Tunnel Protocol Attribute - ZyXEL Communications GS2200-24 User Manual
Intelligent layer 2gbe switch
Hide thumbs
Also See for GS2200-24:
- User manual (360 pages) ,
- Specifications (4 pages) ,
- Manual (332 pages)
Table of Contents
Advertisement
The following table describes the VSAs supported on the Switch.
Table 63 Supported VSAs
FUNCTION
Ingress Bandwidth
Assignment
Egress Bandwidth
Assignment
Privilege
Assignment
25.8.1.1 Tunnel Protocol Attribute
You can configure tunnel protocol attributes on the RADIUS server (refer to your
RADIUS server documentation) to assign a port on the Switch to a VLAN based on
IEEE 802.1x authentication. The port VLAN settings are fixed and untagged. This
will also set the port's VID. The following table describes the values you need to
configure. Note that the bolded values in the table are fixed values as defined in
RFC 3580.
Table 64 Supported Tunnel Protocol Attribute
FUNCTION
VLAN Assignment
GS2200-24 User's Guide
ATTRIBUTE
Vendor-Id = 890
Vendor-Type = 1
Vendor-data =
ingress rate (Kbps in decimal format)
Vendor-Id = 890
Vendor-Type = 2
Vendor-data =
egress rate (Kbps in decimal format)
Vendor-ID = 890
Vendor-Type = 3
Vendor-Data = "shell:priv-lvl=N"
or
Vendor-ID = 9
(CISCO)
Vendor-Type = 1
(CISCO-AVPAIR)
Vendor-Data = "shell:priv-lvl=N"
where
is a privilege level (from 0 to 14).
N
Note: If you set the privilege level of a login account differently
on the RADIUS server(s) and the Switch, the user is
assigned a privilege level from the database (RADIUS or
local) the Switch uses first for user authentication.
ATTRIBUTE
Tunnel-Type = VLAN(13)
Tunnel-Medium-Type = 802(6)
Tunnel-Private-Group-ID =
Note: You must also create a VLAN with the specified VID on
the Switch.
Chapter 25 AAA
VLAN ID
211
Advertisement
Table of Contents
Troubleshooting
