Manuals / ZyXEL Communications / Computer Equipment / Network Router

ZyXEL Communications manual Using External RADIUS Authentication Server, P320W Support Notes

Models: 320W

1 75

Download 75 pages 14 b

Page 44

•Using External RADIUS Authentication Server

P320W Support Notes

1.From the Web Configurator main menu, go to Network > Wireless LAN > General

2.Select 802.1x+Dynamic WEP to enable 802.1x authentication function.

3.Click Apply to make your setting work.

After 802.1x authentication function is enabled, you have to setup the authentication server, you need to specify the location and port of an external RADIUS authentication server.

•Using External RADIUS Authentication Server

RADIUS is based on a client-server model that supports authentication, authorization and accounting. The wireless AP is the client and the server is the RADIUS server.

The authenticator includes the RADIUS client, which is responsible for encapsulating and decapsulating the Extensible Authentication Protocol (EAP) frames and interacting with the authentication server. When the authenticator receives EAPOL frames and relays them to the authentication server, the Ethernet header is stripped and the remaining EAP frame is re-encapsulated in the RADIUS format. The EAP frames are not modified or examined during encapsulation, and the authentication server must support EAP within the native frame format. When the authenticator receives frames from the authentication server, the server’s frame header is removed, leaving the EAP frame, which is then encapsulated for Ethernet and sent to the supplicant.

44

All contents copyright (c) 2005 ZyXEL Communications Corporation.

Image 44

ZyXEL Communications manual Using External RADIUS Authentication Server, P320W Support Notes

Contents

Support Notes 802.11g Wireless Firewall RouterPrestige 320W P320W Support Notes APPLICATION NOTESWhat is BOOTP/DHCP P320W Support NotesTROUBLE SHOOTING P320W Support NotesApplication Notes General Application NotesInternet Connection 1. Ethernet connection2. TCP/IP Installation 3. TCP/IP ConfigurationSetting up the Prestige router P320W Support NotesP320W Support Notes 1. Retrieve Prestige WebAll contents copyright c 2005 ZyXEL Communications Corporation P320W Support NotesConfigure an Internal Server Behind SUA P320W Support NotesService Port NumberPort numbers for some common services All contents copyright c 2005 ZyXEL Communications CorporationUsing the Dynamic DNS DDNS P320W Support NotesOption Service Provider Active Host User Name Password Enable WildcardNetwork Management Using SNMP DescriptionP320W Support Notes 1. A small set of management operations2. SNMPv1 Operations P320W Support NotesP320W Support Notes GetNextTrap 3. ZyXEL SNMP Implementation P320W Support NotesP320W Support Notes 4. Configure the Prestige for SNMPGet Community Using Prestige traffic redirect Set CommunityTraffic Redirect on LAN port P320W Support NotesP320W Support Notes Using Universal Plug n Play UPnP1. What is UPnP 2. Using UPnP in ZyXEL devices P320W Support NotesGo to Management-UPnP, check Enable UPnP service Device P320W Service NAT function provided by Prestige RouterP320W Support Notes Control Point PC1P320W Support Notes 3. Start a Video conversation with one online user5. Finally, your video conversation is achieved All contents copyright c 2005 ZyXEL Communications CorporationP320W Support Notes Infrastructure Mode 1. What is Infrastructure mode?WLAN Application Notes P320W Support NotesAll contents copyright c 2005 ZyXEL Communications Corporation P320W Support Notes3. Configuration Wireless Station to Infrastructure mode P320W Support Notes3. Select Infrastructure from the operation mode pull down menu, fill in an SSID or leave it as any if you wish to connect to any AP than press Apply Change to take effect P320W Support Notes5. Double click on the AP you want to associated with All contents copyright c 2005 ZyXEL Communications CorporationP320W Support Notes P320W Support Notes Wireless MAC Address Filtering1. MAC Filter Overview P320W Support Notes 3. Configure the WLAN MAC Filter2. ZyXEL MAC Filter Implementation P320W Support Notes WEP Configuration1. Introduction The standard does not discuss how the shared key is established. In practice, most installations use a single key that is shared between all mobile stations and access points APs P320W Support Notes2. Setting up the Access Point P320W Support NotesP320W Support Notes Key settings3. Setting up the Station P320W Support Notes 2. Select the Encryption tabAll contents copyright c 2005 ZyXEL Communications Corporation P320W Support NotesIEEE 1. IEEE 802.1x IntroductionKey settings P320W Support Notes1. Authenticator 3. Authentication Server2. Supplicant P320W Support NotesAuthentication Port State and Authentication Control P320W Support NotesP320W Support Notes Re-AuthenticationEAPOL Extensible Authentication Protocol over LAN EAPOL Exchange between 802.1x Authenticator and Supplicant P320W Support NotesAll contents copyright c 2005 ZyXEL Communications Corporation P320W Support NotesIEEE 802.1x Configuration in ZyXEL Wireless Access Point Enable 802.1x in APUsing WEB Configuration P320W Support NotesUsing External RADIUS Authentication Server P320W Support NotesWhen the client supplies its identity, the authenticator begins its role as the intermediary, passing EAP frames between the supplicant and the authentication server until authentication succeeds or fails. If the authentication succeeds, the switch port becomes authorized. The specific exchange of EAP frames depends on the authentication method being used. The figure below shows a message exchange initiated by the client using the MD5 Challenge authentication method with a RADIUS server P320W Support Notes1. Introduction Site SurveyP320W Support Notes P320W Support Notes 2. Preparation3. Survey on Site All contents copyright c 2005 ZyXEL Communications Corporation P320W Support Notes5. When you reach the farthest point of connection mark the spot. Now you move the access point to this new spot as have already determine the farthest point of the access point installation spot if wireless service is required from corner of the room P320W Support NotesP320W Support Notes Product FAQWhat is the P320W 802.11g Wireless Firewall Router? What is PPPoE? Will the P320W work with my Internet connection?What do I need to use the Prestige? Does the Prestige support PPPoE?How do I know I am using PPPoE? Why does my provider use PPPoE?How can I configure the Prestige? Which Internet Applications can I use with the Prestige?P320W Support Notes What is the main difference between WinGate and the Prestige?How does e-mail work through the Prestige? What DHCP capability does the Prestige support? What network interface does the new Prestige series support?How can I upload data to outside Internet over the one-way cable? How fast can the data go?1. Your ISP checks the MAC address P320W Support Notes2. Your ISP checks the Host Name P320W Support NotesP320W Support Notes What is BOOTP/DHCPWhat is DDNS When do I need DDNS service? What is DDNS wildcard?Why cant I use video conferencing with MSN 4.6? What DDNS servers does the Prestige support?Firewall FAQ What is a network firewall?What makes P320W secure? What are the basic types of firewalls?P320W Support Notes What is Denials of Service DoS attack?What kind of firewall is the P320W? What is Ping of Death attack? What is Teardrop attack?What is SYN Flood attack? What is LAND attack?Wireless FAQ What is IP Spoofing attack?What is a Wireless LAN? What are the advantages of Wireless LANs?c. Installation Flexibility What are the disadvantages of Wireless LANs?Where can you find wireless 802.11 networks? What is an Access Point?What is IEEE 802.11? What is 802.11b?What is 802.11a? What is 802.11g?What is Wi-Fi? Does the 802.11 interfere with Bluetooth devices?Can radio signals pass through walls? Is it possible to use products from a variety of vendors?Solution What is Ad Hoc mode?What is Infrastructure mode? How many Access Points are required in a given area?What is Direct-Sequence Spread Spectrum Technology - DSSS? What is Frequency-hopping Spread Spectrum Technology - FHSS?Why the 2.4 Ghz Frequency range? What is Server Set ID SSID?What is an ESSID? How do I secure the data across an Access Points radio link?What is WEP? What is the difference between 40-bit and 64-bit WEP?What is Wireless Sniffer? Can the SSID be encrypted?What are Insertion Attacks? Open SystemWhat is 802.1x? What is AAA?What is RADIUS? P320W Support NotesTrouble Shooting Why none of the LEDs turn on when connect the Prestige’s power?Why cannot access the Prestige from my computer? Why cannot access the Internet?2. Your ISP checks the Host Name P320W Support Notes1. Your ISP checks the MAC address Unable to run applications ZyXEL SUA Supporting TableApplication Outgoing ConnectionP320W Support Notes P320W Support Notes