[Search for users]
[Overall Top Noters]
[List of all Conferences]
[Download this site]
| Title: | DEChub/HUBwatch/PROBEwatch CONFERENCE |
| Notice: | Firmware -2, Doc -3, Power -4, HW kits -5, firm load -6&7 |
| Moderator: | NETCAD::COLELLA�DT |
|
| Created: | Wed Nov 13 1991 |
| Last Modified: | Fri Jun 06 1997 |
| Last Successful Update: | Fri Jun 06 1997 |
| Number of topics: | 4455 |
| Total number of notes: | 16761 |
Hello all,
I got a question from one of our customer and see whether someone
knows the answer :
Can we use HUBwatch to configure one of the Ethernet port in
DECswithch900EF to access only ONE dedicate server by address, ie, all
the users on this port can only be able to access info on one particular
server, not ANY OTHERS else.
I know we can set up the filter by address on a particular port by
granting permission (green arrow) or denying (red arrow) in HUBwatch.
However, it is for ONE address only. If we have, let's say, 4 servers
on the LAN totally, does it mean we need to set up the filters for each
server individually ie, set up 4 filters for this particular port ?
I know setting up an virtual LAN can solve this prolem , but as far as
I know we can't set up v-lan by using HUBwatch. Am I right ?
Appreciate if someone give me the answer.
Merry X'mas
Anthony
| T.R | Title | User | Personal
Name | Date | Lines |
|---|
| 3071.1 | VLAN can be done. | CGOS01::DMARLOWE | Have you been HUBbed lately? | Fri Dec 15 1995 14:38 | 10 |
| How about a diagram as to where the users are and the servers are? If
the servers are on the same LAN as the users then there's not too much
that can be done. You have to be careful where you place the servers
and users in order to set the filters.
HUBWATCH does the VLAN creation so you could connect a server and
specific users on the same VLAN (ie. 900TP's) and then set filters in
place on the 900EF to keep them from getting to other servers.
dave
|
| 3071.2 | Manual filter mode for specific ports allowable I believe | NETCAD::BATTERSBY | | Fri Dec 15 1995 15:44 | 6 |
| The DECswitch 900EF does have a "manual filter mode" that can be
selected. This clears the forwarding table for that port, and then
manual entries for specific addresses can be entered for that port,
thus excluding everything except the desired server's address.
Bob
|
| 3071.3 | | SLINK::HOOD | My God, what have I done to my spleen? | Fri Dec 15 1995 21:42 | 8 |
| Expanding on what Bob said...
in the address filters window, set the Manual Mode (bottom set of arrows)
button for the port to be filtered (red blocked arrow). This means that
everything will be blocked except the MACs you explicitly specify in an
address filter.
Then create a new address filter entry with the workstation's address.
Make sure the arrow is green (forwarding) for that port.
|