Firewall implementation in System Manager

Last Updated : Nov 19, 2012 |

The System Manager firewall implementation uses packet filtering and stateful inspection techniques. The System Manager firewall provides the following:

Supports unlimited access to loop back address through packet filtering.
Drops all inbound packets by default, allows all outbound packets, and allows all packets that are to be forwarded through packet filtering.
For TCP packets, the firewall checks for various combinations of the TCP flags to ascertain whether a packet is valid or not. The System Manager firewall implementation includes a set of standard rules for identifying valid TCP packets.
Supports stateful inspection of packets. The firewall checks the state of all inbound and outbound packets for secure communication. For inbound packets the state must be either Established or Related. For outbound packets the state must be either New, Established or Related.
Disables ICMP timestamp responses as this allows an attacker to know the date which is set on your machine. This defeats all the time based authentication protocols.
Allows inbound communication on ports that are exposed for interactions with various Avaya Aura® products.

Send Feedback

AVAYA DOCUMENTATION CENTER

No results found

AVAYA DOCUMENTATION CENTER

No results found

Administering Avaya Aura® System Manager

Firewall implementation in System Manager