Home » D-Link Manuals » Hubs & Switches » D-Link DXS-3610 » Manual Viewer

D-Link DXS-3610 User Manual - Page 555

Network Access Authentication Global Settings

Add to My Manuals
Save this manual to your list of manuals

Page 555 highlights

DXS-3610 Series Layer 3 Stackable 10GbE Managed Switch Web UI Reference Guide Network Access Authentication Global Settings This window is used to display and configure the global Network Access Authentication settings. To view the following window, click Security > Network Access Authentication > Network Access Authentication Global Settings, as shown below: Figure 9-76 Network Access Authentication Global Settings Window The fields that can be configured in Network Access Authentication MAC Format Settings are described below: Parameter Case Delimiter Delimiter Number Description Select the case format that will be used for the network access authentication MAC address here. Options to choose from are Lowercase and Uppercase. Select the delimiter that will be used for the network access authentication MAC address here. Options to choose from are Hyphen, Colon, Dot, and None. Select the delimiter number option here. Options to choose from are 1, 2, and 5. Click the Apply button to accept the changes made. The fields that can be configured in General Settings are described below: Parameter Max Users Deny MAC-Move Description Enter the maximum amount of users allowed here. The range is from 1 to 4096. By default, this value is 4096. Select to enable or disable the deny MAC-move feature here. This option controls whether to allow authenticated hosts to do roaming across different Switch ports and only controls whether a host, which is authenticated at a port set to the multiauthenticate mode, is allowed to move to another port. If a station is allowed to move, there are two situations. It may either need to be reauthenticated or directly moved to the new port without re-authentication based on the following rule. If the new port has the same authentication configuration as the original port, then re-authentication is not needed. The host will inherit the same authorization attributes with new port. The authenticated host can do roaming from port 1 to port 2, and inherit the authorization attributes without re-authentication. If the new port has the different authentication configuration as the original port, then re-authentication is needed. The authenticated host on port 1 can move and reauthenticated by port 2. If the new port has no authentication method enabled, 544

