Troubleshooting guide

ManualsBrandsAlaxala ManualsComputer equipmentAX2400S series

191

192

193

194

195

196

197

198

199

200

3. Troubleshooting Functional Failures During Operation

123

Check the following for the accounting of MAC-based authentication.

Table 3-64: Checking the accounting of MAC-based authentication

3.13.4 Communication failures occurring when an authentication VLAN is

used

If a failure occurs when an authentication VLAN is used, isolate the cause of the problem

according to the following table.

Table 3-65: Failure analysis method for the authentication VLAN

2 Check the configuration of the access filter for

authentication.

Make sure the filter conditions required for communication

from unauthenticated terminals to destinations outside the

Switch have been set correctly by using the

authentication

ip access-group and ip access-list extended

configuration commands.

No. Items to check Action

1 Check whether authentication result account

logs have been correctly recorded.

• If no authentication state is displayed in the result of the

show mac-authentication login command, see

Table 3-62: Failure analysis method for MAC-based

authentication and take necessary action.

• If the logs are not recorded on the accounting server, go to

No. 2.

• If the logs are not recorded on the syslog server, go to No.

2Use the

show mac-authentication

statistics command to check the

communication status with the accounting

server.

• If the value displayed for

TxTotal under [Account

frames] is 0, check whether the aaa accounting

mac-authentication default start-stop group

radius, radius-server host, or

mac-authentication radius-server host

configuration command has been set correctly.

• For other cases, check the MAC-based authentication

configuration.

3 Check the syslog server configuration. Make sure the following configuration commands have been

set correctly.

• Make sure that the syslog server has been set by the

logging host command.

• Make sure that

aut has been set for the event type in the

logging event-kind command.

• Make sure that the

mac-authentication logging

enable command has been set.

No. Items to check and commands Action

1 Execute the

show logging command, and

check whether any hardware failure is

recorded in the operation log.

• If any hardware failure is recorded in the operation log,

replace the device.

• For other cases, go to No. 2.

2 Execute the

show fense server command to

make sure the VLAN is operating normally.

• If the error message Connection failed to VAA

program. is displayed, take action described in No. 8.

• For other cases, go to No. 3.

No. Items to check Action