D-Link DSA-3200 Información técnica Pagina 147
- Pagina / 321
- Tabla de contenidos
- MARCADORES
Valorado. / 5. Basado en revisión del cliente
xStack
®
DGS-3200 Series Layer 2 Managed Gigabit Ethernet Switch Web UI Reference Guide
133
DHCP Snooping Option
If DHCP snooping is enabled, the switch learns IP-MAC pairs by snooping DHCP packets automatically and then saving them to
the IP-MAC-Port Binding white list. This enables a hassle-free configuration because the administrator does not need to manually
enter each IMPB entry. A prerequisite for this is that the valid DHCP server’s IP-MAC pair must be on the switch’s IMPB list;
otherwise the DHCP server packets will be dropped. DHCP snooping is generally considered to be more secure because it
enforces all clients to acquire IP through the DHCP server.
An example of DHCP snooping in which PC-A and PC-B get their IP addresses from a DHCP server is depicted below. The
switch snoops the DHCP conversation between PC-A, PC-B, and the DHCP server. The IP address, MAC address, and connecting
ports of both PC-A and PC-B are learned and stored in the switch’s IMPB white list. Therefore, these PCs will be able to connect
to the network. Then there is PC-C, whose IP address is manually configured by the user. Since this PC’s IP-MAC pair does not
match the one on Switch’s IMPB white list, traffic from PC-C will be blocked.
192.168.1.1 00E0-0211-111 Port 1
192.168.1.2 00E0-0211-222 Port 2
Figure 6 - 5. Example of DHCP Snooping
The IP-MAC-Port Binding (IMPB) folder contains five windows: IMPB Global Settings, IMPB Port Settings, IMPB Entry
Settings, DHCP Snooping Entries, and MAC Blocked List.
IMPB Global Settings
Users can enable or disable the global IMPB settings: Trap Log State and DHCP Snoop state, on the Switch.
The Trap/Log field will enable and disable the sending of trap log messages for IP-MAC binding. When enabled, the Switch will
send a trap message to the SNMP agent and the Switch log when an ARP packet is received that doesn’t match the IP-MAC
binding configuration set on the Switch.
The DHCP Snoop State field will enable and disable the DHCP Snooping option.
To view the following window, click Security > IP-MAC-Port Binding (IMPB) > IMPB Global Settings:
Figure 6 - 6. IMPB Global Settings window
IMP Binding Enabled
Address Learning
White List
(IP assigned by DHCP for
PC-A and PC-B)
192.168.1.2
00E0-0211-2222
192.168.1.1
00E0-0211-3333
(IP manually configured by user)
DHCP Server
PC-B
PC-C
PC-A
Doesn’t match the
White List block PC-C
192.168.1.1
00E0-0211-1111
- Table of Contents 3
- Intended Readers 11
- Safety Cautions 12
- Lithium Battery Precaution 14
- Section 1 15
- Introduction 15
- Web-based User Interface 16
- Web Pages 17
- Configuration 18
- Device Information 19
- System Information 19
- Serial Port Settings 20
- IP Address 20
- Port Configuration 22
- Port Settings 23
- Port Description Settings 25
- Static ARP Settings 26
- Gratuitous ARP 27
- User Accounts 28
- Command Logging Settings 29
- System Log Configuration 30
- System Severity Settings 31
- MAC Address Aging Time 32
- Web Settings 32
- Telnet Settings 33
- Password Encryption 33
- CLI Paging Settings 33
- Firmware Information 34
- Dual Configuration Settings 35
