beautypg.com

Network-access guest-vlan, Network-access link-detection – LevelOne GTL-2691 User Manual

Page 932

background image

C

HAPTER

29

| General Security Measures

Network Access (MAC Address Authentication)

– 932 –

network-access

guest-vlan

Use this command to assign all traffic on a port to a guest VLAN when

802.1x authentication is rejected. Use the no form of this command to

disable guest VLAN assignment.

S

YNTAX

network-access guest-vlan vlan-id
no network-access guest-vlan

vlan-id - VLAN ID (Range: 1-4093)

D

EFAULT

S

ETTING

Disabled

C

OMMAND

M

ODE

Interface Configuration

C

OMMAND

U

SAGE

The VLAN to be used as the guest VLAN must be defined and set as

active (See the

vlan database

command).

When used with 802.1X authentication, the intrusion-action must be

set for “guest-vlan” to be effective (see the

dot1x intrusion-action

command).

E

XAMPLE

Console(config)#interface ethernet 1/1

Console(config-if)#network-access guest-vlan 25

Console(config-if)#

network-access

link-detection

Use this command to enable link detection for the selected port. Use the

no form of this command to restore the default.

S

YNTAX

[no] network-access link-detection

D

EFAULT

S

ETTING

Disabled

C

OMMAND

M

ODE

Interface Configuration

E

XAMPLE

Console(config)#interface ethernet 1/1

Console(config-if)#network-access link-detection

Console(config-if)#

See also other documents in the category LevelOne Routers: