Template:Networking rutos manual ports: Difference between revisions
No edit summary |
No edit summary |
||
(12 intermediate revisions by 2 users not shown) | |||
Line 18: | Line 18: | ||
| series = {{{series}}} | | series = {{{series}}} | ||
}} | }} | ||
{{#switch: {{{series}}} | RUT2M | RUT9M | TRB2M | TRB5 | OTD140 | RUTX | RUTM | TRB1 | RUT301= | {{#switch: {{{series}}} | RUT2M | RUT9M | TRB2M | TRB5 | OTD140 | RUTX | RUTM | TRB1 | RUT301 | RUT361 | RUT14X | TRB16 | RUTC | RUT206 |OTD500 = | ||
==Port Settings== | ==Port Settings== | ||
This section displays information about the status of the device's ports with the ability to configure port settings. | This section displays information about the status of the device's ports with the ability to configure port settings. | ||
Line 27: | Line 27: | ||
The figure below is an example of the '''All Ports''' window, color indicates port speed and status: | The figure below is an example of the '''All Ports''' window, color indicates port speed and status: | ||
[[File:Networking_rutos_manual_network_port_all_ports_{{{portsnumber}}}.png|border|class=tlt-border]] | [[File:Networking_rutos_manual_network_port_all_ports_{{{portsnumber}}}_v1.png|border|class=tlt-border]] | ||
To change port settings select port and press `edit (number of ports) ports` button: | To change port settings select port and press `edit (number of ports) ports` button: | ||
Line 65: | Line 65: | ||
<tr> | <tr> | ||
<td>Advertisement</td> | <td>Advertisement</td> | ||
<td>10M-Half {{!}} 10M-Full {{!}} 100M-Half {{!}} 100M-Full; default: <b> | <td>10M-Half {{!}} 10M-Full {{!}} 100M-Half {{!}} 100M-Full{{#switch: {{{series}}} | RUTX | RUTM | TRB1 | TRB5 ={{!}} 1000M-Full}}; default: <b>All</b></td> | ||
<td>Advertises preferred duplex mode and speed for negotiation with other devices.</td> | <td>Advertises preferred duplex mode and speed for negotiation with other devices.</td> | ||
</tr> | </tr> | ||
Line 77: | Line 77: | ||
| #default =}} | | #default =}} | ||
{{#switch: {{{series}}} | RUTX | RUT9 | RUT30X | RUTM | | {{#switch: {{{series}}} | RUTX | RUT9 | RUT30X | RUTM | RUTC | RUT9M = | ||
==Port Mirroring== | ==Port Mirroring== | ||
Port Mirroring (may also be referred to as SPAN (Switched Port Analyzer)) is a service that relays a copy of all network packets - incoming and outgoing on one Ethernet port (Source Port) to another (Monitoring Port). | Port Mirroring (may also be referred to as SPAN (Switched Port Analyzer)) is a service that relays a copy of all network packets - incoming and outgoing on one Ethernet port (Source Port) to another (Monitoring Port). | ||
{{#switch: {{{series}}}| #default = | RUT9M = | |||
<u><b>Note:</b> Port Mirroring is additional software that can be installed from the <b>System → [[{{{name}}} Package Manager|Package Manager]]</b> page.</u>}} | |||
[[File:Networking_rutos_manual_network_port_port_mirroring.png|border|class=tlt-border]] | [[File:Networking_rutos_manual_network_port_port_mirroring.png|border|class=tlt-border]] | ||
Line 112: | Line 115: | ||
</table> | </table> | ||
| #default =}} | | #default =}} | ||
{{#switch: {{{series}}} | RUTX | RUTM | RUTC = | |||
==802.1X Client== | |||
<b>802.1X</b> is a network authentication protocol that opens ports for network access when an organization authenticates a user's identity and authorizes them for access to the network. The user's identity is determined based on their credentials or certificate, which is confirmed by the authentication server. The supplicant, or client, is the device attempting to gain access to the network. | |||
===Port status=== | |||
---- | |||
The figure below is an example of the '''Port status''' section (the number of ports depends on the device model): | |||
[[File:Networking_rutos_manual_network_port_all_ports.png|border|class=tlt-border]] | |||
To change port settings select port and press `edit (number of ports) ports` button: | |||
[[File:Networking_rutos_manual_network_port_all_ports_edit.png|border|class=tlt-border]] | |||
You will be redirected to `802.1X settings`. From here you can change 802.1X settings. | |||
[[File:Networking_rutos_manual_network_port_8021x_port_settings_v1.png|border|class=tlt-border]] | |||
<table class="nd-mantable"> | |||
<tr> | |||
<th>Field</th> | |||
<th>Value</th> | |||
<th>Description</th> | |||
</tr> | |||
<tr> | |||
<td>Enable</td> | |||
<td>off {{!}} on; default: <b>off</b></td> | |||
<td>Toggle 802.1x on or off.</td> | |||
</tr> | |||
<tr> | |||
<td>Auth type</td> | |||
<td>MD5 {{!}} <span style="color:red">TLS</span> {{!}} PWD {{!}} <span style="color:green">Tunneled TLS</span> {{!}} <span style="color:blue">Protected EAP (PEAP)</span>; default: <b>MD5</b></td> | |||
<td>Authentication type.</td> | |||
</tr> | |||
<tr> | |||
<td>Identity (Username)</td> | |||
<td>string; default: <b>none</b></td> | |||
<td>Used as the username for authentication.</td> | |||
</tr> | |||
<tr> | |||
<td>MD5, PWD, <span style="color:green">Tunneled TLS</span>, <span style="color:blue">Protected EAP (PEAP)</span>: Password</td> | |||
<td>string; default: <b>none</b></td> | |||
<td>Used for authentication.</td> | |||
</tr> | |||
<tr> | |||
<td><span style="color:red">TLS</span>: CA Certificate</td> | |||
<td>.crt file; default: <b>none</b></td> | |||
<td>Radius server CA certificate.</td> | |||
</tr> | |||
<tr> | |||
<td><span style="color:red">TLS</span>: User certificate</td> | |||
<td>.crt file; default: <b>none</b></td> | |||
<td>TLS client certificate.</td> | |||
</tr> | |||
<tr> | |||
<td><span style="color:red">TLS</span>: Private Key</td> | |||
<td>.key file; default: <b>none</b></td> | |||
<td>TLS Private Key.</td> | |||
</tr> | |||
<tr> | |||
<td><span style="color:red">TLS</span>: Private Key Password</td> | |||
<td>string; default: <b>none</b></td> | |||
<td>TLS Private Key Password.</td> | |||
</tr> | |||
<tr> | |||
<td><span style="color:green">Tunneled TLS</span>: Inner authentication</td> | |||
<td>PAP {{!}} MSCHAP {{!}} MSCHAPv2 {{!}} MSCHAPv2 (no EAP) {{!}} CHAP {{!}} MD5 {{!}} GTC; default: <b>PAP</b></td> | |||
<td>Inner authentication type.</td> | |||
</tr> | |||
<tr> | |||
<td><span style="color:blue">Protected EAP (PEAP)</span>: Inner authentication</td> | |||
<td>MSCHAPv2 {{!}} MD5 {{!}} GTC; default: <b>MSCHAPv2</b></td> | |||
<td>Inner authentication type.</td> | |||
</tr> | |||
<tr> | |||
<td><span style="color:blue">Protected EAP (PEAP)</span>: Peap version</td> | |||
<td>auto {{!}} 0 {{!}} 1; default: <b>auto</b></td> | |||
<td>Peap version.</td> | |||
</tr> | |||
<tr> | |||
<td><span style="color:green">Tunneled TLS</span>, <span style="color:blue">Protected EAP (PEAP)</span>: Anonymous identity</td> | |||
<td>string; default: <b>none</b></td> | |||
<td>Shown as username outside the encrypted tunnel. Not used for authentication.</td> | |||
</tr> | |||
<tr> | |||
<td><span style="color:green">Tunneled TLS</span>, <span style="color:blue">Protected EAP (PEAP)</span>: CA Certificate</td> | |||
<td>.crt file; default: <b>none</b></td> | |||
<td>Radius server CA certificate.</td> | |||
</tr> | |||
</table> | |||
===802.1X status=== | |||
---- | |||
This section displays port 802.1X status information. There is also an option to select ports and enable authentication: | |||
[[File:Networking_rutos_manual_network_port_port_status_8021x.png|border|class=tlt-border]] | |||
}} | |||
{{#switch: {{{series}}} | OTD500 | RUTM | TRB1 | TRB2 | TRB2M | RUT2M | RUT9M | RUT301 | RUT361 | RUT14X | RUT206 | TRB160 | OTD140 = | |||
==802.1X Server== | |||
<b>The 802.1X</b> authentication server is typically an EAP-compliant RADIUS server which can authenticate either users (through passwords or certificates) or the client computer. | |||
===Port status=== | |||
---- | |||
The figure below is an example of the '''Port status''' section (the number of ports depends on the device model): | |||
[[File:Networking_rutos_manual_network_port_all_ports.png|border|class=tlt-border]] | |||
To change port settings select port and press `edit (number of ports) ports` button: | |||
[[File:Networking_rutos_manual_network_port_all_ports_edit.png|border|class=tlt-border]] | |||
You will be redirected to `802.1X settings`. From here you can change 802.1X settings. | |||
{{#switch: {{{series}}} | #default = | |||
[[File:Networking_rutos_manual_network_port_8021x_port_settings_server.png|border|class=tlt-border]] | |||
| RUTM = | |||
[[File:Networking_rutos_manual_network_port_8021x_port_settings_server_rutm.png|border|class=tlt-border]]}} | |||
<table class="nd-mantable"> | |||
<tr> | |||
<th>Field</th> | |||
<th>Value</th> | |||
<th>Description</th> | |||
</tr> | |||
<tr> | |||
<td>Enable</td> | |||
<td>off {{!}} <span style="color:blue">on</span>; default: <b>off</b></td> | |||
<td>Toggle 802.1x on or off.</td> | |||
</tr>{{#switch: {{{series}}} | #default = | RUTM = | |||
<tr> | |||
<td>Role</td> | |||
<td>Client {{!}} Server; default: <b>choose "server" role for 802.1X server configuration</b></td> | |||
<td>Toggle 802.1x role.</td> | |||
</tr> | |||
<tr> | |||
<td>Enable dynamic VLANs</td> | |||
<td>off {{!}} on; default: <b>off</b></td> | |||
<td>Option available when ports are moved to VLANs.</td> | |||
</tr>}} | |||
<tr> | |||
<td>Radius server</td> | |||
<td>radius server id; default: <b>example</b></td> | |||
<td>Authentication type.</td> | |||
</tr>{{#switch: {{{series}}} | #default = | |||
<tr> | |||
<td>Reject VLAN</td> | |||
<td>Disabled {{!}} VLAN1 {{!}} VLAN2; default: <b>Disabled</b></td> | |||
<td>Select reject VLAN 802.1x for server service.</td> | |||
</tr> | |||
<tr> | |||
<td>Accept VLAN</td> | |||
<td>Radius assigned {{!}} VLAN1 {{!}} VLAN2; default: <b>VLAN1</b></td> | |||
<td>Select accept VLAN 802.1x for server service.</td> | |||
</tr>| RUTM = | |||
<tr> | |||
<td><span style="color:blue">Reject VLAN</span></td> | |||
<td>Disabled {{!}} VLAN1 {{!}} VLAN2; default: <b>Disabled</b></td> | |||
<td>Select reject VLAN 802.1x for server service.</td> | |||
</tr> | |||
<tr> | |||
<td><span style="color:blue">Accept VLAN</span></td> | |||
<td>Radius assigned {{!}} VLAN1 {{!}} VLAN2; default: <b>Radius assigned</b></td> | |||
<td>Select accept VLAN 802.1x for server service.</td> | |||
</tr>}} | |||
</table> | |||
===802.1X status=== | |||
---- | |||
This section displays port 802.1X status information. There is also an option to select ports and enable authentication: | |||
[[File:Networking_rutos_manual_network_port_port_status_8021x_server.png|border|class=tlt-border]] | |||
==RADIUS== | |||
The <b>RADIUS</b> page is used to create and manage radius servers: | |||
[[File:Networking_rutos_manual_ports_port_radius.png|border|class=tlt-border]] | |||
<table class="nd-othertables_2"> | |||
<tr> | |||
<th width="250">Field Name</th> | |||
<th width="900">Description</th> | |||
</tr> | |||
<tr> | |||
<td>ID</td> | |||
<td>RADIUS server ID.</td> | |||
</tr> | |||
<tr> | |||
<td>Address (IPv4)</td> | |||
<td>RADIUS server IP.</td> | |||
</tr> | |||
<tr> | |||
<td>Authentication port</td> | |||
<td>RADIUS server athentication port.</td> | |||
</tr> | |||
<tr> | |||
<td>Actions</td> | |||
<td>-(interactive buttons)</td> | |||
</tr> | |||
</table> | |||
===Radius Configuration=== | |||
---- | |||
The RADIUS configuration window should look similar to this: | |||
[[File:Networking_rutos_manual_ports_port_radius_configuration.png|border|class=tlt-border]] | |||
<table class="nd-mantable"> | |||
<tr> | |||
<th>Field</th> | |||
<th>Value</th> | |||
<th>Description</th> | |||
</tr> | |||
<tr> | |||
<td>IP address</td> | |||
<td>ip; default: <b>0.0.0.0</b></td> | |||
<td>RADIUS server IP.</td> | |||
</tr> | |||
<tr> | |||
<td>Authentication port</td> | |||
<td>integer [1.. 65535]; default: <b>1812</b></td> | |||
<td>RADIUS server athentication port.</td> | |||
</tr> | |||
<tr> | |||
<td>Secret</td> | |||
<td>string; default: <b>-</b></td> | |||
<td>RADIUS server secret.</td> | |||
</tr> | |||
<tr> | |||
<td>Test connectivity</td> | |||
<td>-(interactive) button</td> | |||
<td>Test connectivity to RADIUS server.</td> | |||
</tr> | |||
<tr> | |||
<td>Test user credentials</td> | |||
<td>-(interactive) button</td> | |||
<td>Test credentials to RADIUS server.</td> | |||
</tr> | |||
<tr> | |||
<td>Enable backup RADIUS server</td> | |||
<td>off {{!}} <span style="color: red;">on</span>; default: <b>off</b></td> | |||
<td>Enable backup RADIUS server.</td> | |||
</tr> | |||
<tr> | |||
<td><span style="color: red;">IP address</span></td> | |||
<td>ip; default: <b>none</b></td> | |||
<td>Backup RADIUS server IP.</td> | |||
</tr> | |||
<tr> | |||
<td><span style="color: red;">Authentication port</span></td> | |||
<td>integer [1.. 65535]; default: <b>none</b></td> | |||
<td>Backup RADIUS server authentication port.</td> | |||
</tr> | |||
<tr> | |||
<td><span style="color: red;">Secret</span></td> | |||
<td>string; default: <b>-</b></td> | |||
<td>Backup RADIUS server secret.</td> | |||
</tr> | |||
<tr> | |||
<td><span style="color: red;">Test connectivity</span></td> | |||
<td>-(interactive) button</td> | |||
<td>Test connectivity to backup RADIUS server.</td> | |||
</tr> | |||
<tr> | |||
<td><span style="color: red;">Test user credentials</span></td> | |||
<td>-(interactive) button</td> | |||
<td>Test credentials to backup RADIUS server.</td> | |||
</tr> | |||
}} | |||
[[Category:{{{name}}} Network section]] | [[Category:{{{name}}} Network section]] |
Latest revision as of 10:26, 25 November 2024
The information in this page is updated in accordance with firmware version .
Summary
The Ports page provides information related to the status of the device's physical ports, as well as the ability to edit port settings.
If you're having trouble finding this page or some of the parameters described here on your device's WebUI, you should turn on "Advanced WebUI" mode. You can do that by clicking the "Advanced" button, located at the top of the WebUI.
[[Category:{{{name}}} Network section]]