Chapter 4: Security

Parameter Description

Timeout: The Timeout, which can be set to a number between 3 and 3600 seconds, is the maximum time to wait for a reply from a server. If the server does not reply within this timeframe, we will consider it to be dead and continue with the next enabled server (if any).

RADIUS servers are using the UDP protocol, which is unreliable by design. In order to cope with lost frames, the timeout interval is divided into 3 subintervals of equal length. If a reply is not received within the subinterval, the request is transmitted again. This algorithm causes the RADIUS server to be queried up to 3 times before it is considered to be dead.

Dead Time: The Dead Time, which can be set to a number between 0 and 3600 seconds, is the period during which the switch will not send new requests to a server that has failed to respond to a previous request. This will stop the switch from continually trying to contact a server that it has already determined as dead.

Setting the Dead Time to a value greater than 0 (zero) will enable this feature, but only if more than one server has been configured.

RADIUS Authentication Server Configuration

The table has one row for each RADIUS Authentication Server and a number of columns, which are:

#: The RADIUS Authentication Server number for which the configuration below applies.

Enabled: Enable the RADIUS Authentication Server by checking this box.

IP Address/Hostname: The IP address or hostname of the RADIUS Authentication Server. IP address is expressed in dotted decimal notation.

Port: The UDP port to use on the RADIUS Authentication Server. If the port is set to 0 (zero), the default port (1812) is used on the RADIUS Authentication Server.

Secret: The secret—up to 29 characters long—shared between the RADIUS Authentication Server and the switch.

RADIUS Accounting Server Configuration

The table has one row for each RADIUS Accounting Server and a number of columns, which are:

#: The RADIUS Accounting Server number for which the configuration below applies.

Enabled: Enable the RADIUS Accounting Server by checking this box.

IP Address/Hostname: The IP address or hostname of the RADIUS Accounting Server. IP address is expressed in dotted deci- mal notation.

Port: The UDP port to use on the RADIUS Accounting Server. If the port is set to 0 (zero), the default port (1813) is used on the RADIUS Accounting Server.

Secret: The secret—up to 29 characters long—shared between the RADIUS Accounting Server and the switch.

TACACS+ Authentication Server Configuration

The table has one row for each TACACS+ Authentication Server and a number of columns, which are:

#: The TACACS+ Authentication Server number for which the configuration below applies.

Enabled: Enable the TACACS+ Authentication Server by checking this box.

IP Address/Hostname: The IP address or hostname of the TACACS+ Authentication Server. IP address is expressed in dotted decimal notation.

Page 192

724-746-5500 blackbox.com

LPB2810A

 

 

Page 191 Page 193
Page 192
Image 192
Black Box LPB2826A, LPB2810A, LPB2848A, PoE+ Gigabit Managed Switch Eco user manual Security
Page 191 Page 193

LPB2848A, LPB2826A, LPB2810A, PoE+ Gigabit Managed Switch Eco specifications

The Black Box PoE+ Gigabit Managed Switch series, including the models LPB2810A, LPB2826A, and LPB2848A, presents a robust solution for businesses looking to enhance their network efficiency and reliability. Designed to support the growing demand for Power over Ethernet (PoE) devices, these switches provide the perfect backbone for modern network infrastructures.

One of the most significant features of this series is its PoE+ capability, which allows it to deliver power and data over a single Ethernet cable. This functionality simplifies cabling and installation, making it easier to deploy PoE devices such as IP cameras, VoIP phones, and wireless access points. The LPB2810A offers 8 PoE+ ports, the LPB2826A ups the ante with 24 ports, and the LPB2848A provides a whopping 48 ports, each capable of delivering up to 30 watts of power per port.

The managed switch system ensures that users can customize and optimize their network performance. With advanced features such as VLAN support, Quality of Service (QoS), and link aggregation, organizations can effectively manage traffic, prioritize critical applications, and potentially enhance overall network security. Furthermore, these switches support Layer 2 and Layer 3 functionalities, which allows for greater flexibility when implementing routing policies.

Another critical aspect of the LPB series is its built-in security features. The switches come equipped with advanced security protocols, including IEEE 802.1X port-based access control, which enables network administrators to authenticate devices before granting access to the network. This significantly reduces the risk of unauthorized access and ensures data integrity across the connected devices.

The Black Box PoE+ Gigabit Managed Switches are designed with reliability and ease of use in mind. Their fanless design promotes silent operation, making them ideal for deployment in both office environments and data centers. Additionally, the switches offer a user-friendly web-based interface and CLI options for straightforward management and configuration, catering to both novice and seasoned network administrators.

In conclusion, the Black Box PoE+ Gigabit Managed Switch series, featuring models LPB2810A, LPB2826A, and LPB2848A, stands out with its power-efficient design, extensive port options, and advanced security measures. These switches are an excellent choice for organizations that require a dependable and scalable networking solution to support their growing Ethernet and PoE device needs.
Top Page Image Contents