This profile has been created for phones that support an authentication protocol and assumes that the phone does not support LLDP (Link Layer Discovery Protocol) and is provisioned using DHCP (Dynamic Host Configuration Protocol) options.
This is a template for configuring network parameters for 802.1X authenticated devices. The module is triggered through successful authentication or unauthentication of the device.
#*********************************************** # Last Updated: April 11, 2007 # Tested Phones: Avaya 4610, 4620, 4625 # Requirements: 802.1X capable devices, netlogin configured and enabled on deployment ports #*********************************************** # @MetaDataStart # @ScriptDescription "This is a template for configuring network parameters for 802.1X authenticated devices. The module is triggered through successful authentication of the device. The following network side configuration is done: QOS assignment and enables DOS protection. When used with IP phones, phone provisioning is done through DHCP options." # @Description "VLAN name to add to port" set var vlan1 voiceavaya # @VariableFieldLabel "Set QoS Profile (yes or no)" set var setQuality yes # @Description "QoS Profile (0-100)" set var lowbw 50 # @VariableFieldLabel "QoS MAX Bandwidth (0-100)" set var highbw 100 # @VariableFieldLabel "Enable Denial of Service Protection (yes or no)" set var dosprotection yes # @MetaDataEnd ################################## # Start of USER-AUTHENTICATE block ################################## if (!$match($EVENT.NAME,USER-AUTHENTICATED)) then ############ #QoS Profile ############ # Adds a QOS profile to the port if (!$match($setQuality,yes)) then create log message Config_QOS configure port $EVENT.USER_PORT qosprofile qp7 configure qosprofile qp7 minbw $lowbw maxbw $highbw ports $EVENT.USER_PORT endif # ######################## #Security Configurations ######################## create log message Applying_Security_Limits # enables Denial of Service Protection for the port if (!$match($dosprotection,yes)) then enable dos-protect create log message DOS_enabled endif # endif ################################ # End of USER-AUTHENTICATE block ################################ # # #################################### # Start of USER-UNAUTHENTICATE block #################################### if (!$match($EVENT.NAME,USER-UNAUTHENTICATED)) then create log message Starting_8021x_Generic_UNATUH_Module_Config if (!$match($setQuality,yes)) then create log message UNConfig_QOS unconfig qosprofile ports $EVENT.USER_PORT endif unconfig inline-power operator-limit ports $EVENT.USER_PORT endif ################################## # End of USER-UNAUTHENTICATE block ################################## create log message End_802_1x_Generic_Module_Config
Print
this page
Email this topic
Feedback
View PDF
Download EPUB