A CCESS G ATEWAY14 IntroductionMAC FilteringMAC Filtering enhances Nomadix' access control technology by allowing systemadministrators to block malicious users based on their MAC address. Up to 50 MAC addressescan be blocked at any one time. See also, “Session Rate Limiting (SRL)” on page 18.Multi-Level Administration SupportThe NSE allows you to define 2 concurrent access levels to differentiate between managers andoperators, where managers are permitted read/write access and operators are restricted to readaccess only.Once the logins have been assigned, managers have the ability to perform all write commands(Submit, Reset, Reboot, Add, Delete, etc.), but operators cannot change any system settings.When Administration Concurrency is enabled, one manager and three operators can access theAccess Gateway platform at any one time.NTP SupportThe NSE supports Network Time Protocol (NTP), an Internet standard protocol that assuresaccurate synchronization (to the millisecond) of computer clock times in a network ofcomputers. NTP synchronizes the client’s clock to the U.S. Naval Observatory master clocks.Running as a continuous background client program on a computer, NTP sends periodic timerequests to servers, obtaining server time stamps and using them to adjust the client's clock.Portal Page RedirectThe NSE contains a comprehensive HTTP page redirection logic that allows for a page redirectbefore (Portal Page Redirect) and/or after the authentication process (Home Page Redirect).As part of the Portal Page Redirect feature, the NSE can send a defined set of parameters to theportal page redirection logic that allows an External Web Server to perform a redirection basedon: Access Gateway ID and IP Address Origin Server Port Location Subscriber MAC address Externally hosted RADIUS login failure pageThis means that the network administrator can now perform location-specific service branding(for example, an airport lounge) from a centralized Web server.See also, “Home Page Redirect” on page 10.