Edge-Core ES3528M-PoE Guida di Installazione Pagina 165
- Pagina / 694
- Indice
- RISOLUZIONE PROBLEMI
- SEGNALIBRI
Valutato. / 5. Basato su recensioni clienti
General Security Measures
3-115
3
Binding a Port to an Access Control List
After configuring the Access Control Lists (ACL), you can bind the ports that need to
filter traffic to the appropriate ACLs. You can assign one IP access list to any port.
Command Usage
• Each ACL can have up to 32 rules.
• This switch supports ACLs for ingress filtering only.
Command Attributes
• Port – Fixed port or SFP module. (Range: 1-28)
• IP – Specifies the IP ACL to bind to a port.
• MAC – Specifies the MAC ACL to bind to a port.
• IN – ACL for ingress packets.
Web – Click Security, ACL, Port Binding. Mark the Enable field for the port you want
to bind to an ACL for ingress or egress traffic, select the required ACL from the
drop-down list, then click Apply.
Figure 3-68 Configuring ACL Port Binding
CLI – This example assigns an IP access list to port 1, and an IP access list to
port 3.
DHCP Snooping
The addresses assigned to DHCP clients on unsecure ports can be carefully
controlled using the dynamic bindings registered with DHCP Snooping (or using the
static bindings configured with IP Source Guard). DHCP snooping allows a switch to
protect a network from rogue DHCP servers or other devices which send
port-related information to a DHCP server. This information can be useful in tracking
an IP address back to a physical port.
Console(config)#interface ethernet 1/1 4-182
Console(config-if)#ip access-group david in 4-175
Console(config-if)#exit
Console(config)#interface ethernet 1/3
Console(config-if)#ip access-group david in
Console(config-if)#
- Powered by Accton 1
- Fast Ethernet Switch 3
- ES3528M-PoE 4
- E112008/ST-R01 F1.1.0.11 4
- 149100041600A 4
- About This Guide 5
- Contents 24
- Chapter 1: Introduction 33
- Introduction 34
- System Defaults 38
- Connecting to the Switch 41
- Required Connections 42
- Basic Configuration 43
- Setting Passwords 44
- Setting an IP Address 44
- Dynamic Configuration 45
- Initial Configuration 46
- Trap Receivers 47
- Managing System Files 48
- Saving Configuration Settings 49
- Using the Web Interface 51
- Home Page 52
- Panel Display 53
- Main Menu 54
- Manual Configuration 68
- Using DHCP/BOOTP 69
- Enabling Jumbo Frames 70
- Managing Firmware 71
- Console Port Settings 75
- Telnet Settings 77
- Configuring Event Logging 79
- Remote Log Configuration 80
- Displaying Log Messages 82
- Resetting the System 84
- Setting the System Clock 85
- Setting the Time Manually 86
- Configuring SNTP 86
- Configuring NTP 87
- Setting the Time Zone 89
- Enabling SNMP Agent Status 91
- Setting the Local Engine ID 96
- Specifying a Remote Engine ID 97
- Configuring SNMPv3 Users 98
- Configuring the Switch 100
- Configuring SNMPv3 Groups 102
- Setting SNMPv3 Views 105
- User Authentication 107
- Configuring User Accounts 108
- Configuring Encryption Keys 114
- Configuring AAA Accounting 118
- AAA Accounting Update 120
- AAA Accounting Exec Settings 123
- AAA Accounting Summary 123
- Authorization Settings 125
- Authorization EXEC Settings 126
- Authorization Summary 127
- Configuring HTTPS 128
- Configuring the Secure Shell 130
- Generating the Host Key Pair 133
- Importing User Public Keys 135
- Configuring the SSH Server 137
- Displaying 802.1X Statistics 144
- General Security Measures 147
- Configuring Port Security 148
- Web Authentication 149
- Access Control Lists 158
- Configuring a Standard IP ACL 159
- Configuring a MAC ACL 163
- DHCP Snooping 165
- Configuring DHCP Snooping 167
- IP Source Guard 172
- Console# 176
- Port Configuration 177
- Creating Trunk Groups 183
- Displaying LACP Port Counters 191
- Configuring Port Mirroring 198
- Configuring Rate Limits 199
- Showing Port Statistics 200
- Power Over Ethernet Settings 204
- Switch Power Status 205
- Setting a Switch Power Budget 206
- Displaying Port Power Status 206
- Configuring Port PoE Power 207
- Address Table Settings 209
- Displaying the Address Table 210
- Changing the Aging Time 211
- Displaying Global Settings 215
- Configuring Global Settings 218
- Displaying Interface Settings 222
- VLAN Configuration 234
- Assigning Ports to VLANs 235
- Displaying Current VLANs 239
- Creating VLANs 240
- Traffic Segmentation 253
- Private VLANs 256
- Configuring Private VLANs 257
- Associating VLANs 258
- Protocol VLANs 261
- 65536, and 264
- 65536 264
- Transmission Interval 265
- Link Layer Discovery Protocol 267
- Displaying Device Statistics 275
- Layer 2 Queue Settings 278
- Figure 3-131 Traffic Classes 281
- Selecting the Queue Mode 282
- Layer 3/4 Priority Settings 284
- Mapping DSCP Priority 285
- Quality of Service 287
- Configuring a Class Map 288
- Creating QoS Policies 290
- VoIP Traffic Configuration 294
- Configuring Telephony OUI 297
- Multicast 299
- Multicast Filtering 301
- Enabling IGMP Immediate Leave 303
- IGMP Filtering and Throttling 308
- Enabling IGMP Filtering 309
- Multicast VLAN Registration 313
- Switch Clustering 321
- Configuring Cluster Members 322
- UPnP Configuration 326
- Accessing the CLI 329
- Console Connection 329
- Telnet Connection 330
- Entering Commands 331
- Showing Commands 332
- Partial Keyword Lookup 333
- Using Command History 333
- Understanding Command Modes 333
- Exec Commands 334
- Configuration Commands 335
- Command Line Processing 336
- Command Groups 337
- General Commands 338
- Command Line Interface 340
- System Management Commands 344
- Device Designation Commands 345
- Banner Information Commands 346
- System Status Commands 355
- Frame Size Commands 361
- File Management Commands 362
- Line Commands 368
- Event Logging Commands 377
- SMTP Alert Commands 384
- Time Commands 387
- Switch Cluster Commands 401
- UPnP Commands 405
- Debug Commands 408
- SNMP Commands 409
- Authentication Commands 423
- Authentication Sequence 426
- RADIUS Client 428
- TACACS+ Client 432
- AAA Commands 437
- Web Server Commands 446
- Telnet Server Commands 449
- Secure Shell Commands 450
- 802.1X Port Authentication 459
- Management IP Filter Commands 468
- Port Security Commands 471
- DHCP Snooping Commands 486
- IP Source Guard Commands 494
- Access Control List Commands 498
- MAC ACLs 504
- ACL Information 509
- Interface Commands 510
- Link Aggregation Commands 524
- Power over Ethernet Commands 533
- Mirror Port Commands 539
- Rate Limit Commands 541
- Address Table Commands 542
- Spanning Tree Commands 546
- 548
- VLAN Commands 568
- Editing VLAN Groups 573
- Configuring VLAN Interfaces 575
- Displaying VLAN Information 581
- Configuring Voice VLANs 598
- LLDP Commands 605
- refresh-interval 610
- Class of Service Commands 627
- Quality of Service Commands 634
- Multicast Filtering Commands 643
- IGMP Query Commands (Layer 2) 648
- IP Interface Commands 666
- Software Features 671
- Management Features 672
- Standards 672
- Management Information Bases 673
- Software Specifications 674
- Appendix B: Troubleshooting 675
- Using System Logs 676
- Glossary 677
- Glossary-8 684
- Virtual LAN (VLAN) 684
- Numerics 685
- E112008/ST-R01 694
Prodotti e manuali riguardandi Networking Edge-Core ES3528M-PoE
Networking Edge-Core ES4650 Manuale Utente
(24 pagine)
(24 pagine)
(16 pagine)© 2020, manymanuals.it. Tutti i diritti riservati | 0.030 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Commenti su questo manuale