Lantronix EDS1100 Guía de usuario Pagina 100
- Pagina / 157
- Tabla de contenidos
- MARCADORES
Valorado. / 5. Basado en revisión del cliente
11: Security Settings
EDS1100/2100 User Guide 99
Certificates and private keys can be stored in several file formats. Best known are PKCS12, DER
and PEM. Certificate and key can be in the same file or in separate files. The key can be encrypted
with a password or not. The EDS1100/2100 currently only accepts separate PEM files. The key
needs to be unencrypted.
SSL Utilities
Several utilities exist to convert between the formats as follows:
OpenSSL—Open source set of SSL related command line utilities. It can act as server or
client. It can generate or sign certificate requests. It can convert all kinds of formats.
Executables are available for Linux and Windows. To generate a self-signed RSA certificate/
key combo use the following commands in the order shown:
openssl req –x509 –nodes –days 365 –newkey rsa:1024 –keyout
mp_key.pem –out mp_cert.pem
Note: Signing other certificate requests is also possible with OpenSSL. See
www.openssl.org or www.madboa.com/geek/openssl for more information.
Steel Belted Radius—Commercial radius server by Juniper Networks that provides a GUI
administration interface. It also provides a certificate request and self-signed certificate
generator. The self-signed certificate has extension .sbrpvk and is in the PKCS12 format.
OpenSSL can convert this into a PEM format certificate and key by usig the following
commands in the order shown:
openssl pkcs12 -in sbr_certkey.sbrpvk -nodes -out sbr_certkey.pem
The sbr_certkey.pem file contains both certificate and key. If loading the SBR certificate into
EDS1100/2100 as an authority, you will need to edit it. Open the file in any plain text editor.
Delete all info before the following:
“----- BEGIN CERTIFICATE-----“
and after
“----- END CERTIFICATE-----“
and save as sbr_cert.pem. SBR accepts trusted-root certificates in the DER format. Again,
OpenSSL can convert any format into DER by using the following commands in the order
shown:
openssl x509 -inform pem -in mp_cert.pem -outform der -out mp_cert.der
Note: With SBR, when the identity information includes special characters such as
dashes and periods, SBR changes the format it uses to store these strings and becomes
incompatible with the current EDS1100/2100 release. We will add support for this and
other formats in future releases.
Free Radius—Linux open-source Radius server. It is versatile, but complicated to configure.
SSL Configuration
To configure SSL, perform the following steps.
1. Click SSL from the Main Menu. Figure 11-5 shows the page that displays.
- EDS1100/2100 User Guide 1
- Date Rev. Comments 2
- March 2010 A Initial Document 2
- Table of Contents 3
- 4: Installation of EDS2100 25 4
- 5: Using DeviceInstaller 30 4
- 7: Network Settings 37 4
- 10: Services Settings 72 5
- 11: Security Settings 90 5
- 12: VIP 103 5
- 14: Advanced Settings 129 6
- 16: Updating Firmware 146 6
- A: Technical Support 147 6
- C: Compliance 150 7
- Index 153 7
- List of Figures 8
- List of Tables 11
- 1: About This Guide 13
- Conventions 14
- Additional Documentation 14
- 2: Overview 16
- Protocol Support 17
- Evolution OS™ 17
- Software Features 17
- Configuration Methods 19
- Addresses and Port Numbers 20
- Product Information Label 20
- 3: Installation of EDS1100 21
- EDS1100/2100 User Guide 21 22
- Back Panel 23
- Reset Button 23
- Top LEDs 23
- Installing the EDS1100 24
- 4: Installation of EDS2100 26
- Installing the EDS2100 29
- EDS1100/2100 User Guide 29 30
- 5: Using DeviceInstaller 31
- EDS1100/2100 User Guide 31 32
