Network Security
Port Authentication
SPS208G/SPS224G4/SPS2024 Service Provider Switches User Guide 122
7
The Port Parameters
area
contains the following fields:
• Unit No. — Indicates the stacking member for which the port authentication
details are displayed.
• Port — Defines the port number for which advanced port-based
authentication is enabled.
• Host Authentication— Indicates whether multiple users are enabled on the
port. Multiple users must be enabled in order to either disable the ingress-
filter, or to use port-lock security on the selected port. Changing the port
mode is only relevant if 802.1x authentication is disabled (see
802.1x
Settings
). The possible field values are:
-
Single User
— A single, specific, authorized host can get access to the
port. Port security cannot be enabled on a Single User port.
-
Multiple
Host
— Multiple users are enabled on the port.
Multiple, specific, authorized hosts can get access to the port. Filtering is
based on the source MAC address. If only one of the specified hosts is
successfully authorized, all the other specified hosts will be granted
network access. If the port is blocked, all specified clients are denied
access to the network. Multiple Hosts mode is only available if the
802.1x Settings
’ Status Port Control is defined as Auto.
-
Multi-Session
— Enables more than one authorized host to access the
port. Filtering is based on the source MAC address. Each specific host
must be successfully authorized in order to receive network access. In
this mode, packets are not encrypted, and after successful
authentication, filtering is based on the source MAC address only.
Port security cannot be enabled on a Multi-session port.
• Action on Violation — Defines the action to be applied to packets arriving
from a host whose MAC address is not the supplicant MAC address. The
possible field values are:
-
Discard
— Discards the packets.
-
Forward
— Forwards the packet.
-
Shutdown
— Discards the packets and shuts down the port. The port
remains shut down until reactivated, or until the device is reset.
To Next Page
Loading...
Need help?
General
