Configuring Device Security

Configuring Management Security

Checked — The access profile is currently active. Access Profiles cannot be deleted when active.

Unchecked — Disables the active access profile.

2.Click Add. The Add Access Profile Page opens:

Figure 12: Add Access Profile Page

The Add Access Profile Page contains the following fields:

Access Profile Name — Defines the name of a new access profile.

Rule Priority — Defines the rule priority. When the packet is matched to a rule, user groups are either granted permission or denied device management access. The rule number is essential to matching packets to rules, as packets are matched on a first-fit basis. The rule priorities are assigned in the Profile Rules Page.

Management Method — Defines the management method for which the rule is defined. Users with this access profile can access the device using the management method selected. The possible field values are:

All — Assigns all management methods to the rule.

Telnet — Assigns Telnet access to the rule. If selected, users accessing the device using Telnet meeting access profile criteria are permitted or denied access to the device.

Secure Telnet (SSH) — Assigns SSH access to the rule. If selected, users accessing the device using Telnet meeting access profile criteria are permitted or denied access to the device.

HTTP — Assigns HTTP access to the rule. If selected, users accessing the device using HTTP meeting access profile criteria are permitted or denied access to the device.

Secure HTTP (HTTPS) — Assigns HTTPS access to the rule. If selected, users accessing the device using HTTPS meeting access profile criteria are permitted or denied access to the device.

SNMP — Assigns SNMP access to the rule. If selected, users accessing the device using SNMP meeting access profile criteria are permitted or denied access to the device.

Interface — Defines the interface on which the access profile is defined. The possible field values are:

Port — Specifies the port on which the access profile is defined.

LAG — Specifies the LAG on which the access profile is defined.

VLAN — Specifies the VLAN on which the access profile is defined.

Source IP Address — Defines the interface source IP address to which the access profile applies. The Source IP Address field is valid for a subnetwork.

Page 29

Page 30
Image 30
Allied Telesis AT-8000S manual Click Add. The Add Access Profile Page opens

AT-8000S specifications

The Allied Telesis AT-8000S series switches are a range of advanced Layer 2 Ethernet switches designed for efficient networking in various environments. Engineered with performance, reliability, and cost-effectiveness in mind, these switches are ideal for businesses seeking to enhance their network infrastructure.

One of the main features of the AT-8000S series is its high-speed data forwarding capabilities. With support for 10/100/1000 Mbps Ethernet ports, these switches provide fast and reliable connections, enabling seamless data transfer and enhanced communication between devices. The non-blocking switching architecture ensures that full bandwidth is available at all times, maximizing throughput and reducing latency in network traffic.

The AT-8000S series incorporates advanced Layer 2 switching technologies, such as VLAN support, allowing users to segment network traffic for improved performance and security. Virtual Local Area Networks (VLANs) help isolate sensitive data and reduce unnecessary broadcast traffic, enhancing the overall performance of the network.

Quality of Service (QoS) is another significant feature integrated into these switches, prioritizing different classes of network traffic. This functionality ensures that critical applications receive the necessary bandwidth and minimal latency, which is imperative for voice over IP, video conferencing, and other latency-sensitive applications.

In terms of network management, the AT-8000S series provides a variety of options, including an intuitive web-based interface, SNMP support, and the ability to manage switch configurations through console access. This flexibility allows network administrators to monitor performance and manage configurations easily.

The switches are built for durability, featuring a robust design suitable for deployment in various environments, including temperature-sensitive areas. Power over Ethernet (PoE) capability is also available in certain models, allowing network devices like IP cameras and wireless access points to receive power through the same cable as data, simplifying installation and reducing clutter.

Allied Telesis emphasizes security within the AT-8000S series, with features such as port security, DHCP snooping, and IEEE 802.1X authentication to safeguard against unauthorized access and potential threats.

Overall, the Allied Telesis AT-8000S series provides a comprehensive networking solution tailored for modern business needs, combining performance, flexibility, and security to support a growing array of applications and devices within the network.