- Accessing Web Manager 33
- Web Manager 34
- Navigating the Web Manager 35
- 7: Network Settings 38
- Network 1 Ethernet Link 40
- EDS1100/2100 User Guide 40 41
- 4. Click Submit 41
- 8: Line and Tunnel Settings 42
- Line Configuration 43
- EDS1100/2100 User Guide 43 44
- Line Command Mode 45
- EDS1100/2100 User Guide 45 46
- Tunnel Settings 47
- Tunnel Statistics 48
- Serial Settings 48
- EDS1100/2100 User Guide 48 49
- Packing Mode 50
- EDS1100/2100 User Guide 50 51
- 4. Click Submit 51
- Accept Mode 52
- EDS1100/2100 User Guide 53 54
- Connect Mode 55
- EDS1100/2100 User Guide 56 57
- EDS1100/2100 User Guide 57 58
- Multiple Hosts 59
- Figure 8-18 Host Mode 60
- Host List Promotion 62
- Disconnect Mode 62
- Modem Emulation 64
- N value of 0—Disable 65
- EDS1100/2100 User Guide 65 66
- EDS1100/2100 User Guide 66 67
- 9: Terminal and Host Settings 68
- Line Terminal Configuration 69
- EDS1100/2100 User Guide 69 70
- Host Configuration 71
- EDS1100/2100 User Guide 71 72
- 10: Services Settings 73
- PPP Configuration 74
- SNMP Configuration 76
- EDS1100/2100 User Guide 76 77
- Table 10-4 TFTP Server Fields 80
- EDS1100/2100 User Guide 80 81
- HTTP Statistics 82
- HTTP Configuration 83
- EDS1100/2100 User Guide 83 84
- HTTP Authentication 85
- Figure 10-10 RSS Web Page 87
- Table 10-8 RSS Fields 87
- LPD Statistics 88
- LPD Configuration 88
- EDS1100/2100 User Guide 88 89
- EDS1100/2100 User Guide 89 90
- EDS1100/2100 User Guide 91 92
- SSH Server Authorized Users 93
- EDS1100/2100 User Guide 93 94
- SSH Client Known Hosts 95
- SSH Client User Configuration 96
- EDS1100/2100 User Guide 96 97
- SSL Cipher Suites 98
- SSL Certificates 99
- SSL RSA or DSA 99
- SSL Utilities 100
- SSL Configuration 100
- 11: Security Settings 101
- EDS1100/2100 User Guide 100 101
- EDS1100/2100 User Guide 101 102
- EDS1100/2100 User Guide 102 103
- Obtain a Bootstrap File 104
- Import the Bootstrap File 104
- Enable VIP 105
- Configure Tunnels to Use VIP 105
- VIP Statistics 105
- VIP Configuration 106
- EDS1100/2100 User Guide 106 107
- 3. Click Submit 107
- Filesystem 108
- Filesystem Browser 109
- EDS1100/2100 User Guide 109 110
- Protocol Stack 112
- Figure 13-4 IP Web Page 113
- Figure 13-5 ICMP Web Page 114
- EDS1100/2100 User Guide 114 115
- IP Address Filter 116
- Query Port 117
- Diagnostics 118
- EDS1100/2100 User Guide 118 119
- IP Sockets 120
- EDS1100/2100 User Guide 120 121
- Traceroute 122
- DNS Lookup 123
- Table 13-7 DNS Lookup Fields 124
- Buffer Pools 125
- Processes 126
- EDS1100/2100 User Guide 126 127
- Field Description 128
- EDS1100/2100 User Guide 128 129
- 14: Advanced Settings 130
- Email Configuration 131
- Command Line Interface 132
- CLI Configuration 133
- EDS1100/2100 User Guide 133 134
- XML Configuration 135
- XML Export Configuration 136
- Export Status 137
- EDS1100/2100 User Guide 137 138
- Import Configuration 139
- EDS1100/2100 User Guide 140 141
- EDS1100/2100 User Guide 141 142
- EDS1100/2100 User Guide 143 144
- 15: Branding the EDS1100/2100 145
- 16: Updating Firmware 147
- A: Technical Support 148
- Conversion Table 149
- Scientific Calculator 150
- C: Compliance 151
- EDS1100/2100 User Guide 153 154
- EDS1100/2100 User Guide 154 155
- EDS1100/2100 User Guide 155 156
- EDS1100/2100 User Guide 156 157
Relacionado con productos y manuales para Servidores De Serie Lantronix EDS1100
Servidores De Serie Lantronix MSS4 Guía de usuario
(81 paginas)
(81 paginas)
Servidores De Serie Lantronix EDS4100 Guía de usuario
(163 paginas)
(163 paginas)
© 2020, manymanuals.es. Todos los derechos reservados | 0.107 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales