Radius Server/Retry Count, Security/PPP | ADTRAN 1200070L1 guide

Chapter 3: Terminal Menu Operation and Structure

Radius Server/Retry Count

Write security: 1; Read security: 2

This is the number of times the Express XL/XLT should send a request packet to the RADIUS server without a response before giving up. If the number of attempts to communicate with the primary server is equal to the retry count, the secondary server (if defined) is tried. If the secondary server does not re- spond within the retry count, the PPP peer (or Telnet session) is not authenti- cated and is dropped. The default is 5.

Security/PPP

Write security: 1; Read security: 2

The PPP peer can be authenticated using three standard methods: PAP (Pass- word Authentication Protocol), CHAP (Challenge Handshake Protocol) and EAP (Extensible Authentication Protocol). The strength of the authentication is determined in the order EAP, CHAP, followed by PAP, where EAP is the strongest and PAP is the weakest. PAP is a clear-text protocol, which means it is sent over the PPP link in a readable format. Care must be taken not to al- low highly sensitive passwords to become compromised using this method. CHAP and EAP use a one-way hashing algorithm which make it virtually im- possible to determine the password. EAP has other capabilities which allow more flexibility than CHAP.

The following selections are possible:

PAP, CHAP or EAP (def) - The Express XL/XLT will ask for EAP during the first PPP LCP negotiation and allow the PPP peer to negotiate down to CHAP or PAP.

CHAP or EAP - The Express XL/XLT will ask for EAP during the first PPP LCP negotiation and allow the PPP peer to negotiate down to CHAP but not PAP.

EAP - The Express XL/XLT will only allow EAP to be negotiated. If the PPP peer is not capable of doing EAP, then the connection will not succeed.

