Cisco 3002 - VPN Hardware Client Guía de usuario Pagina 79
- Pagina / 220
- Tabla de contenidos
- SOLUCIÓN DE PROBLEMAS
- MARCADORES
Valorado. / 5. Basado en revisión del cliente
Configuration | System | Management Protocols | SSL
8-11
VPN 3002 Hardware Client User Guide
RC4-40/MD5 Export = RC4 encryption with a 128-bit key—40 bits of which are private—and the MD5
hash function. This option is available in the export (non-U.S.) versions of many SSL clients.
DES-40/SHA Export = DES encryption with a 56-bit key—40 bits of which are private—and the
SHA-1 hash function. This option is available in the export (non-U.S.) versions of many SSL
clients.
Client Authentication
This parameter applies to HTTPS only; it is ignored for Telnet/SSL.
Check the box to enable SSL client authentication. The box is not checked by default. In the most
common SSL connection, the client authenticates the server, not vice-versa. Client authentication
requires personal certificates installed in the browser, and trusted certificates installed in the server.
Specifically, the VPN 3002 must have a root CA certificate installed; and a certificate signed by one of
the VPN 3002’s trusted CAs must be installed in the Web browser. See
Administration | Certificate
Management
.
SSL Version
Click the drop-down menu button and select the SSL version to use. SSL Version 3 has more security
options than Version 2, and TLS (Transport Layer Security) Version 1 has more security options than
SSL Version 3. Some clients that send an SSL Version 2 “Hello” (initial negotiation), can actually use a
more secure version during the session. Telnet/SSL clients usually can use only SSL Version 2.
Choices are:
Negotiate SSL V2/V3 = The server tries to use SSL Version 3 but accepts Version 2 if the client can’t
use Version 3. This is the default selection. This selection works with most browsers and Telnet/SSL
clients.
SSL V3 with SSL V2 Hello = The server insists on SSL Version 3 but accepts an initial Version 2
“Hello.”
SSL V3 Only = The server insists on SSL Version 3 only.
SSL V2 Only = The server insists on SSL Version 2 only. This selection works with most Telnet/SSL
clients.
TLS V1 Only = The server insists on TLS Version 1 only. At present, only Microsoft Internet Explorer
5.0 supports this option.
TLS V1 with SSL V2 Hello = The server insists on TLS Version 1 but accepts an initial SSL Version 2
“Hello.” At present, only Microsoft Internet Explorer 5.0 supports this option.
Generated Certificate Key Size
Click the drop-down menu button and select the size of the RSA key that the VPN 3002 uses in its
self-signed (generated) SSL server certificate. A larger key size increases security, but it also increases
the processing necessary in all transactions over SSL. The increases vary depending on the type of
transaction (encryption or decryption).
Choices are:
512-bit RSA Key = This key size provides sufficient security. It is the most common, and requires the
least processing.
- VPN 3002 Hardware Client 1
- User Guide 1
- CONTENTS 3
- 5Servers 4
- 6 Tunneling 4
- 7IP Routing 4
- 8 Management Protocols 4
- 9 Events 4
- 10 General 5
- 11 Policy Management 5
- Contents—Table of contents 8
- Contents 9
- About this manual 11
- Additional documentation 12
- Obtaining documentation 13
- Documentation feedback 14
- Cisco.com 14
- Technical Assistance Center 14
- Other references 15
- Documentation conventions 16
- Data formats 16
- Filenames 17
- Port numbers 17
- Browser requirements 19
- Navigation toolbar 20
- Install SSL Certificate link 22
- Next to continue 24
- Security Alert screen 26
- Reinstallation 28
- First-time installation 28
- Title bar 37
- Status bar 37
- Mouse pointer and tips 38
- Top frame (Manager toolbar) 38
- Support 39
- Save Needed 39
- Main frame (Manager screen) 40
- Interfaces 45
- Subnet Mask 47
- MAC Address 48
- DHCP Client 49
- 3 Interfaces 50
- System Configuration 51
- Primary DNS Server 54
- Secondary DNS Server 54
- Tertiary DNS Server 54
- Timeout Period 55
- Timeout Retries 55
- Tunneling 57
- Peer Address 59
- Use Certificate 59
- IP Routing 61
- Static Routes 62
- Add / Modify / Delete 62
- Add or Modify 63
- Destination 64
- Add or Apply / Cancel 64
- Default Gateway 65
- Lease Timeout 66
- Address Pool Start/End 66
- DHCP Option 67
- Management Protocols 69
- Enable HTTP 70
- Enable Telnet 72
- Enable Telnet/SSL 72
- Telnet Port 72
- Telnet/SSL Port 72
- Maximum Connections 73
- Maximum Queued Requests 74
- SNMP Communities 75
- Communities 76
- Community String 77
- Encryption Protocols 78
- Client Authentication 79
- SSL Version 79
- Enable SSH 81
- Enable SSH on Public 81
- SSH Port 81
- Maximum Sessions 81
- Key Regeneration Period 81
- Event class 83
- (*Cisco-specific event class) 85
- Event severity level 86
- Event log 87
- Syslog Format 88
