Panasonic NN46110-600 User Manual
Page 58
Attention! The text in this document has been recognized automatically. To view the original document, you can use the "Original mode".
48
Chapter 2 Configuring servers
event that the primary server is unreachable, the VPN Router queries the first
and second alternate RADIUS servers.
a
Enter either the Host Name or IP Address of the servers. For example,
finance.mycompany.com or 145.22.120.111. You can also use simple
names (for example, finance) if your VPN Router has a configured DNS
server. For
Primary
, enter the primary RADIUS server host name
(required if RADIUS is enabled). The primary server is normally used to
process incoming authentication requests. For
Alternate 1
, enter the first
alternate RADIUS Server host name (this server processes incoming
authentication requests if the primary RADIUS server is unavailable). For
Alternate 2
, enter the second alternate RADIUS server host name (this
server processes incoming authentication requests if the primary
RADIUS Server and the first alternate server are unavailable).
b
Under
Interface
, specify whether you want to access the RADIUS server
from the VPN Router’s private or public interface. You use the address of
the interface to configure the RADIUS client address information on the
remote RADIUS server. You must enable RADIUS authentication as an
allowed service on the
Services
>
Available
window. Select
Private
if the
RADIUS server is reached through the private interface. The management
address is used. Select
Public
if the RADIUS server is accessed through
the public interface. You must also specify the IP address for the public
interface. The public IP address list is dynamically built from the
information on the System > LAN window. Any change, such as
removing an interface card or changing an IP address, is automatically
reflected in the list.
c
In the
Port
field, enter the server port number that you want the RADIUS
authentication requests to use. Default is Port 1645.
d
In the
Secret
field, enter the password to share with the VPN Router. To
enhance overall security, enter a different password for each server. The
shared secret encrypts the password between the VPN Router and the
server when the tunnel connection uses PAP or SecurID. It also verifies
the authenticity of each accounting request sent by the VPN Router to the
RADIUS server. Furthermore, it verifies the authenticity of each response
sent by the RADIUS server to the VPN Router.
NN46110-600