Section	Page
Table of Contents	3
1. Introduction	12
Audience	12
Other Documentation	12
Typographical Conventions	12
Notes and Cautions	12
2. Web User Interface (Web UI)	13
Connecting to the Web UI	13
Logging into the Web UI	13
Web Interface Navigation	14
3. System	15
Device Information	15
System Information Settings	16
Peripheral Settings	17
Port Configuration	18
Port Settings	18
Port Status	20
Port GBIC	21
Port Auto Negotiation	22
Error Disable Settings	23
Jumbo Frame	24
Interface Breakout	24
Interface Description	25
Loopback Test	25
System Log	27
System Log Settings	27
System Log Discriminator Settings	29
System Log Server Settings	30
System Log	31
System Attack Log	32
Time and SNTP	32
Clock Settings	32
Time Zone Settings	33
SNTP Settings	34
Time Range	35
PTP (Precise Time Protocol)	36
PTP Global Settings	36
PTP Port Global Settings	38
PTP Boundary Port Settings	39
PTP P2P Transparent Port Settings	40
PTP Clock Information	41
PTP Port Information	42
PTP Foreign Master Records Port Information	42
SRM	43
SRM Prefer Current Settings	43
SRM Prefer Mode	44
4. Management	45
Command Logging	45
User Accounts Settings	46
Password Encryption	47
Password Recovery	48
Login Method	48
SNMP	50
SNMP Global Settings	51
SNMP Linkchange Trap Settings	52
SNMP View Table Settings	53
SNMP Community Table Settings	53
SNMP Group Table Settings	55
SNMP Engine ID Local Settings	56
SNMP User Table Settings	56
SNMP Host Table Settings	58
SNMP Context Mapping Table Settings	59
RMON	59
RMON Global Settings	59
RMON Statistics Settings	60
RMON History Settings	61
RMON Alarm Settings	62
RMON Event Settings	63
Telnet/Web	64
Session Timeout	65
DHCP	65
Service DHCP	65
DHCP Class Settings	66
DHCP Pool Settings	67
DHCP Server	68
DHCP Server Global Settings	68
DHCP Server Pool Settings	69
DHCP Server Exclude Address	72
DHCP Server Manual Binding Ext	73
DHCP Server Dynamic Binding	74
DHCP Server IP Conflict	74
DHCP Server Statistic	75
DHCPv6 Server	76
DHCPv6 Server Pool Settings	76
DHCPv6 Server Local Pool Settings	78
DHCPv6 Server Exclude Address	79
DHCPv6 Server Binding	80
DHCPv6 Server Interface Settings	80
DHCPv6 Server Operational Information	81
DHCP Relay	82
DHCP Relay Global Settings	82
DHCP Relay Pool Settings	82
DHCP Relay Information Settings	85
DHCP Relay Information Option Format Settings	86
DHCP Relay Information Profile Settings	87
DHCP Relay Port Settings	90
DHCP Local Relay VLAN	90
DHCPv6 Relay	91
DHCPv6 Relay Global Settings	91
DHCPv6 Relay Interface Settings	93
DHCPv6 Relay Remote ID Profile Settings	94
DHCPv6 Relay Interface ID Profile Settings	96
DHCPv6 Relay Format Type Settings	98
DHCPv6 Relay Port Settings	99
DHCPv6 Local Relay VLAN	99
DHCP Auto Configuration	100
DHCP Auto Image Settings	100
DNS	101
DNS Global Settings	102
DNS Name Server Settings	103
DNS Host Settings	103
IP Source Interface	104
File System	105
Stacking	107
Physical Stacking	111
Stacking Bandwidth	112
Virtual Stacking (SIM)	112
Single IP Settings	115
Topology	116
File	116
Print Topology	116
Preference	116
Group	117
Add to Group	117
Remove from Group	117
Device	117
Configure	117
View	117
Refresh	117
Topology	118
Help	120
About	120
Firmware Upgrade	121
Configuration File Backup/Restore	121
Upload Log File	122
D-Link Discovery Protocol	122
DDP Settings	122
DDP Neighbors	123
SMTP Settings	124
Reboot Schedule Settings	125
NLB FDB Settings	126
5. Layer 2 Features	128
FDB	128
Static FDB	128
Unicast Static FDB	128
Multicast Static FDB	129
MAC Address Table Settings	129
MAC Address Table	131
MAC Notification	132
VLAN	133
VLAN Configuration Wizard	133
Create/Configure VLAN	133
Create VLAN	134
Configure VLAN	135
802.1Q VLAN	136
VLAN Interface	137
802.1v Protocol VLAN	139
Protocol VLAN Profile	139
Protocol VLAN Profile Interface	140
GVRP	141
GVRP Global	141
GVRP Port	141
GVRP Advertise VLAN	142
GVRP Forbidden VLAN	143
GVRP Statistics Table	144
MVRP	144
MVRP Global Settings	144
MVRP Port Settings	145
MVRP Statistics	146
Asymmetric VLAN	146
MAC VLAN	147
L2VLAN Interface Description	147
Subnet VLAN	148
Super VLAN	148
Auto Surveillance VLAN	150
Auto Surveillance Properties	150
MAC Settings and Surveillance Device	152
Voice VLAN	153
Voice VLAN Global	153
Voice VLAN Port	154
Voice VLAN OUI	155
Voice VLAN Device	155
Voice VLAN LLDP-MED Device	156
Private VLAN	156
VLAN Tunnel	158
Dot1q Tunnel	158
VLAN Mapping	159
VLAN Mapping Profile	161
STP	166
STP Global Settings	168
STP Port Settings	170
MST Configuration Identification	172
STP Instance	173
MSTP Port Information	173
ERPS (G.8032)	174
ERPS	174
ERPS Profile	179
Loopback Detection	180
Link Aggregation	182
MLAG	185
MLAG Settings	185
MLAG Group	187
Flex Links	188
L2 Protocol Tunnel	188
L2 Multicast Control	190
IGMP Snooping	190
IGMP Snooping Settings	190
IGMP Snooping Groups Settings	193
IGMP Snooping Filter Settings	194
IGMP Snooping Mrouter Settings	197
IGMP Snooping Statistics Settings	198
MLD Snooping	199
MLD Snooping Settings	200
MLD Snooping Groups Settings	202
MLD Snooping Filter Settings	204
MLD Snooping Mrouter Settings	206
MLD Snooping Statistics Settings	207
Multicast VLAN	209
Multicast VLAN Settings	209
Multicast VLAN Group Settings	212
PIM Snooping	214
PIM Snooping Global Settings	214
PIM Snooping Neighbor Table	215
PIM Snooping Multicast Route Table	215
PIM Snooping Statistics Table	216
Multicast Filtering Mode	216
LLDP	217
LLDP Global Settings	217
LLDP Port Settings	219
LLDP Management Address List	220
LLDP Basic TLVs Settings	220
LLDP Dot1 TLVs Settings	221
LLDP Dot3 TLVs Settings	222
LLDP-MED Port Settings	223
LLDP-DCBX Port Settings	224
LLDP Statistics Information	225
LLDP Local Port Information	226
LLDP Neighbor Port Information	227
6. Layer 3 Features	230
ARP	230
ARP Elevation	230
ARP Aging Time	231
Static ARP	231
Proxy ARP	232
ARP Table	233
Gratuitous ARP	233
IPv6 Neighbor	235
Interface	236
IPv4 Interface	236
IPv6 Interface	239
Loopback Interface	243
Null Interface	244
UDP Helper	245
IP Forward Protocol	245
IP Helper Address	245
IPv4 Static/Default Route	246
IPv4 Static Route BFD	248
IPv4 Route Table	248
IPv6 Static/Default Route	249
IPv6 Static Route BFD	250
IPv6 Route Table	251
Route Preference	252
ECMP Settings	252
IPv6 General Prefix	253
IP Tunnel Settings	254
URPF Settings	255
VRF	257
VRF Settings	257
VRF Interface Settings	260
RIP	261
RIP Settings	261
RIP Distribute List	263
RIP Interface Settings	264
RIP Database	266
RIPng	267
RIPng Settings	267
RIPng Interface Settings	268
RIPng Database	269
OSPF	270
OSPFv2	270
OSPFv2 Process Settings	270
OSPFv2 Distribute List	273
OSPFv2 GR Helper Settings	273
OSPFv2 Passive Interface Settings	274
OSPFv2 Area Settings	275
OSPFv2 Interface Settings	277
OSPFv2 BFD Settings	280
OSPFv2 Redistribute Settings	280
OSPFv2 Virtual Link Settings	282
OSPFv2 LSDB Table	283
OSPFv2 Neighbor Table	285
OSPFv2 Host Route Settings	286
OSPFv3	287
OSPFv3 Process Settings	287
OSPFv3 Passive Interface Settings	289
OSPFv3 Area Settings	290
OSPFv3 Interface Settings	292
OSPFv3 Redistribute Settings	295
OSPFv3 Virtual Link Settings	296
OSPFv3 LSDB Table	298
OSPFv3 Neighbor Table	299
OSPFv3 Border Router Table	300
IP Multicast Routing Protocol	301
IGMP	301
IGMP Interface Settings	301
IGMP Static Group Settings	303
IGMP Dynamic Group Table	303
IGMP SSM Mapping Settings	304
MLD	306
MLD Interface Settings	306
MLD Static Group Settings	308
MLD Group Table	308
MLD SSM Mapping Settings	309
IGMP Proxy	310
IGMP Proxy Settings	310
IGMP Proxy Group Table	312
IGMP Proxy Forwarding Table	312
MLD Proxy	313
MLD Proxy Settings	313
MLD Proxy Group Table	314
MLD Proxy Forwarding Table	315
DVMRP	315
DVMRP Interface Settings	315
DVMRP Routing Table	316
DVMRP Neighbor Table	317
PIM	317
PIM for IPv4	319
PIM Interface	319
PIM BSR Candidate	321
PIM RP Address	322
PIM RP Candidate	325
PIM RP Table	326
PIM Register Settings	327
PIM SPT Threshold Settings	329
PIM SSM Settings	330
PIM Neighbor Table	331
PIM for IPv6	332
PIM for IPv6 Interface	332
PIM for IPv6 BSR Candidate Settings	334
PIM for IPv6 BSR Table	335
PIM for IPv6 RP Address	335
