTTPS protocol for that data stream conversation. Type Ranges numbers are divided into three ranges: Well Known s, Registered s, and Dynamic s (sometimes called Private s). Well Known s are those numbered from 0 through 023. Registered s are those numbered from 024 through 495 Dynamic s are those numbered from 4952 through The Well Known and Registered ports are assigned by IANA (Internet Assigned Numbers Authority) and are found here: Well Known s For the purpose of providing services to unknown clients, a service listen port is defined. This port is used by the server process as its listen port. Common services often use listen ports in the well known port range. A well known port is normally active meaning that it is listening for any traffic destined for a specific application. For example, well known port 23 on a server is Avaya Matrix: Avaya Diagnostic Server 3.0 February 208 3

14 actively waiting for a data source to contact the server IP address using this port number to establish a Telnet session. Well known port 25 is waiting for an session, etc. These ports are tied to a well understood application and range from 0 to 023. In UNIX and Linux operating systems, only root may open or close a well-known port. Well Known s are also commonly referred to as privileged ports. Registered s Unlike well known ports, these ports are not restricted to the root user. Less common services register ports in this range. Avaya uses ports in this range for call control. Some, but not all, ports used by Avaya in this range include: 79/720 for H.323, 5060/506 for SIP, 2944 for H.248 and others. The registered port range is Even though a port is registered with an application name, industry often uses these ports for different applications. Conflicts can occur in an enterprise when a port with one meaning is used by two servers with different meanings. Dynamic s Dynamic ports, sometimes called private ports, are available to use for any general purpose. This means there are no meanings associated with these ports (similar to RFC 98 IP Address Usage). These are the safest ports to use because no application types are linked to these ports. The dynamic port range is Sockets A socket is the pairing of an IP address with a port number. An example would be :3009, where 3009 is the socket number associated with the IP address. A data flow, or conversation, requires two sockets one at the source device and one at the destination device. The data flow then has two sockets with a total of four logical elements. Each data flow must be unique. If one of the four elements is unique, the data flow is unique. The following three data flows are uniquely identified by socket number and/or IP address. Data Flow : : :2345 Data Flow 2: :2345 Data Flow 3: : :2345 Data flow has two different port numbers and two different IP addresses and is a valid and typical socket pair. Data flow 2 has the same IP addresses and the same port number on the second IP address as data flow, but since the port number on the first socket differs, the data flow is unique. Therefore, if one IP address octet changes, or one port number changes, the data flow is unique. Figure, below, is an example showing ingress and egress data flows from a PC to a web server. 4 Avaya Matrix: Avaya Diagnostic Server 3.0 February 208

15 Socket Example Diagram Client HTTP-Get Source :369 Destination :80 Web Server TCP-info Destination :369 Source :80 ` Figure. Socket Example Notice the connection is egress from the client. For the server, the same connection is ingress. The TCP/IP packet in the connection request has the client s IP as the source IP and source port as 369. In the same packet, the destination IP is that of the server and destination port is 80. In the response from the server, the TCP/IP packet has source and destination information reversed. Although request and response are different TCP/IP packets and their direction is opposite to each other, they are part of the same TCP connection, seen as egress by the client and ingress by the server. Understanding Firewall Types and Policy Creation Firewall Types There are three basic firewall types: Packet Filtering Application Level Gateways (Proxy Servers) Hybrid (Stateful Inspection) Packet Filtering is the most basic form of the firewalls. Each packet that arrives or leaves the network has its header fields examined against criterion to either drop the packet or let it through. Routers configured with Access Control Lists (ACL) use packet filtering. An example of packet filtering is preventing any source device on the Engineering subnet to telnet into any device in the Accounting subnet. Application level gateways (ALG) act as a proxy, preventing a direct connection between the foreign device and the internal destination device. ALGs filter each individual packet rather than blindly copying bytes. ALGs can also send alerts via , alarms or other methods and keep log files to track significant events. Hybrid firewalls are dynamic systems, tracking each connection traversing all interfaces of the firewall and making sure they are valid. In addition to looking at headers, the content of the packet, up through the application layer, is examined. A stateful inspection firewall also Avaya Matrix: Avaya Diagnostic Server 3.0 February 208 5

16 monitors the state of the connection and compiles the information in a state table. Stateful inspection firewalls close off ports until the connection to the specific port is requested. This is an enhancement to security against port scanning. Firewall Policies The goals of firewall policies are to monitor, authorize and log data flows and events. They also restrict access using IP addresses, port numbers and application types and sub-types. This paper is focused with identifying the port numbers used by Avaya products so effective firewall policies can be created without disrupting business communications or opening unnecessary access into the network. Knowing that the source column in the above matrices is the socket initiator is key in building some types of firewall policies. Some firewalls can be configured to automatically create a return path through the firewall if the initiating source is allowed through. This option removes the need to enter two firewall rules, one for each stream direction, but can also raise security concerns. Another feature of some firewalls is to create an umbrella policy that allows access for many independent data flows using a common higher layer attribute. Finally, many firewall policies can be avoided by placing endpoints and the servers that serve those endpoints in the same firewall zone. The act of systematically scanning a computer's ports. Since a port is a place where information goes into and out of a computer, port scanning identifies open doors to a computer. scanning has legitimate uses in managing networks, but port scanning also can be malicious in nature if someone is looking for a weakened access point to break into your computer. 6 Avaya Matrix: Avaya Diagnostic Server 3.0 February 208

Avaya Port Matrix: Avaya Proprietary Use pursuant to the terms of your signed agreement or Avaya policy.

