Instruction/ maintenance manual of the product 5100 Nortel
Go to page of 160
4655 Great America Parkwa y Santa Clara, CA 95054 Phone 1-800-4Nor tel http://www .nor tel.com Nor tel Switched Fire wall 5100 Series Release 2.3.3 Br o wser -Based Interface User’ s Guide par t num.
2 216383-D Copyright © Nortel Networks 200 2– 2005. All rights reserved. This document is protected by c opyright and distributed under licen se s restricting it s use, copying, distribution, and deco mpilation. No part of this document may be reproduced in any form by any means without prior written author ization of Nortel Networ ks, Inc.
216383-D Octobe r 2005 3 Content s Preface 7 Who should use this bo ok 7 How this book is organized 7 Typographic co nventions 8 How to get help 9 Getting help from the Nortel web site 9 Getting help .
Nortel Switched Firewall Browse r-Based Interface Users Guide 4 Contents 216383-D October 200 5 Basic operation 22 Pending change exce ptions 22 Lost changes 22 Creating a co nfiguration 23 Viewin.
Nortel Switched Firewall Browser-Based Interface Users Guide Contents 5 216383-D Octobe r 2005 License Management form 91 Installed License(s) form 93 Synchronization form 94 SMART Clients form 95.
Nortel Switched Firewall Browse r-Based Interface Users Guide 6 Contents 216383-D October 200 5.
216383-D Octobe r 2005 7 Preface This Quick Guide describes the Nortel Switched Firewa ll Browser -Based Interface (BBI). The components and features of the BBI can be us ed as an alternative to the Nortel Switched Firewall Command Line Interf ace (CLI) documented in the Nortel Switched Fir ewall 2.
Nortel Switched Firewall Browse r-Based Interface Users Guide 8 Preface 216383-D October 200 5 T ypographic conventions The following table describe s the typographic styles used in this book.
Nortel Switched Firewall Browser-Based Interface Users Guide Preface 9 216383-D Octobe r 2005 How to get help This section explains how to get help for Nortel products and services. Getting help from the Nortel web site The best way to get technical support for Nortel products is from t he Nortel T echnical Support web site at: www .
Nortel Switched Firewall Browse r-Based Interface Users Guide 10 Preface 216383-D October 200 5 Using an Express Rout ing Code to get help from a specialist Y ou can find Express Routing Co des (ERC) for many Nortel products and services on the Nortel T echnical Support web site.
216383-D Octobe r 2005 11 C HAPTER 1 Introduction This chapter explains how to enable the Br owser -Based Interface (BBI), set up your web browser , and la unch the BBI to access the Nortel Switched Fi rewall (NSF) system- management features from y our web brows er .
Nortel Switched Firewall Browse r-Based Interface Users Guide 12 Introduction 216383-D October 200 5 Getting st arted Requirement s Following are the requirem ents to enable the BBI: An instal.
Nortel Switched Firewall Browser-Based Interface Users Guide Introduction 13 216383-D Octobe r 2005 Enabling the BBI Y ou can enable the BBI for HTTP , HTTP and HTTPS, or you can fully disable the BBI. TIP : The default setting for the BBI is enabled for HTTP access and disabled for HTTPS access.
Nortel Switched Firewall Browse r-Based Interface Users Guide 14 Introduction 216383-D October 200 5 Applying the changes. Using the access list to permit re mote acce ss to trusted clients If you already configured the acce ss list for T elnet or SSH, you need not repeat the process.
Nortel Switched Firewall Browser-Based Interface Users Guide Introduction 15 216383-D Octobe r 2005 c) MIP address d) virtual IP address (see Us ing the VRRP virtual IP address to access the NSF BBI ) The NSF login window opens. 3. Log in (see Logging in ).
Nortel Switched Firewall Browse r-Based Interface Users Guide 16 Introduction 216383-D October 200 5 Figure 1 NSF Login window Loading the main page When the valid account name an d password combination is ente red on the login window , the BBI default page appears in your browser viewing win dow (see Figure 2 ).
216383-D Octobe r 2005 17 C HAPTER 2 Basics of the Browser-Based Interface Interface component s The Nortel Switched Firewall (NSF) Browser- Based Interface (BBI) main page has eight component areas (see Figure 3 ).
Nortel Switched Firewall Browse r-Based Interface Users Guide 18 Basics of the Browser-Based Interface 216383-D October 200 5 Main page tabs The two main page tabs ar e W izards and Config (see Figure 3 on page 17 ).
Nortel Switched Firewall Browser-Based Interface Users Guide Basics of the Browser-Based Inter face 19 216383-D Octobe r 2005 W izards menu shows the selections available on the W izards menu tree.
Nortel Switched Firewall Browse r-Based Interface Users Guide 20 Basics of the Browser-Based Interface 216383-D October 200 5 NSF Config ma in menu tree Each of the selections on th e Config main menu tree rep r esents a page, called a form, which provides a method to monitor or configure the NSF (see Figure 3 on page 17 and Figure 6 ).
Nortel Switched Firewall Browser-Based Interface Users Guide Basics of the Browser-Based Inter face 21 216383-D Octobe r 2005 History list The History list displays the path to the cu rrent page. Up to nine of the most recently visited pages are listed, most recent first.
Nortel Switched Firewall Browse r-Based Interface Users Guide 22 Basics of the Browser-Based Interface 216383-D October 200 5 Basic operation The Browser- Based Interface for th e Nortel Switched Firewall prov ides a variety of levels of control.
Nortel Switched Firewall Browser-Based Interface Users Guide Basics of the Browser-Based Inter face 23 216383-D Octobe r 2005 Pending changes are also discarded if you do not submi t them before the inactivity timeout value on BBI sessions elapses.
Nortel Switched Firewall Browse r-Based Interface Users Guide 24 Basics of the Browser-Based Interface 216383-D October 200 5 2) Click Submit . See Global command forms for details on using Apply , Diff , Revert, and Logout. Global command forms The global command buttons are always available at the top of each form.
Nortel Switched Firewall Browser-Based Interface Users Guide Basics of the Browser-Based Inter face 25 216383-D Octobe r 2005 When selected, this command up dates the Nortel Switched Firewall with any pending configuration changes. Pending changes are first validated for correctness (see V alidate Configuratio n on page 25 ).
Nortel Switched Firewall Browse r-Based Interface Users Guide 26 Basics of the Browser-Based Interface 216383-D October 200 5 Diff The global Diff command displays the Pending Updates form. Pen ding Updates provides a list of the pending configuration changes for the current sessio n (see Figure 9 ).
Nortel Switched Firewall Browser-Based Interface Users Guide Basics of the Browser-Based Inter face 27 216383-D Octobe r 2005 Revert The global Revert command disp lays the Revert Changes form. Use Revert to cancel pending configuration changes (see Figure 10 ).
Nortel Switched Firewall Browse r-Based Interface Users Guide 28 Basics of the Browser-Based Interface 216383-D October 200 5 Logout Use the global Logout form to terminate the current user session (see Figure 11 ).
Nortel Switched Firewall Browser-Based Interface Users Guide Basics of the Browser-Based Inter face 29 216383-D Octobe r 2005 Help The global Help form provides assi stance with forms and tasks in the BBI. T wo kinds of Help are available: context-sensitiv e Help and task-based Help.
Nortel Switched Firewall Browse r-Based Interface Users Guide 30 Basics of the Browser-Based Interface 216383-D October 200 5 Forms area: This area displays detailed information about th e selected topic. Close button: Click Close to close the context-sensitive Help wi ndow .
Nortel Switched Firewall Browser-Based Interface Users Guide Basics of the Browser-Based Inter face 31 216383-D Octobe r 2005 Load Page link: Click Load Page to display the form referenced on the task topic menu. If the subtask has more than one step, the steps are listed on the form.
Nortel Switched Firewall Browse r-Based Interface Users Guide 32 Basics of the Browser-Based Interface 216383-D October 200 5.
216383-D Octobe r 2005 33 C HAPTER 3 Browser-Based Interface forms reference BBI main menu selections The following eight selections are available on the Nortel Switched Firewall (NSF) Browser- Based .
Nortel Switched Firewall Browse r-Based Interface Users Guide 34 Browser-Based Interface for ms reference 216383-D October 200 5 System form When you select System, the Main page, also kno wn as the Monitor System form, is displayed as shown in Monito r System form.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 35 216383-D Octobe r 2005 status of the following remote accesses: HTTP HTTPS Te l n e t SSH SNMP Use the NSF 5100 T icker launch form to launch the T icker .
Nortel Switched Firewall Browse r-Based Interface Users Guide 36 Browser-Based Interface for ms reference 216383-D October 200 5 The NSF 5100 T icker report form displays thr ee tabs (see NSF 5100 T icker results form).
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 37 216383-D Octobe r 2005 The Properties page displays properties for NSF 5100 T icker parameters (see NSF 5100 T icker/Propertie s form).
Nortel Switched Firewall Browse r-Based Interface Users Guide 38 Browser-Based Interface for ms reference 216383-D October 200 5 Cluster forms The Cluster menu includes the following categories of.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 39 216383-D Octobe r 2005 The Cluster/Director(s) form is divided into the followin g two secti.
Nortel Switched Firewall Browse r-Based Interface Users Guide 40 Browser-Based Interface for ms reference 216383-D October 200 5 T ime forms The two Cluster/Time forms are as follows: Cluster/.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 41 216383-D Octobe r 2005 Hour provides a list to se lect the current hour . Minute provides a list to select the current minut e. Click Save to submit th e date and time changes and to put the changes into immediate effect.
Nortel Switched Firewall Browse r-Based Interface Users Guide 42 Browser-Based Interface for ms reference 216383-D October 200 5 Fields and buttons on the Cluster/Ti me/NTP Servers form are as follows: IP Address displays the IP address of an NTP server .
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 43 216383-D Octobe r 2005 Fields and buttons on the Cluster/Log s/Syslog form are as follows: System Log Debug Messages displays a list with two choi ces.
Nortel Switched Firewall Browse r-Based Interface Users Guide 44 Browser-Based Interface for ms reference 216383-D October 200 5 crit err warning notice info debug New .
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 45 216383-D Octobe r 2005 Cluster/Lo gs/ELA form Use the Cluster/Logs/ELA form to co nfigure Event Logg ing API (ELA) (see Cluster/Logs/ELA form).
Nortel Switched Firewall Browse r-Based Interface Users Guide 46 Browser-Based Interface for ms reference 216383-D October 200 5 Management Station IP provides an entry fi eld to specify the IP address of the Check Point SmartCenter Server where the Firewall log messages are sent.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 47 216383-D Octobe r 2005 Cluster/Logs/Archive form Use the Cluster/Logs/Arch ive form to specify system log rotation an d system log archiving parameters (see Cluster/Logs/Archive form).
Nortel Switched Firewall Browse r-Based Interface Users Guide 48 Browser-Based Interface for ms reference 216383-D October 200 5 If the log file rotate size is set to >0, log rotation occurs when one of the following conditions is met: The log file surpasses the rotate size.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 49 216383-D Octobe r 2005 Wa r n i n g s f o r m Use the Cluster/W arnings form to enable or disable confi guration warning messages (see Cluster/W arnings form).
Nortel Switched Firewall Browse r-Based Interface Users Guide 50 Browser-Based Interface for ms reference 216383-D October 200 5 Network forms The Network menu includes the follo wing categories o.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 51 216383-D Octobe r 2005 N OTE – The NSF provides administrators w ith the option to configure Layer 2 and Layer 3 firewalls. The Layer 2 and L ayer 3 firewall c onfiguration procedures differ only in the configuration of the IP addresses.
Nortel Switched Firewall Browse r-Based Interface Users Guide 52 Browser-Based Interface for ms reference 216383-D October 200 5 Ports form Use the Network/Ports form to configu re network port settings (see Network/Port s form).
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 53 216383-D Octobe r 2005 Network/Ports Modify Port form Use the Network/Port s Modify Port form to modify the settings for a selected port.
Nortel Switched Firewall Browse r-Based Interface Users Guide 54 Browser-Based Interface for ms reference 216383-D October 200 5 Mode provides for following two selections: Half (duplex) Full (duplex) Update submits the port chang es to the pending configuration.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 55 216383-D Octobe r 2005 Fields and buttons on the Netwo rk/Routes/Static form are as follows: Destination IP specifies the IP a ddress of the route destination.
Nortel Switched Firewall Browse r-Based Interface Users Guide 56 Browser-Based Interface for ms reference 216383-D October 200 5 Back returns to the Network/ Routes/Static form without submittin g changes to the pending configuration .
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 57 216383-D Octobe r 2005 Network/Routes/Proxy ARP form Use the Network/Routes/Proxy ARP (Addre.
Nortel Switched Firewall Browse r-Based Interface Users Guide 58 Browser-Based Interface for ms reference 216383-D October 200 5 New Proxy ARP IP pro vides an entr y field to specify an IP address. TIP : Use dotted decimal format. VRRP Group provides a list for VRRP group 1 or 2 selection.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 59 216383-D Octobe r 2005 Network/Routes/OSPF forms Following are the categories of Network/Rou.
Nortel Switched Firewall Browse r-Based Interface Users Guide 60 Browser-Based Interface for ms reference 216383-D October 200 5 Router Id 1 provides an entry field to set the OSPF Router ID for the first Firewall host . TIP : OSPF uses the router ID to identify the rout i ng device.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 61 216383-D Octobe r 2005 Network/Routes/OSPF/Area Indexes Add New form Use the Network/Routes/OSPF/ Area Indexes Add New form to configure a new Area Index.
