Netopia CLI 874 User Manual

Motorola Netopia® Router CLI Commands 2-69

remote-server unprotected no

ser vice unprotected [ yes | no ]
show ser vice unprotected
no ser vice unprotected

These commands allow you to specify, show, or disable whether or not a ser vice is "unprotected."

unprotected indicates whether traffic will be sent over a force-all IPSec tunnel or not. All ser vices default to
unprotected no, meaning that they will be routed over the IPSec tunnel, unless set to yes.

The no default enhances security since it requires user inter vention to prevent the ser vice from being routed
over the IPSec tunnel.

If no is used with the commands, the value goes back to the default 0.0.0.0 and no.

Examples:

■

RADIUS, TACACS+

The remote-ser ver configuration controls the settings for both TACACS+ and RADIUS ser vers.

remote-server interface 0.0.0.0

remote-server unprotected no

■

SNMP

By default, SNMP ser vices use the primar y WAN inter face, thus no interface selection is required.

■

syslog

system syslog interface 0.0.0.0

system syslog unprotected no

■

NTP

ip ntp interface 0.0.0.0

ip ntp unprotected no

■

hear tbeat

hear tbeat uses the primar y WAN inter face, thus no interface selection is required.

heartbeat unprotected no

If the ser vice fails, a message will be added to the event log. This message has the format;

[service] failed. Could not open socket