Configure Cisco (802.1X) dot1x port Based Authentication for Wired Network
Introduction to 802.1X (dot1x) This post describes how to configure IEEE 802.1X port‐based authentication to prevent unauthorized devices (clients) from gaining access to the network. The IEEE 802.1X standard defines a client‐server‐based access control and authentication protocol that restricts unauthorized devices from connecting to a LAN through publicly accessible ports. The authentication server authenticates each client connected to a switch port before making available any services offered by the switch or the LAN With 802.1X port‐based authentication, the devices in the network have specific roles Supplicant – This is often software on a client device such as a PC. Authenticator – This is often a medium between the client device asking for access permission and an authentication server. In most cases, this is either a switch or a wireless access point. Authentication server -This is a RADIUS database. Configuring 802.1X (dot1x) Authentication The section describes [...]
Difference Between Collision Domain and Broadcast Domain
This tutorial is going to be focusing on two major things collision domains and broadcast domains. You should aware of two different types of domains when designing a LAN otherwise both of these domains can harm the performance of your network. If you are not aware of the difference between these two domains, this tutorial should help you out. Collision Domain A collision domain is a section of a network where data packets can collide with one another when being sent on a shared medium or through repeaters, in particular when using early versions of Ethernet the set of LAN devices whose frames could collide with one another. In Collision domain with hubs, bridges, repeaters and wireless access points as only one device can send and receive at a time. If more than one device tries sending or receiving, the information is lost and irrecoverable it will need to be resent. [...]
How to configure 802.1x (dot1x) on Cisco CatOS Switches
This document describes how to configure IEEE 802.1X port-based authentication to prevent unauthorized devices (clients) from gaining access to the network. In below example describes how to configure 802.1x (dot1x) port-based authentication on Cisco CatOS 6500 series switches. Cisco 802.1x also referred as dot1x. Step by Step Dot1x Configuration on Cisco CatOS switch Enable dot1x authentication on CatOS Switch set dot1x system-auth-control enable set dot1x quiet-period 30 set dot1x re-authperiod 30 Configure system name set system name Cisco_6509 Configure Radius Server for Authentication set radius server 10.50.100.1 auth-port 1812 primary set radius key openthedoor Configure Dot1x on Specific Switch Ports set port dot1x 3/45 port-control auto set port dot1x 3/46 port-control auto set port dot1x 3/47 port-control auto set port dot1x 3/48 port-control auto set port dot1x 3/45 re-authentication enable set port dot1x 3/46 re-authentication enable set port dot1x 3/47 re-authentication enable set port dot1x 3/48 re-authentication enable set port [...]
Find Amount of Packets Processed By the Cisco Gig-E Interface
Now we are going to find or see the amount of packets and type of packets processed by the Gigabit Ethernet Interface on Cisco Router. This command is useful for troubleshooting Gigabit Ethernet interfaces on Cisco Router. Show Counters Interface Command Simply use the show counters interface command. Login using telnet and type the command: Cisco_Router#sh counters interface GigabitEthernet 5/1 Find Amount of Packets Processed by Cisco Gigabit Ethernet Interface Cisco_Router#sh counters interface Gi5/1 64 bit counters: 0. rxHCTotalPkts = 75631693020 1. txHCTotalPkts = 77690922915 2. rxHCUnicastPkts = 75595615119 3. txHCUnicastPkts = 77679618692 4. rxHCMulticastPkts = 34605567 5. txHCMulticastPkts = 11284923 6. rxHCBroadcastPkts = 1472334 7. txHCBroadcastPkts = 19300 8. rxHCOctets = 33925612619909 9. txHCOctets = 21535942410776 10. rxTxHCPkts64Octets = 56920959228 11. rxTxHCPkts65to127Octets = 53382181374 12. rxTxHCPkts128to255Octets = 6069758790 13. rxTxHCPkts256to511Octets = 4429991882 14. rxTxHCpkts512to1023Octets = 2943499164 15. rxTxHCpkts1024to1518Octets = 29576225497 16. txHCTrunkFrames = 0 17. rxHCTrunkFrames = 0 18. [...]
Difference Between Switch and Bridge in Networking
Switch Vs Bridge S.No SWITCH BRIDGE 1 Number of ports are more than bridge Number of ports are less than switch 2 They can have separate spanning tree for each VLANs in the switch They can have only one spanning tree instance per bridge. 3 Large frame buffers Low frame buffer 4 Switches perform forwarding in hardware Bridges perform forwarding in software 5 Switches were just the next step which eliminated the collision domain completely Bridges were historically used to reduce the size of collision domain created by hubs 6 Supports cut-through switching Doesn’t supports cut-through switching 7 A switch is a network acces device that provides a centallized point for LAN communications,media connections and management activities-like Hub. A bridge is an internetworking device used to contact separate LANs or link two network segments, and to filter information between them as well [...]
Find Users Currently Logged Into Cisco Router/Switch
We can find or see the users currently logged into your Cisco Routers/Switches and also time, from which IP address users logged into Cisco Router/Switches. In Wide area networks are often very wide and installing or troubleshooting remote Routers often requires login from more than one physical location. It is simple to get a listing of the users logged into a Router and it useful to troubleshoot issues some times. Show Users command on Cisco Router/Switch To find the users logged into a Cisco Router/Switch, issue show users command: Cisco_Router#show users or Cisco_Router#sh users Find Users Currently Logged into Cisco Router/Switch Find below output using show users command on Cisco Router or Switch: Cisco_Router#sh users Line User Host(s) Idle Location 1 vty 0 John 172.94.0.86 24w2d 10.90.9.252 2 vty 1 John 172.94.0.86 24w2d 10.90.9.252 3 vty 2 Bijju idle 00:00:37 10.90.9.64 4 vty 3 Kanth 172.94.0.94 24w2d 10.90.9.252 * 5 [...]
