![Qtech QSW-8200-52T-AC — команды для настройки доступа 802.1x: руководство пользователя [40/114]](/img/pdf.png)
Qtech QSW-8200-52T-AC — команды для настройки доступа 802.1x: руководство пользователя [40/114]
Превью страниц
Страница 40 /
114
![Qtech QSW-8200-52T-AC [40/114] Dot1x max user userbased](/views2/1596645/page40/bg28.png)
User Manual
Chapter 2. Commands for 802.1x 40
www.qtech.ru
MAC based access control, users could access no network resources before
authentication.
If TrustView management system is available, the free resource can be configured in
TrustView server, and the TrustView server will distribute the configuration to the
switches.
To be noticed, only one free resource can be configured for the overall network.
Example: To configure the free resource segment as 1.1.1.0, the mask is 255.255.255.0.
Switch(Config)#dot1x user free-resource 1.1.1.0 255.255.255.0
2.16 dot1x max-user macbased
Command: dot1x max-user macbased <number>
no dot1x max-user macbased
Function: Sets the maximum users allowed connect to the port; the “no dot1x max-
user” command restores the default setting.
Parameters: <number> is the maximum users allowed, the valid range is 1 to 256.
Command mode: Port configuration Mode.
Default: The default maximum user allowed is 1.
Usage Guide: This command is available for ports using MAC-based access
management, if MAC address authenticated exceeds the number of allowed user,
additional users will not be able to access the network.
Example: Setting port 1/0/3 to allow 5 users.
Switch(Config-If-Ethernet1/0/3)#dot1x max-user macbased 5
2.17 dot1x max-user userbased
Command: dot1x max-user userbased <number>
no dot1x max-user userbased
Function: Set the upper limit of the number of users allowed access the specified port
when using user-based access control mode; the no command is used to reset the
default value.
Parameters: <number> the maximum number of users allowed to access the network,
ranging from 1 to 1~256.
Command Mode: Port Mode.
Default Settings: The maximum number of users allowed to access each port is 10 by
default.
User Guide: This command can only take effect when the port adopts user-based
access control mode. If the number of authenticated users exceeds the upper limit of
the number of users allowed access the network, those extra users can not access the
network.
Examples: Setting port 1/0/3 to allow 5 users.
Содержание
- Content p.2
- Show pppoe intermediate agent info 97 p.7
- Show pppoe intermediate agent identifier string option delimiter 97 p.7
- Show pppoe intermediate agent access node id 97 p.7
- Pppoe intermediate agent vendor tag strip 96 p.7
- Pppoe intermediate agent type tr 101 circuit id identifier string option delimiter 95 p.7
- Pppoe intermediate agent type tr 101 circuit id access node id 95 p.7
- Pppoe intermediate agent type self defined remoteid 94 p.7
- Pppoe intermediate agent type self defined circuit id 94 p.7
- Pppoe intermediate agent trust 93 p.7
- Commands for savi 99 p.7
- Commands for monitor and debug 105 p.7
- Chapter 11 commands for savi 99 p.7
- Chapter 1 commands for acl p.9
- Absolute periodic periodic p.9
- Access list deny preemption p.10
- Access list ip extended p.10
- Absolute start p.10
- Access list mac extended p.12
- Access list ip standard p.12
- Access list mac ip extended p.13
- Access list mac standard p.15
- Ip access extended p.16
- Firewall default p.16
- Firewall p.16
- Clear access group in out statistic interface p.16
- Ipv6 access list p.17
- Ip access standard p.17
- Ipv6 access standard p.18
- Ipv6 access extended p.19
- Ip ipv6 mac mac ip access group p.19
- Mac access extended p.20
- Ip ipv6 mac mac ip access group interface mode p.20
- Permit deny ip extended p.21
- Mac ip access extended p.21
- Permit deny ip standard p.22
- Permit deny ipv6 extended p.23
- Permit deny mac extended p.24
- Permit deny ipv6 standard p.24
- Permit deny mac ip extended p.26
- Show access lists p.28
- Show access group p.29
- Show ipv6 access lists p.30
- Show firewall p.30
- Show time range p.31
- Time range p.31
- Debug dot1x error p.33
- Debug dot1x detail p.33
- Chapter 2 commands for 802 x p.33
- Debug dot1x packet p.34
- Debug dot1x fsm p.34
- Dot1x eapor enable p.35
- Dot1x accept mac p.35
- Dot1x ipv6 passthrough p.36
- Dot1x guest vlan p.36
- Dot1x enable p.36
- Dot1x macfilter enable p.37
- Dot1x macbased guest vlan p.37
- Dot1x max req p.38
- Dot1x macbased port down flush p.38
- Dot1x user allow movement p.39
- Dot1x user free resource p.39
- Dot1x max user userbased p.40
- Dot1x max user macbased p.40
- Dot1x portbased mode single mode p.41
- Dot1x port control p.41
- Dot1x privateclient enable p.42
- Dot1x port method p.42
- Dot1x re authentication p.43
- Dot1x re authenticate p.43
- Dot1x privateclient protect enable p.43
- Dot1x timeout re authperiod p.44
- Dot1x timeout quiet period p.44
- Dot1x web authentication ipv6 passthrough p.45
- Dot1x web authentication enable p.45
- Dot1x unicast enable p.45
- Dot1x timeout tx period p.45
- Show dot1x p.46
- Dot1x web redirect enable p.46
