Authorized state and unauthorized state, Control direction, Eap over lan – H3C Technologies H3C S7500E Series Switches User Manual
Page 93: Eapol packet format
5-3
z
The uncontrolled port is always open in both the inbound and outbound directions to allow
EAPOL protocol packets to pass, guaranteeing that the client can always send and receive
authentication packets.
z
The controlled port is open to allow data traffic to pass only when it is in the authorized
state.
The controlled port and uncontrolled port are two parts of the same port. Any packets arriving at
the port are available to both of them.
Authorized state and unauthorized state
The controlled port can be set in either the authorized or unauthorized status, which depends
on the authentication result, as shown in
Figure 5-2 Authorized/unauthorized status of a controlled port
Control direction
In the unauthorized state, the controlled port can be set to deny traffic to and from the client or
just the traffic from the client.
Currently, your device can only be set to deny traffic from the client.
EAP over LAN
EAPOL packet format
EAPOL, defined in 802.1X, is intended to carry EAP protocol packets between clients and
devices over LANs.