Controlled/uncontrolled port and port authorization status

802.1X defines two logical ports for the network access port: controlled port and uncontrolled port. Any packet arriving at the network access port is visible to both logical ports.

• Uncontrolled port—Is always open to receive and transmit authentication packets.

• Controlled port—Filters packets depending on the port state.

  • Authorized state—The controlled port is in authorized state when the client has passed authentication. The port allows traffic to pass through.

  • Unauthorized state—The port is in unauthorized state when the client has failed authentication. The port controls traffic by using one of the following methods:

    • Performs bidirectional traffic control to deny traffic to and from the client.

    • Performs unidirectional traffic control to deny traffic from the client. The device supports only unidirectional traffic control.