Filter
Top Products
5 Configuration D-Link Web Smart Switch User Manual
Disabled –Di
sable Smart Binding.
Packet Inspection: Specifies ARP Inspection or IP+ARP Inspection for the IP packets. If ARP inspection is
selected, the Switch will inspect incoming ARP packets and compare them with the Switch’s Smart Binding
white list entries. If the IP-MAC pair of an ARP packet is not found in the white list, the Switch will block the
MAC address. A major benefit of Loose state is that it uses less CPU resources. However, it cannot block
malicious users who send only unicast IP packets. An example of this is that a malicious user can perform
DoS attacks by statically configuring the ARP table on their PC. In this case, the Switch cannot block such
attacks because the PC will not send out ARP packets. If ARP+ IP Inspection mode is selected, the Switch
will inspect all incoming ARP and IP packets and compare them to the IMPB white list. If the IP-MAC pair
find a match in the white list, the packets from that MAC address are unblocked. If not, the MAC address will
stay blocked. While the mode examines every ingress ARP and IP packet, it enforces better security.
DHCP Snooping: By enable DHCP Snooping, the switch will snoop the packets sent from DHCP Server and
clients, and update information to the White List.
Click Apply to make configurations make effects.
Security > Smart Binding > Smart Binding
The Smart Binding Settings page allows users to set IP-MAC-Port Binding entries by manually entering
required information, or by scanning all connected devices and clicking to bind.
Figure 5.75 – Security > Smart Binding > Smart Binding
The Manual Binding Settings contains the following fields:
IP Address: Specifies the IP address to bind to the MAC address set below.
MAC Address: Specifies the MAC address to bind to the IP address set above.
Port: Specify the switch ports for which to configure this IP-MAC binding entry (IP Address + MAC Address).
Click Add to add a new entry.
Auto Scan: The Auto Scan Setting can list connected devices and easily select to bind. It contains the
following fields:
IP Address From/To: Specifies the range of IP Address to find desired devices, or leaves the fields blank to
see all connected devices.
Click Scan and the search results will be listed in below table.
Binding: check the box to select desired binding devices.
Apply: click Apply to set IP-MAC-Port Binding entries.”
Select All: to check the boxes of Binding for all found devices.
Clear All: to cancel the box of Binding
Security > Smart Binding > White List
When IP +ARP Inspection Mode is selected, the White List page displays finished IP-MAC-Port Binding
entries from page Smart Binding. Only IP packets or ARP packets carrying matched IP-MAC-Port
information can access to the switch. You can cancel a device’s authorization by deleting it from the table.
58