Allied Telesis AT-8000S Betriebsanweisung Seite 52
- Seite / 204
- Inhaltsverzeichnis
- LESEZEICHEN
Bewertet. / 5. Basierend auf Kundenbewertungen
Configuring Device Security
Configuring Network Security
Page 53
The Port Authentication Settings Page contains the following port authentication parameters:
• Port — Displays a list of interfaces on which port-based authentication is enabled.
• User Name — Displays the supplicant user name.
• Current Port Control — Displays the current port authorization state. The possible field values are:
– Authorized — Indicates the interface is in an authorized state.
– Unauthorized — Denies the selected interface system access.
• Admin Port Control — Indicates the port state. The possible field values are:
– Auto —Enables port-based authentication on the device. The interface moves between an authorized or
unauthorized state based on the authentication exchange between the device and the client.
– ForceAuthorized — Indicates the interface is in an authorized state without being authenticated. The
interface re-sends and receives normal traffic without client port-based authentication.
– ForceUnauthorized — Denies the selected interface system access by moving the interface into
unauthorized state. The device cannot provide authentication services to the client through the interface.
• Enable Guest VLAN — Indicates if the Guest VLAN is enabled. The possible field values are:
– Checked — Enables the Guest VLAN.
– Unchecked — Disables the Guest VLAN. This is the default value.
• Authentication Method — Defines the user authentication methods. MAC authentication ensures that end-
user stations meet security policies criteria, and protects networks from viruses.
To activate MAC authentication first define the following:
1. Enable Guest VLAN.
2. Set the Admin Port Control option to Auto.
The possible values are:
– 802.1X Only – Enables only 802.1X authentication on the device.
– MAC Only — Enables only MAC authentication on the device.
– MAC + 802.1X – Enables MAC Authentication + 802.1X authentication on the device. In case of MAC+
802.1x, 802.1x takes precedence.
• Enable Periodic Reauthentication — Permits port reauthentication. The possible field values are:
– Enable — Enables port reauthentication. This is the default value.
– Disable — Disables port reauthentication.
• Reauthentication Period — Displays the time span (in seconds) in which the selected port is
reauthenticated. The field default is 3600 seconds.
• Reauthenticate Now — Reauthenticates the port immediately.
• Authenticator State — Displays the current authenticator state (as defined in Admin Port Control).
• Quiet Period — Displays the number of seconds that the device remains in the quiet state following a failed
authentication exchange. The possible field range is 0-65535. The field default is 60 seconds.
• Resending EAP — Defines the amount of time (in seconds) that lapses before EAP requests are resent.
The field default is 30 seconds.
• Max EAP Requests — Displays the total amount of EAP requests sent. If a response is not received after the
defined period, the authentication process is restarted. The field default is 2 retries.
• Supplicant Timeout — Displays the amount of time (in seconds) that lapses before EAP requests are resent
to the supplicant. The field default is 30 seconds.
• Server Timeout — Displays the amount of time (in seconds) that lapses before the device re-sends
a request to the authentication server. The field default is 30 seconds.
• Termination Cause — Indicates the reason for which the port authentication was terminated.
