Dell 6024 Switch User Manual


 
34 Introduction
www.dell.com | support.dell.com
Out-of-Band Management Port Support
An out-of-band management port is an external Ethernet port that carries only traffic between the
system-administrator and the management applications. The out-of-band management port
provides a physically secure link and also offers fault tolerance.
Security Features
Access Control Lists (ACL)
ACL provides rules for forwarding or blocking network traffic. You can define ACLs to enforce
security enhancements by defining classification rules and assigning an action per rule. You can
assign an ACL to an ingress interface (port or VLAN).
For information about defining ACLs, see "Defining IP based ACLs" and "Defining MAC based
ACLs."
Port Based Authentication (802.1x)
Port based authentication enables authenticating system users on a per port basis via an external
server. Only authenticated and approved system users can transmit and receive data. Ports are
authenticated via the Remote Authentication Dial In User Service (RADIUS) server using the
Extensible Authentication Protocol (EAP).
For more information, see "Configuring Port Based Authentication."
Locked Port Support
Locked port limits access on a port only to users with specific MAC addresses. These addresses are
manually defined or learned on that port. When a frame is seen on a locked port, and the frame
source MAC address is not tied to that port, the protection mechanism is invoked.
For information about enabling locked port security, see
"
Configuring Port Security."
Password Management Security
Password management provides increased network security and improved password control.
Passwords for SSH, Telnet, HTTP, HTTPS and SNMP access are assigned security features.
For more information about password management, see "Managing Passwords".
TACACS+
TACACS+ provides centralized security for validation of users accessing the switch. TACACS+
provides a centralized user management system, while still retaining consistency with RADIUS and
other authentication processes.
For information about defining TACACS+ settings, see "Configuring Out-of-Band TACACS+
Servers" and "Configuring TACACS+ Settings."