|
Management process
|
mgd
|
Manages the Services Router system as follows:
- Provides communication between the other processes and
an interface to the configuration database
- Populates the configuration database with configuration
information and retrieves the information when queried by other processes
to ensure that the system operates as configured
- Interacts with the other processes when commands are issued
through one of the user interfaces on the router
|
|
Chassis process
|
chassisd
|
Controls a Services Router chassis and its components as follows:
- Detects hardware on the system that is used to configure
network interfaces
- Monitors the physical status of hardware components and
field-replaceable units (FRUs), detecting when environment sensors
such as temperature sensors are triggered
- Relays signals and interrupts—for example, when
devices are taken offline, so that the system can close sessions and
shut down gracefully
|
|
Routing protocol process
|
rpd
|
Defines how routing protocols such as RIP, OSPF, and BGP operate
on the router, including selecting routes and maintaining fowarding
tables.
|
|
Interface process (also called device control process)
|
dcd
|
Supplies the programs that configure and monitor network interfaces
by defining physical characteristics such as link encapsulation, hold
times, and keepalive timers.
|
|
Forwarding process
|
flowd
|
Forwards packets through the router. The flow-based forwarding
process applies filters and policers associated with the ingress interface
to packets entering the router. It establishes the state of the packet's
session and manages the packet as it transits the security flow and
its applicable features. It applies output filtering and traffic shaping
to the flow before transmitting the packet out the egress interface.
|
|
Network security process
|
nsd
|
Interprets, executes, and manages the configuration of extended
interface attributes, policies, zones, address books, firewall screens,
Network Address Translation (NAT), and other network security treatments.
|
|
Internet Key Exchange process
|
iked
|
Implements tunnel management for IPSec VPNs, provides authentication
of endpoint entities, and generates keys for packet authentication
and encryption.
|
|
Firewall authentication process
|
fwauthd
|
Implements and manages user authentication configuration, and
authenticates users who access the firewall.
|
|
Dynamic Host Configuration Protocol process
|
dhcpd
|
Implements the DHCP client, allowing the router to obtain IP
addresses from the network DHCP server, set other configuration parameters,
manage TCP/IP settings propagation, and display client-related information.
|
