D-Link DGS-3200-16 User Manual - Page 161
IGMP Access Control Settings (IGMP Authentication
UPC - 790069312007
View all D-Link DGS-3200-16 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 161 highlights
xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch IGMP Access Control Settings (IGMP Authentication) Users can set IGMP authentication, otherwise known as IGMP access control, on individual ports on the Switch. When the Authentication State is Enabled, and the Switch receives an IGMP join request, the Switch will send the access request to the RADIUS server to do the authentication. IGMP authentication processes IGMP reports as follows: When a host sends a join message for the interested multicast group, the Switch has to do authentication before learning the multicast group/port. The Switch sends an Access-Request to an authentication server and the information including host MAC, switch port number, switch IP, and multicast group IP. When the Access-Accept is answered from the authentication server, the Switch learns the multicast group/port. When the Access-Reject is answered from the authentication server, the Switch won't learn the multicast group/port and won't process the packet further. The entry (host MAC, switch port number, and multicast group IP) is put in the "authentication failed list." When there is no answer from the authentication server after T1 time, the Switch resends the Access-Request to the server. If the Switch doesn't receive a response after N1 times, the result is denied and the entry (host MAC, switch port number, multicast group IP) is put in the "authentication failed list." In general case, when the multicast group/port is already learned by the switch, it won't do the authentication again. It only processes the packet as standard. IGMP authentication processes IGMP leaves as follows: When the host sends leave message for the specific multicast group, the Switch follows the standard procedure for leaving a group and then sends an Accounting-Request to the accounting server for notification. If there is no answer from the accounting server after T2 time, the Switch resends the Accounting-Request to the server. The maximum number of retry times is N2. To view the following window, click Security > IGMP Access Control Settings: Figure 5 - 61. IGMP Access Control Settings window To set up IGMP access control on individual ports for the Switch, complete the following fields: Parameter Description From Port To Port Use this drop-down menu to select the beginning port of a range of ports to be enabled as IGMP access control ports. Use this drop-down menu to select the ending port of a range of ports to be enabled as IGMP access control ports. Authentication State Toggle to enable and disable the RADIUS authentication function on the specified ports. Click Apply to implement the changes made. 148