•
Host Authentication— Indicates whether multiple hosts are enabled. Multiple hosts must be enabled in
order to either disable the ingress-filter, or to use port-lock security on the selected port. The possible field
values are:
–
Single Host — Single host is enabled.
–
Multiple Host — Multiple hosts are enabled.
–
Multi Session — Multi Session is enabled.
•
Action on Violation — Defines the action to be applied to packets arriving from a host whose MAC address
is not the supplicant MAC address. The possible field values are:
–
Forward — Forwards the packet.
–
Discard — Discards the packets. This is the default value.
–
Shutdown — Discards the packets and shuts down the port. The port remains shut down until
reactivated, or until the device is reset.
•
Traps — Indicates if traps are enabled for Multiple Hosts. The possible field values are:
–
True — Indicates that traps are enabled.
–
False — Indicates that traps are disabled.
•
Trap Frequency — Defines the time period by which traps are sent to the host. The Trap Frequency (1-
1000000) field can be defined only if multiple hosts are disabled. The default is 10 seconds.
•
Status — Indicates the host status. If there is an asterisk (*), the port is either not linked or is down. The pos-
sible field values are:
–
Unauthorized — Indicates that either the port control is Force Unauthorized and the port link is down, or
the port control is Auto but a client has not been authenticated via the port.
–
Not in Auto Mode — Indicates that the port control is Forced Authorized, and clients have full port
access.
–
Single-host Lock — Indicates that the port control is Auto and a single client has been authenticated via
the port.
–
No Single Host — Indicates that Multiple Host is enabled.
•
Number of Violations — Indicates the number of packets that arrived on the interface in single-host mode,
from a host whose MAC address is not the supplicant MAC address.
Page 133
Configuring Device Security
Configuring Network Security