ZyXEL Communications GS3700 Series Guide de l'utilisateur Page 210
- Page / 416
- Table des matières
- MARQUE LIVRES
Noté. / 5. Basé sur avis des utilisateurs
Chapter 23 AAA
GS3700/XGS3700 Series User’s Guide
210
23.1.2 RADIUS and TACACS+
RADIUS and TACACS+ are security protocols used to authenticate users by means of an external
server instead of (or in addition to) an internal device user database that is limited to the memory
capacity of the device. In essence, RADIUS and TACACS+ authentication both allow you to validate
an unlimited number of users from a central location.
The following table describes some key differences between RADIUS and TACACS+.
23.2 AAA Screens
The AAA screens allow you to enable authentication, authorization, accounting or all of them on the
Switch. First, configure your authentication and accounting server settings (RADIUS, TACACS+ or
both) and then set up the authentication priority, activate authorization and configure accounting
settings.
Click Advanced Application > AAA in the navigation panel to display the screen as shown.
Figure 128 Advanced Application > AAA
23.2.1 RADIUS Server Setup
Use this screen to configure your RADIUS server settings. See Section 23.1.2 on page 210 for more
information on RADIUS servers and Section 23.3 on page 218 for RADIUS attributes utilized by the
Table 95 RADIUS vs TACACS+
RADIUS TACACS+
Transport Protocol UDP (User Datagram Protocol) TCP (Transmission Control Protocol)
Encryption Encrypts the password sent for
authentication.
All communication between the client (the
Switch) and the TACACS server is encrypted.
- GS3700/XGS3700 Series 1
- User’s Guide 1
- IMPORTANT! 2
- READ CAREFULLY BEFORE USE 2
- Related Documentation 2
- Contents Overview 3
- Chapter 22 10
- Chapter 23 10
- Table of Contents 11
- Table of Contents 12
- CHAPTER 1 21
- 1.1.5 IPv6 Support 24
- CHAPTER 2 27
- 2.3.1 Precautions 28
- CHAPTER 3 31
- 3.1.1 Ethernet Ports 32
- 3.1.2 SFP/SFP+ Slots 33
- 3.1.3 Management Port 34
- 3.1.4 Console Port 34
- 3.2 Rear Panel 35
- 3.3 LEDs 36
- Chapter 3 Hardware Overview 37
- Table 3 LEDs (continued) 37
- LED COLOR STATUS DESCRIPTION 37
- Chapter 3 Hardware Overview 38
- CHAPTER 4 39
- LINK DESCRIPTION 43
- 4.5 Switch Lockout 45
- 4.6 Resetting the Switch 46
- 4.8 Help 47
- Technical Reference 49
- CHAPTER 5 51
- Table 6 Status 52
- CHAPTER 6 56
- Chapter 6 Basic Setting 57
- 6.2 General Setup 58
- 6.3 Introduction to VLANs 59
- 6.4 Switch Setup 60
- 6.5 IP Setup 62
- 6.6 Port Setup 64
- 6.7 PoE 66
- 6.7.1 PoE Setup 68
- 6.8 Interface Setup 70
- 6.9 IPv6 71
- 6.9.1 IPv6 Interface Status 73
- Chapter 6 Basic Setting 74
- 6.9.2 IPv6 Configuration 75
- 6.9.3 IPv6 Global Setup 76
- 6.9.4 IPv6 Interface Setup 77
- 6.9.9 IPv6 Prefix Setup 82
- 6.9.10 IPv6 Neighbor Setup 84
- 6.9.11 DHCPv6 Client Setup 85
- CHAPTER 7 87
- 7.2.1 GARP 88
- 7.2.2 GVRP 88
- 7.3 Port VLAN Trunking 89
- 7.4 Select the VLAN Type 89
- 7.5 802.1Q Static VLAN 89
- 7.5.1 VLAN Status 90
- 7.5.2 VLAN Details 91
- 7.5.5 Subnet Based VLANs 95
- 7.5.6 Protocol Based VLANs 97
- Chapter 7 VLAN 102
- Chapter 7 VLAN 103
- LABEL DESCRIPTION 104
- CHAPTER 8 105
- CHAPTER 9 107
- CHAPTER 10 110
- Chapter 10 Filtering 111
- CHAPTER 11 112
- 11.1.2 How STP Works 113
- 11.1.3 STP Port States 113
- 11.1.4 Multiple RSTP 113
- 11.1.5 Multiple STP 114
- 11.1.5.3 MST Instance 116
- CHAPTER 12 130
- 12.2 Bandwidth Control Setup 131
- Chapter 12 Bandwidth Control 132
- CHAPTER 13 133
- CHAPTER 14 135
- Single-Destination RMirror 136
- Multi-Destination RMirror 136
- Port Rules in Port Mirroring 137
- 14.1.1 Local Port Mirroring 138
- 14.1.2 Remote Port Mirroring 139
- 14.1.3 Source 139
- 14.1.4 Destination 141
- 14.1.5 Connected Port 142
- CHAPTER 15 144
- 15.2.1 Link Aggregation ID 145
- Chapter 15 Link Aggregation 146
- Aggregation 149
- Control 149
- Protocol 149
- 15.6 Static Trunking Example 150
- CHAPTER 16 152
- 16.1.2 MAC Authentication 153
- 16.2.2 Guest VLAN 156
- Internet 156
- CHAPTER 17 160
- 17.3 VLAN MAC Address Limit 162
- CHAPTER 18 163
- 18.4 Classifier Example 168
- CHAPTER 19 169
- Chapter 19 Policy Rule 171
- 19.4 Policy Example 173
- CHAPTER 20 174
- 20.2 Configuring Queuing 175
- CHAPTER 21 177
- Access Port 178
- 21.3 VLAN Tag Format 179
- 21.4.1 Port-based Q-in-Q 181
- 21.4.2 Selective Q-in-Q 182
- Chapter 21 VLAN Stacking 183
- CHAPTER 22 184
- 22.1.3 IGMP Snooping 185
- 22.1.5 MLD Snooping-Proxy 185
- 22.2 Multicast Setup 186
- 22.3 IPv4 Multicast Status 187
- 22.3.1 IGMP Snooping 188
- Chapter 22 Multicast 190
- 22.3.2 IGMP Snooping VLAN 191
- 22.4 IPv6 Multicast Status 193
- 22.4.1 MLD Snooping-proxy 194
- 22.5 MVR Overview 201
- 22.5.3 How MVR Works 202
- News: 224.1.4.10 ~ 224.1.4.50 206
- Movie: 230.1.2.50 ~230.1.2.60 206
- CHAPTER 23 209
- 23.2 AAA Screens 210
- Chapter 23 AAA 212
- 23.2.3 AAA Setup 215
- Chapter 23 AAA 221
- CHAPTER 24 222
- 24.1.2.3 Syslog 225
- 24.2 IP Source Guard 226
- Chapter 24 IP Source Guard 228
- 24.4 DHCP Snooping 229
- 24.5 DHCP Snooping Configure 231
- 24.6 ARP Inspection Status 236
- Chapter 24 IP Source Guard 243
- CHAPTER 25 244
- 25.2 Loop Guard Setup 246
- Chapter 25 Loop Guard 247
- CHAPTER 26 248
- 26.2 Enabling VLAN Mapping 249
- Chapter 26 VLAN Mapping 251
- CHAPTER 27 252
- CHAPTER 28 256
- Chapter 28 sFlow 259
- CHAPTER 29 260
- 29.1.3 Port State 261
- 29.2 The PPPoE Screen 262
- 29.3.1 PPPoE IA Per-Port 264
- Chapter 29 PPPoE 265
- 29.3.3 PPPoE IA for VLAN 267
- CHAPTER 30 268
- Detect screen 269
- Chapter 30 Error Disable 272
- CHAPTER 31 273
- CHAPTER 32 275
- 32.1.1 Configuration 277
- CHAPTER 33 279
- CHAPTER 34 281
- Chapter 34 Static Route 283
- CHAPTER 35 286
- Chapter 35 Policy Routing 289
- CHAPTER 36 290
- 36.3 Activating DiffServ 292
- 36.3.2 DSCP Profile 295
- CHAPTER 37 298
- 37.3 DHCPv4 Status 299
- 37.4 DHCPv4 Relay 300
- 37.4.1.2 Sub-Option Format 301
- 192.168.1.100 310
- 172.16.10.100 310
- 37.6 DHCPv6 Relay 311
- Chapter 37 DHCP 312
- CHAPTER 38 313
- 38.2 VRRP Status 314
- 38.3 VRRP Configuration 314
- 38.3.2 VRRP Parameters 316
- 38.3.4 Viewing VRRP Summary 318
- 172.16.1.100 319
- 172.16.1.1 319
- 172.16.1.10 319
- 38.4.2 Two Subnets Example 320
- CHAPTER 39 322
- Chapter 39 Load Sharing 323
- CHAPTER 40 324
- 40.1.2.2 Gratuitous-ARP 325
- 40.1.2.3 ARP-Request 325
- 40.2 ARP Setup 326
- 40.2.1 ARP Learning 327
- 40.2.2 Static ARP 328
- Chapter 40 ARP Setup 329
- Chapter 40 ARP Setup 330
- CHAPTER 41 331
- 41.2 Load Factory Default 332
- 41.3 Save Configuration 332
- 41.4 Reboot System 332
- 41.5 Firmware Upgrade 333
- 41.8 FTP Command Line 335
- 41.8.3 GUI-based FTP Clients 336
- 41.8.4 FTP Restrictions 336
- CHAPTER 42 337
- 42.3.1 SNMP v3 and Security 338
- 42.3.2 Supported MIBs 339
- 42.3.3 SNMP Traps 339
- 42.3.4 Configuring SNMP 343
- 42.5 SSH Overview 349
- 42.6 How SSH works 350
- 42.8 Introduction to HTTPS 351
- 42.9 HTTPS Example 352
- Chapter 42 Access Control 354
- 42.9.3 The Main Screen 356
- CHAPTER 43 360
- Chapter 43 Diagnostic 361
- CHAPTER 44 362
- 44.2 Syslog Setup 363
- 44.3 Syslog Server Setup 364
- CHAPTER 45 365
- Chapter 45 Cluster Management 370
- CHAPTER 46 371
- 46.2 Viewing the MAC Table 372
- Chapter 46 MAC Table 373
- CHAPTER 47 374
- 47.2 Viewing the IP Table 375
- CHAPTER 48 376
- 48.2 The ARP Table Screen 377
- CHAPTER 49 378
- CHAPTER 50 379
- CHAPTER 51 380
- Chapter 51 Configure Clone 381
- CHAPTER 52 382
- Chapter 52 Neighbor Table 383
- Chapter 52 Neighbor Table 384
- CHAPTER 53 385
- 53.2 Switch Access and Login 386
- 53.3 Switch Configuration 388
- APPENDIX A 389
- Appendix A Common Services 390
- Appendix A Common Services 391
- APPENDIX B 393
- Global Address 394
- Unspecified Address 394
- Loopback Address 394
- Multicast Address 394
- Subnet Masking 395
- Interface ID 395
- Stateless Autoconfiguration 395
- Identity Association 396
- DHCP Relay Agent 396
- Prefix Delegation 397
- IPv6 Cache 397
- Multicast Listener Discovery 398
- MLD Messages 398
- Appendix B IPv6 402
- APPENDIX C 403
- ZyXEL Limited Warranty 404
- Open Source Licenses 404
- Safety Warnings 404
- Appendix C Legal Information 405
- Appendix C Legal Information 406
© 2020, manymanuals.fr. Tous droits réservés | 0.156 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Commentaires sur ces manuels