DOCSLIB.ORG

Passive Asset Discovery User Guide

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Passive Asset Discovery User Guide ICS SHIELD R 510.2 Asset Passive Discovery (Asset PD) User Guide CS-ICSE777en-510B September 2019 DISCLAIMER This document contains Honeywell proprietary information. Information contained herein is to be used solely for the purpose submitted, and no part of this document or its contents shall be reproduced, published, or disclosed to a third party without the express permission of Honeywell International Sàrl. While this information is presented in good faith and believed to be accurate, Honeywell disclaims the implied warranties of merchantability and fitness for a purpose and makes no express warranties except as may be stated in its written agreement with and for its customer. In no event is Honeywell liable to anyone for any direct, special, or consequential damages. The information and specifications in this document are subject to change without notice. Copyright 2019 – Honeywell International Sàrl DocID CS-ICSE777en-510B 2 Notices Trademarks Experion®, PlantScape®, SafeBrowse®, TotalPlant®, and TDC 3000® are registered trademarks of Honeywell International, Inc. ControlEdge™ is a trademark of Honeywell International, Inc. OneWireless™ is a trademark of Honeywell International, Inc. Matrikon® and MatrikonOPC™ are trademarks of Matrikon International. Matrikon International is a business unit of Honeywell International, Inc. Movilizer® is a registered trademark of Movilizer GmbH. Movilizer GmbH is a business unit of Honeywell International, Inc. Other trademarks Trademarks that appear in this document are used only to the benefit of the trademark owner, with no intention of trademark infringement. Third-party licenses This product may contain or be derived from materials, including software, of third parties. The third party materials may be subject to licenses, notices, restrictions and obligations imposed by the licensor. The licenses, notices, restrictions and obligations, if any, may be found in the materials accompanying the product, in the documents or files accompanying such third party materials, in a file named third_party_ licenses on the media containing the product, or at http://www.honeywell.com/ps/thirdpartylicenses. Legal Notices • "Ethernet/IP" • "COTP" • "TPKT • "Link-Local Multicast Name Resolution" • "Server Message Block" • "Tabular Data Stream" • "Transparent Network Substrate" • "DNP3" DocID CS-ICSE777en-510B 3 • "EtherCAT" • "IEC 60870 5" • "Generic Substation Events" • "BACnet" • "Manufacturing Message Specification" • "ICCP Protocol" • "DCERPC" • "OPC Data Access" • "PROFINET" • "Profibus" • "Routing Information Protocol" • "Interior Gateway Routing Protocol" • "Open Shortest Path First" • "Cisco Discovery Protocol" • "Link Layer Discovery Protocol" • "Simple Network Management Protocol" These articles are released under the Creative Commons Attribution-Share-Alike License 3.0. Documentation feedback You can find the most up-to-date documents on the Honeywell Process Solutions support website at: http://www.honeywellprocess.com/support If you have comments about Honeywell Process Solutions documentation, send your feedback to: [email protected] Use this email address to provide feedback, or to report errors and omissions in the documentation. For immediate help with a technical problem, contact your local Honeywell Process Solutions Customer Contact Center (CCC) or Honeywell Technical Assistance Center (TAC). DocID CS-ICSE777en-510B 4 How to report a security vulnerability For the purpose of submission, a security vulnerability is defined as a software defect or weakness that can be exploited to reduce the operational or security capabilities of the software. Honeywell investigates all reports of security vulnerabilities affecting Honeywell products and services. To report a potential security vulnerability against any Honeywell product, please follow the instructions at: https://honeywell.com/pages/vulnerabilityreporting.aspx Submit the requested information to Honeywell using one of the following methods: Send an email to [email protected]. or Contact your local Honeywell Process Solutions Customer Contact Center (CCC) or Honeywell Technical Assistance Center (TAC) listed in the “Support” section of this document. Support For support, contact your local Honeywell Process Solutions Customer Contact Center (CCC). To find your local CCC visit the website, https://www.honeywellprocess.com/en- US/contact-us/customer-support-contacts/Pages/default.aspx. Training classes Honeywell holds technical training classes that are taught by process control systems experts. For more information about these classes, contact your Honeywell representative, or see http://www.automationcollege.com. DocID CS-ICSE777en-510B 5 About this Guide This guide