Tripp Lite B0930082E4UM Owners Manual for B093- B097- and B098-Series Console - Page 20

3. System Configuration Telnet By default, the Telnet service is running. However, by default, the service is disabled on all network interfaces. Telnet can be used to give the Administrator access to the system command line shell. While this may be suitable for a local direct connection over a management LAN, it is recommended this service be disabled if the console server is to be remotely administered. This service may also be useful for local Administrator and User access to selected serial consoles. The Enable telnet command shell checkbox will completely enable or disable the telnet service. An alternate telnet port to listen on can be specified in Alternate Telnet Port (default port is 23). SSH This service provides secure SSH access to the console server and attached devices. By default, the SSH service is running and enabled on all interfaces. It is recommended you choose SSH as the protocol where the Administrator connects to the console server over the Internet or any other public network. This will provide authenticated communications between the SSH client program on the remote computer and the SSH server in the console server. For more information on SSH configuration, refer to section 9. Authentication. The Enable SSH command shell checkbox will completely enable or disable this service. An alternate SSH port to listen on can be specified in SSH command shell port (default port is 22). • Enable and configure other services: TFTP/FTP If a USB flash drive or internal flash memory is detected on a console server, then checking Enable TFTP (FTP) service will enable this service and set up default tftp and ftp server on the USB flash. These servers are used to store config files, maintain access and transaction logs, etc. Files transferred using tftp and ftp will be stored under /var/mnt/storage.usb/tftpboot/ (or /var/mnt/storage.nvlog/tftpboot/ on B093 devices). Unchecking Enable TFTP (FTP) service will completely disable the TFTP (FTP) service. DNS Relay Checking Enable DNS Server/Relay will enable the DNS relay feature so clients can be configured with the console server's IP for their DNS server setting. The console server will forward the DNS queries to the real DNS server. Web Terminal Checking Enable Web Terminal will allow web browser access to the system command line shell via Manage -> Terminal. • Specify alternate port numbers for Raw TCP, direct Telnet/SSH and unauthenticated Telnet/SSH services. The console server uses specific default ranges for the TCP/IP ports for the various access services that Users and Administrators can use to access devices attached to serial ports (refer to 4.1 Configure Serial Ports for more information). The Administrator can also set alternate ranges for these services, and these secondary ports will then be used, in addition to the defaults. The default TCP/IP base port address for telnet access is 2000, and the range for telnet is IP Address: Port (2000 + serial port #) i.e. 2001 - 2048. So if the Administrator were to set 8000 as a secondary base for telnet, then serial port #2 on the console server can be telnet accessed at IP Address:2002 and at IP Address:8002. The default base for SSH is 3000; for Raw TCP is 4000; and for RFC2217 it is 5000 • A number of other services can be enabled and configured indirectly from this menu by selecting Click here to configure: Nagios Access to the Nagios NRPE monitoring daemons (refer to 8. Power, Environment & Digital I/O). NUT Access to the NUT UPS monitoring daemon (refer to 10. Nagios Integration). SNMP This will enable netsnmp in the console server. SNMP is disabled by default (refer to 7. Alerts, Auto-Response and Logging and 15.5 SNMP Status Reporting). NTP Refer to 11. System Management. • Click Apply. As you apply your services selections, the screen will be updated with a confirmation message: Message Changes to configuration succeeded. 20