HP A 5120 Manual
Have a look at the manual HP A 5120 Manual online for free. It’s possible to download the document as PDF or print. UserManuals.tech offer 1114 HP manuals and user’s guides for free. Share the user manual or guide on Facebook, Twitter or Google+.
![Page 297
287
[SwitchA-Vlan-interface10] quit
2. Configuring Switch B
# Enable IPv6 forwarding.
system-view
[SwitchB] ipv6
# Create VLAN 10.
[SwitchB] vlan 10
[SwitchB-vlan10] quit
# Assign ports GigabitEthernet 1/0/1 to GigabitEthernet 1/0/3 to VLAN 10.
[SwitchB] interface GigabitEthernet 1/0/1
[SwitchB-GigabitEthernet1/0/1] port link-type trunk
[SwitchB-GigabitEthernet1/0/1] port trunk permit vlan 10
[SwitchB-GigabitEthernet1/0/1] quit
[SwitchB] interface GigabitEthernet 1/0/2...](http://img.usermanuals.tech/thumb/36/96159/w64_a-5120-manual-1505837221_d-296.png "Page 297
287
[SwitchA-Vlan-interface10] quit
2. Configuring Switch B
# Enable IPv6 forwarding.
system-view
[SwitchB] ipv6
# Create VLAN 10.
[SwitchB] vlan 10
[SwitchB-vlan10] quit
# Assign ports GigabitEthernet 1/0/1 to GigabitEthernet 1/0/3 to VLAN 10.
[SwitchB] interface GigabitEthernet 1/0/1
[SwitchB-GigabitEthernet1/0/1] port link-type trunk
[SwitchB-GigabitEthernet1/0/1] port trunk permit vlan 10
[SwitchB-GigabitEthernet1/0/1] quit
[SwitchB] interface GigabitEthernet 1/0/2...")
![Page 299
289
Conventions
This section describes the conventions used in this documentation set.
Command conventions
Convention Description
Boldface Bold text represents commands and keywords that you enter literally as shown.
Italic Italic text represents arguments that you replace with actual values.
[ ] Square brackets enclose syntax choices (keywords or arguments) that are optional.
{ x | y | ... } Braces enclose a set of required syntax choices separated by vertical bars, from which
you select one....](http://img.usermanuals.tech/thumb/36/96159/w64_a-5120-manual-1505837221_d-298.png "Page 299
289
Conventions
This section describes the conventions used in this documentation set.
Command conventions
Convention Description
Boldface Bold text represents commands and keywords that you enter literally as shown.
Italic Italic text represents arguments that you replace with actual values.
[ ] Square brackets enclose syntax choices (keywords or arguments) that are optional.
{ x | y | ... } Braces enclose a set of required syntax choices separated by vertical bars, from which
you select one....")
291 Index A B C D E F G H I K L M N P R S T U V W A A comparison of EAP relay and EAP termination,67 AAA for 802.1X users by a RADIUS server,50 AAA for Telnet users by an HWTACACS server,44 AAA for Telnet users by separate servers,45 Access control methods,71 Access device as the initiator,66 ACL assignment,97 ACL assignment configuration example,105 Adding a web proxy server port number,120 ARP detection configuration example I,273 ARP detection configuration example II,275 ARP filtering configuration example,281 ARP gateway protection configuration example,280 ARP restricted forwarding configuration example,276 Asymmetric key algorithm applications,179 Authentication approaches,96 Authentication/Authorization for SSH/Telnet users by a RADIUS server,47 B Basic concepts,179 C Cannot change port security mode when a user is online,160 Cannot configure secure MAC addresses,160 Cannot set the port security mode,159 Configuration prerequisites,231 Configuration prerequisites,100 Configuration prerequisites,98 Configuration prerequisites,245 Configuration prerequisites,242 Configuration prerequisites,74 Configuration prerequisites,91 Configuration prerequisites,148 Configuration prerequisites,145 Configuration prerequisites,144 Configuration prerequisites,36 Configuration prerequisites,161 Configuration procedure,270 Configuration procedure,91 Configuration procedure,148 Configuration procedure,245 Configuration procedure,281 Configuration procedure,279 Configuration procedure,278 Configuration procedure,243 Configuration procedure,144 Configuration procedure,98 Configuration procedure,145 Configuration procedure,269 Configuration procedure,100 Configuration procedure,177 Configuration procedure,268 Configuring a certificate attribute-based access control policy,204 Configuring a client public key,212 Configuring a peer public key manually,182 Configuring a portal-free rule,119 Configuring a RADIUS user,42 Configuring a static IPv4 source guard binding entry,252 Configuring a static IPv6 source guard binding entry,253 Configuring AAA accounting methods for an ISP domain,40 Configuring AAA authentication methods for an ISP domain,37 Configuring AAA authorization methods for an ISP domain,39 Configuring an 802.1X guest VLAN,82 Configuring an Auth-Fail VLAN,83 Configuring an HABP client,175 Configuring an SSH user,213 Configuring ARP detection based on specified objects,272 Configuring ARP packet rate limit,267
292 Configuring ARP restricted forwarding,273 Configuring ARP source suppression,266 Configuring HWTACACS schemes,30 Configuring intrusion protection,147 Configuring ISP domain attributes,36 Configuring Layer 2 portal authentication,124 Configuring local users,16 Configuring ND detection,285 Configuring NTK,146 Configuring port security traps,147 Configuring RADIUS schemes,20 Configuring the authentication trigger function,79 Configuring the autoLearn mode,150 Configuring the dynamic IPv4 source guard binding function,252 Configuring the dynamic IPv6 source guard binding function,254 Configuring the HABP server,175 Configuring the local portal server,117 Configuring the macAddressElseUserLoginSecure mode,156 Configuring the online user handshake function,78 Configuring the SFTP connection idle timeout period,231 Configuring the user interfaces for SSH clients,212 Configuring the userLoginWithOUI mode,152 Configuring whether first-time authentication is supported,216 Creating a user profile,161 Creating an asymmetric key pair,180 Creating an ISP domain,36 Customizing authentication pages,114 D Destroying an asymmetric key pair,181 Displaying and maintaining ARP defense against IP packet attacks,267 Displaying and maintaining ARP detection,273 Displaying and maintaining ND detection,285 Displaying and maintaining source MAC address based ARP attack detection,269 Displaying help information,234 Displaying or exporting the local RSA or DSA host public key,180 Domain-based user management,9 Dynamic IPv4 source guard binding by DHCP relay configuration example,260 Dynamic IPv4 source guard binding by DHCP snooping configuration example,259 Dynamic IPv6 source guard binding by DHCPv6 snooping configuration example,262 Dynamic IPv6 source guard binding by ND snooping configuration example,263 E EAD fast deployment implementation,91 EAP over RADIUS,66 EAP relay,68 EAP termination,69 Enabling 802.1X,75 Enabling ARP black hole routing,267 Enabling ARP detection based on static IP source guard binding Entries/DHCP snooping entries/802.1X security entries/OUI MAC addresses,271 Enabling password control,167 Enabling support for portal user moving,121 Enabling the periodic online user re-authentication function,81 Enabling the quiet timer,81 Enabling the SFTP server,231 Enabling the SSH server function,211 Establishing a connection between the SSH client and server,217 Establishing a connection to the SFTP server,232 Extended portal functions,108 F Failed to request a local certificate,206 Failed to retrieve a CA certificate,206 Failed to retrieve CRLs,207 G Generating a DSA or RSA key pair,211 Global static binding excluded port configuration example,257 Guest VLAN,97 H How does PKI work,189 How does SSH work,208 HWTACACS,7
293 I Importing a peer public key from a public key file,184 Inconsistent keys on the access device and the portal server,128 Incorrect server port number on the access device,128 Introduction,278 Introduction,270 Introduction,268 Introduction,269 Introduction,270 Introduction,280 Introduction,266 Introduction,267 Introduction,279 Introduction to IP source guard,249 Introduction to ND detection,284 Introduction to portal,108 Introduction to SSH2.0,208 IP source guard binding,249 K Key algorithm types,179 L Layer 2 portal authentication process,111 Level switching authentication for Telnet users by an HWTACACS server,56 Local MAC authentication configuration example,101 M MAC authentication timers,97 N Neither static binding entries nor the dynamic binding function can be configured,264 Network requirements,176 P Packet format,64 PKI applications,188 PKI architecture,188 PKI terms,187 Port security features,140 Port security modes,140 Portal authentication modes,111 Portal system components,108 Portal system using the local portal server,110 Protocols and standards,11 R RADIUS,2 RADIUS attributes,11 RADIUS authentication and authorization for Telnet users by a network device,59 RADIUS server feature of the device,10 RADIUS server functions configuration task list,42 RADIUS-based MAC authentication configuration example,103 Requesting a certificate from a CA running RSA Keon,198 Requesting a certificate from a CA running Windows 2003 Server,201 S Setting a local user password in interactive mode,170 Setting global password control parameters,167 Setting local user password control parameters,169 Setting super password control parameters,170 Setting the 802.1X authentication timeout timers,78 Setting the maximum number of authentication request attempts,78 Setting the maximum number of concurrent 802.1X users on a port,77 Setting the maximum number of online portal users,119 Setting the port authorization state,76 Setting the SSH management parameters,214 Setting user group password control parameters,168 Specifying a mandatory authentication domain on a port,80 Specifying a RADIUS client,43 Specifying a source IP address or interface for the SFTP client,232 Specifying a source IP address/interface for the SSH client,215 Specifying an access control method,77 Specifying an authentication domain for portal users,120 Specifying EAP relay or EAP termination,75 Specifying the local portal server for Layer 2 portal authentication,114 SSH client configuration task list,215 SSH server configuration task list,210 SSL handshake failure,246
294 SSL protocol stack,242 SSL security mechanism,241 SSL server policy configuration example,243 Static IPv4 source guard binding entry configuration example,256 Static IPv6 source guard binding entry configuration example,261 Submitting a certificate request in auto mode,193 Submitting a certificate request in manual mode,193 Support for guest VLAN and Auth-Fail VLAN,143 T Terminating the connection to the remote SFTP server,234 Triple authentication basic function configuration example,132 Triple authentication mechanism,130 Triple authentication supporting VLAN assignment and Auth-Fail VLAN configuration example,135 Troubleshooting HWTACACS,62 Troubleshooting RADIUS,61 U User account policies,96 Using 802.1X authentication with other features,71 Using triple authentication with other features,131 V VLAN assignment,97 W Web browser users cannot be correctly redirected,95 When switch acts as client for password authentication,225 When switch acts as client for publickey authentication,228 When switch acts as server for password authentication,218 When switch acts as server for publickey authentication,220 Working with SFTP directories,233 Working with SFTP files,233