Chapter

Multi-Device Port Authentication

9

 

 

 

 

Table 54 lists the multi-device port authentication features supported on Brocade ICX 6650. These features are supported in the Layer 2, base Layer 3, edge Layer 3, and full Layer 3 software images, except where explicitly noted.

TABLE 54 Supported Multi-device port authentication (MDPA) features

Feature

Brocade ICX 6650

 

 

Multi-Device Port Authentication

Yes

 

 

Support for Multi-Device Port

 

Authentication together with:

 

Dynamic VLAN assignment

Yes

Dynamic ACLs

Yes

802.1X

Yes

Denial of Service (DoS) attack

Yes

 

protection

 

Source guard protection

Yes

ACL-per-port-per-VLAN

Yes

 

 

Authenticating multiple MAC addresses on

Yes

an interface

 

 

 

Specifying the format of the MAC

Yes

addresses sent to the RADIUS server

 

 

 

Specifying the authentication-failure

Yes

action

 

 

 

Password override

Yes

 

 

Specifying the RADIUS timeout action

Yes

 

 

SNMP Traps

Yes

 

 

MAC Address Filters

Yes

 

 

Aging time for blocked MAC Addresses

Yes

 

 

 

Multi-device port authentication is a way to configure a Brocade device to forward or block traffic from a MAC address based on information received from a RADIUS server.

How multi-device port authentication works

Multi-device port authentication is a way to configure a Brocade device to forward or block traffic from a MAC address based on information received from a RADIUS server.

Brocade ICX 6650 Security Configuration Guide

231

53-1002601-01

 

Page 251
Image 251
Brocade Communications Systems 6650 manual Multi-Device Port Authentication, How multi-device port authentication works