SMC Networks SMCWHSG44-G manual Overview Features, Ieee 802.11b/g Compliant Wireless Operation

Page 19

1.1.Overview

1.2.Features

User Authentication, Authorization, and Accounting (AAA)

Web redirection - When an unauthenticated wireless user is trying to access a Web page, he/she is redirected to a logon page for entering the user name and password. Then, the user credential information is sent to a back-end RADIUS server for authentication or via the Local Authentication Database.

Local pages or external pages - The SMCWHSG44-G can be configured to use log-on, log-off, authentication success, and authentication failure pages, which are stored internally or stored in an external Web server maintained by the WISP. The contents of the local authentication pages can be customized.

Advertisement links - The log-off authentication page can be configured to show a sequence of advertisement banners.

Unrestricted clients - Client computers with specific IP addresses or MAC ad-dresses can bypass the Web redirection-based access control.

Walled garden. Some specific URLs can be accessed without authentication. These URLs can be exploited by WISPs or Hotspot Venues for adver- tisement purposes.

IEEE 802.1x - If a wireless client computer supports IEEE 802.1x Port- Based Network Access Control, the user of the computer can be authen- ticated by the Wireless Hotspot Gateway and wireless data can be encrypted by 802.1x EAP authentication method combined with WEP encryption.

RADIUS client - The SMCWHSG44-G communicates with a back-end RADIUS server for wireless user authentication, authorization, and accounting. Authentication methods, including EAP-MD5, EAP-TLS/EAP- TTLS, PAP, and CHAP are supported.

Internal Database - The Wireless Hotspot Gateway also supports an Internal Database of users so that you do not have to add an additional Radius Server. The Internal Database supports up to 2,000 user accounts.

Robustness - To enhance AAA integrity, the Wireless Hotspot Gateway can be configured to notify the RADIUS server after it reboots.

Authenticated users - Shows the status and statistics of every authenticated user. And an authenticated user can be terminated at any time for management purposes.

Authentication session control - Several mechanisms are provided for the network administrator to control user authentication session lifetimes.

IEEE 802.11b/g Compliant

Wireless Operation

Access Point - The AP enables IEEE 802.11 Stations (STAs) to automatically associate with it via the standard IEEE 802.11 association process. In addition, the IEEE 802.11 WDS (Wireless Distribution System) technology can be used to manually establish wireless links between two APs.

18

Page 18 Page 20
Image 19
Page 18 Page 20
Contents SMCWHSG44-G Page Trademarks CopyrightLimited Warranty Page FCC Radiation Exposure Statement Federal Communication Commission Interference StatementIndustry Canada Class B EC Conformance Declaration Power Cord Safety Safety ComplianceSchuko Page Wichtige Sicherheitshinweise Germany Schuko Page Table of Contents System Page SMCWHSG44-G SMCWHS-POS Introduction User Authentication, Authorization, and Accounting AAA Overview FeaturesIeee 802.11b/g Compliant Wireless Operation Internet Connection Sharing Network Security Firmware Tools LED Definition Package ChecklistRear Panel POE enabled LAN Port Position Selecting a Power Supply MethodMounting the SMCWHSG44-G on a Wall Changing the TCP/IP Settings of the Managing Computer Preparing for ConfigurationEntering the Password Configuring the SMCWHSG44-GHome Setup Wizard Selecting an Operational ModePage Router with a Static-IP DSL/Cable Connection Router with a DHCP-Based DSL/Cable ConnectionRouter with Multiple DSL/Cable Connections Setup Wizard Configuring Ieee 802.11 Settings Setup Wizard Configuring Dhcp Server SettingsWeb Redirection Configuring User Authentication SettingsAuthentication protocol Local Authentication SeverPage Account Table List How to Setup the Mini-POS Ticket PrinterIeee Radius Settings Allowable Authentication Modes Configuring Radius SettingsDeploying the SMCWHSG44-G Setting up Client ComputersTo establish a wireless link to an AP Configuring Ieee 802.11-Related SettingsConfiguring TCP/IP-Related Settings Page Authentication Success Menu Structure OverviewLogout Page Home and Refresh Commands Save, Save & Restart, and Cancel CommandsStatus Associated Wireless Clients Account Table Authenticated UsersManaged LAN Devices Session ListSystem Specifying Operational ModeManaging Firmware Changing PasswordTo upgrade firmware of the SMCWHSG44-G by Http Backing up and Restoring Configuration Settings by HttpUpgrading Firmware by Http Upgrading Firmware by Tftp To upgrade firmware of the SMCWHSG44-G by TftpTo back up configuration of the SMCWHSG44-G by Tftp Backing up and Restoring Configuration Settings by TftpTo restore configuration of the SMCWHSG44-G by Tftp Configuring TCP/IP Related Settings Address Resetting Configuration to Factory DefaultsTime Zone Router with a DHCP-Based DSL/Cable Connection Router with a Static-IP DSL/Cable Connection DNS DNS Proxy NAT Basic Host Address ResolutionVirtual Server Mappings To expose preset internal serversDhcp Server Ii. Static Dhcp Mappings Dhcp Server BasicLoad Balancing Dhcp RelayTo always assign an IP address to a specific Dhcp client Configuring Ieee 802.11-Related Settings Wireless Basic Zero Client ReconfigurationWireless Distribution System To enable a WDS link Wireless Distribution System SettingsNetwork Topology Containing a Loop SecurityPage MAC-Address-Based Access Control Settings MAC-Address-Based Access ControlTo grant wireless clients access to the wireless network To deny wireless clients access to the wireless networkIeee 802.1x/RADIUS Ieee 802.1x/RADIUS Settings Configuring Authentication Settings AAA Basic Default Authentication Failure Warning To specify an uncontrolled computer by MAC address Unrestricted ClientsRadius Basic Walled GardenRobustness Log-On Page Customization Settings Authentication Session ControlAuthentication Success Page Customization Settings Ddns Advertisement Links SettingsIcmp TCP UDP Firewall VlanTo set a rule for packet filtering Management Basic URL FiltersTo block Http traffic to an unwelcome Web site System Log UPnPSnmp Access RulesLAN Device Management Unrestricted Host MAC Address SettingsTo specify a LAN device to manage Example for LAN Device ManagementAppendix a Default SettingsLED Definitions TCP/IP Setting Problems Page Other Problems Wireless Settings ProblemsAppendix C Distances and Data Rates Standards Network ConfigurationTransmission output Power Configuration and ManagementKeypad Ad Hoc Access PointAuthentication Basic Service Set BSSEncryption Dynamic Host Configuration Protocol DhcpExtended Service Set ESS Extensible Authentication Protocol EAPLocal Area Network LAN Inter Access Point Protocol IappPower over Ethernet PoE InfrastructureSession Key Service Set Identifier SsidWireless Distribution System WDS Wi-Fi Protected AccessWPA Pre-shared Key PSK Wired Equivalent Privacy WEPPage For Technical SUPPORT, Call
Top Page Image Contents