Manual

ManualsBrandsAllied Telesis ManualsComputer HardwareAT-S62

791

792

793

794

795

796

797

798

799

800

Table Of Contents

Table of Contents
List of Figures
Preface
- How This Guide is Organized
- Document Conventions
- Where to Find Web-based Guides
- Contacting Allied Telesyn
- Management Software Updates
Chapter 1
Overview
- Management Overview
- Local Management Session
- Telnet Management Session
- Web Browser Management Session
- SNMP Management Session
- Management Access Levels
Section I
Basic Operations
- Chapter 2
- Starting a Local or Telnet Management Session
- Chapter 3
- Enhanced Stacking
- Chapter 4
- Basic Switch Parameters
- Chapter 5
- SNMPv1 and SNMPv2c Configuration
- Chapter 6
- Port Parameters
- Chapter 7
- MAC Address Table
- Chapter 8
- Port Trunking
- Chapter 9
- Port Mirroring
- Chapter 10
- Ethernet Statistics
  - Displaying Port Statistics
  - Clearing Port Counters
Section II
Advanced Operations
- Chapter 11
- File System
- Chapter 12
- File Downloads and Uploads
- Chapter 13
- Event Log
- Chapter 14
- Quality of Service
- Chapter 15
- IGMP Snooping
- Chapter 16
- Denial of Service Defense
  - Denial of Service Defense Overview
  - Enabling or Disabling Denial of Service Prevention
Section III
SNMPv3 Operations
- Chapter 17
- SNMPv3 Configuration
Section IV
Spanning Tree Protocols
- Chapter 18
- Spanning Tree and Rapid Spanning Tree Protocols
- Chapter 19
- Multiple Spanning Tree Protocol
Section V
Virtual LANs
- Chapter 20
- Tagged and Port-based Virtual LANs
- Chapter 21
- GARP VLAN Registration Protocol
- Chapter 22
- Multiple VLAN Modes
Section VI
Port Security
- Chapter 23
- MAC Address Security
- Chapter 24
- 802.1x Port-based Access Control
Section VII
Management Security
- Chapter 25
- Web Server
  - Web Server Overview
    - Supported Protocols
    - General Steps to Configuring the Web Server for Encryption
  - Configuring the Web Server
- Chapter 26
- Encryption Keys
- Chapter 27
- Public Key Infrastructure Certificates
- Chapter 28
- Secure Shell (SSH) Protocol
- Chapter 29
- RADIUS and TACACS+ Authentication Protocols
  - TACACS+ and RADIUS Overview
    - Guidelines
  - Configuring Authentication Protocol Settings
    - Displaying RADIUS Status and Settings
- Chapter 30
- Management Access Control List
Section VIII
Web Browser Management
- Chapter 31
- Starting a Web Browser Management Session
  - Starting a Web Browser Management Session
    - Browser Tools
  - Saving Your Parameter Changes
  - Quitting a Web Browser Management Session
- Chapter 32
- Enhanced Stacking
  - Setting a Switch’s Enhanced Stacking Status
  - Selecting a Switch in an Enhanced Stack
    - Returning to the Master Switch
  - Displaying the Enhanced Stacking Status
- Chapter 33
- Basic Switch Parameters
  - Configuring an IP Address and Switch Name
  - Activating the BOOTP and DHCP Client Software
  - Displaying System Information
  - Configuring the Manager and Operator Passwords
  - Rebooting a Switch
  - Pinging a Remote System
  - Returning the AT-S62 Software to the Factory Default Values
- Chapter 34
- SNMPv1 and SNMPv2c Community Strings
  - Enabling or Disabling SNMP Management
  - Creating a New SNMPv1 or SNMPv2c Community String
  - Modifying a Community String
  - Deleting a Community String
  - Displaying the SNMP Status and Community Strings
- Chapter 35
- Port Parameters
  - Configuring Port Parameters
  - Displaying Port Status and Statistics
- Chapter 36
- MAC Address Table
  - Displaying the MAC Address Table
  - Adding Static Unicast and Multicast MAC Addresses
  - Deleting Unicast and Multicast MAC Addresses
  - Changing the Aging Time
- Chapter 37
- Port Trunking
  - Creating a Port Trunk
  - Modifying a Port Trunk
  - Deleting a Port Trunk
  - Displaying the Port Trunks
- Chapter 38
- Port Mirroring
  - Creating a Port Mirror
  - Modifying or Disabling a Port Mirror
  - Deleting a Port Mirror
  - Displaying the Port Mirror
- Chapter 39
- File Downloads and Uploads
  - Downloading a File
  - Uploading a File
- Chapter 40
- Event Log
  - Enabling or Disabling the Event Log
  - Displaying Events
  - Saving the Event Log
  - Clearing the Event Log
- Chapter 41
- Quality of Service
  - Configuring CoS
  - Mapping CoS Priorities to Egress Queues
  - Configuring Egress Scheduling
  - Displaying the CoS Settings
  - Displaying QoS Scheduling
- Chapter 42
- IGMP Snooping
  - Configuring IGMP Snooping
  - Displaying a List of Host Nodes and Multicast Routers
- Chapter 43
- Denial of Service Defense
  - Configuring Denial of Service Attack Defense
  - Displaying the DoS Settings
- Chapter 44
- SNMPv3 Protocol
  - Configuring the SNMPv3 Protocol
  - Enabling the SNMP Protocol
  - Configuring the SNMPv3 User Table
  - Configuring the SNMPv3 View Table
  - Configuring the SNMPv3 Access Table
  - Configuring the SNMPv3 SecurityToGroup Table
  - Configuring the SNMPv3 Notify Table
  - Configuring the SNMPv3 Target Address Table
  - Configuring the SNMPv3 Target Parameters Table
  - Configuring the SNMPv3 Community Table
  - Displaying SNMPv3 Tables
- Chapter 45
- STP, RSTP, and MSTP
  - Enabling or Disabling Spanning Tree
  - Configuring STP
  - Configuring RSTP
  - Configuring MSTP
  - Displaying Spanning Tree Settings
- Chapter 46
- Virtual LANs
  - Creating a New Port-Based or Tagged VLAN
  - Modifying a Port-Based or Tagged VLAN
  - Deleting a Port-Based or Tagged VLAN
  - Displaying VLANs
  - Selecting a VLAN Mode
  - Specifying a Management VLAN
- Chapter 47
- GARP VLAN Registration Protocol
  - Configuring GVRP
  - Enabling or Disabling GVRP on a Port
  - Displaying the GVRP Settings
- Chapter 48
- MAC Address Security
  - Displaying MAC Address Security Levels
- Chapter 49
- 802.1x Port-based Access Control
  - Enabling and Disabling Port-based Access Control
  - Setting Port Roles
  - Configuring Authenticator Port Parameters
  - Configuring Supplicant Port Parameters
  - Displaying the Port-based Access Control Settings
- Chapter 50
- Secure Shell Protocol
  - Configuring the SSH Server
  - Displaying SSH Information
- Chapter 51
- Encryption Keys, PKI, and SSL
  - Displaying Encryption Keys
  - Displaying PKI Settings and Certificates
  - Displaying the SSL Settings
- Chapter 52
- RADIUS and TACACS+ Authentication Protocols
  - Configuring RADIUS and TACACS+
  - Displaying the RADIUS or TACSACS+ Settings
- Chapter 53
- Management Access Control List
  - Creating a Management ACL
  - Adding or Deleting an ACE
  - Displaying the Management ACL
Appendix A
- AT-S62 Default Settings
Appendix B
- SNMPv3 Configuration Examples
  - SNMPv3 Configuration Examples
Index
- Numerics
- A
- B
- C
- D
- E
- F
- G
- H
- I
- K
- L
- M
- N
- O
- P
- Q
- R
- S
- T
- U
- V
- W
- X

