Cabletron Systems SEHI-22/24, SEHI-32/34 manual Security

Page 65

Chapter 6

Security

Launching the Security application; LANVIEWSECURE defined; configuring security; enabling security and traps at the repeater, hub, and port levels; security on non-LANVIEWSECUREHubs

The Security application allows you to configure and manage the

LANVIEWSECURE feature incorporated into the new generation of Cabletron’s family of stackable hubs. LANVIEWSECURE provides enhanced intruder protection by allowing you to secure two source MAC addresses per port, along with an additional floating cache of up to 32 addresses among ports on a single hub; in addition, LANVIEWSECURE provides eavesdrop protection by scrambling the data portion of each packet to all ports except the destination port.

NOTE

Some portions of LANVIEWSECURE functionality will apply to all ports in the SEHI- managed hubstack, including ports residing on older, non-LANVIEWSECUREhubs; these will be noted throughout the text, and summarized in the section entitled Security on Non-LANVIEWSECUREHubs.

To launch the Security application

from the icon:

1.Click on the appropriate device icon to display the icon menu.

2.Drag down to Security and release.

from the Hub View:

1.Click on to display the Device menu.

2.Drag down to Security and release.

6-1

Page 64 Page 66
Image 65
Page 64 Page 66
Contents Complete Networking Solution Page Virus Disclaimer Applicable to licenses to the United States Government only Restricted Rights NoticeContents Chapter Source Addressing Chapter Repeater RedundancyChapter Security Appendix a Sehi MIB StructureIntroduction to Spma For the SEHI-22/24 and SEHI-32/34 Using the Sehi User’s GuideUsing the Sehi User’s Guide Screen Displays ConventionsWhat’s not in the Sehi User’s Guide Introduction to Spma for the SEHI-22/24 and SEHI-32/34 Button Using the MouseFTP Getting HelpSehi Firmware Page Using the Hub View Using the Sehi Hub ViewHub View Front Panel Navigating Through the Hub ViewDate and Time UptimeDevice Name LocationUsing the Sehi Hub View Using the Mouse in the Hub View Ports Display Port Display Form Hub View Port Color CodesMonitoring Hub Performance Port Display Form ErrorsLoad CollisionsPort Type Frame SizesContact Checking Device Status and Updating Front Panel InfoName and Location Name Checking Module StatusChassis Type Module Type Checking Repeater StatusActive Users Link Status Checking Port StatusMedia Type StatusTopology Type Checking StatisticsTotal Packets Received BytesAvg Packet Size Broadcast PacketsAlignment Errors Total ErrorsCRC Errors Multicast PacketsGiant Frames Runt FramesProtocols Viewing the Port Source Address ListManaging the Hub Contact Status Setting the Polling IntervalsDevice General Status Enabling/Disabling PortsDevice Configuration Port Operational StateUsing the Sehi Hub View Using the Sehi Hub View Managing the Hub Link/Seg Traps What is a Segmentation Trap?From the icon What is a Link Trap?Enabling and Disabling Link/Seg Traps From the Hub View From the command line stand-alone modeViewing and Configuring Link/Seg Traps for Hub Modules Configuring Link/Seg Traps for the RepeaterModule Traps Window Viewing and Configuring Link/Seg Traps for PortsPort Traps Window Repeater Redundancy Setting Network Circuit RedundancySpmarun r4red IP address community name Configuring a Redundant CircuitChannel X Redundancy Window Add Circuit Address Window To set the Poll Interval Monitoring RedundancyClick in the All Circuits box Displaying the Source Address List Source AddressingDisplaying the Source Address List Source Addressing Setting the Ageing Time Setting the Hash TypeLocking Source Addresses Source Address Locking on Older Devices Configuring Source Address Traps Module- and Port-level Traps Device-level TrapsSource Addressing Source Addressing Port Source Address Traps Window Finding a Source Address Find Source Address Window Click on to exit the window Source Addressing Finding a Source Address Security Spmarun r4sec IP address SU community name What is LANVIEWSECURE?Trunk port security New definitions for station and trunk portsSecure address assignment Continuous learning mode Newest Lanviewsecure FeaturesConfigurable violation response Full or partial security against eavesdroppingForced non-secure status Learned addresses resetSecurity on Non-LANVIEWSECUREHubs Configuring Security Security To assign secure addresses to a port Addresses Window Add MAC Address Window Resetting Learned AddressesTips for Successfully Implementing Eavesdropper Protection Enabling Security and Traps Repeater-level Security and Traps Channel a Security Window Hub-level Security and TrapsChannel a Module Security Window Port-level Security and TrapsChannel a Port Security Window Security Security Enabling Security and Traps Sehi Chassis MGR Ietf MIB SupportSehi MIB Structure Sehi IP Services Sehi Host ServicesBrief Word About MIB Components and Community Names Repeater OneSehi MIB Structure Sehi MIB Structure Index Index-2 Index-3 Index Index-4
Top Page Image Contents