Linksys SRW224P manual 802.1xPort Conf, Radius Server

Page 70

24-Port 10/100 + 2-Port Gigabit Switch with Webview and Power over Ethernet

802.1xPort Conf.

When 802.1X is enabled, you need to configure the parameters for the authentication process that runs between the client and the switch (that is, authenticator), as well as the client identity lookup process that runs between the switch and authentication server. These parameters are described in this section.

Modify the parameters required using the drop-down menus and textfields provided, and click Submit.

Max-Req. Sets the maximum number of times the switch port will retransmit an EAP request packet to the client before it times out the authentication session. (Range: 1-10; Default 2)

Quiet Period. Sets the time that a switch port waits after the Max Request Count has been exceeded before attempting to acquire a new client. (Range: 1-65535 seconds; Default: 60 seconds)

Re-authen Period. Sets the time period after which a connected client must be re-authenticated. (Range: 1-

65535 seconds; Default: 3600 seconds)

TX Period. Sets the time period during an authentication session that the switch waits before re-transmitting an EAP packet. (Range: 1-65535; Default: 30 seconds)

Supplicant. This Indicates the MAC address of a connected client.

Radius Server

Remote Authentication Dial-in User Service (RADIUS) and Terminal Access Controller Access Control System Plus (TACACS+) are logon authentication protocols that use software running on a central server to control access to RADIUS-aware or TACACS-aware devices on the network. An authentication server contains a database of multiple user name/password pairs with associated privilege levels for each user that requires management access.

RADIUS and TACACS+ logon authentication assign a specific privilege level for each user name/password pair. The user name, password, and privilege level must be configured on the authentication server.

To configure local or remote authentication preferences, specify the authentication sequence (that is, one to three methods), fill in the parameters for RADIUS or TACACS+ authentication if selected.

Secret Text String. Encryption key used to authenticate logon access for client. Do not use blank spaces in the string. (Maximum length: 20 characters)

Click Submit to save the changes.

