You configure 802.1x authentication for IPv6 clients in the same way as for IPv4 client configuration. For more information about configuring 802.1x authentication on the controller, see 802.1X Authentication on page 192.

NOTE: This release does not support authentication of management users on IPv6 clients.

Working with Firewall Features

If you installed a Policy Enforcement Firewall Next Generation (PEFNG) license in the controller, you can configure firewall functions for IPv6 client traffic. While these firewall functions are identical to firewall functions for IPv4 clients, you need to explicitly configure them for IPv6 traffic. For more information about firewall policies, see “Global Firewall Parameters” on page 317.

NOTE: Voice-related and NAT firewall functions are not supported for IPv6 traffic.

Table 39: IPv6 Firewall Parameters

Authentication

Description

Method

 

Monitor Ping Attack

Number of ICMP pings per second, which if exceeded, can indicate a denial of service attack.

 

Valid range is 1–255 pings per second. Recommended value is 4.

 

Default: No default

 

 

Monitor TCP SYN Attack

Number of TCP SYN messages per second, which if exceeded, can indicate a denial of service

rate

attack. Valid range is 1–255 messages per second. Recommended value is 32.

 

Default: No default

 

 

Monitor IP Session Attack

Number of TCP or UDP connection requests per second, which if exceeded, can indicate a

 

denial of service attack. Valid range is 1–255 requests per second. Recommended value is 32.

 

Default: No default

 

 

Deny Inter User Bridging

Prevents the forwarding of Layer-2 traffic between wired or wireless users. You can configure

 

user role policies that prevent Layer-3 traffic between users or networks but this does not block

 

Layer-2 traffic. This option can be used to prevent traffic, such as Appletalk or IPX, from being

 

forwarded.

 

Default: Disabled

 

 

Deny All IP Fragments

Drops all IP fragments.

 

NOTE: Do not enable this option unless instructed to do so by a Dell representative.

 

Default: Disabled

 

 

Enforce TCP Handshake

Prevents data from passing between two clients until the three-way TCP handshake has been

Before Allowing Data

performed. This option should be disabled when you have mobile clients on the network as

 

enabling this option will cause mobility to fail. You can enable this option if there are no mobile

 

clients on the network.

 

Default: Disabled

 

 

Prohibit IP Spoofing

Enables detection of IP spoofing (where an intruder sends messages using the IP address of a

 

trusted client). When this option is enabled, IP and MAC addresses are checked for each ARP

 

request/response. Traffic from a second MAC address using a specific IP address is denied,

 

and the entry is not added to the user table. Possible IP spoofing attacks are logged and an

 

SNMP trap is sent.

 

Default: Disabled

Prohibit RST Replay

When enabled, closes a TCP connection in both directions if a TCP RST is received from either

Dell PowerConnect W-Series ArubaOS 6.2 User Guide

IPv6 Support 142

Page 142
Image 142
Dell 6.2 manual Working with Firewall Features, Authentication Description Method

6.2 specifications

Dell 6.2 is an advanced enterprise solution that caters to the needs of businesses seeking robust performance and efficiency. As a part of Dell's commitment to innovation, the 6.2 series combines cutting-edge technologies and features that enhance productivity and deliver reliable computing experiences.

One of the standout features of the Dell 6.2 is its impressive processing power. Equipped with the latest Intel processors, it offers exceptional speed and multitasking capabilities. This allows businesses to run demanding applications effortlessly, making it ideal for data-intensive tasks such as data analysis, software development, and virtualization. The series also supports substantial RAM configurations, enabling users to manage extensive workloads without experiencing slowdowns.

In terms of storage, the Dell 6.2 line includes advanced SSD options that significantly boost data access speeds compared to traditional hard drives. This rapid access to information is vital for businesses that require quick retrieval of large datasets. Furthermore, the devices support RAID configurations, which enhances data redundancy and security, protecting critical business information from loss.

Connectivity is another critical aspect of the Dell 6.2 series. It includes multiple USB ports, HDMI outputs, and high-speed Ethernet options, ensuring that users can easily connect to various peripherals and networks. The integration of Wi-Fi 6 technology enables faster wireless connections, resulting in improved internet speeds and bandwidth efficiency, which is crucial in today’s increasingly connected workplaces.

Dell has also prioritized security in the 6.2 series. It features enhanced biometric authentication and advanced encryption methods, safeguarding sensitive data from unauthorized access. Additionally, the system's BIOS protection and automatic updates provide an added layer of security, ensuring that the device remains safe from emerging threats.

The design of the Dell 6.2 is not only sleek and modern but also built for durability. Its robust chassis is engineered to withstand the rigors of daily use, making it suitable for various business environments. This durability ensures that the investment in Dell 6.2 will last for years while maintaining performance integrity.

In summary, the Dell 6.2 series embodies a blend of speed, storage efficiency, connectivity, and security, making it a top choice for enterprises looking to enhance their computing capabilities. With its modern features and durable design, Dell 6.2 is positioned as a reliable partner in driving business success.