Embedded Security Functions for Secure Deployment |
User Authentication and Authorization | - Password protection (length, character enforcement)
| - Password protection (length, character enforcement)
- Authentication servers (RACIUS/TACACS+)
- Customized privilege for different user groups
| - Password protection (length, character enforcement)
| - Password protection (length, character enforcement)
|
Device Integrity | Checks CRC code before updating the device |
Device Least Functionality | | | - Security Hardening Guide (MGate MB3000/5000 Series)
- Unused services can be disabled
- Disabled the default setting of the Telnet console
| |
Communication Integrity | - HTTPS (TLS 1.2 embedded with self-signed certificate)
- SNMPv3
| - HTTPS (TLS 1.2 embedded with self-signed certificate, also supports public certificate import)
- SSH/SNMPv3
| - HTTPS (TLS 1.2 embedded with self-signed certificate, also supports public certificate import)
- SNMPv3
| - HTTPS (TLS 1.2 embedded with self-signed certificate, and can be exported)
- SNMPv3
|
Network Access Control | - Accessible IP List
- Access Control List (ACL)
|
Securing Your Devices With Efficient Maintenance |
Configuration Management | - GUI type of MXconfig
- CLI type of MCC tools
|
Device Management | - Syslog (remote or local logging)
- Manageable via MXview network management software
|
Vulnerability Management | - Dedicated Cyber Security Response Team (CSRT) to handle vulnerabilities
- Perform a Nessus scan
|