The Multiple Hosts page contains the following fields:
•
Port — The port number for which Advanced Port Based Authentication is enabled.
•
Host Authentication — Defines the host authentication type. The possible fields are:
–
Single — Enables a single authorized host for single-session access to the system.
–
Multiple Host — Enables a single host to authorize multiple hosts for single-session access to the
system. This setting must be enabled in order to either disable the ingress-filter, or to use port-lock
security on the selected port.
–
Multiple Session — Enables a single authorzied host for multiple-session access to the system.
This is the default value.
•
Action on Single Host Violation — Defines the action to be applied to packets arriving in single-host
mode, from a host whose MAC address is not the client (supplicant) MAC address. The possible field
values are:
–
Forward — Forwards the packets from an unknown source, however, the MAC address is
not learned.
–
Discard — Discards the packets from any unlearned source. This is the default value.
–
Shutdown — Discards the packet from any unlearned source and shuts down the port.
Ports remain shut down until they are activated, or the switch is reset.
•
Traps — Enables or disables sending traps to the host if a violation occurs.
–
Enable — Enables sending traps.
–
Disable — Disables sending traps.
•
Trap Frequency (1-1000000) — Defines the time period in seconds by which traps are sent to the host.
The Trap Frequency (1-1000000) field can be defined only if the Multiple Hosts field is defined as
Disable. The default is 10 seconds.
•
Status — The host status. The possible field values are:
–
Unauthorized — Indicates that the port control is Force Unauthorized, the port link is down or the
port control is Auto, but a client has not been authenticated via the port.
–
Not in Auto Mode — Indicates that the port control is Forced Authorized, and clients have full
port access.
Single-host Lock — Indicates that the port control is Auto and a single client has been
–
authenticated via the port.
–
No Single Host — Indicates that Multiple Host is enabled.
•
Number of Violations — The number of packets that arrived on the interface in single-host mode,
from a host whose MAC address is not the client (supplicant) MAC address.
Configuring Switch Information
269