Security > Port Security
If you use the web browser interface to access the switch from an authorized IP manager station, it is recommended that you avoid using a web proxy server in the path between the station and the switch. This is because switch access through a web proxy server requires that you first add the web proxy server to the Authorized Manager IP list. This reduces security by opening switch access to anyone who uses the web proxy server. The following two options outline how to eliminate a web proxy server from the path between a station and the switch:
Even if you need proxy server access enabled in order to use other applications, you can eliminate proxy service for web access to the switch. To do so, add the IP address or DNS name of the switch to the non-proxy or Exceptions list in the web browser interface used on the authorized station.
If you don’t need proxy server access on the authorized station, disable the proxy server feature in the station’s web browser interface.
If you are using the switch’s web browser interface through a switch port configured for Static port security, and your browser access is through a proxy web server, then it is necessary to do the following:
Enter your PC or workstation MAC address in the port’s Authorized Addresses list.
Enter your PC or workstation ’s IP address in the switch’s IP Authorized Managers list.
Without both of the above configured, the switch detects only the proxy server’s MAC address, and not your PC or workstation MAC address, and interprets your connection as unauthorized.