Setting the quiet period – Brocade TurboIron 24X Series Configuration Guide User Manual

964

Brocade TurboIron 24X Series Configuration Guide

53-1003053-01

Configuring 802.1X port security

Setting the quiet period

If the device is unable to authenticate the Client, the device waits a specified amount of time
before trying again. The amount of time the device waits is specified with the quiet-period
parameter. The quiet-period parameter can be from 1 – 4294967295 seconds. The default is 60
seconds.

For example, to set the quiet period to 30 seconds, enter the following command.

TurboIron(config-dot1x)#timeout quiet-period 30

Syntax: [no] timeout quiet-period <seconds>

Specifying the wait interval and number of EAP-request/
identity frame retransmissions

When the device sends an EAP-request/identity frame to a Client, it expects to receive an
EAP-response/identity frame from the Client. By default, if the device does not receive an
EAP-response/identity frame from a Client, the device waits 30 seconds, then retransmits the
EAP-request/identity frame. Also by default, the device retransmits the EAP-request/identity frame
a maximum of two times. You can optionally configure the amount of time the device will wait
before retransmitting an EAP-request/identity frame, and the number of times the
EAP-request/identity frame will be transmitted. This section provides the command syntax for
these features.

Setting the wait interval for EAP frame retransmissions

By default, if the device does not receive an EAP-response/identity frame from a Client, the device
waits 30 seconds, then retransmits the EAP-request/identity frame. You can optionally change the
amount of time the device waits before retransmitting the EAP-request/identity frame to the Client.

For example, to cause the device to wait 60 seconds before retransmitting an EAP-request/identity
frame to a Client, enter the following command.

TurboIron(config-dot1x)#timeout tx-period 60

If the Client does not send back an EAP-response/identity frame within 60 seconds, the device will
transmit another EAP-request/identity frame.

Syntax: [no] timeout tx-period <seconds>

where <seconds> is a value from 1 – 4294967295. The default is 30 seconds.

Setting the maximum number of EAP frame retransmissions

The device retransmits the EAP-request/identity frame a maximum of two times. If no
EAP-response/identity frame is received from the Client after two EAP-request/identity frame
retransmissions (or the amount of time specified with the auth-max command), the device restarts
the authentication process with the Client.

You can optionally change the number of times the device should retransmit the
EAP-request/identity frame. You can specify between 1 – 10 frame retransmissions. For example,
to configure the device to retransmit an EAP-request/identity frame to a Client a maximum of three
times, enter the following command:

TurboIron(config-dot1x)#auth-max 3