- Severity to Log 89
- Severity to Console 89
- Severity to Syslog 89
- Severity to Trap 89
- Configured Event Classes 90
- Class Name 91
- Trap Destinations 93
- Community 95
- Syslog Servers 96
- Syslog Server 97
- Facility 97
- System Name 100
- Location 100
- Apply / Cancel 100
- Current Time 101
- New Time 101
- Enable DST Support 101
- Policy Management 103
- Network Extension mode 104
- Traffic Management 105
- Management 106
- PAT 106
- Administration 109
- 12 Administration 110
- Current Software Revision 111
- Browse 111
- Upload / Cancel 111
- Software Update Progress 112
- Software Update Success 112
- Software Update Error 112
- Configuration 114
- When to Reboot/Shutdown 114
- Administration 115
- Error (Ping) 116
- Administrator 117
- Password 118
- Session Idle Timeout 119
- Session Limit 119
- Encrypt Config File 119
- View Files 120
- Swap Config Files 120
- Config File Upload 120
- OK / Cancel 121
- Local Config File / Browse 122
- File Upload Progress 122
- File Upload Success 123
- File Upload Error 123
- Common Name (CN) 125
- Organizational Unit (OU) 126
- Organization (O) 126
- Request Generated 128
- Certificate Type 129
- Certificate Password 130
- Local File / Browse 130
- Certificate Text 130
- Certificate Authorities 131
- Identity Certificates 131
- Subject / Issuer 131
- Expiration 132
- Actions/View/Delete 132
- Serial Number 133
- Signing Algorithm 133
- Yes / No 135
- Monitoring 137
- Monitoring 138
- Next Hop 139
- Interface 139
- Protocol 139
- Select Filter Options 140
- First Page 141
- Previous Page 141
- Next Page 141
- Last Page 141
- Get Log 142
- Clear Log 142
- Event log format 142
- Monitoring 144
- Monitoring 145
- 13 Monitoring 146
- Tunnel Established to: 147
- Duration: 147
- Security Associations: 147
- Front Panel 148
- Back Panel 148
- Monitoring 150
- IKE (Phase 1) Statistics 151
- IPSec (Phase 2) Statistics 154
- Max Connections 158
- Active Sessions 158
- Attempted Sessions 158
- Successful Sessions 158
- Monitoring 159
- Monitoring 160
- Monitoring 163
- Broadcast In 166
- Broadcast Out 166
- TCP Segments Received 166
- TCP Segments Transmitted 166
- -1 means there 167
- UDP Datagrams Received 168
- UDP Datagrams Transmitted 168
- UDP Errored Datagrams 168
- UDP No Port 168
- 0.0.0.0) and 169
- Total Received / Transmitted 171
- Errors Received / Transmitted 171
- Physical Address 174
- IP Address 174
- Mapping Type 174
- Action / Delete 174
- Alignment Errors 175
- FCS Errors 175
- Carrier Sense Errors 175
- Speed (Mbps) 177
- Requests Received 177
- Bad Version 177
- Bad Community String 178
- Parsing Errors 178
- Silent Drops 178
- Proxy Drops 178
- Accessing the CLI 179
- Starting the CLI 180
- Using the CLI 181
- Using shortcut numbers 182
- Using Back and Home 183
- Getting Help Information 184
- CLI menu reference 185
- Main menu 186
- 1 Configuration 186
- 2 Administration 188
- 2.3 Ping 189
- 3 Monitoring 192
- 3.2 Monitoring > Event Log 193
- Errors and troubleshooting 195
- LED indicators 196
- Errors on the system 197
- A Errors and troubleshooting 198
- Command Line Interface errors 204
- Ownership of the Software 205
- Grant of License 205
- Limited Warranty 206
- Other licenses 207
- DHCP client 208
- DNS Resolver (client) 208
- LZS221-C v6 210
- MPPC-C v4 210
- RSA software 211
- SecureID 211
- Server SNMP 211
- Client SNMP 212
- SSL Plus 212
- Telnet server 213
- CRSHDUMP.TXT file A-1 216
Relacionado con productos y manuales para Redes Cisco 3002 - VPN Hardware Client
Redes Cisco 827 - 827 Router - EN Manual de usuario
(35 paginas)
(35 paginas)
Redes Cisco 5428 - SN Router Información técnica
(572 paginas)
(572 paginas)
Redes Cisco WPC54GS Guía de usuario
(83 paginas)
(83 paginas)
Redes Cisco 10700 Guía de usuario
(602 paginas)
(602 paginas)
Redes Cisco ME 3800X Especificaciones
(622 paginas)
(622 paginas)
Redes Cisco uBR7100 Series Manual de usuario
(12 paginas)
(12 paginas)
Redes Cisco 2524 - Router - EN Guía de usuario
(30 paginas)
(30 paginas)
Redes Cisco Aironet 340 Series Especificaciones
(362 paginas)
(362 paginas)
Redes Cisco 867W Manual de usuario
(59 paginas)
(59 paginas)
Redes Cisco 1900 series Información técnica
(10 paginas)
(10 paginas)
Redes Cisco 7400 series Guía de usuario
(12 paginas)
(12 paginas)
Redes Cisco 7576 Manual de usuario
(26 paginas)
(26 paginas)
Redes Cisco WRT610N Manual de usuario
(3 paginas)
(3 paginas)
Redes Cisco 804 - 804 Router Manual de usuario
(4 paginas)
(4 paginas)
Redes Cisco IPS 7.1 Guía de instalación
(422 paginas)
(422 paginas)
Redes Cisco SMTP Manual de usuario
(3 paginas)
(3 paginas)
Redes Cisco 815 Manual de usuario
(8 paginas)
(8 paginas)
Redes Cisco WRT54GC Guía de usuario
(83 paginas)
(83 paginas)
© 2020, manymanuals.es. Todos los derechos reservados | 0.050 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales