About This Guide

How to use this guide

This guide describes how to install and start up the RADIUS daemon, and provides detailed information about how to set up authentication, WAN connections, routing configurations, ATMP tunnels, and accounting records in RADIUS. It assumes that you have already installed the MAX TNT hardware, set up call routing, configured the Ethernet ports, and configured T1 PRI or E1 PRI lines. For details about carrying out these tasks, see the MAX TNT Hardware Installation Guide and the MAX TNT Network Guide.

Note: This manual describes the full set of features for the MAX TNT running software version 2.0.0. Some features might not be available with older versions or specialty loads of the software.

What you should know

This guide is intended for the person who will configure and maintain RADIUS and the MAX TNT. To use it effectively, you must have a basic understanding of MAX TNT security and configuration, and be familiar with authentication servers and networking concepts.

While this guide attempts to provide enough conceptual framework to enable an administrator who is not an expert in a particular network technology to configure RADIUS accurately, it does not start from the beginning with any network management topic. Following are the general areas in which it is helpful have some existing knowledge when configuring RADIUS:

Dial-in LAN connections, such as PPP and MP+
Connection cost management and accounting
Modems
Frame Relay
NetWare and IPX routing
IP routing
DNS
OSPF routing (if applicable)
Multicast (if applicable)
Packet structure and formats (for defining filters)
Network security

Documentation conventions

This section explains all the special characters and typographical conventions in this manual.


Convention	Meaning
`Monospace text`	Represents text that appears on your computer's screen, or that could appear on your computer's screen.
Boldface monospace text	Represents characters that you enter exactly as shown (unless the characters are also in italics-see Italics, below). If you could enter the characters, but are not specifically instructed to, they do not appear in boldface.
Italics	Represent variable information. Do not enter the words themselves in the command. Enter the information they represent. In ordinary text, italics are used for titles of publications, for some terms that would otherwise be in quotation marks, and to show emphasis.
[ ]	Square brackets indicate an optional argument you might add to a command. To include such an argument, type only the information inside the brackets. Do not type the brackets unless they appear in bold type.
\|	Separates command choices that are mutually exclusive.
Note:	Introduces important additional information.

Manual set

The MAX TNT documentation set consists of the following manuals:

The MAX TNT Command-Line Interface. Shows you how to use the MAX TNT
command-line interface effectively.
MAX TNT Hardware Installation Guide. Describes how to install the MAX TNT hardware and use the command-line interface to configure its slot cards for a variety of supported uses. Describes how calls are routed through the system. Includes the MAX TNT technical specifications.
MAX TNT Network Guide. Describes how to configure the MAX TNT for network connectivity.
MAX TNT RADIUS Guide (this manual). Describes how to configure RADIUS for authentication, network connectivity, and accounting.
MAX TNT Reference Guide. An alphabetic reference to all MAX TNT profiles, parameters, and commands.
MAX TNT Master Glossary. An alphabetic reference to technical terms and acronyms commonly found in Ascend documentation.
MAX TNT Administration Guide. Describes how to administer the MAX TNT, including how to monitor the system and the cards, troubleshoot the unit, and use SNMP to manage it.

Related publications

Many external references are readily available on the Web or in technical bookstores. You'll find a partial list of such references below.

Information about PPP connections

For information about PPP connections and authentication, you might want to download one or more of the following:

RFC 1662: PPP in HDLC-like Framing
RFC 1661: The Point-to-Point Protocol (PPP)
RFC 1994: PPP Challenge Handshake Authentication Protocol (CHAP)
RFC 1934: Ascend's Multilink Protocol Plus (MP+)
RFC 1969: The PPP DES Encryption Protocol (DESE)
RFC 1989: PPP Link Quality Monitoring
RFC 1990: The PPP Multilink Protocol (MP)
RFC 2125: The PPP Bandwidth Allocation Control Protocol (BACP)
RFC 2153: PPP Vendor Extensions
RFC 1962: The PPP Compression Control Protocol (CCP)
RFC 1974: PPP Stac LZS Compression Protocol
RFC 1877: PPP Internet Protocol Control Protocol Extensions for Name Server Addresses
RFC 1618: PPP over ISDN
RFC 1332: The PPP Internet Protocol Control Protocol (IPCP)
RFC 1552: The PPP Internetwork Packet Exchange Control Protocol (IPXCP)
RFC 1378: The PPP AppleTalk Control Protocol (ATCP)

Information about IPX routing

For information about IPX routing, see RFC 1634: Novell IPX Over Various WAN Media (IPXWAN).

Information about IP routers

RFCs that describe the operation of IP routers include:

RFC 1812: Requirements for IP Version 4 Routers
RFC 1519: Classless Inter-Domain Routing (CIDR): An Address Assignment and Aggregation Strategy
RFC 2002: IP Mobility Support
RFC 1256: ICMP Router Discovery Messages
RFC 1393: Traceroute Using an IP Option
RFC 1433: Directed ARP
RFC 1582: Extensions to RIP to Support Demand Circuits
RFC 1787: Routing in a Multi-provider Internet

Information about OSPF routing

For information about OSPF routing, see:

RFC 1850: OSPF Version 2 Management Information Base
RFC 1587: The OSPF NSSA Option
RFC 1245: OSPF protocol analysis
RFC 1246: Experience with the OSPF protocol
RFC 1583: OSPF Version 2
RFC 1586: Guidelines for Running OSPF Over Frame Relay Networks

Information about multicast

For information about multicast, see:

RFC 1458: Requirements for Multicast Protocols
RFC 1584: Multicast Extensions to OSPF
RFC 1949: Scalable Multicast Key Distribution

Information about firewalls and packet filtering

RFCs that describe firewalls and packet filters include:

RFC 1858: Security Considerations for IP Fragment Filtering
RFC 1579: Firewall-Friendly FTP

Information about general network security

RFCs pertinent to network security include:

RFC 1704: On Internet Authentication
RFC 1636: Report of IAB Workshop on Security in the Internet Architecture
RFC 1281: Guidelines for the Secure Operation of the Internet
RFC 1244: Site Security Handbook

Information about external authentication

For information about RADIUS and TACACS authentication, see:

RFC 2138: Remote Authentication Dial In User Service (RADIUS)
RFC 1492: An Access Control Protocol, Sometimes Called TACACS

ITU-T recommendations

ITU-T recommendations (formerly CCITT) are available commercially. You can order them at http://www.itu.ch/publications/.

Routing in the Internet, by Christian Huitema. Prentice Hall PTR, 1995. Recommended for information about IP, OSPF, CIDR, IP multicast, and mobile IP.
SNMP, SNMPV2 and RMON: Practical Network Management, by William Stallings. Addison-Wesley, 1996. Recommended for network management information.
Enterprise Networking: Fractional T1 to Sonet Frame Relay to Bisdn, by Daniel Minoli. Artech House, 1993. Recommended as a WAN reference.
TCP/IP Illustrated, volumes 1&2, by W. Richard Stevens. Addison-Wesley, 1994.

techpubs@eng.ascend.com

About This Guide

How to use this guide

What you should know

Documentation conventions

Convention

Meaning

Manual set

Related publications

Related RFCs

Information about PPP connections

Information about IPX routing

Information about IP routers

Information about OSPF routing

Information about multicast

Information about firewalls and packet filtering

Information about general network security

Information about external authentication

ITU-T recommendations

Related books