GarrettCom Home
 
About GarrettCom   News Contact Us How To Buy
MAGNUM MANAGED PRODUCTS
Home | Managed Switches | Magnum 6K Managed Ethernet Switches
MANAGED ETHERNET SWITCHES
  • 6K32T
    		•
  • 6K32TRC
    		•
  • 6K25e
    		•
  • 6K16V
    		•
  • 6K16
    		•
  • 6K8
    		•
  • 6KQ
    		•
     
     
  • DX line
    		•
     
  • Unmanaged Switches
    		•
     
    SOFTWARE
  • 6K Mgmt Software
    		•
  • S-Ring
    		•
  • MSNF
    		•
  • Secure Web Management
    		•
  • Redundancy
    		•
  • Live 6K Demo
    		•
     
    CYBER SECURITY
  • Cyber Security
    		•
     
    INDUSTRIES
  • Power Utilities
    		•
  • Surveillance and Security
    		•
  • Transportation
    		•
  • Factory Automation
    		•
  • Telecommunications
    		•
  • Water Treatment
    		•
     
    APPLICATIONS
  • Holyoke Gas and Electric
    		•
  • Palm Island, Dubai
    		•
  • Texas D.O.T.
    		•

    MNS-6K Security Features

    Learn more about the latest security focused initiative, Magnum Secure Networks Framework (MSNF), a focused initiative of GarrettCom that addresses cyber security requirements of power utilities, transportation systems,  water treatment plants, military installations, pipeline operations, and other critical infrastructure sectors.

    Magnum Managed Networks Software (MNS-6K), combined with a Magnum 6K Fiber Switch, provides power and efficiency in a managed Ethernet platform. A full range of industry-standard software functions in the MNS-6K software product enable the versatile Magnum 6K Switches to perform efficiently in a wide range of managed LAN applications, including redundant topologies. For mission critical jobs, security is a requirement.  For an outline of the key components of industrial network infrastructure security by GarrettCom V.P. Peter Wood, click here.

    With the release of the Magnum DX Serial Device Routers, the DX has enahanced the security features of the 6K line with Layer 3 and Layer 4 Security features.  Read technical brief on the 6K/DX Security Partnership.

    In the September 2007 issue of Security Products, the featured article by Frank Madren discusses how and why Ethernet and IP protocols should serve as the basis in building a physical and cyber security system for water utilities. Read the article.

    The MNS-6K software for the Magnum 6K Switches offers two types of security features.

    The first is to secure access to the switch's management software:

    • Password Security
    • Remote Access Security
    • SNMPv3 authentication and encryption
    • Secure Web Management authentication and encryption

    The second secures user access to the network via the switch:

    • Port Security for controlled direct access
    • RADIUS, 802.1x for wireless access control
    • TACACS+ for external server access control

    Password Security

    A multi-level CLI log-in is enforced to ensure that only authorized persons can execute commands on the console device.  There are five users maximum. The 6K units have a default shipment setting of one manager and one operator. The manager is the higher level, and the operator is the lower level.

    Remote Access Security

    Remote access to SNMP via web and Telnet can be controlled by the Switch Administrator at the IP address level as desired, providing additional remote access security beyond traditional software capabilities.

    SNMPv3 (Simple Network Management Protocol)

    SNMP provides basic network management by using agent software in the Magnum 6K that collects and saves pre-defined data, and responds to queries and commands from a network manager station.

    SNMPv3 provides encrypted authentication & access security and is per RFC 2271-75.

    Secure Web Management

    The same Web Access Security technology that handles the world’s financial transactions via the web is included in the MNS-6K Ethernet management software.

    Experience a Live Demo of Secure Web Management R3.7 running on a 6K25 Switch.  Username: operator &  Password:  operator

    Learn more about Secure Web Management

    Port Security

    The port security can be used to block computers from accessing the network by requiring the port to validate the MAC address against a known list of MAC addresses.

    If there is an insecure access on the secondary device when there are other network devices connected to the Magnum 6K family of switches, the Magnum 6K family of switches allow the authorized users to continue to access the network; the unauthorized packets are dropped preventing their access to the network.

    The MAC addresses that are secure may be either entered by the system manager, or learned by the Magnum 6K Switch. When Port Security is enabled, illegal MAC addresses are either dropped or disabled. Applicable events are noted in the Event log. CLI commands enable the system manager to control this Port Security function.

    RADIUS, 802.1x

    Defines a mechanism for port-based network access control. It provides a means of authenticating and authorizing users and devices attempting to attach to LAN ports that have point-to-point connection characteristics such as wireless access. It also prevents access from that user in cases where the authentication and authorization fails.

    TACACS+ (Terminal Access Controller Access Control System)

    Provides access control for routers, network access servers and other networked computing devices via one or more centralized servers. TACACS+ provides separate authentication, authorization and accounting services.

    For more information on the MNS-6K view the Datasheet and User Guide.
    ©2010 GarrettCom, Inc. All Rights Reserved. Contact Us | Privacy | How To Buy