Enterasys Networks 7S4280-19-SYS, 2S4082-25-SYS

The NAC Controller Policy Configuration

Enterasys NAC Controller Hardware Installation Guide 6-21

Modifying the Downstream Default Policy

Dependingonthenetworkconfigurationorcircumstances,itʹspossiblethattrafficfromthe

upstreamsidecouldbereroutedtotheNACController,whereitwouldbeauthenticatedusing

theupstreamsourceIPaddress.Toavoidthisproblem,addaLayer3IPAddressSourceruleto

thedownstreamdefaultpolicyconfiguredontheNACController,usingtheupstreamIPsubnets

(orcriticalserverslocatedintheupstream)andcontainingthetraffictoaVLAN.

Contents

Main Page Notice Regulatory Compliance Information Page Supplement to Product Instructions 50 VCCI Notice BSMI EMC Statement Taiwan Safety Information Class 1 Laser Transceivers Declaration of Conformity ENTERASYS NETWORKS, INC. FIRMWARE LICENSE AGREEMENT BEFORE OPENING OR UTILIZING THE ENCLOSED PRODUCT, CAREFULLY READ THIS LICENSE AGREEMENT. Page Page Contents Chapter 1: Introduction Chapter 2: Installation Requirements and Guidelines Chapter 3: Enterasys Matrix N1 Chassis Setup Chapter 4: NAC Controller PEP Installation Chapter 5: Troubleshooting Chapter 6: Initializing the NAC Controller Appendix A: Specifications and Regulatory Compliance Appendix B: Mode Switch Bank Settings and Optional Installations Index Figures Tables Page Page About This Guide Who Should Use This Guide How to Use This Guide Related Documents Typographical Conventions Commonly Used Acronyms Getting Help Introduction Overview The N1-7C111 Chassis The NAC Controller PEP Page The 2S4082-25 NAC Controller PEP The 7S4280-19 NAC Controller PEP Redundant Power Supplies Power Supply LANVIEW LEDs Power Supply Status Through System Management Auto-Ranging Power Supplies Power Supply Replacement Secure Networks Policy Support Standards Compatibility LANVIEW Diagnostic LEDs Page Installation Requirements and Guidelines Site Guidelines Configuration Guidelines LANVIEW LEDs 1 2 Power Supply LEDs Fan LED NAC Controller PEP Network Requirements Link Aggregation 10BASE-T Network 100BASE-TX Network 1000BASE-T Network 1000BASE-SX/LX/ELX Network Page Enterasys Matrix N1 Chassis Setup Unpacking the Enterasys Matrix N1 Chassis Setting Up the Enterasys Matrix N1 Chassis Order of Installation Installing the Chassis on a Flat Surface Installing the Rubber Feet Installing the Chassis into a Rack Installing the Chassis on the Rack Shelf Installing the Chassis Directly to the Rack Attaching the Electrostatic Discharge Wrist Strap 1 1 Powering Up a Enterasys Matrix N1 Chassis Cooling Fans 3-6 Enterasys Matrix N1 Chassis Setup Figure 3-3 Connecting the 15-Amp AC Power Cords N826 Cooling Fans 2AC power socket (2 each supply) 3115 Vac, 15 A power outlet AC INLET 1 AC INLET 2 7C111 NAC Controller PEP Installation Required Tools Unpacking the NAC Controller PEP Important Notice Installing Optional Mini-GBICs Preparation engine Installation Installing NAC Controller PEP into the Matrix N1 Chassis Preparation Installation Connecting to the Network Connecting UTP Cables to the 2S4082-25 Page Page Connecting Fiber-Optic Cables to Mini-GBICs Page Page Connecting to COM Port for Local Management What Is Needed Connecting to an IBM PC or Compatible Device Connecting to a VT Series Terminal Connecting to a Modem Figure 4-14 Connecting to a Modem Adapter Wiring and Signal Assignments RJ45 DB9 Completing the Installation First-Time Log-In Using a Console Port Connection Figure 4-15 Matrix DFE Startup Screen Example (N7 Chassis) Troubleshooting Using LANVIEW About the Management (MGMT) LED Viewing the Receive and Transmit Activity Page Table 5-1 LANVIEW LEDs LED Color State Recommended Action Troubleshooting Checklist Table 5-1 LANVIEW LEDs (continued) LED Color State Recommended Action Table 5-2 Troubleshooting Checklist Problem Possible Cause Recommended Action Table 5-2 Troubleshooting Checklist (continued) Problem Possible Cause Recommended Action Overview of the NAC Controller PEP Shutdown Procedure Recommended Shutdown Procedure Last Resort Shutdown Procedure Page Initializing the NAC Controller Overview Page General Management Considerations Page Page Preparation for NAC Controller Initialization The NAC Controller Initialization Procedure Page Page Page Page Page Page Page Page The NAC Controller Policy Configuration Setup the VLAN Configurations NAC Controllers Require Separate Domains Page Modifying NAC Controllers Preconfigured Policy Page Adding Assessment Classification Rules Page Page A Specifications and Regulatory Compliance 7C111 Chassis 7C111 Chassis Specifications and Regulatory Compliance Physical Specifications Power Supply Environmental Requirements Regulatory Requirements NAC Controller Engine Interface Specifications Processor/Memory External Power Supply NAC Controller Engine COM Port Pinout Assignments NAC Controller PEP 2S4082-25 Module Specifications 2S4082-25 COM Port Pinout Assignments NAC Controller PEP 7S4280-19 Specifications Table A-8 COM Port Pin Assignments Pin Signal Name Input/Output Table A-9 Specifications Mini-GBIC Input/Output Specifications 7S4280-19 COM Port Pinout Assignments Gigabit Ethernet Specifications MGBIC-LC01/MGBIC-MT01 Specifications (1000BASE-SX) MGBIC-LC03 Specifications (1000BASE-SX) MGBIC-LC09 Specifications (1000BASE-LX) MGBIC-08 Specifications (1000BASE-ELX) Table A-16 MGBIC-LC09 Optical Specifications Table A-17 MGBIC-LC09 Operating Range Table A-18 MGBIC-08 Optical Specifications Regulatory Compliance Table A-20 MGBIC-02 / Specifications Table A-21 Compliance Standards B Mode Switch Bank Settings and Optional Installations Required Tools Setting the Mode Switches Memory Locations and Replacement Procedures Location of Memory Modules Flash DIMM Replacement Procedure Page DRAM SIMM Replacement Procedure Removing the DRAM SIMM Installing the DRAM SIMM Page Index Numerics C D E