Avaya Port Matrix: Avaya Proprietary Use pursuant to the terms of your signed agreement or Avaya policy. Avaya Matrix: Release 3.0 Issue 2 April 2016 April 2016 Avaya Matrix: 3.0 1 ALL INFORMATION IS BELIEVED TO BE CORRECT AT THE TIME OF PUBLICATION AND IS PROVIDED "AS IS". AVAYA INC. DISCLAIMS ALL WARRANTIES,

More information

Avaya Port Matrix: Avaya Aura Appliance Virtualization Platform 7.0

Avaya Port Matrix: Avaya Aura Appliance Virtualization Platform 7.0 Avaya Port Matrix: Avaya Aura Appliance Virtualization Platform 7.0 Issue 1.0 August 24, 2015 August 2015 Avaya Port Matrix: Avaya Aura Appliance Virtualization Platform 7.0 1 ALL INFORMATION IS BELIEVED

More information

Avaya Port Matrix: Avaya Aura Performance Center 7.1

Avaya Port Matrix: Avaya Aura Performance Center 7.1 Avaya Port Matrix: Avaya Aura Performance Center 7.1 Issue 1.0 November 2014 1 ALL INFORMATION IS BELIEVED TO BE CORRECT AT THE TIME OF PUBLICATION AND IS PROVIDED "AS IS". AVAYA INC. DISCLAIMS ALL WARRANTIES,

More information

Avaya Port Matrix: Avaya Communicator for Microsoft Lync 6.4. Avaya Proprietary Use pursuant to the terms of your signed agreement or Avaya policy.

Avaya Port Matrix: Avaya Communicator for Microsoft Lync 6.4. Avaya Proprietary Use pursuant to the terms of your signed agreement or Avaya policy. Matrix: for Microsoft Lync 6.4 Issue 1 July 28, 2015 Proprietary Use pursuant to the terms of your signed agreement or policy. July 2015 Matrix: for Microsoft Lync 1 ALL INFORMATION IS BELIEVED TO BE CORRECT

More information

Avaya Proprietary Use pursuant to the terms of your signed agreement or Avaya policy.

Avaya Proprietary Use pursuant to the terms of your signed agreement or Avaya policy. Matrix Equinox 3.0 Issue 1.0 December 15, 2016 Proprietary Use pursuant to the terms of your signed agreement or policy. December 2016 Matrix: Equinox 3.0 1 ALL INFORMATION IS BELIEVED TO BE CORRECT AT

More information

Avaya Aura Experience Portal 7.x. Avaya Proprietary Use pursuant to the terms of your signed agreement or Avaya policy.

Avaya Aura Experience Portal 7.x. Avaya Proprietary Use pursuant to the terms of your signed agreement or Avaya policy. Avaya Matrix Avaya Aura Experience al 7.x Issue 7 April 02, 2018 April 2018 Avaya Matrix: Avaya Aura Experience al 7.x 1 ALL INFORMATION IS BELIEVED TO BE CORRECT AT THE TIME OF PUBLICATION AND IS PROVIDED

More information

Avaya Port Matrix. Avaya Orchestrator 1.4. Issue 1.0 November 2, November 2018 Avaya Port Matrix: Avaya Orchestration 1.4 1

Avaya Port Matrix. Avaya Orchestrator 1.4. Issue 1.0 November 2, November 2018 Avaya Port Matrix: Avaya Orchestration 1.4 1 Avaya Port Matrix Avaya Orchestrator 1.4 Issue 1.0 November 2, 2018 November 2018 Avaya Port Matrix: Avaya Orchestration 1.4 1 ALL INFORMATION IS BELIEVED TO BE CORRECT AT THE TIME OF PUBLICATION AND IS

More information

Avaya Port Matrix: Updated for Communication Manager 6.3.6

Avaya Port Matrix: Updated for Communication Manager 6.3.6 Avaya Port Matrix: Updated for Communication Manager 6.3.6 Issue 2.0 March 21, 2014 CID 165316 ALL INFORMATION IS BELIEVED TO BE CORRECT AT THE TIME OF PUBLICATION AND IS PROVIDED "AS IS". AVAYA INC. DISCLAIMS

More information

Cisco Expressway with Jabber Guest

Cisco Expressway with Jabber Guest Cisco Expressway with Jabber Guest Deployment Guide First Published: Decemeber 2016 Cisco Expressway X8.9 Cisco Jabber Guest Server 10.6.9 (or later) Cisco Systems, Inc. www.cisco.com Contents Preface

