command structure, 47
commit ends WebUI sessions, 56
indexing, 51
multiple property values, 50
name references, 51
object category, 50
object context, 50
object type, 47
omitting the object category, 50
prompt change, 55
reconfiguring NetDefendOS, 56
restarting/rebooting NetDefendOS, 56
secure shell, 52
tab completion, 48
tab completion of property values, 49
using hostnames, 51
CLI scripts, 58
automatic creation, 61
command ordering, 60
commenting, 63
error handling, 60
escaping characters, 60
excluded objects, 62
executing, 59
execution via web interface, 63
file naming, 58
for the entire configuration, 62
listing, 61
omitting the object category, 62
removing, 61
saving, 60
script filename length, 62
security gateway script (.sgs), 58
storage folder, 65
uploading with SCP, 65
validation, 60
variables, 59
verbose output, 60
cluster (see high availability)
command line interface (see CLI)
config mode, 711
configuration object groups, 241
and folders, 245
and the CLI, 241
editing properties of, 243
configurations, 71
activating changes in the CLI, 55
activating changes in the Web Interface, 45
backup/restore, 136
backup compatibility, 137
checking integrity, 56
duplicate naming, 51
connection limiting (see threshold rules)
connection rate limiting (see threshold rules)
Connection Replace setting, 860
connections command, 123
closing connections, 124
-verbose option, 125
Consecutive fails setting, 302
Consecutive success setting, 302
core interface, 179, 230
core routes, 294
crashdump CLI command, 126
Critical Level setting, 110
CRL, 272
distribution point lists, 275
enforcing checking, 269
D
date and time, 78
setting daylight saving time, 79
time servers, 82
daylight saving time, 79
setting manually, 81
with tz (Olson) database, 80
dconsole CLI command, 125
Deactivate Before Reconf (HA) setting, 840
dead peer detection, 703
Decrement TTL setting, 390
default access rule, 290, 421
Default TTL setting, 851
demilitarized zone (see DMZ)
denial of service attacks, 566
amplification attacks, 568
distributed attacks, 570
fragmentation overlap, 567
from IP spoofing, 422
ping of death attacks, 566
TCP SYN flood attacks, 569
destination RLB algorithm, 316
DHCP, 393
client, 182
displaying server info, 399
HA synchronization support, 834
IPv4 client, 395
IPv4 server, 397
leases, 393
multiple servers, 397
no client support in HA, 183, 395
passthrough with transparent mode, 384
relay, 404
relay advanced settings, 406
saving lease database to memory, 400
server advanced settings, 398
server blacklist, 400
server relay filter, 397
static host assignment, 401, 418
with IPv6, 397
with transparent mode, 384
DHCP_AllowGlobalBcast setting, 188
DHCP_DisableArpOnOffer setting, 188
DHCP_MinimumLeaseTime setting, 189
DHCP_UseLinkLocalIP setting, 189
DHCP_ValidateBcast setting, 189
DHCPv6, 411
clear universal local bit, 414
client, 411
HA synchronization support, 834
no client support in HA, 183, 411
out of memory condition, 415
preference value, 414
rapid commit, 414
router discovery, 412
send unicast, 414
server, 414
server setup, 415
DH groups (see diffie-hellman groups)
diagnostics and improvements, 142
disabling, 143
log event messages, 135
diagnostic tools, 118
dconsole CLI command, 125
diagnostic console, 118
frags CLI command, 131
Alphabetical Index
903
Содержание NetDefendOS
Страница 30: ...Figure 1 3 Packet Flow Schematic Part III Chapter 1 NetDefendOS Overview 30 ...
Страница 32: ...Chapter 1 NetDefendOS Overview 32 ...
Страница 144: ...Chapter 2 Management and Maintenance 144 ...
Страница 220: ... Enable DHCP passthrough Enable L2 passthrough for non IP protocols 4 Click OK Chapter 3 Fundamentals 220 ...
Страница 267: ... SourceNetwork lannet DestinationInterface any DestinationNetwork all nets 4 Click OK Chapter 3 Fundamentals 267 ...
Страница 284: ...Chapter 3 Fundamentals 284 ...
Страница 360: ...The ospf command options are fully described in the separate NetDefendOS CLI Reference Guide Chapter 4 Routing 360 ...
Страница 392: ...Chapter 4 Routing 392 ...
Страница 396: ...Web Interface 1 Go to Network Ethernet If1 2 Select Enable DHCP 3 Click OK Chapter 5 DHCP Services 396 ...
Страница 419: ... Host 2001 DB8 1 MAC 00 90 12 13 14 15 5 Click OK Chapter 5 DHCP Services 419 ...
Страница 420: ...Chapter 5 DHCP Services 420 ...
Страница 424: ...2 Now enter Name lan_Access Action Expect Interface lan Network lannet 3 Click OK Chapter 6 Security Mechanisms 424 ...
Страница 573: ...Chapter 6 Security Mechanisms 573 ...
Страница 575: ...This section describes and provides examples of configuring NAT and SAT rules Chapter 7 Address Translation 575 ...
Страница 607: ...Chapter 7 Address Translation 607 ...
Страница 666: ...Chapter 8 User Authentication 666 ...
Страница 775: ...Chapter 9 VPN 775 ...
Страница 819: ...Chapter 10 Traffic Management 819 ...
Страница 842: ...Chapter 11 High Availability 842 ...
Страница 866: ...Default Enabled Chapter 13 Advanced Settings 866 ...
Страница 879: ...Chapter 13 Advanced Settings 879 ...