Allied-telesis AT-S62 Bedienungsanleitung Seite 654
- Seite / 822
- Inhaltsverzeichnis
- LESEZEICHEN
Bewertet. / 5. Basierend auf Kundenbewertungen
Chapter 29: 802.1x Port-based Network Access Control
654 Section VI: Port Security
An example of this authenticator operating mode is illustrated in Figure
227. The clients are connected to a hub or non-802.1x-compliant switch
which is connected to an authenticator port on an AT-8500 Series switch.
If the authenticator port is set to use the 802.1x authentication method,
each client must be given a separate username and password
combination to log on to and forward traffic through the AT-8500 Series
switch. If the authentication method is MAC address-based, the
authenticator port uses the MAC addresses of the clients as the username
and password combinations. The port accepts and forwards traffic only
from those clients whose MAC addresses have been entered on the
RADIUS server and denies access to all other users.
Figure 227. Authenticator Port in Multiple Operating Mode - Example 1
The next example of the multiple mode in Figure 228 shows two AT-8500
Series switches. The clients connected to switch B have to log on to port 6
on Switch A when they pass a packet to that switch for the first time.
There are several items to note when interconnecting two 802.1x-
compliant devices using the Multiple operating mode of an authenticator
port. In order for switch B in our example to pass the RADIUS messages
to switch A, it must be able to log on to port 6 on switch A. That is why port
11 on the lower switch is configured as a supplicant. If its role is set to
none, port 6 on switch A will discard the packets because switch B would
AT-9400 Series Switch
FAULT
RPS
MASTER
POWER
CLASS 1
LASER PRODUCT
STATUS
TERMINAL
PORT
1357911
24681012
13 15 17 19 21 23R
14 16 18 20 22 24R
AT-9424T/SP
Gigabit Ethernet Switch
1357911131517192123R
2 4 6 8 10 12 14 16 18 20 22 24R
23 24
L/A
D/C
D/C
L/A
D/C
L/A
1000 LINK / ACT
HDX /
COL
FDX
10/100 LINK / ACT
PORT ACTIVITY
L/A
1000 LINK / ACT
SFP
SFP
24
SFP
23
RADIUS
Authentication
Server
Port 6
Role: Authenticator
Operating Mode: Multiple
Piggy-back Mode: -----
Ethernet Hub or
Non-802.1x-compliant
Switch
Authenticated
Clients
- Menus Interface 1
- User’s Guide 1
- Contents 10
- How This Guide is Organized 22
- Document Conventions 23
- Contacting Allied Telesyn 25
- New Features History 26
- Management Overview 30
- Local Management Session 31
- Telnet Management Session 32
- SNMP Management Session 34
- Management Access Levels 35
- Chapter 1: Overview 36
- Basic Operations 37
- Chapter 2 39
- Starting a Local 41
- Enhanced 43
- Stacking 43
- Quitting a Local 43
- Quitting a Telnet 45
- Saving Your Parameter Changes 46
- Basic Switch Parameters 49
- How Do You 51
- Assign an IP 51
- Address? 51
- Rebooting a Switch 57
- Changing the 58
- Manager or 58
- Operator 58
- Password 58
- Resetting the 59
- Setting the System Time 61
- to 12] -> 0 63
- Configuring the Console Timer 66
- Setting Fan Control 69
- Displaying Fan 70
- Control Status 70
- Pinging a Remote System 72
- Retaining the 73
- System Files 73
- Deleting the 74
- Enhanced Stacking 79
- Enhanced Stacking Overview 80
- RS-232 TERMINAL PORT 82
- Chapter 4: Enhanced Stacking 84
- Chapter 5 89
- SNMPv1 and SNMPv2c Overview 90
- Default SNMP 92
- Enter SNMP Manager IP Addr: 96
- Enter Trap Receiver IP Addr: 96
- Modifying a Community String 98
