5 Configuration D-Link DGS-1100-06/ME User Manual
54
The Port Security page contains the following fields:
From Port/To Port: A consecutive group of ports may be configured starting with the selected port.
Admin State: This pull-down menu allows users to enable or disable Port Security (locked MAC address
table for the selected ports).
Max. Learning Address (0-64): The number of MAC addresses that will be in the MAC address-forwarding
table for the selected switch and group of ports.
Lock Address Mode: This pull-down menu allows you to select how the MAC address table locking will be
implemented on the Switch, for the selected group of ports. The options are:
Delete On Reset – The locked addresses will not age out until the Switch has been reset.
Delete On Timeout – The locked addresses will age out after the aging timer expires.
Permanent – The locked addresses will not age out after the aging timer expires.
Click Apply to make configurations make effects.
Security > 802.1X > 802.1X Settings
Network switches provide easy and open access to resources by simply attaching a client PC. Unfortunately
this automatic configuration also allows unauthorized personnel to easily intrude and possibly gain access to
sensitive data.
IEEE-802.1X provides a security standard for network access control, especially in Wi-Fi wireless networks.
802.1X holds a network port disconnected until authentication is completed. The switch uses Extensible
Authentication Protocol over LANs (EAPOL) to exchange authentication protocol client identity (such as a
user name) with the client, and forward it to another remote RADIUS authentication server to verify access
rights. The EAP packet from the RADIUS server also contains the authentication method to be used. The
client can reject the authentication method and request another, depending on the configuration of the client
software and the RADIUS server. Depending on the authenticated results, the port is either made available
to the user, or the user is denied access to the network.
The RADIUS servers make the network a lot easier to manage for the administrator by gathering and storing
the user lists.
Figure 5.86 - Security > 802.1X > 802.1X Settings
By default, 802.1X is disabled. To use EAP for security, select enabled and set the Authentication Mode
and Authentication Protocol then click Apply.
Authentication Mode: Indicates the 802.1X mode enabled on the device. The possible field values are:
Port Based – Enables 802.1X on ports. This is the default value.
MAC Based – Enables 802.1X on MAC addresses.
Authentication Protocol: Indicates the 802.1X Protocol on the device. The possible field values are Local
and RADIUS EAP.
From Port/To Port: Enter the port or ports to be set.
To Next Page
Loading...
