Creating Custom Expect Scripts - Extreme Networks Sentriant AG Software User's Manual
Hide thumbs
Also See for Sentriant AG:
- Installation manual (80 pages) ,
- User manual (422 pages) ,
- Software user's manual (526 pages)
Table of Contents
Advertisement
radius-server host 10.0.0.5
radius-server secondary-host 0.0.0.0
radius-server port 1812
! radius-server key ********
Enable 802.1X:
eapol enable
interface FastEthernet ALL
eapol port 1-2 status auto traffic-control in-out re-authentication enable re-a
uthentication-period 3600 re-authenticate quiet-interval 60 transmit-interval 3
0 supplicant-timeout 30 server-timeout 30 max-request 2
Vlan Info:
vlan create 10 name "production" type port
vlan create 11 name "guest" type port
vlan create 12 name "quarantine" type port
! *** EAP ***
!
eapol enable
interface FastEthernet ALL
eapol port 1-2 status auto traffic-control in-out re-authentication enable re-
authentication-period 3600 re-authenticate quiet-interval 60 transmit-interval 3 0
supplicant-timeout 30 server-timeout 30 max-request 2
! *** Port Mirroring ***
!
port-mirroring mode XrxOrXtx monitor-port 9 mirror-port-X 12
!
Creating Custom Expect Scripts
Expect is a tool that uses simple scripts to automate interactive applications.
Sentriant AG utilizes expect scripts when communicating with 802.1X devices. You can add 802.1X
devices in the Sentriant AG user interface (Home>>System configuration>>Quarantining menu
option>>Add 802.1X device). There are 11 pre-defined devices, and one generic device. You can use the
default expect script values, modify them, or enter new values. The expect scripts used are as follows:
Initialization script—This script is used to log in to the device, enter enable mode and set up the
●
state necessary to execute the re-authentication command. It is executed the first time a connection to
the device is opened or if the connection to the device is reset.
Re-authentication script—This script is used to perform endpoint re-authentication. It is executed
●
once for each endpoint re-authentication while the connection to the device remains active (until the
connection goes bad or the idle time inactivity timeout is reached).
Exit script—This script is used to exit the console. It is executed when the idle time timeout is
●
reached.
When testing configuration settings from the Sentriant AG user interface, all three scripts are executed
once in sequence and the connection is closed. If any output is returned by a command sent in the re-
Sentriant AG Software Users Guide, Version 5.3
802.1X Quarantine Method
255
Advertisement
Table of Contents
