4 Configuration
DGS-1210 series Metro Ethernet Managed Switch User Manual
92
Figure 4.135 - Security > SSL Settings
The SSL Settings page allows users to download a certificate file for the SSL function on the Switch from a
TFTP server. The certificate file is a data record used for authenticating devices on the network. It contains
information on the owner, keys for authentication and digital signatures. Both the server and the client must
have consistent certificate files for optimal use of the SSL function. The Switch only supports certificate files
with .der file extensions. The Switch is shipped with a certificate pre-loaded though the user may need to
download more, depending on user circumstances.
Server IP Address:
Select IPv4 or IPv6 and enter the IP address of the TFTP server where the certificate
files are located.
Certificate File Name:
Enter the path and the filename of the certificate file to download. This file must have
a .der extension. (Ex. c:/cert.der)
Click
Download
to download the certificate file.
NOTE:
Enabling the SSL command will disable
the web-based switch management. To log on to
the Switch again, the header of the URL must
begin with https://. Entering anything else into the
address field of the web browser will result in an
error and no authentication will be granted.
Security > Smart Binding > Smart Binding Settings
The primary purpose of Smart Binding is to restrict client access to a switch by enabling administrators to
configure pairs of client MAC and IP addresses that are allowed to access networks through a switch.
The Smart Binding function is port-based, meaning that a user can enable or disable the function on any
individual port. Once Smart Binding is enabled on a switch port, the switch will restrict or allow client access
by checking the pair of IP-MAC addresses with the pre-configured database, also known as the “IMPB white
list”.
Users can enable or disable the
Packet
Inspection
and
DHCP Snooping
on the Switch.
Содержание DGS-1210 Series
Страница 159: ...140 ...