English dropdown-ico

Nortel Networks 5100 manual

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160

Go to page of

Similar user manuals

A good user manual

The rules should oblige the seller to give the purchaser an operating instrucion of Nortel Networks 5100, along with an item. The lack of an instruction or false information given to customer shall constitute grounds to apply for a complaint because of nonconformity of goods with the contract. In accordance with the law, a customer can receive an instruction in non-paper form; lately graphic and electronic forms of the manuals, as well as instructional videos have been majorly used. A necessary precondition for this is the unmistakable, legible character of an instruction.

What is an instruction?

The term originates from the Latin word „instructio”, which means organizing. Therefore, in an instruction of Nortel Networks 5100 one could find a process description. An instruction's purpose is to teach, to ease the start-up and an item's use or performance of certain activities. An instruction is a compilation of information about an item/a service, it is a clue.

Unfortunately, only a few customers devote their time to read an instruction of Nortel Networks 5100. A good user manual introduces us to a number of additional functionalities of the purchased item, and also helps us to avoid the formation of most of the defects.

What should a perfect user manual contain?

First and foremost, an user manual of Nortel Networks 5100 should contain:
- informations concerning technical data of Nortel Networks 5100
- name of the manufacturer and a year of construction of the Nortel Networks 5100 item
- rules of operation, control and maintenance of the Nortel Networks 5100 item
- safety signs and mark certificates which confirm compatibility with appropriate standards

Why don't we read the manuals?

Usually it results from the lack of time and certainty about functionalities of purchased items. Unfortunately, networking and start-up of Nortel Networks 5100 alone are not enough. An instruction contains a number of clues concerning respective functionalities, safety rules, maintenance methods (what means should be used), eventual defects of Nortel Networks 5100, and methods of problem resolution. Eventually, when one still can't find the answer to his problems, he will be directed to the Nortel Networks service. Lately animated manuals and instructional videos are quite popular among customers. These kinds of user manuals are effective; they assure that a customer will familiarize himself with the whole material, and won't skip complicated, technical information of Nortel Networks 5100.

Why one should read the manuals?

It is mostly in the manuals where we will find the details concerning construction and possibility of the Nortel Networks 5100 item, and its use of respective accessory, as well as information concerning all the functions and facilities.

After a successful purchase of an item one should find a moment and get to know with every part of an instruction. Currently the manuals are carefully prearranged and translated, so they could be fully understood by its users. The manuals will serve as an informational aid.

Table of contents for the manual

  • Page 1

    4655 Great America Parkwa y Santa Clara, CA 95054 Phone 1-800-4Nor tel http://www .nor tel.com Nor tel Switched Fire wall 5100 Series Release 2.3.3 Br o wser -Based Interface User’ s Guide par t number : 216383-D, October 2005[...]

  • Page 2

    2 216383-D Copyright © Nortel Networks 2002– 2005. All rig hts reserved. This document is protected by c opyright and distributed under licen se s restricting it s use, copying, distribution, and deco mpilation. No part of this document may be reproduced in any form by any means without prior written author ization of Nortel Networ ks, Inc. Docu[...]

  • Page 3

    216383-D October 20 05 3 Content s Preface 7 Who should use this book 7 How this book is organized 7 Typographic conv entions 8 How to get help 9 Getting help from the Nortel web site 9 Getting help over the telephone from a Nortel Solutions Center 9 Using an Express Routing Code to get help from a specialist 10 Getting help through a Nortel distri[...]

  • Page 4

    Nortel Switched Firewall Browse r-Based Interface Users Guide 4  Contents 216383-D October 2005 Basic operation 22 Pending change exceptio ns 22 Lost changes 22 Creating a config uration 2 3 Viewing pending changes 23 Clearing pending changes 23 Submitting changes 23 Global command forms 24 Apply Changes 24 Diff 26 Revert 27 Logout 28 Help 29 Co[...]

  • Page 5

    Nortel Switched Firewall Browser-Based Interface Users Guide Contents  5 216383-D October 20 05 License Management form 91 Installed License(s) form 93 Synchronization form 94 SMART Clients form 95 SecurID form 96 Operation forms 97 Director(s) form 97 Configuration form 98 Image Update forms 99 Administration forms 102 Monitor forms 102 Users f[...]

  • Page 6

    Nortel Switched Firewall Browse r-Based Interface Users Guide 6  Contents 216383-D October 2005[...]

  • Page 7

    216383-D October 20 05 7 Preface This Quick Guide describes the Nortel Switched Firewa ll Browser -Based Interface (BBI). The components and features of the BBI can be used as an alternative to the Nortel Switched Firewall Command Line Interf ace (CLI) documented in the Nortel Switched Fir ewall 2.3.3 User ’ s Guide and Comma nd Refer ence, (2134[...]

  • Page 8

    Nortel Switched Firewall Browse r-Based Interface Users Guide 8  Preface 216383-D October 2005 T ypographic conventions The following table describes th e typographic styles used in this book. T able 1 T ypographic conve ntions T ypeface or Symbol Meaning Example AaBbCc123 This fixed-width type is used for names of commands, files, and di rector[...]

  • Page 9

    Nortel Switched Firewall Browser-Based Interface Users Guide Preface  9 216383-D October 20 05 How to get help This section explains how to get help for Nortel p roducts and services. Getting help from the Nortel web site The best way to get technical support for Nortel products is from the N ortel T echnical Support web site at: www .nortel.com[...]

  • Page 10

    Nortel Switched Firewall Browse r-Based Interface Users Guide 10  Preface 216383-D October 2005 Using an Express Rout ing Code to get help from a specialist Y ou can find Express Routing Co des (ERC) for many Nortel products and services on the Nortel T echnical Support web site. ERCs allow yo u to connect directly to service and support organiz[...]

  • Page 11

    216383-D October 20 05 11 C HAPTER 1 Introduction This chapter explains how to enable the Br owser -Based Interface (BBI), set up your web browser , and launch the BBI to access the Nortel Switched Fi rewall (NSF) system- management f eatures from y our web brows er . Characteristics of the BBI Following are the charact eristics of the BBI:  Int[...]

  • Page 12

    Nortel Switched Firewall Browse r-Based Interface Users Guide 12  Introduction 216383-D October 2005 Getting st arted Requirement s Following are the requirem ents to enable the BBI:  An installed Nortel Switched Firewall  A Check Point policy to allow management station access for HTTP or HTTPS traffic  A PC or workstation with network[...]

  • Page 13

    Nortel Switched Firewall Browser-Based Interface Users Guide Introduction  13 216383-D October 20 05 Enabling the BBI Y ou can enable the BBI for HTTP , HTTP and HTTPS, or you can fully disable the BBI. TIP : The default setting for the BBI is enabled for HTTP access an d disabled for HTTPS access. N OTE – HTTP is not a secure protocol . All d[...]

  • Page 14

    Nortel Switched Firewall Browse r-Based Interface Users Guide 14  Introduction 216383-D October 2005 Applying the changes. Using the access list to permit re mote access to trusted clie nts If you already configured the acce ss list for T elnet or SSH, you need not repeat the process. Otherwise, to permit access to only trusted clients, see the [...]

  • Page 15

    Nortel Switched Firewall Browser-Based Interface Users Guide Introduction  15 216383-D October 20 05 c) MIP address d) virtual IP address (see Using the VRRP virtual IP address to access the NSF BBI ) The NSF login window opens. 3. Log in (see Logging in ). 4. Allow the main page to load (see Loadin g the main page on page 16 ). Using the VRRP v[...]

  • Page 16

    Nortel Switched Firewall Browse r-Based Interface Users Guide 16  Introduction 216383-D October 2005 Figure 1 NSF Login window Loading the main page When the valid account name an d password combination is ente red on the login window , the BBI default page appears in your browser viewing win dow (see Figure 2 ). Figure 2 NSF BBI main page N OTE[...]

  • Page 17

    216383-D October 20 05 17 C HAPTER 2 Basics of the Browser-Based Interface Interface component s The Nortel Switched Firewall (NSF) Browser- Based Interface (BBI) main page has eight component areas (see Figure 3 ). Figure 3 NSF BBI main page Global command buttons Main pa ge tabs NSF Configuration main menu Director status Current alarms W arning [...]

  • Page 18

    Nortel Switched Firewall Browse r-Based Interface Users Guide 18  Basics of the Browser-Based Interface 216383-D October 2005  Main page tabs The two main page tabs ar e W izards and Config (see Figure 3 on page 17 ).  W i zards provides access to wizards that guide users through the pr ocesses of initial configuration, interface and bridg[...]

  • Page 19

    Nortel Switched Firewall Browser-Based Interface Users Guide Basics of the Browser-Based Interface  19 216383-D October 20 05 W i zards menu shows the selections available on the W izards menu tree. Figure 5 Wizards menu[...]

  • Page 20

    Nortel Switched Firewall Browse r-Based Interface Users Guide 20  Basics of the Browser-Based Interface 216383-D October 2005  NSF Config main menu tree Each of the selections on th e Config main menu tree repr ese nts a page, called a form, which provides a method to monitor or configure the NSF (see Figure 3 on page 17 and Figure 6 ). Figur[...]

  • Page 21

    Nortel Switched Firewall Browser-Based Interface Users Guide Basics of the Browser-Based Interface  21 216383-D October 20 05  History list The History list displays the path to the cu rrent page. Up to nine of the most recently visited pages are listed, most recent first. TIP : Click a list item to go direct ly to that page.  Forms displa[...]

  • Page 22

    Nortel Switched Firewall Browse r-Based Interface Users Guide 22  Basics of the Browser-Based Interface 216383-D October 2005 Basic operation The Browser-Based Interface for th e Nortel Switched Firewall prov ides a variety of levels of control. TIP : T o access the full functionality of the BBI, you must log in as administrator (username admi n[...]

  • Page 23

    Nortel Switched Firewall Browser-Based Interface Users Guide Basics of the Browser-Based Interface  23 216383-D October 20 05 Pending changes are also discarded if you do not submi t them before the inactivity timeout value on BBI sessions elapses. The BBI inactivity timeout value is five minutes and cannot be changed. Creating a configuration T[...]

  • Page 24

    Nortel Switched Firewall Browse r-Based Interface Users Guide 24  Basics of the Browser-Based Interface 216383-D October 2005 2) Click Submit . See Global command forms for details on using Apply , Diff, Revert, and Logout. Global command forms The global command buttons are always available at the top of each form. These buttons summ on forms u[...]

  • Page 25

    Nortel Switched Firewall Browser-Based Interface Users Guide Basics of the Browser-Based Interface  25 216383-D October 20 05 When selected, this command up dates the Nortel Switched Firewall with any pending configuration changes. Pending changes are first validated for correctness (see V alidate Configuratio n on page 25 ). If no problems are [...]

  • Page 26

    Nortel Switched Firewall Browse r-Based Interface Users Guide 26  Basics of the Browser-Based Interface 216383-D October 2005 Diff The global Diff command displays the Pending Updates form. Pendin g Updates provides a list of the pending configuration changes for the current sessio n (see Figure 9 ). Figure 9 Dif f form The list displays a chang[...]

  • Page 27

    Nortel Switched Firewall Browser-Based Interface Users Guide Basics of the Browser-Based Interface  27 216383-D October 20 05 Revert The global Revert command displays the Revert Chang es form. Use Revert to cancel pending configuration changes (see Figure 10 ). Figure 10 Revert form The global Revert form includes the following items:  Rever[...]

  • Page 28

    Nortel Switched Firewall Browse r-Based Interface Users Guide 28  Basics of the Browser-Based Interface 216383-D October 2005 Logout Use the global Logout form to terminate the current user session (see Figure 11 ). Figure 1 1 Logout form The global Logout form includes the follo wing items:  Logout button: Click Logout to terminate the curre[...]

  • Page 29

    Nortel Switched Firewall Browser-Based Interface Users Guide Basics of the Browser-Based Interface  29 216383-D October 20 05 Help The global Help form provides assistance wit h forms and tasks in the BBI. T wo kinds of Help are available: context-sensitiv e Help and task-based Help. Context-sensitive Help Context-sensitive Help displays detaile[...]

  • Page 30

    Nortel Switched Firewall Browse r-Based Interface Users Guide 30  Basics of the Browser-Based Interface 216383-D October 2005  Forms area: This area displays detailed information about th e selected topic.  Close button: Click Close to close the context-sensitive Help windo w . T ask-based Help T ask-based Help directs the administrat or t[...]

  • Page 31

    Nortel Switched Firewall Browser-Based Interface Users Guide Basics of the Browser-Based Interface  31 216383-D October 20 05  Load Page link: Click Load Page to display the form referenced on the task topic menu . If the subtask has more than one step, the s teps are listed on the form.  Click  to display the information for the next s[...]

  • Page 32

    Nortel Switched Firewall Browse r-Based Interface Users Guide 32  Basics of the Browser-Based Interface 216383-D October 2005[...]

  • Page 33

    216383-D October 20 05 33 C HAPTER 3 Browser-Based Interface forms reference BBI main menu selections The following eight selections are available on the Nortel Switched Firewall (NSF) Browser- Based Interface (BBI) Config tab main menu:  System form on page 34  NSF 5100 T icker form on page 34  Cluster f orms on page 38  Network forms [...]

