Chapter 6 – access using radius – GarrettCom Magnum MNS-6K User Manual

Page 264

Advertising

M A G N U M 6 K S W I T C H E S , M N S - 6 K U S E R G U I D E

Syntax allow ip=<ipaddress> mask=<netmask> service=<name|list> - allow specific IP

address or range of addresses as a trusted host(s)

Syntax deny ip=<ipaddress> mask=<netmask> service=<name|list> - deny specific IP

address or range of IP addresses

Syntax remove ip=<ipaddress> mask=<netmask> - delete a specific IP address from the access or

trusted host list

|arp|portstats|addr] – clear command to clear various aspects of the MNS-6K information – most
notably “clear addr” – clears the addresses learnt or “clear log” to clear the logs (and the type of logs)

Chapter 6 – Access Using Radius

Syntax auth configuration mode to configure the 802.1x parameters

Syntax show auth <config|ports> show the 802.1x configuration or port status

Syntax authserver [ip=<ip-addr>] [udp=<num>] [secret=<string>] define the RADIUS server

– use UDP socket number if the RADIUS authentication is on port other than 1812

Syntax auth <enable|disable> enables or disables the 802.1x authenticator function on MNS-6K switch

Syntax setport port=<num|list|range> [status=<enable|disable>]

[control=<auto|forceauth|forceunauth>] [initialize=<assert|deassert>] setting the
port characteristic for an 802.1x network

Syntax backend port=<num|list|range> supptimeout=<1-240>] [servertimeout=<1-240>]

[maxreq=<1-10>] configure parameters for EAP over RADIUS

port – [mandatory] – port(s) to be configured
supptimeout – [optional] This is the timeout in seconds the authenticator waits for the
supplicant to respond back. Default value is 30 seconds. Values can range from 1 to 240
seconds.
servertimeout – [optional] This is the timeout in seconds the authenticator waits for the
backend RADIUS server to respond back. The default value is 30 seconds. Values can
range from 1 to 240 seconds.

263

Advertising