Installation guide
Table Of Contents
- Chapter 1: Introduction
- Chapter 2: Initial Configuration
- Chapter 3: Configuring the Switch
- Using the Web Interface
- Navigating the Web Browser Interface
- Panel Display
- Main Menu
- Basic Configuration
- Displaying System Information
- Displaying Switch Hardware/Software Versions
- Displaying Bridge Extension Capabilities
- Setting the Switch’s IP Address
- Enabling Jumbo Frames
- Managing Firmware
- Saving or Restoring Configuration Settings
- Console Port Settings
- Telnet Settings
- Configuring Event Logging
- Resetting the System
- Setting the System Clock
- Simple Network Management Protocol
- User Authentication
- Configuring User Accounts
- Configuring Local/Remote Logon Authentication
- Configuring Encryption Keys
- AAA Authorization and Accounting
- Configuring HTTPS
- Replacing the Default Secure-site Certificate
- Configuring the Secure Shell
- Configuring Port Security
- Configuring 802.1X Port Authentication
- Web Authentication
- Network Access - MAC Address Authentication
- MAC Authentication
- Access Control Lists
- Port Configuration
- Address Table Settings
- Spanning Tree Algorithm Configuration
- VLAN Configuration
- Link Layer Discovery Protocol
- Class of Service Configuration
- Quality of Service
- VoIP Traffic Configuration
- Multicast Filtering
- Multicast VLAN Registration
- DHCP Snooping
- IP Source Guard
- IP Clustering
- UPnP
- Chapter 4: Command Line Interface
- Using the Command Line Interface
- Entering Commands
- Command Groups
- Line Commands
- General Commands
- System Management Commands
- Flash/File Commands
- Authentication Commands
- Access Control List Commands
- SNMP Commands
- Interface Commands
- Mirror Port Commands
- Rate Limit Commands
- Link Aggregation Commands
- Address Table Commands
- LLDP Commands
- lldp
- lldp holdtime-multiplier
- lldp medFastStartCount
- lldp notification-interval
- lldp refresh-interval
- lldp reinit-delay
- lldp tx-delay
- lldp admin-status
- lldp notification
- lldp mednotification
- lldp basic-tlv management-ip-address
- lldp basic-tlv port-description
- lldp basic-tlv system-capabilities
- lldp basic-tlv system-description
- lldp basic-tlv system-name
- lldp dot1-tlv proto-ident
- lldp dot1-tlv proto-vid
- lldp dot1-tlv pvid
- lldp dot1-tlv vlan-name
- lldp dot3-tlv link-agg
- lldp dot3-tlv mac-phy
- lldp dot3-tlv max-frame
- lldp dot3-tlv poe
- lldp medtlv extpoe
- lldp medtlv inventory
- lldp medtlv location
- lldp medtlv med-cap
- lldp medtlv network-policy
- show lldp config
- show lldp info local-device
- show lldp info remote-device
- show lldp info statistics
- UPnP Commands
- Spanning Tree Commands
- spanning-tree
- spanning-tree mode
- spanning-tree forward-time
- spanning-tree hello-time
- spanning-tree max-age
- spanning-tree priority
- spanning-tree pathcost method
- spanning-tree transmission-limit
- spanning-tree mst-configuration
- mst vlan
- mst priority
- name
- revision
- max-hops
- spanning-tree spanning-disabled
- spanning-tree cost
- spanning-tree port-priority
- spanning-tree edge-port
- spanning-tree portfast
- spanning-tree link-type
- spanning-tree loopback-detection
- spanning-tree loopback-detection release-mode
- spanning-tree loopback-detection trap
- spanning-tree mst cost
- spanning-tree mst port-priority
- spanning-tree protocol-migration
- show spanning-tree
- show spanning-tree mst configuration
- VLAN Commands
- Priority Commands
- Quality of Service Commands
- Voice VLAN Commands
- Multicast Filtering Commands
- Multicast VLAN Registration Commands
- IP Interface Commands
- IP Source Guard Commands
- DHCP Snooping Commands
- IP Cluster Commands
- Appendix A: Software Specifications
- Appendix B: Troubleshooting
- Glossary
- Index
Command Line Interface
4-118
4
- Status – Administrative state for port access control.
- Operation Mode – Dot1x port control operation mode (page 4-114).
- Mode – Dot1x port control mode (page 4-113).
- Authorized – Authorization status (yes or n/a - not authorized).
• 802.1X Port Details – Displays the port access control parameters for each
interface, including the following items:
- reauth-enabled – Periodic re-authentication (page 4-115).
- reauth-period – Time after which a connected client must be
re-authenticated (page 4-116).
- quiet-period – Time a port waits after Max Request Count is
exceeded before attempting to acquire a new
client (page 4-115).
- tx-period – Time a port waits during authentication session
before re-transmitting EAP packet (page 4-116).
- supplicant-timeout – Supplicant timeout.
- server-timeout – Server timeout.
- reauth-max – Maximum number of reauthentication attempts.
- max-req – Maximum number of times a port will retransmit
an EAP request/identity packet to the client
before it times out the authentication session
(page 4-113).
- Status – Authorization status (authorized or not).
- Operation Mode – Shows if single or multiple hosts (clients) can
connect to an 802.1X-authorized port.
- Max Count – The maximum number of hosts allowed to
access this port (page 4-114).
- Port-control – Shows the dot1x mode on a port as auto,
force-authorized, or force-unauthorized
(page 4-113).
- Supplicant – MAC address of authorized client.
- Current Identifier – The integer (0-255) used by the Authenticator to
identify the current authentication session.
- Intrusion action – Shows whether the switch will block all non-EAP
traffic or assign traffic on the port to a guest
VLAN if authentication fails.
• Authenticator State Machine
- State – Current state (including initialize, disconnected,
connecting, authenticating, authenticated, aborting,
held, force_authorized, force_unauthorized).
- Reauth Count – Number of times connecting state is re-entered.
• Backend State Machine
- State – Current state (including request, response,
success, fail, timeout, idle, initialize).
- Request Count – Number of EAP Request packets sent to the
Supplicant without receiving a response.