Table of Contents
Advertisement
Hub Reference
Security Features
For ports operating in private mode, the hub provides inherent network data
security. A private mode port will only receive packets intended for the
attached device.
In cascade mode, only private end-nodes or cascaded repeaters (hubs) are
permitted to pass training. This mode should be used to permit promiscuous
access for just other hub connections while keeping other connections
private.
An any device mode allows all devices including promiscuous ones, to train.
Any device that requests to be promiscuous on this port will receive all
traffic. All other devices will be private. Ports configured for any device
mode operation can be identified using HP Stack Manager, HP Interconnect
Manager, or the ASCII console.
Security can be configured from HP Stack Manager, HP Interconnect
Manager, and the ASCII console. In addition to private, cascade, and any
device modes, you can specify three levels of address security on a single
port or all ports on the hub. When a security violation occurs, you can
specify whether an alarm is sent to the network management station. See
chapter 2 for details.
Devices are not allowed to pass training until their configuration matches
the port's permission. (The hubs will see a security violation occur if a
device attempts training that is not permitted.)
If the port has address security configured, any attempt by the end-node to
transmit a packet with a source address other than its own will result in the
end-node being forced to re-train to be re-authenticated. Intrusion attempts
will be reflected in the port LED, and can be viewed in the Intrusion log via
HP Stack Manager (or also HP Interconnect Manager or the ASCII console
for a managed hub).
For SNMP-level security such as authorized managers and password
protection, you need to add the HP J2414B 100VG/ET SNMP/Bridge Module
as described on the next page.
4-11
Advertisement
Table of Contents
Troubleshooting
