Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

Navigation  Back up to About Overview 
ContentIndex
  
[+] Expand All
[-] Collapse All

 A  B  C  D  E  F  G  H  I  L  M  N  O  P  R  S  T  U  V  W

 

A

access control lists    
adding, MySQL database
displaying, MySQL database
removing, MySQL database
access security    
CTPView server, managing
accounts    
creating CTPView server nonroot
default CTPOS
default CTPView server
address filter, IP     See IP access filter    
Admin Center    
accessing
groups    
adding
deleting
modifying affiliation
modifying properties
monitoring
passwords    
changing requirements
excluding from use
limiting use
managing user
reinstating excluded
users    
adding
automatic logout
counters
deleting active
deleting inactive
deleting prohibited
displaying prohibited
IP access filters, creating
IP access filters, removing
locked-out IP addresses
lockout period
logging out selected
login attempts
login properties
managing access
modifying properties
monitoring
prohibiting
reinstating prohibited
administrative passwords    
changing
administrative settings    
configuring
Apache daemon    
restarting    12
archive file    
complete, upgrading CTPView software with
web, upgrading CTPView software with
authentication    
CTPView software users with Steel-Belted RADIUS
 

B

bandwidth throttling
banner    
CTPView start-up (log-in)
setting    
CTPView server menu
BIOS menu    
changing the password    12
booting CTPView server from CD
browser    
logging in
restarting Apache daemon on CTPView server
restoring access
 

C

Circuit to Packet network    
clock options
overview
receive packet processing
serial stream processing
software overview
transmit packet processing
clock options
CompactFlash card    
burning a CTPOS image to
changing read/write state
configuration settings    
restoring (CTPView server menu)    12
saving CTPView software    12
configuration, server    
restoring overview (CTPView GUI)    12
CTP devices    
unlocking user accounts with expired passwords    12
CTP platforms    
adding and removing
adding comments to monitoring status
automatically collecting statistical data
changing display settings for network monitoring
checking connections to the CTPView server
displaying network statistics
displaying reports
displaying runtime query results
host groups, adding and removing
managing    
monitoring
manually overriding monitoring status
monitoring (CTPView GUI)
passwords    
changing user
port forwarding    
clearing open sockets
configuring the platform
configuring the server
restoring configuration
saving configuration automatically
setting audible status alert
SNMP communities, adding and removing
SSH connections    
clearing open sockets
configuring the platform
configuring the server
understanding network reports
updating CTPOS
CTPOS    
burn CTPOS flash image    12
burning image to a CompactFlash card
default accounts and passwords
updating
upgrade files
CTPView    
menu, accessing
TACACS+, configuring
TACACS+, query
TACACS+, settings
CTPView Admin Center     See Admin Center    
CTPView GUI    
adding comments to platform monitoring status
Admin Center, accessing
automatically removing outdated files
automatically synchronizing servers
bandwidth throttling
browser settings
browser, logging in
changing default user password
checking network connections
configuring automatic functions
creating more server disk space
CTP platform reports
display settings
display settings help
displaying platform and port runtime query results
email notifications
Global_Admin account, creating
groups    
adding
deleting
modifying affiliation
modifying properties
monitoring
host groups, adding and removing
managing users and groups
manually overriding platform monitoring status
monitoring the CTP platform network
network monitoring display settings
network reports    1
field descriptions
network statistics
NTP servers, managing
passwords    
changing requirements
excluding from use
limiting user
managing user
reinstating excluded
platforms, adding and removing
port forwarding, managing
restoring configuration    
CTP platform
CTPView server, by synchronizing servers    12
restoring server configuration    
overview    12
saving configuration    
CTP platform
server clock, setting
setting audible platform status alert
SNMP communities, adding and removing
start-up (log-in) banner
support for tabbed or nontabbed browsers
synchronizing servers    
automatically
manually
network configuration
overview
user properties, modifying
users    
adding
automatic logout
counters
deleting active
deleting inactive
deleting prohibited
displaying prohibited
IP access filters, creating
IP address access filters, removing
locked-out IP addresses
lockout period
logging out selected
login attempts
login properties
managing access
monitoring
prohibiting
reinstating prohibited
validating server configuration    12
verifying server OS installation
CTPView server    
access security, managing    12
account    
creating nonroot
acquiring shell access
booting from CD
clock, setting
configuring guidelines on a virtual machine
configuring on a Hyper-V server
configuring on an ESXi server
creating disk space    
CTPView GUI
data file permissions, resetting
default accounts and passwords
determining free disk space
disk space, creating    
CTPView server menu    12
firewall defaults, restoring
installation log
installing OS (CTPView server CLI)
installing the software overview
log-in banner, setting
logging level, setting
logs, managing
MySQL server, restarting
network access, configuring
on a Hyper-V server
on a Hyper-V server, overview
on a virtual machine, overview
on an ESXi server
on an ESXi server, overview
password    
creating nonroot
setting new nonroot
setting new root
password requirements    12
port forwarding, configuring
preparing a new
restoring browser access
restoring configuration by synchronizing servers    12
restoring configuration overview    
CTPView GUI    12
restoring configuration settings    
CTPView server menu    12
restoring shell access
software installation and upgrade    
overview
start-up (log-in) banner
synchronizing to restore configuration    12
system administrator account, resetting
system file defaults, restoring
TACACS+ settings
TACACS+, configuring
third-party software on
upgrade files
upgrading the software overview
user passwords, managing
users, managing shell account
validating configuration    12
verifying OS installation
web certificate, creating
CTPView server CLI    
BIOS menu password    12
burning CTPOS image to a CompactFlash card
changing default user password
changing root account password    12
installing server OS
reviewing the installation log
CTPView server menu    
access security, managing
accessing
creating more server disk space    12
GRUB boot loader password    12
log-in banner, setting
logging level, setting
logs, managing
MySQL Apache account password    12
MySQL IP access lists
MySQL root account password    12
MySQL server, restarting
network access, configuring
OpenSSL authenticaton, creating and self-signing web certificate
port forwarding, managing
restoring server configuration settings    12
saving CTPView configuration settings    12
TACACS+, configuring
user passwords, managing
users, managing shell account
web certificate, creating
CTPView server OS    
software installation and upgrade    
overview
tasks
verifying installation
CTPView server, OpenSSL    
web certificate, creating
CTPView software    
configuring administrative settings
saving configuration settings    12
updating CTPOS
upgrade files
upgrading    
overview
with complete archive file
with web archive file
user security levels
 

D

data file permissions    
CTPView server, resetting
 

E

email notifications    
configuring
ESXi server    
configuring CTPView server
configuring guidelines CTPView server
overview of CTPView server on
 

F

files    
removing (CTPView GUI)
removing (CTPView server menu)    12
firewall    
CTPView server defaults, restoring
 

G

Global_Admin account    
creating CTPView GUI
groups, user    
adding
deleting
managing
modifying affiliation
modifying properties
monitoring
GRUB boot loader    
changing the password    12
 

H

host groups    
adding and removing
Hyper-V server    
configuring CTPView server
configuring guidelines CTPView server
overview of CTPView server on
 

I

installation    
reviewing log for errors
software overview
IP access filter
IP address filter     See IP access filter    
 

L

limiting CTP network bandwidth
log-in banner    
configuring
setting    
CTPView server menu
logging level    
CTPView server, setting
login security    
CTPView software
logs    
managing CTPView server
 

M

menu    
accessing CTPView server
MySQL database    
automatically backing up
changing the Apache account password    12
changing the root account password    12
configuring IP access control lists
MySQL server    
restarting
 

N

native authentication with Steel-Belted RADIUS
network access    
configuring server
network reports    
displaying CTP platform
understanding CTP platform
nonroot account    
creating
nonroot passwords    
creating
setting new
NTP servers    
managing
 

O

OpenSSL authentication    
web certificate, creating
OS, CTPView server    
installing (CTPView server CLI)
software installation and upgrade    
overview
tasks
verifying installation on server
outdated files    
automatically removing
removing (CTPView GUI)
removing (CTPView server menu)    12
overview    
Circuit to Packet network
CTP network software
restoring configuration    12
restoring server configuration    
CTPView GUI    12
software installation and upgrade    
CTPView server
synchronizing servers (CTPView)    
CTPView GUI
 

P

passwords    
BIOS menu changing    12
changing administrative
changing requirements
CTP platform user    
changing
CTPOS    
default
CTPView GUI    
changing default
CTPView server    
changing default
changing root    12
creating nonroot
default
recovering lost
requirements    12
setting new nonroot
setting new root
excluding from use
expiration of user
Global_Admin account
GRUB boot loader changing    12
limiting use
managing user
MySQL database changing    1234
reinstating excluded
requirements of user
port forwarding    
configuring on CTP platforms
configuring on the CTPView server
 

R

receive packet processing
redundant files    
removing (CTPView GUI)
removing (CTPView server menu)    12
remote host     See CTP platforms    
root passwords    
setting new CTPView server
RSA SecurID authentication with Steel-Belted RADIUS
 

S

security levels    
user
serial stream processing
setting user password    
resetting password
shell access to CTPView server    
acquiring
restoring
SNMP communities     See adding and removing    
software    
installation and upgrade    
CTPView server OS tasks
CTPView server overview
network management only
upgrade files
SSH    
connections to CTP platforms    
configuring on the platform
persistent connections to CTP platforms    
configuring on the server
start-up banner    
configuring
setting    
CTPView server menu
Steel-Belted RADIUS    
authentication for CTPView software users
synchronization of CTPView servers    
automatic method
configuring the synchronization network
manual method
overview
to restore configuration    12
system administrator account    
CTPView server, resetting
system file    
CTPView server defaults, restoring
 

T

third-party software    
using on the CTPView server
transmit packet processing
troubleshooting    
installation issues
two factor authentication with Steel-Belted RADIUS
 

U

upgrade    
CTPView Network Management Software
software overview
user accounts, unlocking    
expired passwords    12
user groups     See groups, user    
user passwords    
changing CTP platform
changing CTPView GUI default
changing server’s default
changing server’s root    12
expiration
requirements
users    
adding
authentication with Steel-Belted RADIUS
automatic logout
counters
deleting active
deleting inactive
deleting prohibited
displaying prohibited
IP access filters    
creating
removing
locked-out IP addresses
lockout period
logging out selected
login attempts
login properties
managing
managing access
managing passwords
modifying properties
monitoring
password requirements    12
prohibiting
reinstating prohibited
security levels    12
shell account, classification
shell account, managing
 

V

virtual machine    
CTPView server, configuring guidelines
CTPView server, overview
 

W

web certificate    
creating

Configuring IP ACLs for Restricting Access to Resources (CTPView Server Menu)

An access control list (ACL) is a sequential collection of permit and deny conditions that you can use to filter inbound or outbound routes. You can use different kinds of access lists to filter routes based on The router compares each route's IP address against the conditions in the list, one-by-one. If the first match is for a permit condition, the route is accepted or passed. If the first match is for a deny condition, the route is rejected or blocked. The order of conditions is critical because testing stops with the first match. If no conditions match, the router rejects or blocks the address; that is, the last action of any list is an implicit deny condition for all routes.

You can define an access list to permit or deny routes on the basis of the IP address or the range of IP addresses. Each access list is a set of permit or deny conditions (based on how they match a route's address) for a route. A zero in the wildcard mask means that the corresponding bit in the address must be exactly matched by the route. A one in the wildcard mask means that the corresponding bit in the address does not have to be matched by the route. You can also specify a range of IP addresses, by entering the starting IP address and the ending IP address in the range separated by a hyphen (-), if you want to enable or disallow traffic from a set of IP addresses.

Best Practice: We recommend that you modify the IP ACLs during periods of relatively low traffic to minimize network disruptions and outages in processing packets.

Before you begin, log in to the CTPView server and access the CTPView Configuration Menu. See Accessing the CTPView Server Configuration Menu (CTPView Server Menu).

Note: You cannot use an SSH application to access the CTPView server until you have configured the server in your network and assigned it an IP address. See Configuring the Network Access (CTPView Server Menu).

To add, remove, or display IP ACLs:

  1. From the CTPView Configuration Menu, select 6) MySQL Functions.
  2. Select 6) IP ACL Function. The IP ACL Function menu is displayed, which enables you to create a new ACL, delete a previously configured ACL, and view all the ACLs configured on your CTP device.
    CTPView Configuration Menu
    
    Please choose a menu item from the following list:
    
    0) Exit CTPView Configuration Menu
    1) Security Profile
    2) System Configuration
    3) Port Forwarding
    4) Advanced Functions
    5) Backup Functions
    6) MySQL Functions
    7) CTPView Access Functions
    8) GRUB Functions
    9) AAA Functions
    
    Please input your choice [0]: 6
    ************************************************************
         CTPView version 7.2R1-rc3 151120
         Server: ctpview    Date: Mon Dec  7 06:00:20 2015
         Release: CentOS release 5.11 (Final)
         Kernel: 2.6.18-406.el5
         User root logged in from 10.215.150.11 as root
         +++++  ALL  ACTIONS  ARE  LOGGED  +++++
    ************************************************************
    
    MySQL Menu
    
    Please choose a menu item from the following list:
    
