Lancom GS-1224 Скачать руководство пользователя страница 36 | Manualshive

Страница: 36 / 66

background image

LANCOM GS

-

1224

쮿

Chapter 4: Operation of Web- based Management

35

EN

4.2.8

802.1x Configuration

802.1x port-based network access control provides a method to restrict users
to access network resources via authenticating user’s information. This rest-
ricts users from gaining access to the network resources through a 802.1x-
enabled port without authentication. If a user wishes to touch the network
through a port under 802.1x control, he (she) must firstly input his (her)
account name for authentication and waits for gaining authorization before
sending or receiving any packets from a 802.1x-enabled port.

Before the devices or end stations can access the network resources through
the ports under 802.1x control, the devices or end stations connected to a
controlled port send the authentication request to the authenticator, the
authenticator pass the request to the authentication server to authenticate
and verify, and the server tell the authenticator if the request get the grant of
authorization for the ports.

According to IEEE802.1x, there are three components implemented. They are
Authenticator, Supplicant and Authentication server.

«
...
34
35
36
37
38
...
»

Содержание GS-1224

Страница 1: ...c o n n e c t i n g y o u r b u s i n e s s...

Страница 2: ...LANCOM GS 1224...

Страница 3: ...ed trademarks of Microsoft Corp The LANCOM Systems logo LCOS and the name LANCOM are registered trademarks of LANCOM Systems GmbH All other names or descriptions used may be trademarks or registered t...

Страница 4: ...several members of our staff from a variety of departments in order to ensure you the best possible support when using your LANCOM product Should you find any errors or if you would like to suggest i...

Страница 5: ...reface 4 EN Information symbols Very important instructions Failure to observe these may result in damage Important instruction that should be observed Additional information that may be helpful but i...

Страница 6: ...and buttons on the LANCOM GS 1224 11 2 3 2 Connectors on rear of the LANCOM GS 1224 12 2 4 Mounting and connecting up the LANCOM Switch 12 2 5 Software installation 13 2 5 1 Starting the software setu...

Страница 7: ...ration 44 4 2 11 QoS Quality of Service Configuration 45 4 2 12 Filter 48 4 2 13 Rate Limit 49 4 2 14 Storm Control 50 4 2 15 SNMP 51 4 3 Monitoring 53 4 3 1 Detailed Statistics 53 4 3 2 LACP Status 5...

Страница 8: ...Gigabit and Fast Ethernet specifications The 1000 Mbps SFP Fiber transceiver are Gigabit Ethernet ports that fully complies with all IEEE 802 3z and 1000Base SX LX standards The Single Fiber WDM BiDi...

Страница 9: ...493 Interface Group MIB RFC2863 IGMP Snooping Support IGMP version 2 RFC 2236 The function IGMP snooping is used to establish the multicast groups to forward the multicast packet to the member ports a...

Страница 10: ...ned Default configuration which can be restored to overwrite the current configuration Types of QoS 802 1p Priority and DiffServ DSCP Priority Rapid Spanning Tree 802 1w RSTP 802 1x port security on a...

Страница 11: ...e missing please take up immediate contact to your dealer or to the address on the delivery note supplied with your device 2 2 System requirements Computers that connect to a LANCOM must meet the foll...

Страница 12: ...rk connection can be established to the connected device 10 100 1000 Mbps LED Constant green when the 1000 Mbps mode is active Constant orange when the 100 Mbps mode is active Off when the 10 Mbps is...

Страница 13: ...ild up LAN connection Connect the network devices to the ports of the LANCOM Switch by means of a suitable twisted pair cable TP cable The connectors automatically detect the avalable data transfer sp...

Страница 14: ...tion if you use your LANCOM Switch exclusively with computers running operating systems other than Windows 2 5 1 Starting the software setup Place the product CD into your drive The setup program will...

Страница 15: ...start the Web based configuration of a LANCOM Switch With LANmonitor you can use a Windows computer to monitor all of your LANCOM devices This program displays all important status infor mation for a...

Страница 16: ...uctions for configuring the device with WEBconfig are avai lable in the chapter Web based configuration There are two ways of starting the configuration by browser If you know the device s IP address...

Страница 17: ...tellation Networks with DHCP server In its factory settings the LANCOM Switch is set for auto DHCP mode meaning that it searches for a DHCP server to assign it an IP address subnet mask and gateway ad...

Страница 18: ...rtant infor mation on the ports 3 3 1 Ethernet port status LANmonitor displays the current status of all of the device s Ethernet ports This includes monitoring of the state as configured by the admin...

Страница 19: ...he default values of the managed switch are listed in the table below Web Smart Switch supports a simplified user management function which allows only one administrator to configure the switch at one...

Страница 20: ...ts for the optional SFP modules show a demonstration of the module if it is installed Ports without installed SFP modules show covered plates On the left side the main menu tree for web is listed in t...

