问

S3600+8021x认证未完成

2019-12-05提问

0关注
1收藏，1028浏览

zhiliao_NHQh9

zhiliao_NHQh9 零段

粉丝：0人关注：0人

问题描述：

型号：S3600-20P-SI 版本：Ver3.10

问题：802.1x认证，终端给交换机发送eap-response/id后，交换机没有响应了，8021x流程没有走完，日志也没有打印；

（radius配置是正常的，使用win网卡的8021x身份验证，认证流程是正常的；）

交换机debug

*0.6149635 H3C 8021X/8/PACKET:- 1 -Port:0,Received a EAPOL packet. *0.6149716 H3C 8021X/8/PACKET:- 1 -Port:0,Packet type: EAPOL-START. *0.6149796 H3C 8021X/8/EVENT:- 1 -Port:0,No resource exist. *0.6149867 H3C 8021X/8/EVENT:- 1 -Port:0,Auth:26,Alloc or search resource successfully. *0.6149977 H3C 8021X/8/EVENT:- 1 -Port:0,Auth:26,Band the resource to port successfully. *0.6150088 H3C 8021X/8/EVENT:- 1 -Port:0,Auth:26,Send Msg EAPOL-START to 802.1X-Msg-Queue successfully. *0.6150218 H3C 8021X/8/PACKET:- 1 -Port:0,End processing the packet received. ---Verbose information of the packet--- Destination Mac Address: 0180-c200-0003 Source Mac Address: 84a9-3e5b-dd55 Mac Frame Type: 888e. Protocol Version ID: 1. Packet Type: 1. Packet Length: 0. *0.6150569 H3C 8021X/8/EVENT:- 1 -Auth:26,Msg:EAP-START, Supplicant->Authenticator. *0.6150669 H3C 8021X/8/EVENT:- 1 -Auth:26,Jump to CONNECTING Status ... *0.6150760 H3C 8021X/8/EVENT:- 1 -Auth:26,Processing node CONNECTING... *0.6150860 H3C 8021X/8/EVENT:- 1 -Port:0,Auth:26, Send shakehanding-pkt without proxy-chk tag *0.6150981 H3C 8021X/8/PACKET:- 1 -Port:0,Transmitted a packet. ---Verbose information of the packet--- Destination Mac Address: 84a9-3e5b-dd55 Source Mac Address: 5866-ba86-e656 Mac Frame Type: 888e. Protocol Version ID: 1. Packet Type: 0. Packet Length: 5. -----Packet Body----- Code: 1. Identifier: 2. Length: 5. *0.6151392 H3C 8021X/8/PACKET:- 1 -Port:0,Received a EAPOL packet. *0.6151472 H3C 8021X/8/PACKET:- 1 -Port:0,NOT a Eapol-start. *0.6151543 H3C 8021X/8/PACKET:- 1 -Port:0,Auth:26,PacketType: EAPOL-PACKET. *0.6151633 H3C 8021X/8/PACKET:- 1 -Port:0,Auth:26,EAP Type: Response. *0.6151714 H3C 8021X/8/EVENT:- 1 -Port:0,Auth:26,Resource exists. *0.6151794 H3C 8021X/8/PACKET:- 1 -Port:0,Auth:26,Code Type: Identity. *0.6151886 H3C 8021X/8/PACKET:- 1 -Port:0,Auth:26,PacketType: Res/Id . User's IP(fr dhcp-secu) is invalid *0.6178861 H3C 8021X/8/EVENT:- 1 -Auth:26, *0.6178912 H3C 8021X/8/EVENT:- 1 -Auth:26,Processing node CONNECTING... *0.6179004 H3C 8021X/8/EVENT:- 1 -Port:0,Auth:26, Send shakehanding-pkt without proxy-chk tag *0.6179125 H3C 8021X/8/PACKET:- 1 -Port:0,Transmitted a packet. ---Verbose information of the packet--- Destination Mac Address: 84a9-3e5b-dd55 Source Mac Address: 5866-ba86-e656 Mac Frame Type: 888e. Protocol Version ID: 1. Packet Type: 0. Packet Length: 5. -----Packet Body----- Code: 1. Identifier: 2. Length: 5. *0.6179535 H3C 8021X/8/PACKET:- 1 -Port:0,Received a EAPOL packet. *0.6179616 H3C 8021X/8/PACKET:- 1 -Port:0,NOT a Eapol-start. *0.6179686 H3C 8021X/8/PACKET:- 1 -Port:0,Auth:26,PacketType: EAPOL-PACKET. *0.6179777 H3C 8021X/8/PACKET:- 1 -Port:0,Auth:26,EAP Type: Response. *0.6179860 H3C 8021X/8/EVENT:- 1 -Port:0,Auth:26,Resource exists. *0.6179941 H3C 8021X/8/PACKET:- 1 -Port:0,Auth:26,Code Type: Identity. *0.6180041 H3C 8021X/8/PACKET:- 1 -Port:0,Auth:26,PacketType: Res/Id . User's IP(fr dhcp-secu) is invalid *0.6208952 H3C 8021X/8/EVENT:- 1 -Auth:26, *0.6209003 H3C 8021X/8/EVENT:- 1 -Auth:26,Processing node FAILURE... *0.6209083 H3C 8021X/8/EVENT:- 1 -Auth:26,Sending EAPoL-Failure... *0.6209164 H3C 8021X/8/PACKET:- 1 -Port:0,Transmitted a packet.