Configuring security settings, Advanced firewall configuration wizard – Rockwell Automation 1783-SR Stratix 5900 Services Router User Manual User Manual

58

Rockwell Automation Publication 1783-UM005A-EN-P - September 2013

Chapter 3

Configure the Stratix 5900 Services Router

Configuring Security Settings

Some configuration settings that compromise router and network security are
enabled by default because they offer useful services. For example Cisco
Discovery Protocol (CDP) enables an administrator to view information about
neighboring routers on the network. However, CDP can be a security risk if the
information that it provides gets into the wrong hands. Stratix Configurator
software lists common settings that pose security risks and lets you disable them
of you want to do so to secure the router and the network.

There are also settings, like TCP Syn Wait time, and logging that are disabled by
default but that can protect the network against attacks and aid in
troubleshooting when they are enabled. Stratix Configurator software lists these
settings and lets you choose whether to enable them or not.

Advanced Firewall Configuration Wizard

Stratix Configurator helps you create an Internet firewall by asking you for
information about the interfaces on the router, whether you want to configure a
DMZ (demilitarized zone) network, and what rules you want to use in the
firewall.

For detailed information see the

Cisco Configuration Professional User Guide

.