  • Page 34

    Nortel Switched Firewall Browse r-Based Interface Users Guide 34  Browser-Based Interface for ms reference 216383-D October 2005 System form When you select System, the Main page, also kno wn as the Moni tor System form, is displayed as shown in Monitor System form. For more information about the System form, see Interface components on page 17 [...]

  • Page 35

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  35 216383-D October 20 05  status of the following remote accesses:  HTTP  HTTPS  Te l n e t  SSH  SNMP Use the NSF 5100 T icker launch form to launch the Ti cker . TIP : The Ticker cannot launch if pop-up blockers are enabled[...]

  • Page 36

    Nortel Switched Firewall Browse r-Based Interface Users Guide 36  Browser-Based Interface for ms reference 216383-D October 2005 The NSF 5100 T icker report form displays thr ee tabs (see NSF 5100 Ti cker results form). Figure 16 NSF 5100 Ticker results form T abs on the NSF 5100 T icker results form are as follows:  Cluster information  P[...]

  • Page 37

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  37 216383-D October 20 05 The Properties page displays properties for NSF 5100 T ick er parameters (see NSF 5100 T icker/Properties f orm). Figure 17 NSF 5100 Ticker/Properties form The About page displays the NSF version and license inform ati[...]

  • Page 38

    Nortel Switched Firewall Browse r-Based Interface Users Guide 38  Browser-Based Interface for ms reference 216383-D October 2005 Cluster forms The Cluster menu includes the following categories of forms:  Director(s) form  T ime forms  Current T ime (see Cluster/Time/Current T ime form on pag e 40 )  NTP servers (see Cluster/Ti me/NT[...]

  • Page 39

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  39 216383-D October 20 05 The Cluster/Director(s) form is divided into the following two sections:  Management IP Address  General Settings Fields and buttons on the Cluster/Directo r(s) form are as follows:  Management IP Address  [...]

  • Page 40

    Nortel Switched Firewall Browse r-Based Interface Users Guide 40  Browser-Based Interface for ms reference 216383-D October 2005 T ime forms The two Cluster/Time forms are as follows:  Cluster/T ime/Current T ime (see Cluster/Time/Current T ime form )  Cluster/T i me/NTP Servers (see Cluster/T ime/NTP Servers form on page 41 ) Cluster/Time[...]

  • Page 41

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  41 216383-D October 20 05  Hour provides a list to se lect the current hour .  Minute provides a list to select the current minute.  Click Save to submit the date an d time changes and to put the changes into immediate effect. Note tha[...]

  • Page 42

    Nortel Switched Firewall Browse r-Based Interface Users Guide 42  Browser-Based Interface for ms reference 216383-D October 2005 Fields and buttons on the Cluster/Ti me/NTP Servers form are as follows:  IP Address displays the IP address of an NTP server .  Action—if an NTP server is pr esent, a Delete button appears.  Click Delete to[...]

  • Page 43

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  43 216383-D October 20 05 Fields and buttons on the Cluster/Logs/Sy slog form are as follows: System Log  Debug Messages displays a list with two choices.  Disabled disables transmission of debug me ssages to the local system log.  Ena[...]

  • Page 44

    Nortel Switched Firewall Browse r-Based Interface Users Guide 44  Browser-Based Interface for ms reference 216383-D October 2005  crit  err  warning  notice  info  debug  New Server Facility provides a list with th e fol lowing local facility numbers used to uniquely identify syslog entries:  auto  local0  local1 ?[...]

  • Page 45

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  45 216383-D October 20 05 Cluster/Lo gs/ELA form Use the Cluster/Logs/ELA form to co nfigure Event Logg ing API (ELA) (see Cluster/Logs/ELA form). ELA allows Firewall log messages to b e sent to a Check Point SmartCenter Server for disp lay thr[...]

  • Page 46

    Nortel Switched Firewall Browse r-Based Interface Users Guide 46  Browser-Based Interface for ms reference 216383-D October 2005  Management Station IP provides an entry fi eld to specify the IP address of the Check Point SmartCenter Server where the Firewall log messages are sent.  Minimum Severity provides a list that specifies the sever[...]

  • Page 47

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  47 216383-D October 20 05 Cluster/Logs/Archive form Use the Cluster/Logs/Archive fo rm to specify system log rotation an d system log archiving parameters (see Cluster/Logs/Archive form). Figure 24 Cluster/Logs/Archive form Fields and buttons o[...]

  • Page 48

    Nortel Switched Firewall Browse r-Based Interface Users Guide 48  Browser-Based Interface for ms reference 216383-D October 2005 If the log file rotate size is set to >0, log rotation occurs when one of the following condit ions is met:  The log file surpasses the rotate size.  The log file rotation interval is reached. Rotated log file[...]

  • Page 49

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  49 216383-D October 20 05 Wa r n i n g s f o r m Use the Cluster/W arnings form to enable or disable confi guration warning messages (see Cluster/W arnings form). Figure 25 Cluster/W arnings form Fields and buttons on the Cluster/W arnings form[...]

  • Page 50

    Nortel Switched Firewall Browse r-Based Interface Users Guide 50  Browser-Based Interface for ms reference 216383-D October 2005 Network forms The Network menu includes the follo wing categories of forms:  DNS (see Network/DNS form on page 5 1 )  Ports (see Network /Ports form on page 52 )  Routes  Static (see Network/Routes/Static f[...]

  • Page 51

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  51 216383-D October 20 05 N OTE – The NSF provides administrators w ith the option to con figure Layer 2 and Layer 3 firewalls. The Layer 2 and Layer 3 fi rewall c onfiguration procedures differ only in the configuration of the IP addresses. [...]

  • Page 52

    Nortel Switched Firewall Browse r-Based Interface Users Guide 52  Browser-Based Interface for ms reference 216383-D October 2005 Ports form Use the Network/Ports form to configu re network port settings (see Network/Ports form). Figure 27 Network/Ports form Fields and buttons on the Netwo rk/Ports form are as follows:  Port# specifi es the po[...]

  • Page 53

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  53 216383-D October 20 05 Network/Ports Modify Port form Use the Network/Ports Mod ify Port form to modify the settings for a selected port. Figure 28 Network/Ports Modify Port form The following fields can be modified on the Net work/Ports Mod[...]

  • Page 54

    Nortel Switched Firewall Browse r-Based Interface Users Guide 54  Browser-Based Interface for ms reference 216383-D October 2005  Mode provides for following two selections:  Half (duplex)  Full (duplex)  Update submits the port change s to the pending configuration.  Back returns to the Network/ Ports form without submit ting cha[...]

