Configuring port authentication, Configuring port authentication – Netopia 6.3 User Manual
Page 138
138
Appendix A
CONFIG Commands
Specifies the number of seconds the Cayman Gateway should wait before retrans-
mitting a configuration or termination request. The integer argument can be any
number between 1 and 30.
Specifies whether a PPP connection is maintained by the Cayman Gateway when
it is unused for extended periods. If you specify always-on, the Cayman Gate-
way never shuts down the PPP link. If you specify instant-on, the Cayman
Gateway shuts down the PPP link after the number of seconds specified in the
time-out
setting (below) if no traffic is moving over the circuit.
If you specified a connection type of
instant-on
, specifies the number of seconds,
in the range 30-600, the Cayman Gateway should wait for communication activ-
ity before terminating the PPP link.
Configuring Port Authentication
You can use the following commands to specify how your Cayman Gateway
should respond when it receives an authentication request from a remote peer.
The settings for port authentication on the local Cayman Gateway must match
the authentication that is expected by the remote peer. For example, if the
remote peer requires CHAP authentication and has a name and CHAP secret for
the Cayman Gateway, you must enable CHAP and specify the same name and
secret on the Cayman Gateway before the link can be established.
Specifies whether CHAP authentication is enabled. CHAP authentication must be
enabled before you can enter other CHAP information. If CHAP is turned on, it
will be the first authentication method offered to the remote peer during link
negotiation.
If you turn port authentication off and peer authentication on, the PPP software
still uses the port authentication chap-name and pap-name for authentication. As
a result, the port authentication names for PAP and CHAP must be identical to the
peer names for your Cayman Gateway on the remote peer. If you do not config-
ure a chap-name or pap-name, then the authentication packets sent by the local
peer will have blank name values. This may cause authentication to fail for some
PPP implementations.
BOTH
set PPP module [vccn] restart-timer
integer
BOTH
set PPP module [vccn] connection-type
{ instant-on | always-on }
BOTH
set PPP module [vccn] time-out
integer
BOTH
set PPP module [vccn] port-authentication
chap-option { on | off }