beautypg.com

Displaying and maintaining port security, Port security configuration examples, Configuring the userloginwithoui mode – H3C Technologies H3C WX3000E Series Wireless Switches User Manual

Page 246: Network requirements

background image

232

To enable remote authentication proxy:

Step Command

Remarks

1.

Enter system view.

system-view

N/A

2.

Enter WLAN-ESS interface
view.

interface interface-type
interface-number

N/A

3.

Enable remote authentication

proxy.

port-security remote-auth-proxy
enable

By default, remote authentication
proxy is disabled on a WLAN-ESS

interface.

Displaying and maintaining port security

Task Command

Remarks

Display port security configuration
information, operation

information, and statistics about
one or more ports or all ports.

display port-security [ interface
interface-list ] [ | { begin | exclude

| include } regular-expression ]

Available in any view

Display information about blocked
MAC addresses.

display port-security mac-address
block [ interface interface-type

interface-number ] [ vlan vlan-id ]

[ count ] [ | { begin | exclude |
include } regular-expression ]

Available in any view

Display information about PSK
users.

display port-security

preshared-key user [ interface
interface-type interface-number ]

[ | { begin | exclude | include }

regular-expression ]

Available in any view

Port security configuration examples

Configuring the userLoginWithOUI mode

Network requirements

As shown in

Figure 113

, a client is connected to the AC through port WLAN-ESS 1. The AC authenticates

the client with a RADIUS server. If the authentication succeeds, the client is authorized to access the

Internet.

The RADIUS server at 192.168.1.2/24 functions as the primary authentication server and the
secondary accounting server, and the RADIUS server at 192.168.1.3/24 functions as the secondary

authentication server and the primary accounting server. The shared key for authentication is name,
and that for accounting is money.

All users use the default authentication, authorization, and accounting methods of ISP domain sun,
which can accommodate up to 30 users.

The RADIUS server response timeout time is five seconds and the maximum number of RADIUS
packet retransmission attempts is five. The AC sends real-time accounting packets to the RADIUS