OpenNAC Enterprise Logo

Documentation:

  • 1. General
  • 2. Deployment and basic configuration
  • 3. Administration Portal
  • 4. Use Cases
  • 5. Platform Administration
  • 6. OpenNAC Agent
  • 7. Development
  • 8. Integration
  • 9. Reference Guide
    • 9.1. Tags Table
    • 9.2. Network Devices Compatibility and Configuration
      • 9.2.1. Network Device Compatibility Matrix
      • 9.2.2. Network Device Requirements
      • 9.2.3. Wired Supported Devices
        • 9.2.3.1. 3Com
        • 9.2.3.2. Alcatel
        • 9.2.3.3. AlliedTelesis
        • 9.2.3.4. Aruba
        • 9.2.3.5. Avaya
        • 9.2.3.6. Cisco
        • 9.2.3.7. Dell
        • 9.2.3.8. D-Link
        • 9.2.3.9. ExtremeNetworks
        • 9.2.3.10. Fortinet
        • 9.2.3.11. H3C
        • 9.2.3.12. HP
        • 9.2.3.13. Huawei
        • 9.2.3.14. Juniper
        • 9.2.3.15. Netgear
      • 9.2.4. Wireless Supported Devices
      • 9.2.5. Vpn Supported Devices
    • 9.3. Logs Description
    • 9.4. SIEM Logs
    • 9.5. Analytics Data Lake Description
    • 9.6. OpenNAC SNMP OIDs
    • 9.7. Glossary
    • 9.8. RFCs table
    • 9.9. Network Requirements for OpenNAC Deployment
    • 9.10. DHCP Fingerprint
    • 9.11. BlastRADIUS Mitigation Fix
  • 10. FAQ
  • 11. Elevate
OpenNAC Enterprise
  • 9. Reference Guide
  • 9.2. Network Devices Compatibility and Configuration
  • 9.2.3. Wired supported devices
  • 9.2.3.8. D-Link

9.2.3.8. D-Link

9.2.3.8.1. DGS3100 and DGS3200

Firmware: Generic

Administration Portal > ON CMDB > Network Devices Brand/Model: Generic/Generic

OpenNAC Enterprise supports D-Link switches without VoIP using two different trap types:

  • linkUp/linkDown

  • MAC Notification

We recommend to enable linkUp/linkDown and MAC notification together.

Important

Don’t forget to update the startup config!

Enable MAC notification:

enable mac_notification
config mac_notification interval 1 historysize 1
config mac_notification ports 1:1-1:24 enable

Enable linkup/linkdown notification:

enable snmp traps
enable snmp linkchange_traps

Add SNMP host:

create snmp host <opennac-ip> v2c  public

Enable MAC base access control: .. code:

enable mac_based_access_control
config mac_based_access_control authorization attributes radius enable local disable
config mac_based_access_control method radius
config mac_based_access_control password <Radius_Shared_Key>
config mac_based_access_control password_type manual_string
config mac_based_access_control max_users no_limit
config mac_based_access_control trap state enable
config mac_based_access_control log state enable

On each interface:

config mac_based_access_control ports 1:1 state enable
config mac_based_access_control ports 1:1 max_users 128
config mac_based_access_control ports 1:1 aging_time 1440
config mac_based_access_control ports 1:1 block_time 300
config mac_based_access_control ports 1:1 mode host_based
Previous Next

© Copyright 2011-2024 OpenNAC Enterprise Project www.opencloudfactory.com. All Rights Reserved.

Please send comments to the Technical Support Team.

Read the Legal Notice. This site is hosted by OpenCloud Factory.

OpenNAC v: 1.2.4
Versions
1.2.2
1.2.3
1.2.4
1.2.5
Downloads
PDF