Secure Networks Policy Support | Enterasys Networks 7H4385-49

Secure Networks Policy Support

Secure Networks Policy Support

Policy Enabled Networking manages the allocation of networking infrastructure resources in a secure and effective manner. Using Secure Networks Policy, an IT Administrator can predictably assign appropriate resources to the Users, Applications, and Services that use the network; while blocking or containing access for inappropriate or potentially dangerous network traffic. Using this technology it is possible, for the first time, to align IT services with the needs of specific users and applications, and to leverage the network as a key component of the organization’s security strategy.

The Secure Networks Policy Architecture consists of 3 components: Classification Rules, Network Services, and Behavioral Profiles. These are defined as follows:

•Classification Rules determine how specific traffic flows (identified by Layer 2, Layer 3, and Layer 4 information in the data packet) are treated by each Switch or Router. In general, Classification Rules are applied to the networking infrastructure at the network edge/ingress point.

•Network Services are logical groups of Classification Rules that identify specific networked applications or services. Users may be permitted or denied access to these services based on their role within the organization. Priority and bandwidth rate limiting may also be controlled using Network Services.

•Behavioral Profiles (or roles) are used to assign Network Services to groups of users who share common needs–for example Executive Managers, Human Resources Personnel, or Guest Users. Access, resources, and security restrictions are applied as appropriate to each Behavioral Profile. A variety of authentication methods including 802.1X, EAP‐TLS, EAP‐TTLS, and PEAP may be used to classify and authorize each individual user; and the IT Administrator may also define a Behavioral Profile to apply in the absence of an authentication framework.

LANVIEW Diagnostic LEDs

LANVIEW diagnostic LEDs serve as an important troubleshooting aid by providing an easy way to observe the status of individual ports and overall network operations.

1-6 Introduction

Image 26

Enterasys Networks 7H4385-49 manual Secure Networks Policy Support, Lanview Diagnostic LEDs

Contents

Enterasys Matrix Page Page Industry Canada Notice Product SafetyFederal Communications Commission FCC Notice Class a ITE Notice Clase A. Aviso de ITE Elektro- magnetische Kompatibilität EMC Electromagnetic Compatibility EMCCompatibilidad Electromágnetica EMC Supplement to Product Instructions Bsmi EMC Statement Taiwan Safety Information Class 1 Laser TransceiversVcci Notice Declaration of Conformity USA Enterasys NETWORKS, INC. Firmware License Agreement Viii Page Page Contents Appendix B Mode Switch Settings and Option Installations TroubleshootingAppendix a Specifications Appendix C About PoE Power over Ethernet Figures Tables Xiv Important Notice About This GuideWho Should Use This Guide For Refer to How to Use This GuideRelated Documents Conventions Used in This Guide Following conventions are used in this guide Getting Help Support@enterasys.com Introduction For information about Refer to Overview of DFE-Platinum Series Module Capabilities DFE-Platinum 7H4385-49 PoE Module 7H4385-49 DFE-Platinum Module Connectivity Switch Configuration Using WebViewSwitch Configuration Using CLI Commands Management Lanview Diagnostic LEDs Secure Networks Policy Support Network Requirements Link Aggregation 10BASE-T Network Module Placement in a Matrix E7 ChassisFTM Bridge Function and Optional Interface Module 100BASE-TX Network 100BASE-TX Network Network Requirements Installation Unpacking the DFE Module Installation Site RequirementContents of 7H4385-49 Module Carton Quantity FTM1 and FTM2 Connectivity Installing Optional Network Expansion Module NEMBackplane Connections and Installation Rules Example 1 -1,A Module Placement and Installation RulesMatrix E7 Chassis Module Placement Example 4 -1,D Example 2 -1,BExample 3 -1, C Example 5 -1, E Example 6 -1, F DFE-Platinum Series Hardware Installation Guide To install the 7H4385‐49, refer to ‐2 and proceed as follows DFE-Platinum Series Hardware Installation Guide No bottom connectors in Matrix N7chassis Installing the 7H4385-49 into Matrix N1, N3, or N5 Chassis Installation Installing Module into Matrix N3, N5, or N1 Chassis N3 shown Connecting 48 Vdc Power for PoE Operation Connecting to the Network Connecting UTP Cables to 7H4385-49 Connecting a Twisted Pair Segment with RJ45 Connector Making the UTP Connections RX+ TX+ TX1+ RX1 TX2+ TX3+ RX3 RX2 TX4+ RX4 Verifying PoE Port Status Connecting to an IBM PC or Compatible Device Connecting to COM Port for Local ManagementWhat Is Needed Connecting to a VT Series Terminal Parameter Setting Connecting to a Modem 10 Connecting a VT Series Terminal 11 Connecting to a Modem Adapter Wiring and Signal Assignments COM Port Adapter Wiring and Signal Diagram RJ45 Modem Port Adapter Wiring and Signal Diagram RJ45 DB25 First-Time Log-In Using a Console Port Connection Completing the InstallationCompleting the Installation of a New System 12 Matrix DFE Startup Screen Example N7 Chassis Logging in with an Administratively-Configured User Account Enter About the Management Mgmt LED TroubleshootingUsing Lanview Viewing the Receive and Transmit Activity Viewing the PoE Port Status LED Color State Recommended Action RX/TX Indications in Standard Mode Amber and Alternating 67% on, 33% RX/TX Troubleshooting Checklist DFE-Platinum Series Configuration Guide Troubleshooting Checklist Problem Possible Cause Recommended Action Overview of DFE Module Shutdown Procedure Recommended Shutdown Procedure Using OFFLINE/RESET Switch OFFLINE/RESET Switch Last Resort Shutdown Procedure Using OFFLINE/RESET Switch Table A-1 7H4385-49 Specifications SpecificationsDFE Module Specifications Processors/Memory COM Port Pinout Assignments Table A-1 7H4385-49 Specifications PhysicalTable A-2 COM Port Pin Assignments Signal Name Input/Output Environmental Regulatory Compliance Table A-3 Compliance Standards Regulatory Compliance Regulatory Compliance Specifications Mode Switch Settings and Option Installations Required Tools Setting the Mode Switches Memory Locations and Replacement Procedures Memory Locations and Replacement Procedures Gaining Access to Memory Modules Gaining Access to Memory Modules Removing the Safety Cover Figure B-3 Removing the Safety Cover Dram Simm Replacement Procedure Removing the Optional Network Expansion Module NEM Removing the Dram Simm Figure B-5 Removing the Existing Dram Simm Installing the Dram Simm Figure B-6 Installing the Dram Simm Dimm Replacement Procedure Removing the Dimm Installing the Network Expansion Module NEM Installing the Dimm Figure B-9 Installing the Network Expansion Module Reinstalling the Safety Cover Figure B-10 Installing the Safety Cover About PoE Power over Ethernet Overview Proprietary PD Detection PoE Port Status LEDs Table C-2 PoE Status LED Indications PoE Port Status Overview About PoE Power over Ethernet Index Numerics Pinout assignments console port A-2