Unsolved
This post is more than 5 years old
4 Posts
0
7599
April 16th, 2008 07:00
missing features
Hi,
We have 10 6248 switch with newest firmware
1st
I want to configure some additional Layer 2 Security enhancement so other people on the network are not able to use chain & abel or wireshark! for example Dynamic ARP Inspection (see cisco for implementation details) but dell doesn't offer this feature or? how can i accomplish this?
2nd
for my dmz network I want that my servers cannot communicate with each other only with the firewall...
cisco offers a feature named "switchport protected"
protected ports cannot communicate with each other but with unprotected ports...
vlan is not an option because I'll need too much addresses and interfaces on the firewall
3rd
We want to use 802.1X for our Client ports but we have different vlans for production, office, construction,... so I need support for dynamic vlan assignment over radius (RFC2868)
on cisco devices I can use dynamic vlan assignment via radius
but dell doesn't support this
general question: will the switch software support NAP, NAC
4th
for some network ports we want that they get always a special ip configuration over dhcp no matter what device is connected to that port
agian you know it allready on cisco, hp devices i can use the support for DHCP Option 82
it includes switch id in a dhcp request packet sent by the client....
thx
marko
0 events found
barbos
1 Message
0
April 23rd, 2008 16:00
I am pretty sure at least 2 are supported:
2nd:
switchport protected
Use the switchport protected command in Interface Configuration mode to configure a protected
port. The groupid parameter identifies the set of protected ports to which this interface is assigned.
You can only configure an interface as protected in one group. Port protection occurs within a
single switch. Protected port configuration does not affect traffic between ports on two different
switches. No traffic forwarding is possible between two protected ports.
4th:
bootpdhcprelay cidridoptmode
Use the bootpdhcprelay cidridoptmode command in Global Configuration mode to enable the
circuit ID option and remote agent ID mode for BootP/DHCP Relay on the system. Use the no
form of the command to disable the circuit ID option and remote agent ID mode for BootP/DHCP
Relay.
markomi
4 Posts
0
June 9th, 2008 12:00
you are right I overlooked them in the manual!
3rd is supported to with the newest firmware release May 2008!!
1st is still a missing feature I think! :-)
kind regards
marko
zelmarko
1 Message
0
July 2nd, 2008 19:00