Filter
Top Products
DES-7200 Configuration Guide Chapter 1 Access Control List
Configuration
1-36
1.12.3 Application of expert
ACL & ACL80
1.12.3.1 Networking Diagram
The above figure shows the simplified topology of campus network:
SwitchA is the convergence device assigning one VLAN for each faculty and is
connected to the campus network through 10G optical fiber cable (trunk mode).
SwitchB and SwitchC are access devices connecting PCs of respective faculties, and
are connected to the convergence switch through 1000M optical fiber cable (trunk
mode).
SU client must be installed on each PC, which can only access network after passing
802.1x authentication.
1.12.3.2 Application Requirements
SU software is not embedded in Windows. You must download and install SU client
on the PC in order to pass authentication. However, the PC cannot download
software without 802.1x authentication. To solve this problem, the following
requirements must be met:
1. IP packets and ARP packets accessing the segment address of gateway/server
(172.18.0.0/16) are allowed to pass through without authentication, so that the
user PC can download software from the specified server or access gateway
before authentication.