Manuals / Moxa Technologies / Computer Equipment / Switch

Moxa Technologies EDS-726 Using Port Access Control, Ieee, Static Port Lock, IEEE802.1X Concept

Models: EDS-726

1 101

Download 101 pages 17.89 Kb

Page 65

EDS-726 Series User’s Manual

Featured Functions

Traffic Rate Limiting Settings

Setting	Description	Factory Default
Ingress rate	Select the ingress rate for all packets from the following	N/A
	options: not limited, 3%, 5%, 10%, 15%, 25%, 35%,
	50%, 65%, 85%

Using Port Access Control

EDS-726 provides two kinds of Port-Base Access Control. One is IEE 802.1X and the other is Static Port Lock.

IEEE 802.1X

The IEEE 802.1X standard defines a protocol for client/server-based access control and authentication. The protocol restricts unauthorized clients from connecting to a LAN through ports that are open to the Internet, and which otherwise would be readily accessible. The purpose of the authentication server is to check each client that requests access to the port. The client is only allowed access to the port if the client’s permission is authenticated.

Static Port Lock

EDS-726 can also be configured to protect static MAC addresses for a specific port. With the Port Lock function, these locked ports will not learn any additional addresses, but only allow traffic from preset static MAC addresses, helping to block hackers and careless usage.

The IEEE802.1X Concept

Three components are used to create an authentication mechanism based on 802.1X standards: Client/Supplicant, Authentication Server, and Authenticator.

Supplicant: The end station that requests access to the LAN and switch services and responds to the requests from the switch.

Authentication server: The server that performs the actual authentication of the supplicant.

3-50

Image 65

Moxa Technologies EDS-726 user manual Using Port Access Control, Ieee, Static Port Lock, IEEE802.1X Concept

Contents

First Edition, July Moxa EtherDevice Switch EDS-726 Series User’s ManualDisclaimer Copyright NoticeTrademarks Table of Contents Chapter EDS Configurator GUI Introduction Features Package ChecklistOverview Industrial Networking CapabilityRecommended Software and Accessories Useful Utility and Remote ConfigurationGetting Started Connection Caution RS-232 Console Configuration 115200, None, 8, 1, VT100EDS-726 Series User’s Manual Key Function Configuration by Telnet Console Configuration by Web Browser EDS-726 Series User’s Manual Disabling Telnet and Browser Access Featured Functions System Identification Configuring Basic SettingsSwitch Name PasswordSwitch Location Switch DescriptionAccount PasswordAny host on a specific subnetwork can access the EDS-726 Accessible IPAny host can access the EDS-726 Allowable Hosts Input formatPort EnableDescription NamePort Transmission Speed NetworkFDX Flow Control Port TypeSwitch IP Address Auto IP ConfigurationSwitch Subnet Mask Default GatewayCurrent Time TimeCurrent Date System Up TimeSystem File Update-By Remote Tftp System File Update-By Local Import/Export Factory Default Using Port TrunkingSystem File Update-By CF Card Port Trunking Concept Configuring Port Trunking Trunk Group Maximum of 4 trunk groups Setting DescriptionTrunk Type Member Ports/Available PortsSnmp Configuring SnmpSnmp Versions Snmp Read/Write SettingsV1, V2c Read Community V1, V2c Write/Read CommunityTrap Server IP/Name Trap SettingsSwitch Object ID Using Communication RedundancyPrivate MIB information Gigabit Ethernet Redundant Ring Capability 300 msTurbo Ring Concept Initial SetupWhen the number of EDS-726 units in the Turbo Ring is even Ring Coupling Configuring Turbo Ring STP/RSTP Concept What is STP? Port Speed Path Cost 802.1D Edition 802.1w-2001 How STP WorksSTP Requirements STP Reconfiguration STP ConfigurationDifferences between Rstp and STP STP CalculationSTP Example Using STP on a Network with Multiple VLANsConfiguring STP/RSTP Root/Not Root Forwarding DelayProtocol of Redundancy Bridge priorityEnable STP per Port Configuration Limits of RSTP/STPPort Priority Port CostWhat is Traffic Prioritization? Using Traffic PrioritizationTraffic Prioritization Concept How Traffic Prioritization WorksTraffic Prioritization Differentiated Services DiffServ Traffic MarkingIeee 802.1p Priority Level Ieee 802.1D Traffic Type Traffic Queues Configuring Traffic PrioritizationQoS Classification Queuing Mechanism Default Port PriorityInspect TOS Inspect COSTOS/DiffServ Mapping Setting Description FactoryCoS Mapping Virtual LAN Vlan Concept Using Virtual LANWhat is a VLAN? Benefits of VLANs VLANs and Moxa EtherDevice SwitchManaging a Vlan Communication Between VLANsHUB Sample Applications of VLANs using Moxa EDS-726Vlan Port Settings Configuring 802.1Q VlanPort Pvid Management Vlan IDPort Fixed Vlan List Tagged Port Forbidden Vlan ListWhat is an IP Multicast? Using Multicast FilteringConcept of Multicast Filtering Benefits of MulticastNetwork without multicast filtering Multicast FilteringIgmp Internet Group Management Protocol Snooping Mode Multicast Filtering and Moxa EtherDevice SwitchQuery Mode Igmp Multicast FilteringIgmp Snooping Settings Configuring Igmp SnoopingStatic Multicast MAC Enabling Multicast FilteringStatic Multicast Router Port Igmp SnoopingQuerier Igmp TableAdd New Static Multicast Address to the List Add Static Multicast MACNone Join PortPort Setting Description Factory Default Configuring GmrpGmrp enable Setting Description Factory Default Port Mode Setting Description Factory DefaultConfiguring Bandwidth Management Using Bandwidth ManagementGmrp Table Broadcast Storm ProtectionTraffic Rate Limiting Settings Using Port Access ControlIeee Static Port LockMessage Exchange 802.1X Configuring IeeeRadius Server Database OptionServer Port Shared Key802.1X Re-Authentication 802.1X Re-AuthenticationLocal User Database Setup 802.1X Table Local User Database SetupStatic Port Lock Email Alarm Events Settings Using Auto WarningConfiguring Email Warning Event Types MoxaEtherDeviceSwitch0001@SwitchLocationSystem Event Port EventEmail Settings Relay Alarm Events Settings Configuring Relay WarningConfiguring Relay Event Types Activate your settingsOverride relay alarm settings Relay Alarm ListUsing Set Device IP Using Line-Swap-Fast-RecoveryConfiguring Line-Swap Fast Recovery Enable Line-Swap-Fast-RecoverySet up the connected devices Configuring Set Device IPMirror Port Using DiagnosisOutput data stream Bi-directionalPing Using MonitorMonitor by Switch Monitor by Port Using the MAC Address TableALL Using Event LogEDS Configurator GUI Broadcast Search Starting EDS ConfiguratorSearch by IP address Upgrade FirmwareModify IP Address Export Configuration Import Configuration Unlock Server EDS-726 Series User’s Manual MIB II.2 Interfaces Group MIB II.1 System GroupMIB II.4 IP Group MIB II.5 Icmp GroupMIB II.17 dot1dBridge Group MIB II.10 Transmission GroupMIB II.11 Snmp Group Private Traps Public TrapsInterface Modular Managed Switch System, EDS-72610GMechanical PowerGigabit Ethernet Interface Module, IM series Optical Fiber Fast Ethernet Interface Module, IM seriesInterface Regulatory Approvals EnvironmentalService Information Following services are provided Moxa Internet ServicesSerial Number Problem Report FormProduct Return Procedure