Configuring Device Security

Configuring Network Security

Auto — Enables port-based authentication on the device. The interface moves between an authorized or unauthorized state based on the authentication exchange between the device and the client.

Authorized — Indicates the interface is in an authorized state without being authenticated. The interface re-sends and receives normal traffic without client port-based authentication.

Unauthorized — Denies the selected interface system access by moving the interface into unauthorized state. The device cannot provide authentication services to the client through the interface.

Admin Port Control — Indicates the port state. The possible field values are:

Auto —Enables port-based authentication on the device. The interface moves between an authorized or unauthorized state based on the authentication exchange between the device and the client.

ForceAuthorized — Indicates the interface is in an authorized state without being authenticated. The interface re-sends and receives normal traffic without client port-based authentication.

ForceUnauthorized — Denies the selected interface system access by moving the interface into unauthorized state. The device cannot provide authentication services to the client through the interface.

Enble Guest VLAN — Indicates if the Guest VLAN is enabled. The possible field values are:

Checked — Enables the Guest VLAN.

Unchecked — Disables the Guest VLAN. This is the default value.

Enable Periodic Reauthentication — Permits immediate port reauthentication. The possible field values are:

Enable — Enables immediate port reauthentication. This is the default value.

Disable — Disables port reauthentication.

Reauthentication Period — Displays the time span (in seconds) in which the selected port is reauthenticated. The field default is 3600 seconds.

Reauthenticate Now — Reauthenticates the port immediately.

Authenticator State — Displays the current authenticator state (as defined in Admin Port Control).

Quiet Period — Displays the number of seconds that the device remains in the quiet state following a failed authentication exchange. The possible field range is 0-65535. The field default is 60 seconds.

Resending EAP — Defines the amount of time (in seconds) that lapses before EAP requests are resent. The field default is 30 seconds.

Max EAP Requests — Displays the total amount of EAP requests sent. If a response is not received after the defined period, the authentication process is restarted. The field default is 2 retries.

Supplicant Timeout — Displays the amount of time (in seconds) that lapses before EAP requests are resent to the supplicant. The field default is 30 seconds.

Server Timeout — Displays the amount of time (in seconds) that lapses before the device re-sends a request to the authentication server. The field default is 30 seconds.

Termination Cause — Indicates the reason for which the port authentication was terminated.

2.Click Apply. The port authentication configuration is saved and the device is updated.

3.Click Save Config on the menu to save the changes permanently.

Page 51

Page 52
Image 52
Allied Telesis AT-8000S manual Configuring Device Security

AT-8000S specifications

The Allied Telesis AT-8000S series switches are a range of advanced Layer 2 Ethernet switches designed for efficient networking in various environments. Engineered with performance, reliability, and cost-effectiveness in mind, these switches are ideal for businesses seeking to enhance their network infrastructure.

One of the main features of the AT-8000S series is its high-speed data forwarding capabilities. With support for 10/100/1000 Mbps Ethernet ports, these switches provide fast and reliable connections, enabling seamless data transfer and enhanced communication between devices. The non-blocking switching architecture ensures that full bandwidth is available at all times, maximizing throughput and reducing latency in network traffic.

The AT-8000S series incorporates advanced Layer 2 switching technologies, such as VLAN support, allowing users to segment network traffic for improved performance and security. Virtual Local Area Networks (VLANs) help isolate sensitive data and reduce unnecessary broadcast traffic, enhancing the overall performance of the network.

Quality of Service (QoS) is another significant feature integrated into these switches, prioritizing different classes of network traffic. This functionality ensures that critical applications receive the necessary bandwidth and minimal latency, which is imperative for voice over IP, video conferencing, and other latency-sensitive applications.

In terms of network management, the AT-8000S series provides a variety of options, including an intuitive web-based interface, SNMP support, and the ability to manage switch configurations through console access. This flexibility allows network administrators to monitor performance and manage configurations easily.

The switches are built for durability, featuring a robust design suitable for deployment in various environments, including temperature-sensitive areas. Power over Ethernet (PoE) capability is also available in certain models, allowing network devices like IP cameras and wireless access points to receive power through the same cable as data, simplifying installation and reducing clutter.

Allied Telesis emphasizes security within the AT-8000S series, with features such as port security, DHCP snooping, and IEEE 802.1X authentication to safeguard against unauthorized access and potential threats.

Overall, the Allied Telesis AT-8000S series provides a comprehensive networking solution tailored for modern business needs, combining performance, flexibility, and security to support a growing array of applications and devices within the network.