452
802.1X architecture, 72
802.1X configuration, 79, 82, 92
as authentication initiator (802.1X), 75
authentication (portal), 116
configuring public key (SSH2.0), 310
configuring router as (SFTP), 330, 333
configuring router as (SSH2.0), 313
configuring SSL policy, 343
configuring user interface (SSH2.0), 310
enabling listening port (RADIUS), 32
establishing server connection (SSH2.0), 315
portal system components, 115
RADIUS model, 2
SFTP configuration, 329
specifying RADIUS client, 49
specifying source IP address/interface (SFTP), 330
specifying source IP address/interface for
(SSH2.0), 313
configuration error (ACL), 304
configuring
802.1X, 79, 82, 92
AAA, 1, 50
AAA for portal users by a RADIUS server, 62
AAA schemes, 16
access control policy, 229
accounting-on (RADIUS), 30
ACL, 249
ACL assignment (MAC authentication), 112
ActiveX blocking, 378
aggressive mode IKE with NAT traversal, 299
ALG, 356, 358
ARP active acknowledgement, 419
ARP attack protection, 415
ARP attack protection restricted forwarding, 429
ARP detection (DHCP snooping), 426
ARP detection with 802.1X support, 428
ASPF, 352, 354
ASPF policy, 353
attack detection, 386, 391, 399
attack protection, 386, 391, 399
attack protection functions for interface, 392
attack protection functions on interfaces, 399
attack protection policy, 392
authentication (802.1X), 92
authentication source subnet, 129
Auth-Fail VLAN (802.1X), 80, 91
authorized ARP, 419
authorized ARP on DHCP relay agent, 421
authorized ARP on DHCP server, 420
autoLearn (port security), 183
automatic scanning (ARP attack protection), 431
blacklist function, 396, 400
CA-based access control policy, 240
certificate attribute-based access control policy,
240
client (SSH2.0), 323
client public key (SSH2.0), 310
client public key manually (SSH2.0), 311
client user interface (SSH2.0), 310
connection idle timeout period (SFTP), 330
connection limit, 370, 371
connection limit policy, 370
CRL-checking-disabled certificate verification, 228
CRL-checking-enabled certificate verification, 227
cross-subnet across VPNs portal authentication,
169
cross-subnet portal authentication, 146
cross-subnet portal authentication with extended
functions, 152
defense against IP packet attack (ARP attack
protection), 416, 417