Страница 21: ...r QoS Filter Rate Limit Storm Control and SNMP 4 2 1 System Configuration In the system configuration you can define the basic parameter for the confi guration and the operation of the device The swit...

Страница 22: ...s of the DHCP server Lease Time Left Show the lease time left of DHCP client Device Name Set a special name for this switch Up to 16 characters are allowed in this parameter Any alphanumeric character...

Страница 23: ...e ID of the management VLAN Password Set a password for this switch Up to 16 characters are allowed in this parameter Any alphanumeric character is acceptable Default admin Inactivity Timeout secs Set...

Страница 24: ...of up to 9600 bytes Default disable Power Saving Mode This function supports Power Saving to deactivate automatically the power supply for the ports with inactive links Select Enable Disable Default e...

Страница 25: ...e port It drops the packet if too much to handle Default Disable Flow Control status To display the Flow control status 4 2 3 VLAN Mode Configuration The switch supports Tag based VLAN 802 1q and Port...

Страница 26: ...iption This switch supports up to maximal 24 port based VLANs As soon as the VLAN mode is set on port based the display auto matically changes to the configuration of the port based VLAN groups Tag ba...

Страница 27: ...can select the ports on which the doubled VLAN tags should be used After confirmation of the tag based VLAN mode the display auto matically changes to the configuration of the tag based VLAN groups Me...

Страница 28: ...groups if needed 4 2 4 VLAN Group Configuration Shows the information of VLAN Groups and allows administrators to maintain them by modifying and deleting each VLAN group The display differs depending...

Страница 29: ...port based or tag based VLAN Modify Click on Modify to edit the selected VLAN Delete Click on Delete to remove the selected VLAN VLAN group configuration Parameter ID VLAN ID ID of the VLAN group 1 t...

Страница 30: ...apter 4 Operation of Web based Management 29 EN VLAN Port Configuration In tag based mode you can define further settings for each port Please click the Port Config button in the list of tag based VLA...

Страница 31: ...untagged If double tags are detected the outer tag will be removed This option is generally used if end devices are connected to the port Trunk Packets on this port are forwarded using the current ta...

Страница 32: ...ation is used to configure the set tings of Link Aggregation You can bundle more than one port by same speed full duplex and the same MAC to be a single logical port thus the logical port aggregates t...

Страница 33: ...oup 1 are selected and the settings are stored with Apply 4 2 6 LACP Smart Web Switch supports Link Aggregation Control Protocol LACP LACP is a standard network protocol IEEE 802 3ad which dynamically...

Страница 34: ...lt 32768 Hello Time Hello Time is the time interval in which the switch tells the following devices in the spanning tree with a hello packet that it is still active If for example the LANCOM Switch is...

Страница 35: ...he check box beside the port x to enable RSTP protocol then press Apply Edge An Edge Port is a port connected to a device that knows nothing about STP or RSTP Usually the connected device is an end st...

Страница 36: ...ccount name for authentication and waits for gaining authorization before sending or receiving any packets from a 802 1x enabled port Before the devices or end stations can access the network resource...

Страница 37: ...ort will unconditionally pass the packets with PAE group MAC address which has the value of 01 80 c2 00 00 03 and will not be forwarded by MAC bridge at any time Authentication server A device provide...

Страница 38: ...access the services on device B and C first it must exchange the authentication message with the authenticator on the port it connected via EAPOL packet The authenticator transfers the supplicant s c...

Страница 39: ...ticator The authenticator will embed the user ID into Radius Access Request command and send it to the authentication server for confirming its identity After receiving the Radius Access Request the...

Страница 40: ...type of authentication supported in the switch In this mode for the devices connected to this port once a supplicant is authorized the devices connected to this port can access the network resource t...

Страница 41: ...tween authentication server and authenticator It is a string with the length 1 15 characters The character string may contain upper case lower case and 0 9 It is character sense It is not allowed to p...

Страница 42: ...authenticate Using this function all devices connected to this port will have to re authenticate with username and password when the reauthentication period expires Re authenticate All Re authenticat...

Страница 43: ...how of 802 1X statistics the screen include Authenticator counters backend Authenticator counters dot1x MIB counters and Other statistics Parameters You can enable or disable Reauthentication function...

Страница 44: ...not be zero Default 3600 seconds EAP timeout 1 255 s A timeout condition in the exchange between the authenticator and the supplicant The valid range 1 255 Default 30 seconds 4 2 9 IGMP Snooping IGMP...

Страница 45: ...in the network and learns if necessary the membership of certain multicast groups Default enable IGMP Querying Enabled If this function is enabled the switch can distribute IGMP requests in the netwo...

Страница 46: ...on Layer 3 of network framework QoS Configuration While setting QoS function please select QoS Mode in drop down menu at first Then you can use 802 1p Priority and DSCP Priority functions In this func...

