Configuring Netlogin Mac-Based Vlans-Blackdiamond 8800 Family Of Switches And The Summit X450 Switch Only - Extreme Networks ExtremeWare XOS Guide Manual

Network Login
Configuring Netlogin MAC-Based VLANs—BlackDiamond 8800
Family of Switches and the Summit X450 Switch Only
Currently, network login allows only a single, untagged VLAN to exist on a port. This limits the
flexibility for untagged supplicants because they must be in the same VLAN.
Beginning with ExtremeWare XOS 11.3, the BlackDiamond 8800 family of switches and the Summit
X450 switch support netlogin MAC-based VLANs. Netlogin MAC-based VLANs allow a port assigned
to a VLAN to operate in a MAC-based fashion. This means that each individual untagged supplicant,
identified by its MAC address, can be in different VLANs.
Netlogin MAC-based VLAN utilizes VSA information from both the netlogin local database and the
RADIUS server. After successfully performing the Campus mode of operation, the supplicant is added
untagged to the destination VLAN.
To support this feature, you must configure the netlogin port's mode of operation. The following
sections describe the following topics:
Netlogin MAC-Based VLANs Rules and Restrictions on page 372
●
Configuring the Port Mode on page 372
●
Displaying Netlogin MAC-Based VLAN Information on page 373
●
Netlogin MAC-Based VLAN Example on page 373
●
Netlogin MAC-Based VLANs Rules and Restrictions
This section summarizes the rules and restrictions for configuring netlogin MAC-based VLANs:
You must configure and enable netlogin on the switch and before you configure netlogin MAC-based
●
VLANs.
If you attempt to configure the port's mode of operation before enabling netlogin, the switch
displays an error message similar to the following:
ERROR: The following ports do not have NetLogin enabled; 1
10 Gigabit Ethernet ports such as those on the 10G4X I/O module and the uplink ports on the
●
Summit X450 switch do not support netlogin MAC-based VLANs.
If you attempt to configure netlogin MAC-based VLANs on 10 Gigabit Ethernet ports, the switch
displays an error message similar to the following:
ERROR: The following ports do not support the MAC-Based VLAN mode; 1, 2, 10
You can have a maximum of 1,024 MAC addresses per I/O module or per Summit X450 switch.
●
Configuring the Port Mode
To support netlogin MAC-based VLANs on a netlogin port, you must configure that port's mode of
operation. To specify MAC-based operation, use the following command and specify
configure netlogin ports [all | <port_list>] mode [mac-based-vlans | port-based-vlans]
By default, the netlogin port's mode of operation is
operation to
mac-based-vlans
operation automatically returns to
372
port-based-vlans
and later disable all netlogin protocols on that port, the mode of
.
port-based-vlans
mac-based-vlans
. If you modify the mode of
ExtremeWare XOS 11.3 Concepts Guide
: