Manuals / ZyXEL Communications / Computer Equipment / Network Router

ZyXEL Communications Authenticator, Supplicant, Authentication Server, P320W Support Notes

Models: 320W

1 75

Download 75 pages 14 b

Page 38

1. Authenticator:

P320W Support Notes

IEEE 802.1x authentication is a client-server architecture delivered with EAPOL (Extensible Authentication Protocol over LAN). The authentication server authenticates each client connected to a Access Point (For Wireless LAN) or switch port (for Ethernet) before accessing any services offered by the Wireless AP. 802.1x contains tree major components:

1. Authenticator:

The device (i.e. Wireless AP) facilitates authentication for the supplicant (Wireless client) attached on the Wireless network. Authenticator controls the physical access to the network based on the authentication status of the client. The authenticator acts as an intermediary (proxy) between the client and the authentication server (i.e. RADIUS server), requesting identity information from the client, verifying that information with the authentication server, and relaying a response to the client.

2. Supplicant:

The station (i.e. Wireless client) is being authenticated by an authenticator attached on the Wireless network. The supplicant requests access to the LAN services and responds to the requests from the authenticator. The station must be running 802.1x-compliant client software such as that offered in the Microsoft Windows XP operating system, Meeting House AEGIS 802.1x client and Odyssey 802.1x client.

3. Authentication Server:

38

All contents copyright (c) 2005 ZyXEL Communications Corporation.

Image 38

ZyXEL Communications manual Authenticator, Supplicant, Authentication Server, P320W Support Notes

Contents

Support Notes 802.11g Wireless Firewall RouterPrestige 320W P320W Support Notes APPLICATION NOTESWhat is BOOTP/DHCP P320W Support NotesTROUBLE SHOOTING P320W Support NotesInternet Connection Application NotesGeneral Application Notes 1. Ethernet connectionSetting up the Prestige router 2. TCP/IP Installation3. TCP/IP Configuration P320W Support NotesP320W Support Notes 1. Retrieve Prestige WebAll contents copyright c 2005 ZyXEL Communications Corporation P320W Support NotesConfigure an Internal Server Behind SUA P320W Support NotesPort numbers for some common services ServicePort Number All contents copyright c 2005 ZyXEL Communications CorporationUsing the Dynamic DNS DDNS P320W Support NotesNetwork Management Using SNMP Option Service Provider Active Host User Name PasswordEnable Wildcard DescriptionP320W Support Notes 1. A small set of management operations2. SNMPv1 Operations P320W Support NotesP320W Support Notes GetNextTrap 3. ZyXEL SNMP Implementation P320W Support NotesP320W Support Notes 4. Configure the Prestige for SNMPGet Community Traffic Redirect on LAN port Using Prestige traffic redirectSet Community P320W Support NotesP320W Support Notes Using Universal Plug n Play UPnP1. What is UPnP 2. Using UPnP in ZyXEL devices P320W Support NotesP320W Support Notes Go to Management-UPnP, check Enable UPnP serviceDevice P320W Service NAT function provided by Prestige Router Control Point PC1P320W Support Notes 3. Start a Video conversation with one online user5. Finally, your video conversation is achieved All contents copyright c 2005 ZyXEL Communications CorporationP320W Support Notes WLAN Application Notes Infrastructure Mode1. What is Infrastructure mode? P320W Support NotesAll contents copyright c 2005 ZyXEL Communications Corporation P320W Support Notes3. Configuration Wireless Station to Infrastructure mode P320W Support Notes3. Select Infrastructure from the operation mode pull down menu, fill in an SSID or leave it as any if you wish to connect to any AP than press Apply Change to take effect P320W Support Notes5. Double click on the AP you want to associated with All contents copyright c 2005 ZyXEL Communications CorporationP320W Support Notes P320W Support Notes Wireless MAC Address Filtering1. MAC Filter Overview P320W Support Notes 3. Configure the WLAN MAC Filter2. ZyXEL MAC Filter Implementation P320W Support Notes WEP Configuration1. Introduction The standard does not discuss how the shared key is established. In practice, most installations use a single key that is shared between all mobile stations and access points APs P320W Support Notes2. Setting up the Access Point P320W Support NotesP320W Support Notes Key settings3. Setting up the Station P320W Support Notes 2. Select the Encryption tabAll contents copyright c 2005 ZyXEL Communications Corporation P320W Support NotesKey settings IEEE1. IEEE 802.1x Introduction P320W Support Notes2. Supplicant 1. Authenticator3. Authentication Server P320W Support NotesAuthentication Port State and Authentication Control P320W Support NotesP320W Support Notes Re-AuthenticationEAPOL Extensible Authentication Protocol over LAN EAPOL Exchange between 802.1x Authenticator and Supplicant P320W Support NotesAll contents copyright c 2005 ZyXEL Communications Corporation P320W Support NotesUsing WEB Configuration IEEE 802.1x Configuration in ZyXEL Wireless Access PointEnable 802.1x in AP P320W Support NotesUsing External RADIUS Authentication Server P320W Support NotesWhen the client supplies its identity, the authenticator begins its role as the intermediary, passing EAP frames between the supplicant and the authentication server until authentication succeeds or fails. If the authentication succeeds, the switch port becomes authorized. The specific exchange of EAP frames depends on the authentication method being used. The figure below shows a message exchange initiated by the client using the MD5 Challenge authentication method with a RADIUS server P320W Support Notes1. Introduction Site SurveyP320W Support Notes P320W Support Notes 2. Preparation3. Survey on Site All contents copyright c 2005 ZyXEL Communications Corporation P320W Support Notes5. When you reach the farthest point of connection mark the spot. Now you move the access point to this new spot as have already determine the farthest point of the access point installation spot if wireless service is required from corner of the room P320W Support NotesP320W Support Notes Product FAQWhat is the P320W 802.11g Wireless Firewall Router? What do I need to use the Prestige? What is PPPoE?Will the P320W work with my Internet connection? Does the Prestige support PPPoE?How can I configure the Prestige? How do I know I am using PPPoE?Why does my provider use PPPoE? Which Internet Applications can I use with the Prestige?P320W Support Notes What is the main difference between WinGate and the Prestige?How does e-mail work through the Prestige? How can I upload data to outside Internet over the one-way cable? What DHCP capability does the Prestige support?What network interface does the new Prestige series support? How fast can the data go?1. Your ISP checks the MAC address P320W Support Notes2. Your ISP checks the Host Name P320W Support NotesP320W Support Notes What is BOOTP/DHCPWhat is DDNS Why cant I use video conferencing with MSN 4.6? When do I need DDNS service?What is DDNS wildcard? What DDNS servers does the Prestige support?What makes P320W secure? Firewall FAQWhat is a network firewall? What are the basic types of firewalls?P320W Support Notes What is Denials of Service DoS attack?What kind of firewall is the P320W? What is SYN Flood attack? What is Ping of Death attack?What is Teardrop attack? What is LAND attack?What is a Wireless LAN? Wireless FAQWhat is IP Spoofing attack? What are the advantages of Wireless LANs?Where can you find wireless 802.11 networks? c. Installation FlexibilityWhat are the disadvantages of Wireless LANs? What is an Access Point?What is 802.11a? What is IEEE 802.11?What is 802.11b? What is 802.11g?Can radio signals pass through walls? What is Wi-Fi?Does the 802.11 interfere with Bluetooth devices? Is it possible to use products from a variety of vendors?What is Infrastructure mode? SolutionWhat is Ad Hoc mode? How many Access Points are required in a given area?Why the 2.4 Ghz Frequency range? What is Direct-Sequence Spread Spectrum Technology - DSSS?What is Frequency-hopping Spread Spectrum Technology - FHSS? What is Server Set ID SSID?What is WEP? What is an ESSID?How do I secure the data across an Access Points radio link? What is the difference between 40-bit and 64-bit WEP?What are Insertion Attacks? What is Wireless Sniffer?Can the SSID be encrypted? Open SystemWhat is RADIUS? What is 802.1x?What is AAA? P320W Support NotesWhy cannot access the Prestige from my computer? Trouble ShootingWhy none of the LEDs turn on when connect the Prestige’s power? Why cannot access the Internet?2. Your ISP checks the Host Name P320W Support Notes1. Your ISP checks the MAC address Application Unable to run applicationsZyXEL SUA Supporting Table Outgoing ConnectionP320W Support Notes P320W Support Notes