Italiano dropdown-ico

Manuale per l’uso Cisco Systems 7600 SERIES

24 pagine 0.36 mb
Scarica

Vai alla pagina of 24

Summary
  • Cisco Systems 7600 SERIES - page 1

    CH A P T E R 23-1 Cisco 7600 Series Router Cisco IOS Software Configuration Guide—12.1E 78-14064-04 23 Configuring Network Security This chapter contains n etwork security information unique to the Cisco 7600 series r outers, which supplements the network security information and procedures in these publications: • Cisco IOS Security Conf igur ...

  • Cisco Systems 7600 SERIES - page 2

    23-2 Cisco 7600 Series Router Cisco IOS Software C onfiguration Guide—12.1E 78-14064-04 Chapter 23 Configur ing Network Security Hardware and Software ACL Support Wi t h t h e ip unr eachable s command en abled (which i s the default), a Sup ervisor Engine 2 drops most of the denied packets in hardware and sends only a small number of pack ets to ...

  • Cisco Systems 7600 SERIES - page 3

    23-3 Cisco 7600 Series Router Cisco IOS Software Configuration Guide—12.1E 78-14064-04 Chapter 23 Con figuring Network Security Guidelines and Restrictio ns for Using Layer 4 Operators in ACLs • Flo ws that require logging are processed in software witho ut impacting nonlog ged flo w processing in hardware. • The forwarding rate for softw are ...

  • Cisco Systems 7600 SERIES - page 4

    23-4 Cisco 7600 Series Router Cisco IOS Software C onfiguration Guide—12.1E 78-14064-04 Chapter 23 Configur ing Network Security Configuring the Cisco IOS Firewall Feature Set Determining Logical Operation Unit Usage Logical operation units (LOUs) are registers that st ore operator-operand cou ples. All A CLs use LOUs. There can be up to 32 LOUs; ...

  • Cisco Systems 7600 SERIES - page 5

    23-5 Cisco 7600 Series Router Cisco IOS Software Configuration Guide—12.1E 78-14064-04 Chapter 23 Con figuring Network Security Configuring the Cisco IO S Firewall Feature Se t • Fire wall Configuration Gui delines and Restrictions, page 23-6 • Config uring CB A C on Cisco 7600 Seri es Routers, page 23-6 Cisco IOS Firewall Feature Set Support ...

  • Cisco Systems 7600 SERIES - page 6

    23-6 Cisco 7600 Series Router Cisco IOS Software C onfiguration Guide—12.1E 78-14064-04 Chapter 23 Configur ing Network Security Configuring the Cisco IOS Firewall Feature Set Note Cisco 7600 series router s support the Intrusi on Detection System Module (ID SM) (WS-X6381-IDS). Cisco 7600 serie s routers do no t support the C isco IOS fire wall I ...

  • Cisco Systems 7600 SERIES - page 7

    23-7 Cisco 7600 Series Router Cisco IOS Software Configuration Guide—12.1E 78-14064-04 Chapter 23 Con figuring Network Security Configuring MAC Address-Based Tra ffic Blocking Router(config-if)# exit Router(config)# interface vlan 200 Router(config-if)# ip access-group deny_ftp_c in Router(config-if)# ip access-group deny_ftp_d out Router(config- ...

  • Cisco Systems 7600 SERIES - page 8

    23-8 Cisco 7600 Series Router Cisco IOS Software C onfiguration Guide—12.1E 78-14064-04 Chapter 23 Configur ing Network Security Configuring VLAN ACLs This exampl e sho ws ho w to block all traf fic to or from MA C address 0050.3e8d.6400 in VLAN 12: Router# configure terminal Router(config)# mac-address-table static 0050.3e8d.6400 vlan 12 drop Co ...

  • Cisco Systems 7600 SERIES - page 9

    23-9 Cisco 7600 Series Router Cisco IOS Software Configuration Guide—12.1E 78-14064-04 Chapter 23 Con figuring Network Security Configuring VLAN ACLs is first checked against the output ACL applied to the routed interface and, if permitt ed, the VACL configured for the destinat ion VLAN is applied. If a V A CL is configured for a pack et type and ...

  • Cisco Systems 7600 SERIES - page 10

    23-10 Cisco 7600 Series Router Cisco IOS Software C onfiguration Guide—12.1E 78-14064-04 Chapter 23 Configur ing Network Security Configuring VLAN ACLs Routed Packets Figure 23-2 sh ow s ho w A CLs are applied on routed and Layer 3-switched pack ets. For routed or Layer 3-switched packets, the ACLs are applied in the follo wing order: 1. V A CL f ...

