Configuring Security Features | 3Com 5112M-TPLS specification

Configuring Security Features

This section describes the security features of the Security Module, including Eavesdropping Security and Intrusion Detection. Included in this section are the features you must configure to enable security on the module:

❑Define port security type

❑Define port action on intrusion

❑Configure Autolearning Mask

❑Enable ports

❑Configure autolearning

❑Download the Autolearning database

Security configurations from the Security Module are automatically uploaded to a newly elected master management module or installation of a new master management module. This automatic uploading feature ensures that the Security Module configurations are always retained and eliminates the need for you to reconfigure the new master.

Note: If you issue security commands (with the exception of MAC address settings) specifying the 'all' option, all Security Module ports in the concentrator are affected by the command. If you are running an Advanced EMM, all other Ethernet modules in the concentrator that support security are also affected.

Eavesdropping Security

Eavesdropping security is a port jamming feature that prevents users from accessing data transmitted to other users on the network. This type of security:

4 - 4 ONline 10BASE-T Security Module Installation and Operation Guide

Image 62

3Com 5112M-TPLS installation and operation guide Configuring Security Features, Eavesdropping Security

Contents

Page VDE Class B Compliance Restricted Rights Page Contents Installing and Operating the Module Troubleshooting Appendix B Technical Support Figures Page Tables Page How to Use This Guide Audience Structure of This Guide Usr/snm/agents Document ConventionsConvention Indicates Example Related Documents 3Com Documents Reference DocumentsPage Introduction ONline 10BASE-T Security Module Theory of Operation Application ONline Management ONline 10BASE-T Security Module ApplicationPage Designing and Expanding the Network Understanding the General Rules Basic Network Rules Seven Basic Network Rules Rule Definition Recommendations/Notes Certain LAN devices Seven Basic Network Rules LAN Product Equivalent Fiber LAN EquivalenceLAN Product Equivalent Distances Fiber Backbone, Twisted Pair To-The-Desk Fiber Backbone, Twisted Pair To-The-Desk Example Sample Configuration Distance Calculation Cable Gauge Supports Link Distances Up To Twisted Pair Backbone, Twisted Pair To-The-DeskMaximum Link Distance on Twisted Pair Patch Panels Unshielded Twisted Pair Network Redundant Twisted Pair Configuration Redundant Links Designing and Expanding the Network 2 Page Installing and Operating the Module Procedures for Completing Installation Precautionary ProceduresQuick Installation Chart Step Procedure Reference Installing the Module Unpacking Procedures Setting the Dip Switch Security Module Dip Switch SW1 Location DIP Switch SW1 Network Selection Settings Switch Network Selection Switch Settings Off On DIP Switch SW1 Security and Link Integrity SettingsSwitch Function Factory Setting Installing the Module Installing the Cable Tie-Wrap Kit Attaching the Tie-Wrap Bracket to the Module Attaching Cables With 90 Connectors Installing the Module Installing an ONline 10BASE-T Security Module ONline 10BASE-T Security Module Cable Connection Configuring the Module Port Redundancy Port EnableNetwork Assignment Link Integrity Module Security Autopartition Threshold Saving Module ConfigurationsReverting Module Configurations Showing Module Configurations Show Module Show Module Verbose Show Port Show Port Verbose Monitoring the Front Panel Security Module Faceplate Interpretation of the Security Module LEDs Color State Indicates Name Network Check Codes LED State Network ConfigurationLED and Network Verification Page Configuring Security Features Procedure Command Quick Reference for Configuring SecurityQuick Reference for Configuring the Security Module SET Security Autolearn Configuring Security Features Eavesdropping Security Intrusion Detection Example of Eavesdropping Security Defining Port Security Type Example of Intrusion Detection Defining Port Action on Intrusion Configuring Autolearning Mask Enabling Ports Configuring Autolearning Autolearn capture done learned 0 addresses total Defining a MAC Address Manually Downloading the Autolearning Database Configuring Security Mode Reverting Security Configurations Showing Security ConfigurationsSaving Security Configurations Showing Port Configurations Eavesdrop None ETHERNET1 Showing Security Autolearn Showing Security Intruder List Clearing Security Configurations Clearing the MAC Address Table Clearing the Autolearning Database Clearing the Security Intruder List Using 3Com MIB Security Variables EMM Security Snmp Variables Using the Security Module Snmp Variables Configuring Security Features 4 Page Troubleshooting Troubleshooting Troubleshooting Using the Status LEDs Troubleshooting Using the Port Status LEDs Troubleshooting Using the Port Status LEDs LED State Possible Problem Troubleshooting Solutions Troubleshooting Using the Activity LEDsTroubleshooting Using the Activity LEDs Technical Assistance Page Specifications Electrical Specifications General Specifications Environmental SpecificationsMechanical Specifications Pin Connector and Cable Figure A-1 -Pin Cable Male and Female Connectors Port # Function Table A-1 -Pin Cable Pinouts and Port AssignmentsHub Trans Ceiver Polarity Hub Twisted Pair Connectors and CablesHub Trans Port # Twisted Pair Connectors Figure A-2. RJ-45 Connector Pinouts Twisted Pair Cables Technical Support On-line Technical Support World Wide Web Site Support from Your Network SupplierEmail Technical Support Support from 3Com Accessing the 3Com MIB Returning Products for Repair 3Com Technical Publications Page Index Activity LEDs, 3-18,3-20 Quick Reference Chart Security Type Default Setting Index