Setting The Port Control - Dell PowerConnect B-RX Configuration Manual
Bigiron rx series supporting multi-service ironware v02.7.03
Hide thumbs
Also See for PowerConnect B-RX:
- Configuration manual (1458 pages) ,
- Getting started manual (32 pages) ,
- Installation manual (240 pages)
Table of Contents
Advertisement
To enable 802.1x port security on interface 3/11, enter the following command.
BigIron RX(config-dot1x)# enable ethernet 3/11
Syntax: [no] enable <portnum>
To enable 802.1x port security on interfaces 3/11 through 3/16, enter the following command.
BigIron RX(config-dot1x)# enable ethernet 3/11 to 3/16
Syntax: [no] enable <portnum> to <portnum>
Setting the port control
To activate authentication on an 802.1x-enabled interface, you specify the kind of port control to
be used on the interface. An interface used with 802.1x port security has two virtual access points,
a controlled port and an uncontrolled port:
•
•
Refer to
By default, all controlled ports on the device are in the authorized state, allowing all traffic. When
you activate authentication on an 802.1x-enabled interface, its controlled port is placed in the
unauthorized state. When a Client connected to the interface is successfully authenticated, the
controlled port is then placed in the authorized state for that client. The controlled port remains in
the authorized state until the Client logs off.
To activate authentication on an 802.1x-enabled interface, you configure the interface to place its
controlled port in the authorized state when a Client is authenticated by an Authentication Server.
To do this, enter commands such as the following.
BigIron RX(config)# interface e 3/1
BigIron RX(config-if-e10000-3/1)# dot1x port-control auto
Syntax: {no] dot1x port-control [force-authorized | force-unauthorized | auto]
When an interface's control type is set to auto, its controlled port is initially set to unauthorized, but
is changed to authorized when the connecting Client is successfully authenticated by an
Authentication Server.
The port control type can be one of the following.
force-authorized – The port's controlled port is placed unconditionally in the authorized state,
allowing all traffic. This is the default state for ports on the BigIron RX. Also, this parameter allows
connection from multiple Clients.
force-unauthorized – The controlled port is placed unconditionally in the unauthorized state.
auto – The controlled port is unauthorized until authentication takes place between the Client and
Authentication Server. Once the Client passes authentication, the port becomes authorized. This
has the effect of activating authentication on an 802.1x-enabled interface.
NOTES:
enabled:
BigIron RX Series Configuration Guide
53-1001986-01
The controlled port can be either the authorized or unauthorized state. In the authorized state,
it allows normal traffic to pass between the Client and the Authenticator. In the unauthorized
state, it allows no traffic to pass through.
The uncontrolled port allows only EAPOL traffic between the Client and the Authentication
Server.
Figure 122
on page 950 for an illustration of this concept.
You cannot enable 802.1x port security on ports that have any of the following features
•
10 Gbps ports
Configuring 802.1x port security
33
961
Advertisement
Chapters
Table of Contents
