Configuring Port New Node Detection Trap | Asante Technologies 8000

Advanced Management

Setting	Description

Port Security Type	Level of port security enabled. There are three levels of secu-
	rity:
	• New node detection trap (security level 1)
	• Trusted MAC address forwarding with port lock
	(security level 2)
	• Trusted MAC address forwarding with intruder lock
	(security level 3)

Port New Node Detect	Whether port new node detect trap is currently enabled or dis-
Trap Status	abled.

Port Intruder Detect	Whether port intruder detect trap is currently enabled or dis-
Trap Status	abled.

Port Trusted MAC	MAC address currently specified as the port trusted MAC.
Address

Table 4-4 Port Security Configuration Settings

Configuring Port New Node Detection Trap

The port new node detection trap security measure (also called “port security trap”) ensures that when any new device is connected to the secured port, an alert will be sent to the designated trap receiver. The new device is detected when it is connected to the IntraCore 8000 and its MAC address is recognized as one not present in the current address table. The information shown in the alert is the new node’s MAC address and IP address (if available) and the port to which they are connected.

Once a device has been connected and has generated traffic on the network, the trap will not be re-sent. If the switch ages out the MAC address of a connected device from its forwarding database, new traffic from that device will result in a new node trap being sent. The default age-out time is 300 seconds. You may reduce the number of traps sent by lengthening the age- out time, as explained in “Setting the MAC Address Age-Out Time” in Chapter 3.

By default, New Node detection is disabled.

To enable or disable detection of a new node on the system, you must first set the security level on a port or group of ports to 1. Then, if it is not already enabled, you must enable New Node detection.

To set security level 1 on a port:

Page 4-14

Image 104

Asante Technologies 8000 user manual Configuring Port New Node Detection Trap, Advanced Management Setting Description

Contents

IntraCore Limited Five Year Warranty Table of Contents Viewing Legends for Configuration Settings Configuration Unicast Forwarding Database Configuration Advanced Management Web Browser Management Technical Support MIB StatisticsPage Core Switching Engine IntraCore Architecture Overview Infrastructure Connectivity Network Management, Security, Performance, and ControlLAN MAN/WAN IntraCore Product Family Mance Edge Switches Enterprise Switches Port 10/100 Switch Module IntraCoreExpansion Modules IntraCore Gigabit Ethernet Switch Module 1000Base SX Gbic1000BaseLX Long Haul Gbic 1000BaseLX Gbic Feature Description FeaturesFeatures Introduction Feature Description VLANs Configuration Default Setting Defaults and SpecificationsDefaults and Specifications LEDs Color and Meaning Installation Guidelines Power RequirementsEnvironmental Requirements Cooling and Airflow Installation Overview Step Action to Be Taken Chassis Installation/Placement Installation in an Equipment RackSafety Precautions for Rack Installation Equipment Rack Guidelines Free-Standing/Desktop Placement Equipment Rack Installation Procedure Stacking Switches Two Stack ConfigurationThree or Four Stack Configuration Stacking Switches Four stack configuration Installing Port Expansion Modules Installing Port Expansion Modules Removing a Gbic Installing Gbic InterfacesInstalling a Gbic Gbic Care and Handling Connecting PowerConnecting Power Connecting To Cable Required Connecting to the Network10/100BaseX Ports Cabling Procedures Configuring for Management 1000BaseX Ports Cabling ProceduresBootP Configuration Configuring for Management Connecting To a Console Management Options Out-of-Band ManagementManagement Options Method Type Description In-Band Management Telnet Web Browser SNMP-Based Management Installation and Setup Configuration Local Management Interface Logging Accessing a Submenu Main MenuExiting a Submenu Local Management Interface Viewing General Information 4MB Setting Description Viewing General Information Menu Item Description Configuration MenuConfiguration Menu Options Configuration Menu Snmp Configuration Changing System Administration Info System Administration ConfigurationCurrent Settings System IP Configuration System IP Configuration Describes each setting on the System IP Configuration Menu Changing System IP Information Image Banks Bootstrap ConfigurationBootstrap Configuration Loading Software Locally Remote Bootstrap Configuration Menu Loading Software Remotely Current Settings Date Rently running on the IntraCore Load Mode Bootstrap Configuration Snmp Configuration Empty Snmp Configuration Changing Community Strings Enabling Authentication Traps Adding or Updating a Trap Receiver Deleting a Trap Receiver Port ConfigurationPort Configuration 10 Port Configuration Menu for 10/100BaseTX modules Viewing Legends for Configuration Settings 11 Legends for all Port Configuration Menus Current Port Settings Enabling or Disabling a Port Configuring Auto-Negotiation Toggling Half to Full Duplex Configuring a Port ManuallyToggling Port Link Speed Configuring 1000BaseX Ports 12 Port Configuration Menu for 1000BaseX ports Enabling or Disabling a Port Advanced Port Configuration Advanced Port ConfigurationAdvanced 10/100BaseTX Port Configuration Advanced 1000BaseX Port Configuration 14 Advanced Port Configuration Menu 1000BaseX port Setting the Maximum Broadcast or Multicast Rate Flow Control Enabling or Disabling 802.3x Flow Control Global Port Configuration Global Port ConfigurationSetting Port Default Priority 15 Global Port Configuration Menu 10/100BaseTX ports Unicast Forwarding Database Configuration Unicast Forwarding Database Configuration Displaying the Forwarding Database Age-out Time Unicast Forwarding Database Configuration Searching for a MAC Address MPT Setting the MAC Address Age-Out Time 20 MAC Address Search summary Image File Downloading Configuration 21 Image File Downloading Configuration Menu Image File Downloading Configuration Image Downloading Through Tftp 10 describes each setting on the Tftp Image Downloading Menu Performing a Software Upgrade at Runtime Serial Downloading Configuration 23 X/Y/Z Modem Image File Downloading Menu Performing a Software Upgrade 24 Baud Rate Menu System Reset Configuration System Reset Configuration Option Description Resetting the IntraCoreCurrent Options Viewing the System Log Scheduling a System ResetViewing the System Log Clearing the System Log 26 System Log Menu User Interface Configuration User Interface Configuration Configuration Setting Description Changing the Password Setting Console Idle Time-out PeriodSetting Telnet Idle Time-out Period Page Viewing Statistics 29 Systems Module Map Configuration 31 Port Statistics Counters since reset Configuration Spanning Tree Protocol Overview How It Works Enabling and Disabling STP Configuring Spanning Tree Parameters Spanning Tree ParametersBridge Priority Hello Time Port Priority Forward DelayMaximum Age Current STP Settings ID is the Bridge Priority. If the Bridge ID is shown as Spanning Tree Port Configuration Setting Port Priority and Path Cost Snmp and Rmon Management Snmp and Rmon Management Alarm Group Rmon ManagementEthernet Statistics Group Ethernet History Group Security Option Description Action Security ManagementSecurity Management Security Traps Duplicated IP Detection and Trap Enabling and Disabling Duplicated IP DetectionEnabling and Disabling Duplicated IP Trap Viewing a List of Duplicated IP Addresses Enabling and Disabling Station Movement Trap Similar to Figure Configuring Port Security Port Security Configuration Menu Configuring Port New Node Detection Trap Advanced Management Setting Description Configuring Port Lock and Intruder Lock Configuring Security Level 2 or Level Inserting/Modifying a Port Trusted MAC Address Setting the Intruder TrapResetting Security to Defaults Vlan Specifications for the IntraCore Vlan Management Other Vlan Features in IntraCore Overview of VLANsBenefits of Vlan Management Vlan Management Tagged and Untagged Frames Abbreviations Default Vlan Vlan GroupsPort Vlan ID Vlan Port Membership and Untagging Independent vs. Shared Learning Inter-Switch Links Port Receive Ingress VLANs Untagset Frame Type Filter All Frames Disabled Yes Configuring Vlan Management Describes each setting on the Vlan Management Menu Configuring Static Vlan Groups FID Creating a Vlan Vlan Index Enabling and Disabling Management Access Removing a VlanNaming a Vlan Adding Port Members Moving Ports to This Vlan Advanced Static Vlan ConfigurationDeleting Port Members Specifying Tagging or No Tagging for a Port Specifying Shared or Independent Address Learning Inserting and Removing MAC Addresses Configuring Vlan Port Attributes 10 Vlan Port Configuration Menu Setting the Port Vlan ID Enabling and Disabling Port Ingress Filtering Configuring Port Receive Frame TypeAdding and Deleting VLANs from the Port Adding an ISL Port to VLANs Configuring Inter-Switch LinksEnabling and Disabling Port Gvrp Status Configuring Tagging for the ISL Port on Each Vlan Configuring the ISL Port to Receive Tagged Frames Displaying a Summary of Vlan Groups Displaying a Vlan Port Summary Displaying a Vlan FID-VID Association Summary Resetting Vlan Configuration to DefaultsConfiguring Gvrp 15 Gvrp Configuration Menu Disabling Gvrp on a Group of Ports Enabling and Disabling System GvrpEnabling Gvrp on a Group of Ports Configuring Vlan Forbidden Sets 16 Vlan Forbidden Set Configuration Menu Configuring Registration Fixed Sets 17 Vlan Registration Fixed Set Configuration Menu Multicast Traffic Management Multicast Addresses IP Multicast Quality of Service Rsvp Igmp SnoopingGmrp Garp Multicast Registration Protocol Multicast Traffic Management Configuring Multicast Traffic Management 18 Multicast Traffic Management Menu Enabling and Multicast Poliocy-based Quality of Service Enabling and Disabling GmrpEnabling and Disabling Igmp Snooping Displaying a Summary of Group Addresses Multicast Forwarding Database Configuration 19 Summary of Group Addresses Removing a Multicast Group Address Adding ports to the Selected AddressInserting a Multicast Group Address Advanced Management Accessing with a Web Browser Web Browser Management Web Browser Management Overview Port Activity Indicator Management ButtonsFront Panel Button Front Panel Display Port Selector Feature Port Configuration and Statistics Genl Info General Information Button Genl Info General Information Button Statistics Bar Chart Statistics Button Line chart of received frames for a port Statistics Button -7 the counters for a port are displayed in bar graph form Bar graph of counters for a port Port Config Port Configuration Button Port Configuration table Span Tree Spanning Tree Button Span Tree Spanning Tree Button 10 Snmp Configuration Snmp Button Addr Address Table Button Addr Address Table Button Port Configuration Vlan Button Vlan Configuration Vlan Button 14 Vlan Group Configuration options Creating or Modifying a Vlan Adding and Deleting Port Members 16 Add/Delete Port Member dialog box Duplicate IP Button Duplicate IP Button Web Browser Management Technical Support Contacting Technical Support A-2 FCS Errors MIB Object Definitions for CountersReadable Frames Readable Octets Short Events Alignment ErrorsFrame Too Longs MIB Object Definitions for Counters RuntsCollisions Late Events Auto Partitions Very Long EventsMismatches Total Errors