Manuals / Brands / Computer Equipment / Switch / HP / Computer Equipment / Switch

HP J3188A Setting Outbound Security with, Eavesdrop Prevention, F-6, In the illustration below, Server 104 is transmitting a packet destined for PC

1 100

Download 100 pages, 1.51 Mb

Security Information

Security Information

Setting Outbound Security with Eavesdrop Prevention

Setting Outbound Security with

Eavesdrop Prevention

Eavesdrop Prevention allows a port to receive a packet transmitted on the network as valid data only if the port’s MAC address matches the packet’s destination address. If the port’s MAC address does not match the packet destination address, the port will receive a packet containing a meaningless data field of alternating 1’s and 0’s. Multicast and broadcast packets are transmitted to all ports unmodified.

Note that sending a packet containing alternating 1’s and 0’s will continue to allow the port to detect the traffic on the network, so that the CSMA/CD network requirements are met. However, the port will correctly record the invalid data packet received as a CRC error. An end-user attached to an HP hub implementing Eavesdrop Prevention data security will normally record a high number of CRC errors on the computer card statistics.

The illustration on the next page shows the use of outbound data security using Eavesdrop Prevention. This type of data security should be enabled on any port that is to receive data on a “need to know” basis. The port must have an authorized MAC address configured and must be connected to only one end-user.

Eavesdrop Prevention may not be used on cascaded ports, or ports connected to a network with multiple end users.

In the illustration below, Server 104 is transmitting a packet destined for PC

101.(For illustration purposes, the numbers 101, 102, 103, and 104 are used to represent 12-digit hexadecimal MAC addresses.) The ports for PC 101 and PC

102have Eavesdrop Prevention enabled or configured ON. Because PC 101’s MAC address matches the packet destination address, it receives the packet unaltered. However, PC 102’s MAC address does not match the packet desti- nation address and therefore it receives a useless packet (the packet data field contains a meaningless pattern of alternating 1’s and 0’s.) The port for PC 103 does not have Eavesdrop Prevention enabled and therefore PC 103 receives the packet unaltered from Server 104.

F-6

Contents

Installation and Reference Guide HP J3188A Page HP 10Base-T Hub-16M(J3188A) Installation and Reference Guide Page HP 10Base-T Hub-16M(J3188A) Front of the Hub Back of the Hub Features Contents 1 Installing the Hub 2 Troubleshooting 3 Managing the Hub A Cables and Connectors B Specifications CModem Configuration DNetwork Addressing E Backup Links F Security Information G Safety and Regulatory Statements Page Installing the Hub Installing and Configuring Your Hub 1. Verify included parts 2. Connect the external transceiver 3. Verify the hub operates correctly N o t e cord connected directly to the hub for proper operation Hub the Installing Page 4. Mount the hub Rack or Cabinet Mounting Table Mounting 5. Connect the hub to your network Connecting Devices to the Hub Connecting Hubs Together Twisted-PairCascade Connections ThinLAN Connections Page Connecting the Hub-16Mto a Fiber-OpticBackbone Interpreting LED Status Interpreting Hub Status LEDs Interpreting Port Status LEDs Page Troubleshooting Troubleshooting Approaches Using a Checklist to Diagnose the Hub LED Operation Page Hub Maintenance Tasks Testing the Hub Only Clearing a Password for the ASCII Console Running Connectivity Tests Obtaining Firmware Enhancements Managing the Hub Setting up the ASCII Console Directly, Using A Serial Cable and a Terminal Remotely, Using Telnet Remotely, Using a Modem and a Terminal Starting the Console Console Command Reference Syntax Conventions on Help Screen: HElp [cmd] or? [cmd] BAckup CDpstatus COunters DIsconnect IPconfig When to Use IPconfig Configuring for Network Management Using Novell NetWare IPX Using IP MAnagers [SHow] all command E to end your editing receive alarms generated by the hub. A new entry is added to the list MEssageinterval NEighbor PAssword PIng POrt <port> <ON/OFF REset RObustness SEcure <port|SHow|CLear Security Configuration Parameter Definitions Assign an Address Port Security Off disables Configuring Security on a Single Port Configuring Security on All Twisted-PairPorts Page Showing the Security Configuration Clearing Security Violation Indicators SPeed <new speed STatus Page TEstlink Page Cables and Connectors Recommended Cables The following table shows network connections to the hub A-2 Twisted-PairCable/Connector Pin-Outs Twisted-PairCable for Hub-to-ComputerNetwork Connection RS-232Connector and Cable Pin-Outs Minimum Cable Pinout for ASCII Console Connection RS-232Modem Cable Twisted-PairCable Pin Assignments Twisted-Pair Straight-ThroughCable Specifications Physical Electrical Environmental Connectors Electromagnetic Modem Configuration Hayes Smartmodem Optima 28.8 (V.34) Hayes ACCURA 288 V.34 + FAX Hayes V-SeriesULTRA Smartmodem US Robotics Courier V.FC/V.34 Practical Peripherals PM288MT II Intel 14.4EX Supra FAX Network Addressing Communication Between the Hub and Network Management Station IPX Addressing for Novell NetWare IPX Addressing Notes: IP Addresses for IP and Non-IPNetworks Globally Assigned IP Network Addresses Device IP Configuration Using BOOTP The BOOTP Process BOOTP Table File Entries Definitions of the table entry fields: Notes for the bootptab file: Page Backup Links How Backup Links Work Limitations Additional Notes Examples of Backup Links How the Backup Function Works S u g g e s t i o n ■The hub can monitor only one link E-4 Configuring a Backup Link Configuration/Installation Sequence Identifying the Backup Link Indications of Backup Link Activation Reactivating the Primary Link Page Security Information Understanding Network Security How Intruder Prevention Works How Eavesdrop Prevention Works Authorized MAC address Assigning the Authorized MAC address Setting Inbound Security with Intruder Prevention Auto Port Disable Send Alarm Setting Outbound Security with Eavesdrop Prevention F-7 Page Safety and Regulatory Statements Mounting Precautions Power Precautions Safety Information Informations concernant la sécurité Hinweise zur Sicherheit Considerazioni sulla sicurezza Consideraciones sobre seguridad Safety Information (Japanese) Regulatory Statements FCC Class A Statement (for U.S.A. Only) European Community Canada Declaration of Conformity Index Numerics 2 – Index Page 4 – Index Page *J3188-90001