D-Link DES-3528 Product Manual - Page 216

xStack® DES-3528/DES-3552 Series Layer 2 Stackable Fast Ethernet Managed Switch Web UI Reference Guide

207

65535)

of the client. The default setting is

3600

seconds.

ReAuthentication

Determines whether regular re-authentication will take place on this port. The default

setting is

Disabled

.

Port Control

This allows the user to control the port authorization state.

Select

ForceAuthorized

to disable 802.1X and cause the port to transition to the

authorized state without any authentication exchange required. This means the port

transmits and receives normal traffic without 802.1X-based authentication of the client.

If

ForceUnauthorized

is selected, the port will remain in the unauthorized state, ignoring all

attempts by the client to authenticate. The Switch cannot provide authentication services

to the client through the interface.

If

Auto

is selected, it will enable 802.1X and cause the port to begin in the unauthorized

state, allowing only EAPOL frames to be sent and received through the port. The

authentication process begins when the link state of the port transitions from down to up,

or when an EAPOL-start frame is received. The Switch then requests the identity of the

client and begins relaying authentication messages between the client and the

authentication server.

The default setting is

Auto

.

Capability

This allows the 802.1X Authenticator settings to be applied on a per-port basis. Select

Authenticator

to apply the settings to the port. When the setting is activated, a user must

pass the authentication process to gain access to the network. Select

None

disable

802.1X functions on the port.

Direction

Sets the administrative-controlled direction to

Both

or

In.

If

Both

is selected, control is

exerted over both incoming and outgoing traffic through the controlled port selected in the

first field. If

In

is selected, the control is only exerted over incoming traffic through the port

the user selected in the first field.

Forward EAPOL PDU

This is a global setting to control the forwarding of EAPOL PDU. When 802.1X

functionality is disabled globally or for a port, and if 802.1X forward PDU is enabled both

globally and for the port, a received EAPOL packet on the port will be flooded in the same

VLAN to those ports for which 802.1X forward PDU is enabled and 802.1X is disabled

(globally or just for the port). The default state is disabled.

Max User (1-448)

Specifies the maximum number of users. The maximum user limit is

448

users. The

default is

16

. Tick the No Limit check box to have unlimited users.

Click the

Refresh

button to refresh the display table so that new entries will appear.

Click the

Apply

button to accept the changes made.

802.1X User Settings

Users can set different 802.1X users in switch’s local database.

To view this window, click

Security > 802.1X > 802.1X User Settings

, as shown below:

Section	Page
Intended Readers	10
Typographical Conventions	10
Notes, Notices and Cautions	10
Chapter 1 Web-based Switch Configuration	11
Introduction	11
Login to the Web Manager	11
Web-based User Interface	12
Web Pages	13
Chapter 2 System Configuration	14
Device Information	14
System Information Settings	15
Dual Configuration Settings	16
Firmware Information Settings	17
Port Configuration	18
PoE	21
Serial Port Settings	24
System Log configuration	25
Time Range Settings	29
Time Settings	29
User Accounts Settings	30
Stacking	31
Chapter 3 Management	35
ARP	35
Gratuitous ARP	37
IPv6 Neighbor Settings	38
IP Interface	39
Management Settings	43
Session Table	44
Single IP Management	44
SNMP Settings	54
Telnet Settings	64
Web Settings	64
Chapter 4 L2 Features	65
VLAN	65
Q-in-Q	88
Layer 2 Protocol Tunneling Settings	90
Spanning Tree	91
Link Aggregation	100
FDB	103
L2 Multicast Control	107
Multicast Filtering	132
ERPS Settings	136
LLDP	139
Chapter 5 L3 Features	149
Local Route Settings	149
IPv4 Static/Default Route Settings	149
IPv4 Route Table	150
IPv6 Static/Default Route Settings	151
IPv6 Route Table	151
Policy Route Settings	152
IP Forwarding Table	153
Chapter 6 QoS	154
802.1p Settings	156
Bandwidth Control	159
Traffic Control Settings	161
DSCP	164
HOL Blocking Prevention	167
Scheduling Settings	168
SRED	171
Chapter 7 ACL	174
ACL Configuration Wizard	174
Access Profile List	175
CPU Access Profile List	193
ACL Finder	207
ACL Flow Meter	208
Chapter 8 Security	211
802.1X	211
RADIUS	224
IP-MAC-Port Binding (IMPB)	229
MAC-based Access Control (MAC)	236
Web-based Access Control (WAC)	240
Japanese Web-based Access Control (JWAC)	245
Compound Authentication	252
Port Security	256
ARP Spoofing Prevention Settings	258
BPDU Attack Protection	259
Loopback Detection Settings	261
Traffic Segmentation Settings	262
NetBIOS Filtering Settings	263
DHCP Server Screening	264
Access Authentication Control	265
SSL Settings	274
SSH	276
Trusted Host Settings	280
Safeguard Engine Settings	281
Chapter 9 Network Application	284
DHCP	284
DNS	296
PPPoE Circuit ID Insertion Settings	298
SNTP	299
Chapter 10 OAM	302
CFM	302
Ethernet OAM	311
DULD Settings	315
Cable Diagnostics	316
Chapter 11 Monitoring	318
Utilization	318
Statistics	320
Mirror	332
sFlow	334
Ping Test	337
Trace Route	338
Peripheral	340
Chapter 12 Save and Tools	341
Save Configuration ID 1	341
Save Configuration ID 2	341
Save Log	342
Save All	342
Stacking Information	342
Download Firmware	344
Download Configuration File	344
Upload Configuration File	345
Upload Log File	346
Reset	347
Reboot System	347
Appendix A Mitigating ARP Spoofing Attacks Using Packet Content ACL	348
How Address Resolution Protocol Works	348
How ARP Spoofing Attacks a Network	350
Prevent ARP Spoofing via Packet Content ACL	351
Configuration	351
Appendix B System Log and Trap List	354
System Log Entries	354
DES-3528/DES-3552 Series Trap List	362
Proprietary Trap List	362
Appendix C Password Recovery Procedure	365

D-Link DES-3528 Product Manual - Page 216

X User Settings, ReAuthentication, Port Control, Capability, Direction, Forward EAPOL PDU

Page 216 highlights