Home » Dell Manuals » Hubs & Switches » Dell PowerConnect 5324 » Manual Viewer

Dell PowerConnect 5324 User's Guide - Page 26

Security Features, Locked Port Support - manual

View all Dell PowerConnect 5324 manuals

Add to My Manuals
Save this manual to your list of manuals

Page 26 highlights

www.dell.com | support.dell.com Syslog Syslog is a protocol that allows event notifications to be sent to a set of remote servers, where they can be stored, examined and acted upon. Multiple mechanisms are implemented to send notification of significant events in real time, and keep a record of these events for after-the-fact usage. For more information on Syslog, see "Managing Logs". SNTP The Simple Network Time Protocol (SNTP) assures accurate network device clock time synchronization up-to the millisecond. Time synchronization is performed by a network SNTP server. Time sources are established by Stratums. Stratums define the distance from the reference clock. The higher the stratum (where zero is the highest), the more accurate the clock. For more information, see "Configuring SNTP Settings". Traceroute Traceroute enables discovering IP routes that packets were forwarded along during the forwarding process. The CLI Traceroute utility can be executed from either the user-exec or privileged modes. Security Features SSL Secure Socket Layer (SSL) is an application-level protocol that enables secure transactions of data through privacy, authentication, and data integrity. It relies upon certificates and public and private keys. Port Based Authentication (802.1x) Port based authentication enables authenticating system users on a per-port basis via an external server. Only authenticated and approved system users can transmit and receive data. Ports are authenticated via the Remote Authentication Dial In User Service (RADIUS) server using the Extensible Authentication Protocol (EAP). For more information, see "Configuring Port Based Authentication". Locked Port Support Locked Port increases network security by limiting access on a specific port only to users with specific MAC addresses. These addresses are either manually defined or learned on that port. When a frame is seen on a locked port, and the frame source MAC address is not tied to that port, the protection mechanism is invoked. For more information, see "Configuring Port Security". 26 Introduction

