Troubleshooting guide

ManualsBrandsAlaxala ManualsComputer equipmentAX1240S Series

3. Troubleshooting Functional Failures During Operation

No. Items to check and commands Action

4 Use the show

mac-authentication

statistics operation command

to check the communication status

with the RADIUS server.

 If the value displayed for TxTotal under [RADIUS

frames] is 0, check whether the following configurations

are specified correctly:

aaa authentication mac-authentication default

mac-authentication radius-server host or

radius-server host

 If fixed VLAN mode or dynamic VLAN mode is set, go to No.

 For other cases, go to No. 6.

5 Check the setting of the

authentication IPv4 access list.

[Fixed VLAN mode] [Dynamic VLAN mode]

 If an unauthenticated terminal sends certain types of packets

to destinations outside the Switch, make sure an

authentication IPv4 access list is set.

When both a standard access list and an authentication IPv4

access list are set for an authenticating port, make sure the

filtering conditions in the authentication IPv4 access list are

also set in the standard access list.

 Make sure any is not set for the destination IP address in the

filtering condition in the authentication IPv4 access list.

 For other cases, go to No. 6.

6 Use the show

mac-authentication

statistics operation command

to check whether the MAC-based

authentication statistics are

displayed.

 If the MAC-based authentication statistics are not displayed,

go to No. 7.

 For other cases, go to No. 8.

7 Check whether the

mac-authentication

system-auth-control

configuration command has been

set.

 If the mac-authentication system-auth-control

configuration command has not been set, set the command.

 For other cases, go to No. 8.

8 Execute the show

mac-authentication logging

operation command and check for

operation problems.

If the following operation log data is displayed with operation log

type LOGIN, authentication has failed:

 Login failed : xxxxxxxxxxx

Check the operation log, and review the settings of the

RADIUS server, internal MAC authentication DB, and

configuration.

For details about the operation log, see the Operation Command

Reference.

[Fixed VLAN mode] [Dynamic VLAN mode]

 If authentication information for the port to which the

authentication terminal is connected is not displayed, check

whether the authenticating port has been configured

correctly by using the mac-authentication port

configuration command.

Common to MAC-based authentication

 Make sure the authenticating port to which the terminal is

connected is neither in the link-down status nor shut down.

 For other cases, check the MAC-based authentication

configuration.