EasyManuals Logo
Home>HPE>Network Router>FlexNetwork MSR Series

HPE FlexNetwork MSR Series Comware 5 Security Configuration Guide

HPE FlexNetwork MSR Series
547 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #153 background imageLoading...
Page #153 background image
140
# Execute the display interface command, and you can see that the port security feature has
disabled the port.
[Device-Ethernet1/1] display interface ethernet 1/1
Ethernet1/1 current state: DOWN (Port Security Disabled)
IP Packet Frame Type: PKTFMT_ETHNT_2, Hardware Address: 000f-cb00-5558
Description: Ethernet1/1 Interface
......
The port should be re-enabled 30 seconds later.
[Device-Ethernet1/1] display interface ethernet 1/1
Ethernet1/1 current state: UP
IP Packet Frame Type: PKTFMT_ETHNT_2, Hardware Address: 000f-cb00-5558
Description: Ethernet1/1 Interface
......
Delete several secure MAC addresses, and you can see that the port security mode of the port
changes to autoLearn, and the port can learn MAC addresses again.
Configuring the userLoginWithOUI mode
Network requirements
As shown in Figure 51, a client is connected to the Device through port Ethernet 1/1. The Device
authenticates the client with a RADIUS server. If the authentication succeeds, the client is authorized
to access the Internet.
• The RADIUS server at 192.168.1.2 functions as the primary authentication server and the
secondary accounting server, and the RADIUS server at 192.168.1.3 functions as the
secondary authentication server and the primary accounting server. The shared key for
authentication is name, and that for accounting is money.
• All users use the default authentication, authorization, and accounting methods of ISP domain
sun, which can accommodate up to 30 users.
• The RADIUS server response timeout time is 5 seconds and the maximum number of RADIUS
packet retransmission attempts is 5. The Device sends real-time accounting packets to the
RADIUS server at 15–minute intervals, and sends usernames without domain names to the
RADIUS server.
Configure port Ethernet 1/1 of the Device to:
• Allow only one 802.1X user to be authenticated.
• Allow up to 16 OUI values to be configured and allow one terminal that uses any of the OUI
values to access the port in addition to an 802.1X user.
Figure 51 Network diagram

Table of Contents

Other manuals for HPE FlexNetwork MSR Series

Preview: Configuration Guide
Configuration Guide861 pages
Preview: Comware 7 Layer 3 - Ip Services Configuration Guides
Comware 7 Layer 3 - Ip Services Configuration Guides554 pages
Preview: Guide
Guide213 pages
Preview: Command Reference
Command Reference120 pages
Preview: Comware 5 Layer 2 - Wan Access Configuration Guide
Comware 5 Layer 2 - Wan Access Configuration Guide420 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the HPE FlexNetwork MSR Series and is the answer not in the manual?

HPE FlexNetwork MSR Series Specifications

General IconGeneral
BrandHPE
ModelFlexNetwork MSR Series
CategoryNetwork Router
LanguageEnglish

Related product manuals