EasyManua.ls Logo

Zte ZXR10 5250 Series - Page 274

Zte ZXR10 5250 Series
287 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
ZXR105250SeriesCongurationGuide
confignas
radiusisptestdefaultispenable
radiusisptestsharedsecretamtium
/*SharedkeynegotiatedwithcompanyB*/
radiusisptestaddaccounting10.150.12.101
/*AddressoftheauthenticationandaccountingserverofcompanyB*/
radiusisptestaddauthentication10.150.12.101
/*AddressoftheauthenticationandaccountingserverofcompanyB*/
radiusisptestclient172.16.0.181
/*ISPnameandIPaddressaccessingtheswitch*/
aaa-controlport1-24dot1xenable
aaa-controlport1-24accountingenable
aaa-controlport1-24port-modeauto
Whenthecongurationwascompleted,theauthenticationofsomecomputersinB1,B2
andB3timedout.
FaultAnalysis
Thestudents’accountsandcongurationwerecorrect,andthecongurationoftheZXR10
5250wascorrect.EvenifZTE’smaintenanceengineersreplacedthefaultyswitchwith
anewone,theproblemstillexisted.Thediagnosisresultwasthattheinterconnection
betweendevicesofZTEandcompanyBwasfaulty.
Bycapturingpackets,ZTE’smaintenanceengineersfoundthattheZXR105250senta
RadiusAccessRequestmessagetotheauthenticationandaccountingserverofcompany
B,butdidnotreceivearesponsemessage.Innormalcircumstance,theRadiusmessage
receivingandsendingprocedureisasfollows:
1.Whentheserveraccessestheswitch,theswitchsendsanAccessRequestmessage.
2.TheserverreturnsanAccessChallengemessage.
3.TheswitchsendsanAccessRequestmessageagain.
4.TheserverreturnsanAccessAcceptmessage.
5.TheswitchsendsanAccountingRequestmessage.
6.TheserverreturnsanAccountingResponsemessage.
BecausetheauthenticationdatapacketowscapturedonthetwosameZXR105250
deviceswerenotthesame,thediagnosisresultwasthatthecongurationofthe
authenticationandaccountingserverofcompanyBwasincorrect.Engineersofcompany
Bcheckedalarmsontheauthenticationandaccountingserver,andanalarm"APnot
supportuserauthtype”waslocated.Thatis,authenticationtypesoftheserverand
theswitchweredifferent.Whentheback-endcongurationoftheauthenticationand
accountingserverwaschecked,itwasfoundthatthesharedkeyontheswitchesof
buildingsB1,B2andB3wassetto“antium”,butthenegotiatedkeywas"amtium".
7-8
SJ-20131111172707-002|2013-11-27(R1.0)ZTEProprietaryandCondential

Table of Contents

Other manuals for Zte ZXR10 5250 Series

Preview: Command Reference
Command Reference708 pages

Related product manuals