X (Port-Based And Host-Based Access Control) - D-Link xStack Reference Manual

®
xStack DGS-3200 Series Layer 2 Managed Gigabit Ethernet Switch Web UI Reference Guide
The user may set the following parameters:
Parameter
Server IP Address
Client's MAC Address
Ports
After setting the previous parameters, click Apply to allow your changes to be implemented. Click Delete to remove the specific
entry.

802.1X (Port-based and Host-based Access Control)

The IEEE 802.1X standard is a security measure for authorizing and authenticating users to gain access to various wired or
wireless devices on a specified Local Area Network by using a Client and Server based access control model. This is
accomplished by using a RADIUS server to authenticate users trying to access a network by relaying Extensible Authentication
Protocol over LAN (EAPOL) packets between the Client and the Server. The following figure represents a basic EAPOL packet:
Utilizing this method, unauthorized devices are restricted from connecting to a LAN through a port to which the user is connected.
EAPOL packets are the only traffic that can be transmitted through the specific port until authorization is granted. The 802.1X
Access Control method has three roles, each of which are vital to creating and up keeping a stable and working Access Control
security method.
Figure 6 - 17. DHCP Offer Filtering window
Description
The IP address of the DHCP server to be filtered.
The MAC address of the DHCP client. Only multiple legal DHCP servers on the network
need to be entered in this field. If there is only one legal DHCP server on the network, no
input to this field is allowed.
The port numbers of the filter DHCP server. Tick All ports to select all.
Figure 6 - 18. EAPOL Packet
143