6-8
Configuration Options
•
SSH Protection:
Enables/Disables and configures the Invalid Access function
for SSH connections. When this item is enabled and excessive Invalid Access
Attempts via SSH are detected, then the VMR/NPS will lock out the offending
MAC address for the user-defined SSH Lockout Duration Period or until the /UL
command is issued. Note that for SSH protection, the lockout trigger is a function
of the SSH Hit Count parameter and the SSH Lockout Duration Parameter.
•
Lockout Enable:
Enables/Disables Invalid Access Lockout protection for SSH
connections. (Default = Off.)
•
SSH Hit Count:
The number of invalid attempts that must occur during the
length of time specified by the SSH Lockout Duration period in order to trigger
the Invalid Access Lockout feature for SSH protocol. For example, if the SSH Hit
Count parameter is set to 10 and the SSH Lockout Duration parameter is set to
30 minutes, then the VMR/NPS will lock out the offending MAC address for 30
minutes when over 10 invalid access attempts occur during any 30 minute long
period. (Default = 20.)
•
SSH Lockout Duration:
This option selects both the length of time that an SSH
Lockout will remain in effect and also the time period over which invalid access
attempts will be counted. When an SSH Lockout occurs, the offending MAC
address will be prevented from establishing an SSH connection to the VMR/NPS
for the defined SSH Lockout Duration period. (Default = 2 Seconds.)
•
Telnet Protection:
Enables/Disables and configures the Invalid Access function
for Telnet connections. When this item is enabled and excessive Invalid Access
Attempts via Telnet are detected, then the VMR/NPS will lock out the offending
MAC address for the user-defined Telnet Lockout Duration Period or until the /UL
command is issued. Note that for Telnet protection, the lockout trigger is a function
of the Telnet Hit Count parameter and the Telnet Lockout Duration Parameter.
•
Lockout Enable:
Enables/Disables Invalid Access Lockout protection for Telnet
connections. (Default = Off.)
•
Telnet Hit Count:
The number of invalid attempts that must occur during
the length of time specified by the Telnet Lockout Duration period in order to
trigger the Invalid Access Lockout feature for the Telnet protocol. For example,
if the Telnet Hit Count parameter is set to 10 and the Telnet Lockout Duration
parameter is set to 30 minutes, then the VMR/NPS will lock out the offending
MAC address for 30 minutes when over 10 invalid access attempts occur during
any 30 minute long period. (Default = 20.)
•
Telnet Lockout Duration:
This option selects both the length of time that a
Telnet Lockout will remain in effect and also the time period over which invalid
access attempts will be counted. When a Telnet Lockout occurs, the offending
MAC address will be prevented from establishing a Telnet connection to the
VMR/NPS for the defined Telnet Lockout Duration period.
(Default = 2 Seconds.)