beautypg.com

NETGEAR M4350-24F4V 24-Port 10G SFP+ Managed AV Network Switch User Manual

Page 742

background image

The first time that you log in, no password is required. However, you then must
specify a local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Security > Control > DHCP Snooping > Interface Configuration.

The Interface Configuration page displays.

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the

following links above the table heading:

1 or Unit ID for a stacked switch:

-

1: If no switch stack is configured, the physical interfaces for the switch are
displayed.

-

Unit ID for a stacked switch: If a switch stack is configured, the physical
interfaces for the switch with the selected stack unit ID are displayed.

LAG: Only LAGs are displayed.

All: Both physical interfaces and LAGs are displayed, or for a switch stack, both
physical interfaces on all switches in the stack and LAGs are displayed.

7. Select one or more interfaces by taking one of the following actions:

To configure a single interface, select the check box associated with the port, or
type the port number in the Go To Interface field and click the Go button.

To configure multiple interfaces with the same settings, select the check box
associated with each interface.

To configure all interfaces with the same settings, select the check box in the
heading row.

8. From the Trust Mode menu, select the trust mode:

Disabled: The interface is considered to be untrusted and could potentially be
used to launch a network attack. DHCP server messages are checked against the
bindings database. On untrusted ports, DHCP snooping enforces the following
security rules:

-

DHCP packets from a DHCP server are dropped.

-

DHCP messages are dropped if the MAC address is in the snooping database
but the binding’s interface is other than the interface where the message was
received.

-

DHCP packets are dropped if the source MAC address does not match the
client hardware address and if MAC address validation is globally enabled.

Enabled: The interface is considered to be trusted and forwards DHCP server
messages without validation.

9. From the Invalid Packets menu, select the packet logging mode.

Main User Manual

742

Manage Switch Security

Fully Managed Switches M4350 Series Main User Manual