摘要
为了解决实验室内部网络终端安全问题,结合实验室内部网络终端的应用特点、设备特性及安全需求,提出了以交换机端口为重点的终端安全管理策略。交换机在配置802.1x认证、MAC地址认证、端口安全、端口防攻击及ACL等核心安全业务后,再根据使用不同的需求微调部分参数,便可使终端设备既被保护,又被限制,从而解决了实验室内部网络终端安全问题,确保了试验数据正确、稳定的传输。
In order to solve the problem of internal network terminal security in laboratory, a terminal security management strategy with the emphasis on the switch port is given with the combination of the application characteristics of the internal network terminal in laboratory, device features and security requirements. After the switch is configured with the core security business such as 802. ix authentication, MAC address authentication, port security, port anti-attack and ACL and so on, partial parameters are tweaked according to different demands of using, and the terminal equipment is not only protected, but also limited. At the same time, the problem of internal network terminal security in laboratory is sloved and the correctness and the stability of testing data transmission is guaranteed.
出处
《现代电子技术》
2012年第17期86-88,共3页
Modern Electronics Technique
关键词
网络安全
接入认证
网络终端
交换机
network security
access authentications network terminals switch