Nortel Switched Firewall Browse r-Based Interface Users Guide 62 Browser-Based Interface for ms reference 216383-D October 200 5 Network/Routes/OSPF/Interfaces form Use the Network/Routes/OSPF/In .
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 63 216383-D Octobe r 2005 Network/Routes/OSPF/Interfaces Modify form Use the Network/Routes/OSPF/Interfaces Modify form to modify a selected interface.
Nortel Switched Firewall Browse r-Based Interface Users Guide 64 Browser-Based Interface for ms reference 216383-D October 200 5 Authentication provides a list to set the auth entication type .
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 65 216383-D Octobe r 2005 Area Index sets the OSPF area index to attach to the network for the current GRE T unnel. Action provides the fol lowing two options: Delete deletes a selected GRE tu nnel.
Nortel Switched Firewall Browse r-Based Interface Users Guide 66 Browser-Based Interface for ms reference 216383-D October 200 5 Priority provides a list to set the GRE T unn el priority used to elect a Designated Router (DR) and Backup Designated Router (BDR) for the area.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 67 216383-D Octobe r 2005 Network/Routes/OSPF/Redistribute form Use the Network /Routes/OSPF/Redistribute form to display and modify the O SPF Redistribution settings (see Ne twork/Routes/OSPF/Redistribute form ).
Nortel Switched Firewall Browse r-Based Interface Users Guide 68 Browser-Based Interface for ms reference 216383-D October 200 5 Network/Routes/OSPF/Redi stribute Modify form Use the Network/Routes/OSPF/Redistribu te M odify form to modify the connect ed route redistribution .
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 69 216383-D Octobe r 2005 DHCP Relay forms The three DHCP Relay forms are: General Inte.
Nortel Switched Firewall Browse r-Based Interface Users Guide 70 Browser-Based Interface for ms reference 216383-D October 200 5 DHCP Relay S tatistics DHCP Relay Statistics provides a lis.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 71 216383-D Octobe r 2005 Network/DHCP Relay/Interfaces Modify form Use the Network/DHCP Relay/Interfaces Modify form to modify a selected DHCP Relay Interface.
Nortel Switched Firewall Browse r-Based Interface Users Guide 72 Browser-Based Interface for ms reference 216383-D October 200 5 Network/DHCP Relay/Servers form Use the Network/DHCP Relay/ Servers form to display and modify the information about the DHCP Relay Servers (see Network/DHCP Relay/Servers form).
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 73 216383-D Octobe r 2005 Network/DHCP Relay/Servers Add New Server form Use the Network/DHCP Relay/Servers Ad d New Server form to add a new DHCP server .
Nortel Switched Firewall Browse r-Based Interface Users Guide 74 Browser-Based Interface for ms reference 216383-D October 200 5 Interfaces form Use the Network/Interfaces form to view and configure the setti ngs for individual interfaces (see Network/Interfaces form).
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 75 216383-D Octobe r 2005 Modify (only visible if interfaces are present) is used to modify a displayed interface (see Network/Interfaces Modi fy form on page 75 ).
Nortel Switched Firewall Browse r-Based Interface Users Guide 76 Browser-Based Interface for ms reference 216383-D October 200 5 Subnet Mask provides an entry field to specify the subnet mask of the interface. Vlan Id provides a list to select the numerical ID, between 0 and 4094, for the VLAN.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 77 216383-D Octobe r 2005 Network/Interfaces Add Interface form Use the Network/Interfaces Add Inte rface form to add a new interface.
Nortel Switched Firewall Browse r-Based Interface Users Guide 78 Browser-Based Interface for ms reference 216383-D October 200 5 Ip2 provides an entry field to specify the second virtual IP ad dress for the interface (applied for VRRP Active-Active).
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 79 216383-D Octobe r 2005 VRRP specifies the virtual router ID and IP a ddress of the IP interf ace configured for high availability or active–active.
Nortel Switched Firewall Browse r-Based Interface Users Guide 80 Browser-Based Interface for ms reference 216383-D October 200 5 Ports specifies the port number a ssociated with the bridge ID. VRRP Settings V rid provides a list to select the numerical ID, b etween 1 and 255, for the virtual router on the bridge.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 81 216383-D Octobe r 2005 Enabled indicates that high av ailability VRRP is enabled. TIP : T wo Firewall hosts must be in the cluster to apply high availabilit y VRRP .
