To Next Page

To Previous Page

ZXR10M6000&T8000&8900ESecurityTarget

addressesonlytheclient-sidesupportofRADIUSandTACACS+:theservers

themselvesareout-of-scope.

lProles:Administratorprolesareconguredtopermitordenyaccesstoa

hierarchicalbranchorspeciccommands.

lAudit:TheTOEprovidesanauditfeatureforactionsrelatedtoauthenticationattempts

andadministratoractions

lManagement:TheTOEoffersadministratorsthecapabilitytoconguretheTOE

(primarilythepacketowhandlingandauditfeatures).

lMitigateDoSattacksthroughuseofreal-timestatisticscapabilitiesandURPF(Unicast

ReversePathForwarding)

1.4.3EvaluatedConfiguration

TheTOEhasmanyfeaturesthatcanbeconguredtobeonoroff.Thetablebelowlists

thesefeaturesandshowswhethertheyare:

lEvaluated:thismeansthatthefeaturecanbeenabled,anditwillworksecurely.

lNotPermitted:thismeansthatthefeaturemaynotbeenabled,asthiswillendanger

thesecurityoftheentireTOE.

lNotEvaluated:thismeansthatthefeaturecanbeenabled,thatenablingthisfeature

willnotendangerthesecurityoftheotherfeatures,buttheevaluationhasnot

determinedwhetherthefeatureitselfwillworksecurely.

Table1-2EvaluatedConguration

FeatureDescriptionEvaluatedNot

Permitted

Not

Evaluated

AAATACACS+RADIUS(Remote

AccessDial-InUserService)

ACLAccesscontrollists.×

DHCPDynamicHostControlProtocol

(DHCP)enablesyouto

automaticallyassignreusable

IPaddressestoDHCPclients.

IGMP××

IPv6××

MediaTypes

(non-Ethernet)

ADSL,ATM,FrameRelay,ISDN,

MPLS,PPP ,PPPoE,SDH,and

SONET.

NATNetworkAddressTranslationis

usedbyadevice(rewall,router

orcomputer)thatsitsbetweenan

internalnetworkandtherestofthe

world.

1-8

SJ-20110815105844-030|2011/08/19（R1.6）ZTECORPORATION

Brand	Zte
Model	ZXR10 M6000 Series
Category	Network Router
Language	English

Zte ZXR10 M6000 Series User Manual

Table of Contents

Questions and Answers:

Zte ZXR10 M6000 Series Specifications

Related product manuals