Smc-networks SMC TigerAccess SMC7824M/FSW Manual de usuario Pagina 169
- Pagina / 748
- Tabla de contenidos
- MARCADORES
Valorado. / 5. Basado en revisión del cliente
7-1
C
HAPTER
7
C
LIENT
S
ECURITY
This switch supports many methods of segregating traffic for clients
attached to each of the data ports, and for ensuring that only authorized
clients gain access to the network. Private VLANs and port-based
authentication using IEEE 802.1X are commonly used for these purposes.
In addition to these methods, several other options of providing client
security are supported by this switch. These include port-based
authentication, which can be configured for network client access
by specifying a fixed set of MAC addresses (either by freezing a set of
dynamically learned entries or through static configuration), or by statically
configured MAC/IP address pairs. The addresses assigned to DHCP
clients can also be carefully controlled using static or dynamic bindings
with the IP Source Guard and DHCP Snooping commands.
This switch provides client security using the following options:
• Private VLANs – Provide port-based security and isolation between
ports within the assigned VLAN. (See “Configuring Private VLANs” on
page 12-25.)
• 802.1X – Use IEEE 802.1X port authentication to control access to
specific ports. (See “Configuring 802.1X Port Authentication” on page
6-19.)
• Port Security – Configure secure addresses for individual ports.
•IP Source Guard
5
– Filters untrusted DHCP messages on unsecure ports
by building and maintaining a DHCP snooping binding table. (See “IP
Source Guard Commands” on page 22-4.)
5. These functions can only be configured through the Command Line Interface.
- TigerAccess 1
- Management Guide 3
- Trademarks: 4
- NTRODUCTION 35
- ESCRIPTION 38
- System Defaults 42
- ONNECTING 48
- Basic Configuration 50
- Setting Passwords 51
- Manual Configuration 52
- Dynamic Configuration 53
- Trap Receivers 56
- Managing System Files 58
- Saving Configuration Settings 59
- AVIGATING 65
- Button Action 66
- Table 3-2 Switch Main Menu 67
- APABILITIES 85
- Using DHCP/BOOTP 88
- ESTORING 93
- 1. CLI only 97
- 2. CLI only 99
- ANAGEMENT 100
- Command Attributes 101
- Displaying Log Messages 105
- ONFIGURING 107
- Resetting the System 108
- OMMUNITY 117
- Command Usage 118
- UTHENTICATION 139
- Authentication 141
- Field Attributes 151
- Generate 153
- 802.1X P 157
- Displaying 802.1X Statistics 164
- ILTERING 167
- DDRESSES 167
- Console(config-if)# 172
- Specifying the Mask Type 183
- Configuring an IP ACL Mask 184
- Configuring a MAC ACL Mask 186
- Field Attributes (Web) 191
- Field Attributes (CLI) 192
- Basic information: 192
- Configuration: 192
- Current status: 193
- NTERFACE 195
- ONNECTIONS 195
- ONFIGURATION 196
- Configuring LACP Parameters 203
- Displaying LACP Port Counters 207
- Configuring Port Mirroring 215
- Configuring Rate Limits 216
- Command Attribute 217
- Showing Port Statistics 218
- TATISTICS 219
- Figure 9-12 Port Statistics 223
- Figure 10-1 Static Addresses 226
- LGORITHM 231
- Region R 233
- ISPLAYING 235
- VA: VLAN Aware 260
- VU: VLAN Unaware 260
- IEEE 802.1Q VLAN 261
- Command Attributes (Web) 265
- Command Attributes (CLI) 266
- IEEE 802.1Q T 275
- Configuring Private VLANs 283
- Priority 01234567 291
- Queue 20134567 291
- Figure 13-2 Traffic Classes 293
- Layer 3/4 Priority Settings 296
- Mapping IP Port Priority 302
- ARAMETERS 309
- ULTICAST 317
- Multicast VLAN Registration 328
- EGISTRATION 329
- Web – Select DNS, Cache 345
- Figure 16-3 DNS Cache 345