Nortel Switched Firewall Browse r-Based Interface Users Guide 82 Browser-Based Interface for ms reference 216383-D October 200 5 GRE T unnels form Use the Network/GRE T unnels form to vi ew and modify GRE T u nnels settings (see Network/GRE T unnels form).
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 83 216383-D Octobe r 2005 Actions provides the followi ng two options: Delete deletes the selected GRE tunnel. Modify provides a form to modify th e settings for the selected GRE tunnel.
Nortel Switched Firewall Browse r-Based Interface Users Guide 84 Browser-Based Interface for ms reference 216383-D October 200 5 Host 1 T unnel Source IP provides an entry field for the tunnel source IP address for host 1. Destination IP provides an en try field for the tunnel destination IP address for host 1.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 85 216383-D Octobe r 2005 S tatus forms Following are four Network/S tatus forms: Interface.
Nortel Switched Firewall Browse r-Based Interface Users Guide 86 Browser-Based Interface for ms reference 216383-D October 200 5 Network/S tatus/Link f orm Use the Network/Status/Link form to obtain information about all network interface ports (see Network/Status/Link form ).
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 87 216383-D Octobe r 2005 Network/S tatus/Brid ge S tatistics form Use the Network/Status/Bridge Statistics form to view the brid ge statistics for the selected firewall (see Network/Status/Bridge S tatistics form).
Nortel Switched Firewall Browse r-Based Interface Users Guide 88 Browser-Based Interface for ms reference 216383-D October 200 5 Network/S tatus/Brid ge Mac Entries form Use the Network/Status/Bridge Mac Entries form to display the bridge MAC ent ries for the selected Firewall Director (see Netw ork/S tatus/Bridge Mac Entries form).
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 89 216383-D Octobe r 2005 Firewall forms The Firewall menu includes the fo llowing five categor.
Nortel Switched Firewall Browse r-Based Interface Users Guide 90 Browser-Based Interface for ms reference 216383-D October 200 5 Fields and buttons on th e form are as follows: General Status provides a list with these selections: o Enabled indicates that Check Point FireW all-1 NGX is processing on the Firewall.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 91 216383-D Octobe r 2005 License Management form Use the Firewall/Licenses form to modify or install additional Check Point licenses on the Firewall (see Firewall/License Managem ent form).
Nortel Switched Firewall Browse r-Based Interface Users Guide 92 Browser-Based Interface for ms reference 216383-D October 200 5 Firewall/License Management/Add New License Ent ry form Use the Firewall/License Management /Add Ne w License Entry form to add Check Point licenses.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 93 216383-D Octobe r 2005 Add New Licenses Expiration Date provides an ent ry field to specify the Check Point License expiration date. Feature String provides an entry field to specify the Check poi nt License feature string.
Nortel Switched Firewall Browse r-Based Interface Users Guide 94 Browser-Based Interface for ms reference 216383-D October 200 5 Features provides the Check Point license features.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 95 216383-D Octobe r 2005 SMART Client s form The Firewall/SMAR T Clients form displays, and allows m odification to, SMAR T Clients addresses. This form also provides a field to add a new SMAR T Client (see Firewall/SMA R T Clients form).
Nortel Switched Firewall Browse r-Based Interface Users Guide 96 Browser-Based Interface for ms reference 216383-D October 200 5 SecurID form The SecurID form provides access to a two-factor form method for central ized authe ntication and management (see Firewal l/SecurID form).
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 97 216383-D Octobe r 2005 Operation forms The Operation menu includes the fo llowing three cat .
Nortel Switched Firewall Browse r-Based Interface Users Guide 98 Browser-Based Interface for ms reference 216383-D October 200 5 Configuration form Use the Operation/Configuration form to export or import configuration files (see Operation/Configuration form).
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface forms reference 99 216383-D Octobe r 2005 Import causes the BBI to restart immediat ely , using the replacem ent configuration. TIP : No Apply comm and is required in conjunction with Import.
Nortel Switched Firewall Browse r-Based Interface Users Guide 100 Brows er-Based Interface forms reference 216383-D October 200 5 Fields and buttons on the Operation/Imag e Update/Packages fo rm are as follows: Installed Packages V ersi on provides the NSF softwa re version running on the cluster .
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 101 216383-D Octobe r 2005 N OTE – Activating the software using the browser di sables remote access to the Firewall.
Nortel Switched Firewall Browse r-Based Interface Users Guide 102 Brows er-Based Interface forms reference 216383-D October 200 5 Administration forms The Administration form s provide access to administering and monitoring aspects of the Firewall, such as user information, web settings, and SNM P activity .
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 103 216383-D Octobe r 2005 Administration/Monitor/Director(s) form The Administration/Monitor/Di rector(s) form disp lays Firewall director details and application status (see Administration/Mon itor/Director(s) form).
Nortel Switched Firewall Browse r-Based Interface Users Guide 104 Brows er-Based Interface forms reference 216383-D October 200 5 Uptime provides the time, in Hours:Minute s:Seconds, since the applications started.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 105 216383-D Octobe r 2005 Administration/Monitor/Syslog form The Administrati on/Monitor/Syslog form displa ys the system logs for the Firewall based on selected search criteria (see Ad ministration/Monitor/Syslog form).
Nortel Switched Firewall Browse r-Based Interface Users Guide 106 Brows er-Based Interface forms reference 216383-D October 200 5 All info messages (INFO) All notice messages (NOTICE) All warning messages (W ARNING) Messages Per Page provides the ma ximum number of messages displayed for each request.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 107 216383-D Octobe r 2005 Administration/Monitor/GUI Lock form The Administration/ Monitor/GU.
Nortel Switched Firewall Browse r-Based Interface Users Guide 108 Brows er-Based Interface forms reference 216383-D October 200 5 Administration/Monitor/CLI Logins form The Administrati on/Monitor/CLI Logins form pr o vides information about CLI Login sessions on the Firewall (see Administration/Monito r/CLI Logins form).
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 109 216383-D Octobe r 2005 Administration/Monitor/About form The Administration/ Monitor/About form displays general product informati on about the Firewall (see Administ ration/Monitor/About form).
Nortel Switched Firewall Browse r-Based Interface Users Guide 110 Brows er-Based Interface forms reference 216383-D October 200 5 Users forms Administration/Users provi des the following two categ.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 111 216383-D Octobe r 2005 Group(s) displays the group to which the user belongs.
Nortel Switched Firewall Browse r-Based Interface Users Guide 112 Brows er-Based Interface forms reference 216383-D October 200 5 Current Login Password provides an entry fi eld to record the curr ent active password for the named user (for example, oper user or admin user).
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 113 216383-D Octobe r 2005 Password (again) provides an entry field to confirm th e new password. Save User saves th e user information and return s to the Adm inistration/users/Gene ral form.
Nortel Switched Firewall Browse r-Based Interface Users Guide 114 Brows er-Based Interface forms reference 216383-D October 200 5 Administration/Users/SSH Users Add New SSH User form Use the Administration/Users/SSH Users Add Ne w SSH User form to add a new SSH user to the configuration.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 115 216383-D Octobe r 2005 Access List form Use the Administration Access List form to speci fy which clients are permitted to administer the system (see Administration/Access List form).
Nortel Switched Firewall Browse r-Based Interface Users Guide 116 Brows er-Based Interface forms reference 216383-D October 200 5 Administration/Acces s List Add New Cl ient Access form Use the Administration/Access List Add New Client Access form to add a new client access to the configuration.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 117 216383-D Octobe r 2005 T elnet-SSH form Use the Administration/T elnet-SSH form to enable or disable T elnet/SSH administration (see Administra tion/T elnet-SSH f orm).
Nortel Switched Firewall Browse r-Based Interface Users Guide 118 Brows er-Based Interface forms reference 216383-D October 200 5 Web forms The Administration/ W eb forms provide the followi ng: .
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 119 216383-D Octobe r 2005 The Administration/ W eb/Gen eral form is divided int o the followi.
Nortel Switched Firewall Browse r-Based Interface Users Guide 120 Brows er-Based Interface forms reference 216383-D October 200 5 Administration/W eb/Create Cert form The Administration/ W eb/Crea.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 121 216383-D Octobe r 2005 Administration/W eb/Server Certs form Use the Administration/W eb/Server Certs form to administer server certificates on the Firewall (see Administration/W eb/Serv er Certs form).
Nortel Switched Firewall Browse r-Based Interface Users Guide 122 Brows er-Based Interface forms reference 216383-D October 200 5 Add New Server Certificate opens a form to add a new server certificate (see Administra tion/W eb/Serve r Certs Add Server Cer tificate form).
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 123 216383-D Octobe r 2005 Administration/W eb/Server Certs/Generate Certificate Request form .
Nortel Switched Firewall Browse r-Based Interface Users Guide 124 Brows er-Based Interface forms reference 216383-D October 200 5 Administration/W eb/CA Certs form Use the Administration/W eb/CA Certs form to administer Certificate Autho rity (CA) certificates on the Firewall (see Administrati on/W eb/CA Certs form).
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 125 216383-D Octobe r 2005 Administration/W eb/CA Certs Add Server Certificate form Use the Administration/W eb/CA Certs Add Server Certificate form to ad d a server certificate.
Nortel Switched Firewall Browse r-Based Interface Users Guide 126 Brows er-Based Interface forms reference 216383-D October 200 5 SNMP forms Use the Administration/SNMP forms to enable or disable .
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 127 216383-D Octobe r 2005 SNMPv3 (USM) Options Fields and buttons on the form are as follows: SNMP Settings Status provides a list with the following selections: o Enabled enables the SNMP agent.
Nortel Switched Firewall Browse r-Based Interface Users Guide 128 Brows er-Based Interface forms reference 216383-D October 200 5 Update submits the fo rm changes to the pending configuration.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 129 216383-D Octobe r 2005 Administration/SNMP/T rap Hosts form The Administration/SNMP/T rap Hosts form lists configured trap hosts receiving SNMP e vent or alarm messages fr om the Firewall (see Administration/ SNMP/T rap Hosts form).
Nortel Switched Firewall Browse r-Based Interface Users Guide 130 Brows er-Based Interface forms reference 216383-D October 200 5 Administration/SNMP/T rap Hosts Add T rap Host form Use the Administration/SNMP/Tr ap Hosts Ad d T rap Host form to add a trap host.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 131 216383-D Octobe r 2005 Administration/SNMP/USM Users form Use the Administration/SNMP/USM Users form to administer US M users employed in SNMP v3 (usm) authentication and encryption (see Administration/SNMP/U SM Users form).
Nortel Switched Firewall Browse r-Based Interface Users Guide 132 Brows er-Based Interface forms reference 216383-D October 200 5 Administration/SNMP/USM Us ers Add SNMP User form Use the Administration/SN MP/USM Users Add SN MP User form to add a new SNMP user .
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 133 216383-D Octobe r 2005 Back returns to the Adm inistration/SNMP/ USM/Users form without subm itting changes to the pending configuration.
Nortel Switched Firewall Browse r-Based Interface Users Guide 134 Brows er-Based Interface forms reference 216383-D October 200 5 Administration/SNMP/Advanced form Use the Administration/SNMP/Adva nced form to configure the so urce IP address used with SNMP traps generated from the Firewall (see Administration/SNMP/Advanced form ).
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 135 216383-D Octobe r 2005 SSH Keys form Use the Administration/SSH keys fo rm to display the current Host Keys and generate new SSH keys for the cluster (see Adm inistration/SSH keys form ).
Nortel Switched Firewall Browse r-Based Interface Users Guide 136 Brows er-Based Interface forms reference 216383-D October 200 5 Import SSH Key import s an SSH key from a remote host (see Administ ration/SSH Keys Import SSH Key form on page 137 ).
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 137 216383-D Octobe r 2005 Administration/SSH Keys Import SSH key form Use the Administration/SSH Keys Import SSH Key form to import SSH keys (see Administr ation/SSH Keys Import SSH Key form).
Nortel Switched Firewall Browse r-Based Interface Users Guide 138 Brows er-Based Interface forms reference 216383-D October 200 5 Administration/SSH Keys Show SSH keys form Use the Administration/SSH Keys Show SSH keys form t o view resident SSH key inform ation (see Administration/SSH Keys Show SSH keys form).
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 139 216383-D Octobe r 2005 The Administration/ RADIUS form is divided into the following two s.
Nortel Switched Firewall Browse r-Based Interface Users Guide 140 Brows er-Based Interface forms reference 216383-D October 200 5 Administration/RADIUS Add RADIUS Authenticatio n Server form Use the Administration/RADIUS A dd RADIUS Au thentication Server fo rm to add a RADIUS Authentication server .
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 141 216383-D Octobe r 2005 APC UPS form Use the Administration/APC UPS fo rm to configure settings for Ameri can Power Corporation Uninterrupted Power Supply (APC UPS) (see Administ ration/APC UPS form).
Nortel Switched Firewall Browse r-Based Interface Users Guide 142 Brows er-Based Interface forms reference 216383-D October 200 5 Update submits the UPS Mon itor changes to the pending configuration.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 143 216383-D Octobe r 2005 RADIUS Servers IP Address provides the addres s of a configured RADIUS server or an entry field to change or specify the IP A ddress of a RADIUS server .
