CANOGA PERKINS CanogaOS Configuration Guide User Manual

Page 314

Advertising
background image

CanogaOS Configuration Guide

Proprietary & Confidential Canoga Perkins Metro Ethernet Switches

Page 314 of 350

EtherChannel ports—Do not configure a port that is an active or a not-yet-active member of

an EtherChannel as an IEEE 802.1x port. If you try to enable IEEE 802.1x on an
EtherChannel port, an error message appears, and IEEE 802.1x is not enabled.

z

IEEE 802.1x feature are cleared when changing port status from routed port to access port,

vice versa.

z

When port is in the unauthorized state and the control direction is both, all the dynamic FDB

learned on this port will be cleared; and all the static FDB configured on this port will be
cleared but will be restored when port transitions to authorized state or 802.1x disabled on
this port.

Default 802.1x Configuration

Feature

Default setting

RADIUS server

IP address

UDP authentication port

Key


None specified.

1812.

None specified.

Switch IEEE 802.1x enable state

Disabled.

Per-interface IEEE 802.1x enable state

Disabled (force-authorized).
The port sends and receives normal traffic without IEEE
802.1x-based authentication of the client.

Periodic re-authentication

Disabled.

Number of seconds between
re-authentication attempts

3600 seconds.

Re-authentication number

2 times (number of times that the switch restarts the
authentication process before the port changes to the
unauthorized state).

Quiet period

60 seconds (number of seconds that the switch remains in
the quiet state following a failed authentication exchange
with the client).

Retransmission time

30 seconds (number of seconds that the switch should
wait for a response to an EAP request/identity frame
from the client before resending the request).

Client timeout period

30 seconds (when relaying a request from the
authentication server to the client, the amount of time the
switch waits for a response before resending the request
to the client.

Authentication server timeout period

30 seconds (when relaying a response from the client to
the authentication server, the amount of time the switch
waits for a reply before resending the response to the
server. This setting is not configurable.)

Authentication server active period

5 minutes. (after a specified number of attempts failure to try the server,
the server will transition to sleeping mode, the time from sleeping mode
to active again is called active period)







Advertising
Popular Brands
Popular manuals