Extreme Networks

jprins · ‎10-15-2019

In the documentations for Avaya Fabric Connect Avaya has documented what VSA's to use to configure a I-SID / VLAN mapping for a client authenticated using 802.1x, but they haven't added the VSA information dictionary data. Does anyone have this information?

I'm looking for the dictionary information for the following VSA's:

• Avaya-Fabric-Attach-VLAN-ISID
• Avaya-Auto-VLAN-Create
• Avaya-Fabric-Attach-VLAN-PVID
• Avaya-Fabric-Attach-Mode
• Avaya-Fabric-Attach-Client-Type
• Avaya-Fabric-Attach-Client-Id

Thank you very much.

Jan Hugo Prins

akrohn · ‎10-24-2019

4a93619d93da456f9243195204d2841a_f82efdd4-198b-4450-8f2c-063520479ff2.jpg

you mean something like this ?

jprins_at_bette · ‎10-24-2019

This indeed the content in the documentation and this is exactly what I was NOT looking for. What I was looking for was the dictionary information. The numerical values that go with the text representation. Without this information the sentences in the documentation have no meaning at all. I have found this information and put it in the dictionary.nortel in the freeradius project.

ATTRIBUTE Fabric-Attach-VLAN-Create 170 integer
ATTRIBUTE Fabric-Attach-VLAN-ISID 171 string
ATTRIBUTE Fabric-Attach-VLAN-PVID 172 integer

ATTRIBUTE Fabric-Attach-Switch-Mode 180 integer
ATTRIBUTE Fabric-Attach-Client-Id 181 string
ATTRIBUTE Fabric-Attach-Client-Type 182 string
ATTRIBUTE Fabric-Attach-Client-PSK 183 integer
ATTRIBUTE Fabric-Attach-Client-Trust 184 integer
ATTRIBUTE Fabric-Attach-Client-Trusted-Binding 185 string
ATTRIBUTE Fabric-Attach-Service-Request 186 string
VALUE Fabric-Attach-VLAN-Create No 0
VALUE Fabric-Attach-VLAN-Create Yes 1

akrohn · ‎10-24-2019

Hello Jan,

you find this information in the Shortest Path Bridging (802.1aq) Technical Configuration Guide.

Like this:

Outbound Attributes from IDE to FA Switch
Fabric-Attach-VLAN-Create	This attribute behaves as Boolean 0 or not send = Switch will NOT create assigned VLAN if VLAN does not exist 1 = Switch will create assigned VLAN if the VLAN does not exit
Fabric-Attach-VLAN-ISID	– VLAN and ISID IDs are separated by “:” – Example: 20:20000 means VLAN=20 and ISID 20000 – VLAN = 1 to 4095 OR VLAN Name – ISID >0 and < max ISID
Fabric-Attach-VLAN-PVID	– PVID VLAN ID – VLAN = 1 to 4095

Inbound Attributes from FA Switch to IDE
Fabric-Attach-Switch-Mode	0 or not send = Switch is assumed to have not concept of SPB/Fabric Attach (i.e. switch is in neither mode – not 1, 2, 3, 4, nor 5) 1 = Switch is FA Server with SPB Disabled and FA Enabled (Network Type 2) 2 = Switch is FA Server with SPB Enabled (Network Type 1a & 1b) 3 = Switch is FA Proxy connected to FA Server with SPB Disabled and FA Enabled (Network Type 2) 4 = Switch is FA Proxy connected to FA Server with SPB Enabled (Network Type 1a) 5 = Switch is FA Proxy Standalone (Network Type 3)
Fabric-Attach-Client-Id	MAC address of the FA Client taken from LLDP via FA Module: FA Element TLV > FA Element ID > System MAC Address
Fabric-Attach-Client-Type	FA Client Type taken from LLDP via FA Module: FA Element TLV > FA Element Type 1 = FA Element Type Other 2 = FA Server 3 = FA Proxy 4 = FA Server No Authentication 5 = FA Proxy No Authentication 6 = FA Client – Wireless AP Type 1 [clients direct network attachment] (e.g. AP 9100) 7 – FA Client – Wireless AP Type 2 [clients tunneled to controller]

Regards

Andreas

Extreme Networks

VSA for Avaya / Extreme ERS switches doing SPBM

VSA for Avaya / Extreme ERS switches doing SPBM