D-Link DGS-3612 Router Manual PDF (Setup & Configuration Guide)

Page 396 / 757 Scroll up to view Page 391 - 395

xStack

®

DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual

392

clear jwac auth_state

Purpose

Used to clear the JWAC authentication entry.

Syntax

clear jwac auth_state [ports [all | <portlist>] { authenticated | authenticating | blocked }

| mac_addr <macaddr>]

Description

The user can use this command to clear the authentication entry.

Parameters

ports

- To specify the port range to delete host on them.

authenticated

- To specify the state of host to delete.

authenticating

- To specify the state of host to delete.

blocked

- To specify the state of host to delete.

- To delete a specified host with this MAC.

Restrictions

Only Administrator and Operator-level users can issue this command.

Example usage:

To delete authentication entry:

DGS-3627:admin# clear jwac auth_state ports all blocked

Command: clear jwac auth_state ports all blocked

Success.

DGS-3627:admin#

config jwac authorization attributes

Purpose

The enable authorization command will enable acceptance of authorized configuration.

Syntax

config jwac authorization attributes {radius [enable| disable] | local [enable | disable]}

(1)

Description

Used to enable or disable acceptation of authorized configuration.

When the authorization is enabled for JWAC’s RADIUS, the authorized data assigned by the

RADUIS server will be accepted if the global authorization network is enabled.

When the authorization is enabled for JWAC’s local, the authorized data assigned by the

local database will be accepted.

Parameters

radius

- If specified to enable, the authorized data assigned by the RADUIS server will be

accepted if the global authorization network is enabled. The default state is enabled.

local

- If specified to enable, the authorized data assigned by the local database will be

accepted if the global authorization network is enabled. The default state is enabled.

Restrictions

Only Administrator and Operator-level users can issue this command.

Example usage:

The following example will disable the configuration authorized from the local database:

DGS-3627:admin# config jwac authorization attributes local disable

Command: config jwac authorization attributes local disable

Success.

DGS-3627:admin#

Page 397 / 757

xStack

®

DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual

393

show jwac

Purpose

Used to display the configuration of JWAC.

Syntax

show jwac

Description

The show jwac command allows you to show all the configuration of JWAC.

Parameters

None.

Restrictions

None.

Example usage:

To display global configuration of JWAC:

DGS-3627:admin# show jwac

Command: show jwac

State

: Enabled

Enabled Ports

: 1:1,1:11,1:23,1:25,1:35

Virtual IP/URL

: 1.1.1.1/www.kyoto.ac.jp

Switch HTTP Port

: 21212 (HTTP)

UDP Filtering

: Enabled

Forcible Logout

: Enabled

Redirect State

: Enabled

Redirect Delay Time

: 3 Seconds

Redirect Destination

: Quarantine Server

Quarantine Server

: http://172.18.212.147/pcinventory

Q-Server Monitor

: Enabled (Running)

Q-Server Error Timeout

: 5 Seconds

RADIUS Auth-Protocol

: PAP

RADIUS Authorization

: Enabled

Local Authorization

: Enabled

DGS-3627:admin#

show jwac update_server

Purpose

Used to display the configuration of JWAC update server.

Syntax

show jwac update_server

Description

This command displays the configured update server’s network and their accessible ports.

The function will use system’s common resource, thus some entries may not active if the

resource is not sufficient when JWAC is enabled.

Parameters

None.

Restrictions

None.

Example usage:

To show update server:

Page 398 / 757

xStack

®

DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual

394

DGS-3627:admin# show jwac update_server

Command: show jwac update_server

Index

IP

TCP/UDP

Port

State

-----

------------------

-------

-----

--------

1

10.0.0.0/8

-

Inactive

2

10.1.1.1/32

UDP

90

Inactive

3

10.3.3.3/32

TCP

80

Inactive

4

10.3.3.4/32

-

Inactive

5

10.3.3.5/32

-

Inactive

6

10.3.3.6/32

-

Inactive

7

10.3.3.7/32

-

Inactive

8

10.3.3.9/32

-

Inactive

9

10.3.3.10/32

-

Inactive

10

100.100.100.100/32

TCP

9080

Inactive

DGS-3627:admin#

show jwac auth_state

Purpose

Used to display information of JWAC client host.

Syntax

show jwac auth_state ports {<portlist>}

Description

The show jwac auth_state command allows you to show the information of JWAC client host.

Parameters

ports

- A port range to show the information of client host.

If no port is specified, all ports’ JWAC authentication state will be displayed.

Restrictions

None.

Example usage:

Supposed that port 1 is in host-based mode:

MAC 00-00-00-00-00-01 is authenticated without VLAN assigned (may be the specified target VLAN does not exist or

target VLAN has not been specified at all), the ID of RX VLAN will be displayed (RX VLAN ID is 4004 in this example).

MAC 00-00-00-00-00-02 is authenticated with target VLAN assigned, the ID of target VLAN will be displayed (target

VLAN ID is 1234 in this example)

MAC 00-00-00-00-00-03 failed to pass authentication, the VID field will be shown as “-” indicating that packets with SA

00-00-00-00-00-03 will be dropped no matter which VLAN these packets are from.

MAC 00-00-00-00-00-04 attempts to start authentication, the VID field will be shown as “-“ until authentication completed.

Supposed that port 2 is in port-based mode:

MAC 00-00-00-00-00-10 is the MAC which made port 2 pass authentication, MAC address is followed by “(P)” indicating

that this authentication is from a port in port-based mode.

Supposed that port 3 is in port-based mode:

MAC 00-00-00-00-00-20 attempts to start authentication, MAC address is followed by “(P)” to indicate the port-based

mode authentication.

MAC 00-00-00-00-00-21 failed to pass authentication, MAC address is followed by “(P)” to indicate the port-based mode

authentication.

NOTE:

In port-based mode, the VLAN ID field is displayed in the same way as host-based mode.

Page 399 / 757

xStack

®

DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual

395

DGS-3627:admin# show jwac auth_state ports 1-2

Command: show jwac auth_state ports 1-2

Pri - Priority. State - A:Authenticated, B:Blocked, -:Authenticating

Time - Aging Time/Idle Time for authenticated entries.

Port

MAC Address

State VID Pri

Time

IP

User Name

----- -----------------

-- ---- -- -------- ---------------- ----------------

1

00-00-00-00-00-01

A

4004

3

-/40

192.168.101.239

juser_tom

1

00-00-00-00-00-02

A

1234

-

-/50

172.18.61.242

name_of_15chars

1

00-00-00-00-00-03

B

-

60

172.18.61.242

Jack

1

00-00-00-00-00-04

-

10

-

2

00-00-00-00-00-10(P) A 1234

2

1440/20

10.10.10.90

Logan

3

00-00-00-00-00-20(P) -

-

20

10.10.10.131

-

3

00-00-00-00-00-21(P) B

-

200

-

Victor

Total Authenticating Hosts

: 2

Total Authenticated Hosts

: 3

Total Blocked Hosts

: 2

DGS-3627:admin#

show jwac ports

Purpose

Used to display port configuration of JWAC.

Syntax

show jwac ports {<portlist>}

Description

The show jwac port command allows you to display port configuration of JWAC.

Parameters

all

- To show all ports’ configuration of JWAC

- To specify a port range to show the configuration of JWAC

If no port is specified, the configuration for all ports will be displayed.

Restrictions

None.

Example usage:

To display port configuration:

DGS-3627:admin# show jwac ports 1-4

Command: show jwac ports 1-4

Port

State

Aging Time

Idle Time

Block Time Auth Mode

Max

(min)

(sec)

Hosts

----- -------- ------------ ------------ ----------- ----------- -------

1

Enabled

Infinite

20

10

Port-Based

10

2

Disabled

60

10

2

Port-Based

10

3

Enabled

1440

Infinite

2

Host-Based

50

4

Enabled

600

30

5

Host-Based

50

DGS-3627:admin#

config jwac authentication_page element

Purpose

Used to customize the authenticate page.

Syntax

config jwac authentication_page element [ japanese | english ] [default | page_title

<desc 128> | login_window_title < desc 32> | user_name_title < desc 16> |

password_title < desc 16> | logout_window_title < desc 32> | notification_line <line

value 1-5> <desc 128>]

Description

This command let administrator customize the JWAC authenticate page.

Page 400 / 757

xStack

®

DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual

396

config jwac authentication_page element

Parameters

japanese

- Change to Japanese page.

english

- Changeto English page.

default

- Reset the page element to default.

page_title

- The title of the authenticate page.

login_window_title

- The login window title of the authenticate page

user_name_title

- The user name title of the authenticate page

password_title

- The password title of the authenticate page

logout_window_title

- The logout windown title mapping of the authenticate page

notification_line

- This parameter is used to set the notification information by line in

authentication web pages.

Restrictions

Only Administrator and Operator-level users can issue this command.

Example usage:

To customize the authenticate page:

DGS-3627:admin# config jwac page_element japanese page_title "

ディーリンクジャパン株式会社

"

Command: config jwac page_element japanese page_title "

ディーリンクジャパン株式会社

"

Success.

DGS-3627:admin#

show jwac authenticate_page

Purpose

Used to show the element mapping of the customized authenticate page.

Syntax

show jwac authenticate_page

Description

Used to show the element mapping of the customized authenticate page.

Parameters

None.

Restrictions

None.

Example usage:

The following example displays the default authentication page:

Rate

Popular D-Link Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share