Reset Search
 

 

Article

Netlogin cannot be enabled on a port which belongs to vlan linked to a different VR

« Go Back

Information

 
TitleNetlogin cannot be enabled on a port which belongs to vlan linked to a different VR
Symptoms
WARNING: Ports that are not part of the current Virtual Router were ignored.
Environment
  • EXOS (Below 22.4)
  • Summit
  • BlackDiamond
  • Virtual Router (VR)
Cause
  • The above Warning message could occur due to following reasons:
  1. If a port does NOT belong to a VR (vr-default or user created vr)
* U10.3 # enable netlogin port 10 mac
WARNING: Ports that are not part of the current Virtual Router were ignored.
* U10.4 # show port 10 information detail
Port:   10
        Virtual-router: None
        Type:           UTP
        Random Early drop:      Unsupported
        Admin state:    Enabled with  auto-speed sensing  auto-duplex
​​        2. If a port belongs to a vlan, which is associated to a different VR than VR-Default.
U10.5 # enable netlogin port 3 mac
WARNING: Ports that are not part of the current Virtual Router were ignored.
 U10.6 # show port 3 information detail
Port:   3
        Virtual-router: vr-test
        Type:           UTP
        Random Early drop:      Unsupported
        Admin state:    Enabled with  auto-speed sensing  auto-duplex
        Link State:     Active, 1Gbps, full-duplex
        Link Ups:       1        Last: Fri Jun 03 17:09:36 2016
        Link Downs:     0        Last: --
        VLAN cfg:
                 Name: test, 802.1Q Tag = 10, MAC-limit = No-limit, Virtual router:   vr-test
                       Port-specific VLAN ID:   10

 
Resolution
Netlogin support on all VRs is avaialble from EXOS 22.4 and above. 

   Note: This support is available only on the Policy mode in EXOS 22.4.

With the current implementation (EXOS below 22.4), Netlogin will fully function only on VR default.
  • To enable netlogin on a port, make sure that port is associated or belongs to a Virtual router. 
* U10.7 # configure "VR-Default" add port 10
* U10.8 # enable netlogin port 10 mac
* U10.9 # show port 10 information detail
Port:   10
        Virtual-router: VR-Default
        Type:           UTP
        Random Early drop:      Unsupported
        Admin state:    Enabled with  auto-speed sensing  auto-duplex
        Link State:     Ready
        Link Ups:       0        Last: --
        Link Downs:     0        Last: --

        VLAN cfg:
                 Name: nl_vlan, Internal Tag = 100, MAC-limit = No-limit, Virtual router:   VR-Default
       .
       .
        NetLogin:                       Enabled
        NetLogin authentication mode:   MAC based
        NetLogin port mode:             Port based VLANs
        Smart redundancy:               Enabled
        Software redundant port:        Disabled
Additional notes
Temporary Workaround (Configuration not saved across reboots):

Warning : Configuration is not saved when switch is rebooted with the below workaround. This is a limitation with the current design.
  • To enable netlogin on a port which belongs to VLAN associated to a user create VR, you MUST make that User created VR a current Virtual Router, configure netlogin parameters How to configure Mac-based Netlogin with Radius on EXOS , and then enable Netlogin on a port.
  • The port MUST be in a VR, which is currently being used.
* U10.20 # virtual-router vr-test
* (vr vr-test) U10.25 # show vlan
-----------------------------------------------------------------------------------------------
Name            VID  Protocol Addr       Flags                         Proto  Ports  Virtual
                                                                              Active router
                                                                              /Total
-----------------------------------------------------------------------------------------------
Default         1    10.10.6.1      /16  ----------------------------- ANY    1 /1   VR-Default
Mgmt            4095 10.152.0.74    /22  ----------------------------- ANY    1 /1   VR-Mgmt
nl_vlan         100  ----------------------LN------------------------- ANY    0 /1   VR-Default
test            10   ------------------------------------------------- ANY    1 /2   vr-test
test-login      200  ----------------------LN------------------------- ANY    1 /2   vr-test
-----------------------------------------------------------------------------------------------
* (vr vr-test) U10.21 # enable netlogin port 3 mac
* (vr vr-test) U10.22 # show port 3 information detail
Port:   3
        Virtual-router: vr-test
        Type:           UTP
        Random Early drop:      Unsupported
        Admin state:    Enabled with  auto-speed sensing  auto-duplex
        Link State:     Active, 1Gbps, full-duplex
        Link Ups:       1        Last: Fri Jun 03 17:09:36 2016
        Link Downs:     0        Last: --

        VLAN cfg:
                 Name: test, 802.1Q Tag = 10, MAC-limit = No-limit, Virtual router:   vr-test
                       Port-specific VLAN ID:   10
                 Name: test-login, Internal Tag = 200, MAC-limit = No-limit, Virtual router:   vr-test
      .
      .
        NetLogin:                       Enabled
        NetLogin authentication mode:   MAC based
        NetLogin port mode:             Port based VLANs
        Smart redundancy:               Enabled
        Software redundant port:        Disabled
        IPFIX:   Disabled               Metering:  Ingress, All Packets, All Traffic

Feedback

 

Was this article helpful?


   

Feedback

Please tell us how we can make this article more useful.

Characters Remaining: 255