[afnog] Network Authentication

Alex Kisakye akisakye at ucs.ucu.ac.ug
Thu Aug 4 18:37:02 UTC 2011 

Or you could just install Packet Fence http://www.packetfence.org

thanks

Alex
On 8/4/2011 8:42 PM, Seun Ojedeji wrote:
> Hello Kasonda,
>
> In my university we run Mikrotik (http://www.mikrotik.com/) which has 
> hotspot services built in. We have quite similar network architecture 
> with yours except that it doesn't matter whether its a student that 
> connect through wireless or a staff through LAN. Anyone can connect 
> through both medium and what then matters is the access level attached 
> to their login details. So basically if your school can spare a few 
> bucks (~$250) and get a mikrotik level 6 license, it will enable you 
> run unlimited concurrent hotspot authenticated users. This will be 
> more interesting if you havn't a router before as Mikrotik OS in it 
> sef is a routing platform and hotspot services is an added advantage. 
> You could download the ROS here and try it (you have 24hrs uptime 
> trial) "http://www.mikrotik.com/download.html"  here is the setup 
> proceeds(come back if you get stuck:) 
> http://wiki.mikrotik.com/wiki/Hotspot_server_setup
> Once you have setup mikrotik/hotspot you can then start creating 
> accounts on its built in radius server (called user manager) you have 
> a lot of traffic shaping options in there. If the cost of the Mikrotik 
> ROS is not friendly then you could try FOSS solutions like pfsense - 
> http://www.pfsense.org/
>
> Hope this helps.
>
> Regards
>
> On Thu, Aug 4, 2011 at 5:29 PM, Kasonda, P. Amon <amon.kasonda at unza.zm 
> <mailto:amon.kasonda at unza.zm>> wrote:
>
>     Dear All,
>
>     I would like to implement a Network Authentication solution at
>     our university campus, which has about 1000 active users at any
>     given time.
>     This includes students and staff. The network architecture is fine
>     and is based
>     on VLANS architecture. Students access internet through wireless,
>     while members
>     of staff access through the LAN (DHCP)in offices.
>
>     The purpose of my writing is to seek advice on the best but simple
>     Network
>     Authentication strategy we can implement. We are trying to avoid a
>     situation
>     where anyone can plug in their laptops or computer to the network
>     and access
>     internet and other services without being prompted for login details.
>
>     Your professional responses are highly appreciated.
>
>
>     Kind regards,
>     Amon Kasonda
>
>
>     ----- Original Message -----
>     From: afnog-request at afnog.org <mailto:afnog-request at afnog.org>
>     To: afnog at afnog.org <mailto:afnog at afnog.org>
>     Sent: Thursday, August 4, 2011 2:00:01 PM
>     Subject: afnog Digest, Vol 89, Issue 3
>
>     Send afnog mailing list submissions to
>     afnog at afnog.org <mailto:afnog at afnog.org>
>
>     To subscribe or unsubscribe via the World Wide Web, visit
>     http://afnog.org/mailman/listinfo/afnog
>     or, via email, send a message with subject or body 'help' to
>     afnog-request at afnog.org <mailto:afnog-request at afnog.org>
>
>     You can reach the person managing the list at
>     afnog-owner at afnog.org <mailto:afnog-owner at afnog.org>
>
>     When replying, please edit your Subject line so it is more specific
>     than "Re: Contents of afnog digest..."
>
>
>     Today's Topics:
>
>       1.  Radius Server/ Hotspot Management Overhead (Righa Shake)
>
>
>     ----------------------------------------------------------------------
>
>     Message: 1
>     Date: Thu, 4 Aug 2011 09:03:34 +0300
>     From: Righa Shake <righa.shake at gmail.com
>     <mailto:righa.shake at gmail.com>>
>     To: afnog at afnog.org <mailto:afnog at afnog.org>
>     Subject: [afnog] Radius Server/ Hotspot Management Overhead
>     Message-ID:
>     <CAJO3Vzxgrum3xEp-nSypGbjOQ8uq5hFG7XAOUWwa41FJaDqvew at mail.gmail.com <mailto:CAJO3Vzxgrum3xEp-nSypGbjOQ8uq5hFG7XAOUWwa41FJaDqvew at mail.gmail.com>>
>     Content-Type: text/plain; charset="iso-8859-1"
>
>     Hi,
>
>     Am looking to understand how hotspots wotk in terms of management
>     overhead
>     and keeping track of logged in users.
>
>     What capacity is ideal for a connection to a Radius server for
>     authentication.
>     After authentication how is tracking of users kept to ensure that
>     management
>     traffic is kept at a minimum.
>
>     Regards,
>     Righa Shake
>     -------------- next part --------------
>     An HTML attachment was scrubbed...
>     URL:
>     <http://afnog.org/pipermail/afnog/attachments/20110804/301e41ac/attachment-0001.html>
>
>     ------------------------------
>
>     _______________________________________________
>     afnog mailing list
>
>     End of afnog Digest, Vol 89, Issue 3
>     ************************************
>
>     _______________________________________________
>     afnog mailing list
>     http://afnog.org/mailman/listinfo/afnog
>
>
>
>
> -- 
> ------------------------------------------------------------------------
>
>     /Seun Ojedeji,
>     University of Nigeria, Nsukka
>     web: http://www.unn.edu.ng
>     Mobile: +2348035233535
>     //alt email: seun.ojedeji at unn.edu.ng <mailto:seun.ojedeji at unn.edu.ng>/
>
>     /you don't need a hero to succeed on the field....you need a team!/
>
>
>
>
> _______________________________________________
> afnog mailing list
> http://afnog.org/mailman/listinfo/afnog

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://afnog.org/pipermail/afnog/attachments/20110804/fff5d50b/attachment-0001.html>

More information about the afnog mailing list