Manuals / 3Com / Computer Equipment / Switch

3Com 3CRDSF9PWR manual Click, Updated

Models: 3CRDSF9PWR

1 256

Download 256 pages 60.62 Kb

Page 94

94CHAPTER 4: MANAGING DEVICE SECURITY

The IP Based ACL Remove Page contains the following fields:

■ACL Name — Selects an ACL name from a list of the IP-based ACLs.

■Remove ACL — Enables the ACL to be removed.

■Checkbox (unnamed) — When checked, selects the rule for removal. The top checkbox is used to select all rules for removal.

■Protocol — Indicates the protocol in the rule to which the packet is matched.

■Source Port — Displays the TCP/UDP source port to which the ACL is matched.

■Destination Port — Displays the TCP/UDP destination port.

■Flag Set — Indicates the TCP flag matched to the packet.

■Source IP Address — Indicates the source IP address.

■Source Mask — Indicates the source IP address mask.

■Destination IP Address — Indicates the destination IP address.

■Destination Mask — Indicates the destination IP address mask.

■DSCP — Matches the packet DSCP value to the ACL. Either the DSCP value or the IP Precedence value is used to match packets to ACLs.

■IP Precedence — Matches the packet IP Precedence value to the ACL.

■Action — Indicates the ACL forwarding action. The options are as follows:

■Permit — Forwards packets which meet the ACL criteria.

■Deny — Drops packets which meet the ACL criteria.

To remove an IP-based ACL:

1Select an ACL Name to be removed.

2Check Remove ACL.

3Click . The selected ACL is deleted, and the device is updated.

To remove IP-based ACL rules:

1Select an ACL Name.

2For each rule to be removed, check the box to the left of the row in the rules table. To remove all rules, the topmost box may be checked.

