Cabletron Systems SEHI-22/24, SEHI-32/34 manual Security

Page 71

Security

Figure 6-2. Channel A Port Security Window

The top portion of the window contains a list box which displays each port communicating on the selected channel, designated by hub and port number. Each port’s current Lock Status, violation response, Security Level, and Trap status is also displayed. Note that any ports on a non-LANVIEWSECUREhub will display “not applicable” in the Security Level field; eavesdropper protection (scrambling) and continuous lock mode cannot be implemented for these ports. (See Security on Non-LANVIEWsecure Hubs, page 6-5, for more information.)

The lower portion of the window provides the fields you need to configure security for one or more of the listed ports. Note that if you select a group of ports with different security capabilities, only those capabilities which apply to every port in the selected group will be active; those which are not available for every port in the selected group will be grayed out.

To configure security levels and violation response:

1.Use the Set Security For field or the mouse to select the port or ports for which you wish to configure security (note that the settings in theSet Security For field will change automatically as you click to select or de-select ports).

2.In the On Violation field, click to selectdisable if you want the port or ports to be disabled if any unauthorized source address is detected, or select noDisable if you wish the port to remain operational after a violation. Note that selecting the noDisable option effectively removes intruder protection

Configuring Security

6-7

Page 70 Page 72
Image 71
Page 70 Page 72
Contents Complete Networking Solution Page Virus Disclaimer Applicable to licenses to the United States Government only Restricted Rights NoticeContents Appendix a Sehi MIB Structure Chapter Repeater RedundancyChapter Source Addressing Chapter SecurityIntroduction to Spma For the SEHI-22/24 and SEHI-32/34 Using the Sehi User’s GuideUsing the Sehi User’s Guide Screen Displays ConventionsWhat’s not in the Sehi User’s Guide Introduction to Spma for the SEHI-22/24 and SEHI-32/34 Button Using the MouseFTP Getting HelpSehi Firmware Page Using the Hub View Using the Sehi Hub ViewHub View Front Panel Navigating Through the Hub ViewLocation UptimeDate and Time Device NameUsing the Sehi Hub View Using the Mouse in the Hub View Ports Display Port Display Form Hub View Port Color CodesMonitoring Hub Performance Collisions ErrorsPort Display Form LoadPort Type Frame SizesContact Checking Device Status and Updating Front Panel InfoName and Location Name Checking Module StatusChassis Type Module Type Checking Repeater StatusActive Users Link Status Checking Port StatusMedia Type StatusTopology Type Checking StatisticsBroadcast Packets Received BytesTotal Packets Avg Packet SizeMulticast Packets Total ErrorsAlignment Errors CRC ErrorsGiant Frames Runt FramesProtocols Viewing the Port Source Address ListManaging the Hub Contact Status Setting the Polling IntervalsPort Operational State Enabling/Disabling PortsDevice General Status Device ConfigurationUsing the Sehi Hub View Using the Sehi Hub View Managing the Hub Link/Seg Traps What is a Segmentation Trap?From the icon What is a Link Trap?Enabling and Disabling Link/Seg Traps From the Hub View From the command line stand-alone modeViewing and Configuring Link/Seg Traps for Hub Modules Configuring Link/Seg Traps for the RepeaterModule Traps Window Viewing and Configuring Link/Seg Traps for PortsPort Traps Window Repeater Redundancy Setting Network Circuit RedundancySpmarun r4red IP address community name Configuring a Redundant CircuitChannel X Redundancy Window Add Circuit Address Window To set the Poll Interval Monitoring RedundancyClick in the All Circuits box Displaying the Source Address List Source AddressingDisplaying the Source Address List Source Addressing Setting the Ageing Time Setting the Hash TypeLocking Source Addresses Source Address Locking on Older Devices Configuring Source Address Traps Module- and Port-level Traps Device-level TrapsSource Addressing Source Addressing Port Source Address Traps Window Finding a Source AddressFind Source Address Window Click on to exit the window Source Addressing Finding a Source Address Security Spmarun r4sec IP address SU community name What is LANVIEWSECURE?Trunk port security New definitions for station and trunk portsSecure address assignment Full or partial security against eavesdropping Newest Lanviewsecure Features Continuous learning mode Configurable violation responseForced non-secure status Learned addresses resetSecurity on Non-LANVIEWSECUREHubs Configuring Security Security To assign secure addresses to a port Addresses Window Add MAC Address Window Resetting Learned AddressesTips for Successfully Implementing Eavesdropper Protection Enabling Security and Traps Repeater-level Security and Traps Channel a Security Window Hub-level Security and TrapsChannel a Module Security Window Port-level Security and TrapsChannel a Port Security Window Security Security Enabling Security and Traps Sehi Chassis MGR Ietf MIB SupportSehi MIB Structure Repeater One Sehi Host ServicesSehi IP Services Brief Word About MIB Components and Community NamesSehi MIB Structure Sehi MIB Structure Index Index-2 Index-3 Index Index-4
Top Page Image Contents