Home » Netgear Manuals » Hubs & Switches » Netgear GS716Tv2 » Manual Viewer

Netgear GS716Tv2 GS716Tv2/GS724Tv3 Software Admin Manual - Page 152

Table, 18. Port Authentication Port Configuration Fields

Add to My Manuals
Save this manual to your list of manuals

Page 152 highlights

GS716Tv2 and GS724Tv3 Software Administration Manual Table 5-18. Port Authentication Port Configuration Fields Field Port Port Control Guest VLAN ID Guest VLAN Period Periodic Reauthentication Reauthentication Period (secs) Quiet Period (secs) Resending EAP Description Selects the Port to configure. Defines the port authorization state. The control mode is only set if the link status of the port is link up. The possible field values are: • Auto: Automatically detects the mode of the interface. • Authorized: Places the interface into an authorized state without being authenticated. The interface sends and receives normal traffic without client port-based authentication. • Unauthorized: Denies the selected interface system access by moving the interface into unauthorized state. The switch cannot provide authentication services to the client through the interface. This field allows the user to configure the Guest VLAN ID on the interface. The valid range is 0-4093.The default value is 0. Enter 0 to reset the Guest VLAN ID on the interface. This input field allows the user to enter the Guest VLAN period for the selected port. The Guest VLAN period is the value, in seconds, of the timer used by the Guest VLAN Authentication. The Guest VLAN timeout must be a value in the range of 1-300. The default value is 90. Use this field to enable or disable reauthentication of the supplicant for the specified port. Selectable values are Enable and Disable. If the value is Enable, reauthentication will occur. Otherwise, reauthentication will not be allowed. The default value is Disable. Changing the selection will not change the configuration until the Apply button is pressed. Indicates the time span in which the selected port is reauthenticated. The field value is in seconds. The range is 1-65535, and the field default is 3600 seconds. Defines the amount of time that the switch remains in the quiet state following a failed authentication exchange. The possible field range is 0-65535. The field value is in seconds. The field default is 60 seconds. This input field allows you to configure the transmit period for the selected port. The transmit period is the value, in seconds, of the timer used by the authenticator state machine on the specified port to determine when to send an EAPOL EAP Request/Identify frame to the supplicant. The transmit period must be a number in the range of 1- 65535. The default value is 30. Changing the value will not change the configuration until you click the Apply button. 5-26 v1.0, July 2009 Managing Device Security

