Configuration - D-Link xStack DGS-3324SRi User Manual
Layer 3 stackable gigabit ethernet switch
Hide thumbs
Also See for xStack DGS-3324SRi:
- User manual (363 pages) ,
- Command line interface reference manual (357 pages) ,
- User manual (208 pages)
Table of Contents
Advertisement
xStack DGS/DXS-3300 Series Layer 3 Stackable Gigabit Ethernet Switch User Manual
Configuration
This screen will allow the user to enable SSL on the Switch and implement any one or combination of listed ciphersuites
on the Switch. A ciphersuite is a security string that determines the exact cryptographic parameters, specific encryption
algorithms and key sizes to be used for an authentication session. The Switch possesses four possible ciphersuites for the
SSL function, which are all enabled by default. To utilize a particular ciphersuite, disable the unwanted ciphersuites,
leaving the desired one for authentication.
When the SSL function has been enabled, the web will become disabled. To manage the Switch through the web based
management while utilizing the SSL function, the web browser must support SSL encryption and the header of the URL
must begin with https://. (Ex. https://10.90.90.90) Any other method will result in an error and no access can be authorized
for the web-based management.
To view the following window, click Security Management > Secure Socket Layer (SSL) > Configuration:
To set up the SSL function on the Switch, configure the following parameters and click Apply.
Parameter
SSL Status
Cache Timeout (60-
86400)
RSA with RC4 128
MD5
RSA with 3DES EDE
CBC SHA
DHS DSS with 3DES
EDE CBC SHA
RSA EXPORT with
RC4 40 MD5
Figure 7- 22. Ciphersuite window
Description
Use the pull-down menu to enable or disable the SSL status on the switch. The
default is Disabled.
This field will set the time between a new key exchange between a client and a host
using the SSL function. A new SSL session is established every time the client and
host go through a key exchange. Specifying a longer timeout will allow the SSL
session to reuse the master key on future connections with that particular host,
therefore speeding up the negotiation process. The default setting is 600 seconds.
This ciphersuite combines the RSA key exchange, stream cipher RC4 encryption with
128-bit keys and the MD5 Hash Algorithm. Use the pull-down menu to enable or
disable this ciphersuite. This field is Enabled by default.
This ciphersuite combines the RSA key exchange, CBC Block Cipher 3DES_EDE
encryption and the SHA Hash Algorithm. Use the pull-down menu to enable or disable
this ciphersuite. This field is Enabled by default.
This ciphersuite combines the DSA Diffie Hellman key exchange, CBC Block Cipher
3DES_EDE encryption and SHA Hash Algorithm. Use the pull-down menu to enable
or disable this ciphersuite. This field is Enabled by default.
This ciphersuite combines the RSA Export key exchange and stream cipher RC4
encryption with 40-bit keys. Use the pull-down menu to enable or disable this
ciphersuite. This field is Enabled by default.
Configuration
Ciphersuite
229
- Quick Links:
- User Manual
- Web-Based Management Interface
Hide quick links:
Advertisement
Table of Contents
