From: Mohammad Saeed (mzsaeed@gmail.com)
Date: Thu Apr 19 2007 - 11:29:40 ART
---------- Forwarded message ----------
From: Mohammad Saeed <mzsaeed@gmail.com>
Date: Apr 19, 2007 8:28 AM
Subject: Re: don't understand 802.1x multiple-host mode's doc
To: John Gibson <johngibson1541@yahoo.com>
In my opinion, if you enable DOT1x on an interface, it will
authenticate and allow only one MAC Address, but if you want multiple
hosts to be authenticated by the same Ethernet Port on the switch, you
enable DOT1x in multiple host mode. You can consider the scenerio of
attaching a hub with that Ethernet Interface of the switch or 802.11
Access point and want to authenticate all the users on that
hub/wireless AP via 802.1x.
Hope this helps.
Regards,
Mohammad Zahed Saeed
On 4/19/07, John Gibson <johngibson1541@yahoo.com> wrote:
> I understand multiple-host mode, but univercd's
> http://www.cisco.com/univercd/cc/td/doc/product/lan/cat3560/12235se/scg1/sw8021x.htm#wp1192140
>
> says the client laptops used 802.1x with the AP, then
> the AP again uses 802.1x with 3560. Does that sound
> unnecessary to you?
>
> Only scenario I can think of is that the AP is out
> on a desk or on a public area dry wall being touched
> by any one or any one with a ladder and can be swapped
> at any time with a rogue AP. Is that what they are
> talking about ? The hacker is very low. I am not sure.
>
> __________________________________________________
> Do You Yahoo!?
> Tired of spam? Yahoo! Mail has the best spam protection around
> http://mail.yahoo.com
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Tue May 01 2007 - 08:28:36 ART