JuniperNetworks SSG 520M and SSG 550M Security Policy
7
D. Interfaces
The SSG 520M and 550M provide a number of interfaces:
· The SSG 520M and 550M have four Ethernet autosensing interfaces (RJ-45) (Data
Input, Data Output, Control, Status). These interfaces are network ports. Each port
has two LEDs that indicate port status:
· The right LED indicates the link status. If the LED is on, this means the link is up.
If the LED is off, this means the link is down.
· The left LED indicates the ethernet activity. If the LED is on and is blinking, this
means the port is active (transmitting/receiving data). If the LED is off, this
means the port is inactive
· Console port RJ-45 serial port connector (Data Input, Data Output, Status,
Control). This port allows initial access to the Command Line Interface (CLI).
· Modem port RJ-45 serial port connector. Disabled in FIPS mode.
· Power interface: AC or DC.
· The module has four status LEDs:
· One Power status LED: Illuminates solid green when the power is supplied to the
NetScreen-ISG.
· System Alarm LED: Illuminates red when a critical alarm occurs, such as a
hardware or software failure, or a firewall attack; illuminates amber when a major
alarm occurs, such as "low memory;" is dark when there are no alarms.
· One System status LED: Illuminates blinking green when the module is
operational, or amber when the unit is booting up.
· HA LED: Illuminates green if the unit is the master, amber if the unit is the slave,
and is dark if HA is not configured.
·
Hardware reset button: After the user follows this sequence--press for 5 seconds,
release for 5 seconds, press again for 5 seconds, and release again for 5
seconds--the device erases all configurations and restores the default factory
settings (Control Input).
·
The SSG 520M and 550M have six physical interface module (PIM) slots:
·
The SSG 520M may be configured with up to 2 Enhanced PIMs (EPIMs). The
SSG 550M may be configured ith up to 4 EPIMs.
· PIM options are:
· The three available EPIMs for the SSG 520M and 550M include:
· 1 port 10/100/1000 copper Ethernet EPIM
· 1 Gigabit Ethernet Small Form-factor Pluggable (SFP) EPIM for iber
connectivity
· 4 port 10/100 Ethernet EPIM
· DS3/E3 PIM includes either one physical DS3 or E3 port with integrated DSU.
· Dual-port Synchronous Serial PIM includes 2 physical serial ports.
· Dual-port T1/E1 PIM includes 2 physical T1 or E1 ports with integrated
CSU/DSU.
E. Setting FIPS Mode
By default, the module is in non-FIPS mode on the first power-up.
Prior to placing the device in FIPS mode, the administrator must load the Juniper firmware