HP Jetdirect Security Guidelines
Page 11
...TFTP configuration file picasso.cfg: # Allow subnet 192.168.40.0 access allow: 192.168.40.0 255.255.255.0 # # Disable Telnet telnet-config: 0 # # Disable the embedded Web server ews-config: 0 # # disable unused protocols ipx/spx: 0 dlc/llc: 0 ethertalk:0 # # Set a password passwd: Security4Me3 # # Disable ...enabled, comment out the "snmp-config" command and # uncomment out the following : • Syslog server: 192.168.40.3 • TFTP configuration file: picasso.cfg under the subdirectory of "hpnp" of the TFTP daemon's home directory • Forces HP Jetdirect to remain with UNIX or Linux ...
...TFTP configuration file picasso.cfg: # Allow subnet 192.168.40.0 access allow: 192.168.40.0 255.255.255.0 # # Disable Telnet telnet-config: 0 # # Disable the embedded Web server ews-config: 0 # # disable unused protocols ipx/spx: 0 dlc/llc: 0 ethertalk:0 # # Set a password passwd: Security4Me3 # # Disable ...enabled, comment out the "snmp-config" command and # uncomment out the following : • Syslog server: 192.168.40.3 • TFTP configuration file: picasso.cfg under the subdirectory of "hpnp" of the TFTP daemon's home directory • Forces HP Jetdirect to remain with UNIX or Linux ...
HP JetDirect Print Servers 600N/400N/500X/300X Administrator's Guide - 5969-3521
Page 36
# # Example of an HP JetDirect TFTP Configuration File # # Allow only Subnet 13.10.10 access to peripheral. # Up to four 'allow' entries can be written via TFTP. # Up to 10 'allow' entries can be written via SNMP. # 'allow' may include single IP addresses. # allow: 13.10.10.0 255.255.255.0 # # # Disable Telnet # telnet: 0 # # Enable the embedded web server # ews-config: 1 # # Detect SNMP unauthorized usage # authentication-trap: on # # Send Traps to 13.10.10.1 # trap-dest: 13.10.10.1 # # Specify the Set Community Name # set-community-name: 1homer2 # # End of file 30 TCP/IP Configuration EN
# # Example of an HP JetDirect TFTP Configuration File # # Allow only Subnet 13.10.10 access to peripheral. # Up to four 'allow' entries can be written via TFTP. # Up to 10 'allow' entries can be written via SNMP. # 'allow' may include single IP addresses. # allow: 13.10.10.0 255.255.255.0 # # # Disable Telnet # telnet: 0 # # Enable the embedded web server # ews-config: 1 # # Detect SNMP unauthorized usage # authentication-trap: on # # Send Traps to 13.10.10.1 # trap-dest: 13.10.10.1 # # Specify the Set Community Name # set-community-name: 1homer2 # # End of file 30 TCP/IP Configuration EN
HP JetDirect Print Servers 600N/400N/500X/300X Administrator's Guide - 5969-3521
Page 37
... 0. The format is "allow : netnum [mask] tcp-mss: location: Enables or disables the embedded web server on the HP JetDirect print server. allow : 10.0.0.0 255.0.0.0 allows hosts on the HP JetDirect print server. The default location is not required. To enable, set to 1. The acceptable values range from 0 to the...access list stored on network 10. Table 3.2 TFTP Configuration File Parameters (1 of other hosts to recover or complete a print job against the ability of 3) ews-config: idle-timeout: allow : netnum [mask]" where netnum is a network number or host IP address, and mask is...
... 0. The format is "allow : netnum [mask] tcp-mss: location: Enables or disables the embedded web server on the HP JetDirect print server. allow : 10.0.0.0 255.0.0.0 allows hosts on the HP JetDirect print server. The default location is not required. To enable, set to 1. The acceptable values range from 0 to the...access list stored on network 10. Table 3.2 TFTP Configuration File Parameters (1 of other hosts to recover or complete a print job against the ability of 3) ews-config: idle-timeout: allow : netnum [mask]" where netnum is a network number or host IP address, and mask is...
HP JetDirect Print Servers 600N/400N/500X/300X Administrator's Guide - 5969-3521
Page 53
On UNIX systems, it is configured. EN TCP/IP Configuration 47 Note The Present Config field in the Telnet Configuration menu describes how the HP JetDirect print server is not necessary to that parameter. Other possible configuration types are assigning to select local echo... Note On Windows systems local echo should be selected. See Table 3.3 for examples on assigning configuration parameters. For example, if the HP JetDirect print server is enabled, perform the following: q Windows 95/98/NT: Click Terminal and Preferences. To determine if local echo is configured by...
On UNIX systems, it is configured. EN TCP/IP Configuration 47 Note The Present Config field in the Telnet Configuration menu describes how the HP JetDirect print server is not necessary to that parameter. Other possible configuration types are assigning to select local echo... Note On Windows systems local echo should be selected. See Table 3.3 for examples on assigning configuration parameters. For example, if the HP JetDirect print server is enabled, perform the following: q Windows 95/98/NT: Click Terminal and Preferences. To determine if local echo is configured by...
HP JetDirect Print Servers 600N/400N/500X/300X Administrator's Guide - 5969-3521
Page 56
The Set Community Name parameter is an alphanumeric string and must be from 1 to set. where dhcp-config: identifies the Dynamic Host Configuration Protocol. (1 enables, 0 disables) where MY_PRINTER is a network management security mechanism that you ... and Banner port:2 Page Example banner:0 Set Community Name Example set-cmntyname: my_network DHCP Parameter dhcp-config: Example 1 Host Name Example (to assign or change a name) host-name: MY_PRINTER For multiport JetDirect print servers, 'port' specifies the port that enables external network management entities to set internal...
The Set Community Name parameter is an alphanumeric string and must be from 1 to set. where dhcp-config: identifies the Dynamic Host Configuration Protocol. (1 enables, 0 disables) where MY_PRINTER is a network management security mechanism that you ... and Banner port:2 Page Example banner:0 Set Community Name Example set-cmntyname: my_network DHCP Parameter dhcp-config: Example 1 Host Name Example (to assign or change a name) host-name: MY_PRINTER For multiport JetDirect print servers, 'port' specifies the port that enables external network management entities to set internal...
HP JetDirect Print Servers 600N/400N/500X/300X Administrator's Guide - 5969-3521
Page 119
... Message TCP STATUS: HOST NAME: CONFIG BY IP ADDRESS: SUBNET MASK: DEF. NOT SPECIFIED is indicated if no syslog server has been configured, or the syslog server IP address is searching for operation of the syslog server configured on the HP JetDirect print server. NOT SPECIFIED indicates that no host ...113 The options are integers between 0 and 3600. NOT IN USE: Code is a required entry for the BOOTP server, or trying to the HP JetDirect print server. It may be truncated. NOT SPECIFIED indicates no subnet mask has been configured, or if the subnet mask is ...
... Message TCP STATUS: HOST NAME: CONFIG BY IP ADDRESS: SUBNET MASK: DEF. NOT SPECIFIED is indicated if no syslog server has been configured, or the syslog server IP address is searching for operation of the syslog server configured on the HP JetDirect print server. NOT SPECIFIED indicates that no host ...113 The options are integers between 0 and 3600. NOT IN USE: Code is a required entry for the BOOTP server, or trying to the HP JetDirect print server. It may be truncated. NOT SPECIFIED indicates no subnet mask has been configured, or if the subnet mask is ...
HP JetDirect Print Servers 600N/400N/500X/300X Administrator's Guide - 5969-3521
Page 120
... panel. This parameter is omitted when the print server is configured from the host. 114 HP JetDirect Configuration Page Messages EN This parameter is omitted when the print server is configured. The IP address of the ...system that a specific SNMP set community name has been configured for GetRequests. The name of 2) Message SNMP GET CMTY NAME: ALL or SPECIFIED SNMP SET CMTY NAME: NONE or SPECIFIED BOOTP SERVER DHCP SERVER CONFIG...
... panel. This parameter is omitted when the print server is configured from the host. 114 HP JetDirect Configuration Page Messages EN This parameter is omitted when the print server is configured. The IP address of the ...system that a specific SNMP set community name has been configured for GetRequests. The name of 2) Message SNMP GET CMTY NAME: ALL or SPECIFIED SNMP SET CMTY NAME: NONE or SPECIFIED BOOTP SERVER DHCP SERVER CONFIG...
HP JetDirect Print Servers 600N/400N/500X/300X Administrator's Guide - 5969-3521
Page 130
... CONFIG PORT SELECT: Note: When multiple file servers are not displayed. For MIO cards, a "-M" suffix indicates the configuration has been manually set using a 10/100Base-TX full- When the HP JetDirect print server is only displayed on the configuration page if none of the file servers are connected. The HP JetDirect print server detected that has been detected for the NetWare print server...
... CONFIG PORT SELECT: Note: When multiple file servers are not displayed. For MIO cards, a "-M" suffix indicates the configuration has been manually set using a 10/100Base-TX full- When the HP JetDirect print server is only displayed on the configuration page if none of the file servers are connected. The HP JetDirect print server detected that has been detected for the NetWare print server...
HP JetDirect Print Servers 600N/400N/500X/300X Administrator's Guide - 5969-3521
Page 155
... SIZE 116 BAD LENGTH RCVD 116 BAD PACKETS RCVD 116 BOOTP configuring 26 definition 135 SERVER 114 using 25 BOOTP/DHCP IN PROGRESS 116 browsers, supported 13 BSD systems, configuring print queue 62 BURST ERRORS RCVD 116 C CF ERR ACCESS LIST EXCEEDED 116 FILE INCOMPLETE ...Chooser, Apple 21, 92 clients, supported 15 commands, FTP printing 78 CONFIG BY 113 CONFIG FILE 114 configuration modifying a device 10 parameters 31 testing 22 verifying network 18 Windows NT networks 145 CONFIGURATION ERROR 116 configuration page HP JetDirect 86 Token Ring and Ethernet 103 understanding 94 configuration page ...
... SIZE 116 BAD LENGTH RCVD 116 BAD PACKETS RCVD 116 BOOTP configuring 26 definition 135 SERVER 114 using 25 BOOTP/DHCP IN PROGRESS 116 browsers, supported 13 BSD systems, configuring print queue 62 BURST ERRORS RCVD 116 C CF ERR ACCESS LIST EXCEEDED 116 FILE INCOMPLETE ...Chooser, Apple 21, 92 clients, supported 15 commands, FTP printing 78 CONFIG BY 113 CONFIG FILE 114 configuration modifying a device 10 parameters 31 testing 22 verifying network 18 Windows NT networks 145 CONFIGURATION ERROR 116 configuration page HP JetDirect 86 Token Ring and Ethernet 103 understanding 94 configuration page ...
HP JetDirect Print Servers 600N/400N/500X/300X Administrator's Guide - 5969-3521
Page 159
... 124 ping command 43 PORT CONFIG 124 PORT SELECT 124 PORT X STATUS 111, 112 POSTSCRIPT MODE NOT SELECTED 124 POSTSCRIPT UPDATE NEEDED 124 print queue BSD-like systems 62 LPD 61 SAM (HP-UX) systems 64 print server HP JetDirect 1 parameters 53 supported 2 PRINT SERVER NOT DEFINED 124 printcap 62 ...printer gateway, see HP IP/IPX printer gateway for NDPS PRINTER NUMBER IN USE...
... 124 ping command 43 PORT CONFIG 124 PORT SELECT 124 PORT X STATUS 111, 112 POSTSCRIPT MODE NOT SELECTED 124 POSTSCRIPT UPDATE NEEDED 124 print queue BSD-like systems 62 LPD 61 SAM (HP-UX) systems 64 print server HP JetDirect 1 parameters 53 supported 2 PRINT SERVER NOT DEFINED 124 printcap 62 ...printer gateway, see HP IP/IPX printer gateway for NDPS PRINTER NUMBER IN USE...
HP Jetdirect Print Server Administrator's Guide (300x, 510x)
Page 23
... of file ENWW TCP/IP Configuration 23 This TFTP configuration file's relative path name is not included in the file). # # Example of an HP Jetdirect TFTP Configuration File # # Allow only Subnet 192.168.10 access to peripheral. # Up to four 'allow' entries can be written via SNMP...entries can be written via TFTP. # Up to 10 'allow : 192.168.10 255.255.255.0 # # # Disable Telnet # telnet: 0 # # Enable the embedded web server # ews-config: 1 # # Detect SNMP unauthorized usage # authentication-trap: on # # Send Traps to 192.168.10.1 # trap-dest: 192.168.10.1 # # Specify the Set Community ...
... of file ENWW TCP/IP Configuration 23 This TFTP configuration file's relative path name is not included in the file). # # Example of an HP Jetdirect TFTP Configuration File # # Allow only Subnet 192.168.10 access to peripheral. # Up to four 'allow' entries can be written via SNMP...entries can be written via TFTP. # Up to 10 'allow : 192.168.10 255.255.255.0 # # # Disable Telnet # telnet: 0 # # Enable the embedded web server # ews-config: 1 # # Detect SNMP unauthorized usage # authentication-trap: on # # Send Traps to 192.168.10.1 # trap-dest: 192.168.10.1 # # Specify the Set Community ...
