532 802.1x Commands
Examples
The following command enables multiple hosts (clients) on an 802.1X-authorized port.
dot1x single-host-violation
The dot1x single-host-violation Interface Configuration mode command configures the action to be
taken, when a station whose MAC address is not the supplicant MAC address, attempts to access the
interface. Use the no form of this command to return to default.
Syntax
•
dot1x single-host-violation
{
forward
|
discard |
discard-shutdown
} [
trap
seconds
]
• no port dot1x single-host-violation
•
forward
— Forwards frames with source addresses that are not the supplicant address, but does not
learn the source addresses.
•
discard
— Discards frames with source addresses that are not the supplicant address.
•
discard-shutdown
— Discards frames with source addresses that are not the supplicant address.
The port is also shut down.
•
trap
— Indicates that SNMP traps are sent.
•
seconds
— Specifies the minimum amount of time in seconds between consecutive traps. (Range:
1 -
1000000
)
Default Configuration
Frames with source addresses that are not the supplicant address are discarded.
No traps are sent.
Command Mode
Interface Configuration (Ethernet) mode.
User Guidelines
The command is relevant when multiple hosts is disabled and the user has been successfully
authenticated.
Examples
The following example forwards frames with source addresses that are not the supplicant address and
sends consecutive traps at intervals of 100 seconds.
Console(config-if)# dot1x multiple-hosts
Console(config-if)# dot1x single-host-violation forward trap 100
book.book Page 532 Thursday, December 18, 2008 7:40 PM
To Next Page
Need help?
General
Weight and Dimensions
