Asante Technologies 35160 user manual Duplicated IP Detection and Trap

Page 47

4.2 Security Management

To access the Security Management Menu, type t in the Configuration Menu. Use the listed command letters to configure port security, duplicate IP detection and trap, and station movement trap, or to display the duplicated IP list and reset all security parameters to factory default.

IntraCore 35160-T Security Management Menu

Duplicated-IP

Monitoring Status

: Enable

Duplicated-IP

Trap Status

: Enable

Station Movement Trap Status

: Disable

<Cmd> <Description>

pPort Security Configuration

x802.1X Configuration

dToggle Duplicated-IP Detection Enable/Disable

iToggle Duplicated-IP Trap Enable/Disable

lDisplay Duplicated-IP List

sToggle Station Movement Trap Enable/Disable

rReset All Security Configuration to Factory Default

qReturn to previous menu

root>

Important! For any traps (alerts) to be sent, one or more devices must be designated as trap receivers. See “SNMP Configuration” in Chapter 3.

4.2.1 Duplicated IP Detection and Trap

The duplicated IP detection and duplicated IP trap security measures allow the user to monitor the use of a single IP address by two stations.

If duplicated IP detection is enabled, the switch starts monitoring the broadcast Address Resolution Protocol (ARP) traffic from all of its ports, to detect duplicated IP address conditions. When duplicate IP addresses are used on the system, the MAC addresses of both stations and the ports they accessed are logged.

If both duplicated IP detection and duplicated IP trap are enabled, the designated trap receiver gets an alert each time a duplicated IP address is used on the system. In order to send duplicated IP traps, duplicated IP detection must be enabled.

By default, duplicated IP detection and trapping are enabled.

Enabling and Disabling Duplicated IP Detection

To enable or disable detection of duplicated IP addresses:

1.From the Configuration Menu, type t to access the Security Management Menu.

2.Type d to toggle duplicated IP detection.

Enabling and Disabling Duplicated IP Trap

To enable the sending of a trap when a duplicated IP is detected, first enable duplicated IP detection. See the previous subsection, “Enabling and Disabling Duplicated IP Detection.”

To enable or disable the sending of a trap when a duplicated IP is detected:

1.From the Configuration Menu, type t to access the Security Management Menu.

2.Type i to toggle duplicated IP trap.

Viewing a List of Duplicated IP Addresses

To view a list of duplicated IP addresses that have been detected at the switch:

47

Page 46 Page 48
Image 47
Page 46 Page 48
Contents IntraCore 35160 Series Quick Start Guide IntraCore 35160 Series Layer 2 Gigabit Switches User’s ManualTable of Contents Page Introduction FeaturesLEDs SwitchCore CXE2010Package Contents 2 IC35160-G 1 IC35160-TFront and Back Panel Descriptions Management and ConfigurationSnmp Management Console InterfaceWeb-Based Interface Recommended Installation Tools Hardware Installation and SetupInstallation Overview Safety OverviewCooling and Airflow Installation into an Equipment RackPower Requirements Environmental RequirementsGbic Interfaces Installing a GbicGbic Care and Handling Installing the Optional Emergency Power SupplyConnecting Power Removing a Gbic1 10/100/1000BaseT Ports Cabling Procedures Connecting to the NetworkConnecting to a Console SetupGigabit Ethernet Ports Cabling Procedures Connecting Via Telnet Connecting Via the Web BrowserIP Assignment Changing the PasswordSimple Network Management Protocol Snmp Exiting a Submenu ConfigurationAccessing a Submenu LoggingGeneral Information Configuration MenuChanging System Administration Info Administration ConfigurationChanging System IP Information System IP ConfigurationPort Configuration Page Enabling or Disabling a Port Advanced Port ConfigurationEnabling or Disabling 802.3x Flow Control Setting Port Class of ServiceSetting Port Default Priority Setting Port Maximum Packet LengthGlobal Port Configuration Unicast Forwarding Database ConfigurationDisplaying the Forwarding Database Searching for a MAC Address Setting the MAC Address Age-Out TimeSecurity Management Vlan ManagementChanging Community Strings Protocol ConfigurationSnmp Configuration Adding or Updating a Trap Receiver Enabling Authentication TrapsDeleting a Trap Receiver Spanning Tree Protocol STP ConfigurationEnabling and Disabling STP Spanning Tree Port ConfigurationSetting Port Priority and Path Cost Trunk Group Configuration Assigning Packets to Priority Queues QoS Priority Queue ManagementDefining the Priority List Example Setting SSH/Telnet UI Time-out User Interface ConfigurationSetting Console UI Time-out Period Enabling or Disabling SSH and Telnet Change PasswordAdding or Deleting an Access Host Enabling or Disabling the Web Server Access ControlSystem Utilities Adding or Deleting a Monitor Port Port MirroringEnabling or Disabling System Port Mirroring System Clock System ResetResetting the Switch System Log Scheduling a System ResetClearing the System Log Bootstrap Configuration Tftp File Transfers Ping Utility StatisticsRmon Management Advanced ManagementSnmp and Rmon Management Viewing a List of Duplicated IP Addresses Duplicated IP Detection and TrapEnabling and Disabling Duplicated IP Detection Enabling and Disabling Duplicated IP TrapEnabling and Disabling Station Movement Trap Configuring Port SecurityConfiguring Port Lock and Intruder Lock Configuring Port New Node Detection TrapResetting Security to Defaults Port-based Network Access ControlConfiguring Security Level 2 or Level Setting the Intruder TrapPage Name Description Port Control SettingsSetting Timers Server Port Setting Radius ParametersRadius Server IP Vlan Management Vlan Specifications for the IntraCore 35160 SeriesOther Vlan Features of the switch Creating a Vlan Configuring Static Vlan GroupsAdvanced Static Vlan Configuration Adding and Deleting VLANs from the Port Configuring Vlan Port AttributesSetting the Port Vlan ID Configuring Port Receive Frame TypeDisplaying a Summary of Vlan Groups Setting Port TypeMulticast Addresses Resetting Vlan Configuration to DefaultsIP Multicast Traffic Management Displaying a Vlan Port SummaryEnabling and Disabling Igmp Snooping Configuring IP Multicast Traffic ManagementIgmp Snooping Displaying a Summary of Group Addresses Advanced Igmp ConfigurationRemoving a Multicast Group Address IP Multicast Forwarding Database ConfigurationAdding Ports to the Selected Address Inserting a Multicast Group AddressWeb-Based Management Accessing with a Web BrowserManagement Buttons Front Panel ButtonGenl Info General Information Button Port Config Port Configuration Button Span Tree Spanning Tree Button Addr Address Table Button Snmp ButtonVlan Group Create Vlan ConfigurationVlan Button Acceptable Frame Type Port ConfigurationSet Port Type Port Vlan ID PvidTag/Untag Port Egress Type Trunking ButtonSecurity Button Port Ingress FilteringPage Snmp Protocol Snmp ManagementSnmp Management Operations Name Space Path Community Name and SecurityMIB Tree MIB Groups Supported Vlan ID and Tagged Frames Switching ConceptsVLANs Port-Based VLANsSpanning Tree Parameters Spanning Tree ProtocolPort Vlan ID How It WorksFull Duplex Spanning Tree Port ConfigurationFull Duplex, Flow Control, and Auto-negotiation Auto-Negotiation Flow ControlProblem Possible Solutions Appendix A. TroubleshootingPhysical Characteristics Appendix B. Features and SpecificationsSpecifications Standards Compliance Technical Support and WarrantyEnvironmental Range IntraCare Warranty Statement Appendix C. FCC Compliance and Warranty StatementsFCC Compliance Statement Important Safety Instructions Page Appendix D. Console Port Pin Outs Pin Number Signal NameAppendix E. Online Warranty Registration Loading Software Locally Appendix F. BootP ConfigurationBootstrap Configuration Image BanksLoading Software Remotely BOOTP-TFTP
Top Page Image Contents