Insecure Protocols Unaffected by SIOM
© Copyright Lenovo 2016
The following protocols are deemed "secure" and cannot be disabled in any mode:
NTP Client v4
LDAPS Client
The following protocols are also deemed "secure" on the G8264 and can be
enabled.
IKE
IPSec
The default state for these protocols in Secure Mode, whether enabled or disabled,
is the same as in Legacy Mode.
The following protocols are deemed "secure" but are not currently supported by
the G8264:
EAPoL
SCP
S/MIME
SNMPv3 Manager
TCP command secure mode (Port 6091)
The following protocols are deemed "insecure" but can be enabled in all Security
Policy Modes:
Ping
Ping IPv6
Traceroute
Traceroute IPv6
TFTP IPv6
SNMPv3 IPv6
bootp
Notes:
Telnet IPv6 and TFTP IPv6 are disabled in Secure Mode.
TFTP IPv6 is allowed in Secure Mode for signed image transfers only.
Chapter 8: Secure Input/Output Module
145