Dynamic Cos With 802.1X - Dell S6100 Configuration Manual
Hide thumbs
Also See for S6100:
- Configuration manual (1743 pages) ,
- Installation manual (54 pages) ,
- Release notes (13 pages)
Table of Contents
Advertisement
dot1x mac-auth-bypass
4
(Optional) Use MAB authentication only — do not use 802.1X authentication first. If MAB fails the port or the MAC address is
blocked, the port is placed in the guest VLAN (if configured). 802.1x authentication is not even attempted. Re-authentication is
performed using 802.1X timers.
INTERFACE mode
dot1x mac-auth mab-only
Example of Verifying MAB Configuration on an 802.1X-enabled Interface
Verify the MAB and 802.1X configuration using the show dot1x interface command from EXEC Privilege mode.
The bold text shows that MAB is enabled on the interface.
Dell#show dot1x interface Te 0/0
802.1X information on Te 0/0:
----------------------------
Dot1x Status:
Port Control:
Port Auth Status:
Re-Authentication:
Untagged VLAN id:
Guest VLAN:
Guest VLAN id:
Auth-Fail VLAN:
Auth-Fail VLAN id:
Auth-Fail Max-Attempts:
Critical VLAN:
Critical VLAN id:
Mac-Auth-Bypass:
Mac-Auth-Bypass Only:
Static-MAB:
Static-MAB Profile:
Tx Period:
Quiet Period:
ReAuth Max:
Supplicant Timeout:
Server Timeout:
Re-Auth Interval:
Max-EAP-Req:
Host Mode:
Auth PAE State:
Backend State:
Dynamic CoS with 802.1X
Class of Service (CoS) is a method of traffic management that groups similar types of traffic so that they are serviced differently. One way
of classifying traffic is 802.1p, which uses the 3-bit Priority field in the VLAN tag to mark frames (other classification methods include ToS,
ACL, and DSCP). Once traffic is classified, you can use Quality of Service (QoS) traffic management to control the level of service for a
class in terms of bandwidth and delivery time.
For incoming traffic, the Dell Networking OS allows you to set a static priority value on a per-port basis or dynamically set a priority on a
per-port basis by leveraging 802.1X.
NOTE:
When a priority is statically configured using the dynamic dot1p command and dynamically configured using dynamic
CoS with 802.1X, the dynamic configuration takes precedence.
You can use dynamic CoS with 802.1X is when the traffic from a server should be classified based on the application that it is running. A
static dot1p priority configuration applied from the switch is not sufficient in this case, as the server application might change. You would
instead need to push the CoS configuration to the switches based on the application the server is running.
Dynamic CoS uses RADIUS attribute 59, called User-Priority-Table, to specify the priority value for incoming frames. Attribute 59 has an 8-
octet field that maps the incoming dot1p values to new values; it is essentially a dot1p re-mapping table. The position of each octet
Enable
AUTO
AUTHORIZED(MAC-AUTH-BYPASS)
Disable
200
Disable
NONE
Disable
NONE
NONE
Disable
NONE
Enable
Disable
Disable
NONE
30 seconds
60 seconds
2
30 seconds
30 seconds
3600 seconds
2
SINGLE_HOST
Authenticated
Idle
802.1X
105
Advertisement
Table of Contents
Troubleshooting
