For feedback, use the following:
ipd_online_feedback@alcatel-lucent.com
Table of Contents Previous Next Index

Table of Contents

Preface
About This Guide
Getting Started
In This Chapter
­Alcatel-Lucent 7750 SR Router Configuration Process
7750 SR OS, System Management Guide, Security
In This Chapter
Authentication, Authorization, and Accounting
Authentication
Local Authentication
RADIUS Authentication
TACACS+ Authentication
Authorization
Local Authorization
RADIUS Authorization
TACACS+ Authorization
Accounting
RADIUS Accounting
TACACS+ Accounting
Security Controls
When a Server Does Not Respond
Access Request Flow
CPU Protection
CPU Protection Extensions ETH-CFM
Distributed CPU Protection (DCP)
Applicability of Distributed CPU Protection
Log Events, Statistics, Status and SNMP support
DCP Policer Resource Management
Operational Guidelines and Tips
DCP Configuration Samples
Vendor-Specific Attributes (VSAs)
Other Security Features
Secure Shell (SSH)
Per Peer CPM Queuing
CPM Filters and Traffic Management
TTL Security for BGP and LDP
Exponential Login Backoff
User Lockout
Encryption
802.1x Network Access Control
TCP Enhanced Authentication Option
Packet Formats
Keychain
Configuration Notes
General
7750 SR OS, System Management Guide, Configuring Security with CLI
Setting Up Security Attributes
Configuring Authentication
Configuring Authorization
Configuring Accounting
Security Configurations
Configuration Tasks
Security Configuration Procedures
Configuring Management Access Filters
Configuring CPM Filters Policy
Configuring IPv6 CPM Filters
Configuring CPM Queues
Configuring Password Management Parameters
IPSec Certificates Parameters
Configuring Profiles
Configuring Users
Configuring Keychains
Copying and Overwriting Users and Profiles
User
Profile
RADIUS Configurations
Configuring RADIUS Authentication
Configuring RADIUS Authorization
Configuring RADIUS Accounting
Configuring 802.1x RADIUS Policies
Configuring CPU Protection Policies
TACACS+ Configurations
Enabling TACACS+ Authentication
Configuring TACACS+ Authorization
Configuring TACACS+ Accounting
Enabling SSH
Configuring Login Controls
7750 SR OS, System Management Guide, Security Command Reference
Command Hierarchies
Configuration Commands
LLDP Commands
7750 SR OS, System Management Guide, SNMP
In This Chapter
SNMP Overview
SNMP Architecture
Management Information Base
SNMP Protocol Operations
SNMP Versions
Management Information Access Control
User-Based Security Model Community Strings
Views
Access Groups
Users
Which SNMP Version to Use?
Configuration Notes
General
7750 SR OS, System Management Guide, Configuring SNMP with CLI
SNMP Configuration Overview
Configuring SNMPv1 and SNMPv2c
Configuring SNMPv3
Basic SNMP Security Configuration
Configuring SNMP Components
Configuring a Community String
Configuring View Options
Configuring Access Options
Configuring USM Community Options
Configuring Other SNMP Parameters
7750 SR OS, System Management Guide, SNMP Command Reference
Command Hierarchies
Configuration Commands
7750 SR OS, System Management Guide, SNMP, Event and Accounting Logs
In This Chapter
Logging Overview
Log Destinations
Console
Session
Memory Logs
Log Files
SNMP Trap Group
Syslog
Event Logs
Event Sources
Event Control
Log Manager and Event Logs
Event Filter Policies
Event Log Entries
Simple Logger Event Throttling
Default System Log
Accounting Logs
Accounting Records
Accounting Files
Design Considerations
Reporting and Time-Based Accounting
Overhead Reduction in Accounting: Custom Record
User Configurable Records
Changed Statistics Only
Configurable Accounting Records
Significant Change Only Reporting
Immediate Completion of Records
AA Accounting per Forwarding Class
Configuration Notes
7750 SR OS, System Management Guide, Configuring Logging with CLI
Log Configuration Overview
Log Types
Basic Event Log Configuration
Common Configuration Tasks
Configuring an Event Log
Configuring a File ID
Configuring an Accounting Policy
Configuring Event Control
Configuring Throttle Rate
Configuring a Log Filter
Configuring an SNMP Trap Group
Setting the Replay Parameter
Shutdown In-Band Port
No Shutdown Port
Configuring a Syslog Target
Configuring an Accounting Custom Record
Log Management Tasks
Modifying a Log File
Deleting a Log File
Modifying a File ID
Deleting a File ID
Modifying a Syslog ID
Deleting a Syslog
Modifying an SNMP Trap Group
Deleting an SNMP Trap Group
Modifying a Log Filter
Deleting a Log Filter
Modifying Event Control Parameters
Returning to the Default Event Control Configuration
7750 SR OS, System Management Guide, Log Command Reference
Command Hierarchies
Facility Alarms
In This Chapter
Facility Alarms Overview
Facility Alarms vs. Log Events
Facility Alarm Severities and Alarm LED Behavior
Facility Alarm Hierarchy
Facility Alarm List
Configuring Logging with CLI
Basic Facility Alarm Configuration
Common Configuration Tasks
Configuring the Maximum Number of Alarms To Clear
Facility Alarms Command Reference
Command Hierarchies