No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

ME60 V800R010C10SPC500 Configuration Guide - Security Hardening 01

This is ME60 V800R010C10SPC500 Configuration Guide - Security Hardening

Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Access Control Based on the Path Distance

Access Control Based on the Path Distance

ME devices are deployed on customer networks to forward packets. The number of hosts that need to access ME devices is limited. The path along which a host travels to access a ME device and the distance between hops used by the host to access the ME device are fixed.

ME devices are configured to limit the packets that are sent over the distance greater than the fixed inter-hop distance along the path. This prevents attacks from untrusted networks and ensures ME device security.

For protocol peers that are directly connected, GTSM sets the TTL field of the protocol packet to be sent to 255 (the value cannot be decremented). The forwarding plane of the GTSM-enabled peer drops protocol packets whose TTL field is not 255, therefore preventing against attacks on the control plane.

For the multi-hop peer, a reasonable TTL range, such as 251 to 255 can be defined. The forwarding plane of the peer drops protocol packets whose TTL field is not within the set range, therefore preventing attacks against the control plane.

Translation
Download
Updated: 2019-01-04

Document ID: EDOC1100059445

Views: 9217

Downloads: 12

Average rating:
This Document Applies to these Products

Related Version

Related Documents

Share
Previous Next