About Management Interface and Security
About Management Interface and Security
The SCE platform is equipped with two RJ-45 management (MNG) ports. These ports provide access
from a remote management console to the SCE platform via a LAN.
The two management ports support management interface redundancy, providing the possibility for a
backup management link.
In addition to the Layer 1 security of a backup management link, the Service Control platform provides
a further management interface security feature; an IP filter that monitors for various types of TCP/IP
attacks. This filter can be configured with thresholds rates both for defining an attack and defining the
end of an attack.
The second management port is reflected in all objects related to it in the SNMP interface.
Note
Perform the following tasks to configure the management interface and management interface security:
•
•
Configuring the Management Ports
Perform the following tasks to configure the management ports:
•
•
•
•
To configure the system with management interface redundancy, see
Redundancy, page 5-7
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
5-2
Configure the management port:
–
Physical parameters
–
Specify active port (if not redundant installation)
–
Redundancy (if redundant installation)
Configure management interface security
Enable IP fragment filtering
–
Configure the permitted and not-permitted IP address monitor
–
Configure the IP address and subnet mask (only one IP address for the management interface, not
one IP address per port).
Configure physical parameters:
Duplex
–
Speed
–
Configure redundant management interface behavior (optional):
Fail-over mode
–
If fail-over mode is disabled, specify the active port (optional).
Configuring the Management Ports for Redundancy.
Chapter 5
Configuring the Management Interface and Security
Configuring Management Interface
OL-7827-12