Troubleshooting Port Security; Cannot Set The Port Security Mode - H3C S5830V2 Security Configuration Manual
Hide thumbs
Also See for S5830V2:
- Configuration manual (318 pages) ,
- Command reference manual (301 pages) ,
- Installation manual (63 pages)
Table of Contents
Advertisement
Max number of 802.1X users is 1024 per slot
Current number of online 802.1X users is 1
Ten-GigabitEthernet1/0/1
802.1X protocol is enabled
Handshake is enabled
802.1X unicast-trigger is disabled
Periodic reauthentication is disabled
The port is an authenticator
Authentication mode is Auto
Port access control type is MAC-based
802.1X multicast-trigger is enabled
Mandatory authentication domain: Not configured
Max online users is 256
EAPOL Packets: Tx 16331, Rx 102
Sent EAP Request/Identity Packets : 16316
EAP Request/Challenge Packets: 6
EAP Success Packets: 4, Fail Packets: 5
Received EAPOL Start Packets : 6
1. Authenticated user MAC address: 0002-0000-0011
Controlled Users: 1
Because NTK is enabled, frames with an unknown destination MAC address, multicast address, or
broadcast address are discarded.
Troubleshooting port security
Cannot set the port security mode
Symptom
Cannot set the port security mode for a port.
Analysis
For a port operating in a port security mode other than noRestriction, you cannot change the port security
mode directly by using the port-security port-mode command.
Solution
1.
Set the port security mode to noRestriction.
[Device-Ten-GigabitEthernet1/0/1] undo port-security port-mode
2.
Set a new port security mode for the port, for example, autoLearn.
[Device-Ten-GigabitEthernet1/0/1] port-security port-mode autolearn
Reauth Period
Max attempts for sending an auth request
is link-up
EAPOL LogOff Packets: 2
EAP Response/Identity Packets : 80
EAP Response/Challenge Packets: 6
Error Packets: 0
3600 s
102
2
Advertisement
Table of Contents
Troubleshooting
