Brocade BigIron RX Series Configuration Guide User Manual

Page 1140

Advertising
background image

1062

BigIron RX Series Configuration Guide

53-1002484-04

Configuring 802.1x port security

34

Specifying the number of EAP-request/identity frame retransmissions

If the BigIron RX does not receive a EAP-response/identity frame from a Client, the device waits 30
seconds (or the amount of time specified with the timeout tx-period command), then retransmits
the EAP-request/identity frame. By default, the BigIron RX retransmits the EAP-request/identity
frame a maximum of two times. If no EAP-response/identity frame is received from the Client after
two EAP-request/identity frame retransmissions, the device restarts the authentication process
with the Client.

You can optionally specify between 1 – 10 frame retransmissions. For example, to configure the
device to retransmit an EAP-request/identity frame to a Client a maximum of three times, enter the
following command.

BigIron RX(config-dot1x)# maxreq 3

Syntax: maxreq <value>

Specifying a timeout for retransmission of messages
to the authentication server

When performing authentication, the BigIron RX receives EAPOL frames from the Client and passes
the messages on to the RADIUS server. The device expects a response from the RADIUS server
within 30 seconds. If the RADIUS server does not send a response within 30 seconds, the BigIron
RX retransmits the message to the RADIUS server. The time constraint for retransmission of
messages to the Authentication Server can be between 1 – 4294967295 seconds.

For the BigIron RX, the possible values are 1 - 4294967295.

For example, to configure the device to retransmit a message if the Authentication Server does not
respond within 45 seconds, enter the following command.

BigIron RX(config-dot1x)# servertimeout 45

Syntax: servertimeout <seconds>

Specifying a timeout for retransmission of
EAP-request frames to the client

Acting as an intermediary between the RADIUS Authentication Server and the Client, the BigIron RX
receives RADIUS messages from the RADIUS server, encapsulates them as EAPOL frames, and
sends them to the Client. When the BigIron RX relays an EAP-Request frame from the RADIUS
server to the Client, it expects to receive a response from the Client within 30 seconds. If the Client
does not respond within the allotted time, the device retransmits the EAP-Request frame to the
Client. The time constraint for retransmission of EAP-Request frames to the Client can be between
1 – 4294967295 seconds.

For example, to configure the device to retransmit an EAP-Request frame if the Client does not
respond within 45 seconds, enter the following command.

BigIron RX(config-dot1x)# supptimeout 45

Syntax: supptimeout <seconds>

Advertising
Popular Brands
Popular manuals