Zte ZXA10 C300 - Chapter 14 Access Security Configuration; 14.1 Port Identification Configuration

To Next Page

To Previous Page

Chapter14

AccessSecurity

Conguration

Accesssecuritycongurationcanassurethesafetyofsubscriberaccounts,preventillegal

usersfromaccessingthedevice,andillegaluser-sidepacketsfromattackingthedevice.

TheZXA10C300supportsthefollowingaccesssecurityfeatures:

lPortidentication

lMACaddressanti-spoong

lARPanti-spoong

lIPsourceguard

lSplithorizon

lMFF

lARPproxy

TableofContents

PortIdenticationConguration................................................................................

14-1

MACAddressAnti-SpoongConguration...............................................................

14-8

ConguringtheARPAnti-Spoong.........................................................................14-10

ConguringtheSplitHorizon..................................................................................14-11

ConguringtheIPSourceGuard............................................................................14-12

ConguringMFF....................................................................................................14-13

ConguringARPProxy...........................................................................................14-14

14.1PortIdenticationConguration

Thesystemprovidestheportidenticationmechanismtoimprovenetworksecurityand

preventuseraccountsfrombeingstolen.Thesystemimplementsportidentication

throughthefollowingtechniques:

lDHCPv4Layer-2RelayAgent

lPPPoEIntermediateAgent

lDHCPv6Layer-2RelayAgent

lNDPLIO

14.1.1ConfiguringthePortIdentification

Port-identicationistodenetheformatandcontentoftheCircuitID(CID)andRemote

ID(RID).

14-1

SJ-20130520164529-007|2013-06-30(R1.0)ZTEProprietaryandCondential

Other manuals for Zte ZXA10 C300