Home > GUI > Configuration > Port Types
|
Port Types
View, select, and modify a port type object for APs and switches.
Navigate using the tab icons. Hover over an icon to see the name of the tab.
Configure > Network Policies > policy_name > Device Templates > AP Templates > ap_template_name
or
Configure > Network Policies > policy_name > Device Templates > switch_template_name
After you have selected ports on the new template page, you must assign one of the following port types: Choose Existing or Create New. For switch ports, the options are: Choose Existing, Create New, or Advanced Actions > Aggregate. See Port Types.
To create a new port type, select an interface port (Eth0 or Eth1) on the device template. Select Assign and Create New from the drop-down list. You can also select ports by dragging your cursor around a group of ports.
Enter the following information, and then select Save.
Name: Enter a name for the port type.
Description: Enter a brief description of the port type for future reference.
Port Status: Turn the port off or on.
For the 1- and 2-port templates designed for Extreme Networks APs, there are three port types, each defining how the ports assigned to it will function. These port types are described in the following sections.
Bridge-Access
Select Bridge-Access for ports connected to individual hosts.
Captive Web Portal: Select to direct clients to a captive web portal before they are granted network access. Select On to activate the captive web portal. For details on how to configure a captive web portal, see Captive Web Portal.
MAC Authentication: Select to use MAC authentication as the username and password to authenticate clients. Select On, and select the authentication protocol you want to use. Choose PAP (Password Authentication Protocol), CHAP (Challenge Handshake Authentication Protocol), or MS CHAP V2 (Microsoft CHAP Version 2), depending on which protocol the RADIUS authentication server supports. If you are using an Extreme Networks RADIUS server, use the default choice: PAP. For an external RADIUS authentication server, choose the protocol that it supports. The Extreme Networks device functioning as the RADIUS authenticator uses the chosen protocol to authenticate communications between itself and the RADIUS server when submitting client credentials (the MAC address) for authentication.
Authenticate via RADIUS Server: Select to authenticate to an external RADIUS server. For more information on how to add RADIUS servers to this table, see External RADIUS Server Settings.
User Profile: Use to change the default user profile if necessary. Select Change Default, select a user profile from the list that is displayed, and select Select.
Traffic Filter Management: Make selections in this section to control various types of incoming traffic.
Bridge-802.1Q
Select Bridge-802.1Q for ports that provide network access through forwarding devices and support multiple VLANs.
User Profile: Change the default user profile if necessary. Select Change Default, select a user profile from the list, and select Select.
Traffic Filter Management: Select the check boxes for the types of incoming traffic that you want to control.
Uplink Port
Select Uplink Port to use this port as a WAN uplink port.
User Profile: Use this section to change the default user profile if necessary. Select Change Default, choose a user profile, and select Select.
Traffic Filter Management: Select the check boxes for the types of incoming traffic that you want to control.
To create a new port type, select an interface port on the switch device template to highlight it. Select Assign and choose Create New from the drop-down list. You can also select multiple ports by dragging your cursor around a group of ports.
Enter the following information, and then select Save.
Name: Enter a name for the port type.
Description: Enter an optional description of the port type for future reference.
Port Status: Turn the port off or on.
Port Usage Settings for Switches
For 24- and 48-port device templates there are three port types, each defining how the ports assigned to it will function. These port types are described in the following sections.
Access Port (Tagged): Select for ports connected to individual hosts such as printers, servers, and end user computers. When you select this setting, a VLAN ID tag is added to the frame before it is forwarded over the trunk link, thus identifying which VLAN that frame belongs to. The tagging protocol used is 802.1Q. Below the Wired Connectivity tab, you can enable User Authentication or MAC Authentication, and configure QoS settings, Client Detection and VLAN ID.
Trunk (Untagged): Select for frames that are not VLAN-aware. Frames are in a native VLAN (default) or Management VLAN.
General (Multiple Untagged and Tagged): Select for frames that are either native VLAN or VLAN-aware.
This section defines the quality of service that the Extreme Networks device provides to traffic to and from IP phones and computers.
Traffic Classification:
Trusted Traffic Sources: Select to change the default untrusted traffic source option when you trust the source of the QoS classification markings in the Layer 3 packet header or Layer 2 frame header in incoming packets. Then select the type of priority classification system you want the device to check—DSCP (DiffServ Codepoint) or 802.1p. When the device receives packets with the specified priority marker, it maps them to a previously defined class. If a packet arrives without any classification marker, which can happen if a frame does not have a VLAN tag with an 802.1p marker (DSCP is always set), then the device can either map it to a default Extreme Networks class (2 – Best Effort 1) or you can specify another class to which you want the device to map. To do the former, clear the For unmarked incoming traffic, use Extreme Networks class check box. To do the latter, select the check box, and then choose the class from the drop-down list to assign to all unmarked incoming traffic.
Untrusted Traffic Sources (default): Use this option when you do not trust the source of the QoS classification markings on incoming traffic and do not want to map them to Extreme Networks classes. Instead choose a class from the drop-down list to apply to all incoming traffic on the ports to which you apply this port type.
Traffic Marking:
Mark the outgoing traffic with priority markers: Select this option to map QoS classes to priority markers and mark outgoing traffic using DSCP or 802.1p.
Client Detection:
Select this check box to identify wired clients that connect through this port. Do not use this option if APs are connected to the port. This avoids duplicate client identification (as a wireless client by the AP and as a wired client by the switch). This setting is enabled by default for trunk port objects.
VLAN ID (for Access Ports Only):
Tag the VLAN to a particular access port so that you can control and monitor switch traffic. Select 
to choose an existing VLAN object, or 
to create a new object.
When creating a new VLAN ID object you can select Apply VLANs to devices for classification. See VLAN Classification by Location.
After you have saved your individual configuration settings, select Save again to save the new port type name in the Port Type in Use table.
Copyright © 2020 Extreme Networks. All rights reserved. Published March 2020.