Sample 802.1X configurations

Sample 802.1X configurations

This section illustrates a sample point-to-point configuration and a sample hub configuration that use 802.1X port security.

Point-to-point configuration

Figure 6 illustrates a sample 802.1X configuration with Clients connected to three ports on the Brocade device. In a point-to-point configuration, only one 802.1X Client can be connected to each port.

FIGURE 6 Sample point-to-point 802.1X configuration

RADIUS Server

(Authentication Server)

192.168.9.22

Brocade Switch (Authenticator)

e1/2/1 e1/2/2 e1/2/3

Clients/Supplicants running 802.1X-compliant client software

Same point-to-point 802.1x configuration

The following commands configure the Brocade device in Figure 6

Brocade(config)# aaa authentication dot1x default radius

Brocade(config)# radius-server host 192.168.9.22 auth-port 1812 acct-port 1813 default key mirabeau dot1x

Brocade(config)# dot1x-enable ethernet 1/2/1 to 1/2/3 Brocade(config-dot1x)# re-authentication Brocade(config-dot1x)# timeout re-authperiod 2000 Brocade(config-dot1x)# timeout quiet-period 30 Brocade(config-dot1x)# timeout tx-period 60 Brocade(config-dot1x)# maxreq 6 Brocade(config-dot1x)# exit

Brocade(config)# interface ethernet 1/2/1 Brocade(config-if-e10000-1/2/1)# dot1x port-control auto Brocade(config-if-e10000-1/2/1)# exit

196

Brocade ICX 6650 Security Configuration Guide

 

53-1002601-01

Page 216
Image 216
Brocade Communications Systems 6650 manual Sample 802.1X configurations, Point-to-point configuration