SMC Networks TigerAccess SMC7816M Manuale Utente Pagina 186
- Pagina / 962
- Indice
- SEGNALIBRI
Valutato. / 5. Basato su recensioni clienti
C
LIENT
S
ECURITY
7-8
CLI – This example configures a static source-guard binding on port 1.
Configuring DHCP Snooping
The addresses assigned to DHCP clients on unsecure ports can be
carefully controlled using the dynamic bindings registered with DHCP
Snooping (or using the static bindings configured with IP Source Guard).
DHCP snooping allows a switch to protect a network from rogue DHCP
servers or other devices which send port-related information to a DHCP
server. This information can be useful in tracking an IP address back to a
physical port.
Command Usage
• Network traffic may be disrupted when malicious DHCP messages are
received from an outside source. DHCP snooping is used to filter DHCP
messages received on an unsecure interface from outside the network or
firewall. When DHCP snooping is enabled globally on the switch, and on
a specific VLAN interface, DHCP messages received on an untrusted
interface from a device not listed in the DHCP snooping table are
dropped.
• Table entries are only learned for trusted interfaces. An entry is added or
removed dynamically to the DHCP snooping table when a client receives
or releases an IP address from a DHCP server. Each entry includes a
MAC address, IP address, lease time, VLAN identifier, and port
identifier.
• The rate limit for the number of DHCP messages that can be processed
by the switch is 100 packets per second. Any DHCP packets in excess of
this limit are dropped.
Console(config)#ip source-guard binding 11-22-33-44-55-66 vlan 1
192.168.0.99 interface ethernet 1/5 23-14
Console(config)#interface ethernet 1/5
Console(config-if)#ip source-guard sip 23-11
Console(config)#
- TigerAccess 1
- Management Guide 3
- Trademarks: 4
- NTRODUCTION 39
- ESCRIPTION 42
- System Defaults 47
- ONNECTING 52
- Basic Configuration 54
- Setting Passwords 55
- Setting an IP Address 56
- Manual Configuration 58
- Dynamic Configuration 59
- Trap Receivers 62
- Managing System Files 64
- Saving Configuration Settings 65
- AVIGATING 71
- Button Action 72
- Table 3-2 Switch Main Menu 73
- Using DHCP/BOOTP 96
- ANAGEMENT 100
- Command Attributes 102
- ESTORING 103
- ONFIGURATION 103
- 2. CLI only 107
- Telnet Settings 108
- 3. CLI only 109
- 7 Debug Debugging messages 111
- Remote Log Configuration 113
- Displaying Log Messages 115
- ONFIGURING 117
- Resetting the System 118
- Console#reload 19-5 119
- Console(config)# 121
- Console# 121
- Command Usage 128
- UTHENTICATION 149
- Configuring HTTPS 155
- Field Attributes 161
- Generate 163
- Configuring the SSH Server 164
- 802.1X P 167
- Displaying 802.1X Statistics 174
- Add IP Filtering Entry 177
- Figure 6-10 IP Filter 177
- Configuring Port Security 180
- Console(config-if)# 182
- Configuring DHCP Snooping 186
- Configuring Packet Filtering 193
- ILTERING 195
- 192.168.0.9 23-5 197
- Console(config-std-acl)# 202
- Configuring a MAC ACL 206
- Console(config-mac-acl)# 207
- Specifying the Mask Type 208
- Configuring an IP ACL Mask 209
- Configuring a MAC ACL Mask 212
- Field Attributes (Web) 217
- Field Attributes (CLI) 218
- Basic information: 218
- Configuration: 218
- Current status: 219
- NTERFACE 223
- ONNECTIONS 223
- Configuring LACP Parameters 229
- Displaying LACP Port Counters 233
- Command Attribute 243
- Showing Port Statistics 245
- TATISTICS 247
- Figure 9-13 Port Statistics 250
- Configuring Line Profiles 268
- Table 10-2 Rate Status 274
- ISPLAYING 275
- NFORMATION 275
- ERFORMANCE 279
- VDSL port 281
- Displaying CPE Information 288
- CPE Performance Counters 289
- Figure 10-7 CPE Information 291
- UNCTIONS 295
- PGRADING 295
- Changing the Aging Time 300
- LGORITHM 301
- Displaying Interface Settings 313
- Console(config-mst)# 325
- Console(config-if) 329
- IEEE 802.1Q VLAN 333
- Displaying Current VLANs 338
- Command Attributes (CLI) 339
- Creating VLANs 340
- Console(config)#pvlan 32-17 348
- IEEE 802.1Q T 355
- 3 for VLAN ID 1 365
- Priority 01234567 369
- Queue 20134567 369
- Figure 14-2 Traffic Classes 371
- Layer 3/4 Priority Settings 375
- Mapping IP Precedence 377
- Mapping DSCP Priority 379
- Mapping IP Port Priority 382
- Console(config-cmap)# 389
- ARAMETERS 393
- Multicast 397
- ULTICAST 398
- HROTTLING 413
- Multicast VLAN Registration 416
- Console(config)#mvr 35-24 419
