Manualshelf

Configuration Guide User guide

ManualsBrandsBrocade ManualsComputer AccessoriesFastIron
41424344454647484950
FastIron Configuration Guide xlv
53-1002494-02
Multi-device port authentication and 802.1X
security on the same port. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1836
Chapter 44 MAC Port Security
MAC port security overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1838
Local and global resources used for MAC port security . . . 1838
Configuration notes and feature limitations
for MAC port security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1838
MAC port security configuration. . . . . . . . . . . . . . . . . . . . . . . . . . 1839
Enabling the MAC port security feature . . . . . . . . . . . . . . . . 1839
Setting the maximum number of secure
MAC addresses for an interface . . . . . . . . . . . . . . . . . . . . . . 1840
Setting the port security age timer . . . . . . . . . . . . . . . . . . . . 1840
Specifying secure MAC addresses . . . . . . . . . . . . . . . . . . . . .1841
Autosaving secure MAC addresses to the
startup configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1841
Specifying the action taken when a security
violation occurs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1842
Clearing port security statistics . . . . . . . . . . . . . . . . . . . . . . . . . . 1843
Clearing restricted MAC addresses. . . . . . . . . . . . . . . . . . . . 1843
Clearing violation statistics . . . . . . . . . . . . . . . . . . . . . . . . . . 1843
Displaying port security information . . . . . . . . . . . . . . . . . . . . . . 1844
Displaying port security settings . . . . . . . . . . . . . . . . . . . . . . 1844
Displaying the secure MAC addresses . . . . . . . . . . . . . . . . . 1844
Displaying port security statistics . . . . . . . . . . . . . . . . . . . . . 1845
Displaying restricted MAC addresses on a port. . . . . . . . . . 1847
Chapter 45 Multi-Device Port Authentication
How multi-device port authentication works. . . . . . . . . . . . . . . . 1850
RADIUS authentication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1850
Authentication-failure actions . . . . . . . . . . . . . . . . . . . . . . . . .1851
Supported RADIUS attributes . . . . . . . . . . . . . . . . . . . . . . . . .1851
Support for dynamic VLAN assignment . . . . . . . . . . . . . . . . 1852
Support for dynamic ACLs . . . . . . . . . . . . . . . . . . . . . . . . . . . 1852
Support for authenticating multiple MAC addresses
on an interface. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1852
Support for dynamic ARP inspection with dynamic ACLs . . 1852
Support for DHCP snooping with dynamic ACLs . . . . . . . . . 1852
Support for source guard protection. . . . . . . . . . . . . . . . . . . 1853
Multi-device port authentication and 802.1X
security on the same port. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1853
Configuring Brocade-specific attributes on the
RADIUS server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1854