describes how to configure and use the Asset Passive Discovery (Asset PD) , the solution that enables the VSE to collect information about the network assets that the VSE can access. Scope This guide provides step-by-step instructions for configuring, distributing, and using Asset Passive Discovery (Asset PD) . at all levels, from the initial settings up to the deployment in the Security Center and the VSEs. Intended audience This guide is for people who are responsible for the configuration and operation of Asset Passive Discovery (Asset PD) on the Security Center and VSEs: • Initial Settings - Professional Services, Support, or IT personnel • Security Center – Administrators and operators • VSE – Administrators and operators Prerequisite skills This guide assumes basic knowledge of the ICS Shield R 510.2 modules relevant to the Security Center, the VSE, or both, depending on your specific role. Related documents The following list identifies publications that contain information relevant to the information in this document. Document Name Document Number ICS Shield R510.1 - Security Center Getting Started CS-ICSE400en-510A Guide ICS Shield R510.1 - Virtual Security Engine – User CS-ICSE601en-510A Guide DocID CS-ICSE777en-510B 6 Revision history Revision Supported Date Description Release A Release 510.1 August 2019 This software is an upgrade-only release from Release 501.1 A Release 500.1 June 2019 First release of product to Honeywell Enterprise customers DocID CS-ICSE777en-510B 7 Contents 1. SECURITY CONSIDERATIONS ........................................................................................ 11 1.1 Physical security ...................................................................................................................................... 11 1.2 Secured zone ............................................................................................................................................. 11 1.3 Limiting access ........................................................................................................................................ 11 1.3.1 At the VSE level ...................................................................................................................... 11 1.3.2 At the directory or file level ............................................................................................... 12 1.4 Authorization measures ...................................................................................................................... 12 2. TERMS AND DEFINITIONS .............................................................................................. 13 3. INTRODUCTION ................................................................................................................... 15 3.1 Understanding the AssetPD solution ........................................................................................... 15 3.2 The Definition of Asset ......................................................................................................................... 16 3.3 Exploring the AssetPD architecture .............................................................................................. 17 4. INSTALLATION ..................................................................................................................... 19 4.1 Installation prerequisites .................................................................................................................... 19 4.1.1 Configuring the mirror port ............................................................................................. 19 4.2 Installation procedure .......................................................................................................................... 20 5. CONFIGURATION ................................................................................................................ 22 5.1 Configuring AssetPD............................................................................................................................. 22 5.1.1 Configuring the connection to remote VSE ............................................................ 22 5.1.2 Configuration of sources .................................................................................................. 23 5.2 Configuring network interfaces ....................................................................................................... 23 5.3 Configuring offline sources ............................................................................................................... 24 6. RUNNING ASSETPD ........................................................................................................... 26 6.1 Getting AssetPD Results ....................................................................................................................
Load more

Recommended publications
  • LLDP-MED and Cisco Discovery Protocol
    White Paper LLDP-MED and Cisco Discovery Protocol DEVICE DISCOVERY PROTOCOLS Device discovery protocols enable directly connected devices to discover information about each other. They advertise information about the device over every interface, allowing any device in the network to “know” everything it is connected to. Examples of applications that use the information conveyed by discovery protocols include: ● Network topology—A network management system (NMS) can accurately represent a map of the network topology. ● Inventory—A management system can query a switch to learn about all the devices connected to that switch. ● Emergency services—Location of a phone can be determined by the switch port to which it is connected. ● VLAN configuration—The switch can tell the phone which VLAN to use for voice. ● Power negotiation—The phone and the switch can negotiate the power that the phone can consume. Cisco Systems ® introduced the Cisco ® Discovery Protocol in 1994 to provide a mechanism for the management system to automatically learn about devices connected to the network. Cisco Discovery Protocol runs on Cisco devices (routers, switches, phones, etc.) and is also licensed to run on some network devices from other vendors. Using Cisco Discovery Protocol, network devices periodically advertise their own information to a multicast address on the network, making it available to any device or application that wishes to listen and collect it. Because Cisco Discovery Protocol runs over Ethernet, ATM, and Frame Relay links, it is independent of network protocol (for example, TCP/IP, Internetwork Packet Exchange [IPX], AppleTalk, etc.). With this capability in the network, Cisco customers can introduce a new network management application that can discover and display an accurate topology of all the Cisco devices active on the network.
    [Show full text]
  • Provisioning Link Layer Discovery Protocol
    Provisioning Link Layer Discovery Protocol The Cisco Discovery Protocol (CDP) is a device discovery protocol that runs over Layer 2 (the data link layer) on all Cisco-manufactured devices (routers, bridges, access servers, and switches). CDP allows network management applications to automatically discover and learn about other Cisco devices connected to the network. To support non-Cisco devices and to allow for interoperability between other devices, the switch supports the IEEE 802.1AB Link Layer Discovery Protocol (LLDP). LLDP is a neighbor discovery protocol that is used for network devices to advertise information about themselves to other devices on the network. This protocol runs over the data link layer, which allows two systems running different network layer protocols to learn about each other. LLDP supports a set of attributes that it uses to discover neighbor devices. These attributes contain type, length, and value descriptions and are referred to as TLVs. LLDP supported devices can use TLVs to receive and send information to their neighbors. Details such as configuration information, device capabilities, and device identity can be advertised using this protocol. By default, LLDP is disabled globally and on interfaces. The switch supports these basic management TLVs. These are mandatory LLDP TLVs. • Port description TLV • System name TLV • System description • System capabilities TLV • Management address TLV These organizationally-specific LLDP TLVs are also advertised to support LLDP-MED. • Port VLAN ID TLV (IEEE 802.1 organizationally specific TLVs) • MAC/PHY configuration/status TLV (IEEE 802.3 organizationally specific TLVs) • How To Configure LLDP, page 2 • Other Commands For LLDP Configuration, page 8 Cisco ME 1200 Series Carrier Ethernet Access Devices Controller Configuration Guide, Cisco IOS 15.6(1)SN and Later Releases 1 Provisioning Link Layer Discovery Protocol How To Configure LLDP How To Configure LLDP Setting LLDP Global Configuration DETAILED STEPS Command or Action Purpose Step 1 configure terminal Enters global configuration mode.
    [Show full text]
  • Understanding and Configuring CDP
    CHAPTER20 Understanding and Configuring CDP This chapter describes how to configure Cisco Discovery Protocol (CDP) on the Catalyst 4500 series switch. It also provides guidelines, procedures, and configuration examples. This chapter includes the following major sections: • Overview of CDP, page 20-1 • Configuring CDP, page 20-2 Note For complete syntax and usage information for the commands used in this chapter, refer to the Cisco IOS Configuration Fundamentals Configuration Guide, Release 12.2; Cisco IOS System Management; Configuring Cisco Discovery Protocol (CDP) at this URL: http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/ffun_c/fcfprt3/fcf015.htm and to the Cisco IOS Configuration Fundamentals Command Reference, Release 12.1; Cisco IOS System Management Commands; and CDP Commands publication at this URL: http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/ffun_r/ffrprt3/frf015.htm Note For complete syntax and usage information for the switch commands used in this chapter, refer to the Catalyst 4500 Series Switch Cisco IOS Command Reference and related publications at http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/index.htm. Overview of CDP CDP is a protocol that runs over Layer 2 (the data link layer) on all Cisco routers, bridges, access servers, and switches. CDP allows network management applications to discover Cisco devices that are neighbors of already known devices, in particular, neighbors running lower-layer, transparent protocols.With CDP, network management applications can learn the device type and the SNMP agent address of neighboring devices. CDP enables applications to send SNMP queries to neighboring devices.