3 Click	. The selected ACL rules are deleted, and the device is
updated.

Image 94

3Com 3CRDSF9PWR manual Click, Updated

Contents

3Com OfficeConnect Managed PoE Switch 3Com Corporation Campus Drive Marlborough Overview User GuideManaging System Information Provides information for About this Guide Documentation ConventionsRelated Lists conventions that are used throughout this guideAbout this Guide Contents Viewing Basic Settings Configuring Ports Configuring Igmp Snooping Managing System Files Managing Device Diagnostics -O UTSTroubleshooting Page Getting Started OfficeConnect SwitchAbout Managed FastOfficeConnect Managed Fast Ethernet PoE Switch-front panel LED Status IndicatorsOfficeConnect Managed Fast Ethernet PoE switch provides LED Describes the meanings of the LEDsFast Ethernet PoE switch SpecificationsSystem Installing Methods of Managing a Switch Setting Up forManagement Refer to Setting Up Web Interface Management on Refer to Setting Up Command Line Interface Management onConfigure IP information manually for your switch or view Switch SetupRefer to Setting Up Snmp Management V1 or V2 on Automatically configured IP informationInitial Switch Setup and Management Flow Diagram Automatic IP Configuration using Dhcp Manual IP ConfigurationInterface CLI PrerequisitesConnecting the Workstation to the Switch Manually set the IP Address using the Console PortConsole#configure Console#show ip interface Interface Setting Up WebChoosing a Browser Interface Management Setting UpCommand Line Over the NetworkNetwork Using Telnet Where xxx.xxx.xxx.xxx is the IP address of the switchUpgrading Software using Default UsersEnter y and press Return. The system reboots the switch Following prompt displaysUsing the 3COM WEB Interface Web Interface Accessing the 3Com Web InterfaceStarting the 3Com Multi-Session Web ConnectionsEnter Network Password Web InterfaceUnderstanding 3Com Web Interface 3Com Web Interface HomeFollowing table lists the user interface components Interface Components View DescriptionClick Device Summary Device View To access the Device RepresentationManagement Buttons To view configuration information Using ScreenTable Options Click Administration IP Setup. The IP Setup Page opens IP SetupModify the fields Click . The access fields are modified System Access ModifyTo save the device configuration ConfigurationConfiguration to be saved to the flash memory Click . The configuration is savedClick Administration Reset. The Reset Page opens Resetting the DeviceClick . a confirmation message is displayed Password is displayed Reboot in 15 secondsClick To restore the device DefaultsRestores device factory defaults Restoring FactoryTo log off the device Logging OffDevice Following message appearsViewing Basic Settings To view the Device Summary Settings Device Summary Page contains the following fieldsPolling Interval Page contains the following fields Polling IntervalClick Device Summary Color Key. The Color Key Page opens Color KeyManaging Device Security Managing Device Security System Access Summary To define System Access InterfaceTo modify System Access Click . The Users are deleted, and the device is updated To remove usersTo configure the Radius client Managing Device Security Defining Port-Based Authentication802.1X Click Security 802.1X Summary. The 802.1X Summary Page opens Defining Port-Based Authentication Port Settings 802.1X System SettingClick Security 802.1X Setup. The 802.1X Setup Page opens Defining Port-Based Authentication Local Database DefiningForwarded on to the originally requested web To configure Local Database Settings AuthenticationLocal Database Setup Page contains the following fields Local Database Port Detail Local Database Port Setup Page contains the following fields To display the users stored in the Local Database User Name The name of users stored in the local databaseCreate a User To create user entries in the Local DatabaseSummary Local Database User Modify To remove a user entry from the Local Database Local Database User RemoveEncrypting Connection toTo configure Https settings Client and server establish a secure encrypted connectionDisabled Https is disabled on the device Https//deviceportnumberHttps Download Certificate Managing Device Security Switch supports both SSH Version 1.5 and 2.0 clients Click Security SSH Host Key. The SSH Host Key Page opens To view the DSA and RSA keysSSH Host Key Page contains the following fields Must use this web page to create a public host key SSH Key GenerateControl Lists Defining AccessAccess Control Lists ACLs allow network managers to define Filters that determine traffic classificationsMAC Based ACL Summary To configure MAC-based ACLs Click Device ACL MAC Based ACL Setup. The MAC Based ACLAdd Rules to ACL Select Create ACLTo define a new MAC-based ACL rule Click Device ACL MAC Based ACL Remove. The MAC Based ACLCheck Remove ACL IP Based ACL Summary Defining Access Control Lists Click Device ACL IP Based ACL Setup. The IP Based ACL Setup To configure IP-based ACLsOpens Add Rules to ACL Managing Device Security To create a new IP-based ACL Click Device ACL IP Based ACL Remove. The IP Based ACLUpdated ACL Binding Summary ACL Binding Setup To define ACL BindingTo remove ACL Binding ACL Binding RemoveManaging Device Security Storm Control SettingsTo display the storm control settings For all portsControl ConfiguringTo configure Broadcast Storm Control Define the relevant fieldsUsing Broadcast Storm Control Managing Device Security Information Device View Viewing System Description Configuring the System Name SettingsSystem settings. The section includes the following topics Configuring System TimeTo configure the System Name DeviceTo configure the System Time System Time SetupDefining System Settings Saving the Device Saved to the flash memoryTo reset the device configuration Managing System Information Configuring Ports Port Administration Summary 115 To configure Port Settings Port Administration Setup117 Click Port Administration