Manuals / Asante Technologies / Computer Equipment / Switch

Asante Technologies 8000 user manual Configuring Port New Node Detection Trap

Models: 8000

1 168

Download 168 pages 50.89 Kb

Page 104

Advanced Management

Setting	Description

Port Security Type	Level of port security enabled. There are three levels of secu-
	rity:
	• New node detection trap (security level 1)
	• Trusted MAC address forwarding with port lock
	(security level 2)
	• Trusted MAC address forwarding with intruder lock
	(security level 3)

Port New Node Detect	Whether port new node detect trap is currently enabled or dis-
Trap Status	abled.

Port Intruder Detect	Whether port intruder detect trap is currently enabled or dis-
Trap Status	abled.

Port Trusted MAC	MAC address currently specified as the port trusted MAC.
Address

Table 4-4 Port Security Configuration Settings

Configuring Port New Node Detection Trap

The port new node detection trap security measure (also called “port security trap”) ensures that when any new device is connected to the secured port, an alert will be sent to the designated trap receiver. The new device is detected when it is connected to the IntraCore 8000 and its MAC address is recognized as one not present in the current address table. The information shown in the alert is the new node’s MAC address and IP address (if available) and the port to which they are connected.

Once a device has been connected and has generated traffic on the network, the trap will not be re-sent. If the switch ages out the MAC address of a connected device from its forwarding database, new traffic from that device will result in a new node trap being sent. The default age-out time is 300 seconds. You may reduce the number of traps sent by lengthening the age- out time, as explained in “Setting the MAC Address Age-Out Time” in Chapter 3.

By default, New Node detection is disabled.

To enable or disable detection of a new node on the system, you must first set the security level on a port or group of ports to 1. Then, if it is not already enabled, you must enable New Node detection.

To set security level 1 on a port:

Page 4-14

Image 104

Asante Technologies 8000 user manual Configuring Port New Node Detection Trap, Advanced Management Setting Description

Contents

IntraCore Limited Five Year Warranty Table of Contents Viewing Legends for Configuration Settings ConfigurationUnicast Forwarding Database Configuration Advanced ManagementWeb Browser Management Technical Support MIB StatisticsPage Core Switching Engine IntraCore Architecture OverviewInfrastructure Connectivity Network Management, Security, Performance, and ControlLAN MAN/WANIntraCore Product Family ManceEdge Switches Enterprise SwitchesPort 10/100 Switch Module IntraCoreExpansion Modules IntraCoreGigabit Ethernet Switch Module 1000Base SX Gbic1000BaseLX Long Haul Gbic 1000BaseLX GbicFeature Description FeaturesFeatures Introduction Feature Description VLANsConfiguration Default Setting Defaults and SpecificationsDefaults and Specifications LEDs Color and MeaningInstallation Guidelines Power RequirementsEnvironmental Requirements Cooling and AirflowInstallation Overview Step Action to Be TakenChassis Installation/Placement Installation in an Equipment RackSafety Precautions for Rack Installation Equipment Rack GuidelinesFree-Standing/Desktop Placement Equipment Rack Installation ProcedureStacking Switches Two Stack ConfigurationThree or Four Stack Configuration Stacking SwitchesFour stack configuration Installing Port Expansion Modules Installing Port Expansion ModulesRemoving a Gbic Installing Gbic InterfacesInstalling a Gbic Gbic Care and Handling Connecting PowerConnecting Power Connecting To Cable Required Connecting to the Network10/100BaseX Ports Cabling Procedures Configuring for Management 1000BaseX Ports Cabling ProceduresBootP Configuration Configuring for ManagementConnecting To a Console Management Options Out-of-Band ManagementManagement Options Method Type DescriptionIn-Band Management TelnetWeb Browser SNMP-Based ManagementInstallation and Setup Configuration Local Management Interface LoggingAccessing a Submenu Main MenuExiting a Submenu Local Management InterfaceViewing General Information 4MBSetting Description Viewing General InformationMenu Item Description Configuration MenuConfiguration Menu Options Configuration Menu Snmp ConfigurationChanging System Administration Info System Administration ConfigurationCurrent Settings System IP Configuration System IP ConfigurationDescribes each setting on the System IP Configuration Menu Changing System IP InformationImage Banks Bootstrap ConfigurationBootstrap Configuration Loading Software Locally Remote Bootstrap Configuration Menu Loading Software RemotelyCurrent Settings Date Rently running on the IntraCore Load ModeBootstrap Configuration Snmp Configuration EmptySnmp Configuration Changing Community StringsEnabling Authentication Traps Adding or Updating a Trap ReceiverDeleting a Trap Receiver Port ConfigurationPort Configuration 10 Port Configuration Menu for 10/100BaseTX modules Viewing Legends for Configuration Settings 11 Legends for all Port Configuration MenusCurrent Port Settings Enabling or Disabling a PortConfiguring Auto-Negotiation Toggling Half to Full Duplex Configuring a Port ManuallyToggling Port Link Speed Configuring 1000BaseX Ports 12 Port Configuration Menu for 1000BaseX portsEnabling or Disabling a Port Advanced Port Configuration Advanced Port ConfigurationAdvanced 10/100BaseTX Port Configuration Advanced 1000BaseX Port Configuration 14 Advanced Port Configuration Menu 1000BaseX portSetting the Maximum Broadcast or Multicast Rate Flow ControlEnabling or Disabling 802.3x Flow Control Global Port Configuration Global Port ConfigurationSetting Port Default Priority 15 Global Port Configuration Menu 10/100BaseTX ports Unicast Forwarding Database Configuration Unicast Forwarding Database ConfigurationDisplaying the Forwarding Database Age-out TimeUnicast Forwarding Database Configuration Searching for a MAC Address MPTSetting the MAC Address Age-Out Time 20 MAC Address Search summaryImage File Downloading Configuration 21 Image File Downloading Configuration MenuImage File Downloading Configuration Image Downloading Through Tftp10 describes each setting on the Tftp Image Downloading Menu Performing a Software Upgrade at Runtime Serial Downloading Configuration 23 X/Y/Z Modem Image File Downloading MenuPerforming a Software Upgrade 24 Baud Rate Menu System Reset Configuration System Reset ConfigurationOption Description Resetting the IntraCoreCurrent Options Viewing the System Log Scheduling a System ResetViewing the System Log Clearing the System Log 26 System Log MenuUser Interface Configuration User Interface ConfigurationConfiguration Setting Description Changing the Password Setting Console Idle Time-out PeriodSetting Telnet Idle Time-out Period Page Viewing Statistics 29 Systems Module MapConfiguration 31 Port Statistics Counters since reset Configuration Spanning Tree Protocol OverviewHow It Works Enabling and Disabling STPConfiguring Spanning Tree Parameters Spanning Tree ParametersBridge Priority Hello TimePort Priority Forward DelayMaximum Age Current STP Settings ID is the Bridge Priority. If the Bridge ID is shown asSpanning Tree Port Configuration Setting Port Priority and Path CostSnmp and Rmon Management Snmp and Rmon ManagementAlarm Group Rmon ManagementEthernet Statistics Group Ethernet History GroupSecurity Option Description Action Security ManagementSecurity Management Security Traps Duplicated IP Detection and Trap Enabling and Disabling Duplicated IP DetectionEnabling and Disabling Duplicated IP Trap Viewing a List of Duplicated IP AddressesEnabling and Disabling Station Movement Trap Similar to FigureConfiguring Port Security Port Security Configuration MenuConfiguring Port New Node Detection Trap Advanced Management Setting DescriptionConfiguring Port Lock and Intruder Lock Configuring Security Level 2 or Level Inserting/Modifying a Port Trusted MAC Address Setting the Intruder TrapResetting Security to Defaults Vlan Specifications for the IntraCore Vlan ManagementOther Vlan Features in IntraCore Overview of VLANsBenefits of Vlan Management Vlan ManagementTagged and Untagged Frames AbbreviationsDefault Vlan Vlan GroupsPort Vlan ID Vlan Port Membership and UntaggingIndependent vs. Shared Learning Inter-Switch Links Port Receive Ingress VLANs Untagset Frame Type FilterAll Frames Disabled Yes Configuring Vlan Management Describes each setting on the Vlan Management MenuConfiguring Static Vlan Groups FIDCreating a Vlan Vlan IndexEnabling and Disabling Management Access Removing a VlanNaming a Vlan Adding Port MembersMoving Ports to This Vlan Advanced Static Vlan ConfigurationDeleting Port Members Specifying Tagging or No Tagging for a Port Specifying Shared or Independent Address LearningInserting and Removing MAC Addresses Configuring Vlan Port Attributes 10 Vlan Port Configuration MenuSetting the Port Vlan ID Enabling and Disabling Port Ingress Filtering Configuring Port Receive Frame TypeAdding and Deleting VLANs from the Port Adding an ISL Port to VLANs Configuring Inter-Switch LinksEnabling and Disabling Port Gvrp Status Configuring Tagging for the ISL Port on Each Vlan Configuring the ISL Port to Receive Tagged FramesDisplaying a Summary of Vlan Groups Displaying a Vlan Port SummaryDisplaying a Vlan FID-VID Association Summary Resetting Vlan Configuration to DefaultsConfiguring Gvrp 15 Gvrp Configuration Menu Disabling Gvrp on a Group of Ports Enabling and Disabling System GvrpEnabling Gvrp on a Group of Ports Configuring Vlan Forbidden Sets 16 Vlan Forbidden Set Configuration MenuConfiguring Registration Fixed Sets 17 Vlan Registration Fixed Set Configuration MenuMulticast Traffic Management Multicast AddressesIP Multicast Quality of Service Rsvp Igmp SnoopingGmrp Garp Multicast Registration Protocol Multicast Traffic ManagementConfiguring Multicast Traffic Management 18 Multicast Traffic Management MenuEnabling and Multicast Poliocy-based Quality of Service Enabling and Disabling GmrpEnabling and Disabling Igmp Snooping Displaying a Summary of Group AddressesMulticast Forwarding Database Configuration 19 Summary of Group AddressesRemoving a Multicast Group Address Adding ports to the Selected AddressInserting a Multicast Group Address Advanced Management Accessing with a Web Browser Web Browser ManagementWeb Browser Management Overview Port Activity Indicator Management ButtonsFront Panel Button Front Panel DisplayPort Selector Feature Port Configuration and StatisticsGenl Info General Information Button Genl Info General Information ButtonStatistics Bar Chart Statistics ButtonLine chart of received frames for a port Statistics Button-7 the counters for a port are displayed in bar graph form Bar graph of counters for a port Port Config Port Configuration Button Port Configuration tableSpan Tree Spanning Tree Button Span Tree Spanning Tree Button10 Snmp Configuration Snmp ButtonAddr Address Table Button Addr Address Table ButtonPort Configuration Vlan ButtonVlan Configuration Vlan Button14 Vlan Group Configuration options Creating or Modifying a VlanAdding and Deleting Port Members 16 Add/Delete Port Member dialog box Duplicate IP Button Duplicate IP ButtonWeb Browser Management Technical Support Contacting Technical SupportA-2 FCS Errors MIB Object Definitions for CountersReadable Frames Readable OctetsShort Events Alignment ErrorsFrame Too Longs MIB Object Definitions for Counters RuntsCollisions Late Events Auto Partitions Very Long EventsMismatches Total Errors