58

Express XL/XLT User Manual

61200.070L1-1

Image 74

ADTRAN 1200070L1, 1200070L2 user manual Radius Server/Retry Count, Security/PPP

Contents

Express XL and Express XLT Trademark Page Canadian Emissions Requirements Table of Contents WAN/ISDN IP/RIP Table of Contents IP/Mode Table of Contents Test Menu/Echo Request Test Menu/Dial Self 117 107115 121 List of Figures List of Figures List of Tables List of Tables Setting UP the Isdn Line Quick Startup Guide Connecting to AN Internet Service Provider Internet Access using Network Address Translation NAT Remote/Home Office Accessing the Corporate LAN Multiprotocol Routing Between TWO Lans Save Connection List changes? enter y Quick Startup Guide Quick Startup Guide Isdn Overview Express XL/XLT Applications Single User to Corporate LAN Single User to Internet Service Provider Multiple Users to Internet Service Provider ISP using NAT Small Office Home Office Soho to Corporate LAN Soho to Corporate LAN Factory Default Demand Routing and Bridging with the Express XL/XLT Bridging IP Routing IPX Routing Concurrent Routing And BridgingRouting over PPP Bridging Connection List Simplifying and Enhancing the Dial Function Front Panel Network Address Translation ModeLAN Indicators Pushbutton Tests WAN IndicatorsTest Indicators Isdn Connection Interoperability Connecting to the InternetOrdering Isdn Configuration Security Isdn Network Connection Local Area Network Connection Telephone Connection XLT only Basic Telephone ServiceSupplementary Services Dtmf Keypad Conferencing Calls Customer Premises WiringCalling a second party with an active call Answering calls on hold, and holding incoming active calls New Wiring Scheme R N I N G Installation Terminal Menu Structure Dial Mode Right PaneLeft Pane System Time Logs StatusTest Utilities Menu Path Navigating the Terminal MenusGeneral Layout Moving Around Enter Navigation with the KeyboardGeneral Navigation Escape ConÞguration Security Levels System Name Configuration MenuConfiguration/System Info System Location System Uptime System ContactFirmware Revision Date/Time Configuration/WAN ISDN/Dial Line Dial Line/Area Code DMS-100National ISDN1 Dial Line/SPID Master ISDN/Leased LineSlave def Leased Line/Channel Rate POTS/NI-1 Conference FI ISDN/FEBEsPOTS/POTS Assignment POTS/NI-1 Transfer FI IP/Subnet Mask Configuration/IPIP/IP Address Static Routes/Active IP/Default GatewayIP/Static Routes Static Routes/IP Address IP Router/Mode Static Routes/PrivateIP/IP Router RIP/Mode RIP/Direction NAT/DHCP ModeRIP/Method RIP/V2 Secret DNS/Domain Name NAT/DHCP Renewal TimeNAT/Web Server DNS/Server UDP Relay/UDP Relay List IP/UDP RelayUDP Relay/Mode UDP Relay List/UDP Port Type IP/Proxy ARP IPX/Network Configuration/IPXIPX/Mode IPX/Seed Status IPX/RIP TimerIPX/Frame Type IPX/SAP Timer Bridge/WAN IP Bridge Configuration/BridgeBridge/Mode WAN IP Bridge/Triggered WAN IP Bridge/NetworkWAN IP Bridge/Netmask WAN IP Bridge/Proxy ARP WAN IPX Bridge/Seed Status WAN IPX Bridge/NetworkWAN IPX Bridge/Frame Type WAN IPX Bridge/Triggered Spanning Tree/Maximum Age Spanning Tree/Forward DelaySpanning Tree/Priority Spanning Tree/Hello Time Spanning Tree/WAN Port WAN Port 1/Priority WAN Port 1/ActiveWAN Port 1/Path Cost Bridge/Address Table Configuration/Security Security/Authentication Radius Server/Primary Server Security/WhenSecurity/Radius Server Radius Server/Secondary Server Radius Server/Retry Count Security/PPP Name Security/Filter DefinesFilter Defines /MAC Filter Defines Src Addr Pattern Filter Defines /Pattern Filter DefinesOffset Mask Proto Cmpr Dst Port CmprProto TCP Est Type Type Comp Configuration/Connection List Shows the Connection List menu Connection List/Description Connection List/AuthenticationConfiguration/Security/PPP Connection List/Active Authentication/Tx Method Authentication/Rx Username Authentication/Tx UsernameAuthentication/Tx Password Authentication/Rx Password IP/Mode Authentication/Call IDConnection List/IP IP/Route Route/Private Route/IP/NetRoute/Netmask Route/Hops RIP/Triggered IPX/Remote Network RIP/RetainConnection List/IPX IPX/Triggered IPX/Retain IPX/Type 20 Packets Probe/Active Connection List/BridgeConnection List/Probe Probe/Interval PPP/Multilink Probe/Update WindowConnection List/PPP Multilink/Mode PPP/Compression PPP/Max ConfigPPP/Max Timer PPP/VJ Compression Dial Out/Number PPP/Max FailureConnection List/Dial Out Dial Out/Call Type Dial Out/Redial at 56K Dial Out/DelayDial Out/Connection Timeout Dial Out/Attempts Bandwidth/On Demand Dial Out/Initial ChannelsConnection List/Bandwidth Bandwidth/Samples Connection List/Filters Filters/WAN-to-LAN Defines/MAC Filter Defines list From the Configuration/Security/FilterFilters/In Exceptions Defines/IPX Filter Defines list Filters/Out Exceptions Exceptions list Filters/Demand Dial Filters/Dem Dial Exceptions Management/Telnet Configuration/ManagementTelnet/Server Access User List/Authen Method Telnet/User ListUser List/Name User List/Level SNMP/Communities Snmp AccessManagement/SNMP Communities/Name Traps/Manager IP Maint Port/Password ProtectMaint Port/Password Management/Maint Port Maint Port/Stop Bits Configuration/Terminal ModeMaint Port/Parity Dial/Dial Dial MenuDial/Description Dial/Channels Dial/Hang UpDial/Status Dial/Number Status Menu Status/Call Sessions Call Sessions/Session1 and Call Sessions/Session2 Status/ARP Cache Call Sessions/Spanning Tree Status/Bridge Table Status/IP Routes Status/IPX Routes Hdlc Port Status/IPX ServersStatus/WAN Stats Status/LAN Stats Status/IP Stats Clear Counts clears all IP stats Test Menu/Dial Self Test MenuTest Menu/Echo Request Logs/PPP Log Logs MenuLogs/Sys log Host Logs/Call Log Logs/Network Log Network Log/Clear Network Log/LevelNetwork Log/View Utilities Menu Utilities/Ping Utilities/Upgrade Menu Utilities/Telnet Client Upgrade/TFTP Server Upgrade/Start TransferUpgrade/Abort Transfer Utilities/Exit 106 If SELF-TEST Fails If the Express XL/XLT does not Read Ready Troubleshooting 109 SPID1 = SPID2 = LDN 1 = LDN 2 = 111 112 Troubleshooting Calls If YOU are Unable to Connect Calls 114 Network Interface Specifications and FeaturesSwitch Compatibility Ethernet Interface LAN Environmental PowerDisplay Physical AutoSpid AT&T-5ESS ReadyAutoSpid Download Call number Getting TEI #1 DMS-100 ReadyEcho Tx X Rx Y Getting TEI #2 B1 and B2 Bearer Channel Status Messages Routing Waiting Appendix B Log Messages PPP Log Messages Appendix B Log Messages 123 124 Call Log Messages 126 127 128 129 130 131 132 133 Network Log Messages Installing bad default route ifnum=inter metric=hops gw=ip 136 137 138 Snmp Understanding Snmp Snmp Embedded Agent Communities Traps 142 Table D-A Table D-B Table D-C Table D-D Appendix E Terminal Mode Commands Menu Commands Goes directly to ConÞguration/Management/Telnet menu Goes directly to ConÞguration/System Info menuGoes directly to ConÞguration/Connection List menu Goes directly to ConÞguration/Management/SNMP menu Additional Commands Download/Uploading Configuration 148 Glossary CSMA/CD Ieee IPX NAT PRA Snmp TCP/IP ZIP 158 Acronyms Channel Isdn Index Index 163 164 165 PPP 19, 58 167 168 169 170 Post-Sale Support Product Support InformationPresales Inquiries and Applications Support Repair and Return