This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

User-based-policy and 802.1x

User-based-policy and 802.1x

Go to solution
summe
New Contributor

4 weeks ago

Hello

my device model is ERS3600 and software version is v6.4.2.007 I'm struggling with applying UBP on 802.1x 802.1x settings are working very fine. but UBP is not this is Radius Nortel dictionary what i set

VENDOR        Nortel    562
BEGIN-VENDOR  Nortel
ATTRIBUTE     Nortel-User-Role    110    string
END-VENDOR    Nortel

this is from RADIUS server when I logged in with 802.1x

(1412)   Tunnel-Type := VLAN
(1412)   Tunnel-Medium-Type := IEEE-802
(1412)   Tunnel-Private-Group-Id := "203"
(1412)   Nortel-User-Role := "GUEST"
(1412)   Framed-MTU += 994

and these are the commands I used on ERS3600

. 
.
.
qos agent oper-mode enable
qos agent ubp low-security-local
eapol user-based-policies enable                            
eapol multihost non-eap-user-based-policies enable        
eapol user-based-policies filter-on-mac enable             
eapol multihost non-eap-user-based-policies filter-on-mac enable

qos ubp classifier name GUEST addr-type ipv4 ethertype 0x800 drop-action enable block Blk1 eval-order 10
qos ubp set name GUEST track-statistics aggregate
.
.
.

I expected switch to block the user's network ( Nortel-User-Role := "GUEST" user) sending VLAN ID works fine but only UBP dosent work I searched every documents but couldn't find the answer Is there something i missed?..

0 Kudos
1 ACCEPTED SOLUTION

Go to solution
SamPirok
Community Manager Community Manager
Community Manager

3 weeks ago

As far as I can tell your configuration is correct and I can't find any known issues with UBP on 802.1x. You may want to open a ticket so an engineer can start gathering logs and diving deeper into this for you. Sorry I couldn't be more helpful. You can open a ticket on our Extreme Portal, under the Support tab. 

View solution in original post

0 Kudos
1 REPLY 1

Go to solution
SamPirok
Community Manager Community Manager
Community Manager

3 weeks ago

As far as I can tell your configuration is correct and I can't find any known issues with UBP on 802.1x. You may want to open a ticket so an engineer can start gathering logs and diving deeper into this for you. Sorry I couldn't be more helpful. You can open a ticket on our Extreme Portal, under the Support tab. 

0 Kudos
GTM-P2G8KFN