Line 277: |
Line 277: |
| <td>off {{!}} on; default: <b>on</b></td> | | <td>off {{!}} on; default: <b>on</b></td> |
| <td>Turns SSH access from the local network (LAN) on or off.</td> | | <td>Turns SSH access from the local network (LAN) on or off.</td> |
− | </tr>{{#switch:{{{series}}}|TAP100|TAP200=|#default | + | </tr>{{#switch:{{{series}}}|TAP100|TAP200=|#default= |
| <tr> | | <tr> |
| <td>Remote SSH access</td> | | <td>Remote SSH access</td> |
Line 482: |
Line 482: |
| <b>IP Block Settings</b> | | <b>IP Block Settings</b> |
| ---- | | ---- |
− | [[File:Networking_rutos_manual_administration_access_control_security_v3.png|border|class=tlt-border]] | + | [[File:Networking_rutos_manual_administration_access_control_security_v4.png|border|class=tlt-border]] |
| <table class="nd-mantable"> | | <table class="nd-mantable"> |
| <tr> | | <tr> |
Line 493: |
Line 493: |
| <td>off {{!}} on; default: <b>on</b></td> | | <td>off {{!}} on; default: <b>on</b></td> |
| <td>Enable or disable blocking IP's if they have reached the set amount of failed times.</td> | | <td>Enable or disable blocking IP's if they have reached the set amount of failed times.</td> |
| + | </tr> |
| + | <tr> |
| + | <td>Type</td> |
| + | <td>Timed blocking {{!}} Permanent blocking; default: <b>Timed blocking</b></td> |
| + | <td>You can choose an option of a blocking type.</td> |
| </tr> | | </tr> |
| <tr> | | <tr> |
Line 503: |
Line 508: |
| <td>off {{!}} on; default: <b>off</b></td> | | <td>off {{!}} on; default: <b>off</b></td> |
| <td>If enabled, blocked loging attempts list will be cleared on device reboot.</td> | | <td>If enabled, blocked loging attempts list will be cleared on device reboot.</td> |
− | </tr>
| |
− | <tr>
| |
− | <td>Enable MAC blockig</td>
| |
− | <td>off {{!}} on; default: <b>off</b></td>
| |
− | <td>If enabled, MAC adresses wil be blocked.</td>
| |
| </tr> | | </tr> |
| </table> | | </table> |
Line 513: |
Line 513: |
| <b>Login Attempts</b> | | <b>Login Attempts</b> |
| ---- | | ---- |
− | [[File:Networking_rutos_manual_administration_access_control_security_login.png|border|class=tlt-border]] | + | [[File:Networking_rutos_manual_administration_access_control_security_login_v2.png|border|class=tlt-border]] |
| <table class="nd-mantable"> | | <table class="nd-mantable"> |
| <tr> | | <tr> |
Line 521: |
Line 521: |
| </tr> | | </tr> |
| <tr> | | <tr> |
− | <td>Source address</td> | + | <td>Source</td> |
| <td>IP address</td> | | <td>IP address</td> |
| <td>Shows the IP address from which the connection failed.</td> | | <td>Shows the IP address from which the connection failed.</td> |
| </tr> | | </tr> |
| <tr> | | <tr> |
− | <td>Device port</td>
| + | <td>Destination</td> |
− | <td>Port number</td>
| |
− | <td>Shows the port number from which the connection failed.</td>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>Destination address</td> | |
| <td>IP address</td> | | <td>IP address</td> |
| <td>Shows yours device IP adress</td> | | <td>Shows yours device IP adress</td> |
| </tr> | | </tr> |
| <tr> | | <tr> |
− | <td>Protocol</td> | + | <td>Port (protocol)</td> |
− | <td>Connection protocol</td> | + | <td>Port number</td> |
− | <td>Displays the connection protocol used for connection.</td> | + | <td>Shows the port number from which the connection failed.</td> |
| </tr> | | </tr> |
| <tr> | | <tr> |
− | <td>Failed atempts</td> | + | <td>Status</td> |
− | <td>Number</td> | + | <td>Attempt count {{!}} Blocked</td> |
− | <td>Shows the number of failed attempts to connect to device.</td> | + | <td>Shows the number of failed attempts to connect to device. Indicates whether the source address is blocked or not.</td> |
| </tr> | | </tr> |
| <tr> | | <tr> |
− | <td>Status</td>
| |
− | <td>- {{!}} Blocked</td>
| |
− | <td>Indicates whether the source address is blocked or not.</td>
| |
− | </tr>
| |
− | <tr>
| |
| <td>Reset</td> | | <td>Reset</td> |
| <td>Check box</td> | | <td>Check box</td> |
| <td>Allows you to select multiple IP addresses.</td> | | <td>Allows you to select multiple IP addresses.</td> |
