EasyManuals Logo

HP PROCURVE 2910AL User Manual

HP PROCURVE 2910AL
594 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #229 background imageLoading...
Page #229 background image
Configuring RADIUS Server Support for Switch Services
Configuring and Using RADIUS-Assigned Access Control Lists
Note For syntax details on RADIUS-assigned ACLs, refer to the next section,
“Format Details for ACEs Configured in a RADIUS-Assigned ACL”.
Client’s Username (802.1X or Web Authentication) Client’s Password (802.1X or Web Authentication)
mobile011 Auth-Type:= Local, User-Password == run101112
HP-IP-FILTER-RAW = “permit in tcp from any to 10.10.10.101”,
HP-IP-FILTER-RAW += “deny in tcp from any to any”,
HP-IP-FILTER-RAW += “permit in ip from any to any”
08E99C4F0019 Auth-Type:= Local, User-Password == 08E99C4F0019
Client’s Username (MAC Authentication) Client’s Password (MAC Authentication)
HP-IP-FILTER-RAW = “permit in tcp from any to host 10.10.10.101 80”,
HP-IP-FILTER-RAW += “deny in tcp from any to any 80”,
HP-IP-FILTER-RAW += “permit in ip from any to any”
Note that when the client MAC address is used for authentication, this address is used
in both the username and password spaces in the entry.
Figure 6-6. Example of Configuring the FreeRADIUS Server To Support ACLs for the Indicated Clients
Format Details for ACEs Configured in a
RADIUS-Assigned ACL
Any instance of a RADIUS-assigned ACL is structured to filter authenticated
client traffic as follows:
Applies only to inbound client traffic on the switch port the authenticated
client is using.
Allows only the “any” source address (for any authenticated IP device
connected to the port).
Applies to all IP traffic from the authenticated client or to a specific type
of IP traffic type from the client. Options include TCP, UDP, or any other
type of IP traffic that is identified by an IP protocol number. (More
information on protocol numbers is provided in the following ACL syntax
description.) Has one of the following destination types:
A specific IP address
A contiguous series of IP address or an entire subnet
Any IP address
Where the traffic type is either TCP or UDP, the ACE can optionally
include one or more TCP or UDP port numbers.
6-23

Table of Contents

Other manuals for HP PROCURVE 2910AL

Preview: Configuration Guide
Configuration Guide194 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the HP PROCURVE 2910AL and is the answer not in the manual?

HP PROCURVE 2910AL Specifications

General IconGeneral
ModelHP ProCurve 2910al
Switching Capacity128 Gbps
Throughput95.2 Mpps
ManagementWeb, CLI, SNMP
Jumbo Frame SupportYes
ManageableYes
Power100-240 VAC
Power SupplyInternal
Operating Temperature0°C to 45°C (32°F to 113°F)
StackingYes
MAC Address Table Size32000 entries
Routing ProtocolRIP, OSPF
FeaturesIPv6, VLAN, QoS, ACLs
Operating Humidity15% to 95% non-condensing
Uplink Ports4
Power over EthernetYes (PoE+ models available)

Related product manuals