Home » Cisco Manuals » Hubs & Switches » Cisco HWIC-4ESW » Manual Viewer

Cisco HWIC-4ESW User Guide - Page 20

Command or Action, Purpose, aaa authentication dot1x, default, interface, dot1x port-control auto - etherswitch interface cards

UPC - 746320953731

Add to My Manuals
Save this manual to your list of manuals

Page 20 highlights

How to Configure EtherSwitch HWICs Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards 3. aaa authentication dot1x {default | listname} method1 [method2...] 4. interface interface-type interface-number 5. dot1x port-control auto 6. end 7. show dot1x 8. copy running-config startup-config DETAILED STEPS Command or Action Step 1 enable Step 2 Example: Router> enable configure terminal Purpose Enables privileged EXEC mode. • Enter your password if prompted. Enters global configuration mode. Step 3 Example: Router# configure terminal aaa authentication dot1x {default | listname} method1 [method2...] Example: Router(config)# aaa authentication dot1x default newmethod Step 4 interface interface-type interface-number Step 5 Example: Router(config)# interface fastethernet 0/1/3 dot1x port-control auto Example: Router(config-if)# dot1x port-control auto Step 6 end Creates an 802.1x authentication method list. • To create a default list that is used when a named list is not specified in the authentication command, use the default keyword followed by the methods that are to be used in default situations. The default method list is automatically applied to all interfaces. • Enter at least one of these keywords: - group radius-Use the list of all RADIUS servers for authentication. - none-Use no authentication. The client is automatically authenticated without the switch using the information supplied by the client. Specifies the interface to be enabled for 802.1x authentication and enters interface configuration mode. • Enter the interface type and interface number. Enables 802.1x on the interface. • For feature interaction information with trunk, dynamic, dynamic-access, EtherChannel, secure, and SPAN ports see the "802.1x Configuration Guidelines" section on page 19. Returns to privileged EXEC mode. Example: Router(config-if)# end 20

Section	Page
Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards	1
Finding Feature Information	1
Contents	2
Prerequisites for EtherSwitch HWICs	2
Restrictions for EtherSwitch HWICs	2
Prerequisites for Installing Two Ethernet Switch Network Modules in a Single Chassis	3
Information About EtherSwitch HWICs	3
VLANs	3
Inline Power for Cisco IP Phones	4
Layer 2 Ethernet Switching	4
802.1x Authentication	4
Spanning Tree Protocol	4
Cisco Discovery Protocol	4
Switched Port Analyzer	4
IGMP Snooping	4
Storm Control	4
Intrachassis Stacking	5
Fallback Bridging	5
Default 802.1x Configuration	5
How to Configure EtherSwitch HWICs	6
Configuring VLANs	7
Adding a VLAN Instance	7
Deleting a VLAN Instance from the Database	7
Configuring VLAN Trunking Protocol	8
Configuring a VTP Server	8
Configuring a VTP Client	9
Disabling VTP (VTP Transparent Mode)	10
Configuring Layer 2 Interfaces	11
Configuring a Range of Interfaces	11
Defining a Range Macro	12
Configuring Layer 2 Optional Interface Features	13
Configuring 802.1x Authentication	19
Enabling 802.1x Authentication	19
Configuring the Switch-to-RADIUS-Server Communication	21
Enabling Periodic Reauthentication	23
Changing the Quiet Period	24
Changing the Switch-to-Client Retransmission Time	25
Setting the Switch-to-Client Frame-Retransmission Number	26
Enabling Multiple Hosts	27
Resetting the 802.1x Configuration to the Default Values	28
Displaying 802.1x Statistics and Status	29
Configuring Spanning Tree	29
Enabling Spanning Tree	30
Configuring Spanning Tree Port Priority	31
Configuring Spanning Tree Port Cost	32
Configuring the Bridge Priority of a VLAN	33
Configuring Hello Time	34
Configuring the Forward-Delay Time for a VLAN	35
Configuring the Maximum Aging Time for a VLAN	36
Configuring the Root Bridge	36
Configuring MAC Table Manipulation	38
Enabling Known MAC Address Traffic	38
Creating a Static Entry in the MAC Address Table	39
Configuring and Verifying the Aging Timer	40
Configuring Cisco Discovery Protocol	41
Enabling Cisco Discovery Protocol	41
Enabling CDP on an Interface	42
Monitoring and Maintaining CDP	43
Configuring the Switched Port Analyzer (SPAN)	44
Configuring the SPAN Sources	44
Configuring SPAN Destinations	45
Configuring Power Management on the Interface	46
Configuring IP Multicast Layer 3 Switching	47
Enabling IP Multicast Routing Globally	47
Enabling IP Protocol-Independent Multicast (PIM) on Layer 3 Interfaces	48
Verifying IP Multicast Layer 3 Hardware Switching Summary	49
Verifying the IP Multicast Routing Table	50
Configuring IGMP Snooping	51
Enabling or Disabling IGMP Snooping	51
Enabling IGMP Immediate-Leave Processing	52
Statically Configuring an Interface to Join a Group	53
Configuring a Multicast Router Port	55
Configuring Per-Port Storm Control	56
Enabling Per-Port Storm Control	56
Disabling Per-Port Storm Control	58
Configuring Stacking	59
Configuring Fallback Bridging	61
Creating a Bridge Group	61
Preventing the Forwarding of Dynamically Learned Stations	63
Configuring the Bridge Table Aging Time	64
Filtering Frames by a Specific MAC Address	65
Adjusting Spanning-Tree Parameters	66
Adjusting BPDU Intervals	70
Monitoring and Maintaining the Network	75
Configuring Separate Voice and Data Subnets	76
Configuring a Single Subnet for Voice and Data	77
Managing the EtherSwitch HWIC	78
Adding Trap Managers	78
Configuring IP Information	79
Enabling Switch Port Analyzer	82
Managing the ARP Table	84
Managing the MAC Address Tables	84
Removing Dynamic Addresses	86
Adding Secure Addresses	87
Removing a Secure Address	87
Configuring Static Addresses	88
Removing a Static Address	89
Clearing All MAC Address Tables	90
Configuration Examples for EtherSwitch HWICs	90
Range of Interface: Examples	91
Single Range Configuration: Example	91
Range Macro Definition: Example	91
Optional Interface Feature: Examples	91
Interface Speed: Example	92
Setting the Interface Duplex Mode: Example	92
Adding a Description for an Interface: Example	92
Stacking: Example	92
VLAN Configuration: Example	92
VLAN Trunking Using VTP: Example	93
Spanning Tree: Examples	93
Spanning-Tree Interface and Spanning-Tree Port Priority: Example	93
Spanning-Tree Port Cost: Example	94
Bridge Priority of a VLAN: Example	95
Hello Time: Example	95
Forward-Delay Time for a VLAN: Example	95
Maximum Aging Time for a VLAN: Example	95
Spanning Tree: Examples	95
Spanning Tree Root: Example	96
MAC Table Manipulation: Example	96
Switched Port Analyzer (SPAN) Source: Examples	96
SPAN Source Configuration: Example	96
SPAN Destination Configuration: Example	96
Removing Sources or Destinations from a SPAN Session: Example	96
IGMP Snooping: Example	97
Storm-Control: Example	98
Ethernet Switching: Examples	99
Subnets for Voice and Data: Example	99
Inter-VLAN Routing: Example	99
Single Subnet Configuration: Example	100
Ethernet Ports on IP Phones with Multiple Ports: Example	100
Additional References	100
Related Documents	101
Standards	102
MIBs	102
RFCs	102
Technical Assistance	102

Match case Limit results 1 per page

Cisco HWIC-4ESW and HWIC-D-9ESW EtherSwitch Interface Cards

How to Configure EtherSwitch HWICs

aaa authentication dot1x

{

default

listname

}

method1

[

method2

...]

interface

interface-type

interface-number

dot1x port-control auto

end

show dot1x

copy running-config startup-config

DETAILED STEPS

Command or Action

Purpose

Step 1

enable

Example:

Router> enable

Enables privileged EXEC mode.

•

Enter your password if prompted.

Step 2

configure

terminal

Example:

Router# configure terminal

Enters global configuration mode.

Step 3

aaa authentication dot1x

{

default

listname

}

method1

[

method2...

]

Example:

Router(config)# aaa authentication dot1x

default newmethod

Creates an 802.1x authentication method list.

•

To create a default list that is used when a named list is

not

specified in the

authentication

command, use the

default

keyword followed by the methods that are to be

used in default situations. The default method list is

automatically applied to all interfaces.

•

Enter at least one of these keywords:

–

group radius

—Use the list of all RADIUS servers

for authentication.

–

none

—Use no authentication. The client is

automatically authenticated without the switch

using the information supplied by the client.

Step 4

interface

interface-type interface-number

Example:

Router(config)# interface fastethernet 0/1/3

Specifies the interface to be enabled for 802.1x

authentication and enters interface configuration mode.

•

Enter the interface type and interface number.

Step 5

dot1x port-control auto

Example:

Router(config-if)# dot1x port-control auto

Enables 802.1x on the interface.

•

For feature interaction information with trunk,

dynamic, dynamic-access, EtherChannel, secure, and

SPAN ports see the

“802.1x Configuration Guidelines”

section on page 19

Step 6

end

Example:

Router(config-if)# end

Returns to privileged EXEC mode.