DescriptionThe variables that can be used in a Network Access Policy Flex CLI (%port% %vlan% %ip% %mac%) is dependent upon whether the CLI configuration is set to Port Based or Host Based in the Model Configuration of the switch.
To verify:
1. Login to the Administration UI and navigate to Network Devices > Topology.
2. Right click on the model and select Model Configuration.
SolutionThe following table shows what variables can be used for each type (Port Based vs Host Based):
CLI Configuration Valid Variable Options
Substitution Data Port Based DO commands Port based UNDO commands Host Based DO commands Host Based UNDO commands
%port% Yes Yes Yes No %vlan% Yes Yes Yes No %ip% No No Yes Yes %mac% No No Yes Yes
Based on the above chart, a Flex CLI that is needed to do the following command would require that the switch's Model Configuration be set for Host Based CLI
because it uses all 4 variables in the DO section (%port% %vlan% %ip% %mac%). config t ip source binding %macXXXX.XXXX.XXXX% vlan %vlan% %ip% interface %port% end wr mem
Refer to CLI Configuration Overview in the Online Help or Administration and Operation guide in the Fortinet Document Library for more information.
|