| </tr> | | </tr> |
− | <tr> | + | <tr> |
| + | <td>Actions</td> |
| + | <td>-(interactive button)</td> |
| + | <td>Allows you to select multiple IP addresses.</td> |
| + | </tr> |
| + | <tr> |
| <td>Unblock all</td> | | <td>Unblock all</td> |
| <td>-(interactive button)</td> | | <td>-(interactive button)</td> |
− | <td>Unblocks all source adresses from the list.</td> | + | <td>Deletes instance.</td> |
| </tr> | | </tr> |
− | <tr>
| + | <tr> |
| <td>Unblock selected</td> | | <td>Unblock selected</td> |
| <td>-(interactive button)</td> | | <td>-(interactive button)</td> |
Line 727: |
Line 722: |
| ====Generation Parameters==== | | ====Generation Parameters==== |
| ---- | | ---- |
− | Generating each type of file (excluding 'Simple') requires setting some parameters. This section provides an overview for parameters used in TLS certificate generation. | + | Generating each type of file requires setting some parameters. This section provides an overview for parameters used in Simple and TLS certificate generation. |
| ---- | | ---- |
− | <b>Core parameters</b> or simply parameters that apply to each file type are the size and common name of the generated file(s). | + | <b>Simple file parameters</b> |
| + | |
| + | [[File:Networking_rutos_manual_administartion_certificates_certificates_generation_simple_parameters.png|border|class=tlt-border]] |
| + | |
| + | <table class="nd-mantable"> |
| + | <tr> |
| + | <th>Field</th> |
| + | <th>Value</th> |
| + | <th>Description</th> |
| + | </tr> |
| + | <tr> |
| + | <td>Hosts</td> |
| + | <td>string; default: <b>none</b></td> |
| + | <td>Appends hostnames to certificates.</td> |
| + | </tr> |
| + | <tr> |
| + | <td>IP addresses</td> |
| + | <td>IPv4 address; default: <b>none</b></td> |
| + | <td>Appends IPv4 addresses to certificates.</td> |
| + | </tr> |
| + | </table> |
| + | ---- |
| + | <b>TLS parameters</b> or simply parameters that apply to each (CA, Server, Client, DH) file type are the size and common name of the generated file(s). |
| | | |
| [[File:Networking_rutos_manual_administartion_certificates_certificates_generation_core_parameters_v1.png|border|class=tlt-border]] | | [[File:Networking_rutos_manual_administartion_certificates_certificates_generation_core_parameters_v1.png|border|class=tlt-border]] |
Line 795: |
Line 812: |
| The <b>Certificate Signing</b> section is used to validate (sign) unsigned certificates. | | The <b>Certificate Signing</b> section is used to validate (sign) unsigned certificates. |
| | | |
− | [[File:Networking_rutos_manual_administartion_certificates_certificates_generation_certificate_signing_v2.png|border|class=tlt-border]] | + | [[File:Networking_rutos_manual_administartion_certificates_certificates_generation_certificate_signing_v3.png|border|class=tlt-border]] |
| | | |
| <table class="nd-mantable"> | | <table class="nd-mantable"> |
Line 837: |
Line 854: |
| <td>off {{!}} on; default: <b>off</b></td> | | <td>off {{!}} on; default: <b>off</b></td> |
| <td>Generation creates additional 'signing request' files (which appear under the [[#Certificate_Manager|Certificate Manager]] tab) that are later used to sign the generated certificates. When this option is set to 'on', the device deletes the signing request files after the signing process is complete.</td> | | <td>Generation creates additional 'signing request' files (which appear under the [[#Certificate_Manager|Certificate Manager]] tab) that are later used to sign the generated certificates. When this option is set to 'on', the device deletes the signing request files after the signing process is complete.</td> |
| + | </tr> |
| + | <tr> |
| + | <td>Hosts</td> |
| + | <td>string; default: <b>none</b></td> |
| + | <td>Appends hostnames to certificates.</td> |
| + | </tr> |
| + | <tr> |
| + | <td>IP addresses</td> |
| + | <td>IPv4 address; default: <b>none</b></td> |
| + | <td>Appends IPv4 addresses to certificates.</td> |
| </tr> | | </tr> |
| <tr> | | <tr> |