Asante Technologies 35160 user manual Port Control Settings, Name Description

Page 52

IntraCore 35160-T 802.1X Configuration Menu

802.1X Awareness : Enabled

SystemAuthControl : Disabled

 

1

8

9

16

Port Control: --------

--------

-: Force Authenticated

 

 

M: Auto Mode (Multiple Host)

U: Force

UnAuthenticated

 

S: Auto Mode (Single Host)

F: First

Come, First Serve

(Single Host)

<Cmd> <Description>

xToggle 802.1X Enable/Disable

s Toggle System Auth Control

c Set Port Control

a Display All Logical Port Status

p Display Logical Port Status By Port

t Set Timing Parameters

r Set RADIUS Parameters

h Legend Help

q Return to previous menu

root>

Port Control Settings

Asanté’s implementation of 802.1X extends the standard by using MAC based logical port support. Two new port control modes, Auto Mode (Multiple Hosts) and First Come, First Serve (Single Host), are provided to assist administrators in fine-tuning this security feature.

By default, 802.1X Awareness and SystemAuthControl are disabled and all switch ports are placed in “Force Authenticated” state. For the SystemAuthControl to be enabled, 802.1X awareness must also be enabled.

Legend

Name

Description

802.1X

Enabled

The switch recognizes 802.1X packets and will not forward packets

 

with an 802.1X reserved MAC address.

Awareness

 

 

 

Disabled

The switch isn’t 802.1X aware and authorizes all packets.

 

 

 

SystemAuth

Enabled

The 802.1X protocol will be enabled on each individual port according

 

to its own Port Control settings.

Control

Disabled

The switch works as if there is no 802.1X support, and all ports work

 

 

as if they are in ForceAuthenticated mode.

 

 

 

M

Auto Mode (Multiple

The traffic to or from multiple hosts through this port is allowed or

 

Hosts)

blocked by 802.1X protocol operation. The hosts are differentiated by

 

 

their MAC addresses. All hosts are blocked or unblocked

 

 

independently.

S

Auto Mode (Single

The traffic to or from multiple hosts through this port is allowed or

 

Host)

blocked by 802.1X protocol operation. The hosts are differentiated by

 

 

their MAC addresses. If any host is authenticated through this port,

 

 

then all hosts that attached to the same port are authenticated too.

F

First Come, Fist

The traffic to or from multiple hosts through this port is allowed or

 

Serve

blocked by 802.1X protocol operation. The hosts are differentiated by

 

 

their MAC addresses. If any host is authenticated, then all other hosts

 

 

that attached to the same port are unauthenticated, (i.e. blocked).

To set Port Control, type c in the 802.1X Configuration Menu. Type the letter of the corresponding setting and press Enter.

