Security enhancements – Brocade BigIron RX Series Configuration Guide User Manual
Page 74
lxxiv
BigIron RX Series Configuration Guide
53-1002484-04
Security enhancements
TABLE 26
Security enhancements
Enhancement
Description
See page
Multi-device Port
Authentication
Multi-device port authentication is now supported on
the BigIron RX.
Book: BigIron RX Series
Configuration Guide
Chapter:
Port Security Feature
and Transparent Port Floo
ding”
802.1x Port Security
This release allows you to enable 802.1X port
security and multi-device port authentication on the
same interface.
Book: BigIron RX Series
Configuration Guide
Chapter:
Port Security MAC Deny
With this release, you can configure deny mac
addresses on a global level or on a per port level.
Book: BigIron RX Series
Configuration Guide
Chapter:
Port Security Feature
and Transparent Port Floo
ding”
IP Fragmentation Protection
Fragmented IP packets with undersized fragments
and overlapping fragments are dropped.
Book: BigIron RX Series
Configuration Guide
Chapter:
Section:
IP Option Attack Prevention
Packets with IP options in their header are
automatically dropped. Enabling the ip
ip-option-process command allows the device to
process packets that use IP options.
Book: BigIron RX Series
Configuration Guide
Chapter:
Section:
IP Receive ACLs
You can use IPv4 ACLs to filter the packets intended
for the management processor to protect the
management module from being overloaded with
heavy traffic that was sent to one of the Layer 3
Switch IP interfaces.
Book: BigIron RX Series
Configuration Guide
Chapter:
Section:
destination mirror port for
IP receive ACLs”
Static Route Tagging
Static routes can be configured with tag values.
Book: BigIron RX Series
Configuration Guide
Chapter:
Section:
MTU enhancements for IPv4
In this release, you can configure IPv4 MTU to be
greater than 1500 bytes.
Book: BigIron RX Series
Configuration Guide
Chapter:
Section: