System information

ManualsBrandsAmer Networks ManualsNetworkingSS2GR2048IP

121

122

123

124

125

126

127

128

129

130

Publication date: Feb., 2012

Revision A1

- 122 -

guest‐vlan: ThecommandletsyouconfiguretheGuestVLANmode

Syntax:

guest-vlan disable

enable <1-4094> <1-255> allow_if_eapol_seen disable/ enable

Parameter :

disable: Disable Guest VLAN

Enable: Enable Guest VLAN

<1-4094>: Guest VLAN ID used when entering the Guest VLAN

<1-255>: The number of times a Request Identity EAPOL frame is sent

without reasponse before considering entering the Guest VLAN

allow_if_eapol_seen: The switch remembers if an EAPOL frame has

been received on the port for the life-time of the port. Once the switch

considers whether to enter the Guest VLAN, it will first check if this

option is enabled or disabled

disable: The Guest VLAN can only be entered if no EAPOL frames have

been received on a port for the lifetime of the port

enable: The Guest VLAN can be entered even if an EAPOL frame has

been received during the lifetime of the port

EXAMPLE:

hold‐time: Thecommandletsyouconfigurethetimeinseconds

beforeaMAC‐addressthatfailedauthenticationgetsa

newauthenticationchance

Syntax:

old-time <10-1000000>

Parameter :

<10-1000000>: Hold time before MAC addresses that failed

authentication expire

EXAMPLE:

Switch(nas)# guest-vlan enable 90 150 allow_if_eapol_seen enable

Switch(nas)# show config

Mode : Disabled

Reauthentication : Disabled

Reauthentication Period : 3600

EAPOL Timeout : 8888

Age Period : 9999

Hold Time : 10

RADIUS QoS : Disabled

RADIUS VLAN : Disabled

Guest VLAN : Enabled

Guest VLAN ID : 90

Maximum Reauthentication Count : 150

Allow Guest VLAN if EAPOL Frame Seen : Enabled