Chapter 5: Configuring the Switch through the Web Utility

Security

Figure 5-45: Security - 802.1x Port Conf

Figure 5-46: Security - RADIUS Server

62

Image 70
Contents Port 10/100 + 2-Port Gigabit Switch How to Use This User Guide Copyright and TrademarksTable of Contents Help Appendix a Fast Ethernet and Gigabit EthernetAppendix B Cabling About Fast Ethernet About Gigabit EthernetList of Figures Front Panel24 Port Configuration 28 QoS IP Precedence/DSCP 61 Spanning Tree Port/LAG Info Introduction WelcomeWhat’s in this Guide? Front Panel Getting to Know the SwitchLEDs Side Panel Back PanelPorts Gigabit Expansion Ports RJ-45 PortsConsole Port Overview Connecting the SwitchMaximum Cabling Distances Pre-Installation Considerations Fast Ethernet ConsiderationsPlacement Options Hardware InstallationDesktop Placement Uplinking the Switch Rack-Mount PlacementConfiguration using the Console Interface Configuring the HyperTerminal ApplicationConfiguring the Switch through the Console Interface Switch ScreensSwitch Main Menu Versions General InformationSerial Port Configuration Management SettingsCPU Performance User and Password Settings 13 User and Password SettingsIP Configuration IP Address SettingsNetwork Configuration SnmpFile Management 19 File ManagementRestore System Default Setting Reboot SystemBack to Main Menu 22 Back to Main MenuPort Configuration Port StatusSystem PoE Configuration PoE ConfigurationPort PoE Status Port PoE Configuration LogoutConfiguring the Switch through the Web Utility System Information System DescriptionSystem Mode Sys. Info System ModeAddress Table Settings Forwarding DatabaseDynamic Address Static addressTime Synchronization Sys. Info Time Synchronization ScreenCPU Performance 10 Sys. Info CPU PerformanceIP Config IP AddressConfiguring the Switch through the Web Utility IP Config Switch Config Port ConfigurationEdit Port Configuration 14 Edit Port Configuration ScreenConfiguring the Switch through the Web Utility Switch Config Vlan Create Vlan 16 Adding/Editing Vlan Screen17 Switch Config Vlan Port Vlan PortLAG Configuration 18 Switch Config LAG ConfigurationCreate LAG Vlan LAG ConfigurationLAG Broadcast Control 22 Switch Config Port Mirroring Port MirroringLacp Lacp MembershipQoS Class of Service Settings Traffic TypeQueue Settings CoS to QueueIP Precedence/DSCP 28 QoS IP Precedence/DSCPIP Port 29 QoS IP PortACL Priority 30 QoS ACL PriorityRate Limit Configuration Rate LimitDiffServ Setting Rules DiffServ Class MapAdding a Class 34 DiffServ Class Map Adding a ClassDiffServ Policy Map Adding a Policy37 DiffServ Policy Map Setting Rules DiffServ Service Policy 38 DiffServ Diffserv Service PolicySecurity ACL ConfStandard ACL Extended ACLConfiguring the Switch through the Web Utility Security MAC ACL ACL Port Binding 802.1xUsers44 Security 802.1x Users 802.1xPort Conf Radius ServerPort Security Storm ControlHttps Settings System PasswordGlobal Settings SntpStatistics Interface StatisticsEtherlike Statistics Rmon StatisticsPower Config PoEPower Port Config Power Port StatusPower Status Software VersionSpanning Tree Information 59 Spanning Tree InformationConfiguration Port/LAG InfoPort/LAG Conf 62 Spanning Tree InformationSnmp Config SnmpIgmp Igmp Conf 64 Igmp Igmp ConfIgmp Router Info Igmp Router ConfIP Multicast Reg Table Igmp Member ConfReset MaintenanceFile Download Save Config Restore DefaultsFile Upload Help Integrated Cable TestAbout Fast Ethernet Appendix a Fast Ethernet and Gigabit EthernetAbout Gigabit Ethernet Twisted Pair Cabling Appendix B CablingFiber Optic Cabling Appendix C Glossary Appendix C Glossary Appendix C Glossary Cabling Type UTP CAT 5e or better LEDs Appendix D SpecificationsStandards Ieee Std Ports System, Link/Act, PoE, Speed, Gigabit 1, GigabitAppendix E Warranty Information Limited WarrantyAppendix F Regulatory Information FCC StatementPage Power Cord Set Cable de longueur inferieure a` 2 metres Environmental Statement Page Need to contact Linksys? Appendix G Contact InformationInformation section in this Guide

SRW224P specifications

The Linksys SRW224P is a versatile and efficient managed switch that caters to the needs of small to medium-sized businesses. This Layer 2 switch stands out with its robust functionality and user-friendly design, making it an ideal choice for networking professionals looking to enhance their network infrastructure.

One of the standout features of the SRW224P is its 24 Gigabit Ethernet ports, which provide high-speed connectivity for various devices across the network. This is particularly beneficial in environments with bandwidth-hungry applications, such as data transfers, video conferencing, and online collaboration tools. Additionally, the switch comes with 2 dual-personality ports that can be used as either Gigabit Ethernet or SFP (Small Form-factor Pluggable) ports, allowing for flexible and scalable network setups.

Power over Ethernet (PoE) capability is another significant aspect of the SRW224P. With a total PoE output of up to 370 watts, the switch can power devices such as IP cameras, VoIP phones, and wireless access points directly through the Ethernet cable, simplifying the installation process and reducing cable clutter. This feature is particularly advantageous for organizations seeking to deploy network devices in areas where power outlets are limited.

The SRW224P also boasts advanced management features, including VLAN support for segmenting network traffic, Quality of Service (QoS) for prioritizing critical applications, and Spanning Tree Protocol (STP) for redundant network paths. These capabilities enhance network performance and reliability, ensuring that users experience minimal downtime and efficient data flow.

Security is a top priority with the SRW224P, which includes features such as port security, access control lists (ACLs), and DHCP snooping. These measures help protect the network from unauthorized access and potential attacks, safeguarding sensitive information and maintaining operational integrity.

In terms of user interface, the Linksys SRW224P is equipped with a web-based management interface that allows for easy configuration and monitoring. This intuitive interface enables IT administrators to manage the switch remotely, providing real-time insights into network performance and facilitating troubleshooting.

Overall, the Linksys SRW224P managed switch combines high performance, advanced features, and security measures that make it a reliable choice for businesses aiming to optimize their network infrastructure. Its PoE capabilities, extensive port options, and management features ensure that it meets the demands of modern networking environments, making it a valuable asset for any organization.