AT-S62 User’s Guide

Section VIII: Web Browser Management 791

authentication of the client. This is the default setting

❑ Force-unauthorized: Causes the port to remain in the

unauthorized state, ignoring all attempts by the client to

authenticate. The switch cannot provide authentication services

to the client through the interface

❑ Auto: Enables 802.1x port-based authentication and causes the

port to begin in the unauthorized state, allowing only EAPOL

frames to be sent and received through the port. The

authentication process begins when the link state of the port

changes or the port receives an EAPOL-Start packet from a

supplicant. The switch requests the identity of the client and

begins relaying authentication messages between the client and

the authentication server. Each client that attempts to access the

network is uniquely identified by the switch using the client's

MAC address.

Quiet Period

Sets the number of seconds that the port remains in the quiet

state following a failed authentication exchange with the client.

The default value is 60 seconds. The range is 0 to 65,535 seconds.

TX Period

Sets the number of seconds that the switch waits for a response to

an EAP-request/identity frame from the client before

retransmitting the request. The default value is 30 seconds. The

range is 1 to 65,535 seconds.

Reauth Period

Enables periodic reauthentication of the client, which is disabled

by default. The default value is 3600 seconds. The range is 1 to

65,535 seconds.

Supplicant Timeout

Sets the switch-to-client retransmission time for the EAP-request

frame. The default value for this parameter is 30 seconds. The

range is 1 to 600 seconds.

Server Timeout

Sets the timer used by the switch to determine authentication

server timeout conditions. The default value for this parameter is

30 seconds. The range is 1 to 65,535 seconds.

Max Requests

Specifies the maximum number of times that the switch

retransmits an EAP Request packet to the client before it times out

the authentication session. The default value for this parameter is

2 retransmissions. The range is 1 to 10 retransmissions.