CCNP 813 AAA 实验
需求:
有两台交换机:接入层ASW1,汇聚层DSW1。
- 在靠近终端部分启用Radius验证,也就是在ASW1上启用Radius。Raidus服务器为172.120.39.46,Raidus Key:rad123
- 对VLAN20进行限制,要求IP地址在172.120.40.0/24内,否则将数据包丢弃。过滤实施在靠近服务器端
AAA配置
ASW1(config)#aaa new-model ASW1(config)#aaa authentication login default line none ASW1(config)#aaa authentication dot1x default group radius ASW1(config)#radius-server host 172.120.39.46 key rad123 ASW1(config)#dot1x system-auth-control ASW1(config)#interface fastethernet 0/1 ASW1(config-if)#switchport mode access ASW1(config-if)#dot1x port-control auto ASW1(config-if)#end ASW1#copy running-config startup-config
vlan内地址过滤
DSW1(config)#ip access-list standard 10 DSW1(config-ext-nacl)#permit 172.120.40.0 0.0.0.255 DSW1(config-ext-nacl)#exit DSW1(config)#vlan access-map MYACCMAP 10 DSW1(config-access-map)#match ip address 10 DSW1(config-access-map)#action forward DSW1(config-access-map)#exit DSW1(config)#vlan access-map MYACCMAP 20 DSW1(config-access-map)#action drop DSW1(config-access-map)#exit DSW1(config)#vlan filter MYACCMAP vlan-list 20 DSW1(config)#end DSW1#copy running-config startup-config
2017年11月10日 20:02
Thanks for your sharing. Hope you can contribute more quality posts to this page. Thank you!
2022年12月21日 00:28
The Cisco Certified Network Professional 813 AAA Experimental (CCNP 813 AAA) is a certification that demonstrates a candidate's ability to configure, implement, and troubleshoot Cisco AAA services. AAA services are often used to control access to network The Vandals resources and to provide accounting and auditing information. The CCNP 813 AAA certification is aimed at candidates who have a solid understanding of Cisco AAA services and who are able to configure, implement, and troubleshoot them.
2022年12月27日 21:00
As an experimental protocol, AAA is not yet widely adopted. However, it has the potential to become the standard for authentication, authorization, and accounting. AAA provides a centralized way to manage user access and permissions, as well as track and monitor activity. This makes it an appealing engagement rings option for businesses that want to improve their security and accounting procedures.
2023年4月15日 21:09
How to Update/Register Your Cell Number with Indian Overseas Bank, The Reserve Bank of India’s guidelines are followed by the national bank Indian Overseas Bank. The bank has been providing its clients in the public banking sector with a wealth of convenient services and amenities. Indian Overseas Bank (IOB) Mobile Banking Registration, How to Update/Register Your Cell Number with Indian Overseas Bank, The Reserve Bank of India’s guidelines are followed by the national bank Indian Overseas Bank. ekhan.net The bank has been providing its clients in the public banking sector with a wealth of convenient services and amenities. Indian Overseas Bank (IOB) Mobile Banking Registration.