CommandCenter Secure Gateway - Admin Guide - Version ... - Raritan

More documents

Recommendations

Info

Appendix B: CC-SG and Network Configuration Port Number Protocol Purpose Details 51000 TCP SX Target Access (Direct Mode) AES-128/AES-256 encrypted if configured. Possible exceptions to the required open ports: Port 80 can be closed if all access to the CC-SG is via HTTPS addresses. Ports 5000 and 51000 can be closed if CC-SG Proxy mode is used for any connections from the firewall(s). CC-SG Communication Channels Each communication channel is documented. For each communication channel, the table includes: • The symbolic IP Addresses used by the communicating parties. These addresses must be allowed over any communication path between the entities. • The Direction in which the communication is initiated. This may be important for your particular site policies. For a given CC-SG role, the path between the corresponding communicating parties must be available and for any alternate re-route paths that might be used in the case of a network outage. • The Port Number and Protocol used by CC-SG. • Whether the port is Configurable, which means the Admin Client or Diagnostic Console provides a field where you can change the port number to a different value from the default listed if there are conflicts with other applications on the network or for security reasons. • Details about the method of communication, the message that is passed via the communication channel, or its encryption. CC-SG and Raritan Devices A main role of CC-SG is to manage and control Raritan devices, such as Dominion KX II. Typically, CC-SG communicates with these devices over a TCP/IP network (local, WAN, or VPN) and both TCP and UDP protocols are used as follows: Communication Direction Port Number Protocol Configurable? Details CC-SG to Local Broadcast 5000 UDP yes heartbeat CC-SG to Remote LAN IP 5000 UDP yes heartbeat 280
Appendix B: CC-SG and Network Configuration Communication Direction Port Number Protocol Configurable? Details CC-SG to Raritan Device 5000 TCP yes RDM protocol Raritan Device to CC-SG 5001 UDP no heartbeat CC-SG to Dominion PX 623 UDP no RC4/AES-128/AES- 256 encrypted CC-SG Clustering When the optional CC-SG clustering feature is used, the following ports must be available for the inter-connecting sub-networks. If the optional clustering feature is not used, none of these ports has to be open. Each CC-SG in the cluster may be on a separate LAN. However, the inter-connection between the units should be very reliable and not prone to periods of congestion. Communication Direction Port Protocol Configurable? Details Number CC-SG to Local Broadcast 10000 UDP no heartbeat CC-SG to Remote LAN IP 10000 UDP no heartbeat CC-SG to CC-SG 5432 TCP no From HA-JDBC on Primary to Backup PostgreSQL DB server. Not encrypted. CC-SG to CC-SG 8732 TCP no Primary-Backup server sync clustering control data exchange. MD5 encrypted. CC-SG to CC-SG 3232 TCP no Primary-Backup SNMP sync configuration changes forwarding. Not encrypted. 281
Page 1 and 2:
CommandCenter Secure Gateway Admini
Page 3 and 4:
Contents What's New in the CC-SG Ad
Page 5 and 6:
Contents Edit a Blade Chassis Devic
Page 7 and 8:
Contents Edit a Node Group.........
Page 9 and 10:
Contents Hide or Show Report Filter
Page 11 and 12:
Contents Access Control List.......
Page 13 and 14:
Contents Appendix C User Group Priv
Page 15 and 16:
What's New in the CC-SG Administrat
Page 17 and 18:
How-To: CC-SG Essentials This secti
Page 19 and 20:
How-To: CC-SG Essentials 6. Click O
Page 21 and 22:
How-To: CC-SG Essentials Power Stat
Page 23:
How-To: CC-SG Essentials b. Click A
Page 26 and 27:
Chapter 1: Introduction Terminology
Page 28 and 29:
Chapter 1: Introduction Ports - con
Page 30 and 31:
Chapter 2: Accessing CC-SG JRE Inco
Page 32 and 33:
Chapter 2: Accessing CC-SG CC-SG Ad
Page 34 and 35:
Chapter 3 Getting Started Upon the
Page 36 and 37:
Chapter 3: Getting Started 2. Selec
Page 38 and 39:
Chapter 4: Configuring CC-SG with G
Page 40 and 41:
Page 42 and 43:
Page 44 and 45:
Page 46 and 47:
Chapter 5: Associations, Categories
Page 48 and 49:
Chapter 5: Associations, Categories
Page 50 and 51:
Chapter 6 Devices, Device Groups, a
Page 52 and 53:
Chapter 6: Devices, Device Groups,
Page 54 and 55:
Page 56 and 57:
Page 58 and 59:
Page 60 and 61:
Page 62 and 63:
Page 64 and 65:
Page 66 and 67:
Page 68 and 69:
Page 70 and 71:
Page 72 and 73:
Page 74 and 75:
Page 76 and 77:
Page 78 and 79:
Page 80 and 81:
Page 82 and 83:
Page 84 and 85:
Page 86 and 87:
Page 88 and 89:
Chapter 7: Managed Powerstrips Conf
Page 90 and 91:
Chapter 7: Managed Powerstrips Dele
Page 92 and 93:
Chapter 7: Managed Powerstrips Conf
Page 94 and 95:
Chapter 7: Managed Powerstrips 2. S
Page 96 and 97:
Chapter 8: Nodes, Node Groups, and
Page 98 and 99:
Page 100 and 101:
Page 102 and 103:
Page 104 and 105:
Page 106 and 107:
Page 108 and 109:
Page 110 and 111:
Page 112 and 113:
Page 114 and 115:
Page 116 and 117:
Page 118 and 119:
Page 120 and 121:
Page 122 and 123:
Page 124 and 125:
Page 126 and 127:
Page 128 and 129:
Page 130 and 131:
Page 132 and 133:
Page 134 and 135:
Chapter 9: Users and User Groups Th
Page 136 and 137:
Chapter 9: Users and User Groups Ad
Page 138 and 139:
Chapter 9: Users and User Groups De
Page 140 and 141:
Chapter 9: Users and User Groups
Page 142 and 143:
Chapter 9: Users and User Groups De
Page 144 and 145:
Chapter 9: Users and User Groups 2.
Page 146 and 147:
Chapter 10: Policies for Access Con
Page 148 and 149:
Chapter 10: Policies for Access Con
Page 150 and 151:
Chapter 11 Custom Views for Devices
Page 152 and 153:
Chapter 11: Custom Views for Device
Page 154 and 155:
Page 156 and 157:
Page 158 and 159:
Chapter 12: Remote Authentication 3
Page 160 and 161:
Page 162 and 163:
Page 164 and 165:
Chapter 12: Remote Authentication F
Page 166 and 167:
Chapter 12: Remote Authentication
Page 168 and 169:
Chapter 12: Remote Authentication S
Page 170 and 171:
Chapter 12: Remote Authentication L
Page 172 and 173:
Chapter 12: Remote Authentication O
Page 174 and 175:
Page 176 and 177:
Chapter 13: Reports View Report Det
Page 178 and 179:
Chapter 13: Reports 2. Set the date
Page 180 and 181:
Chapter 13: Reports Availability Re
Page 182 and 183:
Chapter 13: Reports Device Asset Re
Page 184 and 185:
Chapter 13: Reports Node Asset Repo
Page 186 and 187:
Chapter 13: Reports 3. In the AD Us
Page 188 and 189:
Chapter 14 System Maintenance In Th
Page 190 and 191:
Chapter 14: System Maintenance •
Page 192 and 193:
Chapter 14: System Maintenance a. C
Page 194 and 195:
Chapter 14: System Maintenance Opti
Page 196 and 197:
Chapter 14: System Maintenance Upgr
Page 198 and 199:
Chapter 14: System Maintenance In F
Page 200 and 201:
Chapter 14: System Maintenance 2. C
Page 202 and 203:
Chapter 15: Advanced Administration
Page 204 and 205:
Page 206 and 207:
Page 208 and 209:
Page 210 and 211:
Page 212 and 213:
Page 214 and 215:
Page 216 and 217:
Page 218 and 219:
Page 220 and 221:
Page 222 and 223:
Page 224 and 225:
Page 226 and 227:
Page 228 and 229:
Page 230 and 231:
Page 232 and 233:
Page 234 and 235:
Page 236 and 237:
Page 238 and 239:
Page 240 and 241:
Page 242 and 243:
Page 244 and 245:
Page 246 and 247:
Page 248 and 249:
Page 250 and 251:
Page 252 and 253:
Page 254 and 255: Chapter 15: Advanced Administration
Page 256 and 257: Chapter 15: Advanced Administration
Page 258 and 259: Chapter 16 Diagnostic Console The D
Page 260 and 261: Chapter 16: Diagnostic Console 2: A
Page 262 and 263: Chapter 16: Diagnostic Console Info
Page 264 and 265: Chapter 16: Diagnostic Console Stat
Page 266 and 267: Chapter 16: Diagnostic Console The
Page 268 and 269: Chapter 16: Diagnostic Console Edit
Page 270 and 271: Chapter 16: Diagnostic Console 3. T
Page 272 and 273: Chapter 16: Diagnostic Console Use
Page 274 and 275: Chapter 16: Diagnostic Console Alth
Page 276 and 277: Chapter 16: Diagnostic Console 3. C
Page 278 and 279: Chapter 16: Diagnostic Console Note
Page 280 and 281: Chapter 16: Diagnostic Console 2. E
Page 282 and 283: Chapter 16: Diagnostic Console 2. E
Page 284 and 285: Chapter 16: Diagnostic Console Opti
Page 286 and 287: Chapter 16: Diagnostic Console Pass
Page 288 and 289: Chapter 16: Diagnostic Console Conf
Page 290 and 291: Chapter 16: Diagnostic Console Disp
Page 292 and 293: Chapter 16: Diagnostic Console d. A
Page 294 and 295: Chapter 16: Diagnostic Console 2. C
Page 296 and 297: Chapter 16: Diagnostic Console 4. S
Page 298 and 299: Chapter 16: Diagnostic Console Take
Page 300 and 301: Appendix A Specifications for V1 an
Page 302 and 303: Appendix A: Specifications for V1 a
Page 306 and 307: Appendix B: CC-SG and Network Confi
Page 312 and 313: Appendix C: User Group Privileges M
Page 320 and 321: Appendix D SNMP Traps CC-SG provide
Page 322 and 323: Appendix E Troubleshooting Launchin
Page 324 and 325: Appendix F: Diagnostic Utilities
Page 326 and 327: Appendix F: Diagnostic Utilities Fi
Page 328 and 329: Appendix G Two-Factor Authenticatio
Page 330 and 331: Appendix H: FAQs Question Is the st
Page 332 and 333: Appendix H: FAQs Authentication FAQ
Page 334 and 335: Appendix H: FAQs Question Can audit
Page 336 and 337: Appendix H: FAQs Question To what l
Page 338 and 339: Appendix J Naming Conventions This
Page 340 and 341: Appendix J: Naming Conventions Fiel
Page 343 and 344: Index A About Administrator Console
Page 345 and 346: Index Command Tips • 227, 229 Com
Page 347 and 348: Index How to Create Associations
Page 349 and 350: Index SSH Commands and Parameters
Page 352: U.S./Canada/Latin America Monday -
show all

CommandCenter Secure Gateway - Admin Guide - Version ... - Raritan

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?