Home » Netgear Manuals » Hubs & Switches » Netgear GS752TP » Manual Viewer

Netgear GS752TP GS728TP/GS728TPP/GS752TP Software Administration Manual - Page 190

The Rule ID, Action, and Match Every fields appear for all ACL types., In the Match Every field

Add to My Manuals
Save this manual to your list of manuals

Page 190 highlights

GS752TP, GS728TP, and GS728TPP Gigabit Smart Switches Note: The Rule ID, Action, and Match Every fields appear for all ACL types. The remaining two fields vary according to the selected ACL type. • In the Rule ID field, enter a number that is used to identify the rule. The valid range is 1 - 10. • In the Action field, specify what action must be taken if a packet matches the rule's criteria. The choices are Permit or Deny. • In the Match Every field, specify Enable or Disable. • In the remaining two fields, specify data according to Table 27. Table 27. ACL fields according to selected ACL type. ACL Based on Fields Destination MAC • Destination MAC. Specify the destination MAC address to compare against an ethernet frame. The valid format is (xx:xx:xx:xx:xx:xx). The BPDU keyword might be specified using a destination MAC address of 01:80:C2:xx:xx:xx. • Destination MAC Mask. specify the destination MAC address mask specifying which bits in the destination MAC to compare against an ethernet frame. The valid format is (xx:xx:xx:xx:xx:xx). The BPDU keyword might be specified using a destination MAC mask of 00:00:00:ff:ff:ff. Source MAC • Source MAC. Specify the source MAC address to compare against an ethernet frame. The valid format is (xx:xx:xx:xx:xx:xx). • Source MAC Mask. Specify the source MAC address mask specifying which bits in the source MAC to compare against an ethernet frame. Valid format is (xx:xx:xx:xx:xx:xx). Destination IPv4 • Destination IP Address. Specify the destination IP address. • Destination IP Mask. Specify the destination IP address mask. Source IPv4 • Source IP Address. Specify the source IP address. • Source IP Mask. Specify the source IP address mask. Destination IPv6 • Destination Prefix. Specify the destination prefix. • Destination Prefix Length. Specify the destination prefix length. Source IPv6 • Source Prefix. Specify the source destination prefix. • Source Prefix Length. Specify the source prefix length. Destination IPv4 L4 • Destination L4 port (protocol). Specify the destination IPv4 L4 port protocol. Port • Destination L4 port (value). Specify the destination IPv4 L4 port value. Source IPv4 L4 Port • Source L4 port (protocol). Specify the source IPv4 L4 port protocol. • Source L4 port (value). Specify the source IPv4 L4 port value. Managing Device Security 190