  • Cisco Systems 7600 SERIES - page 11

    23-11 Cisco 7600 Series Router Cisco IOS Software Configuration Guide—12.1E 78-14064-04 Chapter 23 Con figuring Network Security Configuring VLAN ACLs Multicast Packets Figure 23-3 sho ws how A CLs are applied on packets that need multicast e xpansion. F or packets that need multicast e xpansion, the AC Ls are applied in the follo wing order: 1. ...

  • Cisco Systems 7600 SERIES - page 12

    23-12 Cisco 7600 Series Router Cisco IOS Software C onfiguration Guide—12.1E 78-14064-04 Chapter 23 Configur ing Network Security Configuring VLAN ACLs • VLAN Access Map Conf iguration and V e rificat ion Examples, page 23- 15 • Config uring a Capture Port, page 23-16 VACL Configuration Overview V A CLs use standard and ext ended Cisco IOS IP ...

  • Cisco Systems 7600 SERIES - page 13

    23-13 Cisco 7600 Series Router Cisco IOS Software Configuration Guide—12.1E 78-14064-04 Chapter 23 Con figuring Network Security Configuring VLAN ACLs When defini ng a VLAN access map, note the follo wing syntax information: • T o insert or modify an entry , specify the map sequence number . • If you do not sp ecify the map sequence num be r ...

  • Cisco Systems 7600 SERIES - page 14

    23-14 Cisco 7600 Series Router Cisco IOS Software C onfiguration Guide—12.1E 78-14064-04 Chapter 23 Configur ing Network Security Configuring VLAN ACLs Configuring an Action Clause in a VLAN Access Map Sequence T o configure an action clause in a VLAN access map sequence, perform this task: When configuring an action clause in a VLAN access map s ...

  • Cisco Systems 7600 SERIES - page 15

    23-15 Cisco 7600 Series Router Cisco IOS Software Configuration Guide—12.1E 78-14064-04 Chapter 23 Con figuring Network Security Configuring VLAN ACLs When applying a VLAN access map, note the follow ing syntax informati o n: • Y ou can apply the VLAN access map to on e or more VLANs or W AN interfaces. • The vlan_list parameter can be a sing ...

  • Cisco Systems 7600 SERIES - page 16

    23-16 Cisco 7600 Series Router Cisco IOS Software C onfiguration Guide—12.1E 78-14064-04 Chapter 23 Configur ing Network Security Configuring VLAN ACLs This exampl e sho ws how to def ine and apply a VLAN ac cess map to forward IP packets. In this e xample, IP traf fic matching net_10 is for warded and al l ot her IP packets are dropped due to th ...

  • Cisco Systems 7600 SERIES - page 17

    23-17 Cisco 7600 Series Router Cisco IOS Software Configuration Guide—12.1E 78-14064-04 Chapter 23 Con figuring Network Security Configuring VLAN ACLs When config uring a capture port, note th e follo wing syntax information: • W ith Release 12.1(13)E and later releases, you can co nfigure an y port as a capture port. W ith earlier releases, on ...

  • Cisco Systems 7600 SERIES - page 18

    23-18 Cisco 7600 Series Router Cisco IOS Software C onfiguration Guide—12.1E 78-14064-04 Chapter 23 Configur ing Network Security Configuring TCP Interc ept These restrictions apply to V A CL logging: • Supported only with Su pervisor Engine 2. • Because of the rate-limiting func tion for redirected packets, V A CL logging counters may not be ...

  • Cisco Systems 7600 SERIES - page 19

    23-19 Cisco 7600 Series Router Cisco IOS Software Configuration Guide—12.1E 78-14064-04 Chapter 23 Con figuring Network Security Configuring Unicast Re verse Path Forwarding Configuring Unicast Reverse Path Forwarding These sections describe conf iguring Cisco IOS Unicast Re verse Path F orwarding (Unicast RPF): • Understanding Unicast RPF S up ...

  • Cisco Systems 7600 SERIES - page 20

    23-20 Cisco 7600 Series Router Cisco IOS Software C onfiguration Guide—12.1E 78-14064-04 Chapter 23 Configur ing Network Security Configuring Unicast Re verse Path Forwarding This e xample sho ws how to enable self-p inging: Router(config)# interface gigabitethernet 4/1 Router(config-if)# ip verify unicast source reachable-via any allow-self-ping ...

  • Cisco Systems 7600 SERIES - page 21

    23-21 Cisco 7600 Series Router Cisco IOS Software Configuration Guide—12.1E 78-14064-04 Chapter 23 Con figuring Network Security Configuring Unicast Flood Protection This example sho ws how to enable Unicast RPF exis t-only checking mode on Gi gabit Ethernet port 4/ 1: Router(config)# interface gigabitethernet 4/1 Router(config-if)# ip verify uni ...

  • Cisco Systems 7600 SERIES - page 22

    23-22 Cisco 7600 Series Router Cisco IOS Software C onfiguration Guide—12.1E 78-14064-04 Chapter 23 Configur ing Network Security Configuring MAC Move Notification When config uring unicast flood pr otection, note the follo wing syntax information: • Use the limit keyw ord to specify the unicast floods on a per source MA C address and per VLAN ...

  • Cisco Systems 7600 SERIES - page 23

    23-23 Cisco 7600 Series Router Cisco IOS Software Configuration Guide—12.1E 78-14064-04 Chapter 23 Con figuring Network Security Configuring MAC Move Notification This exampl e sho ws ho w to enable the MA C mov e notif ication feature: Router(config)# mac-address-table notification mac-move Router# show mac-address-table notification mac-move MA ...

  • Cisco Systems 7600 SERIES - page 24

    23-24 Cisco 7600 Series Router Cisco IOS Software C onfiguration Guide—12.1E 78-14064-04 Chapter 23 Configur ing Network Security Configuring MAC Move Notification ...

Fabbricante Cisco Systems Categoria Network Router

I documenti che otteniamo dal fabbricante del dispositivoCisco Systems 7600 SERIES possono essere suddivisi in diversi gruppi. Questi sono tra gli altri:
- disegni tecnici Cisco Systems
- manuali per l’uso 7600 SERIES
- schede prodotto Cisco Systems
- opuscoli
- o etichette energetiche Cisco Systems 7600 SERIES
Tutti sono importanti, ma le informazioni più importanti dal punto di vista di utilizzo del dispositivo possono essere trovate nel manuale per l’uso Cisco Systems 7600 SERIES.

Un gruppo di documenti denominato manuali per l’uso, è anche suddiviso in tipi più specifici, come: Manuali di installazione Cisco Systems 7600 SERIES, manuali di manutenzione, brevi manuali o manuali utente Cisco Systems 7600 SERIES. A seconda delle esigenze, si dovrebbe cercare il documento necessario. Nel nostro sito web, puoi visualizzare il manuale più popolare per l'uso del prodotto Cisco Systems 7600 SERIES.

Manuali per l’uso simili

Manuale completo del dispositivo Cisco Systems 7600 SERIES, come deve essere?
Il manuale per l’uso, denominato anche istruzioni per l’uso, o semplicemente il manuale è un documento tecnico progettato per aiutare ad utilizzare Cisco Systems 7600 SERIES dagli utenti. I manuali sono di solito scritti da uno scrittore tecnico, ma in un linguaggio accessibile a tutti gli utenti Cisco Systems 7600 SERIES.

Il manuale per l’uso completo Cisco Systems, dovrebbe includere vari elementi di base. Alcuni di loro sono meno importanti, come ad esempio: copertina / pagina del titolo o pagina di autore. Tuttavia, la parte rimanente, dovrebbe fornire informazioni importanti dal punto di vista dell'utente.

1. Introduzione e la guida su come utilizzare il manuale Cisco Systems 7600 SERIES - All'inizio di ogni manuale, dovremmo trovare indizi su come utilizzare il documento. Dovrebbe contenere informazioni sulla posizione dell’indice Cisco Systems 7600 SERIES, FAQ o i problemi più comuni : i punti che sono più spesso cercati dagli utenti di ogni manuale
2. Indice - elenco di tutti i suggerimenti per Cisco Systems 7600 SERIES che possono essere trovati nel documento corrente
3. Suggerimenti su come utilizzare le funzioni di base del dispositivo Cisco Systems 7600 SERIES - che ci dovrebbe aiutare nei primi passi durante l'uso Cisco Systems 7600 SERIES
4. Troubleshooting - sequenza sistematica delle attività che vi aiuterà a diagnosticare e, successivamente, risolvere i problemi più importanti del Cisco Systems 7600 SERIES
5. FAQ - domande più frequenti
6. Dettagli di contatto Informazioni su dove cercare il contatto con il fabbricante / servizio Cisco Systems 7600 SERIES in un dato paese, se il problema non può essere risolto da noi stessi.

Hai una domanda su Cisco Systems 7600 SERIES?

Utilizza il modulo sottostante

Se non hai risolto il problema con Cisco Systems 7600 SERIES con l'aiuto del manuale che hai trovato, fai una domanda utilizzando il modulo sottostante. Se un utente ha avuto un problema simile con Cisco Systems 7600 SERIES è probabile che voglia condividere il modo di risolverlo.

Riscrivi il testo dall’immagine

Captcha
Nuova immagine

Commenti (0)