A10E/A28E/A28F Configuration Guide
arp rate limit auto recover time: 15 second
Port Enable-Status Rate(Num/Sec) Overload
--------------------------------------------------
1 Disabled 100 No
2 Enabled 20 No
3 Disabled 100 No
4 Disabled 100 No
…
6.4 RADIUS
6.4.1 Introduction
Remote Authentication Dial In User Service (RADIUS) is a standard communication protocol
that authenticates remote access users intensively. RADIUS uses UDP as the transmission
protocol (port 1812 and port 1813) which has a good instantaneity; at the same time, RADIUS
supports retransmission mechanism and standby server mechanism which has a good
reliability.
RADIUS authentication function
RADIUS adopts client/server mode, network access device is used as client of RADIUS
server. RADIUS server receives user connecting requests and authenticates users, then reply
configuration information to all clients for providing services. Control user access device and
network and improve network security.
Communication between client and RADIUS server is authenticated by sharing key, which
will not be transmitted on network. Besides, all user directions need to be encrypted when
transmitting between client device and RADIUS server to ensure security.
RADIUS accounting function
RADIUS accounting function is used to authenticate user through RADIUS. User sends a
starting account packets to RADIUS accounting server when log in, according to the
accounting policy to send update packet to RADIUS server; when log off, send stopping
account packet to RADIUS accounting server, the packet includes user online time. RADIUS
accounting server can record the access time and operations for each user by the packets.
6.4.2 Preparing for configurations
Scenario
You can deploy RADIUS server in network to take authentication and accounting so as to
control user access to device and network. This device can be used as agent of RADIUS
server, which authorizes user accessing according to feedback from RADIUS.
Prerequisite
N/A
To Next Page
Loading...