- Community Home
- >
- Networking
- >
- Security e-Series
- >
- Re: Different VLAN-Memberships with MAC-based port...
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-14-2011 07:09 AM
12-14-2011 07:09 AM
Different VLAN-Memberships with MAC-based port access?
Hi,
I just managed to get MAC-based port-access control with radius-assigned vlan-IDs working. this works for me, as long as all clients on a given port have to belong to the same vlan. But we are going to buy ip phones with an integrated ethernet switch, so that a pc and a phone will be connected to the same switchport. What i want to do, is assigning a different vlan id to the ip phone and to the pc. Is there any way to do this, f.e. assigning a "tagged" vlan id for the port?
- Tags:
- VLAN
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-16-2011 12:46 AM
12-16-2011 12:46 AM
Re: Different VLAN-Memberships with MAC-based port access?
hi
your ip phone support 801.1q vlan taging protocol and you must have configure vlan id on ip phone
switch port must be manually set tagged voip vlan
untagged state assign via radius server for pc
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-10-2012 09:56 AM
01-10-2012 09:56 AM
Re: Different VLAN-Memberships with MAC-based port access?
What RADIUS Server are you using on the backend?
Reason that I ask, is that some RADIUS Servers support RFC 4675, which supports the "Egress-VLANID" attribute, which can be used to assign a tagged VLAN ID for the port.
For example, FreeRADIUS support the RFC, whereas Microsoft NPS does not.
If you have a RADIUS Server that does not support the RFC, you can use VSAs (Vendor Specific Attributes) for this. The VSAs are listed here, as well as some information on the RFC:
http://wiki.freeradius.org/HP#RFC+4675+(multiple+tagged%2Funtagged+VLAN)+Assignment
Also be aware that not all HP switches support assigning tagged VLANs through RADIUS.