Nortel Switched Firewall Browse r-Based Interface Users Guide 144 Brows er-Based Interface forms reference 216383-D October 200 5 Update submits the chang es to the pending configuration. Back returns to the Administ ration/Audit form without subm itting changes to the pending configuration.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 145 216383-D Octobe r 2005 Diagnostics forms The Diagnostics forms provide inform ation about logs, forms to check configuration and Check Point Logs, system commands, an d OSPF Debug settings.
Nortel Switched Firewall Browse r-Based Interface Users Guide 146 Brows er-Based Interface forms reference 216383-D October 200 5 The Diagnostics/Logs form is divided into the fo llowing two secti.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 147 216383-D Octobe r 2005 Events form The Diagnostics/Events form displays the contents of the event log file (see Diagnostics/Events fo rm).
Nortel Switched Firewall Browse r-Based Interface Users Guide 148 Brows er-Based Interface forms reference 216383-D October 200 5 Audit Log form Use the Diagnostics/Audit Log fo rm to display the latest 64 K of the device audit log (see Diagnostics/Aud it Log form).
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 149 216383-D Octobe r 2005 Maintenance forms Use the Diagnostics/Maintenance/Check Conf iguration form to check the applied configuration (see Diagnostics/Maint enance/Check Configuration form).
Nortel Switched Firewall Browse r-Based Interface Users Guide 150 Brows er-Based Interface forms reference 216383-D October 200 5 Applied Configuratio n displays configuratio n information.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 151 216383-D Octobe r 2005 System Commands form Use the Diagnostics/System Commands/System Commands fo rm to execute Check Point system commands normally entered in a command window (see Diagnostics/System Commands/System Comm ands form).
Nortel Switched Firewall Browse r-Based Interface Users Guide 152 Brows er-Based Interface forms reference 216383-D October 200 5 Unload Check Point Policy (fw unloadlocal) Current interfa.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 153 216383-D Octobe r 2005 Packets turns on debuggi ng for OSPF packets. Enabled displays the foll owing OSPF Debug operat ional settings: Y es indicates OSPF Debug is enabled.
Nortel Switched Firewall Browse r-Based Interface Users Guide 154 Brows er-Based Interface forms reference 216383-D October 200 5 Wizards forms The W izards guide the user through configuration processes.
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 155 216383-D Octobe r 2005 The figures in this section represent the first page of each NSF BBI W izard.
Nortel Switched Firewall Browse r-Based Interface Users Guide 156 Brows er-Based Interface forms reference 216383-D October 200 5 Add Wizard forms Use the Add forms to add or modify interfaces and bridges. Add Interface Use the Add Interface wizard to add a new inte rface or modify a n existing interface (see Add Interface W izard form).
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 157 216383-D Octobe r 2005 Add GRE T unnel Use the Add GRE T unnel wizard to add a GRE tunnel to the configuration (see Add GRE T unnel W izard form).
Nortel Switched Firewall Browse r-Based Interface Users Guide 158 Brows er-Based Interface forms reference 216383-D October 200 5 Routes/Gateways Use the Routes/Gateways form to conf igure static routes and default gat eways (Configur e Routes/Gateways W izard form).
Nortel Switched Firewall Browser-Based Interface Users Guide Browser-Based Interface for ms reference 159 216383-D Octobe r 2005 OSPF Use the OSPF form to configur e use of the Open Shortest Path First (OSPF) protocol (see Configure OSPF Wizard form).
Nortel Switched Firewall Browse r-Based Interface Users Guide 160 Brows er-Based Interface forms reference 216383-D October 200 5 Users Use the User Administration W izard to perform user admin istration tasks and configuratio n, such as add, modify , or delete a us er (see User Administration W izard form).
An important point after buying a device Nortel 5100 (or even before the purchase) is to read its user manual. We should do this for several simple reasons:
If you have not bought Nortel 5100 yet, this is a good time to familiarize yourself with the basic data on the product. First of all view first pages of the manual, you can find above. You should find there the most important technical data Nortel 5100 - thus you can check whether the hardware meets your expectations. When delving into next pages of the user manual, Nortel 5100 you will learn all the available features of the product, as well as information on its operation. The information that you get Nortel 5100 will certainly help you make a decision on the purchase.
If you already are a holder of Nortel 5100, but have not read the manual yet, you should do it for the reasons described above. You will learn then if you properly used the available features, and whether you have not made any mistakes, which can shorten the lifetime Nortel 5100.
However, one of the most important roles played by the user manual is to help in solving problems with Nortel 5100. Almost always you will find there Troubleshooting, which are the most frequently occurring failures and malfunctions of the device Nortel 5100 along with tips on how to solve them. Even if you fail to solve the problem, the manual will show you a further procedure – contact to the customer service center or the nearest service center