beautypg.com

Configuring mac authentication for ports, Figure 3-69, Network access configuration – LevelOne FGL-2870 User Manual

Page 172

background image

Configuring the Switch

3-118

3

Web – Click Security, Network Access, Configuration.

Figure 3-69 Network Access Configuration

CLI – This example sets and displays the reauthentication time.

Configuring MAC Authentication for Ports

Configures MAC authentication on switch ports, including setting the maximum MAC
count, applying a MAC address filter, and enabling dynamic VLAN or dynamic QoS
assignments.

Command Attributes
Mode – Enables MAC authentication on a port. (Default: None)
Maximum MAC Count – Sets the maximum number of MAC addresses that can

be authenticated on a port. The maximum number of MAC addresses per port is
2048, and the maximum number of secure MAC addresses supported for the
switch system is 1024. When the limit is reached, all new MAC addresses are
treated as authentication failed. (Default: 2048; Range: 1 to 2048)

MAC Filter ID – Allows a MAC Filter to be assigned to the port. MAC addresses or

MAC address ranges present in a selected MAC Filter are exempt from
authentication on the specified port (as described under "MAC Filter Configuration"
on page 3-122). (Range: 1-64; Default: None)

Guest VLAN – Specifies the VLAN to be assigned to the port when MAC

Authentication or 802.1X Authentication fails. (Default: Disabled; Range: 1 to 4092)
The VLAN must already be created and active (see "Creating VLANs" on page
3-212). Also, when used with 802.1X authentication, intrusion action must be set
for “Guest VLAN” (see "Configuring Port Settings for 802.1X" on page 3-101).

Console(config)#mac-authentication reauth-time 3000

4-164

Console(config)#exit
Console#show network-access interface ethernet 1/1

4-170

Global secure port information
Reauthentication Time : 1800
--------------------------------------------------
--------------------------------------------------
Port : 1/1
MAC Authentication : Disabled
MAC Authentication Intrusion action : Block traffic
MAC Authentication Maximum MAC Counts : 1024
Maximum MAC Counts : 2048
Dynamic VLAN Assignment : Enabled
Guest VLAN : Disabled
Console#

See also other documents in the category LevelOne Routers: