Setting Up the Model 281xSA Hub Configuration File
G-14
893-743-A
node <xxxxxxxxxxxx> <slot#> <port#>
A list of nodes allowed on the network. Each entry must occupy a separate
line, up to a maximum of 800 entries. Each parameter consists of the 12-
digit hexadecimal MAC address of the node, followed by its slot number
and port number. A slot or port number of zero, or a blank, is treated as a
“wild card,” indicating “any slot” or “any port.” For example, the entry
node
013489ABCDEF 4 0
specifies that any port associated with
slot 4 on the hub with MAC address 013489ABCDEF is allowed on the
network.
allow-on conc|slot|port
Enables the allowed nodes feature and specifies the level of security. You
can enable allowed nodes at the hub (concentrator), slot, or port level. The
system default for the Allowed Nodes feature is Off; to enable the feature
and select a level, uncomment the appropriate line in the configuration file.
You can select only one level at a time.
port <slot#> <port#> <action#>
slot <slot#> <action#>
conc action#
These three keywords specify actions to be taken when a security violation
occurs, either at a specific port (identified by both slot number and port
number), at a particular slot, or for the entire hub. The action to be taken is
identified by one of these numbers:
2 = take no action
3 = send a trap
4 = partition the port
5 = send a trap and partition the port
security-config-lock on|off
Locks or unlocks access to the security configuration via the network
management user interface. When this keyword is set on, you cannot
change Allowed Nodes settings through the network management user
interface unless you change the configuration setting through a connection
to the Model 281xSA hub service port. Valid choices are on and off. The
default is off.