WHITE PAPER
Copyright © 2004 Avocent. All rights reserved.
Feature Description/Benefit
The CCM appliance history feature may be configured for AUTO
mode, which automatically displays the contents of the history
buffer to a user when he connects to a CCM appliance port. The
feature may alternately be configured for HOLD mode, in which
case a user will be informed that the history buffer contains N
bytes of data, however, the data will not automatically be
displayed. In HOLD mode, the user may issue the PORT
HISTORY command to view the contents of the history buffer. A
round-robin 64K buffer is maintained per port. The PORT
HISTORY mode provides advanced search capabilities to locate
specific strings, such as 'login', or 'panic'.
The CCM appliance history feature may be configured for
CLEAR mode, which flushes the history buffer upon termination
of a port connection. Conversely, the CCM appliance may be set
up for KEEP mode, in which case the contents of the history
buffer will remain intact upon termination of a session. KEEP
mode is useful should it be necessary to view activities that
occurred on a previous session.
The CCM appliance includes an on-board SSH v2 server. When
an SSH session is established, the CCM appliance will
automatically use the highest level of encryption supported by
the client, which is typically AES-256 bit encryption. It is possible
to establish an SSH session directly to the CLI of the CCM
appliance for management purposes, or to establish a session
directly to a port. The SSH socket assigned to a specific port is
3100 plus the physical port number.
The base SSH socket may be reconfigured from 3100 to any
valid socket number. Changing socket numbers helps to reduce
the likelihood of intrusion from web bots that are designed to
probe for commonly used ports. Likewise, the base address of
Telnet ports, which is 3000 plus the physical port number, may
be changed for this reason.
SSH host keys are supported by the CCM appliance. These keys
provide assurance to an SSH client that the CCM appliance has
not been replaced with an unauthorized device.
SSH user keys ensure that the user is who he claims to be. The
user must have access to the keyfile and must know the
passcode to the file in order to connect to a device through the
CCM appliance, if the CCM appliance is configured for key-
based authentication.
SSH port forwarding allows non-secure Telnet clients to access
servers attached to a CCM appliance in a secure manner even
across non-secure networks.
The CCM appliance includes a RADIUS client, which, if enabled,
forwards user credentials to a RADIUS server for authentication.
The RADIUS server will return a grant or denial along with a
string that represents the access rights of the user. Using
RADIUS, it is possible to consolidate user accounts into a
single database, thereby easing the task of making timely
changes as needed.
Port History
Session Start
Sessions End
SSH
Encryption
Configurable Sockets
Host key
User Key
Port Forwarding
RADIUS
Central Database
12
(48 pages)
(575 pages)
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Commentaires sur ces manuels