- MVR VLAN 421
- EGISTRATION 425
- Address Entries 432
- Displaying the DNS Cache 434
- Web – Select DNS, Cache 435
- Figure 17-3 DNS Cache 435
- Console Connection 439
- Accessing the CLI 439
- Username: admin 441
- Password: 441
- Console>enable 442
- Console#show startup-config 442
- Showing Commands 443
- Using Command History 445
- Understanding Command Modes 445
- Console#configure 447
- Privileged Exec mode 448
- Command Line Processing 449
- Command Groups 450
- Table 19-1 General Commands 453
- Console#disable 455
- Console> 455
- Console#!2 457
- Console#config 457
- Console#reload 457
- Console(config)#prompt RD2 458
- RD2(config)# 458
- Console(config-if)#end 458
- Console(config)#exit 459
- Console#exit 459
- Press ENTER to start session 459
- User Access Verification 459
- Username: 459
- Console#quit 460
- Device Designation Commands 462
- System Status Commands 463
- Example 465
- Related Commands 465
- Command Mode 471
- Normal Exec, Privileged Exec 471
- System Mode Commands 473
- Command Function Mode Page 475
- File Management Commands 476
- GC 20-25 477
- Console#delete test2.cfg 482
- Line Commands 486
- Console(config)#line console 487
- Console(config-line)# 487
- Console#disconnect 1 497
- Event Logging Commands 499
- Table 20-13 Logging Levels 500
- Console#clear log 504
- SMTP Alert Commands 508
- Time Commands 513
- Console(config)#sntp poll 60 515
- Console#show calendar 519
- 15:12:34 February 1 2002 519
- Table 21-1 SNMP Commands 521
- Console(config)#snmp-server 522
- Privileged Exec 532
- 27. No view is defined 535
- 28. Maps to the defaultview 535
- User Account Commands 542
- Authentication Sequence 545
- RADIUS Client 548
- 10 retransmit 5 key green 549
- TACACS+ Client 553
- Web Server Commands 555
- Telnet Server Commands 560
- Secure Shell Commands 561
- Console(config)#ip ssh server 565
- Console#show ip ssh 571
- SSH Enabled - version 2.0 571
- Server key size: 768 bits 571
- 802.1X Port Authentication 574
- 802.1X P 575
- Console#dot1x re-authenticate 578
- Management IP Filter Commands 585
- Port Security Commands 590
- Packet Filtering Commands 593
- IP Source Guard Commands 599
- DHCP Snooping Commands 605
- Table 24-2 IP ACL Commands 616
- permit host 10.1.1.21 622
- Console(config-ip-mask-acl)# 623
- IP ingress mask ACL: 628
- mask host any 628
- mask 255.255.255.0 any 628
- Table 24-3 MAC ACL Commands 630
- Console#show mac access-list 634
- MAC access-list jerry: 634
- Console(config-mac-mask-acl)# 635
- Privileged Executive 641
- Console(config-if)#shutdown 653
- INTERFACES 655
- COUNTERS 657
- SWITCHPORT 659
- GGREGATION 661
- Console(config-if)#exit 664
- PRIORITY 669
- Table 29-1 VDSL Commands 683
- Long-Reach Ethernet Commands 684
- Table 29-4 HAM Band Notches 689
- Table 29-6 PSD Mask Options 699
- Console(config-if)#lre upbo 702
- Console(config)#lre tone tx 2 704
- Console(config-if)#lre apply 716
- Line Profile Commands 717
- Console(config-line-profile)# 720
- Alarm Profile Commands 733
- Displaying VDSL Information 743
- Field Description 765
- CPE Configuration 768
- Aging time: 300 sec 780
- Console(config)#spanning-tree 783
- 784
- Console(config-mstp)# 790
- SPANNING 797
- Table 32-1 VLAN Commands 809
- XTENSION 811
- Editing VLAN Groups 815
- Console(config)#vlan database 816
- Console(config-vlan)# 816
- Configuring VLAN Interfaces 817
- NTERFACES 819
- Displaying VLAN Information 824
- Console(config)#pvlan 826
- Configuring VLAN Swapping 838
- Priority Commands (Layer 2) 843
- Console(config)#priority bits 845
- Console#show queue mode 847
- Wrr status: Enabled 847
- Console(config)#map ip port 854
- IP Precedence Value 01234567 856
- CoS Value 01234567 856
- Console(config)#map ip dscp 857
- Console(config-pmap-c)# 868
- IGMP Query Commands 883
- Console(config-igmp-profile)# 892
- Console(config)#mvr 901
- MVR VLAN: 907
- Table 36-1 DNS Commands 909
- DHCP Client 919
- DHCP Relay 920
- PPENDICES 933
- PECIFICATIONS 935
- Management Features 937
- Standards 937
- Management Information Bases 938
- ROUBLESHOOTING 941
- Using System Logs 943
- Glossary-1 945
- Glossary-2 946
- Glossary-3 947
- Glossary-4 948
- Glossary-5 949
- Glossary-6 950
- Glossary-7 951
- Glossary-8 952
- Glossary-9 953
- Glossary-10 954
- Numerics 955
© 2020, manymanuals.it. Tutti i diritti riservati | 0.071 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Commenti su questo manuale