- Accessing the CLI 349
- Console Connection 349
- Entering Commands 351
- Showing Commands 353
- Understanding Command Modes 355
- Exec Commands 355
- Console#configure 357
- Console(config)# 357
- Privileged Exec mode 358
- Command Line Processing 359
- Command Groups 360
- Table 18-1 General Commands 363
- Console>enable 364
- Console# 364
- Console#disable 365
- Console> 365
- Console#!2 367
- Console#config 367
- Console#reload 367
- Console(config)#prompt RD2 368
- RD2(config)# 368
- Console(config-if)#end 368
- Console(config)#exit 369
- Console#exit 369
- Press ENTER to start session 369
- User Access Verification 369
- Username: 369
- Example 370
- Device Designation Commands 372
- System Status Commands 373
- System Mode Commands 380
- System MTU Commands 382
- Console(config)#jumbo frame 383
- File Management Commands 384
- Line Commands 393
- Console(config-line)# 397
- Event Logging Commands 406
- Table 19-10 Logging Levels 407
- Console#clear log 411
- SMTP Alert Commands 415
- Command Mode 419
- Normal Exec, Privileged Exec 419
- Time Commands 420
- Table 20-1 SNMP Commands 427
- Console(config)#snmp-server 428
- Privileged Exec 438
- 23. No view is defined 441
- 24. Maps to the defaultview 441
- User Account Commands 448
- Authentication Sequence 451
- RADIUS Client 454
- RADIUS C 455
- TACACS+ Client 459
- Web Server Commands 461
- Telnet Server Commands 466
- Secure Shell Commands 467
- Console(config)#ip ssh server 471
- Console#show ssh 477
- 802.1X Port Authentication 480
- 802.1X P 481
- Management IP Filter Commands 491
- Port Security Commands 496
- IP Source Guard Commands 498
- DHCP Snooping Commands 504
- Table 23-2 IP ACL Commands 516
- Console(config-std-acl)# 517
- permit host 10.1.1.21 522
- Console(config-ip-mask-acl)# 523
- MAC ACLs 529
- Console(config-mac-acl)# 530
- Console(config-mac-mask-acl)# 534
- MAC egress mask ACL: 537
- PE 23-25 538
- NFORMATION 539
- DESCRIPTION 543
- NEGOTIATION 545
- FLOWCONTROL 547
- SHUTDOWN 549
- SWITCHPORT 551
- INTERFACES 553
- COUNTERS 555
- GGREGATION 559
- PRIORITY 567
- Command Function Mode Page 573
- 0 to 50 Mbps on Port 1 580
- Aging time: 300 sec 588
- SPANNING 591
- 592
- PATHCOST 597
- Console(config-mstp)# 598
- DISABLED 603
- PORTFAST 607
- Table 30-1 VLAN Commands 617
- XTENSION 619
- Editing VLAN Groups 623
- Console(config)#vlan database 624
- Console(config-vlan)# 624
- Configuring VLAN Interfaces 625
- NTERFACES 627
- Displaying VLAN Information 632
- Table 31-1 Priority Commands 645
- Console#sh queue mode 648
- Wrr status: Enabled 648
- Console(config)#int eth 1/5 650
- Information of Eth 1/1 653
- Console(config)#map ip port 656
- IP Precedence Value 01234567 658
- CoS Value 01234567 658
- Console(config)#map ip dscp 659
- Related Commands 663
- Console(config-pmap-c)# 670
- INTERFACE 677
- IGMP Query Commands 687
- MVR VLAN: 699
- Table 34-1 DNS Commands 701
- Field Description 709
- Basic IP Configuration 711
- PPENDICES 719
- PECIFICATIONS 721
- Management Features 723
- Standards 723
- Management Information Bases 724
- ROUBLESHOOTING 727
- Using System Logs 729
- Glossary-1 731
- Glossary-2 732
- Glossary-3 733
- Glossary-4 734
- Glossary-5 735
- Glossary-6 736
- Glossary-7 737
- Glossary-8 738
- Glossary-9 739
- Glossary-10 740
- Numerics 741
Relacionado con productos y manuales para Accesorios De Computador Smc-networks SMC TigerAccess SMC7824M/FSW
(4 paginas)© 2020, manymanuals.es. Todos los derechos reservados | 0.159 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales