10-04-2013 11:09 AM - edited 03-10-2019 08:57 PM
We use an imaging solution called FOG. It is an open source software. Since I placed my switchports in dot1x FOG won't TFTP on boot anymore. I've tried everything I can think of. I have noticed that as soon as I remove the command MAB from my port configuration the TFTP takes off. This only happens on our 3750E switches. I have tried 12.2se55 and 15.0.2se4. Same thing on both sets of code.
Anyone?
10-04-2013 11:24 AM
Is the problem with FOG only? Can you run successful pings while FOG is in fail state?
Is it possible a DACL is being applied to the interface when MAB authentication happens?
Run a show ip access-list int
10-04-2013 11:33 AM
It appears to be. If I remove the command MAB while the TFTP is trying to communicate it takes right off. I have put a port level ACL that permits all traffic and it does not work, and I don't think dACL's are applied that early in the boot process. Running a show auth sess int show no applied ACL's.
10-09-2013 02:56 AM
You can play with
dot1x timeout tx-period x
dot1x max-reauth-req xspanning-tree portfast
commands.
You can rely on
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide