Protection from unauthorized access
6.4 Port access control
6.4.1 Description port access control
The Switch protects every port from unauthorized access.
Depending of your choice the Switch checks the MAC address or the IP
address of the connected device.
The following functions are available for monitoring every individual port:
D
Who has access to this port?
The Switch recognizes 2 classes of access control:
– All:
– User:
D
What should happen after an unauthorized access attempt?
The Switch can respond in three selectable ways to an unauthorized
access attempt:
– non:
– trapOnly:
– portDisable:
Note: Since the Switch is a layer 2 device, it translates the stored IP addres-
ses into MAC addresses. This requires that a MAC address be assigned to
exactly one IP address.
Please keep in mind that when using a router, several IP addresses can be
assigned to one MAC address, namely that of the router. This means that all
packets of the router will pass the port unchecked if the permitted IP address
is that of the router.
If a connected device sends packets with other MAC addresses and a per-
mitted IP address, the Switch will disable the port.
Layer 2 Enhanced with Layer 2 Professional
Release 1.0 10/05
no access restriction
MAC address 00:00:00:00:00:00 oder
IP address 0.0.0.0.
only an assigned user has access.
the user you define by his MAC address or his
IP address.
no response
message by sending a trap
message by sending a trap and
disabling a port
6.4 Port access control
79