PBXtech.info  
\'\'
Remove advertisements

Go Back   PBXtech.info > Avaya > Definity Servers
Reload this Page RAS Security for the S8700
Register Blogs FAQ Calendar Mark Forums Read

Reply
 
LinkBack Thread Tools Display Modes
Old November 17th, 2004, 11:57 AM   #1 (permalink)
fataldata
PBXtech PLATINUM 300+ posts
 
fataldata's Avatar
 
Join Date: Jul 2003
Posts: 308
fataldata is on a distinguished road
RAS Security for the S8700
So I'm reading "Administration for Network Connectivity for Avaya Communication Manager (2.1)" Document # 555-233-504 Issue 8 from June 2004. In the section titled Networking Overview/LAN Security it mentions that you cannot access the Customer's LAN throught the INADS line.
Since security is the main concern of our IS Dept in Integrating the S8700 I thought I should test this. My conclusion, I was able to dial the INADS line using RAS access and then telnet the switch. From there I could ping or telnet to other devices on the Corporate LAN.
I'm gonna go ahead and read some more on the security issues but, how can they put this in official documentation when it's pretty much wrong? Anyone else test this and come up with different results? Is their a way to prevent this?
__________________
Systems In Use:
S8700 CM3.0 and S8710 CM3.1.1
fataldata is offline   Reply With Quote
Old November 17th, 2004, 12:32 PM   #2 (permalink)
fataldata
PBXtech PLATINUM 300+ posts
 
fataldata's Avatar
 
Join Date: Jul 2003
Posts: 308
fataldata is on a distinguished road
Re: RAS Security for the S8700
Found my own answer. We until this point had not used the Web interface. Not sure but apparently all firewall admin is done through this interface and is not available to the ASA.
__________________
Systems In Use:
S8700 CM3.0 and S8710 CM3.1.1
fataldata is offline   Reply With Quote
Advertisement
 
Advertisement
Sponsored links
Old November 18th, 2004, 11:10 AM   #3 (permalink)
fataldata
PBXtech PLATINUM 300+ posts
 
fataldata's Avatar
 
Join Date: Jul 2003
Posts: 308
fataldata is on a distinguished road
Re: RAS Security for the S8700
Well I thought I had found the answer. Even though the box for telnet from the server is unchecked, I am still able to telnet from the S8700 to our LAN. I am familiar with IPTABLES in Linux and know that the Tables must be restarted for changes to take effect. Now I'm looking for a way to do this other than SU' ing to root and restarting IPTABLES. Anyone use the server firewall much? If so how do you restart the firewall?
__________________
Systems In Use:
S8700 CM3.0 and S8710 CM3.1.1
fataldata is offline   Reply With Quote
Reply

« Previous Thread | Next Thread »


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

Similar Threads
Thread Thread Starter Forum Replies Last Post
Deinity One RAS Access Blah Definity Servers 2 September 3rd, 2007 07:11 AM
ATAs with S8700 mgriego Definity Servers 8 November 1st, 2005 09:36 AM
S8700 sharing Octel 350 with 5ess ten8ous1 Definity Servers 0 February 9th, 2005 09:42 AM
RAS instructions for S8700 Blah Definity Servers 1 December 7th, 2004 08:23 AM
Security Audits snyderjason Definity Servers 1 May 11th, 2004 09:29 PM

Remove advertisements

All times are GMT -6. The time now is 12:21 PM.

Contact Us - PBXtech.info Avaya Nortel Microsoft Forums help - Archive - Top

Powered by vBulletin® Version 3.7.2
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Search Engine Optimization by vBSEO 3.0.0 RC6
Copyright ©2002 - 2007, PBXtech LLCAd Management by RedTyger

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38