Multitech RF760 User's Guide Page 142
- Page / 189
- Table of contents
- TROUBLESHOOTING
- BOOKMARKS
Rated. / 5. Based on customer reviews
Appendix A – Disposition of Events
Multi-Tech Systems, Inc. RouteFinderVPN RF760/660/600VPN User Guide (PN S000323D) 142
1. Abstract
Disposition of Events
The LVPN RouteFinder 3.2x provides logging capabilities for various types of Access requests to the product.
The logging is classified as follows:
• Inbound Access Requests (LO1.A)
• Outbound Access Requests (LO1.B)
• Access Requests to Firewall Violating Security Policy (LO1.C)
• Access Requests Through Firewall Violating Security Policy (LO1.D)
• Administrative Authentication Log (LO1.E)
• Admin Port Access Requests (LO1.F)
• Startup History (LO1.G)
• User Defined Logs.
• Fragmented Packets Log. (ST6)
Access Request
An Access Request is the first packet arriving at the interface to which the security policy is applied. All subsequent packets
that are part of an ongoing session are not termed as access requests since an Access Request is the first packet that
establishes a session. Logging of an Access Request implies logging of the first packet of a session. Subsequent packets
are not logged.
Inbound Access Request
Each access request from the external network to the box for any services hosted by the box or hosted by an internal server
and have to pass through the firewall is termed as an inbound access request. Requests received on the WAN interface are
termed inbound access request. If the WAN interface is down and the dial backup PPP link is up, then a request received
on the PPP interface to the firewall will be termed inbound request access.
Access requests logged as Inbound Access Request correspond to LO1.A of Baseline module - version 4.0, ICSA Labs.
Figure 1 shows Inbound Access diagram
Figure 2 shows a snapshot of Inbound Access.
Figure 3 shows a snapshot of Inbound Access with DNAT and Connection Tracking.
Outbound Access Request
Each access request from the internal network (LAN/DMZ) to the external network (WAN) that passes through the firewall is
termed as an Outbound Access Request. All requests routed out through the WAN interface to servers connected on or
through the WAN Interface are considered Outbound Access Requests.
Access requests logged as Outbound Access Request correspond to LO1.B of Baseline module - version 4.0, ICSA Labs.
Figure 4 shows Outbound Access diagram.
Figure 5 shows a snapshot of Outbound Access
Figure 6 shows a snapshot of Outbound Access with connection tracking.
Access Requests through Firewall Violating Security Policy
An access request that traverses (routed through the firewall) but has to be dropped due to security restriction is logged as
Through Firewall dropped.
Access requests logged as Access Request through Firewall Violating Security Policy correspond to LO1.C of Baseline
module - version 4.0, ICSA Labs
Figure 7 show a snapshot of Through Firewall Dropped.
Access Request to Firewall Violating Security Policy
An Access request to the firewall can be dropped due to security restrictions. Each of these access requests is logged as To
Firewall Dropped.
Access requests logged as Access Request to Firewall Violating Security Policy correspond to LO1.D of Baseline module -
version 4.0, ICSA Labs.
Figure 8 shows To Firewall dropped diagram.
Figure 9 shows a snapshot of To Firewall Dropped.
Administrative Authentication Log
All successful and failed attempts to login to the VPN can be logged. The attempts are logged as Administrative
Authentication Log.
Administrative Authentication Log corresponds to LO1.E of Baseline module - version 4.0, ICSA Labs.
Figure 10 shows a snapshot of Administrative Authentication Log.
- RF760/660/600VPN 1
- Internet Security Appliance 1
- User Guide 1
- Contents 3
- Features, and Overview 7
- Feature Highlights 8
- Ship Kit Contents 9
- License Keys 10
- Safety Warnings 11
- RouteFinder Front Panels 12
- RF600VPN 13
- RouteFinder Back Panels 14
- Specifications 15
- Power & Physical 16
- Description 16
- RF760VPN RF660VPN RF600VPN 16
- The Firewall 17
- Protection Mechanisms 18
- Typical Applications 20
- Chapter 2 – Installation 21
- Planning the Network 22
- Installation Overview 23
- RouteFinder VPN 24
- Sub-Menu 27
- Menus and Sub-Menus 27
- Chapter 3 – Configuration 28
- Second Configuration Step 29
- The Wizard Setup Screen 30
- Set Packet Filters 33
- Set VPN IPSec Protocol 34
- Configuring Site B 35
- Using DNAT and Aliasing 37
- Tunneling 38
- Important Settings 39
- Menu Bar 42
- Administration 43
- System Logging 44
- System Time 44
- SNMP Agent – Community Name 44
- Administration > SSH 45
- SNTP Client 46
- SNTP Server Address 46
- Click Save 49
- Intrusion Detection 51
- Network Intrusion Detection 51
- Administration > Tools 52
- Trace Route 53
- TCP Connect 53
- Prerequisite 55
- RADIUS Prerequisite 56
- SAM Prerequisite 57
- Administration > Restart 58
- Administration > Shutdown 58
- Networks & Services 59
- Add Services 61
- Notes About Protocols 62
- About the Screen 63
- Add Network Group 63
- Add Service Group 64
- Proxy > HTTP Proxy 66
- Add Custom URL List 69
- Proxy > SMTP Proxy 71
- SMTP SPAM Filtering 74
- Proxy > POP3 Proxy 77
- POP3 SPAM Protection 78
- POP3 SPAM Filtering 78
- Proxy > SOCKS Proxy 80
- Proxy > DNS Proxy 82
- Network Setup 83
- Network Setup > Interface 84
- Network Cards 85
- IP Aliases 85
- Network Setup > PPP 86
- Network Setup > PPPoE 87
- Dynamic DNS Settings 89
- Network Setup > Routes 90
- Masquerading 91
- Network Setup > SNAT 92
- Network Setup > DNAT 93
- DHCP Server 94
- Tracking 95
- System Update Server 96
- Virus Update Server 96
- Update Services 97
- System Update - Livelog 97
- Virus Update - Livelog 97
- Tracking > Backup 98
- CVS Settings 100
- Examples 100
- Packet Filters 101
- System Defined Rules 102
- Packet Filters > ICMP 103
- Packet Filters > Advanced 104
- Enable/Disable Logging 105
- VPN > IPSec 106
- Add an IKE Connection 107
- Add a Manual Connection 109
- VPN > x.509 Certificates 111
- VPN > IPSec Bridging 111
- VPN > PPTP 112
- PPTP Settings 113
- User Authentication 113
- Wizard Setup 114
- Packet Filter Rule 115
- Modem Settings 115
- Password Settings 115
- Save or Cancel 115
- Statistics & Logs 116
- Uptime 117
- Statistics and Logs 118
- Networks 118
- Network Connections 119
- Interfaces 120
- SMTP Proxy 121
- Self Monitor 123
- Packet Filter 125
- Port Scans 126
- HTTP Access 127
- Methods 130
- Authentication Setup 131
- Chapter 8 – Frequently Asked 133
- Questions (FAQs) 133
- Chapter 9 – Troubleshooting 139
- 1. Abstract 142
- II. Inbound Access Log 143
- III. Outbound Access Log 145
- VII. Admin Port Access Log 147
- VIII. Startup History Log 147
- IX. User Log 147
- X. Fragmented Dropped Log 147
- XI. ICMP Information 148
- What Is a Rescue Kernel? 149
- Before You Start 149
- ISO Image Directions 149
- External Server 150
- External FTP Server 151
- Software Add-ons, Overnight 153
- Replacement 153
- Top Cover Removal 154
- RF660VPN Processor Upgrade 154
- Software Add-ons 156
- CD-ROM Drive Adapter Pin Out 157
- Housekeeping 158
- Monitoring 158
- Updating 159
- Technical Support Contacts 161
- GNU GENERAL PUBLIC LICENSE 168
- ANY REMEDY HEREUNDER 172
- Support 173
- Limited Warranty 174
- Limitation of Liability 174
- Glossary 176
Related products and manuals for Gateways/controllers Multitech RF760
(23 pages)© 2020, manymanuals.com. All rights reserved. | 4.795 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals