To do…

 

Use the command…

 

 

Remarks

 

 

 

 

 

 

 

 

Optional

 

 

 

 

 

 

 

dot1x timer { handshake-period

The settings of 802.1x timers are as

 

 

 

 

 

follows.

 

 

 

 

 

 

 

handshake-period-value

 

z

handshake-period-value:

15

 

 

 

 

 

 

quiet-periodquiet-period-value

 

 

 

 

 

 

 

 

 

seconds

 

 

 

 

 

Set 802.1x timers

 

server-timeout

 

 

 

 

 

 

 

 

 

 

quiet-period-value: 60 seconds

 

 

 

 

server-timeout-value

 

z

 

 

 

 

 

 

 

server-timeout-value:

100

 

 

 

 

 

supp-timeoutsupp-timeout-value

 

z

 

 

 

 

 

tx-periodtx-period-value

 

 

seconds

 

 

 

 

 

 

 

ver-periodver-period-value }

 

z

supp-timeout-value: 30 seconds

 

 

 

 

 

 

 

z tx-period-value: 30 seconds

 

 

 

 

 

 

 

 

 

z ver-period-value: 30 seconds

 

 

 

 

 

Enable the quiet-period

 

 

Optional

 

 

 

 

 

 

dot1x quiet-period

By default, the quiet-period timer is

 

 

 

timer

 

 

disabled.

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

z

z

As for the dot1x max-usercommand, if you execute it in system view without specifying the interface-listargument, the command applies to all ports. You can also use this command in port view. In this case, this command applies to the current port only and the interface-listargument is not needed.

As for the configuration of 802.1x timers, the default values are recommended.

Advanced 802.1x Configuration

Advanced 802.1x configurations, as listed below, are all optional.

z

z z z z z

Configuration concerning iMC, including multiple network adapters detecting, proxy detecting, and so on.

Client version checking configuration DHCP–triggered authentication Guest VLAN configuration

802.1x re-authentication configuration Configuration of the 802.1x re-authentication timer

You need to configure basic 802.1x functions before configuring the above 802.1x features.

Configuring Proxy Checking

Follow these steps to configure proxy checking:

To do…

Use the command…

Remarks

Enter system view

system-view

 

 

 

 

 

Required

Enable proxy checking

dot1x supp-proxy-check

By default, the 802.1x proxy

function globally

{ logoff trap }

checking function is globally

 

 

disabled.

 

1-15

 

Page 236
Image 236
3Com WX3000 operation manual Advanced 802.1x Configuration, Configuring Proxy Checking