Motorola Netopia 3342N User Manual

Administrator’s Handbook

340

Soft MBytes. Setting the Soft MBytes parameter forces the renegotiation of the IPSec Security Associa-
tions (SAs) at the configured Soft MByte value. The value can be configured between

1 and 1,000,000 MB

and refers to data traffic passed. If this value is not achieved, the Hard MBytes parameter is enforced.

Soft Seconds. Setting the Soft Seconds parameter forces the renegotiation of the IPSec Security Associa-
tions (SAs) at the configured Soft Seconds value. The value can be configured between 60 and 1,000,000
seconds.

SPI . The Security Parameter Index is an identifier for the encryption and authentication algorithm and key.
The SPI indicates to the remote firewall the algorithm and key being used to encr ypt and authenticate a
packet. It should be a unique number greater than 255.

SSL. Secure Sockets Layer. A protocol developed by Netscape for transmitting private documents via the
Internet. SSL uses a cr yptographic system that uses two keys to encr ypt data: a public key known to ever y-
one and a private or secret key known only to the recipient of the message.

STATEFUL. The Netopia Gateway monitors and maintains the state of any network transaction. In terms of
network request-and-reply, state consists of the source IP address, destination IP address, communication
por ts, and data sequence. The Netopia Gateway processes the stream of a network conversation, rather
than just individual packets. It verifies that packets are sent from and received by the proper IP addresses
along the proper communication por ts in the correct order and that no imposter packets interrupt the
packet flow. Packet filtering monitors only the por ts involved, while the Netopia Gateway analyzes the con-
tinuous conversation stream, preventing session hijacking and denial of ser vice attacks.

static route. Route entered manually in a routing table.

subnet mask. A 32-bit address mask that identifies which bits of an IP address represent network address
information and which bits represent node identifier information.

synchronous communication. Method of data communication requiring the transmission of timing sig-
nals to keep peers synchronized in sending and receiving blocks of data.

-----T-----

telnet. IP protocol that lets a user on one host establish and use a virtual terminal connection to a remote
host.

TR-064. TR-064 is a LAN-side DSL Gateway configuration specification; an extension of UPnP. It defines
more ser vices to locally manage a Gateway.

TR-069. TR-069 is a WAN-side DSL Gateway Management specification; provides services similar to UPnP
and TR-064. The communication between a Gateway and management agent in UPnP and TR-064 is strictly
over the LAN, whereas the communication in TR-069 is over the WAN link for some features and over the
LAN for others. TR-069 allows a remote Auto-Config Ser ver to provision and manage a Gateway.

TR-101. Standard for a network architecture where the aggregation network is Ethernet-based while the
DSL access network is still ATM-over-DSL-based. This facilitates multiplay ser vice deliver y over a range of
scaleable broadband access technologies. Ratified by the DSL Forum in late April 2006, TR-101 enables
ser vice providers to evolve their DSL access networks to better suppor t faster access rates and to intro-
duce new multiplay ser vices across IP-based broadband networks, all through a single gateway. These stan-
dards are par ticularly impor tant for widespread deliver y of Internet Protocol Television (IPTV). TR-101
outlines the specific features necessar y for IP-based network equipment to deliver multiple ser vices with