MAC Port Security Overview | Avaya C360 specification

Port Security

MAC Port Security

This section provides information and instructions about using the MAC Port Security feature. It includes the following topics:

•MAC Port Security Overview - An overview of MAC Port Security.

•Configuring MAC Port Security - Instructions on how to configure MAC Port Security.

*Note: In the C360, MAC Security implementation applies specifically to the 10/100 BaseT and SFP/Giga ports.

MAC Port Security Overview

The MAC Port Security function is intended to filter incoming frames with an unauthorized source MAC address (SA) on a secured port.

When a frame is received on a secured port, its SA is checked against the MAC Address Table. If the SA is not found in the MAC Address Table or it is found but has a different port location than the incoming frame, the frame is rejected without being learned. A message is then sent to the Agent.

The Agent reports the attempted intrusion with an SNMP security violation trap containing the intruder's MAC address. To prevent the flooding of the Console's trap log or network, the Agent sends an intruder alert every 5 seconds for the first 3 times a specific intruder is detected on a port, and then every 15 minutes if the intrusion continues.

Configuring MAC Port Security

To apply MAC Port Security to a selected port:

1.Select Configure > MAC Port Security. The MAC Port Security dialog box opens.

Avaya C360 Manager User Guide

203

Image 217

Avaya C360 manual MAC Port Security Overview, Configuring MAC Port Security

Contents

Avaya Integrated Management 14-300164 Issue June Copyright 2005, Avaya Inc All Rights Reserved SOC Installation and Repairs Table of Contents VoIP Engine Configuration Port Rmon Port Mirroring Device Index Who Should Use This Guide Purpose of This GuideOrganization of This Guide Preface Xiii Xiv Avaya C360 Manager Overview Introduction Avaya C360 Manager as Part of Avaya Integrated Management Starting the Avaya C360 Manager Avaya C360 Manager via Web Management Network Password Dialog Box Application Tabs User Interface Managing Tables Table SymbolsStatus Line Communication Statuses Chapter Device Manager Application Toolbar Application ToolbarButton Description Menu Item Displays addresses of devices Get/Set Toolbar Get/Set ToolbarButton Description Desktop Tree View Avaya C360 Chassis View Chassis View Color Meaning Chassis View Port/LAG ColorsGbic Port Status Gbic Port Status Selecting Elements Dialog Area Avaya C360 Device Manager Modes Refreshing Device Information Using Dialog Boxes and TablesDialog Box Icons Icon Function Opening the Help to the Contents Using Avaya C360 Device Manager HelpOpening the Help to a Topic of Interest Chapter Device Configuration Device Information General Tab Viewing Device Information Device Information Fields General Tab Device Information Advanced TabField Description Device Information Fields Advanced Tab Device Information Dialog Box Advanced Tab STP Bridge Max Age Common Spanning Tree 802.1d IEEE-802.1x Mode Viewing Module Configuration Module Configuration Fields General Tab Module Configuration General TabPosition in which the module is located There can be up to 10 modules in a device MM711 MM710MM712 MM714 Fatal Route Mode Module Configuration Dialog Box Advanced Tab Module Configuration Advanced Tab Bups Status Module Configuration Fields Advanced Tab Lldp Viewing LAG Configuration LAG Configuration Fields General Tab LAG Configuration General Tab Priority Possible values are User Priority 0 .. User Gigabit Ethernet 1000 Mbps Fast Ethernet 100 MbpsNo Flow Control 802.3x Sym LAG Configuration Advanced Tab LAG Configuration Fields Advanced Tab LAG Configuration Dialog Box Advanced Tab LAG STP State Administrative point-to-point status Viewing Port Configuration Port Configuration Dialog Box General Tab Port Configuration General Tab Port Configuration Fields General Tab Priority level of packets exiting the port or Operational state of the Auto-Negotiation Port Configuration Dialog Box Advanced Tab Port Configuration Advanced Tab Port STP State Port Configuration Fields Advanced Tab STP Priority Classification of a specific port. Port Port Configuration Lldp Tab Port Configuration Dialog Box Lldp Tab Port Configuration Fields Lldp Tab Resetting the Device Chapter PoE Overview Power over Ethernet Viewing PoE Information Viewing PoE ConfigurationViewing PoE Port Information Module Configuration Power Fields Module Configuration Power Tab Port Configuration Power Fields Port Configuration Power Tab High CriticalLow Chapter G700 Media Gateway Overview G700 Media Gateway Viewing Module Configuration G700 Configuration MG Config Parameters General MGP Config Tab General Parameters MGP Config IP Address Settings Parameters IP Address SettingsVlan Settings MGP Config Vlan Settings Parameters QoS Parameters MGP Config QoS Parameters MGC Config MGC IP Settings Parameters MGC IP SettingsMGC Lists Chapter Media Module Configuration Dialog Box Viewing Media Module Configuration Media Module Configuration Parameters Avaya Site Administration G700 Media Gateway Chapter Configuring the VoIP Engine VoIP Engine ConfigurationVoIP Overview VoIP resources General Parameters VoIP Resources Call controller for RTP traffic. The value Maximum range of UDP ports assigned byRanges between 3 QoS VoIP resources Rtcp monitoring Parameters Rtcp Monitoring VoIP resources Rsvp Parameters Rsvp VoIP config Parameters VoIP Config VoIP status Parameters VoIP Status Chapter X330WAN Overview WAN Configuration Expansion Module Dialog Box Avaya X330WAN Expansion Module Configuration E1/T1 Port Configuration Dialog Box E1/T1 Port Configuration CRC4 E1/T1 Port Configuration ParametersNo-CRC4 Unframed B8ZS HDB3AT&T No Loopback Channel Group PPP Session Information Viewing Channel Group Information Ds0 bundle Channel Group Dialog Box Channel Group Parameters Frame Relay Channel Group Dialog BoxFlags Mark Advanced PPP Channel Group Dialog Box PPP Parameters Channel Group Dialog Box PPP Tab Open Channel Group Frame Relay InformationNot-Opened Channel Group Dialog Box Frame Relay Tab Enable DisableQ933a Lmi-rev1 Channel Group Dialog Box Frame Relay Parameters Channel Group Dialog Box Sub-Interfaces Tab Name of the interface Channel Group Dialog Box Sub-Interfaces Parameters DLCIs Channel Group Dialog Box DLCIs Tab Primary Channel Group Dialog Box DLCIs ParametersMedium Normal Viewing the Channel Groups Table Managing Channel Groups FrameRelay Channel Groups Table Parameters Channel Group Wizard Creating, Editing, and Deleting Channel Groups Welcome Screen Select E1/T1 Port Screen Select Channels Speed Screen 14. Channel Group Wizard Confirmation Screen USP Configuration 15. USP Dialog Box Serial Port Tab USP PPP Interface Type of port Universal Serial Port USP Dialog Box Serial Tab Parameters35 DTE 21 DTE Operational status of the interface. Possible USP Configuration Advanced Parameters Invert Tx Clock Off Ignore DCD 17. USP Configuration Dialog Box PPP Tab 10. USP Configuration PPP Parameters USP Frame Relay Interface 11. USP Dialog Box Frame Relay Parameters 18. USP Dialog Box Frame Relay Tab That can be sent via the interface Interface Interface configured to back up this 12. USP Dialog Box Sub-Interfaces Parameters Operational status 20. USP Dialog Box DLCIs Tab 13. USP Dialog Box DLCIs Parameters Viewing the Backup Interfaces Table Backup Interface ConfigurationPriority of traffic on the selected Dlci Possible priorities include Field 14. Backup Interfaces Table Parameters Backup Interface Wizard Welcome Screen Select Module Select Primary Interface Screen Select Backup Interface Screen Parameters 27. Backup Interface Wizard Confirmation Screen Avaya C360 Manager User Guide 129 130 Avaya C360 Manager User Guide Port Rmon Displaying the Port Rmon Window Pie ChartTraffic Graph Traffic Types Traffic Types 134 Avaya C360 Manager User Guide VLANs Vlan Configuration Overview Master Vlan List VLANs OverviewVlan Tags Vlan Configuration Dialog Box Viewing the Vlan Configuration Dialog Box Vlan Tree Selection List Fields Selection List Port Configuration Area Parameters Port Configuration Area Bind to All The port is bound to all Creating VLANs Managing VLANs Rename Vlan Dialog Box Renaming VLANs Vlan Synchronize Dialog Box Synchronizing Vlan Names Deleting VLANs Managing Port Vlan SettingsSelecting Ports Using the Port Configuration Area Viewing Port Vlan Settings Drag-and-Drop Updating the Device 148 Avaya C360 Manager User Guide LAGs Overview Link Aggregation Groups LAG Information Dialog Box Viewing the LAG Table Editing LAGs Creating LAGsLAG Wizard LAG Wizard Welcome Screen Welcome Screen LAG Wizard Base Port Selection Screen Base Port Selection Screen LAG Wizard Member Port Selection Screen Member Port Selection Screen LAG Wizard LAG Name Screen LAG Name Screen LAG Wizard Confirmation Screen Confirmation Screen Deleting LAGs 158 Avaya C360 Manager User Guide Overview of Port Redundancy Port Redundancy Port Redundancy Dialog Box Viewing the Port Redundancy Dialog Box Port Redundancy Fields 802.1x Tab Adding a Port Redundancy Port Redundancy Wizard Port Redundancy Wizard Welcome Screen Port Redundancy Wizard Primary Port Selection Screen Primary Port Selection Screen Port Redundancy Wizard Secondary Port Selection Screen Secondary Port Selection Screen Port Redundancy Wizard Name and Type Screen Name and Type Screen Port Redundancy Wizard Confirmation Screen Deleting Port Redundancies 170 Avaya C360 Manager User Guide Port Mirroring Configuring Port MirroringPort Mirroring Overview Port Mirroring Wizard Port Mirroring Wizard Create Welcome Create Welcome Screen Port Mirroring Wizard Edit/Delete Welcome Screen Edit/Delete Welcome Screen Port Mirroring Wizard Source Port Selection Screen Source Port Selection Screen Port Mirroring Wizard Destination Port Selection Screen Destination Port Selection Screen Port Mirroring Wizard Frames Direction Selection Screen Frames Direction Selection Screen Port Mirroring Wizard Confirmation Screen IP Multicast Filtering Overview IP Multicast Filtering IP Multicast Filtering Dialog Box Configuring IP Multicast Filtering IP Multicast Filtering Parameters 182 Avaya C360 Manager User Guide Trap Manager Overview Trap Managers Configuration Stack Trap Manager Table SNMPv1 Legacy Tab Viewing the Stack Trap Managers Table Icon Trap Description Trap Types Stack Trap Managers Table SNMPv3 Tab Stack Trap Manager Options SNMPv3 Tab Stack Trap Managers Table SNMPv3 Tab Number of times the device will attempt Media Gateway Trap Managers Table Viewing the Media Gateway Trap Managers Table Media Gateway Trap Types WAN Trap Managers Table Viewing the WAN Trap Managers Table WAN Trap Types Adding and Removing Managers Editing the Trap Managers TableEditing Trap Reporting Statuses 194 Avaya C360 Manager User Guide Switch Connected Addresses Overview Switch Connected Addresses Switch Connected Addresses Window Viewing the Switch Connected Addresses Window Sorting the List of Stations 198 Avaya C360 Manager User Guide 802.1x Port Security Port Security802.1x Port Security Overview Port Configuration Dialog Box 802.1x Tab Configuring 802.1x Port Security Port Configuration Fields 802.1x Tab Forces a reauthentication. Checking MAC Port Security Configuring MAC Port SecurityMAC Port Security Overview MAC Port Security Dialog Box MAC Port Security Parameters 206 Avaya C360 Manager User Guide Routing Manager Router Modes Layer 2 SwitchRouter Avaya C360 Routing Manager User Interface Toolbar Avaya C360 Manager User Guide 211 Form Area Table Area Creating New Table Entries Editing Tables Saving Table Information as Text Saving Configuration ChangesRunning Changes Committed Changes Using Avaya C360 Routing Manager Help Resetting a Router 216 Avaya C360 Manager User Guide Device Global Parameters Device Global Parameters VLANs Layer VLANs Window Parameters IP Route IP Global Parameters IP Global Parameters IP Interface Table Parameters IP Interfaces IP network mask of the attached net Routing Table Routing Table Routing Table Parameters Static Preference Routing Table Start Point Dialog Box ARP Parameters ARP Table ARP Table Start Point Dialog Box DHCP/BOOTP Global Parameter DHCP/BOOTP Global Parameter DHCP/BOOTP Parameters DHCP/BOOTP Parameters Method by which the Dhcp relay chooses RIP Global Parameters RIP Global Parameters Controls redistribution of static routes into RIP RIP Interface Parameters RIP Interfaces Router can be configured to operate either If talk-listen, accepts default route entries in RIP Ospf Global Parameters Ospf Global Parameters Administrative status of Ospf in the router 10. Ospf Interfaces Ospf Interfaces Interface state of the Ospf interface 11. Ospf Area Parameters Ospf Area Parameters 14. Ospf Link State Database Window Ospf Link State Database 15. Ospf Link State Database Start Point Dialog Box 12. Ospf Link State Database Window 13. Ospf External Database Window Ospf External Database 17. Ospf Neighbors Window Ospf Neighbors 14. Ospf Neighbors Parameters 15. Vrrp Global Parameter Vrrp Global Parameters 16. Vrrp Table Parameters Vrrp Table State of the virtual router. Possible states Used if the Auth Type is set to Simple. 17. Crtp Interface Table Parameters Crtp InterfacesName of the selected interface Status of RTP compression on this interface File Menu Device Manager MenusView Menu Table A-1. File Menu Device Manager Table A-3. Configure Menu Device Manager Configure MenuActions Menu Table A-4. Actions Menu Device Manager Help Menu Tools MenuTable A-5. Tools Menu Device Manager Table A-6. Help Menu Device Manager Edit Menu Routing Manager MenusTable A-7. File Menu Routing Manager Table A-8. Edit Menu Routing Manager Table A-10. Action Menu Routing Manager Action MenuTable A-11. Help Menu Routing Manager 260 Avaya C360 Manager User Guide Web Management Overview Configuring the Avaya C360 Device Appendix B Numerics Index Crtp Dhcp 266 Avaya C360 Manager User Guide Ospf RIP Index USP X330WAN 272 Avaya C360 Manager User Guide