D-Link DSL-G604T Parameter Description Status, RSA with RC4, RSA with 3DES EDE, DHS DSS with 3DES

Page 102

DGS-3024 Gigabit Ethernet Switch Manual

SSL function, which are all enabled by default. To utilize a particular ciphersuite, disable the unwanted ciphersuites, leaving the desired one for authentication.

When the SSL function has been enabled, the web will become disabled. To manage the Switch through the web-based management while utilizing the SSL function, the web browser must support SSL encryption and the header of the URL must begin with https://. (Ex. https://10.90.90.90) Any other method will result in an error and no access can be authorized for the web-based management.

To view the following window, click Security > Secure Socket Layer (SSL) > Configuration:

	Figure 8- 3. SSL Configuration window
To set up the SSL function on the Switch, configure the following parameters and click Apply.

Parameter	Description

Status	Use the pull-down menu to enable or disable the SSL status on the Switch. The default
	is Disabled.

RSA with RC4 128	This ciphersuite combines the RSA key exchange, stream cipher RC4 encryption with
MD5	128-bit keys and the MD5 Hash Algorithm. Use the pull-down menu to enable or
	disable this ciphersuite. This field is Enabled by default.

RSA with 3DES EDE	This ciphersuite combines the RSA key exchange, CBC Block Cipher 3DES_EDE
CBC SHA	encryption and the SHA Hash Algorithm. Use the pull-down menu to enable or disable
	this ciphersuite. This field is Enabled by default.

DHS DSS with 3DES	This ciphersuite combines the DSA Diffie Hellman key exchange, CBC Block Cipher
EDE CBC SHA	3DES_EDE encryption and SHA Hash Algorithm. Use the pull-down menu to enable or
	disable this ciphersuite. This field is Enabled by default.

RSA EXPORT with	This ciphersuite combines the RSA Export key exchange and stream cipher RC4
RC4 40 MD5	encryption with 40-bit keys. Use the pull-down menu to enable or disable this
	ciphersuite. This field is Enabled by default.

NOTE: Certain implementations concerning the function and configuration of SSL are not available on the web-based management of this Switch and need to be configured using the command line interface. For more information on SSL and its functions, see the DGS-3024 Command Line Interface Reference Manual, located on the documentation CD of this product.

