From: ccie2be (ccie2be@nyc.rr.com)
Date: Tue Dec 21 2004 - 20:19:33 GMT-3
Hi guys,
When you configure vlan to be a guest vlan for hosts that aren't 802.1x
compliant,
are there, by default, any restrictions on what traffic the port will pass?
From what I can tell from the documentation, a guest vlan is like any other
vlan
except non 802.1x compliant hosts don't have to authenticate. But, what makes
no sense to me is, if
a non 802.1x host is connected to port, why make that port require dot1x
authentication in the first place?
To me, it seems like first you're requiring 802.1x authentication for a port
and then
with the guest vlan you're not requiring 802.1x for that same port.
Maybe I'm the dumb one here, but this seems pretty stupid. So, I'm hoping
someone
can explain why this isn't actually as stupid as it seems.
Also, if anyone knows of any white papers or case studies that explain or
provides examples of how to make practical use of this feature, could you
provide a link?
Thanks alot, Tim
This archive was generated by hypermail 2.1.4 : Mon Jan 03 2005 - 10:31:29 GMT-3