- Ethernet Switch 1
- Table of Contents 3
- Intended Audience 8
- Document Conventions 8
- Contacting Allied Telesis 8
- Section 1. Getting Started 9
- Getting Started 10
- Figure 2: System General Page 10
- User Interface Components 12
- Using the Management Buttons 13
- Figure 5: Add Local User Page 14
- Logging Out 15
- Resetting the Device 16
- Setting the System Clock 19
- Configuring SNTP 20
- Broadcast Time Information 21
- Configuring Device Security 25
- • Defining Access Control 25
- Defining Access Profiles 26
- Defining Profile Rules 30
- Configuring TACACS+ 38
- Configuring RADIUS 41
- Configuring Local Users 44
- Defining Line Passwords 46
- Configuring Network Security 47
- Figure 29: Port Security Page 48
- Defining 802.1x Port Access 50
- Enabling Storm Control 54
- Defining Access Control 56
- Adding ACE Rules 58
- Defining IP Based ACL 61
- Defining ACL Binding 67
- Configuring DHCP Snooping 69
- • Defining Trusted Interfaces 69
- Defining Trusted Interfaces 72
- Section 6. Configuring Ports 76
- Configuring Ports 77
- Configuring Port Mirroring 80
- Aggregating Ports 83
- Defining Port Trunking 87
- Configuring LACP 89
- Defining MAC Addresses 91
- Configuring VLANs 94
- Defining VLAN Properties 95
- Defining GVRP 99
- Page 101 100
- Defining MAC Based Groups 101
- Page 103 102
- Configuring Interfaces 103
- Defining Log Settings 104
- Page 106 105
- Adding Log Servers 106
- Modifying Log Servers 107
- Page 109 108
- Page 110 109
- Defining STP Properties 110
- Page 112 111
- Defining STP Interfaces 112
- Page 114 113
- Configuring Spanning Tree 114
- Page 116 115
- Page 117 116
- Defining MSTP Properties 117
- Defining MSTP Interfaces 118
- Page 120 119
- Page 123 122
- • Configuring IGMP Snooping 124
- Configuring IGMP Snooping 125
- Page 127 126
- Page 128 127
- Page 129 128
- Page 130 129
- Page 131 130
- Page 132 131
- Section 11. Configuring SNMP 132
- Enabling SNMP 133
- Defining SNMP Communities 134
- Page 136 135
- Configuring SNMP 136
- Defining SNMP Groups 137
- Figure 103:Add Group Page 138
- Defining SNMP Users 139
- Page 141 140
- Defining SNMP Views 142
- Figure 109:Add SNMP VIew Page 143
- Page 145 144
- SNMPv3 Notification Recipient 145
- Figure 111: Add Notify Page 146
- Defining Notification Filters 148
- Page 150 149
- Page 151 150
- Page 152 151
- Page 153 152
- Page 154 153
- Page 155 154
- Page 156 155
- Page 157 156
- Page 158 157
- Mapping CoS Values to Queues 158
- Mapping DSCP Values to Queues 159
- Configuring QoS Bandwidth 160
- Page 162 161
- Section 14.System Utilities 162
- Page 164 163
- Page 165 164
- Page 166 165
- Page 167 166
- System Utilities 167
- Viewing Optical Transceivers 168
- Section 15.Viewing Statistics 170
- Page 172 171
- Viewing Etherlike Statistics 172
- Page 174 173
- Managing RMON Statistics 174
- Page 176 175
- Configuring RMON History 176
- Viewing Statistics 177
- Page 179 178
- Page 180 179
- Configuring RMON Events 180
- Viewing the RMON Events Logs 182
- Defining RMON Alarms 183
- Page 185 184
- Section 16.Managing Stacking 186
- Stacking Chain Topology 187
- Stacking Members and Unit ID 187
- Exchanging Stacking Members 188
- Managing Stacking 189
- Figure 144:Stacking Page 189
- Connecting a Terminal 190
- Initial Configuration 191
- Downloading Software 192
- Downloading Software with CLI 193
- Appendix B. System Defaults 197
- Port Defaults 198
- RS-232 Port Settings 198
- Configuration Defaults 199
- Security Defaults 199
- Jumbo Frame Defaults 199
- System Time Defaults 199
- Spanning Tree Defaults 200
- Address Table Defaults 200
- VLAN Defaults 200
- Trunking Defaults 201
- Multicast Defaults 201
- QoS Defaults 201
- Page 202 202
- Page 203 203
- Page 204 204
Verwandte Produkte und Handbücher für Software Allied Telesis AT-8000S
Software Allied Telesis AT-S82 Betriebsanweisung
(76 Seiten)
(76 Seiten)
(49 Seiten)
(20 Seiten)© 2020, manymanuals.de. Alle Rechte vorbehalten. | 0.049 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Kommentare zu diesen Handbüchern