Mac-authentication reauth-time – LevelOne FGL-2870 User Manual

Command Line Interface

4-164

4

• When port status changes to down, all MAC addresses are cleared from the

secure MAC address table. Static VLAN assignments are not restored.

• The RADIUS server may optionally return a VLAN identifier list. VLAN

identifier list is carried in the “Tunnel-Private-Group-ID” attribute. The VLAN
list can contain multiple VLAN identifiers in the format “1u,2t,” where “u”
indicates untagged VLAN and “t” tagged VLAN. The “Tunnel-Type” attribute
should be set to “VLAN,” and the “Tunnel-Medium-Type” attribute set to “802.”

Example

mac-authentication reauth-time

Use this command to set the time period after which a connected MAC address
must be re-authenticated. Use the no form of this command to restore the default
value.

Syntax

mac-authentication reauth-time seconds
no mac-authentication reauth-time

seconds - The reauthentication time period.
(Range: 120-1000000 seconds)

Default Setting

1800

Command Mode

Global Configuration

Command Usage

• The reauthentication time is a global setting and applies to all ports.
• When the reauthentication time expires for a secure MAC address it is

reauthenticated with the RADIUS server. During the reauthentication process
traffic through the port remains unaffected.

Example

Console(config-if)#network-access mode mac-authentication
Console(config-if)#

Console(config)#mac-authentication reauth-time 300
Console(config)#