[afnog] Network Authentication

Seun Ojedeji seun.ojedeji at gmail.com
Thu Aug 4 17:42:35 UTC 2011 

Hello Kasonda,

In my university we run Mikrotik (http://www.mikrotik.com/) which has
hotspot services built in. We have quite similar network architecture with
yours except that it doesn't matter whether its a student that connect
through wireless or a staff through LAN. Anyone can connect through both
medium and what then matters is the access level attached to their login
details. So basically if your school can spare a few bucks (~$250) and get a
mikrotik level 6 license, it will enable you run unlimited concurrent
hotspot authenticated users. This will be more interesting if you havn't a
router before as Mikrotik OS in it sef is a routing platform and hotspot
services is an added advantage. You could download the ROS here and try it
(you have 24hrs uptime trial) "http://www.mikrotik.com/download.html"  here
is the setup proceeds(come back if you get stuck:)
http://wiki.mikrotik.com/wiki/Hotspot_server_setup
Once you have setup mikrotik/hotspot you can then start creating accounts on
its built in radius server (called user manager) you have a lot of traffic
shaping options in there. If the cost of the Mikrotik ROS is not friendly
then you could try FOSS solutions like pfsense - http://www.pfsense.org/

Hope this helps.

Regards

On Thu, Aug 4, 2011 at 5:29 PM, Kasonda, P. Amon <amon.kasonda at unza.zm>wrote:

> Dear All,
>
> I would like to implement a Network Authentication solution at
> our university campus, which has about 1000 active users at any given time.
> This includes students and staff. The network architecture is fine and is
> based
> on VLANS architecture. Students access internet through wireless, while
> members
> of staff access through the LAN (DHCP)in offices.
>
> The purpose of my writing is to seek advice on the best but simple Network
> Authentication strategy we can implement. We are trying to avoid a
> situation
> where anyone can plug in their laptops or computer to the network and
> access
> internet and other services without being prompted for login details.
>
> Your professional responses are highly appreciated.
>
>
> Kind regards,
> Amon Kasonda
>
>
> ----- Original Message -----
> From: afnog-request at afnog.org
> To: afnog at afnog.org
> Sent: Thursday, August 4, 2011 2:00:01 PM
> Subject: afnog Digest, Vol 89, Issue 3
>
> Send afnog mailing list submissions to
>        afnog at afnog.org
>
> To subscribe or unsubscribe via the World Wide Web, visit
>        http://afnog.org/mailman/listinfo/afnog
> or, via email, send a message with subject or body 'help' to
>        afnog-request at afnog.org
>
> You can reach the person managing the list at
>        afnog-owner at afnog.org
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of afnog digest..."
>
>
> Today's Topics:
>
>   1.  Radius Server/ Hotspot Management Overhead (Righa Shake)
>
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Thu, 4 Aug 2011 09:03:34 +0300
> From: Righa Shake <righa.shake at gmail.com>
> To: afnog at afnog.org
> Subject: [afnog] Radius Server/ Hotspot Management Overhead
> Message-ID:
>        <CAJO3Vzxgrum3xEp-nSypGbjOQ8uq5hFG7XAOUWwa41FJaDqvew at mail.gmail.com
> >
> Content-Type: text/plain; charset="iso-8859-1"
>
> Hi,
>
> Am looking to understand how hotspots wotk in terms of management overhead
> and keeping track of logged in users.
>
> What capacity is ideal for a connection to a Radius server for
> authentication.
> After authentication how is tracking of users kept to ensure that
> management
> traffic is kept at a minimum.
>
> Regards,
> Righa Shake
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL: <
> http://afnog.org/pipermail/afnog/attachments/20110804/301e41ac/attachment-0001.html
> >
>
> ------------------------------
>
> _______________________________________________
> afnog mailing list
>
> End of afnog Digest, Vol 89, Issue 3
> ************************************
>
> _______________________________________________
> afnog mailing list
> http://afnog.org/mailman/listinfo/afnog
>



-- 
------------------------------------------------------------------------

*Seun Ojedeji,
University of Nigeria, Nsukka
web:      http://www.unn.edu.ng
Mobile: +2348035233535
**alt email: seun.ojedeji at unn.edu.ng*

*you don't need a hero to succeed on the field....you need a team!*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://afnog.org/pipermail/afnog/attachments/20110804/187a44fa/attachment.html>

More information about the afnog mailing list