More information

Internet Security: Firewall

Internet Security: Firewall Internet Security: Firewall What is a Firewall firewall = wall to protect against fire propagation More like a moat around a medieval castle restricts entry to carefully controlled points restricts exits

More information

Gigabit Managed Ethernet Switch

Gigabit Managed Ethernet Switch LGB1110A LGB1126A-R2 Product Data Sheet Gigabit Managed Ethernet Switch Features Overview LGB1110A The Gigabit Managed Ethernet Switches offer L2 features plus advanced L3 features such as Static Route

More information

while the LAN interface is in the DMZ. You can control access to the WAN port using either ACLs on the upstream router, or the built-in netfilter

while the LAN interface is in the DMZ. You can control access to the WAN port using either ACLs on the upstream router, or the built-in netfilter When the LAN interface is in a private IP DMZ, you can write the firewall rule-set to restrict the number of hosts the VBP can communicate with to only those devices. This enhances security. You can also

More information

Cisco TelePresence Video Communication Server Basic Configuration (Single VCS Control)

Cisco TelePresence Video Communication Server Basic Configuration (Single VCS Control) Cisco TelePresence Video Communication Server Basic Configuration (Single VCS Control) Deployment Guide Cisco VCS X7.2 D14524.03 August 2012 Contents Introduction 3 Example network deployment 3 Internal

More information

CounterACT 7.0. Quick Installation Guide for a Single Virtual CounterACT Appliance

CounterACT 7.0. Quick Installation Guide for a Single Virtual CounterACT Appliance CounterACT 7.0 Quick Installation Guide for a Single Virtual CounterACT Appliance Table of Contents Welcome to CounterACT Version 7.0... 3 Overview... 4 1. Create a Deployment Plan... 5 Decide Where to

More information

HP 6125G & 6125G/XG Blade Switches

HP 6125G & 6125G/XG Blade Switches HP 6125G & 6125G/XG Blade Switches Network Management and Monitoring Configuration Guide Part number: 5998-3162b Software version: Release 2103 and later Document version: 6W103-20151020 Legal and notice

More information

HP 6125 Blade Switch Series

HP 6125 Blade Switch Series HP 6125 Blade Switch Series Network Management and Monitoring Configuration Guide Part number: 5998-3162 Software version: Release 2103 Document version: 6W100-20120907 Legal and notice information Copyright

More information

Polycom RealPresence Access Director System

Polycom RealPresence Access Director System RELEASE NOTES Version 4.0.1 August 2014 3725-78700-001D1 Polycom RealPresence Access Director System Polycom, Inc. 1 Document Title Version What s New in Release 4.0.1 The RealPresence Access Director

More information

W is a Firewall. Internet Security: Firewall. W a Firewall can Do. firewall = wall to protect against fire propagation

W is a Firewall. Internet Security: Firewall. W a Firewall can Do. firewall = wall to protect against fire propagation W is a Firewall firewall = wall to protect against fire propagation Internet Security: Firewall More like a moat around a medieval castle restricts entry to carefully controlled points restricts exits

More information

Cisco UCS Director F5 BIG-IP Management Guide, Release 5.0

Cisco UCS Director F5 BIG-IP Management Guide, Release 5.0 First Published: July 31, 2014 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883 Text

More information

Cisco CSPC 2.7.x. Quick Start Guide. Feb CSPC Quick Start Guide

Cisco CSPC 2.7.x. Quick Start Guide. Feb CSPC Quick Start Guide CSPC Quick Start Guide Cisco CSPC 2.7.x Quick Start Guide Feb 2018 2018 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 1 of 17 Contents Table of Contents 1. INTRODUCTION

More information

Cisco VCS Expressway Starter Pack

Cisco VCS Expressway Starter Pack Cisco VCS Expressway Starter Pack Cisco TelePresence Deployment Guide Cisco VCS X5.1 D14618.02 November 2010 Contents Contents Introduction...4 Purpose of this guide... 4 Related documents... 5 Configuring

More information

Introduction to Firewalls using IPTables

Introduction to Firewalls using IPTables Introduction to Firewalls using IPTables The goal of this lab is to implement a firewall solution using IPTables, and to write and to customize new rules to achieve security. You will need to turn in your

More information

Port Utilization in Unified CVP

Port Utilization in Unified CVP Utilization in Unified CVP Utilization Table Columns, page 1 Unified CVP Utilization, page 2 Utilization Table Columns The columns in the port utilization tables in this document describe the following:

More information

Polycom RealPresence Access Director System

Polycom RealPresence Access Director System Release Notes Polycom RealPresence Access Director System 4.0 June 2014 3725-78700-001D Polycom announces the release of the Polycom RealPresence Access Director system, version 4.0. This document provides

More information

CompTIA Exam JK0-023 CompTIA Network+ certification Version: 5.0 [ Total Questions: 1112 ]

