Table of Contents
Advertisement
5 - 26 WiNG 5.5 Access Point System Reference Guide
NOTE: Some vendor solutions with VRRP enabled send ARP packets with Ethernet
SMAC as a physical MAC and inner ARP SMAC as VRRP MAC. If this configuration is
enabled, a packet is allowed, despite a conflict existing.
16. Set the following
Host Mode
Guest VLAN
Port Control
Re Authenticate
Max Reauthenticate
Count
Maximum Request
Quiet Period
Reauthenticate
Period
Port MAC
Authentication
17. Select the
Enable
used when authenticating users on this port. Use the
entered in the
18. Select the
Spanning Tree
Spanning Tree Protocol (STP) (IEEE 802.1D standard) configures a meshed network for robustness by eliminating loops
within the network and calculating and storing alternate paths to provide fault tolerance.
STP calculation happens when a port comes up. As the port comes up and STP calculation happen, the port is set to Blocked
state. In this state, no traffic can pass through the port. Since STP calculations take up to a minute to complete, the port is
not operational there by effecting the network behind the port. Once the STP calculation is complete, the port's state is
changed to Forwarding and traffic is allowed.
Rapid Spanning Tree Protocol (RSTP) (IEEE 802.1w standard) is an evolution over the standard STP where the primary aim
was to reduce the time taken to respond to topology changes while being backward compatible with STP. PortFast quickly
changes the port state from Blocked to Forwarding to allow traffic while the STP calculation occurs.
802.1X
Settings:
Use the drop-down menu to select the host mode configuration to apply to this port. Options
include single-host or multi-host. The default setting is single-host.
Specify a guest VLAN for this port from 1 - 4094. This is the VLAN traffic is bridged on if this
port is unauthorized and the guest VLAN is globally enabled.
Use the drop-down menu to set the port control state to apply to this port. Options include
force-authorized, force-unauthorized and automatic. The default setting is port-authorized.
Select this setting to force clients to reauthenticate on this port. The default setting is disabled,
thus clients do not need to reauthenticate for connection over this port until this setting is
enabled.
Set the maximum reauthentication attempts (1 - 10) before this port is moved to unauthorized.
The default setting is 2.
Set the maximum number of authentication requests (1 - 10) before returning a failed message
to the requesting client. The default setting is 2.
Set the quiet period for this port from 1 - 65,535 seconds. This is the maximum wait time 802.1x
waits upon a failed authentication attempt. The default setting is 60 seconds.
Use the spinner control to set the reauthentication period for this port from 1 - 65,535 seconds.
The default setting is 60 seconds.
When enabled, a port's MAC address is authenticated, as only one MAC address is supported
per wired port. When successfully authenticated, packets from the source are processed.
Packets from all other sources are dropped. Port MAC authentication is supported on RFS4000,
RFS6000 model controllers and NX4500, NX6500 and NX9000 series service platforms.
Port MAC authentication may be enabled on ports in conjunction with Wired 802.1x settings
for a MAC Authentication AAA policy.
option within the
802.1x supplicant (client) feature
Password
field.
tab.
to enable a username and password pair to be
Show
option to view the actual characters comprising the password
Hide quick links:
Advertisement
Table of Contents