    [Show full text]
  • Stealth Analysis of Network Topology Using Spanning Tree Protocol
    Stealth Analysis of Network Topology using Spanning Tree Protocol Stephen Glackin M.Sc. in Software and Network Security 2015 Computing Department, Letterkenny Institute of Technology, Port Road, Letterkenny, Co. Donegal, Ireland. Stealth Analysis of Network Topology using Spanning Tree Protocol Author: Stephen Glackin Supervised by: John O’ Raw A thesis presented for the award of Master of Science in Software and Network Security. Submitted to the Higher Quality and Qualifications Ireland (QQI) Dearbhú Cáilíochta agus Cáilíochtaí Éireann May 2015 Declaration I hereby certify that the material, which l now submit for assessment on the programmes of study leading to the award of Master of Science in Computing in Software and Network Security, is entirely my own work and has not been taken from the work of others except to the extent that such work has been cited and acknowledged within the text of my own work. No portion of the work contained in this thesis has been submitted in support of an application for another degree or qualification to this or any other institution. Signature of Candidate Date Acknowledgements I would like to thank my wife, kids, family members and extended family members for their support and encouragement, without them this project never would have been completed. Also I would like to offer my greatest appreciation to my supervisor Mr. John O'Raw for all his help and support. His knowledge with regards to everything relating to computing is truly amazing and I am very grateful for the time he has given in assisting me to carry out this project.
    [Show full text]
  • Crash Course: Ipv6 & Network Protocols
    SharkFest ’18 Europe Crash Course: IPv6 & Network Protocols by looking at packets! Johannes Weber Network Security Consultant #sf18eu#sf18eu • Imperial • Johannes Riding Weber School • https://weberblog.net Renaissance Vienna •• @webernetz Oct 29 - Nov 2 #whoami: Johannes Weber • Network Security Consultant @ TÜV Rheinland i-sec GmbH • (Next-Gen) Firewalls • VPN/Crypto • Routing/Switching • IPv6, DNS, NTP • https://weberblog.net • @webernetz #sf18eu • Johannes Weber • https://weberblog.net • @webernetz Agenda/Motivation • Many „unknown“ packets • IPv6 • Network Protocols • Crash course -> fast, no deep dive & skipping ;) • Normally: 2 day workshop for IPv6 only • Never ending acronyms • Who is familiar with IPv6? #sf18eu • Johannes Weber • https://weberblog.net • @webernetz Tracefiles • https://tinyurl.com/ipv6-crash-course • -> download of „weber01.zip“ • -> 3x pcaps • Plz do me a favour: listen first ;) • flavoured with 12x challenges #sf18eu • Johannes Weber • https://weberblog.net • @webernetz “Today’s latte, World IPv6 Launch.” by Yuko Honda is licensed under CC BY-SA 2.0. • Johannes Weber • https://weberblog.net • @webernetz• https://weberblog.net • Weber Johannes • #sf18eu IPv6 • IPv4 space is exhausted • IPv6 brings enough addresses ;) • every client is global addressable • end-to-end communication (no NAT!) • subnets for everyone • Only layer 3 changes (almost) • No broadcast anymore, but multicast #sf18eu • Johannes Weber • https://weberblog.net • @webernetz IPv6 Addresses • 128 bits long, hexadecimal, 8 groups called „hextets“
    [Show full text]
  • CISCO IOS Asynchronous Transfer Mode Configuration Guide Full
