Home » D-Link Manuals » Hubs & Switches » D-Link DGS-1210-10 » Manual Viewer

D-Link DGS-1210-10 Reference Guide - Page 64

Security > Smart Binding > Black List, AAA > 802.1X > 802.1X Settings

Add to My Manuals
Save this manual to your list of manuals

Page 64 highlights

5 Configuration D-Link Web Smart Switch User Manual Figure 5.76 - Security > Smart Binding > White List Select the check box of entry then click Delete to remove it. Click Select All to select all entries of the table or click Clean to select none entries. Please keep at least one management host in the White List. Security > Smart Binding > Black List The Black List page shows unauthorized accesses. When ARP Inspection is selected and a device sends out an ARP packet containing unmatched IP-MAC-Port information, the device will be forbidden and listed here. Figure 5.77 - Security > Smart Binding > Black List By giving conditions, desired devices information can be screened out below and then click Find to search for a list of the entry: VID: Enter the VLAN ID number of the device. IP Address: Enter the IP Address of the device. MAC Address: Enter the MAC Address of the device. Port: Enter the port number which the device connects to. Check a box of Delete column to release an entry from the forbidden list and then click Apply to delete an entry from the list. Click Select All to select all entries, or click Clean to select none of the entries AAA > 802.1X > 802.1X Settings Network switches provide easy and open access to resources, by simply attaching a client PC. Unfortunately this automatic configuration also allows unauthorized personnel to easily intrude and possibly gain access to sensitive data. IEEE-802.1X provides a security standard for network access control, especially in Wi-Fi wireless networks. 802.1X holds a network port disconnected until authentication is completed. The switch uses Extensible Authentication Protocol over LANs (EAPOL) to exchange authentication protocol client identity (such as a user name) with the client, and forward it to another remote RADIUS authentication server to verify access rights. The EAP packet from the RADIUS server also contains the authentication method to be used. The client can reject the authentication method and request another, depending on the configuration of the client software and the RADIUS server. Depending on the authenticated results, the port is either made available to the user, or the user is denied access to the network. The RADIUS servers make the network a lot easier to manage for the administrator by gathering and storing the user lists. 59

