beautypg.com

Brocade FastIron Ethernet Switch Security Configuration Guide User Manual

Page 279

background image

Output from the show auth-mac-addresses detailed command (Continued)

TABLE 33

Field

Description

Accepted Mac Addresses

The number of MAC addresses that have been successfully authenticated.

Rejected Mac Addresses

The number of MAC addresses for which authentication has failed.

Authentication in progress

The number of MAC addresses for which authentication is pending.

This is the number of MAC addresses for which an Access-Request message has
been sent to the RADIUS server, and for which the RADIUS server has not yet
sent an Access-Accept message.

Authentication attempts

The total number of authentication attempts made for MAC addresses on an
interface, including pending authentication attempts.

RADIUS timeouts

The number of times the session between the Brocade device and the RADIUS
server timed out.

RADIUS timeout action

Action to be taken by the RADIUS server if it times out.

MAC address on the PVID

Number of MAC addresses on the PVID.

MAC address authorized on
PVID

Number of authorized MAC addresses on the PVID.

Aging of MAC-sessions

Whether software aging of MAC addresses is enabled.

Port move-back VLAN

Indicates the destination VLAN when a RADIUS assigned VLAN is removed. By
default, it would return the configured VLAN.

Max-Age of sw MAC-
sessions

The configured software aging period for MAC addresses.

hw age for denied MAC

The hardware aging period for blocked MAC addresses. The MAC addresses are
dropped in hardware ones the aging period expires.

MAC Filter applied

Indicates whether a MAC address filter has been applied to this port to specify pre-
authenticated MAC addresses.

Dynamic ACL applied

Indicates whether a dynamic ACL was applied to this port.

num Dynamic Tagged Vlan

The number of dynamically tagged VLANs on this port.

Dynamic Tagged Vlan list

The list of dynamically tagged VLANs on this port. In this example, 1025 (1/1)
indicates that there was one MAC session and one learned MAC address for
VLAN 1025. Likewise, 4060 (1/0) indicates that there was one MAC session and
no learned MAC addresses for VLAN 4060.

MAC Address

The MAC addresses learned on the port. If the packet for which multi-device port
authentication was performed also contained an IP address, then the IP address is
displayed as well.

Multi-Device Port Authentication

FastIron Ethernet Switch Security Configuration Guide

279

53-1003088-03

See also other documents in the category Brocade Computer Accessories: