Driver Support Document

Radware, FireProof AS1, CID OnDemand Switch, OS version 3.11.X, 3.21.X

Show Tested Devices Grid

SYSOID Mapping
SYSOID MODEL OS VERSION
 1.3.6.1.4.1.89.1.1.62.6 FireProof AS1 3.21.08
 1.3.6.1.4.1.89.1.1.62.18 CID OnDemand Switch 3.11.00

Driver Features Support Grid

Driver FeaturesAccess Methods
(X signifies feature support)CLISNMPTFTPCLI+TFTPSNMP+TFTPFTPCLI+FTPSNMP+FTPCLI+SFTPSCPCLI+SCPSNMP+SCPHTTP/HTTPS
X Driver Discovery release notes X X                      
X General Access  
(CLI protocols: telnet, ssh2, console)
Supports SecurID 		X     X                  
Configuration
X Retrieve Running Configuration release notes X     X                  
  Retrieve Startup Configuration                            
  Retrieve Binary Configuration                            
X Device information parsing  
X Enhanced Layer2 Basic IP information parsing  
X Configuration Deployment to Running         X                  
  Configuration Deployment to Startup                            
  Binary Configuration Deployment                            
Diagnostics
X Routing Table   X                        
X OSPF Neighbors   X                        
X Interfaces   X                        
X Modules and Inventory   X                        
  Flash Storage Space                            
X File System   X                        
X Uptime     X                      
X ICMP Test   X                        
X Topology Parsing   X                        
  Duplex Parsing                            
  Enhanced VLAN Parsing  
Features
  Software Center release notes                          
  Software Image Synchronization release notes                          
X Password Management release notes
(Can modify: full password, read-only community strings, read/write community strings) 		X                        
X Syslog Configuration and Change Detection   Syslog patterns X                        
X Custom Scripts and Diagnostics  
Bulk deploy available 		X                        
  ACL Parsing  
  ACL Provisioning                            
  VLAN Provisioning                            
  Configlet Parsing  
  QoS Parsing  
  VRF Parsing  
  Context Management                            

Retrieve Running Configuration

Release Notes

Device configuration file type encryption

For Radware Fireproof devices, the configuration file sent through TFTP can be encrypted. As a result, NAS will skip to CLI-only configuration retrieval. It is recommended that you modify the TFTP file-type to CLI.

For example: manage tftp file-type set 1 (where: "file-type" can be one of the following values: cli or ber)

return to top

Software Center

Release Notes

Update Device Software Task

After a software upgrade, Radware Fireproof devices require an activation password to boot the new software image. Because the password is unique for each device, the Update Device Software task has been disabled

return to top

Password Management

Release Notes

SNMP community strings

For NAS to support an SNMP community string on Radware Fireproof devices, the View name for the access groups to which a particular SNMP community string is assigned must be the same regardless of the SNMP security model (SNMP v1 or SNMP v2).

For example:


manage snmp access create ro_group SNMPv1 noAuthNoPriv -rvn ReadOnlyView
manage snmp access create ro_group SNMPv2c noAuthNoPriv -rvn ReadOnlyView
manage snmp access create rw_group SNMPv1 noAuthNoPriv -rvn ReadOnlyView -wvn ReadWriteView
manage snmp access create rw_group SNMPv2c noAuthNoPriv -rvn ReadOnlyView -wvn ReadWriteView

where: The groups are group-ro and group-rw.

Create read/write SNMP communities

To create read/write SNMP community strings on Radware Fireproof devices, you can overwrite default values using Device Access Settings.

For example:

snmp_read_view - the name of the view (for read and write access). If not specified, the value "ReadOnlyView" is used.
snmp_write_view - the name of the view (for read and write access). If not specified, the value "ReadWriteView" is used.
snmp_read_group - the name of the read only group. If not specified, the value "ro_group" is used.
snmp_write_group - the name of the read/write group. If not specified, the value "rw_group" is used.

return to top

Driver Discovery

Release Notes

More prompt causes an unexpected disconnection

Discovery tasks for Javascript drivers handle More prompts by using timeouts, which can cause problems with the third-party SSH client code, which interprets the timeout as a disconnection. There are two options to work around the problem. Setting the RCX option [<option name="Driver/Discovery/UsePollRead">true</option>] in site_options.rcx will effect the workaround for all affected devices. Alternatively, it could be applied to a single device by setting the device access variable "PollRead" to "true".

Wakeup Ctrl-U character can cause discovery to fail

Discovery tasks for Javascript drivers use wakeup characters are sent during device connection, to ensure that the device is responding. Normally, these characters do not echo to the console, but some devices may echo them. In this case, this causes the prompt detection phase to fail, which in turn can cause More prompts to not be handled properly, and discovery may fail. If these characters are echoed from the device [check the session log to see this], then set the device access variable "skip_ctrl_u" to skip the sending of the wakeup characters. Note that setting this option on a previously working device could cause discovery tasks to fail, but it only affects CLI discovery. SNMP discovery is unaffected.

return to top

Syslog Triggering

return to top