NETGEAR GS108Tv3 Router Manual PDF (Setup & Configuration Guide)

Page 86 / 140 Scroll up to view Page 81 - 85

GS108T Smart Switch Software Administration Manual

5-14

Configuring QoS and Security

v1.0, December 2007

The following figure displays the right side of the Advanced Port Authentication screen:

2.

You can make changes to the port authentication setting for an individual port, for a group of

ports, or for all ports simultaneously:

•

To change the port authentication settings for an individual port, select the check box to

the left of its port number, and then select the global settings.

•

To change the port authentication settings for a group of ports, select the check boxes to

the left of their port numbers, and then select the global settings.

•

To change the port authentication settings for all ports simultaneously, select the check

box at the top of the column of check boxes, and then select the global settings.

The following fields are displayed. Except for the Port, User Name, Authentication State, and

Termination Cause, all fields are configurable:

•

Port

. Shows an interface on which port-based authentication is enabled.

•

User Name

. Shows the supplicant user name.

Figure 5-10

Note:

You can also enter the interface number (that is, the port number) in the

GO

TO INTERFACE

field, and then click

GO

.

Page 87 / 140

GS108T Smart Switch Software Administration Manual

Configuring QoS and Security

5-15

v1.0, December 2007

•

Current Port Control

. Specifies the current port authorization state. The possible field

values are:

–

Auto

. Specifies that the port control is automatic and that a single client with the

proper credentials has been authenticated through the port.

–

Unauthorized

. Specifies that either the port control is forced unauthorized control, or

that the port control is automatic but that a client has not (yet) been authenticated

through the port. When the port control is forced unauthorized control, even a client

with proper credentials cannot be authorized.

–

Authorized

. Specifies that the port control is forced authorized control, and that

clients with the proper credentials have full port access.

•

Periodic Reauthentication

. Permits immediate port reauthentication. The possible field

values are:

–

Disable

. Specifies that port reauthentication is disabled.

–

Enable

. Specifies that port reauthentication is enabled. This is the default value.

•

Reauthentication Period

. Specifies the time span (in seconds) in which the selected port

is reauthenticated. The default is 3600 seconds.

•

Authenticator State

. Shows the current authenticator state.

•

Quiet Period

. Specifies the number of seconds that the device remains in the quiet state

following a failed authentication exchange. The possible field range is 0–65,535. The

default is 60 seconds.

•

Resending EAP

. Specifies the amount of time (in seconds) that elapses before EAP

requests are resent. The default is 30 seconds.

•

Max EAP Requests

. Specifies the total number of EAP requests sent. If a response is not

received after the defined period, the authentication process is restarted. The default is

2 retries.

•

Supplicant Timeout

. Specifies the amount of time (in seconds) that elapses before EAP

requests are resent to the supplicant. The default is 30 seconds.

•

Server Timeout

. Specifies the amount of time (in seconds) that elapses before the device

resends a request to the authentication server. The default is 30 seconds.

•

Termination Cause

. Shows the reason for which the port authentication was terminated.

3.

Click

Apply

to confirm any settings changes.

Page 88 / 140

GS108T Smart Switch Software Administration Manual

5-16

Configuring QoS and Security

v1.0, December 2007

Traffic Control

The Traffic Control menu lets you to configure storm control and port learning settings. When

storm control is enabled, ports are not disrupted by a flood of traffic (a storm) that otherwise might

degrade network performance.

Storm Control

The Storm Control screen lets you assign storm rate limitations to the entire system:

1.

Select Security > Traffic Control > Storm Control. A screen similar to the following displays.

Figure 5-11

Page 89 / 140

GS108T Smart Switch Software Administration Manual

Configuring QoS and Security

5-17

v1.0, December 2007

2.

Under Storm Control Settings, the following fields are displayed, both of which are

configurable:

•

Ingress Control Mode

. Specifies the type of the packet storm. The possible field values

are:

–

Disable

. Specifies that storm control is disabled. This is the default value.

–

Unknown Unicast, Multicast, and Broadcast

. Specifies that storm control is

enabled for unknown unicast, multicast, and broadcast packets.

–

Multicast and Broadcast

. Specifies that storm control is enabled for multicast and

broadcast packets.

–

Broadcast Only

. Specifies that storm control is enabled for broadcast packets only.

•

Threshold

. Specifies the threshold rate limit in Kbps for storm control. The valid range is

from 64 to 1048576 Kbps.

3.

Click

Apply

to confirm any changes to the storm control configuration.

4.

You can make changes to the storm control port setting for an individual port, for a group of

ports, or for all ports simultaneously:

•

To change the storm control port setting for an individual port, select the check box to the

left of its port number, and then select the setting.

•

To change the storm control port setting for a group of ports, select the check boxes to the

left of their port numbers, and then select the setting.

•

To change the storm control port setting for all ports simultaneously, select the check box

at the top of the column of check boxes, and then select the setting.

The following fields are displayed. Only the Status field is configurable:

•

Port

. Shows the port number.

•

Status

. Specifies whether storm control is enabled on the port. The possible field values

are:

–

Disable

. Specifies that storm control is disabled on the port. This is the default value.

–

Enable

. Specifies that storm control is enabled on the port.

5.

Click

Apply

to confirm any settings changes to the storm control port settings.

Note:

You can also enter the interface number (that is, the port number) in the

GO

TO INTERFACE

field, and then click

GO

.

Page 90 / 140

GS108T Smart Switch Software Administration Manual

5-18

Configuring QoS and Security

v1.0, December 2007

Port Security

The Port Security screen lets you to configure port learning for unknown source MAC address

packets. If the learning mode is disabled, you can specify an action that must be taken for unknown

source MAC address packets. To configure port security:

1.

Select Security > Traffic Control > Port Security. A screen similar to the following displays.

.

2.

You can make changes to the port security setting for an individual port, for a group of ports,

or for all ports simultaneously:

•

To change the port security setting for an individual port, select the check box to the left of

its port number, and then select the learning mode and action.

•

To change the port security setting for a group of ports, select the check boxes to the left of

their port numbers, and then select the learning mode and action.

•

To change the port security setting for all ports simultaneously, select the check box at the

top of the column of check boxes, and then select the learning mode and action.

Figure 5-12

Note:

You can also enter the interface number (that is, the port number) in the

GO

TO INTERFACE

field, and then click

GO

.

Rate

Popular NETGEAR Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share