Enhanced intrusion detection, Enhanced intrusion detection 2-133 – Nortel Networks OPTera Metro 3500 User Manual
Page 171
Operation, administration, and maintenance (OAM) features 2-133
Planning and Ordering Guide—Part 1 of 2 NTRN10AN Rel 12.1 Standard Iss 1 Apr 2004
SPx login sessions
The maximum number of incoming login sessions to the network element is
six. The login maximum of six is broken down into the following login max
restrictions:
•
maximum two physical (local) connections
•
maximum one direct debug (local) connection
•
maximum three remote connections (for example, ACT-USER from
Connect DX)
Note: There is no limit on the number of sessions for each user ID. The
same user ID can be used to log in up to six times.
The maximum number of outgoing login sessions from a network element
is 20.
NPx login sessions
The network processor allows the following multiple concurrent login sessions
through local or remote connections:
•
two rlogin sessions from a network element or network processor
•
the recommended maximum number of TCP/IP sessions is five
•
16 X.25 sessions
•
16 OSI connections for the span of control. For maintenance purposes, this
capability allows simultaneous control and surveillance of a full network
processor span of control or 16 network elements.
•
the maximum number of logins to a network processor (a combination of
local and remote) is 34.
•
a maximum of three remote connections (for example, ACT-USER from
Connect DX)
•
a maximum of three level 5 user accounts can be active at the same time.
Enhanced Intrusion Detection
OPTera Metro 3500 provides the capability to detect and report the true
originating address of any access attempts to the NP or SP. These access
attempts include remote login, from one NE to another, or a local login (telnet,
X.25, RS232 or passthrough). In the case of remote logins, the originating
address and connection type of each login request is sent to the remote network
element.
Once the intrusion threshold for an address has been reached, the intrusion
detection feature shall prevent any further access attempts from the same
originating address.