Manualshelf

Ethernet SNMP Module Installation and Reference Guide ( J2603B) 1995-10

ManualsBrandsHP ManualsComputer AccessoriesHP AdvanceStack 10-Base-T DMM Module
51525354555657585960
Authorized Station Address
To provide data security on a hub port, a single, unique station address must
be configured as the authorized station address for each port. You can
configure the authorized station address either by assigning it or by
designating the port to learn it automatically. This configuration is
performed with the Secure command from the hub’s console. See the
Secure command description in chapter 2.
Assigning the Authorized Station Address
You can assign an authorized station address by entering it manually at the
hub console interface or at the network management station. Assigning a
specific address provides the maximum control of the port’s authorized
station address. The Intruder Prevention and Eavesdrop Prevention security
that you have configured for that port is implemented as soon as the address
is assigned.
Learning the Authorized Station Address
You can set the hub to learn a port’s authorized station address automatically
by using either a “first heard” or a “learn continuous” method. The method
used to learn the authorized station address should be chosen based on the
level of data security required on a port. In each case, the security
configuration for that port is implemented when the port receives a packet
from the attached device. It learns the device’s address from the source
address field in the packet.
First-Heard Method The “first heard” method automatically assigns the
first address detected on the port as the authorized station address. This
method is useful to quickly identify and authorize end users whose ports may
require both Eavesdrop Prevention and Intruder Prevention. Under this method,
the port will be disabled automatically if an intruder is detected on the port.
Learn-Continuous Method The “learn continuous” method allows the
hub to continuously update the authorized station address configured for a
port. Each new device connected to the port becomes the new authorized
device. This security method is useful for dynamic workgroups that
experience frequent changes to end-user configuration and require minimal
data security protection. In the “learn continuous” mode, the port may be
configured to provide the Eavesdrop Prevention data security and the
send-alarm security violation notification. Under this method, the port will
not be disabled if an intruder is detected.
Security Information
Security Information
C-3