PIM for IPv6 RP Candidate	337
PIM for IPv6 RP Embedded Settings	339
PIM for IPv6 RP Table	339
PIM for IPv6 Register Settings	340
PIM for IPv6 SPT Threshold Settings	341
PIM for IPv6 SSM Settings	341
PIM for IPv6 (S,G) Keepalive Time	343
PIM for IPv6 Multicast Route Table	343
PIM for IPv6 Neighbor Table	345
MSDP	346
MSDP Global Settings	346
MSDP Peer Settings	347
MSDP SA Cache	350
MSDP Static RPF Settings	350
MSDP Mesh Group Settings	351
IPMC	352
IP Multicast Global Settings	352
IP Multicast Route Settings	354
IP Multicast RPF Table	355
IP Multicast Routing Forwarding Cache Table	355
IP Multicast Protocol Statistics	356
Control Packet CPU Filtering	357
IPv6MC	358
IPv6 Multicast Global Settings	358
IPv6 Static Multicast Route Settings	359
IPv6 Multicast Routing Table	360
IPv6 Multicast Routing Forwarding Cache Table	360
IPv6 RPF Table	361
BGP	361
BGP Global Settings	361
BGP Aggregate Address Settings	363
BGP Network Settings	364
BGP Route Redistribution Settings	366
BGP Route Preference Settings	367
BGP Dampening Settings	368
BGP Dampening Dampened Paths Table	370
BGP Dampening Flap Statistics Table	371
BGP Reflector Settings	373
BGP Confederation Settings	374
BGP AS Path Access List Settings	374
BGP Community List Settings	375
BGP Extended Community List Settings	377
BGP Clear Settings	378
BGP Summary Table	379
BGP Routing Table	380
BGP Labels Table	382
BGP Neighbor	384
Neighbor	384
Peer Group	386
Neighbor Activate	388
Neighbor Shutdown	389
Neighbor Map Settings	390
Neighbor Filter Settings	391
Neighbor Maximum Prefix Settings	393
Neighbor General Settings	395
BFD	398
BFD Settings	398
BFD Neighbor Table	399
ISIS	400
ISIS Global Settings	400
ISIS Router Settings	405
ISIS Interface Settings	407
ISIS Redistribute Settings	410
ISIS Redistribute ISIS Settings	411
ISIS Route Table	412
ISIS Database	413
ISIS Topology	414
ISIS Hostname	414
ISIS Neighbors	415
IP Route Filter	416
IP Prefix List	416
Route Map	417
Policy Route	422
VRRP Settings	422
VRRPv3 Settings	425
7. Quality of Service (QoS)	428
Basic Settings	428
Port Default CoS	428
Port Scheduler Method	429
Queue Settings	430
CoS to Queue Mapping	431
Port Rate Limiting	431
Queue Rate Limiting	432
Advanced Settings	433
DSCP Mutation Map	433
Port Trust State and Mutation Binding	435
DSCP CoS Mapping	436
CoS Color Mapping	437
DSCP Color Mapping	438
Class Map	438
Aggregate Policer	440
Policy Map	443
Policy Binding	446
QoS PFC	447
Network QoS Class Map	447
Network QoS Policy Map	448
Network QoS Policy Binding	450
PFC Port Settings	451
WRED	452
WRED Profile	452
WRED Queue	453
WRED Drop Counter	454
iSCSI	455
iSCSI Settings	455
iSCSI Sessions	456
8. Access Control List (ACL)	457
ACL Configuration Wizard	457
Step 1 - Create/Update	457
Step 2 - Select Packet Type	458
Step 3 - Add Rule	459
Extended MAC ACL	459
Extended/Standard IPv4 ACL	460
Extended/Standard IPv6 ACL	463
Extended Expert ACL	467
Step 4 - Apply Port	470
ACL Access List	471
Standard IP ACL	473
Extended IP ACL	474
Standard IPv6 ACL	476
Extended IPv6 ACL	478
Extended MAC ACL	480
Extended Expert ACL	482
ACL Interface Access Group	485
ACL VLAN Access Map	486
ACL VLAN Filter	488
CPU ACL	488
9. Security	492
Port Security	492
Port Security Global Settings	492
Port Security Port Settings	494
Port Security Address Entries	495
802.1X	495
802.1X Global Settings	500
802.1X Port Settings	501
Authentication Sessions Information	502
Authenticator Statistics	503
Authenticator Session Statistics	503
Authenticator Diagnostics	504
AAA	505
AAA Global Settings	505
Application Authentication Settings	506
Application Accounting Settings	507
Authentication Settings	508
Accounting Settings	510
RADIUS	513
RADIUS Global Settings	513
RADIUS Server Settings	514
RADIUS Group Server Settings	515
RADIUS Statistic	517
TACACS+	518
TACACS+ Global Settings	518
TACACS+ Server Settings	519
TACACS+ Group Server Settings	519
TACACS+ Statistic	521
IMPB	521
IPv4	522
DHCPv4 Snooping	522
DHCP Snooping Global Settings	522
DHCP Snooping Port Settings	523

