Set Radius-Snooping Port - Enterasys Matrix DFE-Gold Series Configuration Manual

Understanding RADIUS Snooper
Example
This example shows how to set the RS timeout to 30 seconds:
Matrix(rw)->set radius-snooping timeout 30

set radius-snooping port

Use this command to enable RS on all or the specified port(s).
Syntax
set radius-snooping port [enable | disable] [timeout seconds] [drop {enable |
disable}] [authallocated number] [port-string]
Parameters
enable | disable
timeout seconds
drop {enable |
disable}
authallocated number
port‐string
Defaults
If no timeout value is specified, the global timeout value specified in the set radius‐snooping
timeout command is used.
If no parameters are specified, RADIUS snooping is enabled on all ports.
Mode
Read‐write.
Usage
If the timeout timer expires, the affected session is terminated. If timeout is set to 0, the global
timeout is used.
Set the authallocated value equal to or less than the configured value for set multiauth port
numusers. This value is the maximum number of users per port for all authentication clients.
In some cases it may be necessary to drop RADIUS traffic in order to maintain session consistency
between the distribution tier device and the edge switches. Packets are always dropped for a
resource issue situation. With drop enabled, frames with an invalid calling station ID are also
dropped.
26-4 RADIUS Snooping Configuration
Enables or disables RS functionality on the specified port(s). Disabled
by default.
Specifies the number of seconds the firmware waits for a RADIUS
response frame after it successfully snoops a RADIUS request frame.
The timeout timer defaults to 0 seconds (unset). When 0 seconds is
configured, the firmware uses the system level timeout value.
Sets the RADIUS traffic drop behavior for this port. Disabled by default.
Sets the number of allowed RS sessions allowed on a per port basis.
Default value is 8, 128, or 256 depending upon the system license for
this device.
Enables RS for the specified port(s).
set radius-snooping port