Skip to end of metadata
Go to start of metadata

To configure most global general system settings, select the General subdirectory to view the General Settings screen.

View General Settings

Select the General subdirectory for the VX node and view contents at the General Settings screen.

Modify Settings

Double-click on an entry in the General Setting screen to present the General Settings dialog box.


General Settings Dialog

Field

Description

Clock Source

 

Primary Clock Slot

Slot number that contains the card to be used for system backplane timing.

Primary Clock Port

Port number on that card to be used for system backplane timing.
"None" indicates the use of the internal oscillator card. 

Secondary Clock Slot

Slot number that contains the card which will be used for system backplane timing if the primary source is not available.

Secondary Clock Port

Port number on that card which will be used if the primary source in not available.
A value of "none" indicates the use of the internal oscillator card.

Time Server

 

Enabled

Enables/disables the Time Server.
The VXgate Time Server function establishes one VXgate to be the time keeper against which the other VXs can synchronize their time clocks.

Node ID

Node ID of the VXgate system to be the Time Server.

NTP

Enables/disables the VX to sync time with the NTP server.

Selected. VX syncs time with NTP server.

Deselected. VX does not sync time with NTP server.

NTP ServerIP address of the NTP Server.
Authentication

Enables NTP Authentication.

Selected. NTP Authentication is enabled.

Deselected. NTP Authentication is disabled.

Interval

For Time Server: The number of seconds between updates. Range of interval:  16 - 129600 seconds. 

For NTP: The number of seconds between updates. Range of interval: 16 - 129600 seconds.

Key

NTP Authentication Key. Valid range: 1 - 15 characters.

NOTE: Field appears only when Authentication is checked.

Max Change

The maximum number of seconds by which the node's clock can be adjusted during a synchronization update
7200 seconds (2 hours).

SNMP

 

Read Community Name

An SNMP community is the group in which devices and management stations running SNMP belong, and helps define where information is sent. The community name is used to identify the group. An SNMP device or agent may belong to more than one SNMP community. It will not respond to requests from management stations that do not belong to one of its communities. SNMP default communities are:

  • Write = private
  • Read = publicNote: Do not leave the SNMP community name field blank, as this may generate a CRITICAL ERROR.

    Do not leave the SNMP community name field blank. Blank community name fields are processed with the default value of public .

Trap Community Name

Used in outbound SNMP Traps. The Trap Community Name is optional. If it is not set, then it will use the SNMP Community Name.

MIB-II Support

Enables retrieval of MIB-II information over SNMP.

Scheduled ReStart

 

Enable

When checkbox is enabled, the VX automatically restarts at the scheduled time when the memory consumption goes below the set threshold.

Time

Configure the time for the VX to automatically restart. Click the up and down arrows to adjust the time.

Radius

 

Enable Accounting

Enable support for RADIUS billing systems off of VXgate

Pre-Login Banner

 

Edit Banner

Edit or add a banner message that displays when telneting or connecting to the node by way of VXbuilder.

Post-Login Message of the Day

 

Edit MOTD

Edit or add a message of the day that displays after logging into the CLI via telnet, or connecting to the node via VXbuilder.

LLEM

 

Status Update Interval

Frequency by which channel status is sent to peer node

No. of missed status updates before LLEM is declared down

Once the configured value is reached, all circuits in the trunk group will be declared down

Certificate

 

Certificate Name

The name of the certificate to associate with this VX node.

Require TLS for domain login

Enables using Transport Layer Security Protocol (TLS) for domain login. See the settings under the SIP tab in the Trunk Groups settings for more information about TLS settings.

Allow Untrusted Root Certificates

Select to allow self-signed certificates to be used. When this checkbox is selected, VX does not check to see if the certificate is lawfully signed by a trusted root authority (CA). Using self-signed certificates allows a user to use the TLS transport encryption and decryption but bypass authentication.

TLS for VXwatch

If selected and a valid certificate is installed, VXwatch will connect using a secure TLS connection

TLS for VXbuilder

If selected and a valid certificate is installed, VXbuilder will connect using a secure TLS connection

Persistent TLS Connections

Enabled: When checked, this field enables the Reuse of the TLS connection for multiple calls.
Inactivity Timer: Associated timer that allows the session to go down where there are no calls made across the session. Enter a time in hours.

CRL Checking

Enabled: When checked, this field enables the VX to search the list of revoked certificates to ensure the target CRL (Certificate Revocation List) has not been revoked.
Inactivity Timer: Time that determines how often the CRL is checked. Default:every  24 hours. Select a time from the drop down list.

OCSP Checking

OSCP Enabled: When checked, this field enables the VX to use the OCSP (Online Certificate Status Protocol) method for checking revocation status of the server certificate.

Timeout (Inactivity Timer): The timeout interval for the OCSP verification. Enter a time in ms. Valid entry: 0 - 20000 ms.

Responder URL: Enter URL for the pre-configured OCSP Responder to do revocation checking by overriding AIA. Optional parameters when OCSP is enabled.

Override AIA. When enabled, the URL extracted from AIA extension of the server certificate is ignored, and URL specified on VX at the client side in “Responder URL” field will be chosen for revocation checking. Available when Responder URI is available.

Enable all Ciphers

NOTE: The Enable all Ciphers feature is availble for Release 5.2v24 and later.

Enables support for 3DES ciphers with a CTR mode of operation. Through the checkbox, select which ciphers are used for login to the VX:

Checked. Supports 3DES with CTR mode and CBC mode for SSH login

Unchecked. Supports 3DES with CTR mode for SSH login.

Default entry: Unchecked.