Detail. The Port Detail Page opens 119 Configuring Ports Aggregating Ports Link Aggregation Summary To create Link Aggregation Blue Displays a member of the aggregation being createdSummary Deselected portsLink Aggregation Modify Page includes the following fields To modify Link AggregationBlue Displays a member of the modified aggregation Summary To remove Link Aggregation Link Aggregation Remove Page includes the following fieldsLacp Summary Lacp Modify Aggregating Ports Configuring Vlans Click Device Vlan Vlan Detail. The Vlan Detail Page opens VlanVlan Port Detail Create VLANs Click Device Vlan Setup. The Vlan Setup Page opensVlan Setup Page contains the following fields To create VLANsTo rename VLANs Click Device Vlan Rename. The Vlan Rename Page opensTo edit Vlan Settings Click Device Vlan Modify VLAN. The Modify Vlan Page opens137 To modify Port Vlan Settings Click Device Vlan Modify Port. The Modify Port Page opensTo delete VLANs Click Device Vlan Remove. The Vlan Remove Page opensConfiguring Vlans Address Information Addressing IP Setup Page contains the following fieldsDefining IP To define an IP interfaceConfiguring ARP Settings ARP Settings Summary To configure ARP entries ARP Settings SetupARP Settings Remove To remove ARP entriesConfiguring ARP Settings Configuring IP and MAC Address Information Table Settings To view address table settingsPort Summary Configuring Igmp Snooping To configure Igmp Snooping Click Device Igmp Snooping Setup. The Igmp SnoopingVlan Settings Configuring Igmp Snooping Configuring Spanning Tree Spanning Tree Summary 157 To configure Spanning Tree Setup Spanning Tree159 Spanning Tree Port Setup To modify Spanning TreeRecommended STA Path Cost Range Configuring Spanning Tree Configuring Snmp Snmp version Snmp version 2cClick Administration Snmp Setup. The Snmp Setup Page opens To set the operational status for SnmpClick Administration Snmp Snmp Add. The Snmp Add Page opens To define Snmp communitiesSnmp Trap Community StringSnmp Add Page contains the following fields Communities Remove Community StringRemoving Snmp To remove Snmp communities or trapsRemove Snmp Trap Service Click Device QoS CoS Summary. The CoS Summary Page opens CoS SummaryTo configure CoS Settings Click Device QoS CoS Setup. The CoS Setup Page opensTo configure the queue mode Click Device QoS Queue. The Queue Setup Page opensCoS to Queue Summary To configure CoS values to queues With 0 representing the lowest queue and 3 as the highestTo view the Dscp to CoS mapping Dscp to CoS SummaryDscp to CoS Setup To map Dscp to CoS valuesClick Device QoS Trust Setup. The Trust Setup Page opens Trust Setup Page contains the following fieldsIngress Rate Limit Bandwidth SummaryEgress Shaping Rates Bandwidth Setup Page contains the following fields To configure Bandwidth SettingsBe applied to the egress traffic on a specified interface Egress Shaping Rate Configuring Quality of Service Voice Vlan Summary To configure Voice Vlan Settings Voice Vlan SetupVoice Vlan is defined, and the device is To configure Voice Vlan port settings Voice Vlan Port SetupDevice is updated Port Definitions To view Voice Vlan Port Detail SettingsFor specific ports Configuring Voice Vlan OUI List To view Voice Vlan OUI SettingsVoice Vlan OUI Summary Page contains the following fields To modify Voice Vlan OUI Settings Voice Vlan OUI Modify Page contains the following fieldsConfiguring Quality of Service Managing System Files Managing System Files Configuration Upload To backup System filesConfiguration Download To restore System filesTo download the software image RestoringSoftware Software DownloadManaging System Files Ethernet Devices Device Power Display Port PoE Summary Page displays the following informationPort Power Display To configure Port PoE Settings Click Port PoE Setup. The Port PoE Setup Page opens203 Managing Power Over Ethernet Devices Managing System Logs System Log Severity LevelsTo view Logging Logging DisplayLogging Setup Page contains the following fields To define Log ParametersManaging System Logs Viewing Statistics To view port statistics Port Statistics SummaryPort Statistics Summary Page Field Description Port Statistics Summary Page Field Description 213 Port Statistics Summary Page Field Description Managing Device Diagnostics Port mirroring is not supported for trunk ports To enable port mirroring Port Mirroring SetupManaging Device Diagnostics To remove port mirroring Port Mirroring RemoveTo view cables diagnostics Cable Diagnostics SummaryConfiguring Cable Diagnostics Diagnostics To test cablesPinging Another Using the command line interface to ping another deviceRequest packets to another node on the network Press Esc to stop pinging 3Com Network SupervisorAccess Manager DirectorManager HP OpenViewNetwork Node Application such as 3Com Enterprise Management Suite EMSAppendix a 3COM Network Management Environmental PhysicalFeature Description ElectricalSwitch Features Interface with Crossover Mdix SSL Appendix B Device Specifications and Features PC-AT Serial Cable Null Modem Cable RJ-45 to RS-232 25-pinEthernet Port RJ-45 Pin Assignments 10/100 and 1000BASE-T RJ-45 connectionsEthernet Port RJ-45 Pin Assignments Appendix C PIN-OUTS Troubleshooting ProblemSolutions No connection and the port LED is off Lost Password Problems Possible Cause SolutionProblems Possible Cause Solution Appendix D Troubleshooting Boot Protocol Access Control ListAddress Resolution Service DscpAppendix E Glossary Igmp Snooping Ieee 802.3uIeee Igmp QueryPort Authentication See Ieee Link Aggregation See Port TrunkProtocol Rstp RemoteRemote Monitoring Secure Shell SSHThough located on the same LAN Byte blocks and error-correctedXModem Product to Gain Service BenefitsRegister Your TTroubleshootAccess Software WarrantyServices Purchase ExtendedNext section Must apply for a user name and passwordContact Us Directory of 3Com resources by region at00800 4411 Contact Us Appendix F Obtaining Support for Your 3COM Products Regulatory Notices