Allied Telesis AT-8000S manual Port Security Configuration

Page 49

Allied Telesis AT-8000S Switch

Web Browser Interface User’s Guide

Figure 28: Port Security Configuration Page

The Port Security Configuration Page contains the following fields:

Unit Number — Defines the unit number.

Interface — Displays the port or LAG name.

Learning Mode — Defines the locked port type. The Learning Mode field is enabled only if Locked is selected in the Set Port field.The possible field values are:

Classic Lock — Locks the port using the classic lock mechanism. The port is immediately locked, regardless of the number of addresses that have already been learned.

Limited Dynamic Lock — Locks the port by deleting the current dynamic MAC addresses associated with the port. The port learns up to the maximum addresses allowed on the port. Both relearning and aging MAC addresses are enabled.

Enable Trap — Indicates if the SNMP trap generated if there is a violation. The possible values are:

Yes — Trap is generated.

No — No trap is generated.

Trap Frequency — The time interval (in seconds) between traps. The possible field range is 1-1,000,000 seconds, and the default is 10 seconds.

Action On Violation— Indicates the intruder action defined for the port. Indicates the action to be applied to packets arriving on a locked port. The possible values are:

Forward — Forwards packets from an unknown source without learning the MAC address.

Discard — Discards packets from any unlearned source. This is the default value.

Shutdown — Discards packets from any unlearned source and shuts down the port. The port remains shut down until reactivated, or until the device is reset.

Max Entries — Specifies the number of MAC addresses that can be learned on the port before the port is locked. The field range is 1-128. The default is 1.

Lock Interface —Locks the interface.

4.Select the security mode for the selected port(s).

5.Click Apply. The port security settings are saved and the device is updated.

Page 48

Image 49
Contents AT-8000S Series Layer Ethernet SwitchTable of Contents Configuring Ports Configuring Power Over Ethernet 126 176 Table of Contents Web Browser Interface User’s Guide PrefaceIntended Audience Web Browser Interface User’s Guide OverviewWeb Browser Interface User’s Guide Overview Contacting Allied Telesis Document ConventionsOnline Support Contacting Allied Telesis Getting Started Click Login. The Embedded Web System Home Page opensStarting the Application Starting the Application Click Configuration. The System General Page opensClick Layer 1 Port Settings. The Port Settings Page opens Using the Web Browser InterfaceViewing the Device Representation User Interface Components Using the Web Browser InterfaceInterface Components Component DescriptionConfiguration Management Buttons Using the Management ButtonsButton Button Name Description Add Local User Adding, Modifying and Deleting InformationLogging Out Saving ConfigurationsResetting the Device Resetting the DeviceClick System General. The System General Page opens Defining System InformationDefining System Information Configuring System Time Configuring System Time Click System System Time. The System Time Page opens Setting the System ClockConfiguring Sntp Configuring SntpPolling for Unicast Time Information Polling for Anycast Time InformationDefine the Server IP Address and the Poll Interval fields Configuring Daylight Saving TimeConfiguring Daylight Saving Time Configuring Device Security Configuring Management Security Configuring Management SecurityHttp Defining Access ProfilesClick Add. The Add Access Profile Page opens Add Access ProfileAllied Telesis AT-8000S Switch Profile Rules Defining Profile RulesClick Add. The Add Profile Rule Page opens Add Profile RuleClick Modify. The Profiles Rules Configuration Page opens Profiles Rules ConfigurationAuthentication Profiles Defining Authentication ProfilesClick Add. The Add Authentication Profile Page opens Enter the Profile Name Add Authentication ProfileAuthentication Mapping Mapping Authentication ProfilesConfiguring TACACS+ Configuring Server Based AuthenticationDefine the Console, Telnet, and Secure Telnet SSH fields TACACS+ Configuration Add TACACS+ Radius Configuration Configuring RadiusAdd Radius Click Mgmt. Security Local Users. The Local Users Page opens Configuring Local UsersClick Create. The Add Local User Page opens Click Modify. The Local User Configuration Page opensConfiguring Network Security Configuring Network SecurityManaging Port Security Network Security OverviewPort Security Click Modify. The Port Security Configuration Page opensPort Security Configuration 802.1x Port Access Defining 802.1x Port AccessSelect the Authentication Method Click Enable Port AccessClick Settings. The Port Authentication Settings Page opens Configuring Device Security Enabling Storm Control Click Modify. The Storm Control Configuration Page opensStorm Control Configuration Configuring Ports Defining Port Settings Defining Port SettingsClick Modify. The Modify Port Settings Page opens Modify Port Settings Configuring Ports Allied Telesis AT-8000S Switch Configuring Port Mirroring Configuring Port MirroringClick Layer 1 Port Mirroring. The Port Mirroring Page opens Click Modify. The Modify Mirror Page opens Click Enable MirrorTo modify or delete a port mirror Aggregating Ports Click Layer 1 Port Trunking. The Trunk Settings Page opens Defining Trunk SettingsAggregating Ports Click Modify. The Trunk Settings Page opens Trunk Configuration SettingsConfiguring Ports Allied Telesis AT-8000S Switch Port Trunking Defining Port TrunkingModify Trunk Click Modify. the Modify Lacp Settings Page opens Configuring LacpConfiguring Interfaces Defining MAC Addresses Defining MAC AddressesClick Layer 2 MAC Address. The MAC Address Page opens Click Add. The Add MAC Address Page opens Add MAC AddressClick Close. The View MAC Address Table Page is displayed View MAC Address TableConfiguring VLANs Defining Vlan Properties Configuring VLANsAllied Telesis AT-8000S Switch Click Layer 2 Vlan Interface. The Vlan Interface Page opens Defining Vlan Interface SettingsClick Modify. The Modify Interface Configuration Page opens Modify Interface ConfigurationDefining Gvrp Configuring GvrpClick Modify. The Gvrp Port Configuration Page opens Select Enable GvrpDefine the Gvrp State and Gvrp Registration fields Enabling/Disabling Gvrp on a PortConfiguring System Logs Defining Log Settings Defining Log SettingsSystem Log Severity Levels Description Message Event Log Clearing Event Logs Configuring Log ServersClearing Event Logs Click Create. The Add Syslog Server Page opensClick Modify. The Modify Event Log Output Page opens Setting System Log DisplayViewing Flash Logs Viewing Flash LogsConfiguring Spanning Tree Configuring Classic Spanning Tree Configuring Classic Spanning TreeDefining STP Properties Complete the Spanning Tree State and Bridge Settings fields Defining STP Interfaces Click Configure. The STP Interface Configuration Page opensClick Layer 2 Spanning Tree. The Spanning Tree Page opens Allied Telesis AT-8000S Switch STP Modify Interface Configuration Rstp Configuring Rapid Spanning TreeModify Rstp Configuring Rapid Spanning TreeConfiguring Multiple Spanning Tree Defining Mstp Properties Configuring Multiple Spanning TreeDefine the Region Name, Revision, and Max Hops fields Defining Mstp Interfaces Mstp Interface SettingsConfiguring Spanning Tree Defining Mstp Instances Mstp Instance SettingsConfiguring Spanning Tree Configuring Multicast Forwarding Configuring Igmp Snooping Configuring Igmp SnoopingClick Modify. The Igmp Snooping Settings Page opens Igmp Snooping SettingsDefining Multicast Bridging Groups Defining Multicast Bridging GroupsClick Create. The Add Multicast Group Page opens Check the Enable Bridge Multicast Filtering checkboxClick Modify. The Modify Multicast Group Page opens Defining Multicast Forward All Settings Defining Multicast Forward All SettingsClick Modify. The Modify Multicast Forward All Page opens Modify Multicast Forward AllConfiguring Multicast Forwarding Configuring Snmp Snmp Overview Snmp OverviewSnmp Global Enabling SnmpEnabling Snmp Snmp Communities Basic Table Defining Snmp CommunitiesDefining Snmp Communities Click Modify. The Snmp Community Settings Page opensSnmp Group Defining Snmp GroupsClick Create. The Create Snmp Group Profile Page opens Defining Snmp GroupsClick Modify. The Modify Snmp Group Profile Page opens Snmp Users Defining Snmp UsersDefining Snmp Users Click Modify. The Snmp User Settings Page opensClick Create. The Add Snmp VIew Page opens Defining Snmp ViewsDefining Snmp Views Add Snmp VIewDefining Notification Recipients Configuring Snmp NotificationsSNMPv1,2c Notification Recipient Configuring Snmp NotificationsCreate Snmp Notification Recipient Defining Notification FiltersSnmp Notification Filter Settings Configuring Power Over Ethernet Enabling PoE and Setting the Power Threshold Enabling PoE and Setting the Power ThresholdDefining PoE Settings Modify PoE Defining PoE SettingsModify the Admin Mode and Priority Level fields Configuring Power Over Ethernet Configuring Services Enabling Class of Service CoS Enabling Class of Service CoSClick Modify. The CoS Configuration Page opens CoS ConfigurationConfiguring CoS Priorities Configuring CoS PrioritiesClick Configure CoS Select the Configure CoS Priority to Egress Queues valuesClick Configure. The Configure CoS Page opens Mapping QueuesClick Configure Dscp Select the Configure Dscp Priority valuesClick Configure. The Configure Dscp Page opens Mapping Dscp Values to QueuesClick Services Bandwidth. The Bandwidth Page opens Configuring Bandwidth QoSClick Modify. The Bandwidth Configuration Page opens Configuring Bandwidth QoSManaging System Files Restoring the Default Configuration Restoring the Default ConfigurationClick Apply in the Reset to Factory Defaults section Check the Reboot Switch After Resetting to Defaults optionClick Utilities File System The File System Page opens Defining Tftp File Uploads and DownloadsDefining Tftp File Uploads and Downloads Select the Source and the Destination Unit Viewing Integrated Cable Tests Viewing Integrated Cable TestsClick Utilities Cable Test. The Cable Test Page opens Copper Cables Extended Feature Viewing Optical Transceivers Viewing Optical TransceiversSelect the Reset Unit No ResetResetting the Device Viewing Statistics Viewing Interface Statistics Viewing Interface StatisticsViewing Interface Statistics Receive Statistics Etherlike Statistics Viewing Etherlike StatisticsOpen the Etherlike Statistics Viewing Rmon Statistics Managing Rmon StatisticsManaging Rmon Statistics Allied Telesis AT-8000S Switch Click Statistics Rmon History. The Rmon History Page opens Configuring Rmon HistoryClick Rmon History. The Create History Entry Page opens Create History Entry Click Modify. The History Control Settings Page opensClick View. The Rmon History Table Page opens Viewing the Rmon History TableAllied Telesis AT-8000S Switch Click Statistics Rmon Events. The Rmon Events Page opens Configuring Rmon EventsClick Create. The Create Event Entry Page opens Click Modify. The Event Control Settings Page opensDefine the Community, Description, Type and Owner fields Click View. The Rmon Events Logs Page opens Viewing the Rmon Events LogsRmon Alarm Defining Rmon AlarmsAdd Alarm Click Modify. The Rmon Alarm Settings Page opens Rmon Alarm SettingsViewing Statistics Managing Stacking Stacking Ring Topology Stacking OverviewStacking Chain Topology Stacking OverviewRemoving and Replacing Stacking Members Stacking Members and Unit IDExchanging Stacking Members Enhanced Stacking Configuring Stacking ManagementConfiguring Stacking Management Initial Configuration Connecting a TerminalAppendix A. Downloading Software with CLI Initial Configuration ConfigurationStatic IP Address and Subnet Mask Downloading Software System software file file1 Boot file fileUser Name Standalone Device Software DownloadDownloading Software Stacking Member Software DownloadAllied Telesis AT-8000S Switch Console# copy unit//1/image unit//4/image Appendix B. System Defaults Port Defaults RS-232 Port SettingsConfiguration Defaults Security DefaultsSpanning Tree Defaults System Time DefaultsAddress Table Defaults Trunking Defaults Vlan DefaultMulticast Defaults Vlan DefaultIndex SymbolsAccess profiles Sntp
Related manuals
Manual 48 pages 34.24 Kb

