D-Link xStack User Manual page 294

Layer 2+ gigabit ethernet managed switch

Hide thumbs Also See for xStack:

Reference manual (1284 pages)

Hardware installation manual (71 pages)

Software manual (160 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

251

252

253

254

255

256

257

258

259

260

261

262

263

264

265

266

267

268

269

270

271

272

273

274

275

276

277

278

279

280

281

282

283

284

285

286

287

288

289

290

291

292

293

294

295

296

297

298

299

300

301

302

303

304

305

306

307

308

309

310

311

312

313

314

315

316

317

318

319

320

321

322

323

324

325

326

327

328

329

330

331

332

333

334

335

336

337

338

339

340

341

342

343

344

345

346

347

348

349

350

351

352

353

354

355

356

357

page of 357

/ 357
Contents
Table of Contents
Bookmarks

Table of Contents

xStack

To set JWAC for the Switch, complete the following fields:

Parameter

JWAC Global State

Forcible Logout

UDP Filtering

RADIUS Protocol

Authentication

FailOver

Redirect

Redirect Destination

Redirect Delay Time

(0-10)

Virtual IP

HTTPs Ports (1-

65535)

RADIUS

Authorization

Local Authorization

Quarantine Server

Monitor

DGS-3400 Series Layer 2 Gigabit Ethernet Managed Switch

Description

JWAC Global State Settings

Use this drop-down menu to either enable or disable JWAC on the Switch.

JWAC Configuration

This parameter enables or disables JWAC Forcible Logout. When Forcible Logout is

Enabled, a Ping packet from an authenticated host to the JWAC Switch with TTL=1 will be

regarded as a logout request, and the host will move back to the unauthenticated state.

This parameter enables or disables JWAC UDP Filtering. When UDP Filtering is Enabled, all

UDP and ICMP packets except DHCP and DNS packets from unauthenticated hosts will be

dropped

This parameter specifies the RADIUS protocol used by JWAC to complete a RADIUS

authentication. The options include Local, EAP MD5, PAP, CHAP, MS CHAP, and MS

CHAPv2.

When Authentication FailOver is Disabled, if the RADIUS servers are unreachable, the

authentication will fail. When the authentication FailOver is Enabled, if the RADIUS servers

are unreachable, the local database will be used to do the authentication. Authentication

FailOver is Disabled by default.

This parameter enables or disables JWAC Redirect. When the redirect quarantine server is

enabled, the unauthenticated host will be redirected to the quarantine server when it tries to

access a random URL. When the redirect JWAC login page is enabled, the unauthenticated

host will be redirected to the JWAC login page in the Switch to finish authentication. When

redirect is disabled, only access to the quarantine server and the JWAC login page from the

unauthenticated host are allowed, all other web access will be denied. NOTE: When enabling

redirect to the quarantine server, a quarantine server must be configured first.

This parameter specifies the destination before an unauthenticated host is redirected to either

the Quarantine Server or the JWAC Login Page.

This parameter specifies the Delay Time before an unauthenticated host is redirected to the

Quarantine Server or JWAC Login Page. Enter a value between 0 and 10 seconds. A value

of 0 indicates no delay in the redirect.

This parameter specifies the JWAC Virtual IP address that is used to accept authentication

requests from an unauthenticated host. Only requests sent to this IP will get a correct

response. NOTE: This IP does not respond to ARP requests or ICMP packets.

This parameter specifies the TCP port that the JWAC Switch listens to and uses to finish the

authentication process.

JWAC Authorization Network Configuration

If Enabled, the authorized data assigned by the RADUIS server will be accepted when the

global authorization network is enabled. The default state is Enabled.

If Enabled, the authorized data assigned by the Local database will be accepted if the global

authorization network is enabled. The default state is Enabled.

Quarantine Server Configuration

This parameter enables or disables the JWAC Quarantine Server Monitor. When Enabled,

the JWAC Switch will monitor the Quarantine Server to ensure the server is okay. If the

Switch detects no Quarantine Server, it will redirect all unauthenticated HTTP access

283

Table of Contents

This manual is also suitable for:

Xstack dgs-3400 series

D-Link xStack User Manual page 294

Related Manuals for D-Link xStack

Related Products for D-Link xStack

This manual is also suitable for:

Table of Contents