Visara CNA-8000 Planning Guide User Manual

Appendix A. Frequently Asked Questions

A-2

707156-002

Q:

How secure is the CNA-8000 interface if I can use a browser to access it?

A:

The security is determined by what you feel comfortable with. The web interface
itself is a secure encrypted connection (HTTPS). Administrative functions require
a password to access. You can isolate the entire management LAN if needed to
provide the ultimate in security, or you can provide access to the corporate LAN
or even the Internet. You can also attach a monitor, keyboard and mouse directly
to the CNA-8000 to provide the ultimately secure console function.

Q:

What is involved with upgrading the software of a CNA-8000?

A:

There are five methods offered for updating the software on a CNA-8000. These
include using FTP to retrieve code from the 1) Visara site or 2) a local FTP site,
3) downloading code from a CD, 4) from a travel drive through a USB port, and
5) from the Visara eManager product over a secure (SSL encrypted) network
connection. Software upgrades automatically create a ‘system restore point’ to fall
back to in case the upgrade does not provide the desired results. After the
software has been installed the platform performs a restart operation
automatically. The entire procedure can be accomplished in just a few minutes.

Q:

What is a ‘system restore point’?

A:

The ‘system restore point’ is a means to gather the existing code and
configuration together and create a snapshot of the system that you can restore to
at a later time, in the case that you make changes to the code or the configuration
that you are not satisfied with. Creation of a system restore point, or restoring the
system typically takes less than a minute. Restore points are automatically created
when software levels are changed, and can also be manually initiated at any time.

Q:

Does the CNA-8000 support SNMP?

A:

Yes it does, in a limited fashion. At this time the CNA-8000 functions as a MIB2
agent only for SNMP. Activities are limited to GETs and GET NEXT functions.
No TRAPs are supported at this time.

Q:

Can I disable SNMP if my corporate policy does not allow for it, for security
reasons?

A:

Yes. You can rename the community name for a more secure SNMP environment
or you can disable SNMP altogether.

Q:

Can I use my existing PU2 Switched Major Node definitions that I am using with
my 3745, CCL, or Cisco CIP to support Token Ring clients with?

A:

Yes. The CNA-8000 supports an XCA definition for the channel that will provide
access to those same Switched Major Node definitions. The downstream clients
can be migrated to Ethernet and still use the same switched definitions.