D-Link DES-3052 Spécifications Page 163
- Page / 271
- Table des matières
- MARQUE LIVRES
Noté. / 5. Basé sur avis des utilisateurs
DES-3028 DES-3028P DES-3052 DES-3052P Layer 2 Fast Ethernet Managed Switch
Guest VLANs
Figure 10- 17. Guest VLAN Authentication Process
On 802.1x security enabled networks, there is a need for non 802.1x
supported devices to gain limited access to the network, due to lac
k
of the proper 802.1x software or incompatible devices, such as
computers running Windows 98 or lower operating systems, or the
need for guests to gain access to the network without full
authorization. To supplement these circumstances, this switch now
implements Guest 802.1x VLANs. These VLANs should have
limited access rights and features separate from other VLANs on
the network.
To implement Guest 802.1x VLANs, the user must first create a
VLAN on the network with limited rights and then enable it as an
802.1x guest VLAN. Then the administrator must configure the
guest accounts accessing the Switch to be placed in a Guest VLAN
when trying to access the Switch. Upon initial entry to the Switch,
the client wishing services on the Switch will need to be
authenticated by a remote RADIUS Server on the Switch to be
placed in a fully operational VLAN. If authenticated and the
authenticator posseses the VLAN placement information, that client
will be accepted into the fully operational target VLAN and normal
switch functions will be open to the client. If the authenticator does
not have target VLAN placement information, the swtich will create
a VLAN and the client will be placed in this VLAN. Yet, if the
client is denied authentication by the authenticator, it will be placed
in the Guest VLAN where it has limited rights and access. The
adjacent figure should give the user a better understanding of the
Guest VLAN process.
Client Placed in
Guest VLAN
Limitations Using the Guest VLAN
1. Guest VLANs are only supported for port-based VLANs. MAC-based VLANs cannot undergo this procedure.
2. Ports supporting Guest VLANs cannot be GVRP enabled and vice versa.
3. A port cannot be a member of a Guest VLAN and a static VLAN simultaneously.
4. Once a client has been accepted into the target VLAN, it can no longer access the Guest VLAN.
5. If a port is a member of multiple VLANs, it cannot become a member of the Guest VLAN.
150
- Release I 1
- Table of Contents 3
- Preface 8
- Intended Readers 9
- Typographical Conventions 9
- Notes, Notices, and Cautions 9
- Safety Instructions 10
- Introduction 13
- Front-Panel Components 16
- Installing the SFP ports 18
- Installation 19
- Power on AC Power 21
- Power Failure 21
- Connecting the Switch 22
- Switch to Hub or Switch 23
- Section 4 24
- Password Protection 26
- SNMP Settings 27
- IP Address Assignment 28
- Web-based User Interface 31
- Web Pages 33
- Administration 34
- Device Information 35
- IP Address 37
- Port Configuration 40
- Port Error Disabled 41
- Port Description 42
- DHCP/BOOTP Relay 43
- User Accounts 46
- Port Mirroring 48
- System Log Settings 49
- Log Settings 51
- SNTP Settings 52
- Time Zone and DST 53
- MAC Notification Settings 55
- TFTP Services 55
- Multiple Image Services 57
- Ping Test 58
- Safeguard Engine 58
- SNMP Manager 61
- SNMP Traps Settings 62
- SNMP User Table 62
- SNMP View Table 64
- SNMP Group Table 65
- SNMP Host Table 67
- SNMP Engine ID 68
- PoE System 69
- PoE Port Configuration 70
- Single IP Settings 72
- SIM Settings 73
- Topology 75
- Tool Tips 77
- Right-Click 78
- Commander Switch Icon 79
- Member Switch Icon 79
- Candidate Switch Icon 79
- Menu Bar 80
- Firmware Upgrade 81
- Configuration Backup/Restore 81
- Forwarding & Filtering 82
- Multicast Forwarding 83
- Multicast Filtering Mode 84
- SMTP Service 85
- SMTP Server Settings 86
- L2 Features 88
- 802.1Q VLAN Tags 89
- Tagging and Untagging 90
- Ingress Filtering 90
- Default VLANs 91
- VLAN Segmentation 91
- VLAN and Trunk Groups 91
- Static VLAN Entry 92
- GVRP Settings 94
- Trunking 95
- Link Aggregation 96
- LACP Port Settings 96
- IGMP Snooping 98
- Static Router Ports Settings 100
- Spanning Tree 101
- STP LoopBack Prevention 102
- STP Bridge Global Settings 103
- STP Port Settings 105
- STP Instance Settings 109
- MSTP Port Information 110
- Section 8 112
- Understanding CoS 113
- Port Bandwidth 115
- 802.1p Default Priority 116
- 802.1p User Priority 117
- CoS Scheduling Mechanism 117
- CoS Output Scheduling 118
- Priority Settings 119
- TOS Priority Settings 120
- DSCP Priority Settings 121
- MAC Priority 123
- Section 9 124
- Port Number 134
- CPU Interface Filtering 135
- Security 146
- Port Security 149
- Port Lock Entries 150
- Download Certificate 151
- Ciphersuite 151
- SSH Server Configuration 154
- SSH User Authentication 157
- Authentication Server 159
- Authenticator 159
- Authentication Process 160
- Ethernet Switch 161
- Client Placed in 163
- Guest VLAN 163
- Configure 802.1x Guest VLAN 164
- Local Users 168
- RADIUS Server 171
- Trusted Host 172
- Authentication Server Group 175
- Authentication Server Host 176
- Login Method Lists 179
- Enable Method Lists 180
- Enable Admin 183
- Traffic Segmentation 184
- Monitoring 186
- Port Utilization 187
- Packets 188
- UMB Cast (RX) 190
- Transmitted (TX) 192
- Packet Errors 194
- Packet Size 198
- MAC Address 200
- Switch Log 201
- IGMP Snooping Group 202
- Browse Router Port 203
- Static ARP Settings 203
- Session Table 204
- Port Access Control 204
- RADIUS Accounting 207
- Auth Diagnostics 209
- Auth Session Statistics 211
- Auth Statistics 212
- Auth State 214
- Reboot System 216
- Save Changes 216
- Technical Specifications 218
- Detailed Description 222
- System Log Entries 224
- Cable Lengths 232
- Glossary 233
- Warranties/Registration 236
- Product Registration 240
- Technical Support 241
- Техническая поддержка 248
- Asistencia Técnica 249
- Suporte Técnico 250
- Technische Unterstützung 254
- Assistance technique 255
- Supporto tecnico 257
- Pomoc techniczna 259
- Technická podpora 260
- Technikai Támogatás 261
- Teknisk Support: 262
- Teknisk Support 263
- Τεχνική Υποστήριξη 267
- International Offices 269
- Registration Card 270
Produits connexes et manuels pour Commutateurs de réseau D-Link DES-3052
(1 pages)
(31 pages)
(2 pages)© 2020, manymanuals.fr. Tous droits réservés | 1.000 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Commentaires sur ces manuels