1x overview, Introduction to radius, 6 introduction to radius – ZyXEL Communications ZyXEL ZyAIR B-1000 User Manual

ZyAIR Access Point Series User’s Guide

Wireless Security

6-7

Table 6-2 MAC Address Filter

LABEL

DESCRIPTION

Filter Action Define the filter action for the list of MAC addresses in the MAC address filter table.

Select Deny Association to block access to the router, MAC addresses not listed will be
allowed to access the router.
Select Allow Association to permit access to the router, MAC addresses not listed will be
denied access to the router.

MAC
Address

Enter the MAC addresses (in XX:XX:XX:XX:XX:XX format) of the wireless station that are
allowed or denied access to the ZyAIR in these address fields.

Apply

Click Apply to save your changes back to the ZyAIR.

Reset

Click Reset to begin configuring this screen afresh.

6.5 802.1x

Overview

The IEEE 802.1x standard outlines enhanced security methods for both the authentication of wireless stations
and encryption key management. Authentication can be done using the local user database internal to the
ZyAIR (authenticate up to 32 users) or an external RADIUS server for an unlimited number of users.

6.6 Introduction to RADIUS

RADIUS is based on a client-sever model that supports authentication and accounting, where access point is
the client and the server is the RADIUS server. The RADIUS server handles the following tasks among
others:

•

Authentication

Determines the identity of the users.

•

Accounting

Keeps track of the client’s network activity.

RADIUS user is a simple package exchange in which your ZyAIR acts as a message relay between the
wireless station and the network RADIUS server.

Types of RADIUS Messages

The following types of RADIUS messages are exchanged between the access point and the RADIUS server
for user authentication:

•

Access-Request

Sent by an access point requesting authentication.