xStack
®
DGS-3600 Series Layer 3 Managed Gigabit Ethernet Switch
Section 7
Security
Authorization Attributes State Settings
Traffic Control
Port Security
IP-MAC-Port Binding
802.1X
Web-based Access Control (WAC)
Trust Host
BPDU Attack Protection Settings
ARP Spoofing Prevention Settings
Access Authentication Control
MAC based Access Control
Safeguard Engine
Traffic Segmentation
SSL
SSH
Compound Authentication
Japanese Web-based Access Control (JWAC)
Authorization Attributes State Settings
This window allows the user to enable or disable the authorization attributes state.
To view this window, click
Security > Authorization Attributes State Settings
, as shown below:
Figure 7- 1. Authorization Attributes State Settings window
Traffic Control
On a computer network, packets such as multicast packets and broadcast packets continually flood the network as normal
procedure. At times, this traffic may increase do to a malicious endstation on the network or a malfunctioning device, such as a
faulty network card. Thus, switch throughput problems will arise and consequently affect the overall performance of the switch
network. To help rectify this packet storm, the Switch will monitor and control the situation.
The packet storm is monitored to determine if too many packets are flooding the network, based on the threshold level provided
by the user. Once a packet storm has been detected, the Switch will drop packets coming into the Switch until the storm has
subsided. This method can be utilized by selecting the
Drop
option of the
Action field in the window below.
The Switch will also scan and monitor packets coming into the Switch by monitoring the Switch’s chip counter. This method is
only viable for Broadcast and Multicast storms because the chip only has counters for these two types of packets. Once a storm
342