52

Page 51 Page 53
Image 52
Page 51 Page 53
Contents IntraCore 35160 Series Quick Start Guide Layer 2 Gigabit Switches User’s Manual IntraCore 35160 SeriesTable of Contents Page Features IntroductionPackage Contents SwitchCore CXE2010LEDs 1 IC35160-T 2 IC35160-GManagement and Configuration Front and Back Panel DescriptionsWeb-Based Interface Console InterfaceSnmp Management Hardware Installation and Setup Installation OverviewSafety Overview Recommended Installation ToolsInstallation into an Equipment Rack Power RequirementsEnvironmental Requirements Cooling and AirflowInstalling a Gbic Gbic InterfacesInstalling the Optional Emergency Power Supply Connecting PowerRemoving a Gbic Gbic Care and HandlingConnecting to the Network 1 10/100/1000BaseT Ports Cabling ProceduresGigabit Ethernet Ports Cabling Procedures SetupConnecting to a Console Connecting Via the Web Browser Connecting Via TelnetChanging the Password IP AssignmentSimple Network Management Protocol Snmp Configuration Accessing a SubmenuLogging Exiting a SubmenuConfiguration Menu General InformationAdministration Configuration Changing System Administration InfoPort Configuration System IP ConfigurationChanging System IP Information Page Advanced Port Configuration Enabling or Disabling a PortSetting Port Class of Service Setting Port Default PrioritySetting Port Maximum Packet Length Enabling or Disabling 802.3x Flow ControlUnicast Forwarding Database Configuration Global Port ConfigurationDisplaying the Forwarding Database Setting the MAC Address Age-Out Time Security ManagementVlan Management Searching for a MAC AddressSnmp Configuration Protocol ConfigurationChanging Community Strings Enabling Authentication Traps Adding or Updating a Trap ReceiverSpanning Tree Protocol STP Configuration Deleting a Trap ReceiverSetting Port Priority and Path Cost Spanning Tree Port ConfigurationEnabling and Disabling STP Trunk Group Configuration Defining the Priority List QoS Priority Queue ManagementAssigning Packets to Priority Queues Example Setting Console UI Time-out Period User Interface ConfigurationSetting SSH/Telnet UI Time-out Adding or Deleting an Access Host Change PasswordEnabling or Disabling SSH and Telnet System Utilities Access ControlEnabling or Disabling the Web Server Enabling or Disabling System Port Mirroring Port MirroringAdding or Deleting a Monitor Port Resetting the Switch System ResetSystem Clock Scheduling a System Reset System LogBootstrap Configuration Clearing the System LogTftp File Transfers Statistics Ping UtilitySnmp and Rmon Management Advanced ManagementRmon Management Duplicated IP Detection and Trap Enabling and Disabling Duplicated IP DetectionEnabling and Disabling Duplicated IP Trap Viewing a List of Duplicated IP AddressesConfiguring Port Security Enabling and Disabling Station Movement Trap Configuring Port New Node Detection Trap Configuring Port Lock and Intruder LockPort-based Network Access Control Configuring Security Level 2 or LevelSetting the Intruder Trap Resetting Security to DefaultsPage Port Control Settings Name DescriptionSetting Timers Radius Server IP Setting Radius ParametersServer Port Other Vlan Features of the switch Vlan Specifications for the IntraCore 35160 SeriesVlan Management Configuring Static Vlan Groups Creating a VlanAdvanced Static Vlan Configuration Configuring Vlan Port Attributes Setting the Port Vlan IDConfiguring Port Receive Frame Type Adding and Deleting VLANs from the PortSetting Port Type Displaying a Summary of Vlan GroupsResetting Vlan Configuration to Defaults IP Multicast Traffic ManagementDisplaying a Vlan Port Summary Multicast AddressesIgmp Snooping Configuring IP Multicast Traffic ManagementEnabling and Disabling Igmp Snooping Advanced Igmp Configuration Displaying a Summary of Group AddressesIP Multicast Forwarding Database Configuration Adding Ports to the Selected AddressInserting a Multicast Group Address Removing a Multicast Group AddressAccessing with a Web Browser Web-Based ManagementGenl Info General Information Button Front Panel ButtonManagement Buttons Port Config Port Configuration Button Span Tree Spanning Tree Button Snmp Button Addr Address Table ButtonVlan Button Vlan ConfigurationVlan Group Create Port Configuration Set Port TypePort Vlan ID Pvid Acceptable Frame TypeTrunking Button Security ButtonPort Ingress Filtering Tag/Untag Port Egress TypePage Snmp Management Operations Snmp ManagementSnmp Protocol MIB Tree Community Name and SecurityName Space Path MIB Groups Supported Switching Concepts VLANsPort-Based VLANs Vlan ID and Tagged FramesSpanning Tree Protocol Port Vlan IDHow It Works Spanning Tree ParametersFull Duplex, Flow Control, and Auto-negotiation Spanning Tree Port ConfigurationFull Duplex Flow Control Auto-NegotiationAppendix A. Troubleshooting Problem Possible SolutionsSpecifications Appendix B. Features and SpecificationsPhysical Characteristics Environmental Range Technical Support and WarrantyStandards Compliance FCC Compliance Statement Important Safety Instructions Appendix C. FCC Compliance and Warranty StatementsIntraCare Warranty Statement Page Pin Number Signal Name Appendix D. Console Port Pin OutsAppendix E. Online Warranty Registration Appendix F. BootP Configuration Bootstrap ConfigurationImage Banks Loading Software LocallyBOOTP-TFTP Loading Software Remotely
Top Page Image Contents