Home » ZyXEL Manuals » Networking » ZyXEL VSG-1200 V2 » Manual Viewer

ZyXEL VSG-1200 V2 User Guide - Page 84

Billing, Accounting

Get ZyXEL VSG-1200 V2 PDF manuals and user guides

Add to My Manuals
Save this manual to your list of manuals

Page 84 highlights

VSG-1200 V2 User's Guide The following table describes the labels in this screen. Table 17 System Settings: Authentication LABEL DESCRIPTION No Authentication User Agreement Select this option to disable subscriber authentication. Subscribers can access the Internet without entering user names and passwords. This is the default setting. Select User Agreement to direct a subscriber to an Internet service usage agreement page before accessing the Internet. Redirect Page URL Link Specify the URL of the user agreement page in the field provided. Click Code to display the HTML source code of a default sample page. Standard User Agreement Page Built-in Authentication Select this option to use the pre-configured user agreement page on the VSG. Select this option to authenticate the subscribers using the local subscriber database. Then click Select option to choose a per-configured setting in the Current Preset option field. Note: When you select this option, you must also configure the Billing and Accounting screens. Current preset option This field is available when you select Built-in Authentication. This field displays the current pre-configured setting for the built-in authentication. To select a predefined option, click Select option to open the Scenario Guide screen (refer to Figure 33 on page 86). RADIUS Select this option to authenticate subscribers using a remote RADIUS server. Then configure the following fields. Check Local Account First Select this option to have the VSG authenticate a subscriber using the local user database first. If the account information is not found, then the VSG authenticates subscribers using the RADIUS server(s) specified. Clear this check box to have the VSG authenticate subscribers using the RADIUS server(s) only. Accumulation Select this option for multiple re-login until the time allocated is used up. If a subscriber logs out and accesses the Internet again within the time period specified in the Idle Timeout field, the subscriber does not have to enter the user name and password again to log in. Time to Finish Select this option to allow each subscriber a one-time login. If a subscriber logs out before the allocated time expires, the subscriber does not have to enter the user name and password to access the Internet again. Primary/Secondary RADIUS Server Authentication Port Accounting Port Server IP Address Enter the IP address of a RADIUS server in dotted decimal notation. Specify the authentication port of the RADIUS server. The common port numbers are 1645 and 1812. Specify the accounting port of the RADIUS server. The common port numbers are 1646 and 1813. Secret Key Specify a password (up to 31 alphanumeric characters) as the key to be shared between the RADIUS server and the VSG. The key is not sent over the network. Note: This key must be the same on the RADIUS server and the VSG. Retry Attempts when Specify the number of times (1 to 3) the VSG resends an authentication Primary fail request to the primary and/or secondary RADIUS servers. Chapter 9 Authentication 84

Section	Page
User’s Guide	1
Copyright	2
Certifications	3
Safety Warnings	5
ZyXEL Limited Warranty	7
Customer Support	8
Table of Contents	10
List of Figures	20
List of Tables	26
Preface	30
Getting to Know Your VSG	32
1.1 Introducing the VSG	32
1.2 Features	32
1.3 Applications	35
1.3.1 Internet Access for LAN Networks	35
1.3.2 Internet Access in Public Areas	36
1.3.3 Hotel Application with PMS	36
Hardware Installation and Connection	38
2.1 Installation Options	38
2.1.1 Desktop Installation	38
2.1.2 Rack Mount Installation	38
2.2 Hardware Connections	39
2.2.1 Front Panel	39
2.2.1.1 LAN Port	40
2.2.1.2 WAN Port	40
2.2.1.3 Console Port	40
2.2.1.4 PMS Port	40
2.2.1.5 Reset Button	40
2.2.2 Front Panel LEDs	41
2.2.3 Rear Panel	41
2.2.4 Turning on the VSG	41
The Web Configurator	42
3.1 Introducing the Web Configurator	42
3.2 Accessing the Web Configurator	42
3.3 Navigation Panel	43
3.3.1 The Navigation Panel	44
3.3.2 Screen Specific Links	44
3.4 Screen Overview	44
3.4.1 Saving Configuration Changes	45
3.5 System Login Accounts	45
3.6 Changing System Login Passwords	45
3.7 Resetting the VSG	47
3.8 Restarting the VSG	47
3.9 Logging Out of the Web Configurator	48
Initial Setup Example	50
4.1 Overview	50
4.2 Configure the VSG for Internet Access	50
4.3 Create a Billing Profile	51
4.4 Setting User Authentication Method	52
4.5 Creating Customer Accounts	53
4.6 Customer Login Test	53
System	56
5.1 General System Setting	56
LAN and WAN Setup	60
6.1 Factory Ethernet Defaults	60
6.2 LANs and WANs	60
6.3 IP Address Assignment	60
6.3.1 IP Address and Subnet Mask	60
6.3.2 Private IP Addresses	61
6.3.3 DNS Server Address	61
6.4 LAN Configuration	62
6.5 WAN Configuration	62
6.5.1 WAN MAC Address	62
6.5.2 WAN Port Mode: Dynamic/Fixed IP Address	63
6.5.3 WAN Port Mode: PPPoE	64
6.5.4 WAN Port Mode: PPTP	66
Server	70
7.1 DHCP Configuration	70
7.1.1 Public and Private Address Assignment	70
7.1.2 Server Configuration	70
NAT Pool	74
8.1 NAT Overview	74
8.1.1 NAT Definitions	74
8.1.2 What NAT Does	75
8.1.3 How NAT Works	75
8.1.4 VPN and NAT	75
8.2 NAT Examples	76
8.2.1 Example 1: One-to-One	76
8.2.2 Example 2: Many-to-One	77
8.2.3 Example 3: One-to-One and Many-to-One	77
8.3 NAT Pool Setup	78
Authentication	80
9.1 Authentication Overview	80
9.1.1 User Agreement	80
9.1.2 CAS (Central Authentication Service)	80
9.1.3 Built-in Authentication	81
9.1.4 RADIUS	81
9.1.4.1 RADIUS Accounting	81
9.1.4.2 Vendor Specific Attribute	82
9.2 Authentication Configuration	82
9.2.1 Scenario Options	85
Billing	88
10.1 Billing Overview	88
10.1.1 Billing Profile	88
10.1.2 Configuring a Billing Profile	89
10.2 PMS (Property Management System)	91
10.2.1 Port-Location Mapping	91
10.2.2 PMS Configuration	91
10.3 Types of Subscriber Accounts	93
Static Subscriber Accounts	94
11.1 Static Subscriber Account Overview	94
11.2 Global Static Account Settings	94
11.3 Creating a Static Account	95
11.3.1 Generating Static Accounts Automatically	96
11.3.2 Creating Static Subscriber Accounts Manually	97
11.4 Static Account List Backup and Restore	98
11.4.1 Backing Up a Static Account List	98
11.4.2 Restoring a Static Account List	99
11.5 Editing Subscriber Accounts	100
11.5.1 Static Account Information Print Preview	101
11.6 Viewing the Static Account List	102
Dynamic Subscriber Accounts	104
12.1 Dynamic Subscriber Account Overview	104
12.2 Dynamic Account General Settings	104
12.3 Creating Dynamic Accounts	106
12.3.1 Dynamic Account Generation Using the Web Configurator	106
12.3.2 Dynamic Account Generation Using a Statement Printer	107
12.4 Viewing the Dynamic Account List	108
12.4.1 Backing Up the Dynamic Account List	109
Port-Location Mapping	112
13.1 Port-Location Mapping Overview	112
13.2 Configuring Port-Location Mappings	112
Credit Card	116
14.1 Credit Card Overview	116
14.1.1 How Credit Card Billing Works	116
14.1.2 Configuration Steps	116
14.2 Credit Card Billing Service Configuration	117
Customization	120
15.1 Customization Overview	120
15.2 Login Screen	120
15.2.1 Standard Login Screen	121
15.2.2 Redirect Login Screen	122
15.2.3 Advanced Login Screen	123
15.2.4 Framed Login Screen	124
15.2.5 Login Service Selection	125
15.3 Information Window	127
15.4 Account Printout	129
15.5 User Agreement Screen	133
15.6 Credit Card	135
15.6.1 Standard Login Page	135
15.6.2 Service Selection Page	136
15.6.3 Successful Page	139
15.6.4 Fail Page	141
15.7 Bill Output	142
Bandwidth Management	144
16.1 Bandwidth Management Overview	144
16.1.1 Bandwidth Allocation	144
16.2 Activating Bandwidth Management	144
16.2.1 Equal Bandwidth Setup	145
16.2.2 Class of Service Bandwidth Setup	146
Portal Page, Advertisement Link and Walled Garden	148
17.1 Overview	148
17.2 Portal Page	148
17.3 Advertisement Links	149
17.4 Walled Garden	149
Passthrough	152
18.1 Passthrough Overview	152
18.2 Computer IP and MAC Address Passthrough	152
18.2.1 Destination URL and IP Address Passthrough	154
Filter	156
19.1 Filter Setup	156
Privilege User	158
20.1 Privilege User Setup	158
20.1.1 Accessing Session List As a Privilege User	159
LAN Devices	160
21.1 LAN Devices Overview	160
21.1.1 Port Mapping	160
21.2 Configuring LAN Device Port Mapping	160
21.2.1 LAN Device Management Example	162
21.2.2 Specifying an Inside Server Example	163
Static Route	164
22.1 Static Route Overview	164
22.2 Static Route Setup	164
Private LAN	168
23.1 Private LAN Overview	168
23.2 Configuring a Private LAN	168
Syslog	170
24.1 Syslog Overview	170
24.1.1 Syslog Server Setup	170
24.1.2 Log Settings	171
Session Trace	176
25.1 Session Trace Overview	176
25.1.1 Configuring Session Trace	176
25.1.2 Session Trace Filename Convention	177
SNMP	178
26.1 SNMP Overview	178
26.1.1 Network Management System (NMS)	179
26.2 Configuring SNMP	179
Miscellanea	182
27.1 Overview	182
27.2 TCP/IP-RS-232 Converter Setup	182
System Status	184
28.1 System Status Overview	184
28.2 System Information	184
28.3 Current User List	186
28.4 DHCP Client	187
28.5 Session List	188
28.6 NAT Pool Table	189
28.7 LAN Device Status	189
28.7.1 Accessing the LAN Device	190
28.8 Billing Log	191
28.8.1 Billing Logs Backup	192
28.9 PMS Transaction	193
28.10 Static Route Table	193
Configuration	196
29.1 Configuration Overview	196
29.2 Configuration Backup	196
29.2.1 Configuration Backup Using TFTP	198
29.3 Restore Configuration	199
29.3.1 Restore Configuration Using TFTP	199
29.4 Reset to the Factory Defaults	200
Firmware	202
30.1 Firmware Overview	202
30.2 Manual Firmware Upgrade	202
30.2.1 Manual Firmware Upgrade via a TFTP Server	203
30.3 Scheduled Firmware Upgrade	204
SSL Certificate	206
31.1 SSL Certificate Overview	206
31.1.1 Certificate	206
31.1.2 Certificate Authorities	206
31.2 Downloading SSL Certificate to the VSG	206
31.3 Activating SSL Security	207
31.4 Installing SSL Certificate on a Computer	208
Using The SMT	214
32.1 About the SMT	214
32.1.1 Establishing a Console Port Connection	214
32.2 SMT Login Screen	215
32.3 The SMT Main Menu Summary	215
32.4 Navigating the SMT Interface	216
32.4.1 The Navigation Keys	217
32.5 System Configuration	217
32.6 WAN Configuration	218
32.6.1 WAN Type: Static/Dynamic	218
32.6.2 WAN Type: PPPoE	219
32.6.3 WAN Type: PPTP	220
32.7 LAN Configuration	222
32.8 System Status	223
32.9 System Utilities	224
32.9.1 Firmware Upgrade	225
32.9.2 Changing the Administrator Login Password	226
32.10 Restart	227
32.11 SMT Logout	227
32.12 Factory Defaults	227
Troubleshooting	230
33.1 Using the LEDs to Diagnose Problems	230
33.1.1 The Power LED	230
33.1.2 The LAN Port LEDs	230
33.1.3 The WAN Port LEDs	231
33.2 The Console Port	231
33.3 Web Configurator	232
33.4 Internet Access	232
33.5 The Statement Printer	233
Product Specifications	234
IP Address Assignment Conflicts	236
Subscriber Login	240
Vendor Specific Attributes	242
Report Printing Using the SP-200	246
Cable Types and Cable Pin Assignments	252
Setting up Your Computer’s IP Address	256
IP Addresses and Subnetting	268
Index	276
A	276
B	276
C	276
D	277
E	277
F	277
G	278
H	278
I	278
L	278
M	279
N	279
O	279
P	279
R	280
S	280
T	281
U	281
V	281

Match case Limit results 1 per page

VSG-1200 V2 User’s Guide

Chapter 9 Authentication

The following table describes the labels in this screen.

Table 17

System Settings: Authentication

LABEL

DESCRIPTION

No Authentication

Select this option to disable subscriber authentication. Subscribers can

access the Internet without entering user names and passwords.

This is the default setting.

User Agreement

Select

User Agreement

to direct a subscriber to an Internet service usage

agreement page before accessing the Internet.

Redirect Page URL

Link

Specify the URL of the user agreement page in the field provided. Click

Code

to display the HTML source code of a default sample page.

Standard User

Agreement Page

Select this option to use the pre-configured user agreement page on the

VSG.

Built-in Authentication

Select this option to authenticate the subscribers using the local subscriber

database. Then click

Select option

to choose a per-configured setting in

the

Current Preset option

field.

Note:

When you select this option, you must also configure

the

Billing

and

Accounting

screens.

Current preset option

This field is available when you select

Built-in Authentication

This field displays the current pre-configured setting for the built-in

authentication. To select a predefined option, click

Select option

to open

the

Scenario Guide

screen (refer to

Figure 33 on page 86

RADIUS

Select this option to authenticate subscribers using a remote RADIUS

server. Then configure the following fields.

Check Local Account First

Select this option to have the VSG authenticate a subscriber using the

local user database first. If the account information is not found, then the

VSG authenticates subscribers using the RADIUS server(s) specified.

Clear this check box to have the VSG authenticate subscribers using the

RADIUS server(s) only.

Accumulation

Select this option for multiple re-login until the time allocated is used up. If

a subscriber logs out and accesses the Internet again within the time

period specified in the

Idle Timeout

field, the subscriber does not have to

enter the user name and password again to log in.

Time to Finish

Select this option to allow each subscriber a one-time login. If a subscriber

logs out before the allocated time expires, the subscriber does not have to

enter the user name and password to access the Internet again.

Primary/Secondary

RADIUS Server

Server IP Address Enter the IP address of a RADIUS server in dotted

decimal notation.

Authentication Port

Specify the authentication port of the RADIUS server. The common port

numbers are 1645 and 1812.

Accounting Port

Specify the accounting port of the RADIUS server. The common port

numbers are 1646 and 1813.

Secret Key

Specify a password (up to 31 alphanumeric characters) as the key to be

shared between the RADIUS server and the VSG.

The key is not sent over the network.

Note:

This key must be the same on the RADIUS server and

the VSG.

Retry Attempts when

Primary fail

Specify the number of times (1 to 3) the VSG resends an authentication

request to the primary and/or secondary RADIUS servers.