Section	Page
Table of Contents	2
About This Guide	6
Terms/Usage	6
Copyright and Trademarks	6
1 Product Introduction	7
DGS-1210-20	8
Front Panel	8
Rear Panel	8
DGS-1210-28	8
Front Panel	8
Rear Panel	9
DGS-1210-28P	9
Front Panel	9
Rear Panel	9
DGS-1210-52	10
Front Panel	10
Rear Panel	10
2 Hardware Installation	11
Step 1: Unpacking	11
Step 2: Switch Installation	11
Desktop or Shelf Installation	11
Rack Installation	11
Step 3 – Plugging in the AC Power Cord	12
Power Failure	13
3 Getting Started	14
Management Options	14
Using Web-based Management	14
Supported Web Browsers	14
Connecting to the Switch	14
Login Web-based Management	15
Smart Wizard	15
Web-based Management	15
SmartConsole Utility	15
4 SmartConsole Utility	17
SmartConsole Settings	17
Utility Settings	17
Log	17
Trap	18
File	18
Help	19
Device Configuration	19
Add(+), Delete(-) and Discover the device	21
Device List	21
5 Configuration	23
Smart Wizard Configuration	23
IP Information	23
Password	23
SNMP	24
Web-based Management	26
Tool Bar > Save Menu	27
Save Configuration	27
Save Log	27
Tool Bar > Tool Menu	27
Reset	27
Reset System	27
Reboot Device	27
Configuration Backup and Restore	28
Firmware Backup and Upgrade	28
Tool Bar > Smart Wizard	29
Tool Bar > Online Help	29
Function Tree	31
Device Information	31
System > System Settings	32
System > Password	32
System > Port Settings	32
System > DHCP Auto Configuration	33
System > SysLog Host	34
System > Time Profile	34
System > Power Saving	35
VLAN > 802.1Q VLAN	35
VLAN > 802.1Q VLAN PVID	36
VLAN > 802.1Q Management VLAN	36
VLAN > Voice VLAN > Voice VLAN Global Settings	37
VLAN > Voice VLAN > Voice VLAN Port Settings	38
VLAN > Voice VLAN > Voice Device List	39
VLAN > Auto Surveillance VLAN Settings	39
L2 Functions > Jumbo Frame	40
L2 Functions > Port Mirroring	40
L2 Functions > Loopback Detection	41
L2 Functions > MAC Address Table > Static MAC	41
L2 Functions > MAC Address Table > Dynamic Forwarding Table	42
L2 Functions > Spanning Tree > STP Global Settings	42
L2 Functions > Spanning Tree > STP Port Settings	43
L2 Functions > Link Aggregation > Port Trunking	44
L2 Functions > Link Aggregation > LACP Port Settings	45
L2 Functions > Multicast > IGMP Snooping	45
L2 Functions > Multicast > Multicast Forwarding	47
L2 Functions > Multicast > Multicast Filtering Mode	48
L2 Functions > SNTP > Time Settings	48
L2 Functions > SNTP > TimeZone Settings	49
L2 Functions > LLDP > LLDP Global Settings	49
L2 Functions > LLDP > LLDP MED Settings	50
L2 Functions > LLDP > LLDP Port Settings	50
L2 Functions > LLDP > 802.1 Extension TLV	51
L2 Functions > LLDP > 802.3 Extension TLV	51
L2 Functions > LLDP > LLDP Management Address Settings	52
L2 Functions > LLDP > LLDP Management Address Table	53
L2 Functions > LLDP > LLDP Local Port Table	53
L2 Functions > LLDP > LLDP Remote Port Table	54
L2 Functions > LLDP > LLDP Statistics	56
QoS > Bandwidth Control	57
QoS > 802.1p/DSCP	57
Security > Trusted Host	58
Security > Port Security	59
Security > Traffic Segmentation	59
Security > Safeguard Engine	59
Security > Storm Control	60
Security > ARP Spoofing Prevention	60
Security > DHCP Server Screening	61
Security > SSL Settings	61
Security > Smart Binding > Smart Binding Settings	62
Security > Smart Binding > Smart Binding	63
Security > Smart Binding > White List	63
Security > Smart Binding > Black List	64
AAA > 802.1X > 802.1X Settings	64
ACL > ACL Wizard	66
ACL > ACL Profile List	67
ACL > ACL Finder	70
PoE > PoE Global Settings (DGS-1210-28P only)	70
PoE > PoE Port Settings (DGS-1210-28P only)	71
SNMP > Trap to SmartConsole Utility	72
SNMP > SNMP > SNMP Global Settings	72
SNMP > SNMP > SNMP User	73
SNMP > SNMP > SNMP Group Table	74
SNMP > SNMP > SNMP View	75
SNMP > SNMP > SNMP Community	75
SNMP > SNMP > SNMP Host	76
SNMP > SNMP > SNMP Engine ID	76
SNMP > RMON > RMON Global Settings	76
SNMP > RMON > RMON Statistics	76
SNMP > RMON > RMON History	77
SNMP > RMON > RMON Alarm Settings	77
SNMP > RMON > RMON Event	78
Monitoring > Port Statistics	78
Monitoring > Cable Diagnostics	79
Monitoring > System Log	80
6 Command Line Interface	81
To connect a switch via TELNET:	81
Logging on to the Command Line Interface:	81
CLI Commands:	81
Appendix A - Ethernet Technology	90
Gigabit Ethernet Technology	90
Fast Ethernet Technology	90
Switching Technology	90
Appendix B - Technical Specifications	91
Hardware Specifications	91
Key Components / Performance	91
Port Functions	91
Physical & Environment	91
Emission (EMI) Certifications	91
Safety Certifications	91
Features	91
L2 Features	91
D-Link Green Technology	92
VLAN	92
QoS (Quality of Service)	92
Security	92
Management	92

Match case Limit results 1 per page

Configuration

D-Link Web Smart Switch User Manual

Figure 5.76 – Security > Smart Binding > White List

Select the check box of entry then click

Delete

to remove it.

Click

Select All

to select all entries of the table or click

Clean

to select none entries. Please keep at least

one management host in the White List.

Security > Smart Binding > Black List

The Black List page shows unauthorized accesses. When ARP Inspection is selected and a device sends

out an ARP packet containing unmatched IP-MAC-Port information, the device will be forbidden and listed

here.

Figure 5.77 – Security > Smart Binding > Black List

By giving conditions, desired devices information can be screened out below and then click

Find

to search

for a list of the entry:

VID:

Enter the VLAN ID number of the device.

IP Address:

Enter the IP Address of the device.

MAC Address:

Enter the MAC Address of the device.

Port:

Enter the port number which the device connects to.

Check a box of Delete column to release an entry from the forbidden list and then click

Apply

to delete an

entry from the list.

Click

Select All

select all entries, or click

Clean

to select none of the entries

AAA > 802.1X > 802.1X Settings

Network switches provide easy and open access to resources, by simply attaching a client PC. Unfortunately

this automatic configuration also allows unauthorized personnel to easily intrude and possibly gain access to

sensitive data.

IEEE-802.1X provides a security standard for network access control, especially in Wi-Fi wireless networks.

802.1X holds a network port disconnected until authentication is completed. The switch uses Extensible

Authentication Protocol over LANs (EAPOL) to exchange authentication protocol client identity (such as a

user name) with the client, and forward it to another remote RADIUS authentication server to verify access

rights. The EAP packet from the RADIUS server also contains the authentication method to be used. The

client can reject the authentication method and request another, depending on the configuration of the client

software and the RADIUS server. Depending on the authenticated results, the port is either made available

to the user, or the user is denied access to the network.

The RADIUS servers make the network a lot easier to manage for the administrator by gathering and storing

the user lists.