Configuring Accounting for ASA

Managing Switch Security

 

 

 

 

Configuring Accounting for ASA

Accounting servers track network resources such as time, packets, bytes, etc., and user activity (when a user logs in and out, how many login attempts were made, session length, etc.). The accounting servers may be located anywhere in the network.

Note the following:

Up to 4 servers may be configured.

The servers may be different types.

ACE cannot be used as an accounting server.

The keyword local must be specified if you want accounting to be performed via the Switch Logging feature in the switch. If local is specified, it must be the last server in the list.

Note that external accounting servers are configured through the aaa radius-serverand aaa ldap-servercommands. These commands are described in “Managing Authentication Servers” in the OmniSwitch 6600 Family Network Configuration Guide.

To enable accounting (logging a user session) for Authenticated Switch Access, use the aaa accounting session command with the relevant server name(s). In this example, the RADIUS and LDAP servers have already been configured through the aaa radius-serverand aaa ldap-servercommands.

-> aaa accounting session rad1 ldap2 local

After this command is entered, accounting will be performed through the rad1 RADIUS server. If that server is unavailable, the LDAP server, ldap2, will be used for accounting. If that server is unavailable, logging will be done locally on the switch through the Switch Logging feature. (For more information about Switch Logging, see the OmniSwitch 6600 Family Network Configuration Guide.)

To remove an individual server from the list of servers, enter the aaa accounting session command with the relevant server name(s), removing the desired server from the list. For example:

-> aaa accounting session rad1 local

The server ldap2 is removed as an accounting server.

To disable accounting for Authenticated Switch Access, use the no form of the aaa accounting session command:

-> no aaa accounting session

Accounting will not be performed for Authenticated Switch Access sessions.

page 8-12

OmniSwitch 6600 Family Switch Management Guide March 2005

Page 183 Page 185
Page 184
Image 184
Alcatel Carrier Internetworking Solutions omniswitch manual Configuring Accounting for ASA
Page 183 Page 185

omniswitch specifications

Alcatel Carrier Internetworking Solutions offers the OmniSwitch series, renowned for its robust capabilities in delivering high-performance networking solutions tailored for a variety of enterprise and service provider environments. The OmniSwitch series is particularly recognized for its scalability, flexibility, and the depth of its feature set, making it a popular choice for organizations that demand reliable and efficient networking solutions.

One of the standout features of the OmniSwitch series is its advanced Layer 2 and Layer 3 switching capabilities, providing organizations with essential support for IP routing and robust Ethernet networking. This versatility ensures that the switch can seamlessly integrate into existing network architectures, facilitating smooth upgrade paths in response to evolving business needs. The OmniSwitch includes support for multiple protocols like RIP, OSPF, and BGP, making it suitable for complex networking topologies.

In terms of performance, OmniSwitch devices are engineered to handle high bandwidth demands. With features such as hardware-based forwarding, they ensure low latency and minimal packet loss, which are critical for applications sensitive to delays such as VoIP and video conferencing. Furthermore, they support Power over Ethernet (PoE), allowing users to power devices like IP phones and security cameras directly through the network.

Security is another key characteristic of the OmniSwitch series. It includes advanced security features such as robust access control lists (ACLs), port security, and built-in support for IEEE 802.1X authentication. These features collectively enhance the security posture of the network, protecting sensitive data and ensuring that only authorized devices can access the network resources.

The OmniSwitch is also designed with redundancy and reliability in mind. Features like Rapid Spanning Tree Protocol (RSTP) and Virtual Router Redundancy Protocol (VRRP) ensure that network uptime is maximized and that failover is swift in the event of a hardware failure. This makes it a viable option for organizations that cannot afford downtime.

In addition to these features, Alcatel's OmniSwitch series comes equipped with a user-friendly management interface. This interface simplifies the setup, configuration, and monitoring of the network, making it accessible even to those with limited networking expertise. Through intuitive dashboards and support for SNMP, administrators can manage their networks effectively.

In conclusion, Alcatel Carrier Internetworking Solutions' OmniSwitch series offers a comprehensive suite of features tailored to meet the needs of modern networks. With its blend of performance, scalability, security, and ease of management, the OmniSwitch stands out as a preferred choice for businesses seeking to enhance their networking infrastructure.
Top Page Image Contents