1. Manuals
  2. Brands
  3. D-Link Manuals
  4. Switch
  5. DGS-3000 series
  6. Reference manual

Igmp Access Control Settings - D-Link DGS-3000 Series Reference Manual

Hide thumbs Also See for DGS-3000 Series:
Table of Contents

Advertisement

DGS-3000 Series Gigabit Ethernet Switch Web UI Reference Guide
Figure 8-80 DoS Attack Prevention Detail - View Detail window
Click the <<Back button to discard the changes made and return to the previous page.

IGMP Access Control Settings

Users can set IGMP authentication, otherwise known as IGMP access control, on individual ports on the Switch.
When the Authentication State is Enabled, and the Switch receives an IGMP join request, the Switch will send the
access request to the RADIUS server to do the authentication.
IGMP authentication processes IGMP reports as follows: When a host sends a join message for the interested
multicast group, the Switch has to do authentication before learning the multicast group/port. The Switch sends an
Access-Request to an authentication server and the information including host MAC, switch port number, switch IP,
and multicast group IP. When the Access-Accept is answered from the authentication server, the Switch learns the
multicast group/port. When the Access-Reject is answered from the authentication server, the Switch won't learn the
multicast group/port and won't process the packet further. The entry (host MAC, switch port number, and multicast
group IP) is put in the "authentication failed list." When there is no answer from the authentication server after T1 time,
the Switch resends the Access-Request to the server. If the Switch doesn't receive a response after N1 times, the
result is denied and the entry (host MAC, switch port number, multicast group IP) is put in the "authentication failed
list." In general case, when the multicast group/port is already learned by the switch, it won't do the authentication
again. It only processes the packet as standard.
IGMP authentication processes IGMP leaves as follows: When the host sends leave message for the specific
multicast group, the Switch follows the standard procedure for leaving a group and then sends an Accounting-Request
to the accounting server for notification. If there is no answer from the accounting server after T2 time, the Switch
resends the Accounting-Request to the server. The maximum number of retry times is N2.
To view this window, click Security > IGMP Access Control Settings as shown below:
Figure 8-81 IGMP Access Control Settings window
274
Show Quick Links

Hide quick links:

Advertisement

Table of Contents
loading

Related Manuals for D-Link DGS-3000 Series

Related Content for D-Link DGS-3000 Series

Table of Contents