Configuring MAC authentication timers
MAC authentication uses the following timers:
Offline detect timer—Sets the interval that the device waits for traffic from a user before the device regards the user idle. When the offline detection feature is enabled, the device logs off the user and requests to stop accounting for the user after the timer expires.
Quiet timer—Sets the interval that the device must wait before the device can perform MAC authentication for a user who has failed MAC authentication. All packets from the MAC address are dropped during the quiet time. This quiet mechanism prevents repeated authentication from affecting system performance.
Server timeout timer—Sets the interval that the device waits for a response from a RADIUS server before the device regards the RADIUS server unavailable. If the timer expires during MAC authentication, the user cannot access the network.
To configure MAC authentication timers:
Step | Command | Remarks |
|---|---|---|
1. Enter system view. | system-view | N/A |
2. Configure MAC authentication timers. | mac-authentication timer { offline-detect offline-detect-value | quiet quiet-value | server-timeout server-timeout-value } | By default, the offline detect timer is 300 seconds, the quiet timer is 60 seconds, and the server timeout timer is 100 seconds. |