Technical data
Securing the Router
117342-B Rev. 00
7-7
Restricting Access to the HTTP Server
The HTTP Server uses the following Technician Interface logins and passwords to
restrict access:
• The Manager login allows access to all services. To sign on as Manager on the
HTTP Server, you must first add a password for Manager using the
Technician Interface (see “Assigning a Password to the Technician Interface
”
on page 7-2).
• The User login prohibits access to the SNMP community page and prevents
changes to the ports and protocols on the router. A password is not required.
Configuring Data Encryption Services
Bay Networks data encryption services enable you to protect sensitive traffic on
your network. Encryption prevents unauthorized persons from reading, changing,
or replaying data that travels between Bay Networks routers.
Data encryption services include:
• Software-based encryption for PPP dedicated links for the BN, AN, ARN, and
ASN routers; System 5000 router modules; and all serial interfaces. This
includes encryption on multiline and multilink.
• Software-based encryption for frame relay circuits that have one permanent
virtual circuit (PVC) per service record. This include encryption on multiline.
• Encryption configurable on a line or circuit basis.
• Encryption with or without data compression.
You can configure PPP dial backup for a frame relay circuit that uses data
encryption. Be aware, however, that if the primary circuit fails, data that travels
over the backup circuit is unencrypted.
See Configuring Data Encryption Services for more information.