Network security, Port security – Dell PowerEdge VRTX User Manual

203

FILE LOCATION: C:\Users\gina\Desktop\Checkout_new\Dell Plasma\User

Guide\Plasma_UGSwitching_NetworkSecurity.fm

D E L L CO N F I D E N T I A L – P R E L I MI N A RY 4/ 1 8 /1 3 - F O R PR O O F O N LY

7

Network Security

This section describes the various mechanisms for providing security on the

switch.
It contains the following topics:

• Port Security
• ACLs
• ACL Binding
• Proprietary Protocol Filtering
• Absolute Time Range
• Time Range Recurrence
• Dot1x Authentication

Port Security

Network security can be enhanced by limiting access on a port to users with

specific MAC addresses. The MAC addresses can be dynamically learned, or

they can be statically configured.
Port security has the following modes:

• Classic Lock — Locked port security monitors both received and learned

packets that are received on specific ports. Access to the locked port is

limited to users with specific MAC addresses. These addresses are either

manually defined on the port, or learned on that port before it was locked.

• Limited Dynamic Lock — When a packet is received on a locked port,

and the packet’s source MAC address is not tied to that port (either it was

learned on a different port, or it is unknown to the system), a protection

mechanism, which provides various options is invoked. Unauthorized

packets arriving to a locked port are either:
–

Forwarded