- Enter SNMP Community Name: 99
- Deleting a Community String 102
- Port Parameters 105
- Displaying Port Status 106
- Chapter 6: Port Parameters 108
- Configuring Port Parameters 109
- Setting the Rate Limit 118
- Displaying Port Statistics 120
- Clearing Port Counters 122
- MAC Address Table 123
- MAC Address Overview 124
- Displaying MAC Addresses 126
- Chapter 7: MAC Address Table 128
- XXXXXXXXXXXX or XXXXXX XXXXXX 132
- Changing the Aging Time 134
- Static and LACP Port Trunks 135
- Port Trunk Overview 136
- Static Port Trunk Guidelines 137
- LACP Trunk 138
- Overview 138
- LACP System Priority 141
- Adminkey Parameter 142
- LACP Port Priority Parameter 142
- Load Distribution Methods 142
- LACP Trunk Guidelines 143
- Load Distribution 144
- Managing Static Port Trunks 147
- Figure 39. Create Trunk Menu 149
- Modifying a 150
- Static Port Trunk 150
- Figure 40. Modify Trunk Menu 151
- Deleting a Static 152
- Port Trunk 152
- Managing LACP Trunks 154
- Setting a LACP 155
- System Priority 155
- Creating an 156
- Aggregator 156
- Modifying an 158
- Deleting an 160
- Displaying LACP 161
- Port Mirroring 165
- Port Mirroring Overview 166
- Creating a Port Mirror 167
- Chapter 9: Port Mirroring 168
- Disabling a Port Mirror 169
- Advanced Operations 171
- File System 173
- File System Overview 174
- File Naming 175
- Conventions 175
- Creating a Boot 176
- Configuration 176
- Enter the file name: 178
- Setting the Active 179
- Viewing a Boot 180
- Enter the source file name: 183
- Please wait 183
- Press any key 183
- Chapter 10: File System 184
- Displaying System Files 185
- File Downloads and Uploads 187
- Downloading an 190
- AT-S62 Image 190
- Management 190
- TFTP Server IP address: 191
- Remote File Name: 191
- File received successfully! 191
- -> [Yes/No] 197
- [Yes/No] -> 200
- Downloading a System File 202
- Downloading a 203
- File from a Local 203
- Local File Name: 205
- File from a Telnet 207
- Uploading a System File 209
- Uploading a File 210
- File sent successfully! 214
- Event Log and Syslog Servers 215
- Managing the Event Log 217
- Displaying the 218
- Event Log 218
- Modifying the 222
- Event Log Full 222
- Saving the Event 224
- Clearing the 224
- Creating a Syslog 226
- Server Definition 226
- Syslog Server 230
- Definition 230
- Deleting a Syslog 231
- Displaying a 232
- Classifiers 233
- Classifier Overview 234
- Criteria 235
- Classifier 235
- VLAN ID (Layer 2) 236
- Protocol (Layer 2) 236
- IP Protocol (Layer 3) 238
- Source IP Addresses (Layer 3) 238
- Source IP Mask (Layer 3) 238
- Destination IP Mask (Layer 3) 238
- TCP Source Ports (Layer 4) 239
- UDP Source Ports (Layer 4) 239
- TCP Flags 239
- Guidelines 240
- Creating a Classifier 241
- Chapter 13: Classifiers 242
- Modifying a Classifier 244
- Deleting a Classifier 246
- Deleting All Classifiers 247
- Displaying Classifiers 248
- Access Control Lists 251
- Figure 72. ACL Example 2 255
- Figure 73. ACL Example 3 256
- Figure 76. ACL Example 6 258
- Creating an ACL 259
- Modifying an ACL 261
- Deleting an ACL 263
- Deleting All ACLs 265
- Displaying ACLs 266
- Quality of Service 267
- Quality of Service Overview 268
- QoS Policy 271
- Bandwidth 272
- Allocation 272
- Prioritization 272
- DiffServ Domain 274
- Examples Voice Applications 276
- Video Applications 278
- Critical Database 280
- Policy Component Hierarchy 281
- Managing Flow Groups 283
- Modifying a Flow 285
- Deleting a Flow 287
- Displaying Flow 288
- Managing Traffic Classes 290
- Traffic Class 294
- Deleting a Traffic 296
- Displaying 297
- Traffic Classes 297
- Managing Policies 299
- Available Policy(ies): 0-4 303
- Policies 304
- Class of Service 307
- Class of Service Overview 308
- Chapter 16: Class of Service 310
- Strict priority 310
- Strict Priority Scheduling 311
- Configuring CoS 313
- Configuring Egress Scheduling 318
- Changes 319
- IGMP Snooping 323
- IGMP Snooping Overview 324
- Configuring IGMP Snooping 326
- Chapter 17: IGMP Snooping 328
- Denial of Service Defenses 333
- SYN Flood 334
- Ping of Death 337
- IP Options 338
- Denial of Service 339
- Power Over Ethernet 343
- Power Over Ethernet Overview 344
- PoE Device 347
- Setting the PoE Threshold 348
- Configuring PoE Port Settings 350
- 4 - PoE Device Information 357
- Networking Stack 359
- ARP Table 361
- Chapter 20: Networking Stack 362
- Deleting an ARP 363
- Deleting All ARP 363
- Configuring the 364
- Timeout Value 364
- Displaying the Routing Table 365
- 169.254.37.1:23 368
- IP Address 368
- TCP Port 368
- Deleting a TCP Connection 370
- SNMPv3 Operations 373
- 374 Section III: SNMPv3 374
- Chapter 21 375
- SNMPv3 Overview 376
- Authentication 377
- Protocols 377
- SNMPv3 Privacy 377
- Protocol 377
- SNMPv3 MIB 378
- SNMPv3 Storage 379
- SNMPv3 Message 379
- Notification 379
- SNMPv3 User Table 380
- SNMPv3 View Table 380
- SNMPv3 Access Table 380
- Section III: SNMPv3 381 381
- SNMPv3 SecurityToGroup Table 383
- SNMPv3 Notify Table 383
- SNMPv3 Target Address Table 383
- SNMPv3 User 386
- Table Entry 386
- Section III: SNMPv3 387 387
- Enter User (Security) Name: 388
- N-None]: 388
- Enter Privacy Password: 389
- Chapter 21: SNMPv3 392
- 392 Section III: SNMPv3 392
- Re-enter Privacy password: 393
- Modifying the Storage Type 394
- SNMPv3 View 396
- Section III: SNMPv3 397 397
- 398 Section III: SNMPv3 398
- Modifying a View Type 401
- Enter View Name: 402
- 1.3.6.1.2.1.6 402
- Modifying a Storage Type 403
- 404 Section III: SNMPv3 404
- SNMPv3 Access 405
- P-AuthPriv]: 407
- Enter Read View Name: 408
- Enter Write View Name: 408
- Enter Notify View Name: 408
- A-AuthNoPriv, P-AuthPriv]: 410
- 412 Section III: SNMPv3 412
- Enter Group Name: 414
- 420 Section III: SNMPv3 420
- SecurityToGroup 421
- 422 Section III: SNMPv3 422
- Table Entr 425
- 426 Section III: SNMPv3 426
- 428 Section III: SNMPv3 428
- SNMPv3 Notify 429
- 430 Section III: SNMPv3 430
- Section III: SNMPv3 433 433
- Modifying a Notify Type 434
- SNMPv3 Target 437
- Address Table 437
- 438 Section III: SNMPv3 438
- Modifying a Target IP Address 441
- Enter Target Address Name: 442
- Enter IP Address: 442
- Enter Tag List: 446
- Enter Target Parameters: 446
- 448 Section III: SNMPv3 448
- Parameters Table 450
- 452 Section III: SNMPv3 452
- Section III: SNMPv3 455 455
- Modifying the Security Model 456
- Modifying the Security Level 457
- Enter Target Parameters Name: 458
- Section III: SNMPv3 461 461
- Community 463
- 464 Section III: SNMPv3 464
- Enter Security Name: 465
- Enter Transport Tag: 465
- 468 Section III: SNMPv3 468
- Modifying the Security Name 469
- Modifying the Transport Tag 469
- Enter Community Index: 471
- Displaying SNMPv3 Table Menus 472
- Section III: SNMPv3 473 473
- Display SNMPv3 474
- View Table Menu 474
- Access Table 475
- Notify Table 477
- Target Address 478
- Table Menu 478
- Spanning Tree Protocols 481
- STP and RSTP Overview 484
- Bridge Priority 485
- Port Priority 487
- Point-to-point port 489
- Edge port 489
- AT-8524M 490
- Mixed STP and 491
- RSTP Network 491
- Spanning Tree 491
- Blocked Port 492
- Blocked Data Link 492
- Configuring STP 495
- Port Settings 497
- Displaying STP 499
- Configuring RSTP 501
- Configuring 503
- RSTP Port 503
- Settings 503
- Displaying Port 505
- RSTP Status 505
- Chapter 23 507
- MSTP Overview 508
- AT- 8524M 509
- VLAN and MSTI 512
- Associations 512
- Ports in Multiple 512
- Multiple 513
- Region Guidelines 515
- MSTP with STP 517
- Summary of 517
- AT-8524M AT-8524M 520
- Configuring the CIST Priority 526
- 4096]: [0 to 15] -> 527
- Associating VLANs to MSTI IDs 532
- Adding VLAN 533
- Associations to an 533
- Enter the list of VLANs: 534
- Removing All 535
- Associations from 535
- Generic MSTP 536
- MSTI-specific 538
- Virtual LANs 543
- 544 Section V: Virtual LANs 544
- Chapter 24 545
- VLAN Overview 546
- Section V: VLANs 547 547
- Port-based VLANs 547
- Tagged VLANs 547
- Port-based VLAN Overview 548
- Untagged Ports 549
- Port VLAN Identifier 549
- Port-based 551
- Example 1 551
- 552 Section V: VLANs 552
- Example 2 553
- 554 Section V: VLANs 554
- Tagged VLAN Overview 555
- General Rules for 556
- Creating a 556
- Tagged VLAN 556
- 558 Section V: VLANs 558
- Section V: VLANs 559 559
- 560 Section V: VLANs 560
- Section V: VLANs 561 561
- 562 Section V: VLANs 562
- Section V: VLANs 563 563
- 564 Section V: VLANs 564
- Modifying a VLAN 565
- 566 Section V: VLANs 566
- 568 Section V: VLANs 568
- Displaying VLANs 569
- 570 Section V: VLANs 570
- Deleting a VLAN 571
- 572 Section V: VLANs 572
- 8. Press any key 573
- Deleting All VLANs 574
- Section V: VLANs 575 575
- Displaying PVIDs 576
- Section V: VLANs 577 577
- 578 Section V: VLANs 578
- Specifying a Management VLAN 579
- 580 Section V: VLANs 580
- Chapter 25 581
- 582 Section V: VLANs 582
- GVRP and 585
- Network Security 585
- GVRP-inactive 586
- Intermediate 586
- Switches 586
- Section V: VLANs 587 587
- 588 Section V: VLANs 588
- Section V: VLANs 589 589
- 590 Section V: VLANs 590
- Configuring GVRP 591
- 592 Section V: VLANs 592
- Section V: VLANs 593 593
- 594 Section V: VLANs 594
- Your changes are saved 595
- 596 Section V: VLANs 596
- Section V: VLANs 597 597
- 598 Section V: VLANs 598
- Section V: VLANs 599 599
- 600 Section V: VLANs 600
- Section V: VLANs 601 601
- 602 Section V: VLANs 602
- GIP Connected 603
- Ports Ring 603
- GVRP State 604
- Section V: VLANs 605 605
- 606 Section V: VLANs 606
- Multiple VLAN Modes 607
- Multiple VLAN Mode Overview 608
- Section V: VLANs 609 609
- 610 Section V: VLANs 610
- Non-802.1Q 611
- Compliant 611
- Multiple VLAN 611
- Selecting a VLAN Mode 612
- Displaying VLAN Information 613
- 614 Section V: VLANs 614
- Protected Ports VLANs 615
- Protected Ports VLAN Overview 616
- Protected Ports 617
- VLAN Guidelines 617
- Section V: VLANs 619 619
- 620 Section V: VLANs 620
- Enter Group Number -> 621
- Press any key to continue 621
- Section V: VLANs 623 623
- 626 Section V: VLANs 626
- Section 1 627
- Section 2 627
- 628 Section V: VLANs 628
- Section V: VLANs 629 629
- 630 Section V: VLANs 630
- Port Security 631
- 632 Section VI: Port Security 632
- Chapter 28 633
- Invalid Frames 635
- Section VI: Port Security 637 637
- Section VI: Port Security 639 639
- 640 Section VI: Port Security 640
- Section VI: Port Security 641 641
- 642 Section VI: Port Security 642
- Chapter 29 643
- 644 Section VI: Port Security 644
- Authenticator 646
- Operational Settings 647
- 648 Section VI: Port Security 648
- Ports with Single 649
- Supplicants 649
- 650 Section VI: Port Security 650
- Section VI: Port Security 651 651
- 652 Section VI: Port Security 652
- Multiple Operating Mode 653
- 654 Section VI: Port Security 654
- Supplicant and 655
- Single Operating Mode 656
- Accounting 658
- 802.1x Port-based 660
- Network Access 660
- Setting Port Roles 662
- Section VI: Port Security 663 663
- 664 Section VI: Port Security 664
- Section VI: Port Security 665 665
- 666 Section VI: Port Security 666
- Section VI: Port Security 667 667
- 668 Section VI: Port Security 668
- 670 Section VI: Port Security 670
- Section VI: Port Security 671 671
- 672 Section VI: Port Security 672
- Section VI: Port Security 673 673
- 674 Section VI: Port Security 674
- Section VI: Port Security 675 675
- Configuring RADIUS Accounting 676
- Section VI: Port Security 677 677
- 678 Section VI: Port Security 678
- Management Security 679
- Web Server 681
- Web Server Overview 682
- Configuring the Web Server 683
- [1 to 2] -> 684
- Enter SSL Key ID -> 684
- Chapter 30: Web Server 686
- Encryption Keys 687
- Basic Overview 688
- Encryption Key 689
- Technical Overview 690
- Key Exchange 693
- Algorithms 693
- Chapter 31: Encryption Keys 694
- Creating an Encryption Key 695
- Enter new Description -> 698
- Press any key to continue 698
- Deleting an Encryption Key 699
- Modifying an Encryption Key 700
- Exporting an Encryption Key 701
- Importing an Encryption Key 703
- PKI Certificates and SSL 705
- Distinguished 707
- X.509 Certificates 714
- Elements of a 715
- Public Key 715
- Infrastructure 715
- Certificate 715
- Validation 715
- Revocation Lists 716
- Implementation 716
- PKI Standards 717
- Switch 12 - sw12.cer 723
- Modifying a Certificate 725
- Deleting a Certificate 727
- Viewing a Certificate 728
- ...Done 732
- Configuring PKI 734
- Configuring SSL 735
- Secure Shell (SSH) Protocol 737
- SSH Overview 738
- General Steps to 741
- Configuring SSH 741
- Configuring the SSH Server 742
- Displaying SSH Information 744
- TACACS+ and RADIUS Overview 748
- Chapter 35 759
- Parts of a 760
- ACL Guidelines 761
- Creating an ACE 766
- Modifying an ACE 768
- Deleting an ACE 770
- Displaying the ACEs 771
- AT-S62 Default Settings 773
- Basic Switch Default Settings 774
- System Software 776
- Default Settings 776
- AT-8524POE Fan 776
- Control Default 776
- Switch State Slave 778
- Event Log Default Settings 779
- GVRP Default Settings 780
- Control List 783
- Status Disabled 783
- PKI Default Settings 784
- SNMP Default Settings 791
- MSTP Default 793
- SSH Default Settings 794
- SSL Default Settings 795
- VLAN Default Settings 796
- Web Server Default Settings 797
- SNMPv3 Configuration Examples 799
- Worksheet 802
- Security Model 804
- Security Level 804
- Storage Type 804
- SNMPv3 Parameters (Continued) 804
- Standards and Features 805
- Port Trunks 806
- IP Multicast 807
- Management MIBs 808
- System Monitoring 808
- Additional Features 808
- Management Access Methods 809
- Management Interfaces 809
- Numerics 811
Verwandte Produkte und Handbücher für Computerhardware Allied-telesis AT-S62
(242 Seiten)
(14 Seiten)© 2020, manymanuals.de. Alle Rechte vorbehalten. | 0.049 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Kommentare zu diesen Handbüchern