Enabling Management Service Options For Interfaces - Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING SCREENOS DEVICES GUIDE REV 01 Manual
Configuring screenos devices guide
Hide thumbs
Also See for NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING SCREENOS DEVICES GUIDE REV 01:
- Manual (340 pages) ,
- Administration manual (1026 pages) ,
- Installation manual (244 pages)
Table of Contents
Advertisement
Configuring ScreenOS Devices Guide
Related
Documentation
Enabling Management Service Options for Interfaces
Table 22: Management Service Options
Service Options
Web
Telnet
SSH
56
Enable Webauth—Select this option to enable device administrators to authenticate
management connections to the device using WebAuth.
WebAuth IP—Enter the IP address of the WebAuth service on the interface.
Allow Webauth via SSL only (ScreenOS 5.1 and later only)—Select this option to
require WebAuth users to use SSL when connecting to the WebAuth IP address on
a device running ScreenOS 5.1 and later. When this option is disabled, device
administrators can access the WebAuth IP address of the interface using clear text.
NOTE: When you enable WebAuth, you must also enable SSL as a service
option for the interface. For details, see "Enabling Management Service
Options for Interfaces" on page 56.
Gratuitous ARP—To avoid G-ARP attacks by allowing users to enable or disable
G-ARP on devices running on ScreenOS 6.1 or later.
Deny Routing.
Port Settings.
Proxy ARP Entry—Import ARP traffic to the correct VSI by allowing the administrator
to set the proxy ARP entry with lower and upper IP addresses. By adding a proxy ARP
entry on an interface, ScreenOS imports the traffic that is destined to the IP range using
this interface.
Interface Network Address Translation Using VIPs on page 65
Interface Network Address Translation Using DIPs on page 67
Enable management service options for the interface as described in Table 22 on page 56.
Your Action
Select this option to enable the interface to receive HTTP traffic for management from
the Web UI.
Select this option to enable Telnet manageability. A terminal emulation program for
TCP/IP networks such as the Internet, Telnet is a common way to remotely control
network devices.
Administer the security device from an Ethernet connection or a dial-in modem using
SSH. You must have an SSH client that is compatible SSHv1.5. These clients are available
for Windows 95 and later, Windows NT, Linux, and UNIX. The security device
communicates with the SSH client through its built-in SSH server, which provides device
configuration and management services. Selecting this option enables SSH
manageability.
Copyright © 2010, Juniper Networks, Inc.
Advertisement
Table of Contents
