1.
Go to: Objects > Address Book > Add > IP4 Address
2.
Now enter:
•
Name: client_ip_range
•
IP Address: 192.168.10.10-192.168.10.255
3.
Click OK
C. Create the DHCPServer object that hands out these addresses:
1.
Go to: Network > Network Services > DHCP Servers > Add > DHCPServer
2.
Now enter:
•
Name: rr_dhcp_server
•
Interface: vlan_data
•
Interface Filter: client_ip_range
•
Netmask: 255.255.255.0
3.
Select the Options tab and enable the option:
Distribute leases only to RADIUS relay authenticated clients
4.
Click OK
D. Create the IPRule object that grants access for client data flowing to the backbone network
which is connected to the interface If2:
1.
Go to: Policies > Firewalling > Main IP Rules > Add > IP Rule
2.
Specify a suitable name for the rule, for example LAN_HTTP
3.
Now enter:
•
Name: client_access_rule
•
Action: Allow
•
Service: all_services
•
Source Interface: vlan_data
•
Source Network: client_net
•
Destination Interface: If2
•
Destination Network: all-nets
4.
Click OK
E. Create the RadiusRelay object:
1.
Go to: Network > Network Services > RADIUS Relays > add > RADIUS Relay
2.
Now enter:
657
Chapter 8: User Authentication