88

Image 102

Contents Managed 24-Port Gigabit Ethernet Switch ManualFCC Warning CE Mark WarningVcci Warning Table of Contents Spanning Tree Sntp Settings Secure Shell SSH 117 141 Preface Intended ReadersDGS-3024 Gigabit Ethernet Switch Manual Safety Instructions Safety CautionsGeneral Precautions for Rack-Mountable Products Safety Instructions Battery Handling Reminder Ports FeaturesPerformance Features ManagementDGS-3024 Gigabit Ethernet Switch Manual Unpacking and Setup InstallationPacking List Desktop or Shelf Installation Rack InstallationPower on Power FailureExternal Redundant Power System DPS-300 in DPS-900 case with DGS-3024 Front Panel Rear PanelSide Panels LED Indicators Side panel views of the SwitchSwitch to End Node Switch connected to an End NodeSwitch to Hub or Switch DGS-3024 Gigabit Ethernet Switch Manual Management Options Command Line Console Interface Through the Serial PortConnecting the Console Port RS-232 DCE Web-based Management InterfaceInitial screen after first connection First Time Connecting to The Switch Password ProtectionSnmp Settings Traps MIBsIP Address Assignment Show Switch command Connecting Devices to the Switch Assigning the Switch an IP AddressLogin to Web Manager IntroductionWeb-based User Interface Areas of the User InterfaceArea Parameter Description Get IP From Default GatewayIP Address IP AddressSwitch Information Advanced Settings Igmp Snooping Multicast Router OnlyTelnet TCP Port SwitchTelnet Status NumberPort Configuration Parameter DescriptionFlow Control LearningPort Mirroring Link AggregationExample of Port Trunk Group Parameter Description Group ID StateType Master Port Igmp SnoopingIgmp Snooping Port MapVlan Name Host TimeoutRoute Timeout Query IntervalLeave Timer Static Router Ports EntryQuerier State Spanning Tree 802.1s Mstp802.1w Rapid Spanning Tree P2P Port Port Transition StatesEdge Port 802.1d/802.1w/802.1s CompatibilitySTP Bridge Global Settings 13. STP Bridge Global Settings window STP compatibleSTP Version Forward Delay 4Parameter Description STP Status Hello Time 1-10 SecTX Hold Count MST Configuration TableParameterDescription Configuration Name Forwarding BpduRevision Level VID List19. Instance ID Settings window Modify Msti Settings Parameter Description Instance IDInternal cost Priority Instance Status STP Instance SettingsParameter Description Instance Type Instance PriorityRegional Root Bridge Parameter Description Designated RootBridge External Root Cost Internal Root CostLast Topology Change Forward DelayMax Age Topology ChangesSTP Port Settings 25. STP Port Settings windowAuto Parameter Description From/ToExternal Cost 0 = Hello TimeMulticast Forwarding ForwardingUnicast Forwarding Allowed to go portUnderstanding Ieee 802.1p Priority Port SettingsVLANs Multicast MACVlan Description Ieee 802.1Q VLANsDGS-3024 Gigabit Ethernet Switch Manual 802.1Q Vlan Tags 29. Ieee 802.1Q Packet ForwardingPort Vlan ID 30. Ieee 802.1Q TagTagging and Untagging Ingress FilteringVlan and Trunk Groups Default VLANsSwitch Ports Static Vlan Entry32. first 802.1Q Static VLANs window 8021Q Port Settings 35. Gvrp Settings window Ingress CheckSntp Settings Time SettingFrame Type 36. Current Time Status window Month ParameterDescription Time Zone and DST SettingsTime Zone and DST DayTime Offset Daylight SavingTime State Daylight Saving Minutes Time Zone OffsetQoS Advantages of QoSUnderstanding QoS DGS-3024 Gigabit Ethernet Switch Manual 39. Storm Control Type Setting window Traffic Control802.1p Default Priority 40. Port Default Priority assignment window 802.1p User PriorityQoS Scheduling Mechanism Parameter Description StrictRoundRobin QoS Output Scheduling MAC Notification Global SettingsMAC Notification ParameterDescription Max. PacketsInterval sec MAC Notification Port SettingsParameter Description State ~2147483647 History size 1~50045. MAC Notification Port Settings window Parameter Description From and ToServer IP System Log ServerParameter Description Index SeverityChoose Enabled or Disabled to activate or deactivate StatusPort Access Entity 802.1x Port-Based Access ControlAuthentication Server Authenticator 50. Authentication ServerAuthentication Process Port-Based Network Access ControlClient Configure Authenticator 53. Example of Typical Port-Based Configuration54. First 802.1x Authenticator Settings window AdmDir PortControl802.1x Capability Settings Local users57 .1x Capability Settings window Initialize Ports Auth State Reauthenticate PortsParameter Description Port OpenDirRadius Server StatusStatic ARP Settings 61. Static ARP Settings windowTrusted Host Secure Socket Layer SSLConfiguration Download CertificateRSA with 3DES EDE Parameter Description StatusRSA with RC4 DHS DSS with 3DESSSH Configuration Secure Shell SSHTime Out Parameter Description SSH Server StatusMax Session Auth. FailSSH Algorithm ParameterDescription Encryption AlgorithmBlow-fish CBC Cast128-CBC Authentication AlgorithmPassword Twofish128SSH User Authentication Auth. ModeParameter Description User Name Access Authentication Control Host NameHost IP Response Timeout Authentication Policy & ParametersParameters Description Authentication Policy 255Login Method List Application Authentication SettingsAuthentication Server Group Enable Method List10. Authentication Server Group Settings window Authentication Server Host ParameterDescriptionProtocol Login Method ListsTimeout Retransmit15. Login Method List Settings window Enable Method Lists 18. Enable Method List Settings window19. Enable Method List Edit window 20. Enable Method List Add windowConfigure Local Enable Password Enable Admin22. Enable Admin window Access Right User AccountsPassword Access Right Admin and User PrivilegesNew Password Confirm NewSnmp Manager Management Admin UserAdmin and User Privileges User Account ManagementSnmp V3 Encryption Snmp User TableGroup Name Auth-ProtocolSnmp View Table Snmp View Table windowSubtree OID Snmp Group TableParameter Description View Name View TypeWrite View Name Parameter Description Group NameRead View Name Notify View NameSnmp Community Table Security ModelSnmp Host Table Parameter Description Community NameSnmp Version Snmp Engine IDParameter Description Host IP Address Community String14. Snmp Engine ID Configuration window Port Utilization Utilization windowPackets Received RXBytes PacketsUMB Cast RX Unicast MulticastBroadcast Transmitted TX Tx Packets Analysis window line graph for Bytes and PacketsErrors Tx Packets Analysis window table for Bytes and PacketsRx Error Analysis window line graph OverSize CrcErrorUnderSize Fragment10. Tx Error Analysis window line graph ExColl ExDeferLateColl SingCollSize 12. Packet Size Analysis window line graph256-511 65-127128-255 512-1023MAC Address 14. MAC Address Table window Vlan ID of the Vlan the port is a memberNext Switch History LogLearned View All Entry15. Switch History window Queries Igmp Snooping GroupMulticast Group ReportsIgmp Snooping Forwarding Vlan StatusRouter Port Session TablePort Access Control Radius AuthenticationTftp Services Download Configuration FileDownload Firmware Save Settings Ping TestSave History Log Save Changes Ping Test windowReboot Services RebootReset Reset Config Reset SystemLogout 12. Logout Web Setups window Technical Specifications Data Transfer Rates StandardsProtocols Ethernet Fast EthernetCable Lengths Standard Media Type Maximum DistanceMini Gbic Glossary Line speed See baud rate DGS-3024 Gigabit Ethernet Switch Manual Limited Warranty What Is Not Covered FCC Warning TrademarksPage Page Product Registration Link Europe Limited Product Warranty General TermsWarrantor Link Europe Limited Produktgarantie Allgemeine BedingungenGarantiegeber Link Europe a limité la garantie des produits Conditions GénéralesGarant Garantía limitada del producto D-LINK Europa Condiciones generalesGarante Link Europe Termini di Garanzia dei Prodotti GeneralitàPrestazioni della Garanzia limitata Technical Support Emailsupport@dlink.com.sg Tech Support for customers within India Tech Support for customers within the Russia Technical Support Technical Support Technical Support Техническая поддержка D-Link Техническая поддержка через ИнтернетAsistencia Técnica Suporte Técnico 友冠技術支援 Technical Support Technische Unterstützung Assistance technique Assistance technique D-Link par téléphoneAsistencia Técnica de D-Link por teléfono 902 Asistencia Técnica de D-Link a través de InternetSupporto tecnico Tech Support for customers within the Netherlands Telefoniczna pomoc techniczna firmy D-Link Pomoc techniczna firmy D-Link świadczona przez InternetTechnická podpora Technikai Támogatás Teknisk Support Link teknisk support på Internettet Teknistä tukea asiakkaille Suomessa 0800-114Teknisk Support för kunder i Sverige 0770-33 00技术支持 Tech Support for customers within the United States International Offices Registration Card All Countries and Regions Excluding USA

Related manuals

Manual 26 pages 8.5 Kb