Dot1X Handshake Secure - H3C s3600 series Command Manual
Hide thumbs
Also See for s3600 series:
- Operation manual (966 pages) ,
- Installation manual (98 pages) ,
- Command manual (92 pages)
Table of Contents
Advertisement
To enable the proxy detecting function, you need to enable the online user handshaking function
first.
With the support of H3C proprietary clients, handshaking packets can be used to test whether or
not a user is online.
As clients that are not of H3C do not support the online user handshaking function, switches cannot
receive handshaking acknowledgement packets from them in handshaking periods. To prevent
users being falsely considered offline, you need to disable the online user handshaking function in
this case.
Examples
# Enable the online user handshaking function.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] dot1x handshake enable
dot1x handshake secure
Syntax
dot1x handshake secure
undo dot1x handshake secure
View
Ethernet port view
Parameters
None
Description
Use the dot1x handshake secure command to enable the handshaking packet protection function,
protecting the device against attacks from fake clients.
Use the undo dot1x handshake secure command to disable the handshaking packet protection
function.
By default, the handshaking packet protection function is disabled.
The handshaking packet protection function requires the cooperation of the client and the
authentication server. If either of the two ends does not support the function, you need to disable it on
the other one.
1-9
- Quick Links:
- Login
- Reset Saved-Configuration
Hide quick links:
Advertisement
Chapters
Table of Contents