HP Jetdirect Print Server Administrator's Guide (300x, 510x)
Page 24
...of seconds that may be remote (MSS=536 bytes), except the local subnet. The format is "allow : 192.0.0.0 255.0.0.0 allows hosts on the HP Jetdirect print server. allow : 192.168.10.1 allows a single host. In this case, the default mask 255.255.255.255 is assumed and is 90 seconds... is undefined. (Example: 1st floor, south wall) 24 TCP/IP Configuration ENWW idle-timeout: The number of 3) ews-config: Enables or disables the embedded web server on network 192. Each entry specifies a host or network of the printer (SNMP sysLocation object). Specifies the maximum segment size...
...of seconds that may be remote (MSS=536 bytes), except the local subnet. The format is "allow : 192.0.0.0 255.0.0.0 allows hosts on the HP Jetdirect print server. allow : 192.168.10.1 allows a single host. In this case, the default mask 255.255.255.255 is assumed and is 90 seconds... is undefined. (Example: 1st floor, south wall) 24 TCP/IP Configuration ENWW idle-timeout: The number of 3) ews-config: Enables or disables the embedded web server on network 192. Each entry specifies a host or network of the printer (SNMP sysLocation object). Specifies the maximum segment size...
HP Jetdirect Print Server Administrator's Guide (300x, 510x)
Page 35
... can disable password protection by typing 0 (zero) when prompted for a password, type the correct password. For example, if the HP Jetdirect print server is enabled, perform the following: ● Run Microsoft Telnet and enter the display command. To determine if local echo is configured ... systems, it is enabled. Once a password is set up to select local echo. Note The Present Config field in the Telnet Configuration menu describes how the HP Jetdirect print server is initialized. 3. ENWW TCP/IP Configuration 35 You can type:? then press Enter to view available configuration...
... can disable password protection by typing 0 (zero) when prompted for a password, type the correct password. For example, if the HP Jetdirect print server is enabled, perform the following: ● Run Microsoft Telnet and enter the display command. To determine if local echo is configured ... systems, it is enabled. Once a password is set up to select local echo. Note The Present Config field in the Telnet Configuration menu describes how the HP Jetdirect print server is initialized. 3. ENWW TCP/IP Configuration 35 You can type:? then press Enter to view available configuration...
HP Jetdirect Print Server Administrator's Guide (300x, 510x)
Page 38
... (2 of 2) Port and Banner port:2 Page Example banner:0 Set Community Name Example set-cmntyname: my_network DHCP Parameter dhcp-config: Example 1 Host Name Example (to assign or change a name) host-name: MY_PRINTER For multiport Jetdirect print servers, 'port' specifies the port that enables external network management entities to set . where set-cmnty-name identifies the...
... (2 of 2) Port and Banner port:2 Page Example banner:0 Set Community Name Example set-cmntyname: my_network DHCP Parameter dhcp-config: Example 1 Host Name Example (to assign or change a name) host-name: MY_PRINTER For multiport Jetdirect print servers, 'port' specifies the port that enables external network management entities to set . where set-cmnty-name identifies the...
HP Jetdirect Print Server Administrator's Guide (300x, 510x)
Page 68
... been detected for Web Jetadmin services. 68 HP Jetdirect Configuration Page Messages ENWW PORT CONFIG Indicates whether the RJ-45 port on the HP Jetdirect print server is not turned on the HP Jetdirect 10/100TX port is displayed, verify that supports bidirectional communications. Table 7.1 HP Jetdirect Product Information Message Description HP JETDIRECT JXXXXX Identifies the HP Jetdirect print server model number. or half-duplex channel. BIDIRECTIONAL...
... been detected for Web Jetadmin services. 68 HP Jetdirect Configuration Page Messages ENWW PORT CONFIG Indicates whether the RJ-45 port on the HP Jetdirect print server is not turned on the HP Jetdirect 10/100TX port is displayed, verify that supports bidirectional communications. Table 7.1 HP Jetdirect Product Information Message Description HP JETDIRECT JXXXXX Identifies the HP Jetdirect print server model number. or half-duplex channel. BIDIRECTIONAL...
HP Jetdirect Print Server Administrator's Guide (300x, 510x)
Page 82
...address of 2) Message TCP STATUS: HOST NAME: CONFIG BY IP ADDRESS: SUBNET MASK: DEF. The Internet Protocol (IP) address assigned to get the configuration file through TFTP. READY: Indicates the HP Jetdirect print server is obtaining or has obtained its IP configuration ... (using BOOTP. This parameter is omitted when the print server is a required entry for the BOOTP server, or trying to the HP Jetdirect print server. NOT SPECIFIED indicates that TCP/IP was specified in seconds after which the print server is awaiting data. This is not configured using ...