    Cisco IOS Asynchronous Transfer Mode Configuration Guide, Release 15.0 Release 15.0 October 2, 2009 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883 Text Part Number: THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. ALL STATEMENTS, INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. USERS MUST TAKE FULL RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS. THE SOFTWARE LICENSE AND LIMITED WARRANTY FOR THE ACCOMPANYING PRODUCT ARE SET FORTH IN THE INFORMATION PACKET THAT SHIPPED WITH THE PRODUCT AND ARE INCORPORATED HEREIN BY THIS REFERENCE. IF YOU ARE UNABLE TO LOCATE THE SOFTWARE LICENSE OR LIMITED WARRANTY, CONTACT YOUR CISCO REPRESENTATIVE FOR A COPY. The Cisco implementation of TCP header compression is an adaptation of a program developed by the University of California, Berkeley (UCB) as part of UCB’s public domain version of the UNIX operating system. All rights reserved. Copyright © 1981, Regents of the University of California. NOTWITHSTANDING ANY OTHER WARRANTY HEREIN, ALL DOCUMENT FILES AND SOFTWARE OF THESE SUPPLIERS ARE PROVIDED “AS IS” WITH ALL FAULTS. CISCO AND THE ABOVE-NAMED SUPPLIERS DISCLAIM ALL WARRANTIES, EXPRESSED OR IMPLIED, INCLUDING, WITHOUT LIMITATION, THOSE OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OR ARISING FROM A COURSE OF DEALING, USAGE, OR TRADE PRACTICE. IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, OR INCIDENTAL DAMAGES, INCLUDING, WITHOUT LIMITATION, LOST PROFITS OR LOSS OR DAMAGE TO DATA ARISING OUT OF THE USE OR INABILITY TO USE THIS MANUAL, EVEN IF CISCO OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
    [Show full text]
  • Cisco IOS Asynchronous Transfer Mode Command Reference Americas Headquarters Cisco Systems, Inc
    Cisco IOS Asynchronous Transfer Mode Command Reference Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883 THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. ALL STATEMENTS, INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. USERS MUST TAKE FULL RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS. THE SOFTWARE LICENSE AND LIMITED WARRANTY FOR THE ACCOMPANYING PRODUCT ARE SET FORTH IN THE INFORMATION PACKET THAT SHIPPED WITH THE PRODUCT AND ARE INCORPORATED HEREIN BY THIS REFERENCE. IF YOU ARE UNABLE TO LOCATE THE SOFTWARE LICENSE OR LIMITED WARRANTY, CONTACT YOUR CISCO REPRESENTATIVE FOR A COPY. The Cisco implementation of TCP header compression is an adaptation of a program developed by the University of California, Berkeley (UCB) as part of UCB's public domain version of the UNIX operating system. All rights reserved. Copyright © 1981, Regents of the University of California. NOTWITHSTANDING ANY OTHER WARRANTY HEREIN, ALL DOCUMENT FILES AND SOFTWARE OF THESE SUPPLIERS ARE PROVIDED “AS IS" WITH ALL FAULTS. CISCO AND THE ABOVE-NAMED SUPPLIERS DISCLAIM ALL WARRANTIES, EXPRESSED OR IMPLIED, INCLUDING, WITHOUT LIMITATION, THOSE OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OR ARISING FROM A COURSE OF DEALING, USAGE, OR TRADE PRACTICE. IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, OR INCIDENTAL DAMAGES, INCLUDING, WITHOUT LIMITATION, LOST PROFITS OR LOSS OR DAMAGE TO DATA ARISING OUT OF THE USE OR INABILITY TO USE THIS MANUAL, EVEN IF CISCO OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
    [Show full text]
  • Monitoring and Visualization of LLDP Information in Zabbix Agenda Introduction
    Monitoring and visualization of LLDP information in Zabbix Agenda Introduction Technical choice & Problems Solution Use case Unresolved issue & Plan for the future How to use Introduction About me Takeshi Tanaka [email protected] System Architect & Management > Monitoring system design > Product planning NTT Com Solutions since 2008 About Corporation NTT Com Solutions Corporation (https://www.nttcsol.com/) ・Technical subsidiary of NTT Communications Group ・Founded in 1988 ・Provide Zabbix support service for Japanese market from 2008 ・First Zabbix premium partner in the world 2017 2008 About Corporation ・We provide Zabbix to many companies. (communication, manufacturing, finance, etc.) ・At the beginning, we provided a Japanese version of Zabbix 1.4. ・Currently we are provide Zabbix for large-scale enterprise systems. 30,000 hosts 1,200,000 items 60,000 triggers 4,000 NVPS Motivation of the project The current system is a combination of logical and physical structure. ・Logical structure provides visualization. ・Physical structure has limited visualization. It is a big problem with large-scale cloud services and communication line services. Logical structure Physical structure Cloud services Virtual infrastructure Physical infrastructure Problems cause It does not Cloud services work! Customers Which customers are Virtual affected? infrastructure Sales staff Do not ask Physical me! infrastructure System administrator Technical choice & Problems Technical choice ・The information neighbor devices managed in data link layer ・Manufacturers
    [Show full text]
  • Migration from Cisco to HP Switches
    Qi Zhang Migration from Cisco to HP switches Technology and Communication 2010 VAASAN AMMATTIKORKEAKOULU UNIVERSITY OF APPLIED SCIENCES Degree Programme of Telecommunication Engineering FOREWORD The project's main job is to replace the switches; the most important part is the rational allocation of VAMK VLAN, and the exchange of information security. The working period is between Jan, 2010 and Apr, 2010. I would like to express my appreciation to the supervisor Mr. Johan Dams, who has been concerned about this project, guiding the project and giving me lots of help and suggestions. Then I would like to thank you to Dr. Smail Menani principal Lecturer to give me an opportunity for this project. Finally I would like to thank you to Mr. Hannu Teulahti Data Communications Planner who guiding me to fully accomplish the configuration and support Academic and theoretical of the project. In Vaasa, 10 MAY 2010 Qi Zhang 1 VAASAN AMMATTIKORKEAKOULU UNIVERSITY OF APPLIED SCIENCES Degree Programme of Telecommunication Engineering ABSTRACT Author Qi Zhang Title Migration from Cisco to HP Switches Year 2010 Language English Pages 42 Supervisor Johan Dams In today's society, information has become a key structure resource. Network technologies transmit accurate information, high-speed in all types of computers, terminals, telephones, and fax machines and communications devices. In campus, LAN technology is a relatively small geographical areas covered by high-speed data network, which includes workstations, personal computers, printers and other devices. It provides the equipments and applications, including shared access, users to exchange files, e-mail and other communication applications. VLAN technologies emerge and LAN switching technology is inseparable.
    [Show full text]
  • Configuring Cisco Discovery Protocol
    Configuring Cisco Discovery Protocol Cisco Discovery Protocol (CDP) is a media- and protocol-independent protocol that runs on all Cisco-manufactured equipment including routers, bridges, access and communication servers, and switches. Using CDP, you can view information about all the Cisco devices that are directly attached to the device. • Prerequisites for Implementing CDP, on page 1 • Information About Implementing CDP, on page 1 • How to Implement CDP on Cisco IOS XR Software, on page 3 • Configuration Examples for Implementing CDP, on page 9 Prerequisites for Implementing CDP You must be in a user group associated with a task group that includes the proper task IDs. The command reference guides include the task IDs required for each command. If you suspect user group assignment is preventing you from using a command, contact your AAA administrator for assistance. Note CDP is an optional package. You must check if this package is installed on your system by running the command show install active summary. Information About Implementing CDP CDP is primarily used to obtain protocol addresses of neighboring devices and discover the platform of those devices. CDP can also be used to display information about the interfaces your router uses. CDP is media- and protocol-independent, and runs on all equipment manufactured by Cisco, including routers, bridges, access servers, and switches. Use of SNMP with the CDP MIB allows network management applications to learn the device type and the SNMP agent address of neighboring devices and to send SNMP queries to those devices. CDP uses the CISCO-CDP-MIB. CDP runs on all media that support Subnetwork Access Protocol (SNAP), including LAN, Frame Relay, and ATM physical media.