Страница 47: ...In Default Priority 0 is mapping to Queue normal Priority 1 is mapping to Queue low Priority 2 is mapping to Queue low Priority 3 is mapping to Queue normal Prio rity 4 is mapping to Queue medium Prio...

Страница 48: ...All High Priority The QoS setting would apply to all ports on the switch if one of the following values is selected All Low Priority All Normal Priority All Medium Priority or All High Priority Port N...

Страница 49: ...low all IP Address login to this switch and manage it Static Just allow the IP Address which set by administrator to login to this switch and manage it DHCP Allow the IP Address get from DHCP server c...

Страница 50: ...field Pause frames are also generated if flow control is enabled The format of the packet limits to unicast broadcast and multicast Valid values are multiples 0 to 31 of the traffic rate unit The res...

Страница 51: ...ameter ICMP Rate Enables the ICMP Storm capability The setting range is 1k 1024k per second If the amount of ICMP packets reachs this value ICMP packets will be dropped Default No Limit Learn Frames R...

Страница 52: ...the Management Information Base MIB described in the form of Structure Management Information SMI The SNMP agent is running on the switch to response the request issued by the SNMP manager Basically...

Страница 53: ...with different community name via the SNMP protocol If they both have the same community name they can talk to each other Community name is user definable with a maximum length of 15 charac ters and...

Страница 54: ...ve functions contained in the monitoring function Detailed Stati stics LACP Status RSTP Status IGMP Status and Ping Status 4 3 1 Detailed Statistics Displays the detailed counting number of each port...

Страница 55: ...counting number of the packet received RX Octets Total received bytes Rx High Priority Packets Number of Rx packets classified as high priority Rx Low Priority Packets Number of Rx packets classified...

Страница 56: ...Packets Number of Tx packets classified as low priority Tx Broadcast Shows the counting number of the transmitted broadcast packet Tx Multicast Show the counting number of the transmitted multicast pa...

Страница 57: ...ets transmitted Tx 512 1023 Bytes Number of 512 1023 byte frames in good and bad packets transmitted Tx 1024 Bytes Number of 1024 max_length byte frames in good and bad packets trans mitted Rx CRC Ali...

Страница 58: ...Status The LACP Status window shows LACP information and status for all ports at the same time Within the IEEE specification the Link Aggregation Control Pro tocol LACP provides a method to control th...

Страница 59: ...and bridge ID of the switch which stands for the MAC address of this switch Hello Time Shows the current hello time of the root bridge Max Age Shows the current root bridge maximum age time Forward D...

Страница 60: ...t for a given multicast group the switch adds the host s port number to the multicast list for that group When the switch hears an IGMP Leave it removes the host s port from the table entry IGMP Statu...

Страница 61: ...network It shows the leaves number 4 3 5 Ping Status To set up target IP address for ping function and display ping status Ping test function is a tool for detecting if the target device is alive or n...

Страница 62: ...r you set the parame ters Ping Results Target IP address Shows the active target IP address Status Shows the result of the ping status Received replies Shows the received replies number of times Reque...

Страница 63: ...hen Factory Default function is perfor med If you want to restore all configurations including the IP address setting to the factory default please press the RESET button on the front panel lon ger th...

Страница 64: ...sibilities to log out or be logged out Auto Logout If Auto Logout is ON and no action no key stroke is done for the time in minutes you set up in the Auto Logout Timer the switch will log you out auto...

Страница 65: ...DA SA and DA SA MAC based trunking with automatic failover Multicasting Supports IGMP snooping Spanning Tree Protokoll STP Rapid STP 802 1d 1w Interfaces Ethernet ports 20 ports 10 100 1000 Mbps ethe...

Страница 66: ...that the devices of the type described in this documentation are in agreement with the basic requirements and other relevant regulations of the 1995 5 EC directive The CE declarations of conformity f...

Отзывы:

Нет отзывов

Похожие инструкции для GS-1224

Ray 3 Plus Client

Бренд: Sun Microsystems Страницы: 6

Бренд: Oracle Страницы: 24

Бренд: Falcon Страницы: 24

System Storage DS3200

Бренд: IBM Страницы: 2

Бренд: Supermicro Страницы: 15

Бренд: Supermicro Страницы: 62

ControlCenter-IP 2.0

Бренд: G&D Страницы: 60

Бренд: Tripp Lite Страницы: 2

Бренд: Billion Страницы: 2

Бренд: Trane Страницы: 8

Бренд: Datacom Страницы: 118

Бренд: EnGenius Страницы: 6

Бренд: Emerson Страницы: 8

Liebert NXL 250

Бренд: Emerson Страницы: 36

Liebert SiteLink-12

Бренд: Emerson Страницы: 5

GKF 10.8V-8 Professional

Бренд: Bosch Страницы: 20

Бренд: Bosch Страницы: 103

Surestore Tape Library Model 2/28

Бренд: HP Страницы: 110

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды