Enterasys Networks 2S4082-25-SYS, 7S4280-19-SYS manual Determining NAC Controller Mode of Operation

Page 85

The NAC Controller Policy Configuration

See Figure 6‐24 to help visualize how you would determine the NAC Controller mode of operation. Starting at the end‐user and moving up stream, the position of the first NAC Controller is downstream of the first router in its path. This NAC Controller functions in L2 operations mode. Continuing to move upstream past the router, the next NAC Controller is upstream of the first router in its path. This NAC Controller functions in L3 operations mode.

Figure 6-24 Determining NAC Controller Mode of Operation

NAC Controllers of the same mode of operation must by assigned to their own unique policy domain. For example, you can have multiple L2 NAC Controllers in one domain and multiple L3 NAC Controllers in another domain, but you canʹt combine L2 and L3 NAC Controllers in the same domain.

Note: NAC Controllers can not share the same policy domain with any other non-NAC Controller switch type.

Because the two NAC Controllers shown in Figure 6‐24 are of different operational modes, they must each belong to a separate policy domain from each other as well as any other switch in the network.

Assure that all NAC Controllers of the same operational mode are in a policy domain not shared with any NAC Controller of a different operational mode or any non‐NAC Controller switch type.

Enterasys NAC Controller Hardware Installation Guide 6-17

Image 85

Contents Enterasys Page Page Regulatory Compliance Information Electromagnetic Compatibility EMC Supplement to Product Instructions Vcci Notice Enterasys NETWORKS, INC. Firmware License Agreement Vii Viii Contents Troubleshooting NAC Controller PEP InstallationAppendix a Specifications and Regulatory Compliance Initializing the NAC ControllerFigures IndexTables MGBIC-08 Xiv About This Guide How to Use This GuideWho Should Use This Guide For Refer to Related DocumentsCommonly Used Acronyms Typographical ConventionsGetting Help Overview IntroductionNAC Controller PEP N1-7C111 ChassisOverview 2S4082-25 NAC Controller PEP 2S4082-25 NAC Controller PEP7S4280-19 NAC Controller PEP 7S4280-19 NAC Controller PEPPower Supply Lanview LEDs Redundant Power SuppliesPower Supply Status Through System Management Auto-Ranging Power SuppliesSecure Networks Policy Support Lanview Diagnostic LEDsStandards Compatibility Standalone or Rack Mountable ChassisLanview Diagnostic LEDs Introduction Site Guidelines Installation Requirements and GuidelinesPower Supply LEDs Configuration GuidelinesPower Supply PS LED Status Definitions Lanview LEDsFan LED NAC Controller PEP Network RequirementsFan LED States and Definitions LED Color Status10BASE-T Network Link Aggregation100BASE-TX Network 1000BASE-T Network1000BASE-SX/LX/ELX Network Page Unpacking the Enterasys Matrix N1 Chassis Enterasys Matrix N1 Chassis SetupInstalling the Chassis on a Flat Surface Setting Up the Enterasys Matrix N1 ChassisOrder of Installation QuantityInstalling the Rubber Feet Installing the Chassis into a RackInstalling the Chassis on the Rack Shelf Attaching the Electrostatic Discharge Wrist Strap Installing the Chassis Directly to the RackESD Grounding Receptacle Powering Up a Enterasys Matrix N1 ChassisCooling Fans Connecting the 15-Amp AC Power CordsRequired Tools NAC Controller PEP InstallationUnpacking the NAC Controller PEP Important NoticeContents of Module Carton Quantity Installing Optional Mini-GBICsInstallation Mini-GBIC with LC Connector Removing the Mini-GBIC Installing NAC Controller PEP into the Matrix N1 ChassisPreparation InstallationConnecting UTP Cables to the 2S4082-25 Connecting to the NetworkN1 Chassis slot Metal back panel FTM2 backplane connectors NAC Controller PEP cardRJ45 connector RJ45 port connector port Group Select button Connecting a Twisted Pair Segment to the NAC Controller PEPRX+ TX1+ RX1 TX2+ TX3+ RX3 