dot1x is working but I can't get WOL to work. What is even stranger is that with "authentication control-direction in" the interface becomes up/up even if the device is shut down and it puts the interface in VLAN 301instead of leaving it in VLAN 5. I can live with that but I don't understand the up/up and WOL not working.
If anyone has an idea or pointers that would be greatly appreciated.
I have the same problem. According to the Cisco documentation it is possible to use WOL and 802.1x. I read the doc for 12.2.55SE and they kept referring to the commands "dot1x control-direction in" and "dot1x control-direction both" - but these commands was dropped long time ago!!! Cisco should have a better documentation QA if you ask me... The correct commands are "authentication control-direction in" or "authentication control-direction both".
both: Enable bidirectional control on port. The port cannot receive packets from or send packets to the host. in: Enable unidirectional control on port. The port can send packets to the host but cannot receive packets from the host.
In other words the command should be "authentication control-direction in", verified by typing "show dot1x interface .....":
Dot1x Info for FastEthernet2/0/48 ----------------------------------- PAE = AUTHENTICATOR PortControl = AUTO ControlDirection = In HostMode = SINGLE_HOST QuietPeriod = 20 ServerTimeout = 0 SuppTimeout = 30 ReAuthMax = 2 MaxReq = 2 TxPeriod = 10
I found out why it didn't work for me, and maybe that's the reason why it didn't work for the guy who started this thread.
The configuration of the VLAN where my WOL-server is;
ip helper-address 172.17.20.255 ip helper-address 172.17.21.255
The first time I changed the config on the port it ended up in the guest vlan, which is IP 192.168.17.xx. So the WOL-packet was never received as my WOL VLAN wasn't set up to broadcast to the guest VLAN. I had to do a shut/no shut to get the port back to the right vlan. I haven't checked enough to see if the "authentication control-direction in" command makes dot1x more unstable. We have problems with enterprise pc's ending up in the guest vlan for some reason, and we have to reboot them to get them back to the enterprise vlan.
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...