2 examples of ipv4 radius applications, 2 examples of ipv4 radius applications -155 – PLANET WGSW-52040 User Manual

Using the command of show running-config or show interface ethernet1/2, users can

check the configuration of Guest VLAN. When there is no online user, no failed user

authentication or no user gets offline successfully, and more authentication-triggering

messages (EAP-Request/Identity) are sent than the upper limit defined, users can check

whether the Guest VLAN configured on the port takes effect with the command show vlan id

100.

42.3.2 Examples of IPv4 Radius Applications

10.1.1.1

10.1.1.2

Radius Server

10.1.1.3

Figure 42-16: IEEE 802.1x Configuration Example Topology

The PC is connecting to port 1/2 of the switch; IEEE 802.1x authentication is enabled on

port1/2; the access mode is the default MAC-based authentication. The switch IP address is

10.1.1.2. Any port other than port 1/2 is used to connect to RADIUS authentication server,

which has an IP address of 10.1.1.3, and use the default port 1812 for authentication and port

1813 for accounting. IEEE 802.1x authentication client software is installed on the PC and is

used in IEEE 802.1x authentication.

The configuration procedures are listed below:

Switch(config)#interface vlan 1

Switch(Config-if-vlan1)#ip address 10.1.1.2 255.255.255.0

Switch(Config-if-vlan1)#exit

Switch(config)#radius-server authentication host 10.1.1.3

Switch(config)#radius-server accounting host 10.1.1.3

42-155