- Power Saving 37
- Power Saving Settings 38
- Power Saving LED Settings 39
- Power Saving Port Settings 39
- MAC Notification Settings 40
- SNMP Settings 41
- SNMP Global State Settings 42
- SNMP View Table 43
- SNMP Group Table 44
- SNMP User Table 45
- SNMP Community Table 46
- SNMP Host Table 47
- SNMP v6Host Table 48
- SNMP Engine ID 48
- SNMP Trap Configuration 49
- Single IP Management 50
- Upgrade to v1.61 51
- Single IP Settings 52
- Topology 53
- Tool Tips 55
- Right-Click 56
- Group Icon 56
- Commander Switch Icon 57
- Member Switch Icon 58
- Candidate Switch Icon 58
- Firmware Upgrade 60
- Upload Log File 60
- SD Card Backup Settings 62
- SD Card Execute Settings 62
- L2 Features 64
- IEEE 802.1Q VLANs 65
- 802.1Q VLAN Tags 66
- Port VLAN ID 67
- Tagging and Untagging 67
- Ingress Filtering 68
- Default VLANs 68
- Port-based VLANs 68
- VLAN Segmentation 69
- VLAN and Trunk Groups 69
- 802.1v Protocol VLAN 72
- GVRP Settings 74
- MAC-based VLAN Settings 75
- Private VLAN Settings 75
- PVID Auto Assign Settings 78
- Voice VLAN 78
- Voice VLAN Port Settings 79
- Voice VLAN OUI Settings 80
- Voice VLAN Device 80
- VLAN Trunk Settings 81
- Browse VLAN 82
- Egress Filter Settings 83
- L2 Multicast Control 83
- IGMP Snooping 84
- IGMP Router Port 88
- IGMP Snooping Counter 89
- IGMP Host Table 90
- MLD Snooping 91
- MLD Router Port 95
- MLD Snooping Counter 97
- Multicast VLAN 98
- Multicast Filtering 101
- Multicast Filtering Mode 103
- Port Mirroring 104
- Spanning Tree 105
- Port Transition States 106
- Edge Port 106
- P2P Port 106
- STP Bridge Global Settings 107
- STP Port Settings 108
- STP Instance Settings 111
- MSTP Port Information 111
- Link Aggregation 112
- Forwarding & Filtering 115
- Multicast Forwarding 116
- LLDP Global Settings 117
- LLDP Port Settings 118
- LLDP Management Address List 119
- LLDP Basic TLVs Settings 119
- LLDP Dot1 TLVs Settings 120
- LLDP Dot3 TLVs Settings 121
- LLDP Statistics System 122
- LLDP Local Port Information 123
- LLDP Remote Port Information 124
- LLDP-MED 125
- NLB FDB Settings 127
- L3 Features 129
- IPv6 Interface Settings 130
- IPv6 Route Settings 131
- IPv6 Neighbor Settings 131
- Section 5 133
- Understanding QoS 134
- Bandwidth Control 135
- Traffic Control 136
- 802.1p Default Priority 139
- 802.1p User Priority 139
- QoS Scheduling Mechanism 140
- Security 141
- RADIUS Accounting Settings 142
- RADIUS Authentication 143
- RADIUS Account Client 144
- IP-MAC-Port Binding (IMPB) 145
- ARP Mode 146
- ACL Mode 146
- Strict and Loose State 146
- IMPB Global Settings 147
- IMPB Port Settings 148
- IMPB Entry Settings 149
- MAC Block List 150
- DHCP Snooping 151
- ND Snoop 152
- Port Security 153
- Port Lock Entries 154
- DHCP Server Screening 155
- DHCP Offer Filtering 156
- Authentication Server 158
- Authenticator 158
- Authentication Process 159
- 802.1X Global Settings 162
- 802.1X Port Settings 163
- 802.1X User Settings 165
- Guest VLAN Settings 165
- Authenticator State 166
- Authenticator Statistics 166
- Authenticator Diagnostics 168
- SSL Settings 171
- SSL Certification Settings 173
- SSH Settings 174
- SSH User Authentication List 176
- Enable Admin 178
- Authentication Server Group 179
- Login Method Lists Settings 182
