Table of Contents
Advertisement
. . . . . . . . . . . . . . . . . . . . . . . . . . . . .
4-8
Hub Management
Security
The security feature provides further network security by restricting access to
the mdcIntrusionPortStatus, mdcIntrusionPortMACAddress, and
mdcIntrusionPortMACAddressStr MIB variables. You can restrict access to
these intrusion table MIB variables by setting the mdcSecurityStatus MIB
variable to enable(2). The default value is disable(1), which allows the SNMP
manager to directly access the intrusion table through normal SNMP set PDUs
(Protocol Data Units).
Configuring the Repeater at Bootup
You can configure a BOOTP server to supply the IP address, subnet mask, and
a default gateway IP address for a particular hardware MAC address. When you
power up a repeater stack, the managed repeater uses the information stored in
NVRAM to configure the repeater at bootup. There are two boot phases: Boot
and Runtime.
In the Boot phase, the STATUS LED is yellow. If BOOTP/RARP requests are
enabled, the repeater issues as many requests as are defined in the
mdcBootpRarpRetries MIB object in the MDC100 MIB (and displayed in the
VT100 console interface). The default number of requests is two. The repeater
issues the requests using two different frame types (Ethernet_II and 802.2
SNAP). The interval between requests is defined in the
mdcBootpRarpRetryInterval MIB object. The default request retry interval is 5
seconds.
CAUTION:
Once you set mdcSecurityStatus to enable(2), you cannot
directly disable security; you must use the mdcSecurityResetStatus MIB
variable to indirectly set mdcSecurityStatus to disable(1). If you need to set
values in the intrusion table after you enable security, you must do so using
the mdcSecurityCommand MIB variable (an encrypted value). Do not set
mdcSecurityStatus to enable(2) unless the SNMP manager can encrypt
values for the mdcSecurityCommand and mdcSecurityResetStatus MIB
variables. Do not use a MIB browser to enable security.
Advertisement
Table of Contents
