Manualshelf

Specifications

ManualsBrandsCabletron Systems ManualsComputer equipmentETWMIM
161162163164165166167168169170
Multi−User Authentication
When the action for a rule is set to Apply Policy and the threat is located on a port on a
device that supports Multi−User Authentication (e.g., Matrix DFE), you can apply a policy to
a specific MAC address or IP address. This lets you isolate a single user instead of affecting
all of the users on the port. You can apply a user−specific policy to an IP address or MAC
address instead of changing the port policy. If the threat MAC Address is unique to a
particular Threat IP (typically on devices at the edge of your network), select MAC to apply
the policy to the MAC address and override its port or dynamic policy. If the threat is on a
device at the core of your network and the MAC Address maps to several IP Addresses, select
IP to apply the policy to the IP Address and override its port or dynamic policy.
NOTES:
Policies applied
to a MAC source
will override
policies applied
to an IP source.
So, if there is a
policy currently
applied to a
MAC source,
applying a
policy to an
IP−source policy
will have no
effect.
See also the
IMPORTANT
Policy Matching
notes, above.
Apply PVID
Use the PVID drop−down list to select the PVID that will be applied to the port. The
available VLANs are defined in the Automated Security Manager Rule Variables − VLANs
view. The associated PVID Egress drop−down list lets you either retain the current PVID
egress state by selecting None or change the egress state to Untagged. When Untagged is
selected, the PVID is applied and the egress state is set to Untagged. When None is selected,
the egress state is unchanged and only the PVID is applied. If you have specified a Discard
VLAN as the PVID, selecting None usually means traffic will be discarded.
NOTE: Applying a PVID to a port does not clear the VLAN from egress lists for
non−PVID VLANs. This is normal operation. If Apply PVID is selected,
change the egress state to Untagged or apply a quarantine policy to the
port.
Custom Action
Check Custom Action and click Edit to open the Specify Program for Action window where you can
customize the response to an event by selecting a program to be executed.
Automated Security Manager Help
Specify Action to take... 160