- Enable Method Lists Settings 183
- WAC Global Settings 190
- WAC User Settings 191
- WAC Port Settings 192
- WAC Authenticating State 193
- WAC Customize Page 193
- JWAC Global Settings 194
- JWAC Port Settings 196
- JWAC User Settings 197
- JWAC Authentication State 198
- JWAC Customize Page Language 199
- JWAC Customize Page 199
- Compound Authentication 200
- 802.1X & IMPB Mode 201
- IMPB & WAC/JWAC Mode 202
- MAC & IMPB Mode 202
- IGMP Access Control Settings 206
- BPDU Attack Protection 208
- Loopback Detection Settings 209
- Traffic Segmentation 210
- Safeguard Engine Settings 211
- Trusted Host Settings 212
- Section 7 214
- ACL Configuration Wizard 214
- Access Profile List 215
- CPU Access Profile List 229
- Time Range Settings 242
- Network Application 244
- DHCPv6 Relay 247
- DHCP Server 248
- DHCP Server Global Settings 249
- DHCP Server Pool Settings 250
- DHCP Server Manual Binding 251
- DHCP Local Relay Settings 252
- DHCP Option 12 Settings 254
- DNS Resolver 254
- SMTP Settings 257
- SNTP Settings 258
- Ping Test 260
- Section 9 262
- Ethernet OAM 262
- Ethernet OAM Event Log 264
- Ethernet OAM Statistics 264
- DULD Settings 265
- Cable Diagnostics 266
- Cable Diagnostics Notes 267
- Monitoring 268
- DRAM & Flash Utilization 269
- Port Utilization 270
- Packet Size 270
- Packets 272
- UMB_Cast (RX) 274
- Transmitted (TX) 275
- Received (RX) 277
- Browse ARP Table 280
- Browse Router Port 280
- Browse MLD Router Port 281
- Browse Session Table 281
- IGMP Snooping Group 282
- MLD Snooping Group 282
- MAC Address Table 283
- System Log 284
- Save and Tools 285
- Save Configuration 286
- Save Log 286
- Save All 287
- Download Firmware to SD Card 288
- Reboot System 290
- Using Packet Content ACL 291
- Ethernet Header 294
- Example topology 295
- Appendix D – Trap Logs 318
Relacionado con productos y manuales para Redes D-Link DSA-3200
Redes D-Link DSL-300 Manual de usuario
(5 paginas)
(5 paginas)
Redes D-Link ShareCenter Pulse DNS-320 Manual de usuario
(111 paginas)
(111 paginas)
Redes D-Link DHP-306AV Manual de usuario
(56 paginas)
(56 paginas)
Redes D-Link DVG-2032S Manual de usuario
(3 paginas)
(3 paginas)
Redes D-Link DSL-320T Guía de usuario
(66 paginas)
(66 paginas)
Redes D-Link 502G - DSL Router - EN Guía de usuario
(73 paginas)
(73 paginas)
Redes D-Link DSL-320B Manual de usuario
(40 paginas)
(40 paginas)
Redes D-Link 707P - DI Router Especificaciones
(109 paginas)
(109 paginas)
Redes D-Link AirPlus G DWL-G510 Especificaciones
(47 paginas)
(47 paginas)
Redes D-Link DGE-550SX Guía de usuario
(25 paginas)
(25 paginas)
Redes D-Link DI 704 - Gateway Manual de usuario
(47 paginas)
(47 paginas)
Redes D-Link ShareCenter DNS-315 Manual de usuario
(79 paginas)
(79 paginas)
Redes D-Link DCM-301 Manual de usuario
(20 paginas)
(20 paginas)
Redes D-Link DWL-3600AP Guía de instalación
(4 paginas)
(4 paginas)
Redes D-Link xStackTM DGS-3300 Manual de usuario
(5 paginas)
(5 paginas)
Redes D-Link DI-206 Manual de usuario
(15 paginas)
(15 paginas)
Redes D-Link DAP-3220 Manual de usuario
(84 paginas)
(84 paginas)
Redes D-Link DWR-510 Manual de usuario
(62 paginas)
(62 paginas)
© 2020, manymanuals.es. Todos los derechos reservados | 0.034 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales