Switch Intrusion Log | HP Networking TopTool Products specs

Setting Up Security for a Device

Switch Intrusion Log

Figure 14-9. Security Policy Page for a Selected Port

If you want to configure authorized devices:

1.Select Static for the Learn Mode parameter.

2.Select the number of authorized addresses (devices) for the Address Limit parameter.

3.If you want to send SNMP traps notifying of attempted security violations, select Yes for the Send Alarm parameter.

4.Select Yes to Prevent Eavesdropping.

5.Click on the Apply Changes button.

Switch Intrusion Log

When an attempted security violation occurs on a port configured for Port

Security, the port drops the packets it receives from the unauthorized device.

Notice of Security violations

When a security violation occurs on a port configured for Port Security, the switch responds in the following ways to notify you:

■The switch sets an intrusion flag for that port. This flag remains until:

•You use either the console or web browser interface to reset the flag

•The switch is reset to its factory default.

■The web browser and console interfaces notify you of the intrusion. In the browser:

14-18

Image 198

HP Networking TopTool Products manual Switch Intrusion Log, Select Yes to Prevent Eavesdropping

Contents

HP TopTools for Hubs & Switches User Guide Page HP TopTools for Hubs & Switches User Guide Applicable Product Contents Listing Devices Configuring Polling Hardware and Software RequirementsDevice Topology Node Port Table Custom Groups Searching for Devices Locating a Node Monitoring Network Traffic Top Conversations Inventory of End Nodes Quality of Service Overview Basic Operation Managing Switches Viii Performing Diagnostics How to Update the Map Files Appendix a Starting HP TopTools for Hubs Switches Quick Start Getting Around in HP TopTools Quick Start Viewing Your Network Devices DevicesMaps Quality of Service Using the PannerPolicies Configuration Policies Examining Alerts Configuring and Monitoring Devices List of Networking Devices T e Viewing Network Traffic Traffic Monitor Optimizing Your Network Network MeterTop Talkers How to Get Support Introduction Introduction to HP TopToolsTopics covered in this chapter include HP TopTools for Hubs & Switches Introduction HP TopTools for Hubs & Switches Home Ware running and know how to use your network utilities Network Devices Features Viewing a List of Devices HP Devices Supported Network TrafficNetwork Growth Group Policies Snmp HP Switches Supported J2611A Learning to Use HP TopTools HP Procurve Switches & Hubs Technical Support HP TopTools Technical Product Support Introduction System Requirements System RequirementsHardware and Software Requirements Requirements System Requirements Discovering Your Devices Beginning Discovery Discovery Status Selecting NetworksDiscovering Your Devices Networks Page of Settings for Discovery Adding Devices for Discovery Configuring Discovery Settings Settings Page of Settings Discovery Troubleshooting Discovery Additional Community Names Inventory of Devices Interpreting the Alert Log Automatic Fault Finding AlertsThis chapter contains information on Alerts Alerts Common Faults Fault Description, Cause and Actions Check for faulty cabling, transceivers, and NICs Launching the Device View Acknowledging AlertsClosing Alerts Sorting Alerts First Time Installation InformationFiltering Alerts Selecting Alert Log Filters Filtering by Alert Severity Selecting Alert Log Filters TopologyFiltering by Alert State Filtering by Device Selecting Alert Log Filters Custom Groups Selecting Alert Log Filters SearchClick on the + or boxes to add or remove search criteria Configuring Action on Alerts Search Configure Actions on Alerts Deleting Closed Alerts Alerts Networking Devices Listing Devices Configuring Polling Communication from the list Device Communication Settings SNMP/Trap Configuration Selecting Actions for Devices Device Topology Thresholds Dialog Box Write in order for your devices to be mapped Topology of Networking Devices When a link has been clicked on, it is no longer blue Node Port TableCustom Groups Searching for Devices Custom Groups Search Networking Devices Group Policies Creating Groups Viewing the Devices in a Group Members of a groupGroup Policies Adding a Group Modifying a Group Group Configuration Modify Group Adding a Device to a Group Removing a Device from a Group Changing the Group Name Configuring Group Policies Main Configuration Policies General Configuration Policies Snmp System Information Alert Configuration Policies Checking Firmware Versions Setting Fault Sensitivity Sending Alerts to the HP TopTools Management StationRemoving Trap Receivers Advanced Switch Features Advanced Switch Features Automatic Broadcast Control ABC Enabling Broadcast Control for IP Enabling Broadcast Control for IPX Automatic IP Gateway Configuration Internet Group Management Protocol Igmp Communities Security Configuration PoliciesSpanning Tree Protocol Forward with High Priority Adding a Community Security Policies Deleting a Community Configuring Authorized ManagersModifying a Community Adding or Deleting an Authorized Manager Viewing Your Maps Displaying Maps Map Server Settings Viewing Your Maps Default View Automatic Map Generation Cluster Size Map Styles Launching a Map Spacing Using the Panner Launching the Device View Options Refresh Maps SNMP/Trap ConfigurationOptions for Displaying Maps Options-Labeling Locating a Node Changing Map ViewsOptions-Legend Monitor Viewing Your Maps Using Traffic Monitor Monitoring Network Traffic Traffic Monitor Main Monitoring Network Traffic Reading the Traffic Information Gauges Reading the Segment Histogram Setting Thresholds Selecting Segment Groups and SegmentsComparing Segments Across Different Medias Thresholds Window Displaying the Network Meter Who Are the Top 5 Talkers? Options Button Top 5 Talkers Other Top Talkers Not in Selected Minute Locating a Segment or End Node OthersTop5 View Menu Items Data sampler for this segment Traffic Data Collector Settings Automatic Monitoring Manual MonitoringDiscovery/Topology Data Automatic is checked Removing Selected Devices Configuring Ports for Manual MonitoringAdding Ports for Manual Monitoring Remove All Devices Traffic Data Collector Storage Settings Traffic Data Storage Traffic Data Collector Performance Troubleshooting Traffic Monitor Traffic Data Collector Performance Connection to Server Lost Monitoring Network Traffic Planning for Network Growth Meeting the ChallengesThis chapter includes the following topics Using Network Tools Planning with the Network Performance AdvisorPlanning for Network Growth Starting the Network Performance Advisor 10-3 Creating a New Report Welcome Page for Network Performance Advisor Modifying Your Settings Report Generation Page of Network Performance Advisor You can only create one report at a time To cancel a report, click on the Cancel analysis buttonWorsen network performance during periods of normal use 10-6 Viewing a Report Report Properties Section Summary of Recommendations Section With Data Available Reorganize Your Current Equipment 10-9 Recommendation Details Section 10-11 Add or Upgrade Equipment How the Data is AnalyzedDividing Segments into Workgroups Traffic pattern before dividing into workgroups Traffic Pattern after Dividing into Workgroups 10-14 Upgrading Segments to Faster Speed Media Converting Segments to Desktop SwitchingTop Conversations Dedicating Bandwidth to Top Talkers Top Conversations Inventory of End Nodes 10-17 Controlling Data Storage When There Are No RecommendationsAdministration May not be valid How the Network Performance Advisor Collects DataUnderstanding HP Sampling 10-20 Potential Problems with Data Collection Segments Excluded from Analysis Segments that do not have Devices with Sampling CapabilitySegments not Selected for Analysis Quality of Service Overview HP Procurve Routing Switch 6308M-SX and 6208M-SX HP Procurve Switch 8000MHP Procurve Routing Switch 9308M and 9304M Switch using the switchs web browser or console interface Basic Operation HP TopTools QoS operates on two levels as described below11-3 Viewing All Currently Configured QoS Policies Configuring QoS for Specific Devices IP Addresses Adding a Policy for a Specific IP Address Adding a Policy for an IP Address Configuring a QoS Policy for IP Type Service ToS ToS Configuration Options11-6 11-7 Differentiated ServicesSwitch Ports Outbound ToS Option Procurve How To Configure a ToS Policy Vlan Configuring a QoS Policy for Specific Protocols DECNet AppleTalk QoS Policy for a Specific Protocol Configuring a QoS Policy for a Specific Click on the Return button to return to the Main QoS 11-12 Accessing Hub Features Device Management Features Accessing Hub Features Viewing Device Identity Information12-2 Interpreting Device Status Reading the Performance Gauges Performance Gauges for a Hub Hub Global Counters Switching Hub Global CountersGlobal Counters Gauge Attributes 12-6 Counters are described in the following tableGlobal Counters Counter Description Configuring Your Device Port CountersSee the online help for information on each counter Fault Detection Hub Device View Configuring IP System Information Hub IP Configuration Switching Hub IP Configuration12-10 Information is described in the following table Port ConfigurationSetting Description Port Information Bridge Enable/Disable Backup Links Configuring Load Balancing-Switching Hubs Backup Link ParametersParameter Description Support URL Select Technical Support 12.The Support 12-15 12-16 Status Overview Managing SwitchesDisplaying Switch Status This chapter has information on Managing Switches Graph Area Port Status Alert Log Area Port Status settings are described in the following table Port Status Settings13-4 Switch Identity Information Identity Page for HP Switch 800T Configuring Switch Features Device View Device View for the HP Procurve Switch 2424M IP Configuration Characteristics of Bootp and Dhcp Help for that device 13-9 Class of Service Port Settings13-10 When it is received on the switch Using VLANs to Maximize the CoS BenefitIs, CoS enables you to 13-11 Definitions Basic Operation13-12 Default Vlan as a tagged Vlan QoS Setting Outbound Port Queue OperationCoS Priority Priority Mapping Table Switch QueuesCriteria for Prioritizing Outbound Packets Tagged Vlan TopTools Steps for Configuring CoS Priority Guidelines for Configuring CoS PrioritiesPriority Criteria and Precedence Assigning a Monitoring Port 13-16 Setting Device Features Monitoring Selected Ports on a Switch HP Procurve Stack Management 11.Configuration Page for HP 8000M as Commander of a Stack Vlan Configuration Stack Management with VLANsBenefits of Stack Management Renaming a Vlan Enabling VLANsAdding a Vlan Removing a Vlan Modifying Port Vlan Configuration Enabling Gvrp SecurityConfirm removal of the Vlan Support/Management URLs Support URL13-23 Management Server URL 13-24 Setting Up Security for a Device Device Passwords Manager/Operator Password Combinations Setting Up Security for a Device Password Settings Passwords Read Write Results ProtectedFunction of Community Names Set Snmp Community Names Run Discovery again Configuring for Community NamesSelect the Additional Devices tab This improves the Discovery process Hub Port Security Address Selection Send Alarm Authorized AddressEavesdrop Prevention Setting Security Policy for Selected Ports Disable Port14-9 Setting the Security Policy for Selected Ports Hub Intrusion Log Switch Port Security Basic Operation Configuring Port Security-Planning Port Security Control Parameters Learn Mode 14-13 Configuring Authorized IP Managers 14-14 Defining Authorized Management Stations Access LevelsOverview of IP Mask Operation 14-15 Configuring Port Security Enter an Authorized Manager IP address Port Security Overview Switch Intrusion Log Select Yes to Prevent EavesdroppingClick on the Apply Changes button 10.Security Violation Entries in the Alert Log Identifying the IP Address of an Intruder Keeping the Intrusion Log Current by Resetting FlagsOperating Notes for Port Security How the Intrusion Log Operates Proxy Web Servers Security Violations 14-22 Performing Diagnostics Performing a Ping/Link Test Rebooting a Device Performing Diagnostics Resetting a Hub to Factory Default Settings Device Reboot Resetting a Switch 15-4 Producing a Configuration Report 15-5 15-6 Software Update Utility HP Procurve Switches HP Procurve Hubs Other HP SwitchesDownloading Software Starting the Software Update Utility Actions button and select Update FirmwareDownloading Software Obtaining the Software from the Web 16-3 Software updates are downloaded to Accepting the Licensing Agreement Scheduling the Software Update 16-5 Downloading Software Alert Log Showing Successful Software Update HP Download Manager Obtaining New Software from HPDevice types Download Control Time, and click OK Make sure you leave the CD in the drive How to Update the Map Files New software version data16-11 16-12 Verifying Device Agent Versions Appendix aAgent Firmware Versions Appendix a contains the following topics IPX Networks Preparing Network DevicesDevice Network Addresses IP Networks Configuring IP Parameters Globally Assigned IP Network Addresses T e Network Bootp Server Appendix a Index Index-1 Index-2 Index-3 Full Network button … Index-4 Index-5 Index-6 Index-7 Undo Last Load Balancing … 12-13 Update Discovery … Index-8