2 examples of ipv4 radius applications – QTECH QSW-3400 Инструкция по настройке User Manual

+7(495) 797-3311 www.qtech.ru
Москва, Новозаводская ул., 18, стр. 1

337

Switch(Config-If-Ethernet1/2)#switch-port mode access

# Set the access control mode on the port as portbased.
Switch(Config-If-Ethernet1/2)#dot1x port-method portbased

# Set the access control mode on the port as auto.
Switch(Config-If-Ethernet1/2)#dot1x port-control auto

# Set the port’s Guest VLAN as 100.
Switch(Config-If-Ethernet1/2)#dot1x guest-vlan 100
Switch(Config-If-Ethernet1/2)#exit

Using the command of show running-config or show interface ethernet1/2, users can check the

configuration of Guest VLAN. When there is no online user, no failed user authentication or no

user gets offline successfully, and more authentication-triggering messages (EAP-

Request/Identity) are sent than the upper limit defined, users can check whether the Guest

VLAN configured on the port takes effect with the command show vlan id 100.

40.3.2 Examples of IPv4 Radius Applications

IEEE 802.1x Configuration Example Topology

The PC is connecting to port 1/2 of the switch; IEEE 802.1x authentication is enabled on

port1/2; the access mode is the default MAC-based authentication. The switch IP address is

10.1.1.2. Any port other than port 1/2 is used to connect to RADIUS authentication server,

which has an IP address of 10.1.1.3, and use the default port 1812 for authentication and port

1813 for accounting. IEEE 802.1x authentication client software is installed on the PC and is

used in IEEE 802.1x authentication.

The configuration procedures are listed below:

10.1.1.1

10.1.1.2

Radius

Server

10.1.1.3