R21xx-HP FlexFabric 11900 Security Configuration Guide

ManualsBrandsHP ManualsNetwork HardwareHP FlexFabric 11000 Switch Products

211

implementing ACL-based IPsec, 155

IP attack protection (unresolvable), 123, 124

IP source guard configuration, 113 , 114

IP source guard dynamic binding entries, 114

IP source guard static binding entries, 113

IPsec configuration, 151

IPsec encapsulation modes, 151

IPsec implementation, 154

IPsec protocols, 151

IPsec SA, 153

IPsec tunnel establishment, 155

IPv4 source guard dynamic configuration with

DHCP relay, 121

IPv4 source guard dynamic configuration with

DHCP snooping, 120

IPv4 source guard static configuration, 118

IPv6 source guard static configuration, 122

password control configuration, 57, 60, 64

password control enable, 60

password control global parameters, 61

password control local user parameters, 62

password control user group parameters, 62

password event logging, 60

password expiration, 58

password expiration early notification, 58

password history, 59

password not displayed, 59

password setting, 57

password updating, 58

public key import from file, 74

public key management, 67

RADIUS information exchange security

mechanism, 2

RADIUS security policy server IP address

configuration, 29

setting max login users, 43

SSH authentication methods, 78

SSH configuration, 77

super password control parameters, 63

triggering self-test, 147

u R P F c o n fi g u r a t i o n , 139, 142, 143

user login control, 59

security association. See SA

self-test

triggering, 147

server

quiet timer (HWTACACS), 34

quiet timer (RADIUS), 27

response timeout timer (HWTACACS), 34

response timeout timer (RADIUS), 27

timeout period (LDAP), 36

session

SSH DSA or RSA key pairs, 79

setting

HWTACACS timer, 34

HWTACACS traffic statistics unit, 33

HWTACACS username format, 33

LDAP server timeout period, 36

max login users, 43

password, 57

password control global parameters, 61

password control local user parameters, 62

password control user group parameters, 62

RADIUS max request transmission attempts, 25

RADIUS server status, 25

RADIUS timer, 27

RADIUS traffic statistics unit, 24

RADIUS username format, 24

SSH management parameters, 83

super password control parameters, 63

SFTP

client device configuration, 86