beautypg.com

Brocade TurboIron 24X Series Configuration Guide User Manual

Page 27

background image

Brocade TurboIron 24X Series Configuration Guide

xxvii

53-1003053-01

Configuring the MAC port security feature . . . . . . . . . . . . . . . . . . .992

Enabling the MAC port security feature . . . . . . . . . . . . . . . . . .992
Setting the maximum number of secure MAC addresses
for an interface. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .993
Setting the port security age timer . . . . . . . . . . . . . . . . . . . . . .993
Specifying secure MAC addresses . . . . . . . . . . . . . . . . . . . . . .993
Autosaving secure MAC addresses to the
startup-config file. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .994
Specifying the action taken when a security
violation occurs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .995

Clearing port security statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . .996

Clearing restricted MAC addresses. . . . . . . . . . . . . . . . . . . . . .996
Clearing violation statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . .996

Displaying port security information . . . . . . . . . . . . . . . . . . . . . . . .996

Displaying port security settings . . . . . . . . . . . . . . . . . . . . . . . .997
Displaying the secure MAC addresses . . . . . . . . . . . . . . . . . . .997
Displaying port security statistics . . . . . . . . . . . . . . . . . . . . . . .998
Displaying restricted MAC addresses on a port . . . . . . . . . . . .998

Chapter 32

Configuring Multi-Device Port Authentication

How multi-device port authentication works. . . . . . . . . . . . . . . . . .999

RADIUS authentication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .999
Authentication-failure actions . . . . . . . . . . . . . . . . . . . . . . . . 1000
Supported RADIUS attributes . . . . . . . . . . . . . . . . . . . . . . . . 1000
Support for dynamic VLAN assignment . . . . . . . . . . . . . . . . .1001
Support for dynamic ACLs . . . . . . . . . . . . . . . . . . . . . . . . . . . .1001
Support for authenticating multiple MAC addresses
on an interface. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1001

Using multi-device port authentication and
802.1X security on the same port . . . . . . . . . . . . . . . . . . . . . . . . .1001

Configuring Brocade-specific attributes on the RADIUS server1002

Configuring multi-device port authentication . . . . . . . . . . . . . . . 1003

Enabling multi-device port authentication . . . . . . . . . . . . . . 1003
Specifying the format of the MAC addresses sent
to the RADIUS server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1004
Specifying the authentication-failure action . . . . . . . . . . . . 1004
Generating traps for multi-device port authentication . . . . 1005
Defining MAC address filters. . . . . . . . . . . . . . . . . . . . . . . . . 1005
Configuring dynamic VLAN assignment . . . . . . . . . . . . . . . . 1006
Dynamically applying IP ACLs to authenticated MAC
addresses . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1008
Enabling denial of service attack protection . . . . . . . . . . . . .1010
Clearing authenticated MAC addresses . . . . . . . . . . . . . . . . .1011
Disabling aging for authenticated MAC addresses . . . . . . . .1011
Changing the hardware aging period for blocked
MAC addresses . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1012
Specifying the aging time for blocked MAC addresses . . . . .1013
Specifying the RADIUS timeout action . . . . . . . . . . . . . . . . . .1013
Multi-device port authentication password override . . . . . . .1014
Limiting the number of authenticated MAC addresses. . . . .1015

See also other documents in the category Brocade Computer Accessories: