Changes

Template:Networking rutos manual administration (view source)

Revision as of 15:38, 27 June 2024

668 bytes added , 27 June

no edit summary

Line 22: Line 22:

| TCR1=[[File:Networking_rutos_manual_administration_general_tcr_v2.png|border|class=tlt-border]]

−

| #default=[[File:~~Networking_rutos_manual_administration_general_rut_v2~~.png|border|class=tlt-border]]

+

| #default=[[File:Networking_rutos_manual_administration_general_rut_V3.png|border|class=tlt-border]]

}}

Line 44: Line 44:

<td>Basic {{!}} Advanced; default: Basic</td>

<td>Mode determines what options and configurations are shown. In Basic mode only the essential configurations are shown. In Advanced mode there is greater freedom to configure and access more options.</td>

−

</tr>}}

+

</tr>

+

<tr>

+

<td>Data Analytics</td>

+

<td>Off {{!}} On; default: Off</td>

+

<td>Enables collecting usage data</td>

+

</tr>

+

}}

<tr>

<th>Device name and hostname</th>

Line 262: Line 268:

{{#switch:{{{series}}}|TAP100|TAP200=|#default=Important: turning on remote access leaves your device vulnerable to external attackers. Make sure you use a strong password.

}}

−

~~~~SSH~~~~

+

====SSH====

----{{#switch:{{{series}}}

|TAP100|TAP200 = [[File:Networking_rutos_manual_administration_access_control_general_ssh_tap100_v1.png|border|class=tlt-border]]

Line 277: Line 283:

<td>off {{!}} on; default: on</td>

<td>Turns SSH access from the local network (LAN) on or off.</td>

−

</tr>{{#switch:{{{series}}}|TAP100|TAP200=|#default

+

</tr>{{#switch:{{{series}}}|TAP100|TAP200=|#default=

<tr>

<td>Remote SSH access</td>

Line 295: Line 301:

</table>

−

~~~~WebUI~~~~

+

====WebUI====

----{{#switch:{{{series}}}

−

|TAP100|TAP200 = [[File:~~Networking_rutos_manual_administration_access_control_general_webui_tap100_v1~~.png|border|class=tlt-border]]

+

|TAP100|TAP200 = [[File:Networking_rutos_manual_administration_access_control_general_webui_tap100_v2.png|border|class=tlt-border]]

−

|#default = [[File:~~Networking_rutos_manual_administration_access_control_general_webui_v1~~.png|border|class=tlt-border]]}}

+

|#default = [[File:Networking_rutos_manual_administration_access_control_general_webui_v2.png|border|class=tlt-border]]}}

Line 327: Line 333:

</tr>}}

<tr>

−

+

<td>integer [0..65535]; default: 80</td>

<td>Selects which port to use for HTTP access.</td>

Line 337: Line 343:

</tr>}}

<tr>

−

+

<td>HTTPS Port</td>

<td>integer [0..65535]; default: 443</td>

<td>Selects which port to use for HTTPS access.</td>

Line 361: Line 367:

<td>Server key file.</td>

</tr>}}

+

<tr>

+

<td>Certificate file</td>

+

<td>Download</td>

+

<td>Certificate file.</td>

+

</tr>

</table>

−

~~~~CLI~~~~

+

====CLI====

----{{#switch:{{{series}}}

|TAP100|TAP200 = [[File:Networking_rutos_manual_administration_access_control_general_cli_tap100.png|border|class=tlt-border]]

Line 395: Line 406:

</tr>

</table>

−

~~{{#switch:{{{series}}}|TAP100|TAP200~~=~~|#default~~=

+

−

~~~~Telnet~~~~

+

====Telnet====

----

−

[[File:Networking_rutos_manual_administration_access_control_general_telnet.png|border|class=tlt-border]]

+

Note: Telnet is additional software that can be installed from the System → [[{{{name}}} Package Manager|Package Manager]] page.

+

{{#switch:{{{series}}}|TAP100|TAP200=|#default=

+

[[File:Networking_rutos_manual_administration_access_control_general_telnet.png|border|class=tlt-border]]}}

Line 451: Line 464:

<tr>

−

<td>Required {{!}} Requisite {{!}} Sufficient {{!}} Optional; default: ~~Required~~ </td>

+

<td>Required {{!}} Requisite {{!}} Sufficient {{!}} Optional; default: Optional </td>

<td>Determines the continuation or failure behavior for the module</td>

+

</tr>

+

<tr>

+

<td>Radius: Enable for all users</td>

+

<td>off {{!}} on; default: off</td>

+

<td>Turn on PAM authentication for all users. It will allow login with users that are not created on the device.</td>

</tr>

<tr>

Line 482: Line 500:

IP Block Settings

----

−

[[File:~~Networking_rutos_manual_administration_access_control_security_v3~~.png|border|class=tlt-border]]

+

[[File:Networking_rutos_manual_administration_access_control_security_v4.png|border|class=tlt-border]]

<tr>

Line 493: Line 511:

<td>off {{!}} on; default: on</td>

<td>Enable or disable blocking IP's if they have reached the set amount of failed times.</td>

+

</tr>

+

<tr>

+

+

<td>Timed blocking {{!}} Permanent blocking; default: Timed blocking</td>

+

<td>You can choose an option of a blocking type.</td>

</tr>

<tr>

Line 503: Line 526:

<td>off {{!}} on; default: off</td>

<td>If enabled, blocked loging attempts list will be cleared on device reboot.</td>

−

~~</tr>~~

−

~~<tr>~~

−

~~<td>Enable MAC blockig</td>~~

−

~~<td>off {{!}} on; default: off</td>~~

−

~~<td>If enabled, MAC adresses wil be blocked.</td>~~

</tr>

</table>

Line 513: Line 531:

Login Attempts

----

−

[[File:~~Networking_rutos_manual_administration_access_control_security_login~~.png|border|class=tlt-border]]

+

[[File:Networking_rutos_manual_administration_access_control_security_login_v2.png|border|class=tlt-border]]

<tr>

Line 521: Line 539:

</tr>

<tr>

−

<td>Source ~~address~~</td>

+

<td>Source</td>

<td>IP address</td>

<td>Shows the IP address from which the connection failed.</td>

</tr>

<tr>

−

~~<td>Device port</td>~~

+

<td>Destination</td>

−

~~<td>Port number</td>~~

−

~~<td>Shows the port number from which the connection failed.</td>~~

−

~~</tr>~~

−

~~<tr>~~

−

<td>Destination ~~address~~</td>

<td>IP address</td>

<td>Shows yours device IP adress</td>

</tr>

<tr>

−

<td>~~Protocol~~</td>

+

<td>Port (protocol)</td>

−

<td>~~Connection protocol~~</td>

+

<td>Port number</td>

−

<td>~~Displays~~ the connection ~~protocol used for connection~~.</td>

+

<td>Shows the port number from which the connection failed.</td>

</tr>

<tr>

−

<td>~~Failed atempts~~</td>

+

<td>Status</td>

−

<td>~~Number~~</td>

+

<td>Attempt count {{!}} Blocked</td>

−

<td>Shows the number of failed attempts to connect to device.</td>

+

<td>Shows the number of failed attempts to connect to device. Indicates whether the source address is blocked or not.</td>

</tr>

<tr>

−

~~<td>Status</td>~~

−

~~<td>- {{!}} Blocked</td>~~

−

~~<td>Indicates whether the source address is blocked or not.</td>~~

−

~~</tr>~~

−

~~<tr>~~

<td>Reset</td>

<td>Check box</td>

<td>Allows you to select multiple IP addresses.</td>

</tr>

−

<tr>

+

<tr>

+

<td>Actions</td>

+

<td>-(interactive button)</td>

+

<td>Allows you to select multiple IP addresses.</td>

+

</tr>

+

<tr>

<td>Unblock all</td>

<td>-(interactive button)</td>

−

<td>~~Unblocks all source adresses from the list~~.</td>

+

<td>Deletes instance.</td>

</tr>

−

<tr>

+

<tr>

<td>Unblock selected</td>

<td>-(interactive button)</td>

Line 604: Line 617:

After clicking 'Edit' you should be redirected to that phone group's configuration page where you can start adding phone numbers to it.

−

[[File:~~Networking_rutos_manual_administration_recipients_phone_groups_modify_phone_group~~.png|border|class=tlt-border]]

+

[[File:Networking_rutos_manual_administration_recipients_phone_groups_modify_phone_group_v2.png|border|class=tlt-border]]

Line 708: Line 721:

The Certificate Generation tab provides the possibility to generate TLS certificates required for secure authentication and communication encryption used by some of the devices services.

−

There are ~~five~~ distinct generation methods (denoted by the selected 'File Type').

+

There are six distinct generation methods (denoted by the selected 'File Type').

<ol>

Line 723: Line 736:

<li>Client - generates a client certificate and key. A client certificate validates a client's identity to the server that it's connecting to, while a key is responsible for encryption.</li>

<li>DH Parameters - generates a Diffie-Hellman (DH) parameters file. DH parameters are used in symmetric encryption to protect and define how OpenSSL key exchange is performed.</li>

+

<li>Let's encrypt - generates SSL certificate.</li>

</ol>

Vainius.l

Administrators

9,634

edits