Section	Page
GS716Tv2 and GS724Tv3 Software Administration Manual	1
Contents	5
About This Manual	11
Audience	11
Organization	11
Conventions, Formats and Scope	12
How to Use This Manual	14
How to Print this Manual	14
Revision History	15
Chapter 1 Getting Started	17
Connecting the Switch to the Network	17
Switch Management Interface	18
SmartWizard Discovery in a Network with a DHCP Server	19
SmartWizard Discovery in a Network without a DHCP Server	20
Manually Assigning Network Parameters	21
Configuring the Network Settings on the Administrative System	22
SmartWizard Discovery Utilities	22
Password Change	23
Firmware Upgrade	23
Exit	24
Understanding the User Interfaces	25
Using the Web Interface	25
Navigation Tabs	27
Configuration and Monitoring Options	28
Device View	29
Help Page Access	30
User-Defined Fields	30
Using SNMP	30
Common Parameter Values	31
Interface Naming Convention	32
Chapter 2 Configuring System Information	33
System Information	33
Defining System Information	35
Network Connectivity	35
Time	37
Time Configuration	38
SNTP Global Status	40
SNTP Server Configuration	42
SNTP Server Status	43
Denial of Service	45
Green Ethernet Configuration	47
SNMP V1/V2	48
Community Configuration	49
Trap Configuration	51
Trap Flags	52
SNMP v3 User Configuration	53
LLDP	55
LLDP Configuration	55
LLDP Port Settings	56
Local Information	59
Neighbors Information	62
Chapter 3 Configuring Switching Information	65
Configuring and Viewing Device Port Information	65
Port Configuration	65
Flow Control	68
Creating LAGs	69
LAG Configuration	69
LAG Membership	71
LACP Configuration	72
LACP Port Configuration	73
Managing VLANs	74
VLAN Configuration	74
VLAN Membership Configuration	76
Port VLAN ID Configuration	78
Configuring Spanning Tree Protocol	80
STP Switch Configuration/Status	81
CST Configuration	83
CST Port Configuration	85
CST Port Status	87
Rapid STP Configuration	88
MST Configuration	90
MST Port Configuration	91
STP Statistics	95
Configuring IGMP Snooping	96
Global Configuration	96
IGMP Snooping Interface Configuration	98
Viewing Multicast Forwarding Database Information	99
IGMP Snooping Table	100
MFDB Table	101
MFDB Statistics	103
IGMP Snooping VLAN Configuration	104
Configuring IGMP Snooping Queriers	106
IGMP Snooping Querier Configuration	107
IGMP Snooping Querier VLAN Configuration	108
IGMP Snooping Querier VLAN Status	109
Searching and Configuring the Forwarding Database	111
Searching the MAC Address Table	111
Dynamic Address Configuration	113
MAC Address Table	114
Static MAC Address	116
Chapter 4 Configuring Quality of Service	119
Configuring Class of Service	119
Basic CoS Configuration	120
CoS Interface Configuration	121
Interface Queue Configuration	123
802.1p to Queue Mapping	124
DSCP to Queue Mapping	125
Chapter 5 Managing Device Security	127
Management Security Settings	127
Change Password	128
RADIUS Configuration	129
Global Configuration	129
Server Configuration	131
Accounting Server Configuration	133
Configuring TACACS+	136
TACACS+ Configuration	136
Server Configuration	137
Authentication List Configuration	139
Configuring Management Access	141
HTTP Configuration	141
Secure HTTP Configuration	142
Certificate Download	144
Access Profile Configuration	145
Access Rule Configuration	147
Port Authentication	148
802.1X Configuration	149
Port Authentication	150
Port Summary	154
Traffic Control	156
MAC Filter Configuration	156
MAC Filter Summary	158
Storm Control	159
Port Security Configuration	160
Port Security Interface Configuration	161
Security MAC Address	163
Protected Ports Membership	164
Configuring Access Control Lists	165
MAC ACL	166
MAC Rules	168
MAC Binding Configuration	170
MAC Binding Table	171
IP ACL	173
IP Rules	174
IP Extended Rule	176
IP Binding Configuration	180
IP Binding Table	182
Chapter 6 Monitoring the System	183
Switch Statistics	183
Viewing Port Statistics	186
Port Statistics	186
Port Detailed Statistics	187
EAP Statistics	194
Managing Logs	196
Memory Logs	196
FLASH Log Configuration	198
Server Log Configuration	201
Trap Logs	203
Event Logs	204
Configuring Port Mirroring	205
Multiple Port Mirroring	205
Chapter 7 Maintenance	207
Reset	207
Rebooting the Switch	207
Reset Configuration to Defaults	208
Upload File From Switch	209
Uploading Files	211
Download File To Switch	211
TFTP File Download	212
Downloading a File to the Switch	214
HTTP File Download	214
File Management	216
Dual Image Configuration	216
Viewing the Dual Image Status	218
Troubleshooting	219
Ping	219
TraceRoute	220
Appendix A Hardware Specifications and Default Values	223
GS7xxT Gigabit Smart Switch Specifications	223
GS7xxTR Gigabit Smart Switch Features and Defaults	224
Appendix B Configuration Examples	227
Virtual Local Area Networks (VLANs)	227
VLAN Example Configuration	228
Access Control Lists (ACLs)	230
MAC ACL Example Configuration	231
Standard IP ACL Example Configuration	232
802.1X	234
802.1X Example Configuration	236
MSTP	237
MSTP Example Configuration	239

Match case Limit results 1 per page

GS716Tv2 and GS724Tv3 Software Administration Manual

5-26

Managing Device Security

v1.0, July 2009

Table

5-18. Port Authentication Port Configuration Fields

Field

Description

Port

Selects the Port to configure.

Port Control

Defines the port authorization state. The control mode is only set if the

link status of the port is link up. The possible field values are:

•

Auto

: Automatically detects the mode of the interface.

•

Authorized

: Places the interface into an authorized state without

being authenticated. The interface sends and receives normal traffic

without client port-based authentication.

•

Unauthorized

: Denies the selected interface system access by

moving the interface into unauthorized state. The switch cannot

provide authentication services to the client through the interface.

Guest VLAN ID

This field allows the user to configure the Guest VLAN ID on the

interface. The valid range is 0–4093.The default value is 0. Enter 0 to

reset the Guest VLAN ID on the interface.

Guest VLAN Period

This input field allows the user to enter the Guest VLAN period for the

selected port. The Guest VLAN period is the value, in seconds, of the

timer used by the Guest VLAN Authentication. The Guest VLAN

timeout must be a value in the range of 1–300. The default value is 90.

Periodic Reauthentication

Use this field to enable or disable

reauthentication of the supplicant for

the specified port. Selectable values are

Enable

and

Disable

. If the

value is

Enable

, reauthentication will occur. Otherwise,

reauthentication will not be allowed. The default value is

Disable

Changing the selection will not change the configuration until the

Apply

button is pressed.

Reauthentication Period

(secs)

Indicates the time span in which the selected port is reauthenticated.

The field value is in seconds. The range is 1–65535, and the field

default is 3600 seconds.

Quiet Period (secs)

Defines the amount of time that the switch remains in the quiet state

following a failed authentication exchange. The possible field range is

0–65535. The field value is in seconds. The field default is 60 seconds.

Resending EAP

This input field allows you to configure the transmit period for the

selected port. The transmit period is the value, in seconds, of the timer

used by the authenticator state machine on the specified port to

determine when to send an EAPOL EAP Request/Identify frame to the

supplicant. The transmit period must be a number in the range of 1–

65535. The default value is 30. Changing the value will not change the

configuration until you click the

Apply

button.