Configuring Address-to-Port Security | 3Com 5101M-MGT manual

Configuring Address-to-Port Security

The Advanced EMM providesaddress-to-port secu rity which enables you to assign a maximum of four MAC Addresses to individual ports in your network. This allows the EMM to detect a change in the MAC Address of a station connected to a port whenever a different device is connected to that port. When a master EMM detects such an address change, it disables the port to preserve network security, and sends a trap to all stations with trap or all access in its community table.

A slave EMM (Advanced) can also detect a change in a port's MAC address. The slave EMM will send a trap to all stations in its community table, however, it cannot disable the port. Once you are alerted to the trap (displayed on the EMM console or workstation), you must issue the SET PORT MODE DISABLE command to disable the port.

Once you have determined and rectified the intruding station, you must issue the SET PORT MODE ENABLE command to re-enable the port.

Note: All versions of the EMM (i.e., Starter, Basic, Advanced) are capableofmanagingtheONline10BASE-TSecurityModule. However, only the Advanced EMM supports management security features. Therefore, when you use a Starter or Basic EMM to issue a security command using the 'all' option, the EMM scans the concentrator for Security Modules and initiates the command on Security modules only.

When you use an Advanced EMM to issue a security command using the 'all' option, the EMM will initiate the command on all Ethernet modules that support security.

3 - 20 ONline Ethernet Management Module Installation and Operation Guide

Image 60

3Com 5101M-MGT installation and operation guide Configuring Address-to-Port Security

Contents

Page VDE Class B Compliance Restricted Rights Page Contents Startup and Management Functions Troubleshooting Appendix B RS-232 Cable Specs and Modem Use Figures Page Tables Page How to Use This Guide Audience Structure of This GuidePage Document Conventions Convention Indicates ExampleUsr/snm/agents Related Documents 3Com Documents Reference Documents Introduction ONline Ethernet Management Module Shows a typical implementation of EMMs EMMs in Network Configuration Theory of OperationPage Complete ONline Control ONline Ethernet Management Module VersionsEMM Starter Version EMM Basic Version EMM Advanced Version Network Management Access Network Management Functions ONline Backplane Architecture TriChannel Backplane Architecture Assignments Ethernet Backplane Combination Reference Chart ChartEthernet Paths Token Ring Paths Fddi Paths Token Ring Backplane Combination Reference Token Ring Backplane Combination Reference Chart Fddi Backplane Combination Reference ChartFddi Paths Ethernet Paths Token Ring Paths Where To Go From Here Unpacking and Installing the Module Precautionary Procedures Unpacking Procedure Installation Procedures Installing the Ethernet Management Module Installed EMM Connected to a Terminal Verifying Operation EMM Front Panel Ethernet Management Module Faceplate Status LED Master Mgt Module LEDInterpretation of the Ethernet Management Module LEDs LED Name Color State Indicates Reset Button Download in Progress LEDRS-232 Serial Port Where to go From Here Page Startup and ManagementFunctions Procedure Command Quick Reference for Getting StartedQuick Reference for Getting Started Saving and Reverting Configuration Values EMM only Configuring the Terminal EMM Terminal Parameter Options and Factory Defaults Parameter Options Factory Default Optional Terminal Settings Setting Terminal Hangup Configuring the EMM Setting Terminal PromptSetting Terminal Timeout 17-Slot ONline System Concentrator Setting Device Password 6-Slot ONline System Concentrator Establishing the Administrator Password Establishing the User Password Setting Device Diagnostics Assigning an EMM NameAssigning a Contact Name and Location Configuring Snmp Values Page Configuring the Alert Setting Assigning IP AddressesCreating a Community Table Setting a Subnetwork Mask Defining the Default Gateway Configuring Modules and Ports Enabling Trap ReceiveAssigning Module Networks Assigning Module Mastership Priority Setting Port Mode Setting Port NetworkSetting Redundant Ports Configuring Address-to-Port Security Managing Security with EMM Master and Slaves Establishing Remote Logins Sample Remote Connection Monitoring With Show Commands Logging Out From a Remote SessionShowing Device Information Showing Module Information Showing Port Information Showing Concentrator Information Showing Counter Statistics Using the Monitor Command Troubleshooting Applying Power Applying Power Suggestions Problem Troubleshooting Suggestions EMM and Terminal Interface EMM Terminal Interface Suggestions Explained in Chapters EMM Trap Messages EMM Trap Message Fields Field Description Technical Assistance EMM Network Impact 3Com Protocols SIZE-14 Page Software Download Instructions Download Requirements How the FDK and UDK Process Works Installing the ProComm Software Out-of-Band Download Instructions Initial Installation Screen Page ProComm Installation Screen Connect the RS-232 Cable Preparing to Download the New Software Initial UDK Installation Screen ProComm Status Line Screen Downloading the New Software Enter Chipcom Key Code ProComm Menu Screen ProComm Download Screen Inband Download Instructions UDK Completion ScreenPage Tftp Enter 3Com Key Code Troubleshooting ProComm Problems UDK Error MessagesMessage Troubleshooting Suggestion Ethernet Management Module Problems \PROCOMM EMM Download Error Messages Message TroubleshootingSuggestion EMM Download Error Messages Page Specifications General Specifications Electrical Specifications Environmental Specifications Mechanical Specifications Hardware SpecificationsMemory Special CircuitsPage RS-232 Cable Specifications Table B-1. RS-232 Cable GuidelinesDevice Cable Page Modem Use Auto-answer on first ringPage MIB Groups MIB-II Groups 3Com MIB Groups Technical Support On-line Technical Support Support from Your Network Supplier Email Technical SupportWorld Wide Web Site Support from 3Com Accessing the 3Com MIB Returning Products for Repair 3Com Technical Publications Page Index EMM Snmp Index