VBrick 6000 series Admin Manual page 63

Remote Support Poll
Enable
Remote Support
Server
IWS Server Port
RTSP Server Port
MP4 HTTP
Tunneling Port
Improving Security
You can improve security by (1) blocking unauthorized attempts to login and access a device
and (2) by reducing exposure to malicious software attacks. The most common vulnerability
is related to user accounts and passwords. After a successful installation, you should
immediately change the default passwords. Many attacks come from within an organization
and this helps to minimize the risk. The IWS login is generally secure since it utilizes
encryption techniques to hide usernames and passwords from network spyware.
Malicious software covertly attaches itself to unsuspecting devices. These programs are
generally designed to compromise personal information or to create system havoc. Since the
VBrick appliance uses an industrial-grade operating system, it is less susceptible to malicious
software and unlikely to be a target of programs designed to attack PC-based systems like
Microsoft, Linux, and others. However, you can still take additional steps to minimize risk.
VBrick tries to make installation as simple and quick installation and many features are
automatically enabled by default even though you may not need them. You can selectively
disable unneeded features to reduce vulnerability. Another common problem is Denial of
Service (DoS) attacks. A DoS sends floods of packets to an unsuspecting remote system in an
attempt to disrupt or stop normal operation. These unsuspecting remote systems are typically
discovered using ICMP or ping. It is standard industry practice to block all ICMP and ping
requests from off-net foreign hosts. This is typically done in a centralized location using
router/firewall technology which is more successful and cost effective than resolving the
issue at each host.
VBrick MPEG-4 Appliance Admin Guide
Default = Enabled. The default enables continuous polling through
the firewall. If desired, you can enable polling only when you need
to establish a remote connection. This will not reboot the appliance.
Default =
remote.vbrick.com
defined on the Configuration: Network > Ethernet page. If a DNS
server is not defined, you must enter an IP Address in this field.
Contact Support Services for details.
Specifies the listener port for management and HTTP connections.
Default = 80. When the remote IWS user (client) specifies the http
syntax, the port value is generally omitted. Typically port 80 is the
default value used by browsers. As a matter of consistency, the
VBrick default IWS Server Port value is also defaulted to 80. To
access a different HTTP port, the remote IWS client user would
specify the URL as follows:
IPaddress = VBrick IP address or hostname, and port. This feature
is often useful for an MPEG-4 system, where HTTP tunneling is
used to traverse firewalls. The IWS server port is moved to another
location (ex. 8080) and the HTTP Tunneling port is set to 80.
Specifies the listener port for RTSP connections. Default = 554.
Specifies the port used for HTTP Tunneling. This feature allows
RTSP connections to be sent as TCP rather than UDP, it is
recommended to use port 80 when doing this. Default = 8080.
Note that the MPEG4 encoder supports tunneling, as do
StreamPlayer and Quicktime. However the MPEG-4 decoder does
not support HTTP tunneling.
MPEG-4 Configuration
. Use the default if a DNS server is
where
http://IPaddress:port
53