ZyXEL Communications 320W manual Re-Authentication

Page 40

P320W Support Notes

1.Force Authorized: Disables 802.1x and causes the port to transition to the authorized state without any authentication exchange required. The port transmits and receives normal traffic without

802.1x-based authentication of the client. This is the default port control setting. While AP is setup as Force Authorized, Wireless client (supported 802.1x client or none-802.1x client) can always access the network.

2.Force Unauthorized: Causes the port to remain in the unauthorized state, ignoring all attempts by the client to authenticate. The authenticator cannot provide authentication services to the supplicants through the port. While AP is setup as Force Unauthorized, Wireless clients (supported 802.1x client or none-802.1x client) never have the access for the network.

3.Auto: Enables 802.1x and causes the port to begin in the unauthorized state, allowing only EAPOL frames to be sent and received through the port. The authentication process begins when the link state of the port transitions from down to up, or when an EAPOL-start frame is received requests the identity of the client and begins relaying authentication messages between supplicant and the authentication server. Each supplicant attempting to access the network is uniquely identified by the authenticator by using the client’s MAC address. While AP is setup as Auto, only Wireless client supported 802.1x client can access the network.

Re-Authentication

The administrator can enable periodic 802.1x client re-authentication and specify how often it occurs. When re-authentication time out, Authenticator will send EAP-Request/ Identity to reinitiate authentication process.

In ZyXEL Wireless AP 802.1x implementation, if you do not specify a time period before enabling re-authentication, the number of seconds between re-authentication attempts is 1800 seconds (30 minutes).

EAPOL (Extensible Authentication Protocol over LAN)

Authenticators and supplicants communicate with one another by using the Extensible Authentication Protocol (EAP, RFC-2284). EAP was originally designed to run over PPP and to authenticate dial-in users, but 802.1x defines an encapsulation method for passing EAP packets over Ethernet frames. This method is referred to as EAP over LANs, or EAPOL. Ethernet type of EAPOL is 88-8E , two octets in length. EAPOL encapsulations are described for IEEE 802 compliant environment, such as 802.3 Ethernet, 802.11 Wireless LAN and Token Ring/FDDI.

40

All contents copyright (c) 2005 ZyXEL Communications Corporation.

Page 39 Page 41
Image 40
Page 39 Page 41
Contents Prestige 320W P320W Support Notes Ireless FAQ Trouble Shooting Internet Connection Ethernet connectionTCP/IP Configuration TCP/IP InstallationSetting up the Prestige router P320W Support Notes P320W Support Notes Configure an Internal Server Behind SUA Service Port Number SmtpUsing the Dynamic DNS Ddns Network Management Using Snmp Snmp OverviewP320W Support Notes SNMPv1 Operations Get GetNextSet TrapZyXEL Snmp Implementation Configure the Prestige for Snmp Get CommunitySet Community Using Prestige traffic redirectTraffic Redirect on LAN port Using Universal Plug n Play UPnP What is UPnPUsing UPnP in ZyXEL devices Go to Management-UPnP, check Enable UPnP service P320W Support Notes Finally, your video conversation is achieved Infrastructure Mode What is Infrastructure mode?P320W Support Notes Configuration Wireless Station to Infrastructure mode P320W Support Notes Double click on the AP you want to associated with Wireless MAC Address Filtering MAC Filter OverviewConfigure the Wlan MAC Filter ZyXEL MAC Filter ImplementationWEP Configuration IntroductionP320W Support Notes Setting up the Access Point Key settings Setting up the StationP320W Support Notes P320W Support Notes Ieee Ieee 802.1x IntroductionAuthentication Server AuthenticatorSupplicant Authentication Port State and Authentication Control Re-Authentication Eapol Exchange between 802.1x Authenticator and Supplicant P320W Support Notes Using WEB Configuration Using External Radius Authentication Server P320W Support Notes Site Survey Preparation Survey on SiteP320W Support Notes P320W Support Notes FAQ What is the P320W 802.11g Wireless Firewall Router?What is PPPoE? Will the P320W work with my Internet connection?What do I need to use the Prestige? Does the Prestige support PPPoE?How do I know I am using PPPoE? Why does my provider use PPPoE?How can I configure the Prestige? Which Internet Applications can I use with the Prestige?How does e-mail work through the Prestige? What Dhcp capability does the Prestige support? How fast can the data go?Your ISP checks the MAC address Your ISP checks the Host Name What is BOOTP/DHCP What is DdnsWhen do I need Ddns service? What makes P320W secure? What is a network firewall?What are the basic types of firewalls? What is Denials of Service DoS attack? What kind of firewall is the P320W?What is Ping of Death attack? What is Teardrop attack?What is SYN Flood attack? What is Land attack?What is a Wireless LAN? What is IP Spoofing attack?What are the advantages of Wireless LANs? Where can you find wireless 802.11 networks? What are the disadvantages of Wireless LANs?What is an Access Point? What is Ieee 802.11? What is 802.11b?What is 802.11a? What is 802.11g?What is Wi-Fi? Does the 802.11 interfere with Bluetooth devices?Can radio signals pass through walls? Is it possible to use products from a variety of vendors?What is Ad Hoc mode? What is Infrastructure mode?How many Access Points are required in a given area? Whats the difference between a Wlan and a WWAN?What is Direct-Sequence Spread Spectrum Technology DSSS? What is Frequency-hopping Spread Spectrum Technology FHSS?Why the 2.4 Ghz Frequency range? What is Server Set ID SSID?What is an ESSID? What is WEP?What is the difference between 40-bit and 64-bit WEP? What is a WEP key?What is Wireless Sniffer? Can the Ssid be encrypted?What are Insertion Attacks? Open SystemWhat is AAA? What is 802.1x?What is RADIUS? Why cannot access the Prestige from my computer? Why cannot access the Internet?Your ISP checks the MAC address ZyXEL SUA Supporting Table Unable to run applicationsApplication Outgoing Connection Incoming Connection NAT-T P320W Support Notes
Top Page Image Contents