Match case Limit results 1 per page

DXS-3610 Series Layer 3 Stackable 10GbE Managed Switch Web UI Reference Guide

544

Network Access Authentication Global Settings

This window is used to display and configure the global Network Access Authentication settings.

To view the following window, click

Security > Network Access Authentication > Network Access Authentication

Global Settings

, as shown below:

Figure 9-76 Network Access Authentication Global Settings Window

The fields that can be configured in

Network Access Authentication MAC Format Settings

are described below:

Parameter

Description

Case

Select the case format that will be used for the network access authentication MAC

address here. Options to choose from are

Lowercase

and

Uppercase

Delimiter

Select the delimiter that will be used for the network access authentication MAC

address here. Options to choose from are

Hyphen

Colon

Dot

, and

None

Delimiter Number

Select the delimiter number option here. Options to choose from are

, and

Click the

Apply

button to accept the changes made.

The fields that can be configured in

General Settings

are described below:

Parameter

Description

Max Users

Enter the maximum amount of users allowed here. The range is from 1 to 4096. By

default, this value is 4096.

Deny MAC-Move

Select to enable or disable the deny MAC-move feature here. This option controls

whether to allow authenticated hosts to do roaming across different Switch ports

and only controls whether a host, which is authenticated at a port set to the multi-

authenticate mode, is allowed to move to another port.

If a station is allowed to move, there are two situations. It may either need to be re-

authenticated or directly moved to the new port without re-authentication based on

the following rule. If the new port has the same authentication configuration as the

original port, then re-authentication is not needed. The host will inherit the same

authorization attributes with new port. The authenticated host can do roaming from

port 1 to port 2, and inherit the authorization attributes without re-authentication. If

the new port has the different authentication configuration as the original port, then

re-authentication is needed. The authenticated host on port 1 can move and re-

authenticated by port 2. If the new port has no authentication method enabled,