Bpdu Attack Protection Settings - D-Link DGS-3700-12 User Manual

Dgs-3700 series layer 2 managed gigabit ethernet switch release 2.00

Hide thumbs Also See for DGS-3700-12:

Hardware installation manual (63 pages)

Installation manual (60 pages)

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

251

252

253

254

255

256

257

258

259

260

261

262

263

264

265

266

267

268

269

270

271

272

273

274

275

276

277

278

279

280

281

282

283

284

285

286

287

288

289

290

291

292

293

294

295

296

297

298

299

300

301

302

303

304

305

306

307

308

309

310

311

312

313

314

315

316

317

318

319

320

321

322

323

324

325

326

327

328

329

330

331

332

Table Of Contents

333

page of 333

/ 333
Contents
Table of Contents
Bookmarks

Table of Contents

Click Apply to implement changes.

BPDU Attack Protection Settings

This window is used to configure the BPDU protection function for the ports on the switch. In generally, there are two

states in BPDU protection function. One is normal state, and another is under attack state. The under attack state

have three modes: drop, block, and shutdown. A BPDU protection enabled port will enter an under attack state when it

receives one STP BPDU packet. And it will take action based on the configuration. Thus, BPDU protection can only be

enabled on STP-disabled port.

BPDU protection has a higher priority than the Forward BPDU setting configured by configure STP command in the

determination of BPDU handling. That is, when Forward BPDU is configured to forward the STP BPDU but BPDU

protection is enabled, then the port will not forward STP BPDU.

BPDU protection also has a higher priority than the BPDU tunnel port setting in determination of BPDU handling. That

is, when a port is configured as BPDU tunnel port for STP, it will forward STP BPDU. But if the port is BPDU

protection enabled. Then the port will not forward STP BPDU.

To view this window, click Security > BPDU Attack Protection, as shown below:

The fields that can be configured are described below:

Parameter

BPDU Attack

Protection State

Trap State

Log State

Recover Time

From Port/To Port

State

Mode

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet User Manual

Figure 8- 39 BPDU Protection Settings window

Description

Enable or disable the BPDU Attack Protection state.

Specify the trap state. The default state is none.

Specify the log state. The default state is both.

Specify the BPDU protection Auto-Recovery timer. The default value is 60 seconds.

Alternatively, tick the Infinite check box.

Select a range of ports to use for this configuration.

Enable or disable the mode for a specific port.

Specify the BPDU protection mode. The default mode is Shutdown.

Drop – Drop all received BPDU packets when the port enters under attack state.

Block – Drop all packets (include BPDU and normal packets) when the port enters under

attack state.

Shutdown – Shut down the port when the port enters under attack state.

228

Table of Contents

This manual is also suitable for:

Dgs-3700-12g

Bpdu Attack Protection Settings - D-Link DGS-3700-12 User Manual

BPDU Attack Protection Settings

Related Manuals for D-Link DGS-3700-12

Related Content for D-Link DGS-3700-12

This manual is also suitable for:

Table of Contents