Allied Telesis AT-8000S manual Configuring Device Security

Page 52

Configuring Device Security

Configuring Network Security

Auto — Enables port-based authentication on the device. The interface moves between an authorized or unauthorized state based on the authentication exchange between the device and the client.

Authorized — Indicates the interface is in an authorized state without being authenticated. The interface re-sends and receives normal traffic without client port-based authentication.

Unauthorized — Denies the selected interface system access by moving the interface into unauthorized state. The device cannot provide authentication services to the client through the interface.

Admin Port Control — Indicates the port state. The possible field values are:

Auto —Enables port-based authentication on the device. The interface moves between an authorized or unauthorized state based on the authentication exchange between the device and the client.

ForceAuthorized — Indicates the interface is in an authorized state without being authenticated. The interface re-sends and receives normal traffic without client port-based authentication.

ForceUnauthorized — Denies the selected interface system access by moving the interface into unauthorized state. The device cannot provide authentication services to the client through the interface.

Enble Guest VLAN — Indicates if the Guest VLAN is enabled. The possible field values are:

Checked — Enables the Guest VLAN.

Unchecked — Disables the Guest VLAN. This is the default value.

Enable Periodic Reauthentication — Permits immediate port reauthentication. The possible field values are:

Enable — Enables immediate port reauthentication. This is the default value.

Disable — Disables port reauthentication.

Reauthentication Period — Displays the time span (in seconds) in which the selected port is reauthenticated. The field default is 3600 seconds.

Reauthenticate Now — Reauthenticates the port immediately.

Authenticator State — Displays the current authenticator state (as defined in Admin Port Control).

Quiet Period — Displays the number of seconds that the device remains in the quiet state following a failed authentication exchange. The possible field range is 0-65535. The field default is 60 seconds.

Resending EAP — Defines the amount of time (in seconds) that lapses before EAP requests are resent. The field default is 30 seconds.

Max EAP Requests — Displays the total amount of EAP requests sent. If a response is not received after the defined period, the authentication process is restarted. The field default is 2 retries.

Supplicant Timeout — Displays the amount of time (in seconds) that lapses before EAP requests are resent to the supplicant. The field default is 30 seconds.

Server Timeout — Displays the amount of time (in seconds) that lapses before the device re-sends a request to the authentication server. The field default is 30 seconds.

Termination Cause — Indicates the reason for which the port authentication was terminated.

2.Click Apply. The port authentication configuration is saved and the device is updated.

3.Click Save Config on the menu to save the changes permanently.

Page 51

Page 51 Page 53
Image 52
Page 51 Page 53
Contents Layer Ethernet Switch AT-8000S SeriesTable of Contents Configuring Ports Configuring Power Over Ethernet 126 176 Table of Contents Preface Web Browser Interface User’s GuideIntended Audience Web Browser Interface User’s Guide OverviewWeb Browser Interface User’s Guide Overview Contacting Allied Telesis Document ConventionsOnline Support Contacting Allied Telesis Getting Started Click Login. The Embedded Web System Home Page opensStarting the Application Click Configuration. The System General Page opens Starting the ApplicationClick Layer 1 Port Settings. The Port Settings Page opens Using the Web Browser InterfaceViewing the Device Representation Using the Web Browser Interface User Interface ComponentsInterface Components Component DescriptionConfiguration Management Buttons Using the Management ButtonsButton Button Name Description Adding, Modifying and Deleting Information Add Local UserSaving Configurations Logging OutResetting the Device Resetting the DeviceDefining System Information Click System General. The System General Page opensDefining System Information Configuring System Time Configuring System Time Setting the System Clock Click System System Time. The System Time Page opensConfiguring Sntp Configuring SntpPolling for Unicast Time Information Polling for Anycast Time InformationConfiguring Daylight Saving Time Define the Server IP Address and the Poll Interval fieldsConfiguring Daylight Saving Time Configuring Device Security Configuring Management Security Configuring Management SecurityDefining Access Profiles HttpAdd Access Profile Click Add. The Add Access Profile Page opensAllied Telesis AT-8000S Switch Defining Profile Rules Profile RulesAdd Profile Rule Click Add. The Add Profile Rule Page opensProfiles Rules Configuration Click Modify. The Profiles Rules Configuration Page opensDefining Authentication Profiles Authentication ProfilesClick Add. The Add Authentication Profile Page opens Add Authentication Profile Enter the Profile NameMapping Authentication Profiles Authentication MappingConfiguring TACACS+ Configuring Server Based AuthenticationDefine the Console, Telnet, and Secure Telnet SSH fields TACACS+ Configuration Add TACACS+ Configuring Radius Radius ConfigurationAdd Radius Configuring Local Users Click Mgmt. Security Local Users. The Local Users Page opensClick Modify. The Local User Configuration Page opens Click Create. The Add Local User Page opensConfiguring Network Security Configuring Network SecurityNetwork Security Overview Managing Port SecurityClick Modify. The Port Security Configuration Page opens Port SecurityPort Security Configuration Defining 802.1x Port Access 802.1x Port AccessSelect the Authentication Method Click Enable Port AccessClick Settings. The Port Authentication Settings Page opens Configuring Device Security Click Modify. The Storm Control Configuration Page opens Enabling Storm ControlStorm Control Configuration Configuring Ports Defining Port Settings Defining Port SettingsClick Modify. The Modify Port Settings Page opens Modify Port Settings Configuring Ports Allied Telesis AT-8000S Switch Configuring Port Mirroring Configuring Port MirroringClick Layer 1 Port Mirroring. The Port Mirroring Page opens Click Enable Mirror Click Modify. The Modify Mirror Page opensTo modify or delete a port mirror Aggregating Ports Click Layer 1 Port Trunking. The Trunk Settings Page opens Defining Trunk SettingsAggregating Ports Trunk Configuration Settings Click Modify. The Trunk Settings Page opensConfiguring Ports Allied Telesis AT-8000S Switch Defining Port Trunking Port TrunkingModify Trunk Configuring Lacp Click Modify. the Modify Lacp Settings Page opensConfiguring Interfaces Defining MAC Addresses Defining MAC AddressesClick Layer 2 MAC Address. The MAC Address Page opens Add MAC Address Click Add. The Add MAC Address Page opensView MAC Address Table Click Close. The View MAC Address Table Page is displayedConfiguring VLANs Configuring VLANs Defining Vlan PropertiesAllied Telesis AT-8000S Switch Defining Vlan Interface Settings Click Layer 2 Vlan Interface. The Vlan Interface Page opensModify Interface Configuration Click Modify. The Modify Interface Configuration Page opensConfiguring Gvrp Defining GvrpSelect Enable Gvrp Click Modify. The Gvrp Port Configuration Page opensEnabling/Disabling Gvrp on a Port Define the Gvrp State and Gvrp Registration fieldsConfiguring System Logs Defining Log Settings Defining Log SettingsSystem Log Severity Levels Description Message Event Log Configuring Log Servers Clearing Event LogsClearing Event Logs Click Create. The Add Syslog Server Page opensSetting System Log Display Click Modify. The Modify Event Log Output Page opensViewing Flash Logs Viewing Flash LogsConfiguring Spanning Tree Configuring Classic Spanning Tree Configuring Classic Spanning TreeDefining STP Properties Complete the Spanning Tree State and Bridge Settings fields Defining STP Interfaces Click Configure. The STP Interface Configuration Page opensClick Layer 2 Spanning Tree. The Spanning Tree Page opens Allied Telesis AT-8000S Switch STP Modify Interface Configuration Configuring Rapid Spanning Tree RstpConfiguring Rapid Spanning Tree Modify RstpConfiguring Multiple Spanning Tree Defining Mstp Properties Configuring Multiple Spanning TreeDefine the Region Name, Revision, and Max Hops fields Mstp Interface Settings Defining Mstp InterfacesConfiguring Spanning Tree Mstp Instance Settings Defining Mstp InstancesConfiguring Spanning Tree Configuring Multicast Forwarding Configuring Igmp Snooping Configuring Igmp SnoopingIgmp Snooping Settings Click Modify. The Igmp Snooping Settings Page opensDefining Multicast Bridging Groups Defining Multicast Bridging GroupsClick Create. The Add Multicast Group Page opens Check the Enable Bridge Multicast Filtering checkboxClick Modify. The Modify Multicast Group Page opens Defining Multicast Forward All Settings Defining Multicast Forward All SettingsModify Multicast Forward All Click Modify. The Modify Multicast Forward All Page opensConfiguring Multicast Forwarding Configuring Snmp Snmp Overview Snmp OverviewEnabling Snmp Snmp GlobalEnabling Snmp Defining Snmp Communities Snmp Communities Basic TableClick Modify. The Snmp Community Settings Page opens Defining Snmp CommunitiesDefining Snmp Groups Snmp GroupClick Create. The Create Snmp Group Profile Page opens Defining Snmp GroupsClick Modify. The Modify Snmp Group Profile Page opens Defining Snmp Users Snmp UsersClick Modify. The Snmp User Settings Page opens Defining Snmp UsersDefining Snmp Views Click Create. The Add Snmp VIew Page opensAdd Snmp VIew Defining Snmp ViewsConfiguring Snmp Notifications Defining Notification RecipientsConfiguring Snmp Notifications SNMPv1,2c Notification RecipientDefining Notification Filters Create Snmp Notification RecipientSnmp Notification Filter Settings Configuring Power Over Ethernet Enabling PoE and Setting the Power Threshold Enabling PoE and Setting the Power ThresholdDefining PoE Settings Defining PoE Settings Modify PoEModify the Admin Mode and Priority Level fields Configuring Power Over Ethernet Configuring Services Enabling Class of Service CoS Enabling Class of Service CoSCoS Configuration Click Modify. The CoS Configuration Page opensConfiguring CoS Priorities Configuring CoS PrioritiesSelect the Configure CoS Priority to Egress Queues values Click Configure CoSClick Configure. The Configure CoS Page opens Mapping QueuesSelect the Configure Dscp Priority values Click Configure DscpClick Configure. The Configure Dscp Page opens Mapping Dscp Values to QueuesConfiguring Bandwidth QoS Click Services Bandwidth. The Bandwidth Page opensConfiguring Bandwidth QoS Click Modify. The Bandwidth Configuration Page opensManaging System Files Restoring the Default Configuration Restoring the Default ConfigurationClick Apply in the Reset to Factory Defaults section Check the Reboot Switch After Resetting to Defaults optionDefining Tftp File Uploads and Downloads Click Utilities File System The File System Page opensDefining Tftp File Uploads and Downloads Select the Source and the Destination Unit Viewing Integrated Cable Tests Viewing Integrated Cable TestsClick Utilities Cable Test. The Cable Test Page opens Copper Cables Extended Feature Viewing Optical Transceivers Viewing Optical TransceiversReset Select the Reset Unit NoResetting the Device Viewing Statistics Viewing Interface Statistics Viewing Interface StatisticsViewing Interface Statistics Receive Statistics Viewing Etherlike Statistics Etherlike StatisticsOpen the Etherlike Statistics Viewing Rmon Statistics Managing Rmon StatisticsManaging Rmon Statistics Allied Telesis AT-8000S Switch Click Statistics Rmon History. The Rmon History Page opens Configuring Rmon HistoryClick Rmon History. The Create History Entry Page opens Click Modify. The History Control Settings Page opens Create History EntryViewing the Rmon History Table Click View. The Rmon History Table Page opensAllied Telesis AT-8000S Switch Configuring Rmon Events Click Statistics Rmon Events. The Rmon Events Page opensClick Create. The Create Event Entry Page opens Click Modify. The Event Control Settings Page opensDefine the Community, Description, Type and Owner fields Viewing the Rmon Events Logs Click View. The Rmon Events Logs Page opensDefining Rmon Alarms Rmon AlarmAdd Alarm Rmon Alarm Settings Click Modify. The Rmon Alarm Settings Page opensViewing Statistics Managing Stacking Stacking Overview Stacking Ring TopologyStacking Chain Topology Stacking OverviewStacking Members and Unit ID Removing and Replacing Stacking MembersExchanging Stacking Members Configuring Stacking Management Enhanced StackingConfiguring Stacking Management Initial Configuration Connecting a TerminalAppendix A. Downloading Software with CLI Initial Configuration ConfigurationStatic IP Address and Subnet Mask System software file file1 Boot file file Downloading SoftwareUser Name Standalone Device Software DownloadStacking Member Software Download Downloading SoftwareAllied Telesis AT-8000S Switch Console# copy unit//1/image unit//4/image Appendix B. System Defaults RS-232 Port Settings Port DefaultsConfiguration Defaults Security DefaultsSpanning Tree Defaults System Time DefaultsAddress Table Defaults Vlan Default Trunking DefaultsMulticast Defaults Vlan DefaultSymbols IndexAccess profiles Sntp
Related manuals
Manual 48 pages 34.24 Kb

