Intruder protection, Figure617 intruder protection screen section, Intruder protection -17 – Allied Telesis AT-S20 User Manual

AT-S20 User’s Guide

6-17

,QWUXGHU

3URWHFWLRQ

The Intruder Protection feature resides in the lower-half of the
Security/Source Address Table menu and is shown in Figure 6-12.
This screen does not appear until you first enable

Secure:

source address table locked; intruder protection
enabled

option.

Figure 6-17 Intruder Protection Screen Section

The Intruder Protection option determines how the switch handles
transmissions from MAC addresses not found in the SAT. These
options are available when the switch is set to the “secure” mode.

The switch detects intruders by comparing incoming source MAC
addresses to entries in the SAT table. Intruders are transmissions
from addresses not found in the table. There are several possibilities
for configuring a port in relationship to intruders:

❑

Transmit SNMP trap message (port state unchanged)

❑

Disable the port (no SNMP trap)

❑

Transmit SNMP trap and disable the port

❑

No action (default)--(No trap; port state unchanged)

Transmit SNMP Trap Message (port status unchanged)

Use this configuration to send an SNMP trap message to the SNMP
manager when an intruder is detected. (See Configuring IP
Parameters on page 4-6. The IP parameters is a submenu of the
System Configuration menu.)

The message contains enough SNMP MIB information to help you
identify the port where the intrusion took place. Regardless of the
mode you select for Transmit SNMP Trap, SNMP statistics gathering
continues.