Linksys WRT51AB manual Radius Server

Page 30

Instant Wireless® Series

Important: The Router’s 802.1x feature works with Windows XP. It may also work with other Windows operating systems, depend- ing on the specifics of your PC’s operating system and the 802.1x client software being used.

RADIUS Server

The Router’s 802.1x feature works with a RADIUS server. It may also work with other types of authentication servers, depending on the specifics of each authentication server.

RADIUS Server IP Address Enter the IP Address of the RADIUS server in the field provided.

RADIUS Server Port Enter the Port Number of the RADIUS server in the field provided. The default is 1812.

Shared Secret Enter the Shared Secret Key used by the Router and RADIUS server during the authentication process.

5GHz, 802.11a

Disable/EAP-MD5/EAP-TLS/TTLS Select EAP-MD5to enable use of 802.1x with MD5 authentication for the 5GHz, 802.11a network connection between a wireless client and a RADIUS server (the Router acts as an authenticator). Select EAP-TLS/TTLSto enable use of 802.1x with TLS or TTLS authentication for the 5GHz, 802.11a network connection between a wireless client and a RADIUS server (the Router acts as an authenticator). To disable 802.1x authentication for your 5GHz, 802.11a network, keep the default setting, Disable.

Note: Many authentication methods work within the 802.1x frame- work. The Router supports MD5 and certificate-based (TLS or TTLS) authentication methods. Using MD5 authentication is less secure than using certificate-based authentication (TLS or TTLS), because keys are not changed automatically.

WEP Settings If you are using 802.1x with MD5 authentication, then you must click the WEP Settings button and set up a static key for WEP encryption. This static key must be set on the Router’s 5GHz, 802.11a WEP Settings screen and on all 5GHz, 802.11a wireless clients.

Dual-Band Wireless A+B Broadband Router

Dynamic WEP Key Length When 5GHz, 802.11a wireless clients are using certificate-based authentication (EAP-TLS or EAP-TTLS), dynamic WEP keys are automatically generated. Select the length of the Dynamic Key (64 or 128-bit) from the drop-down menu.

Key Renewal Timeout If you are using dynamic WEP keys (available only for EAP-TLS or EAP-TTLS authentication), enter the number of seconds that will elapse before the Dynamic Key automatically changes. The default is 300 seconds.

Port Inactivity Timeout After the wireless client has been authenticated, the Router monitors activity on the port being used. In the Port Inactivity Timeout field, enter the number of seconds the port can be inactive before the client automatically forced to reauthenticate. The default is 600 seconds.

Port Connectivity Timeout After the Router requests the identity of a wire- less client, the client must respond with an identity message within a cer- tain length of time. In the Port Connectivity Timeout field, enter the number of seconds the client has to respond within before the connection is termi- nated. The default is 300 seconds.

2.4GHz, 802.11b

Disable/EAP-MD5/EAP-TLS/TTLS Select EAP-MD5to enable use of 802.1x with MD5 authentication for the 2.4GHz, 802.11b network connec- tion between a wireless client and a RADIUS server (the Router acts as an authenticator). Select EAP-TLS/TTLSto enable use of 802.1x with TLS or TTLS authentication for the 2.4GHz, 802.11b network connection between a wireless client and a RADIUS server (the Router acts as an authenticator). To disable 802.1x authentication for your 2.4GHz, 802.11b network, keep the default setting, Disable

Note: Using MD5 authentication is less secure than using certificate- based authentication (TLS or TTLS), because keys are not changed automatically.

WEP Settings If you are using 802.1x with MD5 authentication, then you must click the WEP Settings button and set up a static key for WEP encryption. This static key must be set on the Router’s 2.4GHz, 802.11b WEP Settings screen and on all 2.4GHz, 802.11b wireless clients.

52

53

Page 29 Page 31
Image 30
Page 29 Page 31
Contents Dual-Band Wireless A+B Broadband Router Copyright & Trademarks Table of Contents Common Problems and Solutions Frequently Asked Questions IntroductionEnvironmental 127 IP Addresses FeaturesRouter’s Functions What’s an IP Address?Dhcp Dynamic Host Configuration Protocol Servers Router Setup OverviewDynamic IP Addresses Getting to Know the Dual-Band Wireless A+B Broadband Router Router’s Back PanelRouter’s Front Panel LEDs LAN Indicators Internet IndicatorsProceed to Connect the Router Wired Connection to a PC Connect the RouterOverview Configure the PCs Wireless Connection to a PCConfiguring Windows 98 and Millennium PCs Go to Configure the Router’s Basic SettingsConfiguring Windows 2000 PCs Configuring Windows XP PCs Configure the Router’s Basic Settings Static or Fixed IP Address Automatic Configuration DhcpEnter the Default Gateway Enter the Internet IP AddressHow to Access the Web-based Utility Router’s Web-based UtilityAutomatic Configuration Dhcp SetupStatic IP Pptp 5GHz, 802.11a 5GHz, 802.11a WEP 4GHz, 802.11b WEP Password StatusLAN Dhcp Log HelpAdvanced Tabs Advanced Wireless 5GHz, 802.11a802.1x Configuration Radius Server Filters Private MAC Filter To set up a filter Private IP Filter11-20 , 21-30 , 31-40 , or 41-50 from Applications External Port TCP Protocol UDP Protocol Port ForwardingRouting Click the Delete This Entry buttonDMZ Host MAC Address Clone Need to set a static IP address on a PC Appendix a TroubleshootingCommon Problems and Solutions For Windows NTFor Windows XP Want to test my Internet connectionFor Windows 98, Me, 2000, and XP Need to set up a server behind my Router TCP UDPCan’t get the Internet game, server, or application to work Firmware upgrade failed, and/or the Diag LED is flashing To start over, I need to set the Router to factory defaultNeed to upgrade the firmware My DSL service’s PPPoE is always disconnectingFrequently Asked Questions Click the Advanced = Filters tabDoes the Router support ICQ send file? How can I block corrupted FTP downloads?What is the Ieee 802.11a standard? What is DMZ Hosting?What are the advanced features of the Router? What is the Ieee 802.11b standard?What is infrastructure mode? What Ieee 802.11b features are supported?What is ad-hoc mode? What is roaming?How do I reset the Router? What is WEP?What is a MAC Address? How do I resolve issues with signal loss?Appendix B How to Ping Your ISP’s E-mail & Web Addresses Step One Pinging an IP AddressAppendix C Configuring Wireless Security Step Two Pinging for a Web AddressBackground 802.1x Authentication WEP EncryptionMD5 Authentication for Windows XP Figure C-2Figure C-5 Digital Certificate Installation Figure C-9Click Install this certificate Figure C-13TLS Authentication for Windows XP Figure C-18Figure C-21 Figure C-25 For Windows 95, 98, and MeFigure D-3 For Windows NT, 2000, and XPAppendix E Glossary 111 113 115 117 119 121 123 125 Category 5 Ethernet Network Cable or better Appendix F SpecificationsOne 10/100 RJ-45 Port for Cable/DSL Modem EnvironmentalAppendix H Contact Information Appendix G Warranty InformationSales Information Technical Support RMA Issues Fax Web site FTP siteCopyright 2002 Linksys, All Rights Reserved
Top Page Image Contents