Tp-link TL-SG3109 Bedienungsanleitung Seite 39
- Seite / 120
- Inhaltsverzeichnis
- LESEZEICHEN
Bewertet. / 5. Basierend auf Kundenbewertungen
32
33
Network Security Overview
Dening Network Authentication Properties
Conguring Trafc Control
5.2.1 Network Security Overview
This section provides an overview of network security and contains the following topics:
Port-Based Authentication
Advanced Port-Based Authentication
5.2.1.1 Port-Based Authentication
Port-based authentication authenticates users on a per-port basis via an external server. Only authenticated and approved
system users can transmit and receive data. Ports are authenticated via the RADIUS server using the Extensible
Authentication Protocol (EAP). Port-based authentication includes:
Authenticators — Species the device port which is authenticated before permitting system access.
Supplicants — Species the host connected to the authenticated port requesting to access the system ser-vices.
Authentication Server — Specifies the server that performs the authentication on behalf of the authenticator, and
indicates whether the supplicant is authorized to access system services.
Port-based authentication creates two access states:
Controlled Access — Permits communication between the supplicant and the system, if the supplicant is authorized.
Uncontrolled Access — Permits uncontrolled communication regardless of the port state.
The device currently supports port-based authentication via RADIUS servers.
5.2.1.2 Advanced Port-Based Authentication
Advanced port-based authentication enables multiple hosts to be attached to a single port. Advanced port-based
authentication requires only one host to be authorized for all hosts to have system access. If the port is unautho-rized, all
attached hosts are denied access to the network.
Advanced port-based authentication also enables user-based authentication. Specific VLANs in the device are always
available, even if specific ports attached to the VLAN are unauthorized. For example, Voice over IP does not require
authentication, while data traffic requires authentication. VLANs for which authorization is not required can be defined.
Unauthenticated VLANs are available to users, even if the ports attached to the VLAN are dened as authorized.
Advanced port-based authentication is implemented in the following modes:
Single Host Mode — Allows port access only to the authorized host.
Multiple Host Mode — Multiple hosts can be attached to a single port. Only one host must be authorized for all hosts
to access the network. If the host authentication fails, or an EAPOL-logoff message is received, all attached clients are
denied access to the network.
Guest VLANs — Provides limited network access to authorized ports. If a port is denied network access via port-
based authorization, but the Guest VLAN is enabled, the port receives limited network access. For example, a network
administrator can use Guest VLANs to deny network access via port-based authentication, but grant Internet access to
unauthorized users.
Unauthenticated VLANS — Are available to users, even if the ports attached to the VLAN are dened as unauthorized.
5.2.2 Dening Network Authentication Properties
The Network Security Authentication Properties Page allows network managers to configure network authentication
- Rev: 1.0 1
- COPYRIGHT & TRADEMARKS 2
- FCC STATEMENT 2
- SAFETY NOTICES 2
- TABLE OF CONTENTS 3
- Preface 8
- Intended Audience 9
- Section 1. Getting Started 10
- 1.3.1 Device Representation 12
- 1.6 Resetting the Device 14
- 3.2 Conguring SNTP 19
- 3.2.4 Dening SNTP Servers 21
- 4.2 Viewing Memory Logs 25
- 4.3 Viewing Flash Logs 25
- 5.1.2 Conguring Passwords 37
- 6.1 Dening IP Addressing 46
- 6.1.4 Dening ARP 48
- 6.2.1 Dening DNS Servers 49
- 7.1 Conguring Ports 52
- 7.2 Conguring LAGs 54
- 7.2.2 Conguring LACP 55
- 7.3 Conguring VLANs 56
- 7.3.4 Conguring GARP 59
- 7.3.5 Dening GVRP 60
- 11.1 SNMP v1 and v2c 77
- 11.2 SNMP v3 77
- 11.3 Dening SNMP Security 77
- 11.3.2 Dening SNMP Views 78
- 12.1.1 Mapping to Queues 87
- 12.1.2 QoS Modes 88
- 12.1.2.1 Basic QoS Mode 89
- 12.1.2.2 Advanced QoS Mode 89
- 12.2.2 Dening Queues 90
- 12.3 Mapping Queues 91
- 13.1.1 Download Type 93
- 13.2 Uploading System Files 94
- 13.3 Activating Image Files 95
- 13.4 Copying System Files 95
- Receive Statistics 100
- Transmit Statistics 101
- 15.2.4 Dening RMON Alarms 108
- 2. Modify the elds 110
- Glossary 111
- 71035590 120
Verwandte Produkte und Handbücher für Computerzubehör Tp-link TL-SG3109
(75 Seiten)
(2 Seiten)© 2020, manymanuals.de. Alle Rechte vorbehalten. | 0.742 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Kommentare zu diesen Handbüchern