- Dot1x web redirect p.46
- User control limit ipv6 p.48
- User control limit ipv4 p.48
- Function of mac and ip in port vlan p.50
- Debug ipv6 nd count p.50
- Debug ip arp count p.50
- Chapter 3 commands for the number limitation p.50
- Debug switchport mac count p.51
- Debug switchport arp count p.51
- Debug vlan mac count p.52
- Debug switchport nd count p.52
- Ipv6 nd dynamic maximum p.53
- Ip arp dynamic maximum p.53
- Mac address query timeout p.54
- Show arp dynamic count p.54
- Show nd dynamic count p.55
- Show mac address dynamic count p.55
- Switchport mac address dynamic maximum p.56
- Switchport arp dynamic maximum p.56
- Switchport mac address violation p.57
- Vlan mac address dynamic maximum p.58
- Switchport nd dynamic maximum p.58
- Chapter 4 commands for am configuration p.60
- Am port p.60
- Am ip pool p.60
- Am enable p.60
- Show am p.61
- No am all p.61
- Am mac ip pool p.61
- Aaa accounting enable p.63
- Chapter 5 commands for radius p.63
- Aaa enable p.63
- Aaa accounting update p.63
- Debug aaa packet p.64
- Debug aaa detail attribute p.64
- Debug aaa error p.65
- Debug aaa detail event p.65
- Debug aaa detail connection p.65
- Radius nas ipv6 p.66
- Radius nas ipv4 p.66
- Radius server accounting host p.67
- Radius server authentication host p.68
- Radius server retransmit p.69
- Radius server key p.69
- Radius server dead time p.69
- Radius server accounting interim update timeout p.70
- Radius server timeout p.70
- Show aaa authenticated user p.71
- Show aaa config p.72
- Show aaa authenticating user p.72
- Show radius authenticating user count p.73
- Show radius authenticated user count p.73
- Show radius count p.74
- Ip http secure server p.75
- Ip http secure port p.75
- Ip http secure ciphersuite p.75
- Chapter 6 commands for ssl configuration p.75
- Show ip http secure server status p.76
- Debug ssl p.76
- Show ipv6 security ra p.77
- Ipv6 security ra enable p.77
- Chapter 7 commands for ipv6 security ra p.77
- Debug ipv6 security ra p.78
- Show vacl vlan p.79
- Clear vacl statistic vlan p.79
- Chapter 8 commands for vlan acl p.79
- Vacl ipv6 access group p.81
- Vacl ip access group p.81
- Vacl mac ip access group p.82
- Vacl mac access group p.82
- Clear mac authentication bypass binding p.83
- Chapter 9 commands for mab p.83
- Authentication mab p.83
- Mac authentication bypass enable p.84
- Mac authentication bypass binding limit p.84
- Debug mac authentication bypass p.84
- Mac authentication bypass spoofing garp check p.85
- Mac authentication bypass guest vlan p.85
- Mac authentication bypass timeout linkup period p.85
- Mac authentication bypass timeout quiet period p.86
- Mac authentication bypass timeout offline detect p.86
- Mac authentication bypass username format p.87
- Mac authentication bypass timeout stale period p.87
- Mac authentication bypass timeout reauth period p.87
- Show mac authentication bypass p.88
- Pppoe intermediate agent p.91
- Debug pppoe intermediate agent packet receive send interface p.91
- Chapter 10 commands for pppoe intermediate agent p.91
- Pppoe intermediate agent port p.92
- Pppoe intermediate agent delimiter p.92
- Pppoe intermediate agent circuit id p.92
- Pppoe intermediate agent trust p.93
- Pppoe intermediate agent remote id p.93
- Pppoe intermediate agent format p.93
- Pppoe intermediate agent type self defined remoteid p.94
- Pppoe intermediate agent type self defined circuit id p.94
- Pppoe intermediate agent type tr 101 circuit id identifier string option p.95
- Pppoe intermediate agent type tr 101 circuit id access node id p.95
- Delimiter p.95
- Pppoe intermediate agent vendor tag strip p.96
- Show pppoe intermediate agent info p.97
- Show pppoe intermediate agent identifier string option delimiter p.97
- Show pppoe intermediate agent access node id p.97
- Commands for savi p.99
- Chapter 11 commands for savi p.99
- Commands for monitor and debug p.105
- Debug webportal error p.109
- Debug webportal binding p.109
- Clear webportal binding p.109
- Chapter 12 commands for web portal configuration p.109
- Debug webportal packet p.110
- Debug webportal event p.110
- Show webportal p.111
- Ip dhcp snooping binding webportal p.111
- Webportal binding limit p.112
- Show webportal binding p.112
- Webportal nas ip p.113
- Webportal enable port p.113
- Webportal enable p.113
- Webportal redirect p.114
Похожие устройства
-
Qtech QSW-1500-20EF-POE-ACТехнические характеристики -
Qtech QSW-1500-19EF-POE-AC V3Описание параметров
-
Qtech QSW-1500-10E-POE-DОписание параметров
-
Qtech QSW-1500-6E-POE-DПодробное техническое описание
-
Qtech QSW-4610Инструкция пользователя -
Qtech QSW-3750 REV. RИнструкция пользователя
-
Qtech QSW-3750Руководство по эксплуатации
-
Qtech QSW-3420Инструкция по применению
-
Qtech QSW-9000-01Руководство по управлению -
Qtech QSW-9000-01Руководство по настройке -
Qtech QSW-9000-01Руководство по настройке управления -
Qtech QSW-9000-01Руководство по командам
Изучите команды для настройки MAC и user-based доступа в сети 802.1x. Узнайте, как управлять максимальным количеством пользователей и конфигурацией ресурсов.