CompTIA Exam JK0-023 CompTIA Network+ certification Version: 5.0 [ Total Questions: 1112 ] s@lm@n CompTIA Exam JK0-023 CompTIA Network+ certification Version: 5.0 [ Total Questions: 1112 ] Topic break down Topic No. of Questions Topic 1: Network Architecture 183 Topic 3: Troubleshooting 140

More information

Configure Transmission Control Protocol (TCP) and User Datagram Protocol (UDP) Service Settings on a Switch

Configure Transmission Control Protocol (TCP) and User Datagram Protocol (UDP) Service Settings on a Switch Configure Transmission Control Protocol (TCP) and User Datagram Protocol (UDP) Service Settings on a Switch Objective Transmission Control Protocol (TCP) and User Datagram Protocol (UDP) are transportation

More information

Firewall Stateful Inspection of ICMP

Firewall Stateful Inspection of ICMP The feature categorizes Internet Control Management Protocol Version 4 (ICMPv4) messages as either malicious or benign. The firewall uses stateful inspection to trust benign ICMPv4 messages that are generated

More information

Gigabit Managed Ethernet Switch

Gigabit Managed Ethernet Switch LGB1110A LGB1152A Product Data Sheet Gigabit Managed Ethernet Switch LGB1110A OVERVIEW The Gigabit Managed Ethernet Switches offer L2 features plus advanced L3 features such as Static Route for Enterprise

More information

Gigabit Managed Ethernet Switch

Gigabit Managed Ethernet Switch LGB1110A LGB1126A-R2 LGB1152A Product Data Sheet Gigabit Managed Ethernet Switch FEATURES L2+ features make the switch easy to manage, provide robust security, and QoS. Offers a built-in device management

More information

HP A-F1000-A-EI_A-F1000-S-EI VPN Firewalls

HP A-F1000-A-EI_A-F1000-S-EI VPN Firewalls HP A-F1000-A-EI_A-F1000-S-EI VPN Firewalls NAT Configuration Guide Part number:5998-2649 Document version: 6PW100-20110909 Legal and notice information Copyright 2011 Hewlett-Packard Development Company,

More information

Chapter 8 roadmap. Network Security

Chapter 8 roadmap. Network Security Chapter 8 roadmap 8.1 What is network security? 8.2 Principles of cryptography 8.3 Message integrity 8.4 Securing e-mail 8.5 Securing TCP connections: SSL 8.6 Network layer security: IPsec 8.7 Securing

More information

Cisco Terminal Services (TS) Agent Guide, Version 1.0

Cisco Terminal Services (TS) Agent Guide, Version 1.0 First Published: 2016-08-29 Last Modified: 2018-01-30 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387)

More information

Stonesoft Management Center. Release Notes for Version 5.6.1

Stonesoft Management Center. Release Notes for Version 5.6.1 Stonesoft Management Center Release Notes for Version 5.6.1 Updated: January 9, 2014 Table of Contents What s New... 3 Fixes... 3 System Requirements... 6 Basic Management System Hardware Requirements...

More information

CounterACT 7.0 Single CounterACT Appliance

CounterACT 7.0 Single CounterACT Appliance CounterACT 7.0 Single CounterACT Appliance Quick Installation Guide Table of Contents Welcome to CounterACT Version 7.0....3 Included in your CounterACT Package....3 Overview...4 1. Create a Deployment

More information

Cisco CSPC 2.7x. Configure CSPC Appliance via CLI. Feb 2018

Cisco CSPC 2.7x. Configure CSPC Appliance via CLI. Feb 2018 Cisco CSPC 2.7x Configure CSPC Appliance via CLI Feb 2018 2017 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 1 of 5 Contents Table of Contents 1. CONFIGURE CSPC

More information

Cisco Nexus 1000V for KVM Interface Configuration Guide, Release 5.x

Cisco Nexus 1000V for KVM Interface Configuration Guide, Release 5.x Cisco Nexus 1000V for KVM Interface Configuration Guide, Release 5.x First Published: August 01, 2014 Last Modified: November 09, 2015 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San

More information

IP Addressing: Fragmentation and Reassembly Configuration Guide

IP Addressing: Fragmentation and Reassembly Configuration Guide First Published: December 05, 2012 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883

More information

Fundamentals of IP Networking 2017 Webinar Series Part 4 Building a Segmented IP Network Focused On Performance & Security

Fundamentals of IP Networking 2017 Webinar Series Part 4 Building a Segmented IP Network Focused On Performance & Security Fundamentals of IP Networking 2017 Webinar Series Part 4 Building a Segmented IP Network Focused On Performance & Security Wayne M. Pecena, CPBE, CBNE Texas A&M University Educational Broadcast Services

More information

Network Security. Kitisak Jirawannakool Electronics Government Agency (public organisation)

