beautypg.com

Brocade Multi-Service IronWare Security Configuration Guide (Supporting R05.6.00) User Manual

Page 298

background image

280

Multi-Service IronWare Security Configuration Guide

53-1003035-02

Displaying multi-device port authentication information

6

Displaying multi-device port authentication configuration information

To display a summary of multi-device port authentication that have been configured on the device,
enter the following command.

The following table describes the information displayed by the show authenticated-mac-address
configuration command.

TABLE 39

Output from the show auth-mac-address configuration command

This field...

Displays...

Feature enabled

Whether the multi-device port authentication feature is enabled on the device.

Number of Ports enabled

The number of ports on which the multi-device port authentication feature is
enabled.

Aging

Shows which MAC addresses are aged out.
Denied – Only denied MAC addresses are aged out
Permitted – Only permitted MAC addresses are aged out
All – Both denied and permitted MAC addresses are aged out
None – None of the MAC addresses are aged out

Port

Information for each multi-device port authentication-enabled port.

Fail-Action

What happens to traffic from a MAC address for which RADIUS authentication
has failed: either block the traffic or assign the MAC address to a restricted
VLAN.

Fail VLAN

The restricted VLAN to which non-authenticated MAC addresses are assigned,
if the Fail-Action is to assign the MAC address to a restricted VLAN.

DynVLAN Support

Whether RADIUS dynamic VLAN assignment is enabled for the port.

Override Restricted

Whether or not a port in a restricted VLAN (due to a failed authentication) is
removed from the restricted VLAN on a subsequent successful authentication
on the port.

Revert VLAN

The VLAN that the port reverts to when the RADIUS-assigned dynamic VLAN
expires.

Brocade# show auth-mac configuration

Feature enabled : Yes

Global Fail-VLAN Id : None

Username/Password format : xxxx.xxxx.xxxx

Maximum Age : 120

Save dynamic VLAN configuration : No

Number of Ports enabled : 25

---------------------------------------------------------------------------------

Port Aging Fail Fail DynVLAN Override Revert MAC DoS Protectn

Action VLAN Support Restricted VLAN Filter Enable Limit

----------------------------------------------------------------------------------

1/1 All Blocked N/A Yes Yes Configured No No 512

1/2 Permitted Blocked 101 No Yes Restricted No No 512

1/3 All Blocked N/A Yes Yes Configured No No 512

1/4 Denied Blocked N/A Yes Yes Configured No No 512

1/5 All Blocked N/A Yes Yes Configured No No 512

1/6 None Blocked N/A Yes Yes Sys.Default No No 512

1/7 All Blocked N/A Yes Yes Configured No No 512

1/8 All Blocked N/A Yes Yes Configured No No 512

1/9 All Blocked N/A Yes Yes Configured No No 512

1/10 All Blocked N/A Yes Yes Configured No No 512

See also other documents in the category Brocade Computer Accessories: