1. Home
    2. /
  2. Manuals
    3. /
  3. D-Link
    4. /
  4. DGS-3612
    5. /
  5. 79
Page 391 / 757 Scroll up to view Page 386 - 390
xStack
®
DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual
387
To configure Quarantine Server URL:
DGS-3627:admin# config jwac quarantine_server_url http://10.90.90.88/authpage.html
Command: config jwac quarantine_server_url http://10.90.90.88/authpage.html
Success.
DGS-3627:admin#
config jwac clear_quarantine_server_url
Purpose
Used to clear Quarantine Server configuration.
Syntax
config jwac clear_quarantine_server_url
Description
This command will clear Quarantine Server configuration.
Parameters
None.
Restrictions
Only Administrator and Operator-level users can issue this command.
Example usage:
To clear Quarantine Server configuration:
DGS-3627:admin# config jwac clear_quarantine_server_url
Command: config jwac clear_quarantine_server_url
Success.
DGS-3627:admin#
config jwac update_server
Purpose
Used to configure the update server network that PC need to access in order to complete the
JWAC authentication.
Syntax
config jwac update_server [add | delete] ipaddress <network_address> {[tcp_port <
port_number 1-65535> | udp_port < port_number 1-65535>]}
Description
The config jwac update server command allows you to add or delete server network address
to which the traffic from unauthenticated client host will not be blocked by the JWAC Switch.
Any servers (update.microsoft.com or some sites of the Anti-Virus software companies,
which the ActiveX needs to access to accomplish the authentication before the client passes
the authentication) should be added with its IP address or with the network address it
resident. By adding the network address, an entry can serve multiple update servers on the
same network.
NOTE:
If the update server is linked to the JWAC enabled port on the switch, it must be
added to the static FDB before it can work properly.
Parameters
add
- To add an update server network. The total number of Update Servers is depending on
project.
delete
- To delete a update server network.
ipaddress
- To specify the network address for the update server network.
To set a specific IP address, please use the format x.x.x.x/32
If TCP port or UDP port number is not specified, all TCP/UDP ports are accessible.
tcp_port
- The accessible TCP port for the specified update server network.
udp_port
- The accessible UDP port for the specified update server network.
Restrictions
Only Administrator and Operator-level users can issue this command.
Page 392 / 757
xStack
®
DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual
388
Example usage:
To configure the update server which the un-authenticated host need to access:
DGS-3627:admin# config jwac update_server add ipaddress 10.90.90.109/24
Command: config jwac update_server add ipaddress 10.90.90.109/24
Update Server 10.90.90.0/24 is added.
Success.
DGS-3627:admin#
config jwac switch_http_port
Purpose
Used to configure the HTTP port which the JWAC Switch listens to.
Syntax
config jwac switch_http_port < tcp_port_number 1-65535> {[http | https]}
Description
The config jwac switch_http_port command allows you to configure the TCP port number
which the JWAC Switch listens to. This port number is used in the second stage of the
authentication. PC user will connect the page on the switch to input the user name and
password.
If not specified, the default port number is 80.
If no protocol specified, the protocol is HTTP.
The HTTP cannot run at TCP port 443, and the HTTPS cannot run at TCP port 80.
Parameters
<tcp_port_number 1-65535>
- A TCP port which the JWAC Switch listens to and uses to
finish the authenticating process.
http
- To specify the JWAC runs HTTP protocol on this TCP port
https
- To specify the JWAC runs HTTPS protocol on this TCP port
Restrictions
Only Administrator and Operator-level users can issue this command.
Example usage:
To configure the HTTP port which the Switch listens to:
DGS-3627:admin# config jwac switch_http_port 8888 http
Command: config jwac switch_http_port 8888 http
Success.
DGS-3627:admin#
config jwac ports
Purpose
Used to configure port’s state of JWAC.
Syntax
config jwac ports [<portlist> | all] {state [enable | disable] | max_authenticating_host
<value 0-n> | aging_time [infinite | <min 1-1440>] | idle_time [infinite | <min 1-1440>] |
block_time [<sec 0-300>] | auth_mode [host _based | port_based]} (1)
Description
The config JWAC ports command allows you to configure the port state and other
parameters
of JWAC. The default value of max_authenticating_host is 50.
The default value of aging_time is 1440 minutes.
The default value of idle_time is infinite.
The default value of block_time is 60 seconds.
Parameters
<portlist>
- A port range to set their JWAC state.
Page 393 / 757
xStack
®
DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual
389
config jwac ports
all
- All the Switch ports’ JWAC state is to be configured.
state
- To specify the port state of JWAC
max_authenticating_host
- Max number of host process authentication on each port at the
same time
aging_time
- A time period during which an authenticated host will keep in authenticated
state. “infinite” indicates never to age out the authenticated host on the port
idle_time
- If there is no traffic during idle_time, the host will be moved back to
unauthenticated state “infinite” indicates never to check the idle state of the authenticated
host on the port.
block_time
- If a host fails to pass the authentication, it will be blocked for a period specified
by block_time.
auth_mode
- The port authentication mode can be either host based or port based.
Restrictions
Only Administrator and Operator-level users can issue this command.
Example usage:
To configure state and other parameters of the ports:
DGS-3627:admin# config jwac ports 1-9 state enable
Command: config jwac ports 1-9 state enable
Success.
DGS-3627:admin#
config jwac radius_protocol
Purpose
Used to configure RADIUS protocol used by JWAC.
Syntax
config jwac radius_protocol [local | pap | chap | ms_chap | ms_chapv2 | eap_md5]
Description
The config jwac radius_protocol command allows you to specify the RADIUS protocol used
by JWAC to complete RADIUS authentication.
JWAC shares other RADIUS configuration with 802.1x, when using this command to set the
RADIUS protocol, you must make sure the RASIUS server added by “config radius …”
command supports the protocol.
Parameters
local
- JWAC Switch uses local user DB to complete the authentication
pap
- JWAC Switch uses PAP to communicate with RADIUS Server
chap
- JWAC Switch uses CHAP to communicate with RADIUS Server
ms_chap
- JWAC Switch uses MS-CHAP to communicate with RADIUS Server
ms_chapv2
- JWAC Switch uses MS-CHAPv2 to communicate with RADIUS Server
eap_md5
- JWAC Switch uses EAP MD5 to communicate with RADIUS Server
Restrictions
Only Administrator and Operator-level users can issue this command.
Example usage:
To configure authentication protocol:
Page 394 / 757
xStack
®
DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual
390
DGS-3627:admin# config jwac radius_protocol ms_chapv2
Command: config jwac radius_protocol ms_chapv2
Success.
DGS-3627:admin#
create jwac user
Purpose
Used to create JWAC user into local DB.
Syntax
create jwac user <username 15> {vlan <vlanid 1-4094>}
Description
The create jwac user command creates JWAC users into the local DB. And when “local” is
chosen when configuring JWAC RADIUS protocol, the local DB will be used.
Parameters
<username 15>
- The user name to be created
<vlanid 1-4094>
- Target VLAN ID for authenticated host which uses this user account to
pass authentication
Restrictions
Only Administrator and Operator-level users can issue this command.
Example usage:
To create a local user:
DGS-3627:admin# create jwac user 112233
Command: create jwac user 112233
Enter a case-sensitive new password:***
Enter the new password again for confirmation:***
Success.
DGS-3627:admin#
config jwac user
Purpose
Used to update local user DB.
Syntax
config jwac user <username 15> {vlan <vlanid 1-4094>}
Description
The config jwac user command updates the local user DB. Only created user can be
configured.
Parameters
<username 15>
- The user name to be configured
<vlanid 1-4094>
- Target VLAN ID for authenticated host which uses this user account to
pass authentication
Restrictions
Only Administrator and Operator-level users can issue this command.
Example usage:
To configure a local user:
Page 395 / 757
xStack
®
DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual
391
DGS-3627:admin# config jwac user juser_tom vlan 3
Command: create jwac user juser_tom vlan 3
Enter a case-sensitive new password:***
Enter the new password again for confirmation:***
Success.
DGS-3627:admin#
delete jwac user
Purpose
Used to delete JWAC user into local DB.
Syntax
delete jwac [user <username 15> | all_users]
Description
The delete jwac user command deletes JWAC users from the local DB.
Parameters
user
- To specify the user name to be deleted
all_users
- All user accounts in local DB will be deleted.
Restrictions
Only Administrator and Operator-level users can issue this command.
Example usage:
To delete a local user.
DGS-3627:admin# delete jwac user juser_tom
Command: delete jwac user juser_tom
Success.
DGS-3627:admin#
show jwac user
Purpose
Used to show JWAC user into local DB.
Syntax
show jwac user
Description
The show jwac user command displays JWAC users in the local DB.
Parameters
None.
Restrictions
None.
Example usage:
This example displays the JWAC users in the local database:
DGS-3627:admin# show jwac user
Command: show jwac user
User Name
Password
VID
----------
----------
------
juser_tom
1
3
Total Entries : 1
DGS-3627:admin#

Rate

4.5 / 5 based on 2 votes.

Popular D-Link Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top