  • Page 55

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  55 216383-D October 20 05 Fields and buttons on the Network/ Routes/Static form are as follows:  Destination IP specifies the IP a ddress of the route destination. TIP : Use dotted decimal notation.  Destination Mask specifies the subn et[...]

  • Page 56

    Nortel Switched Firewall Browse r-Based Interface Users Guide 56  Browser-Based Interface for ms reference 216383-D October 2005  Back returns to the Network/ Routes/Static form without submitting changes to th e pending configuration. Network/Routes/S tatic Add Ro ute form Use the Network/Routes/Static Add Route form to add a new static rout[...]

  • Page 57

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  57 216383-D October 20 05 Network/Routes/Proxy ARP form Use the Network/Routes/Proxy ARP (Address Resolution Protocol) form to view and configure the Proxy ARP status and addresses that allow t he Firewall to respond to Proxy ARP requests (see [...]

  • Page 58

    Nortel Switched Firewall Browse r-Based Interface Users Guide 58  Browser-Based Interface for ms reference 216383-D October 2005  New Proxy ARP IP pro vides an entr y field to specify an IP address. TIP : Use dotted decimal format.  VRRP Group provides a list for VRRP group 1 or 2 selection.  Update submits the IP address changes to the[...]

  • Page 59

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  59 216383-D October 20 05 Network/Routes/OSPF forms Following are the categories of Network/Routes/O SPF forms:  General (see Network/Routes/OSPF/G eneral form )  Area Indexes (see Network/Routes/O SPF/Area Indexe s form on page 60 )  [...]

  • Page 60

    Nortel Switched Firewall Browse r-Based Interface Users Guide 60  Browser-Based Interface for ms reference 216383-D October 2005  Router Id 1 provides an entry field to set the OSPF R outer ID for the first Firewall host. TIP : OSPF uses the router ID to identify the rout ing devi ce. If no router ID is specified, or if the router ID is set t[...]

  • Page 61

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  61 216383-D October 20 05 Network/Routes/OSPF/Area Indexes Add New form Use the Network/Routes/OSPF/ Area Indexes Add New form to configure a new Area Index. Figure 36 Network/Routes/OSPF/Area In dexes Add Area Index form Fields and buttons on [...]

  • Page 62

    Nortel Switched Firewall Browse r-Based Interface Users Guide 62  Browser-Based Interface for ms reference 216383-D October 2005 Network/Routes/OSPF/Interfaces form Use the Network/Routes/OSPF/In terfaces form to display and change the OSPF Interfaces settings that are required to attach an IP network to an OSPF area (see Network/Ro utes/OSPF /I[...]

  • Page 63

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  63 216383-D October 20 05 Network/Routes/OSPF/Interfaces Modify form Use the Network/Routes/OSPF/Interfaces Modify form to modify a selected interface. Figure 38 Network/Routes/OSPF/Inte rfaces Modify form Fields and buttons on the Ne twork/Rou[...]

  • Page 64

    Nortel Switched Firewall Browse r-Based Interface Users Guide 64  Browser-Based Interface for ms reference 216383-D October 2005  Authentication provides a list to set the auth entication type for th e interface, with the following selection s:  None  Password  MD5  Key provides an entry field to set the passwo rd used for OSPF au[...]

  • Page 65

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  65 216383-D October 20 05  Area Index sets the OSPF area index to attach to the network for the current GRE Tunnel.  Action provides the followi ng two options:  Delete deletes a selected GRE tunnel .  Modify provides a form to modi[...]

  • Page 66

    Nortel Switched Firewall Browse r-Based Interface Users Guide 66  Browser-Based Interface for ms reference 216383-D October 2005  Priority provides a list to set the GRE Tunnel priority used to elect a Designated Router (DR) and Backup Designated Router (BDR) for the area. TIP : A value of 0 specifies that the elected GRE T unnel is DROTHER a[...]

  • Page 67

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  67 216383-D October 20 05 Network/Routes/OSPF/Redistribute form Use the Network/Rou tes/OSPF/Redistribute form to display and modify the OSPF Redistribution settings (see Network/ Routes/OSPF/Redistribute form). Figure 41 Network/Routes/OSPF/Re[...]

  • Page 68

    Nortel Switched Firewall Browse r-Based Interface Users Guide 68  Browser-Based Interface for ms reference 216383-D October 2005 Network/Routes/OSPF/Redi stribute Modify form Use the Network/Routes/OSPF/Redistribu te M odify form to modify the connected rou te redistribution. Figure 42 Network/Routes/OSPF/Redistribute Modify form Fields and butt[...]

  • Page 69

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  69 216383-D October 20 05 DHCP Relay forms The three DHCP Relay forms are:  General  Interfaces  Servers Network/DHCP Relay/General form Use the Network/DHC P Relay/General form to d isplay DHCP Relay settings and statistics (see Netwo[...]

  • Page 70

    Nortel Switched Firewall Browse r-Based Interface Users Guide 70  Browser-Based Interface for ms reference 216383-D October 2005  DHCP Relay S tatistics  DHCP Relay Statistics provides a list containing the following two selecti ons: o Show DHCP Relay statistics o Clear DHCP Relay st atistics  Submit submits chang es to the pending conf[...]

  • Page 71

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  71 216383-D October 20 05 Network/DHCP Relay/Interfaces Modify form Use the Network/DHCP Relay/Interfaces Modify form to modify a selected DHCP Relay Interface. Figure 45 Network/DHCP Relay/Interfaces Modify form Fields and buttons on the Ne tw[...]

  • Page 72

    Nortel Switched Firewall Browse r-Based Interface Users Guide 72  Browser-Based Interface for ms reference 216383-D October 2005 Network/DHCP Relay/Servers form Use the Network/DHCP Relay/Servers fo rm to display and modify the information about the DHCP Relay Servers (see Network/DHCP Relay/Servers form). Figure 46 Network/DHCP Relay/Servers fo[...]

  • Page 73

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  73 216383-D October 20 05 Network/DHCP Relay/Servers Add New Server form Use the Network/DHCP Relay/Servers Add New Server form to add a new DHCP server . Figure 47 Network/DHCP Relay/Servers Add New Server form Fields and buttons on the Networ[...]

  • Page 74

    Nortel Switched Firewall Browse r-Based Interface Users Guide 74  Browser-Based Interface for ms reference 216383-D October 2005 Interfaces form Use the Network/Interfaces form to view and configure the setti ngs for individual interfaces (see Network/Interfaces form). Figure 48 Network/Interfaces form The Firewall can be configured with up to 2[...]

  • Page 75

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  75 216383-D October 20 05  Modify (only visible if interfaces are present) is used to modify a displayed interface (see Network/Interfaces Modi fy form on page 75 ).  Delete (only visible if interf aces are present) is used to delete an i[...]

  • Page 76

    Nortel Switched Firewall Browse r-Based Interface Users Guide 76  Browser-Based Interface for ms reference 216383-D October 2005  Subnet Mask provides an entry field to specify the subnet mask of the interface.  Vlan Id provides a list to select the numerical ID, between 0 and 4094, for the VLAN.  Port provides a list to select a port n[...]

  • Page 77

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  77 216383-D October 20 05 Network/Interfaces Add Interface form Use the Network/Interfaces Add Inte rface form to add a new interface. Figure 50 Network/Inter faces Add New In terface form Fields and buttons on the Network/Interfaces Add New In[...]

  • Page 78

    Nortel Switched Firewall Browse r-Based Interface Users Guide 78  Browser-Based Interface for ms reference 216383-D October 2005  Ip2 provides an entry field to specify the second virtual IP ad dress for the interface (applied for VRRP Active-Active).  V rid provides a list to select a num erical ID, between 1 and 255, for the virtual ro u[...]

  • Page 79

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  79 216383-D October 20 05  VRRP specifies the virtual router ID and IP a ddress of the IP interf ace configured for high availability or active–active.  Actions provides the followi ng two options:  Delete deletes the selected bridge[...]

  • Page 80

    Nortel Switched Firewall Browse r-Based Interface Users Guide 80  Browser-Based Interface for ms reference 216383-D October 2005  Ports specifies the port number a ssociated with the bridge ID.  VRRP Settings  V rid provides a list to select the numerical ID, between 1 and 255, for the virtual router on the bridge.  Ip1 provides an e[...]

  • Page 81

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  81 216383-D October 20 05  Enabled indicates that high av ailability VRRP is enabled. TIP : T wo Firewall hosts must be in the cluster to apply high availability VRRP . High availabilit y VRRP cannot be enabled when active-activ e VRRP or Cl[...]

  • Page 82

    Nortel Switched Firewall Browse r-Based Interface Users Guide 82  Browser-Based Interface for ms reference 216383-D October 2005 GRE T un nels form Use the Network/GRE Tunnels form to view and modify GRE T unnels setti ngs (see Network/GRE T unnels form). Figure 54 Network/GRE T unnels form Fields and buttons on the Network/GRE Tunnels form are [...]

  • Page 83

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  83 216383-D October 20 05  Actions provides the followi ng two options:  Delete deletes the selected GRE tunnel.  Modify provides a form to modify th e settings for the selected GRE tunnel.  Add New GRE T unnel (see Network/GRE Tunn[...]

  • Page 84

    Nortel Switched Firewall Browse r-Based Interface Users Guide 84  Browser-Based Interface for ms reference 216383-D October 2005  Host 1 T unnel  Source IP provides an entry field for the tunnel source IP address for host 1.  Destination IP provides an en try field for the tunnel destination IP address for host 1.  Mask provides an e[...]

  • Page 85

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  85 216383-D October 20 05 S tatus forms Following are fo ur Network/S tatus forms:  Interface (see Network/Status/Interface form )  Link (see Network/Status/Link form on page 86 )  Bridge Statistics (see Network/St atus/Bridge Statisti[...]

  • Page 86

    Nortel Switched Firewall Browse r-Based Interface Users Guide 86  Browser-Based Interface for ms reference 216383-D October 2005 Network/S tatus/Link form Use the Network/Status/Link form to obtain information about all network interface ports (see Network/Status/Link form). Figure 57 Network/S tatus/Link form Fields and buttons on the Network/S[...]

  • Page 87

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  87 216383-D October 20 05 Network/S tatus/Bridge S tatistics form Use the Network/Status/Bridge Statistics form to view the brid ge statistics for the selected firewall (see Network/Status/Bridge S tatistics form). Figure 58 Network/S tatus/Bri[...]

  • Page 88

    Nortel Switched Firewall Browse r-Based Interface Users Guide 88  Browser-Based Interface for ms reference 216383-D October 2005 Network/S tatus/Bridge Mac Entries form Use the Network/Status/Bridge Mac Entries form to display the bridge MAC ent ries for the selected Firewall Director (see Netw ork/S tatus/Bridge Mac Entries form). Figure 59 Net[...]

  • Page 89

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  89 216383-D October 20 05 Firewall forms The Firewall menu includes the fo llowing five categories of form s:  Settings (see Setti ngs form )  License Management (see License Management form on page 91 )  Installed Licenses (see Instal[...]

  • Page 90

    Nortel Switched Firewall Browse r-Based Interface Users Guide 90  Browser-Based Interface for ms reference 216383-D October 2005 Fields and buttons on th e form are as follows:  General  Status provides a list with thes e selections: o Enabled indicates that Check Point FireW all-1 NGX is processing on the Firewall. o Disabled indicates th[...]

  • Page 91

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  91 216383-D October 20 05 License Management form Use the Firewall/Licenses form to modify or install additional Check Point licenses on the Firewall (see Firewall/License Managem ent form). Figure 61 Firewall/Licens e Manageme nt form Fields a[...]

  • Page 92

    Nortel Switched Firewall Browse r-Based Interface Users Guide 92  Browser-Based Interface for ms reference 216383-D October 2005 Firewall/License Management/Add New License Ent ry form Use the Firewall/License Management/Ad d Ne w License Entry form to add Check Point licenses. Figure 62 Firewall/License Managemen t/Add New License Entry form Th[...]

  • Page 93

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  93 216383-D October 20 05  Add New Licenses  Expiration Date provides an entry field to specify the Check Point License expiration date.  Feature String provides an entry field to specify the Check poi nt License feature string.  Li[...]

  • Page 94

    Nortel Switched Firewall Browse r-Based Interface Users Guide 94  Browser-Based Interface for ms reference 216383-D October 2005  Features provides the Check Point license features. Synchronization form Use the Firewall/Synchronization form to disp lay the cluster synchronization status and enable or disable cluster synchronization (see Firew[...]

  • Page 95

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  95 216383-D October 20 05 SMART Client s form The Firewall/SMAR T Clients form displays, and allows m odification to, SMAR T Clients addresses. This form also provides a field to add a new SMAR T Client (see Firewall/SMA R T Clients form). Figu[...]

  • Page 96

    Nortel Switched Firewall Browse r-Based Interface Users Guide 96  Browser-Based Interface for ms reference 216383-D October 2005 SecurID form The SecurID form provides access to a two-factor form method for central ized authentication and management (see Firewall/S ecurID form). Fo r more information a bout SecurID, see the Nortel Switched Fir e[...]

  • Page 97

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  97 216383-D October 20 05 Operation forms The Operation menu includes the fo llowing three cat egories of forms:  Director(s) (see Director(s) f orm )  Configuration (see Configurat ion form on page 98 )  Image Update (see Image Update[...]

  • Page 98

    Nortel Switched Firewall Browse r-Based Interface Users Guide 98  Browser-Based Interface for ms reference 216383-D October 2005 Configuration form Use the Operation/Configuration form to export or import configuration files (see Operation/Configuration form). Figure 68 Operation/Configuration for m The Operation/Configuration form is divided in[...]

  • Page 99

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms re ference  99 216383-D October 20 05  Import causes the BBI to restart immediat ely , using the replacem ent configuration. TIP : No Apply comm and is required in conjunction with Import. W ARNING – I MPORT CAUSES REPLACEMENT OF THE CURRENT CONFIGURA[...]

  • Page 100

    Nortel Switched Firewall Browse r-Based Interface Users Guide 100  Browser-Bas ed Interface forms reference 216383-D October 2005 Fields and buttons on the Operation/Imag e Update/Packages fo rm are as follows:  Installed Packages  V ersio n provides the NSF software ver sion running on th e cluster .  Name provides the name of the soft[...]

  • Page 101

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  101 216383-D October 20 05 N OTE – Activating the software using the browser di sables remote access to the Firewall. Use the local console to re-enter the Check Point License and reload the remote access policy to restore remote, or browser [...]

  • Page 102

    Nortel Switched Firewall Browse r-Based Interface Users Guide 102  Browser-Bas ed Interface forms reference 216383-D October 2005 Administration forms The Administration form s provide access to administering and monitoring aspects of the Firewall, such as user information, web settings, and SNMP activ ity . The Administration fo rms menu includ[...]

  • Page 103

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  103 216383-D October 20 05 Administration/Monitor/Director(s) form The Administration/Monitor/Directo r(s) form disp lays Firewall director details and application status (see Administration/Monitor /Director(s) form). Figure 71 Administration/[...]

  • Page 104

    Nortel Switched Firewall Browse r-Based Interface Users Guide 104  Browser-Bas ed Interface forms reference 216383-D October 2005  Uptime provides the time, in Hours:Minute s:Seconds, since the applications started.  T o help determine which physical host is using a particular IP Address, click Beep Firewall Dir ector to cause multiple bee[...]

  • Page 105

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  105 216383-D October 20 05 Administration/Monitor/Syslog form The Administration/ Monitor/Syslog form displays t he system logs for the Firewall based on selected search criteria (see Ad ministration/Monitor/Syslog form). Figure 73 Administrati[...]

  • Page 106

    Nortel Switched Firewall Browse r-Based Interface Users Guide 106  Browser-Bas ed Interface forms reference 216383-D October 2005  All info messages (INFO)  All notice messages (NOTICE)  All warning messages (W ARNING)  Messages Per Page provides the maximum number of messages displayed for each request.  Case Sensitive provides a[...]

  • Page 107

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  107 216383-D October 20 05 Administration/Monitor/GUI Lock form The Administration/Moni tor/GUI Lock form allows an administrator to take con trol of the GUI lock and provide an alert message to ot her users (see Administration/M onitor/GUI Loc[...]

  • Page 108

    Nortel Switched Firewall Browse r-Based Interface Users Guide 108  Browser-Bas ed Interface forms reference 216383-D October 2005 Administration/Monitor/CLI Logins form The Administration/ Monitor/CLI Logins form pr o vides information about CLI Login sessions on the Firewall (see Administration/Monito r/CLI Logins form). Figure 76 Administratio[...]

  • Page 109

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  109 216383-D October 20 05 Administration/Monitor/About form The Administration/Moni tor/About form displays general product information abo ut the Firewall (see Administrati on/Monitor/About form). Figure 77 Administration/M onitor/About form [...]

  • Page 110

    Nortel Switched Firewall Browse r-Based Interface Users Guide 110  Browser-Bas ed Interface forms reference 216383-D October 2005 Users forms Administration/Users provi des the following two categories o f forms:  General (see Administration/Users/G eneral form)  SSH Users (see Administration/Users/SSH Users form on page 113 ) Administrati[...]

  • Page 111

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  111 216383-D October 20 05  Group(s) displays the group to which the user belongs.  Actions provides a Modify butto n used to modify passwords for the default user names or modify information for user names ot her than the defaults (see A[...]

  • Page 112

    Nortel Switched Firewall Browse r-Based Interface Users Guide 112  Browser-Bas ed Interface forms reference 216383-D October 2005  Current Login Password provides an entry fi eld to record the curr ent active password for the named user (for example, oper user or admin user).  Password provides an entry field to record the new password. ?[...]

  • Page 113

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  113 216383-D October 20 05  Password (again) provides an entry field to confirm the new password.  Save User saves the user information and return s to the Adm inistration/users/General form. TIP : Save User applies the change . Do not us[...]

  • Page 114

    Nortel Switched Firewall Browse r-Based Interface Users Guide 114  Browser-Bas ed Interface forms reference 216383-D October 2005 Administration/Users/SSH Users Add New SSH User form Use the Administration/Users/SSH Users Add Ne w SSH User form to add a ne w SSH user to the configuration. Figure 82 Administration/Users/SSH Us ers Add New SSH Use[...]

  • Page 115

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  115 216383-D October 20 05 Access List form Use the Administration Access List form to speci fy which clients are permitted to administer the system (see Administration/Access List form). W eb access must also be specified (see Administration/W[...]

  • Page 116

    Nortel Switched Firewall Browse r-Based Interface Users Guide 116  Browser-Bas ed Interface forms reference 216383-D October 2005 Administration/Acces s List Add New Client Access form Use the Administration/Access List Add New Client Access form to add a new client access to the configuration. Figure 84 Administration/Access List Add New Client[...]

  • Page 117

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  117 216383-D October 20 05 T elnet-SSH form Use the Administration/T elnet-SSH form to enable or disable T elnet/SSH administration (see Administrati on/T elnet-SSH f orm). Figure 85 Administration/T elnet-SSH form The Administration/ T elnet-S[...]

  • Page 118

    Nortel Switched Firewall Browse r-Based Interface Users Guide 118  Browser-Bas ed Interface forms reference 216383-D October 2005 Web forms The Administration/W eb forms provide the following:  W eb (HTTP) administration  Creation and administration of self-signed serv er certificates that allow the BBI to run under SSL  Administra tion[...]

  • Page 119

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  119 216383-D October 20 05 The Administration/ W eb/Gen eral form is divided into the fol lowing two sections for web settings:  HTTP Settings  HTTP/SSL Settings Fields and buttons on the form are as follows:  HTTP Settings  Port pr[...]

  • Page 120

    Nortel Switched Firewall Browse r-Based Interface Users Guide 120  Browser-Bas ed Interface forms reference 216383-D October 2005 Administration/Web/Create Cert form The Administration/W eb/Create Cert form provid es a quick method to create a self-signed certificate that allows the BBI to run under SSL (see Administration/W eb/Create Cert form)[...]

  • Page 121

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  121 216383-D October 20 05 Administration/Web/Server Cert s form Use the Administration/W eb/Server Certs form to administer server certificates on the Firewall (see Administration/W eb/Serv er Certs form). Figure 88 Administration/Web/Server C[...]

  • Page 122

    Nortel Switched Firewall Browse r-Based Interface Users Guide 122  Browser-Bas ed Interface forms reference 216383-D October 2005  Add New Server Certificate opens a form to add a new server certificate (see Administrati on/W eb/Server Certs Add Server Cer tificate form).  Server Certificate Management  Generate Certificate Request open[...]

  • Page 123

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  123 216383-D October 20 05 Administration/Web/Server Cert s/Generate Certificate Request form Use the Administration/W eb/Server Certs/Genera te Certificate Request form to genera te a certificate request (see Administ ration/W eb/Server Certs/[...]

  • Page 124

    Nortel Switched Firewall Browse r-Based Interface Users Guide 124  Browser-Bas ed Interface forms reference 216383-D October 2005 Administration/Web/CA Cert s form Use the Administration/W eb/CA Certs form to administer Certificate Authorit y (CA) certificates on the Firewall (see Administrati on/W eb/CA Certs form). CA certificates are required[...]

  • Page 125

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  125 216383-D October 20 05 Administration/Web/CA Cert s Add Server Certificate form Use the Administration/W eb/CA Certs Add Server Certificate form to ad d a server certificate. Figure 92 Administration/W eb/CA Certs Add Server Certificate for[...]

  • Page 126

    Nortel Switched Firewall Browse r-Based Interface Users Guide 126  Browser-Bas ed Interface forms reference 216383-D October 2005 SNMP forms Use the Administration/SNMP forms to enable or disable SNMP event and alarm messages, enter administrative inform ation for the SNMP syst em, list confi gured trap host s, administer USM users, and configur[...]

  • Page 127

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  127 216383-D October 20 05  SNMPv3 (USM) Options Fields and buttons on the form are as follows:  SNMP Settings  Status provides a list with the following selections: o Enabled enables the SNMP agent. o Disabled disables the SNMP agent.[...]

  • Page 128

    Nortel Switched Firewall Browse r-Based Interface Users Guide 128  Browser-Bas ed Interface forms reference 216383-D October 2005  Update submits the form changes to the pending configuration. Administration/SNMP/System form Use the Administration/SNM P/System form to enter administrativ e information on behalf of the SNMP system (see Adminis[...]

  • Page 129

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  129 216383-D October 20 05 Administration/SNMP/T rap Hosts form The Administration/SNMP/T rap Hosts form lists configured trap hosts receiving SNMP event or alarm messages from the Firewall (see Administration/ SNMP/T rap Hosts form). Figure 95[...]

  • Page 130

    Nortel Switched Firewall Browse r-Based Interface Users Guide 130  Browser-Bas ed Interface forms reference 216383-D October 2005 Administration/SNMP/T rap Hosts Add T rap Host form Use the Administration/SNMP/Trap Hosts Ad d Tr ap Host form to add a trap host. Figure 96 Administration/SNMP/T rap Hosts Add T rap Host form Fields and buttons on t[...]

  • Page 131

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  131 216383-D October 20 05 Administration/SNMP/USM Users form Use the Administration/SNMP/USM Users form to administer US M users employed in SNMP v3 (usm) authentication and en cryption (see Administration/SNMP/U SM Users form). Figure 97 Admi[...]

  • Page 132

    Nortel Switched Firewall Browse r-Based Interface Users Guide 132  Browser-Bas ed Interface forms reference 216383-D October 2005 Administration/SNMP/USM Us ers Add SNMP User form Use the Administration/SNMP/ USM Users Add SN MP User form to add a new SNMP user . Figure 98 Administration/SNMP/USM Us ers Add SNMP User form Fields and buttons on t[...]

  • Page 133

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  133 216383-D October 20 05  Back returns to the Admini stration/SNMP/USM /Users form without submit ting changes to the pending configuration. Administration/SNMP/MIBs form The Administration/SN MP/MIBs form displays all of the SNMP MIB file[...]

  • Page 134

    Nortel Switched Firewall Browse r-Based Interface Users Guide 134  Browser-Bas ed Interface forms reference 216383-D October 2005 Administration/SNMP/Advanced form Use the Administration/SNMP/Adva nced form to configure the so urce IP address used with SNMP traps generated from the Firewall (see Administration/SNMP/Advanced form). Figure 100 Adm[...]

  • Page 135

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  135 216383-D October 20 05 SSH Keys form Use the Administration/SSH keys form to display the current Host Keys and generate new SSH keys for the cluster (see Adm inistration/SSH keys form). Figure 101 Administration/SSH keys form The Administra[...]

  • Page 136

    Nortel Switched Firewall Browse r-Based Interface Users Guide 136  Browser-Bas ed Interface forms reference 216383-D October 2005  Import SSH Key imports an SSH key from a remote host (see Administ ration/SSH Keys Import SSH Key form on page 137 ).  SSH Key Generation includes the follo wing fields and buttons:  Generate new Keys genera[...]

  • Page 137

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  137 216383-D October 20 05 Administration/SSH Keys Import SSH key form Use the Administration/SSH Keys Import SSH Key form to import SSH keys (see Administrati on/SSH Keys Import SSH Key form). Figure 103 Administration/SSH Ke ys Import SSH Key[...]

  • Page 138

    Nortel Switched Firewall Browse r-Based Interface Users Guide 138  Browser-Bas ed Interface forms reference 216383-D October 2005 Administration/SSH Keys Show SSH keys form Use the Administration/SSH Keys Show SSH keys form to vi ew resident SSH key inform ation (see Administration/SSH Keys Show SSH keys form). Figure 104 Administration/SSH Ke y[...]

  • Page 139

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  139 216383-D October 20 05 The Administration/RADIUS form is divided in to the following two sections:  General  RADIUS Servers Fields and buttons on the form are as follows:  General  Status provides a list with the following two s[...]

