Table of Contents
Advertisement
Configuring Static MAC Bypass
Configuring GVRP (NSM Procedure)
Copyright © 2010, Juniper Networks, Inc.
Configure any MAC addresses, supplicants, or interfaces to be excluded from 802.1X
authentication—that is, they will be authenticated.
To configure the 802.1X exclusion:
Specify a MAC address to be excluded from 802.1X authentication in the field
1.
Specify the interface for the supplicant to bypass authentication if connected through
2.
that interface.
Specify the VLAN to move the supplicant to once it is authenticated.
3.
NOTE: After you make changes to a device configuration, you must push that
updated device configuration to the physical security device for those changes
to take effect. You can update multiple devices at one time. See Updating
Devices for more information.
As a network expands and the number of clients and VLANs increases, VLAN
administration becomes complex, and the task of efficiently configuring VLANs on multiple
switches becomes increasingly difficult. To automate VLAN administration, you can
enable GARP VLAN Registration Protocol (GVRP) on the network.
GVRP learns VLANs on a particular 802.1Q trunk port, and adds the corresponding trunk
port to the VLAN if the advertised VLAN is preconfigured or existing already on the switch.
For example, a VLAN named "sales" is advertised to trunk port 1 on the GVRP-enabled
device. The device adds trunk port 1 to the sales VLAN if the sales VLAN already exists
on the switch.
As individual ports become active and send a request to join a VLAN, the VLAN
configuration is updated and propagated among the switches. Limiting the VLAN
configuration to active participants reduces the network overhead. GVRP also provides
the benefit of pruning VLANs to limit the scope of broadcast, unknown unicast, and
multicast (BUM) traffic to interested devices only.
To configure GVRP:
In the navigation tree, select Device Manager > Devices. In Device Manager, select
1.
the device.
In the configuration tree, expand Protocols.
2.
Select GVRP.
3.
Click the Add icon.
4.
Add/modify GVRP settings for the interface as specified in Table 58 on page 94.
5.
Chapter 8: Configuring Protocols
Name
93
.
Advertisement
Table of Contents
