Several standard network services can be enabled or disabled via the easily accessible Network Services Panel under MANAGEMENT > Network Setup:
The Network Services panel has ON/OFF toggle switches for the following daemons and features:
- System Time Message: A once-per second Time Message sent out via Multicast; for details, see System Time Message.
- Daytime Protocol, RFC-867: A standard Internet service, featuring an ASCII daytime representation, often used for diagnostic purposes.
- Time Protocol, RFC-868: This protocol is used to provide a machine-readable, site-independent date and time.
- Telnet: Remote configuration
- FTP server: Access to logs
- SSH: Secure Shell cryptographic network protocol for secure data communication
- HTTP: Hypertext Transfer Protocol
- HTTPS: Hypertext Transfer Protocol Secure
- Classic UI: This toggle switch allows the NetClock Classic User Interface (as used in NetClock Web UI Version 5.0.2 and older) to be turned ON or OFF [Default = OFF].
To enable, select the ON position, and refresh the browser window (the refresh may take a moment). Then click the CLASSIC INTERFACE button that will appear in the top right hand corner to switch to the Classic UI. The Classic UI is accessed via the non-standard port 8080 (e.g., https://10.10.122.32:8080).
Note that 3rd party security scan tools may report a security issue if the Classic UI is ON.
To enable/disable the Classic UI via the CLI (e.g., when using an older browser that does not support the current UI, use the commands
- tcpdump: A LINUX program that can be used to monitor network traffic by inspecting tcp packets. Default = ON.
If not needed, or wanted (out of concern for potential security risks), tcpdump can be disabled permanently: Once toggled to OFF, and after executing a page reload, tcpdump will be deleted from the system: The toggle switch will be removed, and the function cannot be enabled again (even after a software upgrade).
While not accessible via the Web UI, iptables (an application allowing for customizable access restrictions) have been supported since NetClock Software Version 5.4.1.
Note that iptables is always ON, and its policies can only be accessed via the Command Line Interface (see CLI Commands) in combination with the Sudo command. Please also note that you need to have admin user rights to run this command.
Note: A listing of recommended and default network settings can be found under Default and Recommended Configurations.