Black Box LWN602A User Manual page 107

Smartpath enterprise wireless system

Hide thumbs Also See for LWN602A:

User manual (196 pages)

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

Table of Contents

DNS Querient

The SmartPath AP allows DNS queries and

replies between the client of an ungregistered

user and a DNS server.

Registration

HTTP Client

After the user provides a username and

password, and submits the registration, the

SmartPath AP forwards the access request

to SmartPath EMS. If SmartPath EMS

approves the request, the SmartPath AP

then moves the client's MAC address from

a quarantined list to a registered list.

To enable the captive web portal to forward DHCP and DNS traffic from unregistered users to external servers on the network,

click Configuration > Advanced Configuration > Authentication > Captive Web Portals > New, and select Use external DHCP and

DNS servers on the network.

Captive Web Portal with Internal DHCP and DNS Servers

With this approach, when the client of an unregistered user first associates with the SmartPath AP, it acts as a DHCP, DNS, and

Web server, limiting the client's network access to just the SmartPath AP with which it is associated. No matter what website the

user tries to reach, the SmartPath AP directs the browser to a registration page. After the user registers, the SmartPath AP stores

the client's MAC address as a registered user and stops keeping the station captive; that is, the SmartPath AP no longer acts as a

DHCP, DNS, and web server for traffic from that MAC address, but allows the client to access external servers. The entire process

is shown in Figures 9-11 and 9-12.

DNS address resolution

DNS Server

DNS Query

DNS Reply

SmartPath EMS

HTTP Server

Registration

Quarantine

MAC: 0016:cf8c:57bc

Registered

MAC: 0016:cf8c:57bc

Figures 9-9 and 9-10. Captive Web portal exchanges using HTTP.

724-746-5500 | blackbox.com

Chapter 9: Common Configuration Examples

HTTP connection to the captive web portal

HTTP Client

HTTP GET

When the client sends an HTTP or HTTPS

GET command, the SmartPath AP intercepts it

and sends it to its HTTP server, which replies

with a guest access registration page. The

user must agree to an acceptable use policy,

fill in some fields, and then submit the form.

DHCP, DNS, and HTTP Forwarding

Wireless

Client

Acess Point

The SmartPath AP applies the user profile for

registered guests and forwards all types of

traffic to the rest of the network, as permitted

by firewall policies assigned to that user profile.

HTTP Server

Servers

DHCP

DNS

HTTP

Page 107

Table of Contents

Chapters

Table of Contents

This manual is also suitable for:

Lwn602ae Lwn602ha Lwn602hae

Black Box LWN602A User Manual page 107

Chapters

Related Manuals for Black Box LWN602A

Related Products for Black Box LWN602A

This manual is also suitable for:

Table of Contents