Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Configuration Guide, 2.3
Acronyms and Abbreviations
Downloads: This chapterpdf (PDF - 200.0KB) The complete bookPDF (PDF - 4.49MB) | Feedback

Acronyms and Abbreviations

Table Of Contents

Acronyms and Abbreviations


Acronyms and Abbreviations


This appendix lists the acronyms and abbreviations used in this document.

For more information on acronyms used in this guide, refer to the Internetworking Terms and Acronyms guide.

Table E-1 Acronyms and Abbreviations 

Abbreviation
Description

AAA

authentication, authorization, and accounting.

ACE

access control entry.

ACK

acknowledgement notification.

ACL

access control list.

AH

Authentication Header.

ARP

Address Resolution Protocol—A low-level TCP/IP protocol that maps the hardware address of a node (called a "MAC" address) to its IP address. Defined in RFC 826. An example hardware address is 00:00:a6:00:01:ba. (The first three groups specify the manufacturer, the rest identify the host's motherboard.)

ASA

Adaptive Security Algorithm.

ASBR

Autonomous System Boundary Router.

ASCII

American Standard Code for Information Interchange.

BER

bit error rate.

BIND

Berkeley Internet Name Domain.

BGP

Border Gateway Protocol—While the Firewall Services Module (FWSM) does not support use of this protocol, you can set the routers on either side of the FWSM to use RIP between them and then run BGP on the rest of the network before the routers.

BOOTP

Bootstrap Protocol—Lets diskless workstations boot over the network and is described in RFC 951 and RFC 1542.

BPDU

bridge protocol data unit.

BSD

Berkeley Standard Distribution.

CA

certification authority.

CDP

Cisco Discovery Protocol.

CGI

Common Gateway Interface.

chargen

Character Generation—Via TCP, a service that sends a continual stream of characters until stopped by the client. Via UDP, the server sends a random number of characters each time the client sends a datagram. Defined in RFC 864.

CLI

command-line interface.

conn

Connection slot in the FWSM—Refer to the xlate command page in the Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Command Reference for more information.

CoS

Class of Service.

CPU

Central Processing Unit.

CR

carriage return.

CTIQBE

Computer Telephony Interface Quick Buffer Encoding.

DES

Data Encryption Standard.

DHCP

Dynamic Host Configuration Protocol.

DMZ

demilitarized zone—A separate network behind the firewall that allows limited access to outside users.

DNAT

Dynamic Network Address Translation.

DNS

Domain Name System (or Service)—Operates over UDP unless zone file access over TCP is required.

DoS

Denial of service.

EIGRP

Enhanced Interior Gateway Routing Protocol—While the FWSM does not support use of this protocol, you can set the routers on either side of the FWSM to use RIP between them and then run EIGRP on the rest of the network before the routers.

EOBC

Ethernet Out-of-Band Channel.

ESP

Encapsulating Security Payload. Refer to RFC 1827 for more information.

EXEC

privileged command mode, which displays the "#" prompt.

Firewall MC

Firewall Management Center.

FTP

File Transfer Protocol.

FWSM

Firewall Services Module.

GRE

Generic Routing Encapsulation—A tunneling protocol that does not use encryption.

H.323

A collection of protocols that allow the transmission of voice data over TCP/IP networks.

HTTP

HyperText Transfer Protocol—The service that handles access to the World Wide Web.

HTTPS

HTTP over SSL.

IANA

Internet Assigned Number Authority—Assigns all port and protocol numbers for use on the Internet. You can view port numbers at the following site:

http://www.iana.org/assignments/port-numbers

You can view protocol numbers at the following site:

http://www.iana.org/assignments/protocol-numbers

ICMP

Internet Control Message Protocol—This protocol is commonly used with the ping command. You can view ICMP traces through the FWSM with the debug trace on command. Refer to RFC 792 for more information.

IETF

Internet Engineering Task Force.

IGMP

Internet Group Management Protocol.

IGRP

Interior Gateway Routing Protocol.

IKE

Internet Key Exchange.

ILS

Internet Locator Service.

IOS

Internetwork Operating System.

IP

Internet Protocol.

IPinIP

IP-in-IP Encapsulation Protocol.

IPSec

IP Security Protocol efforts in the IETF (Internet Engineering Task Force).

IPX

Internetwork Packet Exchange.

IRC

Internet Relay Chat protocol—The protocol that lets users access chat rooms.

ISAKMP

Internet Security Association and Key Management Protocol.

ISC

IP Solution Center.

ISN

Initial Sequence Number.

ISP

Internet service provider.

ITU

International Telecommunication Union.

LDAP

Lightweight Directory Access Protocol.

LF

linefeed.

LSA

link-state advertisement.

MAC

Media Access Control.

MD5

Message Digest 5—An encryption standard for encrypting VPN packets. This same encryption is used with the aaa authentication console command to encrypt Telnet sessions to the console.

MGCP

Media Gateway Control Protocol.

MIB

Management Information Base—Used with SNMP.

MPLS

Multiprotocol Label Switching.

MSFC

Multilayer Switch Feature Card.

MTU

maximum transmission unit—The maximum number of bytes in a packet that can flow efficiently across the network with best response time. For Ethernet, the default MTU is 1500 bytes, but each network can have different values, with serial connections having the smallest values. The MTU is described in RFC 1191.

NAT

Network Address Translation.

NetBIOS

Network Basic Input Output System—An application programming interface (API) that provides special functions for PCs in local-area networks (LANs).

NFS

Network File System.

NIC

Network Information Center.

NIS

Network Information Service.

NMS

network management station.

NNTP

Network News Transfer Protocol—News reader service.

NOS

Network Operating System.

NP

Network Processor—as in IBM NP or Intel NP.

NSSA

not so stubby area.

NTP

Network Time Protocol—Set system clocks via the network.

OSPF

Open Shortest Path First.

PAT

Port Address Translation.

PBX

private branch exchange.

PCP

Payload Compression Protocol.

PDM

PDM for FWSM.

PDU

protocol data unit.

PIM

Protocol Independent Multicast.

PIX

Private Internet Exchange.

POP

Post Office Protocol.

PPP

Point-to-Point Protocol. Provides FWSM-to-router and host-to-network connections over synchronous and asynchronous circuits.

PPPoE

Point-to-Point Protocol over Ethernet.

PPTP

Point-to-Point Tunneling Protocol. RFC 2637 describes the PPTP protocol.

RADIUS

Remote Authentication Dial-In User Service—User authentication server specified with the aaa-server command.

RAS

The registration, admission, and status protocol. Provided with H.323 support.

RDT

Real Data Transport.

RFC

Request For Comment—RFCs are the defacto standards of networking protocols.

RIP

Routing Information Protocol.

RPC

Remote Procedure Call.

RSA

Rivest, Shamir, and Adelman. RSA is the trade name for RSA Data Security, Inc.

RSH

Remote Shell—as in Remote Shell protocol.

RTCP

RTP Control Protocol.

RTP

Real-Time Transport Protocol.

RTSP

Real Time Streaming Protocol.

SA

security association.

SCCP

Skinny (or Simple) Client Control Protocol is a simplified protocol used in VoIP networks.

SDP

Session Description Protocol.

SIP

Session Initiation Protocol.

SMTP

Simple Mail Transfer Protocol—Mail service. The fixup protocol smtp command enables the Mail Guard feature. The Mail Guard feature is compliant with both the RFC 1651 EHLO and RFC 821 section 4.5.1 commands.

SNMP

Simple Network Management Protocol—Set attributes with the snmp-server command.

SNP

Sitara Networks Protocol.

SPC

Shared Profile Component.

SPF

shortest path first.

SPI

Security Parameter Index—A number which, together with a destination IP address and security protocol, uniquely identifies a particular security association.

SQL*Net

SQL*Net is a protocol Oracle uses to communicate between client and server processes. (SQL stands for Structured Query Language.)

SSH

Secure Shell.

STDERR

standard error file descriptor.

SVI

switched virtual interface.

SYN

TCP synchronization, used as part of three-way handshake to establish a TCP session.

TACACS+

Terminal Access Controller Access Control System Plus.

TCP

Transmission Control Protocol. Refer to RFC 793 for more information.

TFTP

Trivial File Transfer Protocol.

TNSFrame

Transparent Network Substrate Frame.

TPKT

Transport Packet.

Triple DES

Triple Data Encryption Standard. Also known as 3DES.

uauth

User authentication.

UDP

User Datagram Protocol.

URL

Universal Resource Locator.

UUIE

user-user information element.

VLAN

virtual LAN.

VoIP

Voice over IP.

VPN

Virtual Private Network.

WAN

wide-area network.

WINS

Windows Internet Naming Service.

WWW

World Wide Web.

XDMCP

X Display Manager Control Protocol.

xlate

Translation session.