R2511-HP MSR Router Series Security Command Reference(V5)
138
Default command level
2: System level
Parameters
max-retry-value: Specifies the maximum number of attempts for sending an authentication request to a
client. The value range is 1 to 10.
Usage guidelines
After the network access device sends an authentication request to a client, if the device receives no
response from the client within the username request timeout timer (set with the dot1x timer tx-period
tx-period-value command) or the client timeout timer (set with the dot1x timer supp-timeout
supp-timeout-value command), the device retransmits the authentication request. The network access
device stops retransmitting the request, if it has made the maximum number of request transmission
attempts but still received no response.
This command applies to all ports of the device.
Examples
# Set the maximum number of attempts for sending an authentication request to a client as 9.
<Sysname> system-view
[Sysname] dot1x retry 9
Related commands
display dot1x
dot1x supp-proxy-check
Use dot1x supp-proxy-check to enable the proxy detection function and set the processing method on
the specified ports or all ports.
Use undo dot1x supp-proxy-check to disable the function on the specified ports or all ports.
Syntax
In system view:
dot1x supp-proxy-check { logoff | trap } [ interface interface-list ]
undo dot1x supp-proxy-check { logoff | trap } [ interface interface-list ]
In Ethernet interface view:
dot1x supp-proxy-check { logoff | trap }
undo dot1x supp-proxy-check { logoff | trap }
Default
The proxy detection function is disabled. Users can use an authenticated 802.1X client as a network
access proxy to bypass monitoring and accounting.
Views
System view, Ethernet interface view
Default command level
2: System level