Table of Contents
Advertisement
With cyberattacks growing in number and sophistication, network device vendors are adding functions
geared towards protecting sensitive business and personal information. Moxa has dedicated itself in this
area by developing measure to make sure all the products can and will meet the security standard, so
customers will use Moxa's product without too much to worry about. There are certain details that Moxa
cannot do alone; customers and Moxa need to work together to build up a much secured environment to
defend against all kinds of cyberthreats. This chapter introduces the essential steps to enhance the
cybersecurity of Moxa's products. Customers may need to refer to other sections in the user manual for
exact settings or commands.The following topics are covered in this chapter:
Updating Firmware
When a customer buys a product from Moxa or reseller, Moxa may have already pushed out a newer version
of firmware and that is likely to have enhanced the security features included. It is suggested to always
update to latest firmware. Please check with Moxa's support website for further details.
Turn Off Unused Service and Ports
Imagine living in a house that has many entrances. If all the doors and windows are left unlocked or even
open, it sends a message of welcoming to intruders out there. It is always recommended to turn off services
and ports that are not in use to reduce the chances of being attacked.
Turn Off Moxa Service After Installation
Moxa Service is extremely helpful for first-time installation as it helps the device to be discovered in a local
area network (LAN). Once the installation is completed, this service should be turned off for safety reasons;
however, once it is turned off, a utility such as Moxa's DSU (Device Search Utility) is no longer seeking for
the device, and only by the IP and login with username and password will have the access to the product.
Turn On Services That Are Necessary
There are services that were designed some while ago, but then cybersecurity wasn't much of an issue,
therefore the design's considerations didn't quite cover cybersecurity. Below is a list of services that are
recommended to turn on only when necessary:
HTTP/HTTPS: If the web console is required to access the product, it is recommend to use HTTPS over HTTP
Telnet: Only enable Telnet if command line is required to manage the product
SNMP: If using Simple Network Management Protocol for remote device monitoring and management, this
should be turned on. It is strongly advised to change the default community name once enabled and also
set SNMP to send a trap if authentication failures happen.
NOTE
Once all the settings are configured according to your needs, remember to save and restart the device so
that all the new settings are effective.Remember to export your settings.
NPort 5000 Series User Manual
3. Cybersecurity Considerations
63
Hide quick links:
Advertisement
Table of Contents