Section	Page
GS752TP, GS728TP, and GS728TPP Gigabit Smart Switches	1
Contents	3
1. Getting Started	8
Getting Started with the NETGEAR Switch	9
Switch Management Interface	10
Connect the Switch to the Network	11
Discover a Switch in a Network with a DHCP Server	12
Switch Discovery in a Network Without a DHCP Server	14
Configure the Network Settings on the Administrative System	15
Access the Management Interface from the Web	17
Understand the User Interface	17
Use SNMP	22
Interface Naming Convention	24
2. Configuring System Information	25
Management	26
System Information	26
IP Configuration	27
IPv6 Network Configuration	29
IPv6 Network Neighbors	31
Time	32
DNS	36
Green Ethernet Configuration	38
PoE	44
PoE Global Configuration	44
PoE Port Configuration	46
Timer Global Configuration	47
SNMP	50
SNMP v1/v2	50
Trap Flags	53
SNMP Supported MIBs	53
SNMP v3 User Configuration	54
LLDP	56
LLDP Configuration	56
LLDP Port Settings	58
LLDP-MED Network Policy	59
LLDP-MED Port Settings	60
Local Information	61
Neighbors Information	63
Services—DHCP Snooping	68
DHCP Snooping Global Configuration	68
DHCP Snooping Interface Configuration	69
DHCP Snooping Binding Configuration	70
DHCP Snooping Persistent Configuration	72
3. Configuring Switching Information	73
Ports	74
Global Configuration	74
Port Configuration	75
Link Aggregation Groups	77
LAG Configuration	77
LAG Membership	79
LACP Configuration	80
LACP Port Configuration	80
VLANs	82
VLAN Configuration	82
VLAN Membership Configuration	84
Port VLAN ID Configuration	85
Voice VLAN	87
Voice VLAN Properties	87
Voice VLAN Port Setting	88
Voice VLAN OUI	89
Auto-VoIP Configuration	91
Spanning Tree Protocol	92
STP Configuration	93
CST Configuration	94
CST Port Configuration	96
CST Port Status	97
Rapid STP	99
MST Configuration	100
MST Port Configuration	101
Multicast	104
MFDB	104
Auto-Video Configuration	106
IGMP Snooping	107
IGMP Snooping Querier	111
MLD Snooping	115
Static Multicast Address	118
Forwarding Database	122
Address Table	122
Dynamic Address Configuration	124
Static MAC Address	125
4. Configuring Routing	126
Configure IP Settings	127
Configure VLAN Routing	128
VLAN Routing Wizard	128
Configure VLAN Routing	130
Configure and View Routes	131
Configure ARP	133
ARP Cache	134
ARP Entry Configuration	135
Global ARP Configuration	136
ARP Entry Management	137
5. Configure Quality of Service	138
Class of Service	139
Basic CoS Configuration	139
CoS Interface Configuration	140
Queue Configuration	142
802.1p to Queue Mapping	143
DSCP to Queue Mapping	144
Differentiated Services	145
Defining DiffServ	145
Diffserv Configuration	145
DSCP Violate Action Mapping	146
Class Configuration	147
IPv6 Class Configuration	150
Policy Configuration	153
Service Configuration	155
Service Statistics	156
6. Managing Device Security	158
Management Security Settings	159
Change Password	159
Configure RADIUS Settings	160
Configure TACACS+	163
Authentication List Configuration	166
Configure Management Access	170
HTTP Configuration	170
Secure HTTP Configuration	171
Certificate Management	172
Access Control	173
Port Authentication	176
802.1x Configuration	176
Port Authentication	178
Port Summary	180
Traffic Control	183
Storm Control	183
Port Security Interface Configuration	184
Security MAC Address	185
Protected Ports	186
Configure Access Control Lists	188
ACL Wizard	188
MAC ACL	191
MAC Rules	192
MAC Binding Configuration	194
MAC Binding Table	195
IP ACL	196
IP Rules	198
IP Extended Rules	199
IPv6 ACL	202
IPv6 Rules	203
IP Binding Configuration	205
IP Binding Table	206
7. Monitoring the System	208
Ports	209
Switch Statistics	209
Port Statistics	210
Port Detailed Statistics	212
EAP Statistics	216
Cable Test	217
Logs	218
Buffered Logs	218
Server Log	220
Trap Logs	221
Mirroring	223
System Resources Utilization	225
8. Maintenance	226
Reset	227
Device Reboot	227
Factory Default	227
Upload a File from the Switch	229
TFTP File Upload	229
HTTP File Upload	231
Download a File to the Switch	232
TFTP File Download	232
HTTP File Download	234
File Management	235
Dual Image Configuration	235
Dual Image Status	236
Troubleshooting	238
Ping	238
Ping IPv6	239
Traceroute	240
Remote Diagnostics	241
9. Help	243
Online Help	244
Support	244
User Guide	244
Registration	246
A. Hardware Specifications and Default Values	248
Switch Features and Defaults	250
B. Configuration Examples	253
Virtual Local Area Networks (VLANs)	254
Sample VLAN Configuration	255
Access Control Lists (ACLs)	256
Sample MAC ACL Configuration	256
Sample Standard IP ACL Configuration	257
Differentiated Services (DiffServ)	259
Class	259
DiffServ Traffic Classes	260
Create Policies	260
Sample DiffServ Configuration	261
802.1x	263
Sample 802.1x Configuration	264
MSTP	266
Sample MSTP Configuration	267
Configure VLAN Routing with Static Route	270
VLAN Routing Overview	270
Sample VLAN Routing Configuration	270

Match case Limit results 1 per page

Managing Device Security

190

GS752TP, GS728TP, and GS728TPP Gigabit Smart Switches

Note:

The Rule ID, Action, and Match Every fields appear for all ACL types.

The remaining two fields vary according to the selected ACL type.

•

In the Rule ID field, enter a number that is used to identify the rule. The valid range is

1 - 10.

•

In the Action field, specify what action must be taken if a packet matches the rule's

criteria. The choices are Permit or Deny.

•

In the Match Every field, specify Enable or Disable.

•

In the remaining two fields, specify data according to

Table 27

Table 27.

ACL fields according to selected ACL type.

ACL Based on

Fields

Destination MAC

•

Destination MAC

. Specify the destination MAC address to compare against an

ethernet frame. The valid format is (xx:xx:xx:xx:xx:xx). The BPDU keyword

might be specified using a destination MAC address of 01:80:C2:xx:xx:xx.

•

Destination MAC Mask

. specify the destination MAC address mask specifying

which bits in the destination MAC to compare against an ethernet frame. The

valid format is (xx:xx:xx:xx:xx:xx). The BPDU keyword might be specified using

a destination MAC mask of 00:00:00:ff:ff:ff.

Source MAC

•

Source MAC

. Specify the source MAC address to compare against an ethernet

frame. The valid format is (xx:xx:xx:xx:xx:xx).

•

Source MAC Mask

. Specify the source MAC address mask specifying which

bits in the source MAC to compare against an ethernet frame. Valid format is

(xx:xx:xx:xx:xx:xx).

Destination IPv4

•

Destination IP Address

. Specify the destination IP address.

•

Destination IP Mask

. Specify the destination IP address mask.

Source IPv4

•

Source IP Address

. Specify the source IP address.

•

Source IP Mask

. Specify the source IP address mask.

Destination IPv6

•

Destination Prefix

. Specify the destination prefix.

•

Destination Prefix Length

. Specify the destination prefix length.

Source IPv6

•

Source Prefix

. Specify the source destination prefix.

•

Source Prefix Length

. Specify the source prefix length.

Destination IPv4 L4

Port

•

Destination L4 port (protocol)

. Specify the destination IPv4 L4 port protocol.

•

Destination L4 port (value)

. Specify the destination IPv4 L4 port value.

Source IPv4 L4 Port

•

Source L4 port (protocol)

. Specify the source IPv4 L4 port protocol.

•

Source L4 port (value)

. Specify the source IPv4 L4 port value.