AT-8000S specifications

The Allied Telesis AT-8000S series switches are a range of advanced Layer 2 Ethernet switches designed for efficient networking in various environments. Engineered with performance, reliability, and cost-effectiveness in mind, these switches are ideal for businesses seeking to enhance their network infrastructure.

One of the main features of the AT-8000S series is its high-speed data forwarding capabilities. With support for 10/100/1000 Mbps Ethernet ports, these switches provide fast and reliable connections, enabling seamless data transfer and enhanced communication between devices. The non-blocking switching architecture ensures that full bandwidth is available at all times, maximizing throughput and reducing latency in network traffic.

The AT-8000S series incorporates advanced Layer 2 switching technologies, such as VLAN support, allowing users to segment network traffic for improved performance and security. Virtual Local Area Networks (VLANs) help isolate sensitive data and reduce unnecessary broadcast traffic, enhancing the overall performance of the network.

Quality of Service (QoS) is another significant feature integrated into these switches, prioritizing different classes of network traffic. This functionality ensures that critical applications receive the necessary bandwidth and minimal latency, which is imperative for voice over IP, video conferencing, and other latency-sensitive applications.

In terms of network management, the AT-8000S series provides a variety of options, including an intuitive web-based interface, SNMP support, and the ability to manage switch configurations through console access. This flexibility allows network administrators to monitor performance and manage configurations easily.

The switches are built for durability, featuring a robust design suitable for deployment in various environments, including temperature-sensitive areas. Power over Ethernet (PoE) capability is also available in certain models, allowing network devices like IP cameras and wireless access points to receive power through the same cable as data, simplifying installation and reducing clutter.

Allied Telesis emphasizes security within the AT-8000S series, with features such as port security, DHCP snooping, and IEEE 802.1X authentication to safeguard against unauthorized access and potential threats.

Overall, the Allied Telesis AT-8000S series provides a comprehensive networking solution tailored for modern business needs, combining performance, flexibility, and security to support a growing array of applications and devices within the network.
Top Page Image Contents