Advanced Management

Station Movement Trap

This security measure ensures that when any end station is moved from one switch port to another, an alert (Station Movement Trap) will be sent to the designated trap receiver. The information displayed in the alert is listed in Table 5-1. The station movement is detected when the station’s MAC address (already learned by the switch) appears on a different switchboard.

New Node Detection Trap

This security measure ensures that when any new device is connected to the secured port, an alert (New Node Detection Trap) will be sent to the designated trap receiver. The information shown in the alert is listed in Table 5-1. The new device is detected when it is connected and its MAC address is recognized as one not present in the current table.

Once a device has been connected and has generated traffic on the network, the trap will not be re-sent. If the switch ages out the MAC address of a connected device from its forwarding database, new traffic from that device will result in a New Node trap being sent. The default age-out time is 300 seconds. You may reduce the number of traps sent by lengthening the age-out time, as explained in "Setting the MAC Address Age-Out Time" in Chapter 3.

Enabling and Disabling Duplicated-IP Detection

To enable or disable detection of duplicated IP addresses, access the Security Management menu by typing t in the Configuration menu. Then type d to toggle Duplicated-IP detection from enabled to disabled, or disabled to enabled. By default, Duplicated-IP detection is enabled.

Enabling and Disabling Duplicated-IP Trap

To enable or disable the sending of a trap when a Duplicated-IP is detected, first enable Duplicated-IP detection as explained in the previous section. Then type i in the Security Management menu to toggle Duplicated-IP Trap from enabled to disabled, or disabled to enabled. By default, Duplicated-IP Trap is enabled.

Enabling and Disabling Station Movement Trap

To enable or disable detection of the movement of a station on the IntraChassis 9000, access the Security Management menu by typing t in the Configuration menu. Then type s to toggle the Station Movement Trap from enabled to disabled, or disabled to enabled. By default, the Station Movement Trap is disabled.

Page 5-10

Page 107 Page 109
Page 108
Image 108
Asante Technologies 9000 manual Enabling and Disabling Duplicated-IP Detection, Enabling and Disabling Duplicated-IP Trap
Page 107 Page 109
Top Page Image Contents