...address of 2) Message TCP STATUS: HOST NAME: CONFIG BY IP ADDRESS: SUBNET MASK: DEF. The Internet Protocol (IP) address assigned to get the configuration file through TFTP. READY: Indicates the HP Jetdirect print server is obtaining or has obtained its IP configuration ... (using BOOTP. This parameter is omitted when the print server is a required entry for the BOOTP server, or trying to the HP Jetdirect print server. NOT SPECIFIED indicates that TCP/IP was specified in seconds after which the print server is awaiting data. This is not configured using ...
HP Jetdirect Print Server Administrator's Guide (300x, 510x)
Page 83
...print server is awaiting data. READY indicates that the HP Jetdirect print server is not configured using DHCP. NET: identifies the AppleTalk Network Number on which the HP Jetdirect print server is located. The name of the EtherTalk network zone on which the printer is currently operating. This parameter is omitted when the print server... TCP/IP Configuration Messages (2 of 2) Message DHCP SERVER CONFIG FILE: Description The IP address of the system that responds to fit on two lines. ENWW HP Jetdirect Configuration Page Messages 83 NOT SPECIFIED indicates that a ...
...print server is awaiting data. READY indicates that the HP Jetdirect print server is not configured using DHCP. NET: identifies the AppleTalk Network Number on which the HP Jetdirect print server is located. The name of the EtherTalk network zone on which the printer is currently operating. This parameter is omitted when the print server... TCP/IP Configuration Messages (2 of 2) Message DHCP SERVER CONFIG FILE: Description The IP address of the system that responds to fit on two lines. ENWW HP Jetdirect Configuration Page Messages 83 NOT SPECIFIED indicates that a ...
HP Jetdirect Print Server Administrator's Guide (300x, 510x)
Page 96
... BOOTP TAG SIZE 69 BAD LENGTH RCVD 79 BAD PACKETS RCVD 79 BOOTP configuring 20 definition 89 SERVER 82 using 19 BOOTP/DHCP IN PROGRESS 69 browsers, supported 16 BSD systems, configuring print queue 45 C CF ERR ACCESS LIST EXCEEDED 69 FILE INCOMPLETE 69 INVALID PARAM 69 LINE TOO...MISSING PARAM 69 TRAP LIST EXCEEDED 69 UNKNOWN KEYWORD 69 commands, FTP printing 56 CONFIG BY 82 CONFIG FILE 83 configuration modifying a device 13 parameters 24 CONFIGURATION ERROR 70 Configuration page Ethernet 64 configuration page messages DLC/LLC 81 HP Jetdirect 68, 69 Novell NetWare 80 Statistics 79 TCP/IP 82 CRC ...
... BOOTP TAG SIZE 69 BAD LENGTH RCVD 79 BAD PACKETS RCVD 79 BOOTP configuring 20 definition 89 SERVER 82 using 19 BOOTP/DHCP IN PROGRESS 69 browsers, supported 16 BSD systems, configuring print queue 45 C CF ERR ACCESS LIST EXCEEDED 69 FILE INCOMPLETE 69 INVALID PARAM 69 LINE TOO...MISSING PARAM 69 TRAP LIST EXCEEDED 69 UNKNOWN KEYWORD 69 commands, FTP printing 56 CONFIG BY 82 CONFIG FILE 83 configuration modifying a device 13 parameters 24 CONFIGURATION ERROR 70 Configuration page Ethernet 64 configuration page messages DLC/LLC 81 HP Jetdirect 68, 69 Novell NetWare 80 Statistics 79 TCP/IP 82 CRC ...
HP Jetdirect Print Server Administrator's Guide (300x, 510x)
Page 99
... PARALLEL PORT X 68 PASSWORD ERROR 75 ping command 32 PORT CONFIG 68 PORT SELECT 68 PORT X STATUS 80, 84 POSTSCRIPT MODE NOT SELECTED 75 POSTSCRIPT UPDATE NEEDED 75 print queue BSD-like systems 45 LPD 43 SAM (HP-UX) systems 47 print server HP Jetdirect 7 supported 7 PRINT SERVER NOT DEFINED 75 printcap 45 PRINTER NUMBER IN USE 75 PRINTER...
... PARALLEL PORT X 68 PASSWORD ERROR 75 ping command 32 PORT CONFIG 68 PORT SELECT 68 PORT X STATUS 80, 84 POSTSCRIPT MODE NOT SELECTED 75 POSTSCRIPT UPDATE NEEDED 75 print queue BSD-like systems 45 LPD 43 SAM (HP-UX) systems 47 print server HP Jetdirect 7 supported 7 PRINT SERVER NOT DEFINED 75 printcap 45 PRINTER NUMBER IN USE 75 PRINTER...