RX2 TX4+ RX4 Connecting Fiber-Optic Cables to Mini-GBICs 10 Cable Connection to MT-RJ Fiber-Optic Connectors 11 Cable Connection to LC Fiber-Optic Connectors What Is Needed Connecting to COM Port for Local ManagementConnecting to an IBM PC or Compatible Device Parameter Setting12 Connecting an IBM PC or Compatible Connecting to a VT Series Terminal13 Connecting a VT Series Terminal Connecting to a ModemCOM Port Adapter Wiring and Signal Diagram Adapter Wiring and Signal AssignmentsRJ45 VT Series Port Adapter Wiring and Signal Diagram Completing the InstallationModem Port Adapter Wiring and Signal Diagram RJ45 DB25First-Time Log-In Using a Console Port Connection 15 Matrix DFE Startup Screen Example N7 Chassis Using Lanview TroubleshootingAbout the Management Mgmt LED Viewing the Receive and Transmit ActivityLanview LEDs for the 7S4280-19 Lanview LEDs for the 2S4082-25Color State Recommended Action Lanview LEDsAlternating 67% on, 33% off Series Configuration Guide for proper setup Troubleshooting ChecklistProblem Possible Cause Recommended Action Troubleshooting ChecklistOFFLINE/RESET Switch for the 2S4082-25 Overview of the NAC Controller PEP Shutdown ProcedureLast Resort Shutdown Procedure Recommended Shutdown ProcedurePage Initializing the NAC Controller NAC Controller Ports Layer 3 NAC Controller Positioning General Management ConsiderationsLayer 2 In-Band Management Topology Layer 2 Out-Of-Band Management Topology Layer 3 Out-Of-Band Management Preparation for NAC Controller InitializationChoose NAC Controller Installation Type NAC Controller Initialization ProcedureEnter the Management Vlan ID NAC Controller Initialization Procedure 12 Setup NAC Controller PEP Networking 13 Enter NetSight Server IP Address 16 Configure System Date and Time 17 Set the System Date 19 Select the UTC/Local Hardware Clock Setting 21 Enable an Snmp Daemon Setup the Vlan Configurations NAC Controller Policy ConfigurationNAC Controllers Require Separate Domains 24 Determining NAC Controller Mode of Operation 25 Import From Device Wizard Modifying NAC Controllers Preconfigured Policy26 Import From Device Wizard Adding Assessment Classification Rules 28 Services ScreenModifying the Downstream Default Policy Page 7C111 Chassis Specifications and Regulatory Compliance Specifications and Regulatory CompliancePhysical Specifications Table A-1 Chassis Specifications PhysicalEnvironmental Requirements Power SupplyRegulatory Requirements Table A-5 NAC Controller Engine Specifications Ports NAC Controller Engine Interface SpecificationsExternal Power Supply Processor/MemoryTable A-6 COM Port Pin Assignments Signal Name Input/Output Table A-5 NAC Controller Engine SpecificationsNAC Controller Engine COM Port Pinout Assignments EnvironmentalTable A-7 Specifications for 2S4082-25 NAC Controller PEP 2S4082-25 Module SpecificationsPorts Processors/MemoryTable A-8 COM Port Pin Assignments Signal Name Input/Output NAC Controller PEP 7S4280-19 SpecificationsTable A-9 Specifications 2S4082-25 COM Port Pinout AssignmentsTable A-10 Mini-GBIC Input/Output Port Specifications Mini-GBIC Input/Output Specifications7S4280-19 COM Port Pinout Assignments MGBIC-LC01/MGBIC-MT01 Specifications 1000BASE-SX Gigabit Ethernet SpecificationsMGBIC-LC03 Specifications 1000BASE-SX MGBIC-08 Specifications 1000BASE-ELX MGBIC-LC09 Specifications 1000BASE-LXTable A-20 MGBIC-02 / Specifications MGBIC-02 Specifications 1000BASE-TRegulatory Compliance Table A-21 Compliance StandardsSetting the Mode Switches Mode Switch Bank Settings Optional InstallationsLocation of Memory Modules Memory Locations and Replacement ProceduresConnector arms Flash Dimm Replacement ProcedureConnector fingers Flash DimmFigure B-4 Installing the Dimm Installing the DimmInstalling the Dram Simm Dram Simm Replacement ProcedureConnector contacts Removing the Dram SimmDram Simm alignment notches Dram Simm Connector arms Connector contactsNumerics IndexIndex-2