User's Manual

ManualsBrandsHP ManualsSwitchHP 1920-8G Switch

441

442

443

444

445

446

447

448

449

450

429

Item Descri

tion

Enable Intrusion

Protection

Specifies whether to enable intrusion protection, and selects an action to be taken upon

detection of illegal frames.

Available actions:

• Disable Port Temporarily—Disables the port for a period of time. The period can be

configured in the global settings. For more information, see "Configuring global

set

tings for port security."

• Disable Port Permanently—Disables the port permanently upon detecting an illegal

frame received on the port. The port does not come up unless you bring it up manually.

• Block MAC—Adds the source MAC addresses of illegal frames to the blocked MAC

addresses list and discards the frames. All subsequent frames sourced from a blocked

source MAC address will be dropped. A blocked MAC address is restored to normal

state after being blocked for 3 minutes. The interval is fixed and cannot be changed.

Enable Outbound

Restriction

Specifies whether to enable the outbound traffic control, and selects a control method.

Available control methods:

• Only MAC-Known Unicasts—Allows only unicasts frames with their destination MAC

addresses being authenticated to pass through.

• Only Broadcasts and MAC-Known Unicasts—Allows only broadcast and unicasts

packets with their destination MAC addresses being authenticated to pass through.

• Only Broadcasts, Multicasts, and MAC-Known Unicasts—Allows only broadcast,

multicast, and unicasts packets with their destination MAC addresses being

authenticated to pass through.

Ignore

Authorization

Specifies whether to configure the port to ignore the authorization information from the

authentication server.

The authorization information is delivered by the authentication server to the device after

an 802.1X user or MAC authenticated user passes authentication.

Configuring permitted OUIs

1. From the navigation tree, select Authentication > Port Security.

The Port Security page as shown in Figure 409 appears.

2. In the Advanced Port Security Configuration area, c

lick Permitted OUIs.

Figure 417 Permitted OUIs

3. Enter the 48-bit MAC address in the format of H-H-H in the OUI Value field.

4. Click Add.

The system automatically saves the first 24 bits as an OUI value.