    [Show full text]
  • Asynchronous Transfer Mode Configuration Guide, Cisco IOS Release 15S
    Asynchronous Transfer Mode Configuration Guide, Cisco IOS Release 15S Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883 THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. ALL STATEMENTS, INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. USERS MUST TAKE FULL RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS. THE SOFTWARE LICENSE AND LIMITED WARRANTY FOR THE ACCOMPANYING PRODUCT ARE SET FORTH IN THE INFORMATION PACKET THAT SHIPPED WITH THE PRODUCT AND ARE INCORPORATED HEREIN BY THIS REFERENCE. IF YOU ARE UNABLE TO LOCATE THE SOFTWARE LICENSE OR LIMITED WARRANTY, CONTACT YOUR CISCO REPRESENTATIVE FOR A COPY. The Cisco implementation of TCP header compression is an adaptation of a program developed by the University of California, Berkeley (UCB) as part of UCB's public domain version of the UNIX operating system. All rights reserved. Copyright © 1981, Regents of the University of California. NOTWITHSTANDING ANY OTHER WARRANTY HEREIN, ALL DOCUMENT FILES AND SOFTWARE OF THESE SUPPLIERS ARE PROVIDED “AS IS" WITH ALL FAULTS. CISCO AND THE ABOVE-NAMED SUPPLIERS DISCLAIM ALL WARRANTIES, EXPRESSED OR IMPLIED, INCLUDING, WITHOUT LIMITATION, THOSE OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OR ARISING FROM A COURSE OF DEALING, USAGE, OR TRADE PRACTICE. IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, OR INCIDENTAL DAMAGES, INCLUDING, WITHOUT LIMITATION, LOST PROFITS OR LOSS OR DAMAGE TO DATA ARISING OUT OF THE USE OR INABILITY TO USE THIS MANUAL, EVEN IF CISCO OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
    [Show full text]
  • Release Notes: Version F.05.55 Software for the Procurve Series 2300 and 2500 Switches
    Release Notes: Version F.05.55 Software for the ProCurve Series 2300 and 2500 Switches These release notes include information on the following: ■ Downloading switch software and Documentation from the Web (Page 1) ■ Enhancements in Release F.05.xx (Page 7) ■ Enhancements in Release F.04.08 (Page 69) ■ Enhancements in Release F.02.11 (Page 145) ■ Enhancements in Release F.02.02 (Page 161) ■ Updates and corrections for the Management and Configuration Guide (page 217) ■ Software fixes for Series 2500 switch software releases (page 223) Note Starting with Software version F.05.50, FEC trunks (Cisco Systems’ FastEtherChannel for aggregated links) are no longer supported, and generation of CDP (Cisco Discovery Protocol) packets are no longer supported. In their place are IEEE standards based LACP aggregated links (as well as statically configured trunks) and generation of LLDP packets for device discovery. For more information, please see: ftp://ftp.hp.com/pub/networking/software/LLDP-and-LACP-statement.pdf. Caution: Archive Pre-F. 05.17 Configuration Files A configuration file saved while using release F.05.17 or later software is not backward-compatible with earlier software versions. For this reason, ProCurve recommends that you archive the most recent configuration on switches using software releases earlier than F.05.17 before you update any switches to software release F.05.17 or later. For the latest information on using your ProCurve product please check its "Frequently Asked Questions" (FAQ) page. Go to the ProCurve Web site at http://www.procurve.com. Click on Technical support, then FAQs and select your product from the list presented.
    [Show full text]