447
configuring ISP domain authorization method, 43
configuring local user, 16
configuring local user attributes, 17
configuring method for ISP domain, 40
configuring NAS ID-VLAN binding, 47
configuring schemes, 16
configuring user group attributes, 20
creating ISP domain, 40
differences between HWTACACS and RADIUS, 7
displaying, 50
displaying local user, 20
displaying local user group, 20
domain-based user management, 9
for portal users by a RADIUS server, 62
HWTACACS.
See
HWTACACS
local authentication/authorization for Telnet/FTP
user, 54
maintaining local user, 20
maintaining local user group, 20
protocols and standards, 11
RADIUS.
See
RADIUS
specifying device ID used in stateful failover mode,
48
tearing down user connection, 47
troubleshooting, 70
access
control method (802.1X), 84
device (portal), 116
device as authentication initiator (802.1X), 75
accounting
accounting-on (RADIUS), 30
configuring ISP domain method (AAA), 45
user account policies (MAC authentication), 104
ACL
ActiveX blocking (web filtering), 376
assignment (802.1X), 81
assignment (MAC authentication), 105
assignment of authorized ACLs, 120
configuring IPV4 packet filtering on interface, 350
configuring IPV6 packet filtering on interface, 350
configuring packet filtering on interface, 349
configuring port mapping, 353
configuring with assignment (802.1X), 97
data flow protection modes, 252
enabling check of de-encapsulated IPsec packet,
260
firewall configuration, 345
implementing ACL-based IPsec, 248
Java blocking (web filtering), 375
keywords in rules, 249
mirror image ACL, 251
packet filtering firewall, 345
troubleshooting ACL configuration error, 304
troubleshooting configuration failure, 385
active
acknowledgement (ARP), 419
ActiveX blocking (web filtering), 376
ActiveX blocking configuring (web filtering), 378
ActiveX web filtering configuration, 374, 376,
379
authentication (portal), 115, 139
address
IP address-supported URL address filtering, 374
translation (firewall), 345
URL address filtering, 374
AES encryption algorithm (IPsec), 244
aggregation mode (ACL data flow protection), 252
aggressive mode IKE, 299
aging time
application layer protocol type-based (session
management), 363
configuring session early aging, 363