beautypg.com

Service management, Overview, Telnet service – H3C Technologies H3C WA3600 Series Access Points User Manual

Page 161: Ssh service, Sftp service, Http service, Https service

background image

148

Service management

Overview

The service management module provides the following types of services: Telnet, SSH, SFTP, HTTP and

HTTPS. You can enable or disable the services as needed. In this way, the performance and security of
the system can be enhanced, thus secure management of the device can be achieved.
The service management module also provides the function to modify HTTP and HTTPS port numbers,

and the function to associate the HTTP, or HTTPS service with an ACL, thus reducing attacks of illegal

users on these services.

Telnet service

The Telnet protocol is an application layer protocol that provides remote login and virtual terminal

functions on the network.

SSH service

Secure Shell (SSH) offers an approach to securely logging in to a remote device. By encryption and

strong authentication, it protects devices against attacks such as IP spoofing and plain text password
interception.

SFTP service

The secure file transfer protocol (SFTP) is a new feature in SSH2.0. SFTP uses the SSH connection to

provide secure data transfer. The device can serve as the SFTP server, allowing a remote user to log in to

the SFTP server for secure file management and transfer. The device can also serve as an SFTP client,
enabling a user to login from the device to a remote device for secure file transfer.

HTTP service

The Hypertext Transfer Protocol (HTTP) is used for transferring web page information across the Internet.

It is an application-layer protocol in the TCP/IP protocol suite.
You can log in to the device using the HTTP protocol with HTTP service enabled, accessing and
controlling the device with Web-based network management.

HTTPS service

The Secure HTTP (HTTPS) refers to the HTTP protocol that supports the Security Socket Layer (SSL)

protocol.
The SSL protocol of HTTPS enhances the security of the device in the following ways:

Uses the SSL protocol to ensure the legal clients to access the device securely and prohibit the illegal
clients;

Encrypts the data exchanged between the HTTPS client and the device to ensure the data security
and integrity, thus realizing the security management of the device;

Defines certificate attribute-based access control policy for the device to control the access right of
the client, in order to further avoid attacks from illegal clients.

This manual is related to the following products:
See also other documents in the category H3C Technologies Routers: