Filter
Top Products
RADIUS Protocol Configuration Commands 279
After creating a RADIUS server group, you are supposed to set IP addresses and
UDP port numbers for the RADIUS servers, including primary/second
authentication/authorization servers and accounting servers. In real networking
environments, the above parameters shall be set according to the specific
requirements. However, you set at least one authentication/authorization server
and an accounting server. Besides, ensure that the RADIUS service port settings on
the Switch is consistent with the port settings on the RADIUS server.
Related commands: key, radius scheme, state.
Example
To set the IP address of the primary authentication/authorization server of RADIUS
server group, “3Com”, to 10.110.1.1 and the UDP port 1812 to provide RADIUS
authentication/authorization service, enter the following:
<4500>system-view
System View: return to User View with Ctrl+Z.
[4500]radius scheme 3Com
[4500-radius-3Com]primary authentication auth 10.110.1.1 1812
radius nas-ip Syntax
radius nas-ip ip-address
undo radius nas-ip
View
System View
Parameter
ip-address: IP address in dotted decimal format.
Description
Use the radius nas-ip command to specify the source address of the RADIUS
packet sent from NAS. Use the
undo radius nas-ip command to restore the
default setting.
By specifying the source address of the RADIUS packet, you can avoid unreachable
packets as returned from the server upon interface failure. The source address is
normally recommended to be a loopback interface address.
By default, the source address is not specified, that is, the address of the interface
sending the packet serves as the source address.
This command specifies only one source address; therefore, the newly configured
source address may overwrite the original one.
Example
To configure the Switch to send RADIUS packets from 129.10.10.1, enter the
following:
<4500>system-view
System View: return to User View with Ctrl+Z.
[4500]radius nas-ip 129.10.10.1