Click the Apply button to accept the changes made.
ND Snooping Entry
This window is used to view dynamic entries on specific ports.
To view this window, click Security > IP-MAC-Port Binding (IMPB) > ND Snooping > ND Snooping Entry as
shown below:
Figure 8-33 ND Snooping Entry window
The fields that can be configured are described below:
Parameter Description
Click the Find button to locate a specific entry based on the port number selected.
Click the Clear button to clear all the information entered in the fields.
Click the View All button to display all the existing entries.
MAC-based Access Control (MAC)
MAC-based access control is a method to authenticate and authorize access using either a port or host. For port-
based MAC-based access control, the method decides port access rights, while for host-based MAC-based access
control, the method determines the MAC access rights.
A MAC user must be authenticated before being granted access to a network. Both local authentication and remote
RADIUS server authentication methods are supported. In MAC-based access control, MAC user information in a
local database or a RADIUS server database is searched for authentication. Following the authentication result,
users achieve different levels of authorization.
There are certain limitations and regulations regarding MAC-based access control:
Notes about MAC-based Access Control
1. Once this feature is enabled for a port, the Switch will clear the FDB of that port.
2. If a port is granted clearance for a MAC address in a VLAN that is not a Guest VLAN, other MAC
addresses on that port must be authenticated for access and otherwise will be blocked by the Switch.
3. Ports that have been enabled for Link Aggregation and Port Security cannot be enabled for MAC-based
Authentication.
4. Ports that have been enabled for GVRP cannot be enabled for Guest VLAN.
To Next Page
Loading...
Need help?
General