AT-8000S specifications

The Allied Telesis AT-8000S series switches are a range of advanced Layer 2 Ethernet switches designed for efficient networking in various environments. Engineered with performance, reliability, and cost-effectiveness in mind, these switches are ideal for businesses seeking to enhance their network infrastructure.

One of the main features of the AT-8000S series is its high-speed data forwarding capabilities. With support for 10/100/1000 Mbps Ethernet ports, these switches provide fast and reliable connections, enabling seamless data transfer and enhanced communication between devices. The non-blocking switching architecture ensures that full bandwidth is available at all times, maximizing throughput and reducing latency in network traffic.

The AT-8000S series incorporates advanced Layer 2 switching technologies, such as VLAN support, allowing users to segment network traffic for improved performance and security. Virtual Local Area Networks (VLANs) help isolate sensitive data and reduce unnecessary broadcast traffic, enhancing the overall performance of the network.

Quality of Service (QoS) is another significant feature integrated into these switches, prioritizing different classes of network traffic. This functionality ensures that critical applications receive the necessary bandwidth and minimal latency, which is imperative for voice over IP, video conferencing, and other latency-sensitive applications.

In terms of network management, the AT-8000S series provides a variety of options, including an intuitive web-based interface, SNMP support, and the ability to manage switch configurations through console access. This flexibility allows network administrators to monitor performance and manage configurations easily.

The switches are built for durability, featuring a robust design suitable for deployment in various environments, including temperature-sensitive areas. Power over Ethernet (PoE) capability is also available in certain models, allowing network devices like IP cameras and wireless access points to receive power through the same cable as data, simplifying installation and reducing clutter.

Allied Telesis emphasizes security within the AT-8000S series, with features such as port security, DHCP snooping, and IEEE 802.1X authentication to safeguard against unauthorized access and potential threats.

Overall, the Allied Telesis AT-8000S series provides a comprehensive networking solution tailored for modern business needs, combining performance, flexibility, and security to support a growing array of applications and devices within the network.