EasyManua.ls Logo

Check Point L-72 - Page 77

Check Point L-72
124 pages
Save Page as PDF
Print Icon
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Appliance Configuration
Check Point 1400 Appliances Centrally Managed Administration Guide R77.20.85 | 77
4.
To edit a MAC address, select it from the list and click Edit.
5.
To delete a MAC address, select it from the list and click Delete.
To disable MAC filtering for a specific interface:
1.
Go to Device > Local Network.
2.
Select a LAN interface and click Edit
The Edit LAN window opens.
3.
Click Advanced.
4.
Select Disable MAC filtering.
To enable, clear this option.
5.
Click Apply.
Limitations:
MAC filtering is not supported on external interfaces and over switches between physical LAN
ports (port-based VLANs). If you configure a physical switch between multiple LAN ports, you
cannot activate MAC filtering on this network. Replace the switch with a bridge configuration.
To disable MAC filtering for a bridged LAN interface, you must reboot.
Traffic from a remote encryption domain is not MAC filtered.
Broadcast traffic such as ARP and DHCP is not blocked.
To configure MAC filtering for a DMZ interface, you must use CLI. You cannot configure MAC
filtering in the WebUI.
802.1x Authentication Protocol
IEEE 802.1x is a port-based network access protocol that provides an authentication mechanism
for devices that are physically attached to the network.
802.1x authentication is enabled only when you define a LAN or a DMZ network as a separate
network and a RADIUS server is defined.
Workflow:
1.
Configure a RADIUS Server. See Managing Authentication Servers (on page 102).
2.
Define it on the appliance
3.
Activate 802.1x authentication on a separate LAN interface (includes the DMZ when not used
as an internet connection), or a tag-based VLAN interface defined on one of the LAN physical
ports.
If you configure a physical switch (port-based VLAN) between multiple LAN ports, you cannot
activate the 802.1x protocol on this network. Replace the switch with a bridge configuration.
To enable 802.1x authentication on a separate LAN interface:
1.
Go to Device > Local Network.
2.
Select the LAN interface and click Edit.
The Edit window opens in the Configuration tab.
3.
For Assigned to: select Separate network.
4.
In the Advanced tab, select Activate 802.1x authentication.
5.
Enter a time for Re-authentication frequency (in seconds).
6.
Click Apply.

Table of Contents

Other manuals for Check Point L-72

Preview: Getting Started Guide
Getting Started Guide112 pages

Related product manuals