Access Control And Authentication; Security; 5-Step Service Branding - Nomadix AG 5500 User Manual
Access gateways
Hide thumbs
Also See for AG 5500:
- User manual (392 pages) ,
- User manual (330 pages) ,
- User manual (344 pages)
Table of Contents
Advertisement
AG 5500
Access Control and Authentication
The AG 5500 ensures that all traffic to the Internet is blocked until authentication has been
completed, creating an additional level of security in the network. Also, allows service
providers to create their own unique "walled garden," enabling users to access only certain
predetermined Web sites before they have been authenticated.
Nomadix simultaneously supports the secure browser-based Universal Access Method
(UAM), IEEE 802.1x, and Smart Clients for companies such as Adjungo Networks, Boingo
Wireless, GRIC and iPass. MAC-based authentication is also available.
Security
The patent-pending iNAT™ (Intelligent Network Address Translation) feature creates an
intelligent mapping of IP Addresses and their associated VPN tunnels—by far the most
reliable multi-session VPN passthrough to be tested against diverse VPN termination servers
from companies such as Cisco, Checkpoint, Nortel and Microsoft. Nomadix' iNAT feature
allows multiple tunnels to be established to the same VPN server, creating a seamless
connection for all users on the network.
The AG 5500 provides fine-grain management of DoS (Denial of Service) attacks through its
Session Rate Limiting (SRL) feature, and MAC filtering for improved network reliability.
5-Step Service Branding
A network enabled with the Nomadix AG 5500 (or any other Nomadix Access Gateway)
offers a 5-Step service branding methodology for service providers and their partners,
comprising:
Initial Flash Page branding.
1.
2.
Initial Portal Page Redirect (Pre-Authentication). Typically, this is used to redirect the
user to a venue-specific Welcome and Login page.
Home Page Redirect (Post-Authentication). This redirect page can be tailored to the
3.
individual user (as part of the RADIUS Reply message, the URL is received by the NSE)
or set to re-display itself at freely configurable intervals.
4.
The Information and Control Console (ICC) contains multiple opportunities for an
operator to display its branding or the branding of partners during the user's session. As an
alternative to the ICC, a simple pop-up window provides the opportunity to display a
single logo.
The "Goodbye" page is a post-session page that can be defined either as a RADIUS VSA
5.
or be driven by the Internal Web Server (IWS) in the NSE. Using the IWS option means
that this functionality is also available for other post-paid billing mechanisms (for
example, post-paid PMS).
Introduction
5
Hide quick links:
Advertisement
Table of Contents
