Manualshelf

Router User Manual

ManualsBrandsPanasonic ManualsNetwork RouterNN46240-501
41424344454647484950
Nortel Secure Router 8000 Series
Configuration Guide - Basic Configuration 1 Product overview
Issue 5.3 (30 March 2009) Nortel Networks Inc.
Hierarchical QoS
Hierarchical QoS (HQoS) is a QoS technology that can control traffic and perform queue
scheduling simultaneously on the basis of the users priority. HQoS uses a two-level
scheduling mode:
z
Priority Queue (PQ)
z
Confirmed Bandwidth Priority Queue (CBPQ)
HQoS supports complete traffic statistics. You can view the bandwidth usage of all services
and distribute bandwidth properly according to traffic analysis.
1.3.13 Security features
To ensure security, the Secure Router 8000 Series performs the following functions:
z
performs Authentication, Authorization and Accounting (AAA) functions
z
builds up distributed client/server secure access applications based on the ITU-T
RADIUS protocol specifications
z
provides AAA services for local, logon, and dial-up users to prevent unauthorized access
based on the Password Authentication Protocol (PAP) and Challenge Handshake
Authentication Protocol (CHAP) specification
The Secure Router 8000 Series supports protocol security authentication as follows:
z
PPP supports PAP and CHAP authentication modes.
z
Routing protocols including RIPv2, OSPF, IS-IS, and BGP support plain text
authentication and MD5 encrypted text authentication.
z
SNMP supports SNMPv3 encryption and authentication.
The Secure Router 8000 Series supports the mirroring function. With mirroring, the system
sends a copy of the packet on the current node to one specific packet analysis device from an
observing port without interrupting services. You can define the mirroring port number and
connect the port with the packet analysis device to monitor traffic.
In compliance with the command levels, users are divided into four levels. A user can use
only the commands with levels no higher than the users level.
The Secure Router 8000 Series supports the Network Address Translation (NAT) function and
relays the access between private and public networks. It converts a private IP address to a
public IP address or changes the mix of internal IP address and port to a mix of external IP
address and port. This enables the hosts of an internal network to access Internet resources
without risking the privacy of the internal network.
1-17