EasyManua.ls Logo

Ruijie RG-S2900G-E Series - Page 512

Ruijie RG-S2900G-E Series
943 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Configuration Guide 802.1x Configuration
Ruijie(config-if)# dot1x port-control auto
Ruijie(config)# end
When a port is set as a controlled port, only the EAP packets are allowed to pass; the packets to the CPU are also under
control.
If you hope that cpu can not receive non-EAP packet from any controlled port, you can separate management VLAN
from user VLAN.
Enabling Timed Re-authentication
The 802.1x can ask users for re-authentication at periodical intervals, to prevent authorized users from being used by
other users. This can also detect disconnection, making more accurate charging. In addition to the re-authentication
switch, you can also define the re-authentication interval, which is 3600 seconds by default. In the case of charging based
on duration, you should determine the re-authentication interval according to the specific network size, which should be
sufficient while as accurate as possible.
In the privileged EXEC mode, you can enable/disable re-authentication and set the re-authentication interval by
performing the following steps.
Command
Function
Ruijie(config)#dot1x re-authentication
Enable timed re-authentication.
Ruijie(config)#dot1x timeout re-authperiod seconds
Set the re-authentication interval.
Ruijie#show dot1x
Show the dot1x configurations.
You can use the no dot1x re-authentication command to disable timed re-authentication, and use the no dot1x timeout
re-authperiod command to restore the re-authentication interval to the default.
The following example enables re-authentication and sets the re-authentication interval as 1000 seconds.
Ruijie# configure terminal
Ruijie(config)# dot1x re-authentication
Ruijie(config)# dot1x timeout re-authperiod 1000
Ruijie(config)# end
Ruijie# show dot1x
802.1X Status: Disabled
Authentication Mode: EAP-MD5
Authed User Number: 0
Re-authen Enabled: Enabled
Re-authen Period: 1000 sec
Quiet Timer Period: 10 sec
Tx Timer Period: 3 sec
Supplicant Timeout: 3 sec
Server Timeout: 5 sec
Re-authen Max: 3 times
Maximum Request: 3 times
Filter Non-RG Supp: Disabled
Client Online Probe: Disabled

Table of Contents

Related product manuals