Security

You can designate a device as a trap receiver as explained in "Adding or Updating a Trap Receiver" in the "SNMP Configuration" section of Chapter 3. This receiver device will get the following information from the specified traps.

Trap

Duplicated IP

Station Movement

New Node

 

 

 

 

Informa-

MAC addresses of

Station’s MAC address and

Intruder’s MAC

tion shown:

both stations using

IP address (if available);

address and IP

 

IP address; number

number of port

address (if available);

 

of port(s) on switch

 

number of port

 

 

 

 

Table 5-1 Security Traps

The following subsections describe each of the three security options in detail.

Duplicated IP Detection/Trap

These two security measures allow you to set up detection and the sending of a trap (alert) for the use of a single IP address by two stations. If you enable Duplicated IP detection, the switch starts monitoring the broadcast ARP (Address Resolution Protocol) traffic from all of its ports, to detect duplicated IP address conditions. If you enable detection and the sending of a trap, then the designated trap receiver will get an alert each time a duplicated IP address is used on the system.

Note: In order to send Duplicated IP traps, Duplicated IP detection must be enabled.

Page 5-9

Page 107
Image 107
Asante Technologies 9000 manual Duplicated IP Detection/Trap, Trap Duplicated IP Station Movement New Node