Polycom 2215-28454-001 Manual De Usuario
Deployment Guide for Maximum Security Environments
Polycom, Inc.
19
3
Go to System > Admin Settings > General Settings > Security >
Password Settings > User Room Password, and enter the corresponding
settings for the User Room Password.
4
Go to System > Admin Settings > General Settings > Security >
Password Settings > Remote Access Passwords, and enter the
corresponding settings for the Remote Access Password.
Configuring the System to Use Certificates
The Polycom HDX system supports the use of PKI certificates for additional
security. You can manage certificates and revocation only by using the
Polycom HDX system web interface. Make sure the appropriate certificate
authority (CA) and identity certificates are available on your computer so that
you can upload them. For more information, refer to the Administrator’s Guide
for Polycom HDX Systems.
Detecting Intrusions
The Polycom HDX system logs an entry to the security log when it detects a
possible network intrusion. The security log prefix identifies the type of packet
detected, as shown in the following table.
Following the message prefix, the security log entry includes the timestamp
and the IP, TCP, UDP, ICMP, or ICMPv6 headers. For example, the following
security log entry shows an “unknown_udp” intrusion:
2009-05-08 21:32:52 WARNING kernel: SECURITY: NIDS/unknown_udp
IN=eth0 OUT= MAC=00:e0:db:08:9a:ff:00:19:aa:da:11:c3:08:00
SRC=172.18.1.80 DST=172.18.1.170 LEN=28 TOS=0x00 PREC=0x00
TTL=63 ID=22458 PROTO=UDP SPT=1450 DPT=7788 LEN=8
2009-05-08 21:32:52 WARNING kernel: SECURITY: NIDS/unknown_udp
IN=eth0 OUT= MAC=00:e0:db:08:9a:ff:00:19:aa:da:11:c3:08:00
SRC=172.18.1.80 DST=172.18.1.170 LEN=28 TOS=0x00 PREC=0x00
TTL=63 ID=22458 PROTO=UDP SPT=1450 DPT=7788 LEN=8
Prefix
Packet Type
SECURITY: NIDS/unknown_tcp
Packet that attempts to connect or probe a
closed TCP port
closed TCP port
SECURITY: NIDS/unknown_udp
Packet that probes a closed UDP port
SECURITY: NIDS/invalid_tcp
TCP packet in an invalid state
SECURITY: NIDS/invalid_icmp
ICMP or ICMPv6 packet in an invalid state
SECURITY: NIDS/unknown
Packet with an unknown protocol number in
the IP header
the IP header
SECURITY: NIDS/flood
Stream of ICMP or ICMPv6 ping requests or
TCP connections to an opened TCP port
TCP connections to an opened TCP port