    0) Return to previous menu
    1) Change MySQL Administrator password
    2) Change MySQL Apache password
    3) Restart MySQL Server
    4) Initialize Web UI Template Accounts
    5) IP ACL Function
    6) Upgrade Database Structures
    
    Please input your choice [0]: 5
    ************************************************************
         CTPView version 7.2R1-rc3 151120
         Server: ctpview    Date: Mon Dec  7 06:00:23 2015
         Release: CentOS release 5.11 (Final)
         Kernel: 2.6.18-406.el5
         User root logged in from 10.215.150.11 as root
         +++++  ALL  ACTIONS  ARE  LOGGED  +++++
    ************************************************************
    
    IP ACL Function Menu
    
    Please choose a menu item from the following list:
    
    0) Return to previous menu
    1) Add
    2) Remove
    3) Show
    
    Please input your choice [0]: 1
    
    Enter the IP or IP range[e.g 10.0.1-23.*]: 1.2.3.4
    
    Specify the permission
    0) Deny
    1) Allow
    Please input your choice [0]: 0
    IP range/ IP address added successfully...
    
    Hit return to continue...
  3. Select 1) Add
  4. Follow the onscreen instructions and configure the options as described inTable 1.

    Table 1: Creating an IP ACL

    FieldFunctionYour Action

    Enter the IP or IP range [e.g 10.0.1-23.*]

    Specifies the IP address or a pool of IP addresses from which you want to enable or disallow traffic.

    Specify an IP address in the format a.b.c.d/xx, where xx is the subnet prefix, or an IP address range in the format of starting-address - ending -address, with the starting and ending IP addresses separated by a hyphen (-).

    Specify the permission

    Specifies whether you want to enable or deny traffic from the specified IP address or range of addresses.

    Select 0) Deny to cause the CTP device to drop traffic arriving from the specified IP address.

    Select 1) Allow to cause the CTP device to allow traffic arriving from the specified IP address.

    Specify rtn to set the interface that is prompted by the system to be specified as the default IPv4 circuit device. For example, if the prompt displays (rtn for eth1), and if you specify rtn, eth1 is set as the default circuit device.

  5. Press Enter to proceed to the next step of removing any of the configured IP ACLs. The IP ACL Function menu is displayed.
  6. Select 2) Remove. The IP address ranges or IP addresses for which you previously configured ACLs are displayed.
    ************************************************************
         CTPView version 7.2R1-rc3 151120
         Server: ctpview    Date: Mon Dec  7 06:01:04 2015
         Release: CentOS release 5.11 (Final)
         Kernel: 2.6.18-406.el5
         User root logged in from 10.215.150.11 as root
         +++++  ALL  ACTIONS  ARE  LOGGED  +++++
    ************************************************************
    
    IP ACL Function Menu
    
    Please choose a menu item from the following list:
    
    0) Return to previous menu
    1) Add
    2) Remove
    3) Show
    
    Please input your choice [0]: 2
    Current listing of IP range :
    0) Return to previous menu
    1) *.*.*.*
    2) 1.2.3.4
    3) 78.34.3.2
    Please input your choice [0]:2
    IP range/ IP address removed successfully...
    
    Hit return to continue...
    
  7. From the list of IP addresses displayed, select a number pertaining to your choice. Enter the number next to the Please input your choice [0] field. If you select 0, you are returned to the previous menu.

    After you enter a number pertaining to your choice in the menu, a confirmation message is displayed stating that the selected IP address or range is successfully deleted.

  8. Press Enter to proceed to the next step of viewing all the configured IP ACLs. The IP ACL Function menu is displayed.
  9. Select 3) Show. All the configured IP addresses and their corresponding permissions are displayed. The access modifier or permission of 1 denotes permit, and 0 denotes deny.
    ************************************************************
         CTPView version 7.2R1-rc3 151120
         Server: ctpview    Date: Mon Dec  7 06:01:14 2015
         Release: CentOS release 5.11 (Final)
         Kernel: 2.6.18-406.el5
         User root logged in from 10.215.150.11 as root
         +++++  ALL  ACTIONS  ARE  LOGGED  +++++
    ************************************************************
    IP ACL Function Menu
    
    Please choose a menu item from the following list:
    
    0) Return to previous menu
    1) Add
    2) Remove
    3) Show
    
    Please input your choice [0]: 3
    All database entries:
    +-----------+------------+
     | iprange   | permission |
     +-----------+------------+
     | *.*.*.*   |          1 |
     | 78.34.3.2 |          0 |
     +-----------+------------+
    
    Hit return to continue...
    

Related Documentation

Modified: 2016-02-04