Section	Page
Introduction	19
PowerConnect 5324	19
Features	19
General Features	20
MAC Address Supported Features	21
Layer 2 Features	21
VLAN Supported Features	22
Spanning Tree Protocol Features	23
Link Aggregation	23
Layer 3 Features	24
Quality of Service Features	24
Device Management Features	25
Security Features	26
Locked Port Support	26
Additional CLI Documentation	27
Hardware Description	29
Device Port Configurations	29
PowerConnect 5324 Front Panel Port Description	29
PowerConnect Back Panel Port Description	30
Device Ports	30
Physical Dimensions	31
LED Definitions	31
Port LEDs	31
System LEDs	32
Hardware Components	33
Power Supplies	33
Reset Button	34
Ventilation System	34
Installing the PowerConnect Device	35
Installation Precautions	35
Site Requirements	36
Unpacking	36
Package Contents	36
Unpacking the Device	36
Mounting the Device	37
Overview	37
Mounting the System	37
Installing the Device without a Rack	38
Connecting the Device	38
Connecting a Device to a Terminal	38
Connecting a Device to a Power Supply	39
Port Connections, Cables, and Pinout Information	40
RJ-45 Connections for 10/100/1000BaseT Ports	40
Port Default Settings	41
Auto-Negotiation	41
MDI/MDIX	42
Flow Control	42
Back Pressure	42
Switching Port Default Settings	42
Starting and Configuring the Device	43
Configure the Terminal	43
Booting the Device	44
Configuration Overview	48
Initial Configuration	48
Static IP Address and Subnet Mask	49
Static Route Configuration	49
Assigning Static IP Addresses on an Inband Interface	49
Verifying the IP and Default Gateway Addresses	50
User Name	50
SNMP Community Strings	51
Configuring SNMP	52
Viewing SNMP Community Tables	52
Advanced Configuration	53
Retrieving an IP Address From a DHCP Server	53
Receiving an IP Address From a BOOTP Server	55
Security Management and Password Configuration	56
Configuring Security Passwords	56
Configuring an Initial Terminal Password	57
Configuring an Initial Telnet Password	57
Configuring an Initial SSH Password	57
Configuring an Initial HTTP Password	58
Configuring an Initial HTTPS Password	58
Startup Procedures	58
Startup Menu Procedures	58
Software Download	60
Erase FLASH File	60
Erasing the Device Configuration	60
Password Recovery	61
Software Download Through TFTP Server	61
Using Dell OpenManage Switch Administrator	65
Understanding the Interface	65
Device Representation	66
Using the Switch Administrator Buttons	67
Information Buttons	67
Device Management Buttons	67
Starting the Application	68
Accessing the Device Through the CLI	68
Console Connection	69
Telnet Connection	69
Using the CLI	70
Command Mode Overview	70
User EXEC Mode	70
Privileged EXEC Mode	70
Global Configuration Mode	71
Interface Configuration Mode	72
CLI Examples	73
Configuring System Information	75
Defining General Device Information	76
Viewing the Asset Page	76
Viewing System Health Information	85
Viewing the Versions Page	87
Resetting the Device	89
Configuring SNTP Settings	90
Polling for Unicast Time Information	91
Polling for Anycast Time Information	91
Broadcast Time Information	91
Defining SNTP Global Parameters	92
Defining SNTP Authentication Methods	93
Defining SNTP Servers	96
Defining SNTP Interfaces	101
Managing Logs	104
Defining Global Log Parameters	104
Displaying RAM Log Table	108
Displaying the Log File Table	111
Configuring the Remote Log Server Settings Page	115
Defining Device IP Addresses	119
Defining Default Gateways	119
Defining IP Interfaces	120
Defining DHCP IP Interface Parameters	123
Configuring Domain Name Systems	127
Defining Default Domains	130
Mapping Domain Host	132
Configuring ARP	134
Running Cable Diagnostics	139
Viewing Copper Cable Diagnostics	139
Viewing Optical Transceiver Diagnostics	141
Managing Device Security	145
Defining Access Profiles	145
Defining Authentication Profiles	151
Assigning Authentication Profiles	155
Defining the Local User Databases	159
Defining Line Passwords	162
Defining Enable Password	164
Defining TACACS+ Settings	165
Configuring RADIUS Global Parameters	170
Defining SNMP Parameters	177
Defining Communities	177
Defining Traps	182
Managing Files	186
File Management Overview	186
Downloading Files	187
Uploading Files	189
Copying Files	191
Defining Advanced Settings	193
Configuring General Device Tuning Parameters	193
Configuring Device Information	197
Configuring Network Security	197
Network Security Overview	197
Configuring Port Based Authentication	199
Configuring Advanced Port Based Authentication	203
Authenticating Users	207
Configuring Port Security	209
Configuring Ports	214
Defining Port Parameters	214
Defining LAG Parameters	221
Enabling Storm Control	225
Defining Port Mirroring Sessions	228
Configuring Address Tables	231
Defining Static Addresses	231
Viewing Dynamic Addresses	234
Configuring GARP	237
Defining GARP Timers	237
Configuring the Spanning Tree Protocol	240
Defining STP Global Settings	240
Defining STP Port Settings	244
Defining STP LAG Settings	249
Configuring Rapid Spanning Tree	251
Configuring VLANs	254
Defining VLAN Members	255
Defining VLAN Ports Settings	261
Defining VLAN LAG Settings	264
Defining VLAN Protocol Groups	267
Adding Protocol Ports	269
Configuring GVRP	270
Aggregating Ports	274
Defining LACP Parameters	275
Defining LAG Membership	278
Multicast Forwarding Support	279
Defining Multicast Global Parameters	279
Adding Bridge Multicast Address Members	282
Assigning Multicast Forward All Parameters	287
IGMP Snooping	290
Viewing Statistics	295
Viewing Tables	296
Viewing Utilization Summary	296
Viewing Counter Summary	298
Viewing Interface Statistics	299
Viewing Etherlike Statistics	302
Viewing GVRP Statistics	306
Viewing RMON Statistics	313
Viewing RMON Statistics Group	313
Viewing RMON History Control Statistics	316
Viewing the RMON History Table	318
Defining Device RMON Events	321
Viewing the RMON Events Log	324
Defining RMON Device Alarms	326
Viewing Charts	330
Viewing Port Statistics	330
Viewing LAG Statistics	332
Configuring Quality of Service	335
Quality of Service (QoS) Overview	336
CoS Services	337
Defining CoS Global Parameters	339
Configuring QoS Global Settings	339
Defining QoS Interface Settings	341
Defining Queue Settings	344
Mapping CoS Values to Queues	347
Mapping DSCP Values to Queues	349
Device Specifications	351
Port and Cable Specifications	351
Port Specifications	351
Operating Conditions	352
Physical Device Specifications	352
Device Memory Specifications	352
Feature Specifications	353
VLAN	353
Quality of Service	353
Layer 2 Multicast	353
Device Security	353
Additional Switching Features	353

Match case Limit results 1 per page

Introduction

www.dell.com | support.dell.com

Syslog

Syslog is a protocol that allows event notifications to be sent to a set of remote servers, where they

can be stored, examined and acted upon. Multiple mechanisms are implemented to send

notification of significant events in real time, and keep a record of these events for after-the-fact

usage.

For more information on Syslog, see "Managing Logs".

SNTP

The Simple Network Time Protocol (SNTP) assures accurate network device clock time

synchronization up-to the millisecond. Time synchronization is performed by a network SNTP

server. Time sources are established by Stratums. Stratums define the distance from the reference

clock. The higher the stratum (where zero is the highest), the more accurate the clock.

For more information, see "Configuring SNTP Settings".

Traceroute

Traceroute enables discovering IP routes that packets were forwarded along during the forwarding

process. The CLI Traceroute utility can be executed from either the user-exec or privileged modes.

Security Features

SSL

Secure Socket Layer (SSL) is an application-level protocol that enables secure transactions of data

through privacy, authentication, and data integrity. It relies upon certificates and public and private

keys.

Port Based Authentication (802.1x)

Port based authentication enables authenticating system users on a per-port basis via an external

server. Only authenticated and approved system users can transmit and receive data. Ports are

authenticated via the Remote Authentication Dial In User Service (RADIUS) server using the

Extensible Authentication Protocol (EAP).

For more information, see "Configuring Port Based Authentication".

Locked Port Support

Locked Port increases network security by limiting access on a specific port only to users with

specific MAC addresses. These addresses are either manually defined or learned on that port.

When a frame is seen on a locked port, and the frame source MAC address is not tied to that port,

the protection mechanism is invoked.

For more information, see "Configuring Port Security".