Network Security. Kitisak Jirawannakool Electronics Government Agency (public organisation) 1 Network Security Kitisak Jirawannakool Electronics Government Agency (public organisation) A Brief History of the World 2 OSI Model vs TCP/IP suite 3 TFTP & SMTP 4 ICMP 5 NAT/PAT 6 ARP/RARP 7 DHCP 8

More information

NNMi Integration User Guide for CiscoWorks Network Compliance Manager 1.6

NNMi Integration User Guide for CiscoWorks Network Compliance Manager 1.6 NNMi Integration User Guide for CiscoWorks Network Compliance Manager 1.6 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000

More information

Definition of firewall

Definition of firewall Internet Firewalls Definitions: firewall, policy, router, gateway, proxy NAT: Network Address Translation Source NAT, Destination NAT, Port forwarding NAT firewall compromise via UPnP/IGD Packet filtering

More information

Features of a proxy server: - Nowadays, by using TCP/IP within local area networks, the relaying role that the proxy

Features of a proxy server: - Nowadays, by using TCP/IP within local area networks, the relaying role that the proxy Que: -Proxy server Introduction: Proxy simply means acting on someone other s behalf. A Proxy acts on behalf of the client or user to provide access to a network service, and it shields each side from

More information

Polycom RealPresence Access Director System

Polycom RealPresence Access Director System RELEASE NOTES Version 4.1 April 2015 3725-78700-001E1 Polycom RealPresence Access Director System Polycom, Inc. 1 Polycom RealPresence Access Director System Release Notes Version 4.1 Contents What s New

More information

Authenticating Devices

Authenticating Devices Authenticating Devices Cisco TelePresence Deployment Guide Cisco VCS X6.1 D14819.01 May 2011 Contents Contents Document revision history... 4 Introduction... 5 Local database... 6 Configuration... 6 H.350

More information

Network+ Guide to Networks, Seventh Edition Chapter 2, Solutions

Network+ Guide to Networks, Seventh Edition Chapter 2, Solutions Network+ Guide to Networks, Seventh Edition Chapter 2, Solutions Review Questions 1. Which part of a MAC address is unique to each manufacturer? A. The network identifier B. The OUI C. The device identifier

More information

MITEL PERFORMANCE ANALYTICS

MITEL PERFORMANCE ANALYTICS MITEL PERFORMANCE ANALYTICS RELEASE 3.0 ENGINEERING GUIDELINES NOTICE The information contained in this document is believed to be accurate in all respects but is not warranted by Mitel Networks Corporation

More information

Authenticating Cisco VCS accounts using LDAP

Authenticating Cisco VCS accounts using LDAP Authenticating Cisco VCS accounts using LDAP Cisco TelePresence Deployment Guide Cisco VCS X6 D14526.04 February 2011 Contents Contents Document revision history... 3 Introduction... 4 Usage... 4 Cisco

More information

Tanium Appliance Installation Guide

Tanium Appliance Installation Guide Tanium Appliance Installation Guide Version 1.0.0 September 25, 2017 The information in this document is subject to change without notice. Further, the information provided in this document is provided

More information

SE 4C03 Winter Final Examination Answer Key. Instructor: William M. Farmer

SE 4C03 Winter Final Examination Answer Key. Instructor: William M. Farmer SE 4C03 Winter 2003 Final Examination Answer Key Instructor: William M. Farmer (1) [2 pts.] Both the source and destination IP addresses are used to route IP datagrams. Is this statement true or false?

More information

Indicate whether the statement is true or false.

Indicate whether the statement is true or false. Indicate whether the statement is true or false. 1. Packet-filtering firewalls scan network data packets looking for compliance with the rules of the firewall s database or violations of those rules. 2.

More information

Unified Communications in RealPresence Access Director System Environments

Unified Communications in RealPresence Access Director System Environments [Type the document title] 2.1.0 March 2013 3725-78704-001A Deploying Polycom Unified Communications in RealPresence Access Director System Environments Polycom Document Title 1 Trademark Information POLYCOM

More information

Cisco TelePresence Authenticating Cisco VCS Accounts Using LDAP

Cisco TelePresence Authenticating Cisco VCS Accounts Using LDAP Cisco TelePresence Authenticating Cisco VCS Accounts Using LDAP Deployment Guide Cisco VCS X8.2 D14465.07 June 2014 Contents Introduction 3 Process summary 3 LDAP accessible authentication server configuration

More information

HP Load Balancing Module

HP Load Balancing Module HP Load Balancing Module Load Balancing Configuration Guide Part number: 5998-4218 Software version: Feature 3221 Document version: 6PW100-20130326 Legal and notice information Copyright 2013 Hewlett-Packard

More information

Cisco Terminal Services (TS) Agent Guide, Version 1.2

Cisco Terminal Services (TS) Agent Guide, Version 1.2 First Published: 2018-01-30 Last Modified: 2018-01-30 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387)

More information

Cisco Expressway Web Proxy for Cisco Meeting Server

Cisco Expressway Web Proxy for Cisco Meeting Server Cisco Expressway Web Proxy for Cisco Meeting Server Deployment Guide First Published: December 2016 Last Updated: December 2017 Expressway X8.10 Cisco Systems, Inc. www.cisco.com Preface Preface Change

More information

Overview. Computer Network Lab, SS Security. Type of attacks. Firewalls. Protocols. Packet filter

Overview. Computer Network Lab, SS Security. Type of attacks. Firewalls. Protocols. Packet filter Computer Network Lab 2017 Fachgebiet Technische Informatik, Joachim Zumbrägel Overview Security Type of attacks Firewalls Protocols Packet filter 1 Security Security means, protect information (during

More information

Downloading and Licensing. (for Stealthwatch System v6.9.1)

Downloading and Licensing. (for Stealthwatch System v6.9.1) Downloading and Licensing (for Stealthwatch System v6.9.1) Contents Contents 2 Introduction 5 Purpose 5 Audience 5 Preparation 5 Trial Licenses 5 Download and License Center 6 Contacting Support 6 Registering

More information

Introduction to Networking

Introduction to Networking Introduction to Networking Chapters 1 and 2 Outline Computer Network Fundamentals Defining a Network Networks Defined by Geography Networks Defined by Topology Networks Defined by Resource Location OSI

More information

Objectives. Chapter 10. Upon completion you will be able to:

Objectives. Chapter 10. Upon completion you will be able to: Chapter 10 Figure 10.1 Position of IGMP in the network layer Objectives Upon completion you will be able to: Know the purpose of IGMP Know the types of IGMP messages Understand how a member joins a group

More information

IP Addressing: IPv4 Addressing Configuration Guide, Cisco IOS Release 15S

IP Addressing: IPv4 Addressing Configuration Guide, Cisco IOS Release 15S IP Addressing: IPv4 Addressing Configuration Guide, Cisco IOS Release 15S Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000

More information

4. The transport layer

4. The transport layer 4.1 The port number One of the most important information contained in the header of a segment are the destination and the source port numbers. The port numbers are necessary to identify the application

More information

UDP and TCP. Introduction. So far we have studied some data link layer protocols such as PPP which are responsible for getting data

UDP and TCP. Introduction. So far we have studied some data link layer protocols such as PPP which are responsible for getting data ELEX 4550 : Wide Area Networks 2015 Winter Session UDP and TCP is lecture describes the two most common transport-layer protocols used by IP networks: the User Datagram Protocol (UDP) and the Transmission

More information

Configuring NAT for IP Address Conservation

Configuring NAT for IP Address Conservation This module describes how to configure Network Address Translation (NAT) for IP address conservation and how to configure inside and outside source addresses. This module also provides information about

More information

HP High-End Firewalls

HP High-End Firewalls HP High-End Firewalls Attack Protection Configuration Guide Part number: 5998-2630 Software version: F1000-E/Firewall module: R3166 F5000-A5: R3206 Document version: 6PW101-20120706 Legal and notice information

More information

Unit 4: Firewalls (I)

Unit 4: Firewalls (I) Unit 4: Firewalls (I) What is a firewall? Types of firewalls Packet Filtering Statefull Application and Circuit Proxy Firewall services and limitations Writing firewall rules Example 1 Example 2 What is

More information

Copyright. Trademarks. Warranty. Copyright 2018 YEALINK (XIAMEN) NETWORK TECHNOLOGY

Copyright. Trademarks. Warranty. Copyright 2018 YEALINK (XIAMEN) NETWORK TECHNOLOGY Copyright Copyright 2018 YEALINK (XIAMEN) NETWORK TECHNOLOGY Copyright 2018 Yealink (Xiamen) Network Technology CO., LTD. All rights reserved. No parts of this publication may be reproduced or transmitted

More information

Cisco Meeting Management

Cisco Meeting Management Cisco Meeting Management Cisco Meeting Management 1.1 User Guide for Administrators September 19, 2018 Cisco Systems, Inc. www.cisco.com Contents 1 Introduction 4 1.1 The software 4 2 Deployment overview

More information

Cisco Expressway Authenticating Accounts Using LDAP

Cisco Expressway Authenticating Accounts Using LDAP Cisco Expressway Authenticating Accounts Using LDAP Deployment Guide Cisco Expressway X8.5 December 2014 Contents Introduction 3 Process summary 3 LDAP accessible authentication server configuration 4

More information

Network Address Translation (NAT)

Network Address Translation (NAT) The following topics explain and how to configure it. Why Use NAT?, page 1 NAT Basics, page 2 Guidelines for NAT, page 8 Configure NAT, page 12 Translating IPv6 Networks, page 40 Monitoring NAT, page 51

More information

4.0.1 CHAPTER INTRODUCTION

4.0.1 CHAPTER INTRODUCTION 4.0.1 CHAPTER INTRODUCTION Data networks and the Internet support the human network by supplying seamless, reliable communication between people - both locally and around the globe. On a single device,

More information

Recovery Guide for Cisco Digital Media Suite 5.4 Appliances

Recovery Guide for Cisco Digital Media Suite 5.4 Appliances Recovery Guide for Cisco Digital Media Suite 5.4 Appliances September 17, 2012 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408

More information

Applied IT Security. System Security. Dr. Stephan Spitz 6 Firewalls & IDS. Applied IT Security, Dr.