  • Page 140

    Nortel Switched Firewall Browse r-Based Interface Users Guide 140  Browser-Bas ed Interface forms reference 216383-D October 2005 Administration/RADIUS Add RADIUS Authentication Serve r form Use the Administration/RADIUS Add RAD IUS Au thentication Server fo rm to add a RADIUS Authentication server . Figure 106 Administration/RADIUS Add RADIUS A[...]

  • Page 141

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  141 216383-D October 20 05 APC UPS form Use the Administration/APC UPS fo rm to configure settings for Ameri can Power Corporation Uninterrupted Power Supply (APC UPS) (see Administrat ion/APC UPS form). Figure 107 Administration/APC UPS form F[...]

  • Page 142

    Nortel Switched Firewall Browse r-Based Interface Users Guide 142  Browser-Bas ed Interface forms reference 216383-D October 2005  Update submits the UPS Monito r changes to the pending configuration. Audit form Use the Administration/Audit fo rm to configure a RADIUS se rver to receive log messages about commands executed in the CL I (see Ad[...]

  • Page 143

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  143 216383-D October 20 05  RADIUS Servers  IP Address provides the addres s of a configured RADIUS server or an entry field to change or specify the IP A ddress of a RADIUS server .  Port provides the TCP port number or an entr y fiel[...]

  • Page 144

    Nortel Switched Firewall Browse r-Based Interface Users Guide 144  Browser-Bas ed Interface forms reference 216383-D October 2005  Update submits the change s to the pending configuration.  Back returns to the Administrati on/Audit form without submitt ing changes to the pending configuration.[...]

  • Page 145

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  145 216383-D October 20 05 Diagnostics forms The Diagnostics forms provide informati on about logs, forms to check configuration and Check Point Logs, system commands, an d OSPF Debug settings. The Diagnostic forms menu includes the follo wing [...]

  • Page 146

    Nortel Switched Firewall Browse r-Based Interface Users Guide 146  Browser-Bas ed Interface forms reference 216383-D October 2005 The Diagnostics/Logs form is divided into the fo llowing two sections:  Log Information  Log Files Fields and buttons on th e form are as follows:  Log Information  Firewall Director provides a l ist conta[...]

  • Page 147

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  147 216383-D October 20 05 Events form The Diagnostics/Events form displays the contents of the event log file (see Diagnostics/Events fo rm). Figure 1 1 1 Diagnostics/ Events form Fields and buttons on the Diagnos tics/Events form are as follo[...]

  • Page 148

    Nortel Switched Firewall Browse r-Based Interface Users Guide 148  Browser-Bas ed Interface forms reference 216383-D October 2005 Audit Log form Use the Diagnostics/Audit Log fo rm to display the latest 64 K of the device audit log (see Diagnostics/Audit Log fo rm). Figure 1 12 Diagnostics/Audit Log form Fields and buttons on the Diagnostic/ Aud[...]

  • Page 149

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  149 216383-D October 20 05 Maintenance forms Use the Diagnostics/Maintenance/Check Conf iguration form to check the applied configuration (see Diagnostics/Maint enance/Check Configuration form). Diagnostics/Maintenance/Check Config uration form[...]

  • Page 150

    Nortel Switched Firewall Browse r-Based Interface Users Guide 150  Browser-Bas ed Interface forms reference 216383-D October 2005  Applied Configuratio n displays configuration i nformation. Diagnostics/Maintenance/Ch eck Point Logs form Use the Diagnostics/Maintenance/ Check Point Logs form to provide Check Point Log file information, collec[...]

  • Page 151

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  151 216383-D October 20 05 System Commands form Use the Diagnostics/System Commands/System Commands form to execute Check Point system commands normally entered in a command window (see Diagnostics/System Commands/System Commands form). Figure [...]

  • Page 152

    Nortel Switched Firewall Browse r-Based Interface Users Guide 152  Browser-Bas ed Interface forms reference 216383-D October 2005  Unload Check Point Policy (fw unloadlocal)  Current interfaces (ifconfig)  Current runni ng pr ocesses (ps -aefH)  Iptables information (iptab les -L)  ARP T able Entries/info/net/a rp (arp -n)  Cli[...]

  • Page 153

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  153 216383-D October 20 05  Packets turns on debuggi ng for OSPF packets.  Enabled displays the foll owing OSPF Debug operational settings:  Y es indicates OSPF Debug is enabled.  No indicates OSPF Debug is disabled.  Action disp[...]

  • Page 154

    Nortel Switched Firewall Browse r-Based Interface Users Guide 154  Browser-Bas ed Interface forms reference 216383-D October 2005 Wizards forms The W izards guid e the user through configuration processes. The W izards tab on th e NSF BBI main page prov ides the following se lections (see Wizards main menu):  Initial Configuration (see Ini ti[...]

  • Page 155

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  155 216383-D October 20 05 The figures in this section represent the first page of each NSF BBI W izard. Initial Configuration Wizard Use the Initial Configuration wizard to conf igure a working NSF en vironment (see Initial Configurati on W iz[...]

  • Page 156

    Nortel Switched Firewall Browse r-Based Interface Users Guide 156  Browser-Bas ed Interface forms reference 216383-D October 2005 Add Wizard forms Use the Add forms to add or modify interfaces and bridges. Add Interface Use the Add Interface wizard to add a new inte rface or modify a n existing interface (see Add Interface W izard form). Figure [...]

  • Page 157

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  157 216383-D October 20 05 Add GRE T unnel Use the Add GRE T unnel wizard to add a GRE tunnel to the configuration (see Add GRE T unnel W izard form). Figure 122 Add GRE T unnel Wizard form Configure Wizard forms Use the Configure forms to pe r[...]

  • Page 158

    Nortel Switched Firewall Browse r-Based Interface Users Guide 158  Browser-Bas ed Interface forms reference 216383-D October 2005 Routes/Gateways Use the Routes/Gateways form to confi gure static routes and default gatew ays (Configure Routes/Gateways W izard form). Figure 124 Configure Routes/Gate ways Wizard form DHCP Relay Use the DHCP Relay [...]

  • Page 159

    Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms refer ence  159 216383-D October 20 05 OSPF Use the OSPF form to configur e use of the Open Shortest Path First (OSPF) protocol (see Configure OSPF Wizard form). Figure 126 Configure OSPF Wiza rd form Remote Access Use the Remote Access wizard fo rm to per[...]

  • Page 160

    Nortel Switched Firewall Browse r-Based Interface Users Guide 160  Browser-Bas ed Interface forms reference 216383-D October 2005 Users Use the User Administration W izard to perform user administration tasks and configuratio n, such as add, modify , or delete a us er (see Us er Administration W izard form). Figure 128 User Administration Wizard[...]