Login
- Table of Contents
-
- 09 Security Configuration Guide
- 00-Preface
- 01-AAA configuration
- 02-802.1X configuration
- 03-MAC authentication configuration
- 04-Portal configuration
- 05-Port security configuration
- 06-Password control configuration
- 07-Public key management
- 08-PKI configuration
- 09-IPsec configuration
- 10-SSH configuration
- 11-SSL configuration
- 12-IP source guard configuration
- 13-ARP attack protection configuration
- 14-MFF configuration
- 15-uRPF configuration
- 16-Crypto engine configuration
- 17-FIPS configuration
- 18-Attack detection and prevention configuration
- 19-ND attack defense configuration
- Related Documents
-
| Title | Size | Download |
|---|---|---|
| 00-Preface | 129.97 KB |
Preface
The H3C S7500E-XS documentation set includes 16 configuration guides. These guides describe the software features for the H3C S7500E-XS Switch Series and guide you through the software configuration procedures. These guides also provide configuration examples to help you apply software features to different network scenarios.
The Security Configuration Guide describes fundamentals and configuration for security features, including:
· Identity authentication features (such as AAA and PKI).
· Access security features (such as 802.1X, MAC authentication, portal, and port security).
· Data security features (such as public key management, IPsec, SSL, SSH, Crypto engine, and FIPS).
· Attack protection features (such as IP source guard, ARP attack protection, MFF, uRPF, and Attack detection and prevention).
This preface includes:
· Audience
· About the H3C S7500E-XS documentation set
Audience
This documentation is intended for:
· Network planners
· Field technical support and servicing engineers
· Network administrators working with the S7500E-XS series
Conventions
This section describes the conventions used in this documentation set.
Command conventions
|
Convention |
Description |
|
Boldface |
Bold text represents commands and keywords that you enter literally as shown. |
|
Italic |
Italic text represents arguments that you replace with actual values. |
|
[ ] |
Square brackets enclose syntax choices (keywords or arguments) that are optional. |
|
{ x | y | ... } |
Braces enclose a set of required syntax choices separated by vertical bars, from which you select one. |
|
[ x | y | ... ] |
Square brackets enclose a set of optional syntax choices separated by vertical bars, from which you select one or none. |
|
{ x | y | ... } * |
Asterisk marked braces enclose a set of required syntax choices separated by vertical bars, from which you select at least one. |
|
[ x | y | ... ] * |
Asterisk marked square brackets enclose optional syntax choices separated by vertical bars, from which you select one choice, multiple choices, or none. |
|
&<1-n> |
The argument or keyword and argument combination before the ampersand (&) sign can be entered 1 to n times. |
|
# |
A line that starts with a pound (#) sign is comments. |
GUI conventions
|
Convention |
Description |
|
Boldface |
Window names, button names, field names, and menu items are in Boldface. For example, the New User window appears; click OK. |
|
> |
Multi-level menus are separated by angle brackets. For example, File > Create > Folder. |
Symbols
|
Convention |
Description |
|
|
An alert that calls attention to important information that if not understood or followed can result in personal injury. |
|
|
An alert that calls attention to important information that if not understood or followed can result in data loss, data corruption, or damage to hardware or software. |
|
|
An alert that calls attention to essential information. |
|
NOTE |
An alert that contains additional or supplementary information. |
|
|
An alert that provides helpful information. |
Network topology icons
|
|
Represents a generic network device, such as a router, switch, or firewall. |
|
|
Represents a routing-capable device, such as a router or Layer 3 switch. |
|
|
Represents a generic switch, such as a Layer 2 or Layer 3 switch, or a router that supports Layer 2 forwarding and other Layer 2 features. |
|
|
Represents an access controller, a unified wired-WLAN module, or the access controller engine on a unified wired-WLAN switch. |
|
|
Represents an access point. |
|
|
Represents a mesh access point. |
|
|
Represents omnidirectional signals. |
|
|
Represents directional signals. |
|
|
Represents a security product, such as a firewall, UTM, multiservice security gateway, or load-balancing device. |
|
|
Represents a security card, such as a firewall, load-balancing, NetStream, SSL VPN, IPS, or ACG card. |
Port numbering in examples
The port numbers in this document are for illustration only and might be unavailable on your device.
About the H3C S7500E-XS documentation set
The H3C S7500E-XS documentation set includes:
|
Category |
Documents |
Purposes |
|
Product description and specifications |
Describes product specifications and benefits. |
|
|
Hardware specifications and installation |
Provides regulatory information and the safety instructions that must be followed during installation. |
|
|
Guides you through initial installation and setup procedures to help you quickly set up and use your device with the minimum configuration. |
||
|
Provides a complete guide to hardware installation and hardware specifications. |
||
|
H3C Pluggable SFP [SFP+][XFP] Transceiver Modules Installation Guide |
Guides you through installing SFP/SFP+/XFP transceiver modules. |
|
|
Guides you through installing CFP transceiver modules. |
||
|
Guides you through installing QSFP+ transceiver modules. |
||
|
Describes the transceiver modules available for the H3C network products, their external views, and specifications. |
||
|
Software configuration |
Describes software features and configuration procedures. |
|
|
Provides a quick reference to all available commands. |
||
|
Describes typical network scenarios and provide configuration examples and instructions. |
||
|
Operations and maintenance |
Provides troubleshooting information for common problems of using the product. |
|
|
Covers the most frequently asked questions about the hardware, software and system specifications. |
||
|
Provides information about the product release, including the version history, hardware and software compatibility matrix, version upgrade information, technical support information, and software upgrading. |
||
|
Explains the system log messages. |
Obtaining documentation
Access the most up-to-date H3C product documentation on the World Wide Web at http://www.h3c.com.
Click the links on the top navigation bar to obtain different categories of product documentation:
[Technical Support & Documents > Technical Documents]—Provides hardware installation, software upgrading, and software feature configuration and maintenance documentation.
[Products & Solutions]—Provides information about products and technologies, as well as solutions.
[Technical Support & Documents > Software Download]—Provides the documentation released with the software version.
Technical support
http://www.h3c.com
Documentation feedback
You can e-mail your comments about product documentation to [email protected].
We appreciate your comments.