Applied IT Security. System Security. Dr. Stephan Spitz 6 Firewalls & IDS. Applied IT Security, Dr. Applied IT Security System Security Dr. Stephan Spitz Stephan.Spitz@de.gi-de.com Overview & Basics System Security Network Protocols and the Internet Operating Systems and Applications Operating System

More information

HP Firewalls and UTM Devices

HP Firewalls and UTM Devices HP Firewalls and UTM Devices NAT and ALG Configuration Guide Part number: 5998-4166 Software version: F1000-A-EI: Feature 3722 F1000-S-EI: Feature 3722 F5000: Feature 3211 F1000-E: Feature 3174 Firewall

More information

D-Link DVG-1402S. Manual. 2Voice + 4SW VoIP Router. Version B.1. Building Networks for People

D-Link DVG-1402S. Manual. 2Voice + 4SW VoIP Router. Version B.1. Building Networks for People D-Link DVG-1402S 2Voice + 4SW VoIP Router Manual Building Networks for People Version B.1 Contents Package Contents... 3 Introduction... 4 Rear Panel Connections... 5 Front Panel LEDs... 6 Features...

More information

Microsoft OCS 2007, Lync 2010, Cisco VCS and Cisco AM GW

Microsoft OCS 2007, Lync 2010, Cisco VCS and Cisco AM GW Microsoft OCS 2007, Lync 2010, Cisco VCS and Cisco AM GW Deployment Guide Cisco VCS X7.0 Microsoft OCS 2007 R2, Lync 2010 Cisco AM GW 1.0, 1.1 D14652.04 October 2011 Contents Contents Document revision

More information

First Hop Redundancy Protocols Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches)

First Hop Redundancy Protocols Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) First Hop Redundancy Protocols Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com

More information

APPENDIX F THE TCP/IP PROTOCOL ARCHITECTURE

APPENDIX F THE TCP/IP PROTOCOL ARCHITECTURE APPENDIX F THE TCP/IP PROTOCOL ARCHITECTURE William Stallings F.1 TCP/IP LAYERS... 2 F.2 TCP AND UDP... 4 F.3 OPERATION OF TCP/IP... 6 F.4 TCP/IP APPLICATIONS... 10 Copyright 2014 Supplement to Computer

More information

Cisco VCS Starter Pack Express

Cisco VCS Starter Pack Express Cisco VCS Starter Pack Express Deployment Guide Cisco VCS X7.1 D14618.05 June 2012 Contents Contents Introduction... 4 Purpose of this guide... 4 Related documents... 5 Configuring the Cisco VCS... 6 Firewall

More information

Interdomain Federation for the IM and Presence Service, Release 10.x

Interdomain Federation for the IM and Presence Service, Release 10.x First Published: 2014-01-29 Last Modified: 2018-11-05 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387)

More information

IP Addressing: Fragmentation and Reassembly Configuration Guide, Cisco IOS XE Release 3S (Cisco ASR 1000)

IP Addressing: Fragmentation and Reassembly Configuration Guide, Cisco IOS XE Release 3S (Cisco ASR 1000) IP Addressing: Fragmentation and Reassembly Configuration Guide, Cisco IOS XE Release 3S (Cisco ASR 1000) Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com

More information

Fusion360: Static SIP Trunk Programming Guide

Fusion360: Static SIP Trunk Programming Guide Fusion360: Static SIP Trunk Programming Guide Contents: SIP Trunk Programming Guide.................................................................................. 4 Step 1: Gather the Following Information

More information

TECHNICAL WHITE PAPER. Avaya SIP Enablement Services (SIP) 3.0 / Ports and Protocols

TECHNICAL WHITE PAPER. Avaya SIP Enablement Services (SIP) 3.0 / Ports and Protocols TECHNICAL WHITE PAPER Services (SIP) 3.0 / Version: 0.6 Date: Aug. 12, 2005 Author: Avaya GCS Abstract: This technical white paper covers the network ports and protocols used by the Avaya Converged Communications

More information

ipro-04n Security Configuration Guide

ipro-04n Security Configuration Guide Disclaimer: The contents of these notes does not specifically relate to any release of Firmware and may change without notice Status: uncontrolled 1 Introduction...5 2 Security package...6 2.1 Basic network

More information

On Distributed Communications, Rand Report RM-3420-PR, Paul Baran, August 1964

On Distributed Communications, Rand Report RM-3420-PR, Paul Baran, August 1964 The requirements for a future all-digital-data distributed network which provides common user service for a wide range of users having different requirements is considered. The use of a standard format

More information

Enabling ALGs and AICs in Zone-Based Policy Firewalls

Enabling ALGs and AICs in Zone-Based Policy Firewalls Enabling ALGs and AICs in Zone-Based Policy Firewalls Zone-based policy firewalls support Layer 7 application protocol inspection along with application-level gateways (ALGs) and application inspection

More information

GS-2610G L2+ Managed GbE Switch

GS-2610G L2+ Managed GbE Switch GS-2610G L2+ Managed GbE Switch Overview GS-2610G L2+ Managed Switch is a next-generation Ethernet Switch offering full suite of L2 features, including advanced L3 features such as Static Route that delivers

More information

Defining Networks with the OSI Model. Module 2

Defining Networks with the OSI Model. Module 2 Defining Networks with the OSI Model Module 2 Objectives Skills Concepts Objective Domain Description Objective Domain Number Understanding OSI Basics Defining the Communications Subnetwork Defining the

More information

Modular Policy Framework. Class Maps SECTION 4. Advanced Configuration

Modular Policy Framework. Class Maps SECTION 4. Advanced Configuration [ 59 ] Section 4: We have now covered the basic configuration and delved into AAA services on the ASA. In this section, we cover some of the more advanced features of the ASA that break it away from a

More information

Cisco TelePresence Video Communication Server. Getting started

Cisco TelePresence Video Communication Server. Getting started Cisco TelePresence Video Communication Server Getting started D14350.04 November 2010 Contents Contents Contents 2 General information 3 About the Cisco TelePresence Video Communication Server (Cisco VCS)

More information

NT1210 Introduction to Networking. Unit 10

NT1210 Introduction to Networking. Unit 10 NT1210 Introduction to Networking Unit 10 Chapter 10, TCP/IP Transport Objectives Identify the major needs and stakeholders for computer networks and network applications. Compare and contrast the OSI

More information

FindMe. Cisco TelePresence Deployment Guide Cisco VCS X6 D

FindMe. Cisco TelePresence Deployment Guide Cisco VCS X6 D FindMe Cisco TelePresence Deployment Guide Cisco VCS X6 D14525.03 February 2011 Contents Contents Document revision history... 3 Introduction... 4 Related documents... 4 Set up FindMe... 5 Create user

More information

Finding Feature Information

Finding Feature Information This module describes how to configure Network Address Translation (NAT) for IP address conservation and how to configure inside and outside source addresses. This module also provides information about

More information

Cisco TelePresence Microsoft Lync 2010, Cisco VCS and Cisco AM GW

Cisco TelePresence Microsoft Lync 2010, Cisco VCS and Cisco AM GW Cisco TelePresence Microsoft Lync 2010, Cisco VCS and Cisco AM GW Deployment Guide Cisco VCS X8.2 Microsoft Lync 2010 Cisco AM GW 1.1 D14652.09 June 2014 Contents Introduction 4 Prerequisites to setting

More information

Method of Procedure for HNB Gateway Configuration on Redundant Serving Nodes

Method of Procedure for HNB Gateway Configuration on Redundant Serving Nodes Method of Procedure for HNB Gateway Configuration on Redundant Serving Nodes First Published: December 19, 2014 This method of procedure (MOP) provides the HNBGW configuration on redundant Serving nodes

More information

The Privileged Appliance and Modules (TPAM) 1.0. Diagnostics and Troubleshooting Guide

The Privileged Appliance and Modules (TPAM) 1.0. Diagnostics and Troubleshooting Guide The Privileged Appliance and Modules (TPAM) 1.0 Guide Copyright 2017 One Identity LLC. ALL RIGHTS RESERVED. This guide contains proprietary information protected by copyright. The software described in

More information

Media Services Proxy Command Reference

Media Services Proxy Command Reference Media Services Proxy Command Reference Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883

More information

Polycom RealConnect for Microsoft Teams

Polycom RealConnect for Microsoft Teams DEPLOYMENT GUIDE Polycom RealConnect for Microsoft Teams August 2018 3725-06679-001A Copyright 2018, Polycom, Inc. All rights reserved. No part of this document may be reproduced, translated into another

More information

ENUM Dialing on Cisco Expressway

ENUM Dialing on Cisco Expressway ENUM Dialing on Cisco Expressway Deployment Guide Cisco Expressway X8.2 D15064.02 June 2014 Contents Introduction 3 Configuring the Expressway 4 Configuring an ENUM zone and search rule 4 Configuring the

More information

Ingate Firewall & SIParator Product Training. SIP Trunking Focused

Ingate Firewall & SIParator Product Training. SIP Trunking Focused Ingate Firewall & SIParator Product Training SIP Trunking Focused Common SIP Applications SIP Trunking Remote Desktop Ingate Product Training Common SIP Applications SIP Trunking A SIP Trunk is a concurrent

More information

Enabling ALGs and AICs in Zone-Based Policy Firewalls

Enabling ALGs and AICs in Zone-Based Policy Firewalls Enabling ALGs and AICs in Zone-Based Policy Firewalls Zone-based policy firewalls support Layer 7 application protocol inspection along with application-level gateways (ALGs) and application inspection

More information