Brocade Mobility RFS Controller System Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

396

Brocade Mobility RFS Controller System Reference Guide

53-1003099-01

8

FIGURE 9

Ethernet Ports - Security screen

12. Refer to the Access Control field. As part of the port’s security configuration, Inbound IP and

MAC address firewall rules are required.

Use the Inbound IP Firewall Rules and Inbound MAC Firewall Rules drop-down menus to select
the firewall rules to apply to this profile’s Ethernet port configuration.

The firewall inspects IP and MAC traffic flows and detects attacks typically not visible to
traditional wired firewall appliances.

13. If a firewall rule does not exist suiting the data protection needs of the target port

configuration, select the Create icon to define a new rule configuration.

14. Refer to the Trust field to define the following:

Trust ARP Responses

Select the check box to enable ARP trust on this port. ARP packets received on this port are
considered trusted and information from these packets is used to identify rogue devices within the
network. The default value is disabled.

Trust DHCP Responses

Select the check box to enable DHCP trust on this port. If enabled, only DHCP responses are trusted
and forwarded on this port, and a DHCP server can be connected only to a DHCP trusted port. The
default value is enabled.

ARP header Mismatch
Validation

Select this option to enable a mismatch check for the source MAC in both the ARP and Ethernet
header. The default value is disabled.

Trust 802.1p COS values

Select the check box to enable 802.1p COS values on this port. The default value is enabled.

Trust IP DSCP

Select the check box to enable IP DSCP values on this port. The default value is enabled.