37.2.24 Shielding Proxy Server and Dial-up
The two major potential threats to network security are: The user sets its own proxy server
and the user makes dial-up to access the network after authentication. DGS-3610 series
provide the function of shielding proxy servers and dial-up connections.
To implement this function, no setting is needed on the device endand it only needs the
corresponding attributes configured on the Radius server end. Since the Radius has no
standard attributes to indicate the maximum data rate, we can transfer the authorization
information only through the manufacturer-defined attributes. For the general format defined,
see the Authorization section.
The proxy server shielding function defines the Vendor type of 0x20, and the dial-up
shielding function defines the Vendor type of 0x21.
The Attribute-Specific field is a 4-byte manufacturer defined attribute, which defines the
actions taken against proxy server access and dial-up access. 0x0000 means normal
connection, without shielding detection. 0x0001 means shielding detection.
To shield the access via the proxy server, you should fill in the following information:
Figure 37-9
To shield the access via the dial-up connection, you should fill in the following information:
To Next Page
Loading...
Need help?
General