Network parameters – Proxim ORiNOCO AP-2500 User Manual
Page 98
98
Network Parameters
•
Enable RADIUS Profile Caching: When enabled, the AP maintains the user’s information in the
(State: Pending) after a user logs out or times out. If the user attempts to re-connect, he can
access the service again without being prompted to re-enter his user name and password.
NOTE
This option uses the subscriber card’s MAC address to re-validate the user. For security reasons, you may not
want to enable this option. It is theoretically possible that an unauthorized individual could capture the user’s
MAC address and use it to spoof the AP to connect to the network when the actual user is not logged in.
•
Enable URL Redirection: When enabled, the AP uses the configured Nomadix-URL-Redirection VSA to redirect
an authenticated subscriber to the Web site specified by the VSA. Note that this option takes precedence over the
option (that is, if you have HPR enabled and you have configured the
Nomadix-URL-Redirection VSA, a RADIUS client will be redirected to the page specified by the VSA and not by
HPR).
•
Send Framed IP: When enabled, the IP address assigned to the client is included in the messages sent to
RADIUS server.
–
You can use this parameter to help identify the IP address assigned to clients in the RADIUS accounting logs.
If using IP Upsell, you can also see how many clients are using public IP addresses.
•
Send NAS Identifier: When enabled, the AP’s NAS Identifier is included in the messages sent to the RADIUS
server.
•
NAS Indentifier: Specifies a unique indentifier for the AP that is included within RADIUS messages if you enabled
Send NAS Identifier. (In RADIUS terminology, the AP is the NAS or Network Access Server.)
–
You can use this parameter to differentiate between multiple APs in the RADIUS accounting logs.
–
Also, the RADIUS server can alter a user’s access policy depending on the NAS identifier. For example, the
maximum session time could be reduced if the NAS identifier is “restaurant” instead of “library.”
•
Send NAS Port Type: When enabled, the NAS port type is included in the messages sent to the RADIUS server.
•
NAS Port Type: The port number that is included within RADIUS messages if you enabled Send NAS Port Type.
Set this to 19 if you want to use this parameter.
–
Port Type 19 corresponds to a connection made over an IEEE 802.11 Wireless network. See RFC 2865 for
details (the RFC is available at
).
–
You can also use NAS Port Type to establish different access policies. For example, in a cyber café there
could be two access types: wired and wireless and you could charge more for access from a wired computer
that is part of your network infrastructure.
•
Default User Idle Timeout: The AP times out users who are inactive for the specified number of seconds.
–
The AP only uses this parameter if the Idle-Timeout attribute is not set or if the attribute specifies an amount of
time that is greater than this setting. See
RADIUS Messages and RADIUS Attributes
for details.
–
When set to 0, a user never times out (assuming that the Idle-Timeout attribute is not set).