Manuals / Brands / Computer Equipment / Switch / Cabletron Systems / Computer Equipment / Switch

Cabletron Systems 2H22, 2M46 2.2.1 Setting the Repeater Level Security

1 120

Download 120 pages, 635.69 Kb

Chapter 2: LM Security Screens for 2E43-51/2E43-51R Devices

2-4 Local Management Supplement

The port will lock down on the address that is currently configured in

the Port Level Security Configuration screen (if one is entered), or on

the source address of the last received frame. When a port is locked on

an address, the device executes the actions selected in the Action On

Intruder ﬁeld (Port Level Security Configuration screen) when a frame

is received that violates security.

•LockOnNext – The next frame received by each port on the interface

connector is examined to learn its source address. After the source

address of a frame is learned on a port, it is now locked on that address

and only those frames received with that same source address are

allowed on that port. All frames received that do not have that same

source address will cause the device to execute the actions selected in

the Action On Intruder ﬁeld.

Action On Intruder (Toggle)

Used to select the actions taken for the selected security state. There are

two ﬁelds in which to select the actions. Both toggle to activate or

deactivate the action.

•DisablePort/NoDisablePort – DisablePort causes the switch to turn off

the port that had a security violation. With NoDisable set, the port is

not turned off.

•SendTrap/NoTrap – SendTrap causes the switch to send an SNMP trap

when a port detects a security violation. With NoTrap set, no SNMP

trap is sent.

2.2.1 Setting the Repeater Level Security

To set the security on all repeater ports of each connector, proceed as

follows:

1. Use the arrow keys to highlight the Security State field for the

interface connector.

2. Use the SPACE bar to step to the appropriate security level

(NonSecure, LockedOnAddr, or LockOnNext).

3. If the security level chosen causes the DisablePort and SendTrap

fields to display under Action On Intruder, use the arrow keys to

highlight the DisablePort field. If the security level chosen does not

cause the fields to display under Action On Intruder, proceed to step 7.

Contents

Main Page Local Management Supplement i NOTICE ii Local Management Supplement CABLETRON SYSTEMS, INC. Local Management Supplement iii iv Local Management Supplement CABLETRON SYSTEMS SALES AND SERVICE, INC. Local Management Supplement v vi Local Management Supplement CABLETRON SYSTEMS LIMITED Local Management Supplement vii viii Local Management Supplement DECLARATION OF CONFORMITY Local Management Supplement ix CONTENTS Contents x Local Management Supplement Contents Local Management Supplement xi Page Local Management Supplement xiii FIGURES xiv Insert BookTitle TABLES CHAPTER 1 CHANGES TO LOCAL MANAGEMENT SCREENS 1.1 INTRODUCTION 1.2 ACCESSING LOCAL MANAGEMENT 1.2.1 Navigating Local Management Screens Accessing Local Management SmartTrunk User's Guide Figure 1-1 802.1D Switching Mode, LM Screen Hierarchy Local Management Supplement 1-3 Chapter 1: SmartTrunk User's Guide Figure 1-2 802.1Q Switching Mode, LM Screen Hierarchy Changes to Local Management Screens 1-4 Local Management Supplement Notes: * Refer to the 1.2.2 Screen Format 1.3 DEVICE CONFIGURATION MENU SCREEN Page 1.4 SYSTEM RESOURCES INFORMATION SCREEN 1.4.1 Resetting the Reset Peak Switch Utilization 1.5 FLASH DOWNLOAD CONFIGURATION SCREEN Page 1.5.1 Image File Download Using TFTP 1.5.2 Image File Download Using Runtime 1.5.3 Image File Download Using BootP 1.6 PORT CONFIGURATION MENU SCREEN Page 1.7 ETHERNET FULL DUPLEX CONFIGURATION Ethernet Full Duplex Conguration Screen Local Management Supplement 1-17 Figure 1-8 Ethernet Full Duplex Conguration Screen This section explains each eld of the Ethernet Full Duplex Conguration screen. PORT # (Read-only) Identies the number of the port. OPERATION MODE (Toggle) 1.7.1 Setting the Operational Mode 1.8 HIGH SPEED INTERFACE CONFIGURATION MENU Page 1.9 HIGH SPEED INTERFACE CONFIGURATION Page 1.9.1 Conguring an FE-100FX or FE-100F3 1.9.2 Setting the FE-100FX or FE-100F3 Operational Mode 1.9.3 Conguring an FE-100TX 1.9.4 Setting the FE-100TX Operational Mode 1.9.5 Setting the FE-100TX Advertised Ability 1.10 REDIRECT CONFIGURATION MENU SCREEN 1.11 PORT REDIRECT CONFIGURATION SCREEN 1-28 Local Management Supplement NOTE Only one destination port may be assigned to a source port. Figure 1-12 Port Redirect Conguration Screen The following denitions briey explain each eld of the Port Redirect Source Port (Read-Only) Shows which ports are currently set as source ports. Destination Port (Read-Only) Shows which ports are currently set as destination ports. Page 1.11.1 Changing Source and Destination Ports 1.12 VLAN REDIRECT CONFIGURATION SCREEN 1-32 Local Management Supplement The Redirect Errors function is not supported on this screen. Figure 1-13 VLAN Redirect Conguration Screen The following denitions briey explain each eld of the VLAN Redirect Source VLAN (Read-Only) Shows the VLAN ID of the VLANs that are currently set as source VLANs. Destination Port (Read-Only) Shows which ports are currently set as destination ports. Page 1.12.1 Changing Source VLAN and Destination Ports Broadcast Suppression Conguration Screen Local Management Supplement 1-35 Figure 1-14 Broadcast Suppression Conguration Screen 1.13 BROADCAST SUPPRESSION CONFIGURATION NOTE Broadcast frames received above the threshold setting are dropped. 1.13.1 Setting the Threshold 1.13.2 Resetting the Reset Peak 1.14 REPEATER CONFIGURATION MENU SCREENS 1.15 802.1 CONFIGURATION MENU SCREEN Page 1.16 SWITCH CONFIGURATION SCREEN Page 1.16.1 Setting the STA 1.16.2 Setting the Age Time Field 1.16.3 Setting (Enabling or Disabling) the Port Status 1.17 SUMMARY OF VLAN LOCAL MANAGEMENT 1.18 802.1Q VLAN CONFIGURATION MENU SCREEN 1.19 IGMP/VLAN CONFIGURATION SCREEN Page Page Page 1.19.1 Conguring VLANs for IGMP 1.20 PRIORITY/MULTICAST CONFIGURATION MENU Page 1-52 Local Management Supplement 1.21 PORT PRIORITY CONFIGURATION SCREEN Figure 1-21 Port Priority Conguration Screen NOTE The Port Priority Conguration screen does not display when the operational mode of the device is set to 802.1D SWITCHING. 1.21.1 Setting Switch Port Priority Port-by-Port 1.21.2 Setting Switch Port Priority on All Ports 1.22 ADVANCED PORT PRIORITY CONFIGURATION Advanced Port Priority Conguration Screen Local Management Supplement 1-55 Figure 1-22 Advanced Port Priority Conguration Screen The following describes each eld of the Advanced Port Priority Priority (Read-Only) Lists the eight priorities, 0 through 7. TX Queue (Toggle) To set the TX Mapping Queues, refer to Section 1.22.1. Page 1.22.1 Setting the TX Mapping Queues 1.22.2 Setting the TX Regeneration Priorities 1.22.3 Setting the Default Priority of a Port CHAPTER 2 LM SECURITY SCREENS FOR 2E43-51/2E43-51R DEVICES 2.1 REPEATER CONFIGURATION MENU SCREEN 2.2 REPEATER LEVEL SECURITY CONFIGURATION Page 2.2.1 Setting the Repeater Level Security 2.3 PORT LEVEL SECURITY CONFIGURATION Page Page 2.3.1 Setting the Port Level Security Page Page CHAPTER 3 LM SECURITY SCREENS FOR 2H23-50R/2H33-37R DEVICES 3.1 REPEATER CONFIGURATION MENU SCREEN 3.2 REPEATER PORT CONFIGURATION SCREEN Repeater Port Conguration Screen Local Management Supplement 3-3 The following are denitions for each eld of the Repeater Port PORT # (Read-only) Page 3.2.1 Setting the Port Operating Mode 3.2.2 Enabling /Disabling Repeater Ports 3.2.3 Setting Operating Mode On All Repeater Ports 3.3 MODULE LEVEL SECURITY CONFIGURATION Page 3.3.1 Setting the Module Level Security 3.4 PORT LEVEL SECURITY CONFIGURATION Port Level Security Conguration Screen Local Management Supplement 3-11 Figure 3-4 Port Level Security Conguration Screen The following section denes the elds on the Port Level Security Conguration screen. Port (Read-only) NOTE The screen will not refresh automatically. To check if the states Page 3.4.1 Setting the Port Level Security Page CHAPTER 4 GENERIC ATTRIBUTE REGISTRATION PROTOCOL (GARP) 4.1 GARP SWITCH OPERATION 4.1.1 GARP VLAN Registration Protocol (GVRP) Page 4.2 GARP MULTICAST REGISTRATION PROTOCOL (GMRP) Chapter 4: Generic Attribute Registration Protocol (GARP) 4-4 Local Management Supplement 4.3 GARP OPERATION STATUS SCREEN Figure 4-2 GARP Operation Status Screen The following describes the screen elds. Port # (Read-Only) Displays the number of the front panel interface. Page 4.3.1 Setting a Port to Operate in GMRP or GVRP 4.3.2 Setting All Ports on the Switch GMRP Conguration Screen Local Management Supplement 4-7 4.4 GMRP CONFIGURATION SCREEN Displays the number of the front panel interface. Figure 4-3 GMRP Conguration Screen The following describes the screen elds. Port # (Read-Only) 4.4.1 Setting a Mode, Port-by-Port 4.4.2 Setting a Mode for All Ports Page CHAPTER 5 NETWORK TOOLS 5.1 NETWORK TOOLS 5.1.1 Built-in Command cdp Page APPENDIX A ABOUT IGMP A.1 IGMP OVERVIEW A.2 SUPPORTED FEATURES AND FUNCTIONS A.3 DETECTING MULTICAST ROUTERS Page Page Local Management Supplement Index-1 INDEX Numerics A B C H I M N O S Index-4 Local Management Supplement T V