Manuals / 3Com / Computer Equipment / Tablet

3Com 5112M-TPLS installation and operation guide Showing Security Intruder List

Models: 5112M-TPLS

1 108

Download 108 pages 10.66 Kb

Page 76

A double asterisk (**) marks entries that have exceeded the EMM capacity of 360 MAC addresses, or the TRMM capacity of 400 MAC addresses. Entries that exceed the 360 or 400 MAC address maximum (that is, entry 361 and greater or entry 401 or greater) are not downloaded.

If your concentrator is near full capacity, or if you have ports connected to bridges, you may wish to perform two or more Autolearn Captures, which may prevent these ports from exceeding the 360 MAC address limit.

For example, to perform two Autolearn Captures:

1.Initiate an Autolearn Capture specifying only some of the modules and ports.

2.Download this information to the Security Module.

3.Initiate the second Autolearn Capture specifying the remaining modules and ports.

4.Download this information to the Security Module.

Showing Security Intruder List

The SHOW SECURITY INTRUDER_LIST command is only available with Advanced EMM Version 4.0. The Security Intruder list contains information regarding the 10 most recent intrusion attempts for a network. This information includes:

❑The MAC address of the intruding station (MAC addresses are available for all Ethernet modules with the exception of the Security Module)

❑The time that has elapsed since the intrusion attempt occurred (in days, hours, minutes, and seconds)

❑A notification if the port was automatically disabled

The oldest entry in the Intruder list is removed when the list is full (10 entries) and a new intrusion attempt occurs.

4 - 18 ONline 10BASE-T Security Module Installation and Operation Guide

Image 76

3Com 5112M-TPLS installation and operation guide Showing Security Intruder List

Contents

Document Number Printed February Model Number 5112M-TPLS ONline 10BASE-T Security Module Installation and Operation Guide3Com Corporation 118 Turnpike Road Southborough, MA U.S.A 508 FAX 508 ii ONline 10BASE-T Security Module Installation and Operation Guide Federal Communications Commission NoticeCanadian Emissions Requirements VDE Class B ComplianceONline 10BASE-T Security Module Installation and Operation Guide Restricted Rightsiv ONline 10BASE-T Security Module Installation and Operation Guide How to Use This Guide Chapter 1 - IntroductionChapter 2 - Designing and Expanding the Network ContentsChapter 3 - Installing and Operating the Module Chapter 4 - Configuring Security Featuresvi ONline 10BASE-T Security Module Installation and Operation Guide Precautionary Procedures Quick Installation ChartAppendix A - Specifications Chapter 5 - TroubleshootingONline 10BASE-T Security Module Installation and Operation Guide Appendix B - Technical Support viii ONline 10BASE-T Security Module Installation and Operation GuideIndex Figures ONline 10BASE-T Security Module Installation and Operation Guidex ONline 10BASE-T Security Module Installation and Operation Guide Tables ONline 10BASE-T Security Module Installation and Operation GuidePage Audience How to Use This GuideONline 10BASE-T Security Module Installation and Operation Guide xiv ONline 10BASE-T Security Module Installation and Operation Guide Structure of This GuideDocument Conventions ConventionIndicates Examplexvi ONline 10BASE-T Security Module Installation and Operation Guide Related DocumentsA Caution. A A Warning. A6-Slot ONline System Concentrator Installation and Operation 3Com DocumentsReference Documents ONline 10BASE-T Security Module Installation and Operation GuidePage The ONline 10BASE-T Security Module 1 IntroductionIntroduction 1 Theory of Operation ApplicationFigure 1-1. ONline 10BASE-T Security Module Application ONline ManagementIntroduction 1 Page Designing and Expanding the Network 2 2 Designing and Expanding the NetworkUnderstanding the General Rules Basic Network RulesRule DefinitionRecommendations/Notes Table 2-1. Seven Basic Network RulesMany LAN products delay the signal every microsecond delay shrinks theTable 2-1. Seven Basic Network Rules Continued RuleRule DefinitionRecommendations/Notes The fiber link distancesLAN Equivalence LAN ProductEquivalent Fiber Table 2-2. LAN Product Equivalent DistancesFiber Backbone, Twisted Pair To-The-Desk Table 2-2. LAN Product Equivalent Distances ContinuedLAN Product Equivalent FiberFiber Backbone, Twisted Pair To-The-Desk Example Figure 2-1. Sample Configuration Distance Calculation Designing and Expanding the Network 2Twisted Pair Backbone, Twisted Pair To-The-Desk Cable GaugeSupports Link Distances Up To Table 2-3. Maximum Link Distance on Twisted PairFigure 2-2. Unshielded Twisted Pair Network Patch PanelsDesigning and Expanding the Network 2 Redundant Links Figure 2-3. Redundant Twisted Pair ConfigurationTo set link redundancy between two Security Modules Designing and Expanding the Network 2Page 3 Installing and Operating the Module Installing and Operating the Module 3Precautionary Procedures Quick Installation ChartProcedure Unpacking ProceduresInstalling the Module Configuring the ModuleLED and Network VerificationUnpacking Procedures Figure 3-1. Security Module Dip Switch SW1 Location Setting the Dip SwitchInstalling and Operating the Module 3 Switch Switch SettingsNetwork Selection Table 3-2. DIP Switch SW1 Network Selection SettingsSetting FunctionFactory Off OnInstalling the Module Installing the Cable Tie-Wrap KitTo install the tie-wrap kit Installing and Operating the Module 3Figure 3-2. Attaching the Tie-Wrap Bracket to the Module 3. Insert the tie-wrap through the opening on the tie-wrap bracketFigure 3-3. Attaching Cables With 90 Connectors Caution Do not fasten the tie-wrap around the module ejectorsFigure 3-4. Installing an ONline 10BASE-T Security Module Installing the ModuleInstalling and Operating the Module 3 Figure 3-5. ONline 10BASE-T Security Module Cable Connection Configuring the Module Installing and Operating the Module 3Port Enable Network AssignmentPort Redundancy ONline set port 3.all mode enable ENTERLink Integrity Module SecurityInstalling and Operating the Module 3 ONline set port 5.all linkintegrity enable ENTERReverting Module Configurations Saving Module ConfigurationsAutopartition Threshold Showing Module Configurations Installing and Operating the Module 3Monitoring the Front Panel Installing and Operating the Module 3 Figure 3-6. Security Module FaceplateColor StateName Table 3-4. Interpretation of the Security Module LEDsNetwork Configuration LED and Network VerificationLED State Installing and Operating the Module 3Page 4 Configuring Security Features Configuring Security Features 4Quick Reference for Configuring Security CommandTable 4-1. Quick Reference for Configuring the Security Module ProcedureProcedure CommandConfiguring Security Features 4. Initiate Autolearning toConfiguring Security Features Eavesdropping SecurityConfiguring Security Features 4 Intrusion DetectionFigure 4-1. Example of Eavesdropping Security Defining Port Security Type Figure 4-2. Example of Intrusion DetectionDefining Port Action on Intrusion Configuring Security FeaturesEnabling Ports Configuring Autolearning MaskONline set security autolearn 3.all mask disable ENTER Configuring Autolearning Configuring Security Features 46. Upon completion of Autolearning, the following message is displayed Defining a MAC Address Manually Configuring Security Features 4ONline set security port 3.1 macaddress 08-54-6f-01-32-08 ENTER ONline set security autolearn 3.1 macaddress 08-54-6f-01-32-08 ENTERDownloading the Autolearning Database ONline set security autolearn 3.1 download ENTERNote overwriting existing addresses in the Security database Autolearn download done downloaded y addresses totalConfiguring Security Mode Configuring Security Features 4Saving Security Configurations Showing Security ConfigurationsReverting Security Configurations Showing Port Configurations Configuring Security Features 4Page Showing Security Autolearn Configuring Security Features 4Showing Security Intruder List Clearing the MAC Address Table Clearing Security ConfigurationsConfiguring Security Features 4 Clearing the Autolearning Database Clearing the Security Intruder ListONline clear security autolearn 3.1 macaddress all ENTER ONline clear security intruderlist ENTER Intruder List clearedEMM Security SNMP Variables Using 3Com MIB Security VariablesConfiguring Security Features 4 Using the Security Module SNMP Variables Configuring Security Features 4 Page Troubleshooting 5 TroubleshootingTroubleshooting 5 Troubleshooting Using the Status LEDs TroubleshootingProblem IndicationTroubleshooting ProblemTroubleshooting 5 LED StateTroubleshooting Using the Activity LEDs Possible ProblemTroubleshooting Solutions Table 5-2. Troubleshooting Using the Activity LEDsTechnical Assistance Troubleshooting 5Page Electrical Specifications A SpecificationsSpecifications A Mechanical Specifications Environmental SpecificationsGeneral Specifications 50-Pin Connector and Cable Specifications AFigure A-1. 50-Pin Cable Male and Female Connectors Trans ceiverPort # PolarityTwisted Pair Connectors and Cables TransTrans Port #Figure A-2. RJ-45 Connector Pinouts Twisted Pair ConnectorsSpecifications A Twisted Pair Cables On-line Technical Support B Technical SupportTechnical Support B Email Technical Support Support from Your Network SupplierWorld Wide Web Site Support from 3Com Technical Support BAccessing the 3Com MIB Returning Products for Repair3Com Technical Publications Technical Support BPage Index NumericsIndex 2 Index Index 4 Index Unpacking Procedures Unshielded Twisted Pair Cable Unshielded Twisted Pair Network Sample ConfigurationUploading Security Configurations Wiring Closet, A-8