User Manual
Table Of Contents
- Insight Managed 8-Port Gigabit (Hi-Power) PoE+ Smart Cloud Switch with NETGEAR FlexPoE Power
- Contents
- 1 Getting Started
- Available publications
- Switch management options and default management mode
- Manage the switch by using the local browser UI
- Access the switch
- Credentials for the local browser UI
- Register and access the switch with your NETGEAR account
- Change the management mode of the switch
- Change the language of the local browser UI
- How to configure interface settings
- Use the Device View of the local browser UI
- 2 Configure System Information
- View or define system information
- Configure the IP network settings for management access
- Configure the time settings
- Manage the denial of service settings
- Configure the DNS settings
- Configure green Ethernet settings
- Manage the Bonjour settings and view Bonjour information
- Control the LEDs
- Use the Device View
- Configure Power over Ethernet
- Configure SNMP
- Configure Link Layer Discovery Protocol
- Configure DHCP snooping
- Set up Power over Ethernet timer schedules
- 3 Configure Switching
- Configure the port settings and maximum frame size
- Configure link aggregation groups
- Configure VLANs
- Manage the basic VLAN settings
- Configure VLAN membership
- View the VLAN status
- Configure the PVID settings for an interface
- Configure a MAC-based VLAN
- Configure protocol-based VLAN groups
- Configure protocol-based VLAN Group membership
- Configure a voice VLAN
- Configure the GARP switch settings
- Configure GARP ports
- Configure Auto-VoIP
- Configure Spanning Tree Protocol
- Configure multicast
- Configure multicast VLAN registration
- View, search, and configure the MAC address table
- Configure Layer 2 loop protection
- 4 Configuring Routing
- 5 Configure Quality of Service
- 6 Manage Switch Security
- Change the local device password for the local browser UI
- Manage the RADIUS settings
- Configure TACACS+ settings
- Configure authentication lists
- Configure management access
- Control access with profiles and rules
- Configure port authentication
- Set up traffic control
- Configure access control lists
- Use the ACL Wizard to create a simple ACL
- Configure a MAC ACL
- Configure MAC ACL rules
- Configure MAC bindings
- View or delete MAC ACL bindings in the MAC binding table
- Configure a basic or extended IPv4 ACL
- Configure rules for a basic IPv4 ACL
- Configure rules for an extended IPv4 ACL
- Configure an IPv6 ACL
- Configure rules for an IPv6 ACL
- Configure IP ACL interface bindings
- View or delete IP ACL bindings in the IP ACL binding table
- Configure VLAN ACL bindings
- 7 Perform Maintenance Tasks
- 8 Manage Power over Ethernet
- 9 Monitor the Switch
- A Configuration Examples
- B Switch Default Settings and Hardware Specifications
Insight Managed 8-Port Gigabit (Hi-Power) PoE+ Smart Cloud Switch with NETGEAR FlexPoE Power
Manage Switch Security User Manual312
4. Enter one of the following passwords:
• After registration, enter your customized local device password.
• If you previously added the switch to an Insight network location, enter the Insight
network password.
For more information about the local device password and the Insight network password,
see
Credentials for the local browser UI on page 28.
5. Click the Login button.
The System Information page displays.
6. Select Security > T
raffic Control > Port Security > Port Security Configuration.
The Port Security Configuration page displays.
7. T
o enable port security on the switch, select the Port Security Mode Enable radio button.
The default is Disable.
8. Click the Apply button.
Your settings are saved.
9. T
o refresh the page with the latest information about the switch, click the Refresh button.
The Port Security Violations table shows information about violations that occurred on ports
that are enabled for port security
.
The following table describes the fields in the Port Security Violations table.
Table 66. Port Security Violations information
Field Description
Port The physical interface.
Last Violation MAC The source MAC address of the last packet that was discarded at a locked port.
VLAN ID The VLAN ID corresponding to the last MAC address violation.
Configure a port security interface
A MAC address can be defined as allowable by one of two methods: dynamically or statically.
Both methods are used concurrently when a port is locked.
Dynamic locking implements a first arrival mechanism for port security. You specify how
many addresses can be learned on the locked port. If the limit was not reached, then a
packet with an unknown source MAC address is learned and forwarded normally. When the
limit is reached, no more addresses are learned on the port. Any packets with source MAC
addresses that were not already learned are discarded. You can effectively disable dynamic
locking by setting the number of allowable dynamic entries to zero.
Static locking allows you to specify a list of MAC addresses that are allowed on a port. The
behavior of packets is the same as for dynamic locking: only packets with an allowable
source MAC address can be forwarded.