To Next Page

To Previous Page

Chapter6TOESUMMARYSPECIFICATION

Subjectandinformationsecurityattributesusedare:

1.[Sourcesubjectsecurityattributes:sourcenetworkidentier;and

2.Destinationsubjectsecurityattributes:

a.IPaddressofSYSLOGserver;

b.UDPportusedtosendtheSYSLOGmessage;

c.SYSLOGFacilityCode;

d.SYSLOGSeverityThreshold;

e.Setofdestinationnetworkidentiers;

f.IPaddressoftheSNMPtrapreceiver;

g.UDPportusedtosendtheSNMPtrap;

h.SNMPv3usedtoformattheSNMPnotication;and

i.SecuritynameandlevelforSNMPv3trapreceivers

ForSNMPtrapssentpacketthroughtheportoftheTOE,thesourceIPaddressofthetrap

istheportIPaddressoftheTOE.

TheSYSLOGprotocolisusedtoconveyeventnoticationmessages.Parametersare

denedidentiedinRFC3164TheSYSLOGProtocolwhichdescribestheformatofa

SYSLOGmessage.

TheTOEshallpermitthelogdatatobeexportedtotheSNMP/SYSLOGserverwhenthe

destinationIPaddressandportofthelogpacketsmatchtheconguredserverinformation.

lFDP_UIT.1Dataexchangeintegrity

TheTOEtransmitsandreceivesroutingdata(RIPv2,OSPFv2mode2,IS-ISandBGPv4)

to/fromtrustedroutersinthemannerofprotectingtheroutinginformationfrommodication.

6.1.6TrustedChannel

TheTOEprovidesecurechannelforRADIUS/TACACS+server,NTPserverandthe

remoteterminaltoconnecttotheTOE.

lFTP_ITC.1

TheTSFshallprovideacommunicationchannelbetweenitselfandaremote

administrationclient.SecureremoteadministrationisprovidedbySSH.The

communicationbetweenTOEandRADIUS/TACACS+/NTPserverisprotectedbythe

trustedchannel.

6-9

SJ-20110815105844-030|2011/08/19（R1.6）ZTECORPORATION

Zte ZXR10 M6000 Series User Manual

Questions and Answers: