Chapter 2: LM Security Screens for 2E43-51/2E43-51R Devices
2-4
Local Management Supplement
The port will lock down on the address that is currently configured in
the Port Level Security Configuration screen (if one is entered), or on
the source address of the last received frame. When a port is locked on
an address, the device executes the actions selected in the Action On
Intruder field (Port Level Security Configuration screen) when a frame
is received that violates security.
•
LockOnNext – The next frame received by each port on the interface
connector is examined to learn its source address. After the source
address of a frame is learned on a port, it is now locked on that address
and only those frames received with that same source address are
allowed on that port. All frames received that do not have that same
source address will cause the device to execute the actions selected in
the Action On Intruder field.
Action On Intruder (Toggle)
Used to select the actions taken for the selected security state. There are
two fields in which to select the actions. Both toggle to activate or
deactivate the action.
•
DisablePort/NoDisablePort – DisablePort causes the switch to turn off
the port that had a security violation. With NoDisable set, the port is
not turned off.
•
SendTrap/NoTrap – SendTrap causes the switch to send an SNMP trap
when a port detects a security violation. With NoTrap set, no SNMP
trap is sent.
2.2.1
Setting the Repeater Level Security
To set the security on all repeater ports of each connector, proceed as
follows:
1.
Use the arrow keys to highlight the Security State field for the
interface connector.
2.
Use the SPACE bar to step to the appropriate security level
(NonSecure, LockedOnAddr, or LockOnNext).
3.
If the security level chosen causes the DisablePort and SendTrap
fields to display under Action On Intruder, use the arrow keys to
highlight the DisablePort field. If the security level chosen does not
cause the fields to display under Action On Intruder, proceed to
step 7
.