-<html>\r
-\r
-<BODY bgColor=#fafff0>\r
-<P>\r
-Components of Opengate System</P>\r
-<P>\r
- \r
-<table border=1>\r
-<tr><td>Client Machine</td><td>User terminal. </td></tr>\r
-<tr><td>Gateway Machine</td><td>Control of network usage. A CGI program (main component of Opengate) opengatesrv.cgi authenticates user and control the firewall ipfw. Web server to controll CGI program are also set.</td></tr>\r
-<tr><td>Authentication Server</td><td>Hold user information and reply to the authentication request.</td></tr>\r
-<tr><td>Log Server</td><td>Receive date, time, userid, and ip-address for usage via syslog.</td></tr>\r
-\r
-\r
-</table></P>\r
-<P>\r
-Requirement of Client Machine</P>\r
-<P>\r
- \r
-<table border=1>\r
-<tr><td>Necessity</td><td>Web browser can run on the client. Ajax or JavaVM is desired.</td></tr>\r
-<tr><td>Condition to open network</td><td> \r
-Reply correct userID and password to the authentication page</td></tr>\r
-<tr><td>Condition to close network</td>\r
-<td>When (Ajax or JavaVM) is enabled and the usage duration is not entered.<BR>\r
-- Close Web browser or OS<BR>\r
-- Fail periodic live check<BR>\r
-Other cases<BR>\r
-- A fixed time length passes.<BR>\r
-- No packet passed from/to the client for a long time<BR>\r
-- ARP command returns the different MAC address<BR>\r
-- The user clicks the termination link in accept response page.</td></tr>\r
-<tr><td>Applied network</td><td>TCP/IP communication, Wire/wireless LAN.<BR>\r
-No address translation between gateway and client.</td></tr>\r
-<tr><td>Applied machines</td><td>Mobile PC/desktop PC, Service terminal\r
- settled by the organization/Note PC\r
- carried in by users.\r
-</td></tr>\r
-</table></P>\r
-<P>\r
-Requirement of Gateway Machine</P>\r
-<P>\r
- \r
-<table border=1>\r
-<tr><td>OS</td><td>FreeBSD newer than 4.0</td></tr>\r
-<tr><td>hardware</td><td>PC which can runs FreeBSD, Two EtherBoard</td></tr>\r
-<tr><td>required software</td><td>Apache, ipfw</td></tr>\r
-<tr><td>recommended software</td><td>natd, DHCP, SSL, perl, BIND</td></tr>\r
-</table></P>\r
-<P>\r
-Requirement of Authentication Server</P>\r
-<P>\r
- \r
-<table border=1>\r
-<tr><td>Protocols</td><td>POP3, POP3S, FTP, FTPS, RADIUS, or PAM</td></tr>\r
-<tr><td>Configuration</td><td>The serverID and its configuration are set in opengatesrv.conf.</td></tr>\r
-<tr><td>Choosing Servers</td><td>In case of entering [user] only, authentication \r
- request is sent to the default server. In case of \r
- entering [user@serv], request is sent to the server set for extraID [serv].</td></tr>\r
-</table>\r
-<P>\r
-Merits of Opengate \r
-<P>\r
- \r
-<table border=1>\r
-<tr><td>Wide compatibility</td><td>It only requires web browser for\r
- the client. It can be compatible with clients having various OS and\r
- connecttion form.\r
-</td></tr>\r
-<tr><td>Easy management</td><td>It can use existing autheitication\r
- servers. Only the gateway system should be\r
- maintained. No installation and user\r
- guidance are required.\r
- </td></tr>\r
-<tr><td>Easy interface</td><td>It has the friendly interface for web\r
- users. The network is opened by replying\r
- userid and password to the automatic-send\r
- authentication page. The netowrk is closed\r
- at the termination of\r
- the web browser. </td></tr>\r
-<tr><td>Quick response</td><td>It opens and closes the network with very\r
- short time delay after user action.</td></tr>\r
-<tr><td>Wide applicability</td><td>It does not depend specific\r
- software and hardware. It can be\r
- inserted to the existing network easily.\r
- It can control both of IPv4 and IPv6.</td></tr>\r
-<tr><td>High flexibility</td><td>The network control depends on ipfw rules.\r
- Simple perl script is used to add rules.</td></tr>\r
-<tr><td>Low cost</td><td>It can be used under GPL. It uses no specific hardware\r
- or software. The gateway machine is a simple PC\r
- in which FreeBSD works.</td></tr>\r
-</table></P>\r
-</BODY>\r
-</html>\r
-\r
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
+<HTML>
+<HEAD>
+ <META HTTP-EQUIV="CONTENT-TYPE" CONTENT="text/html; charset=utf-8">
+ <TITLE></TITLE>
+</HEAD>
+<BODY LANG="en-US" BGCOLOR="#fafff0" DIR="LTR">
+<P>Components of the Opengate System</P>
+<TABLE BORDER=1 CELLPADDING=2 CELLSPACING=2>
+ <TR>
+ <TD>
+ <P>Client Machine</P>
+ </TD>
+ <TD>
+ <P>User terminal.
+ </P>
+ </TD>
+ </TR>
+ <TR>
+ <TD>
+ <P>Gateway Machine</P>
+ </TD>
+ <TD>
+ <P>Controls network usage. A CGI program (main component of
+ Opengate) opengatesrv.cgi authenticates user and controls the IPFW
+ firewall. Web server to control the CGI programs is needed.</P>
+ </TD>
+ </TR>
+ <TR>
+ <TD>
+ <P>Authentication Server</P>
+ </TD>
+ <TD>
+ <P>Hold user information and reply to the authentication request.</P>
+ </TD>
+ </TR>
+ <TR>
+ <TD>
+ <P>Log Server</P>
+ </TD>
+ <TD>
+ <P>Receive date, time, userid, and ip-address for usage via
+ syslog.</P>
+ </TD>
+ </TR>
+</TABLE>
+<P>Requirements for Client Machine</P>
+<TABLE BORDER=1 CELLPADDING=2 CELLSPACING=2>
+ <TR>
+ <TD>
+ <P>Necessity</P>
+ </TD>
+ <TD>
+ <P>Web browser can run on the client. Ajax or JavaVM is desired.</P>
+ </TD>
+ </TR>
+ <TR>
+ <TD>
+ <P>Condition to open network</P>
+ </TD>
+ <TD>
+ <P>Provide correct userID and password to the authentication page.</P>
+ </TD>
+ </TR>
+ <TR>
+ <TD>
+ <P>Condition to close network</P>
+ </TD>
+ <TD>
+ <P>When (Ajax or JavaVM) is enabled and the usage duration is not
+ entered:<BR> - Close Web browser or OS<BR> - Fail
+ periodic live check<BR>Other cases<BR> - A fixed time length
+ passes.<BR> - No packet passed from/to the client for a long
+ time<BR> - ARP command returns a different MAC address<BR>
+ - The user clicks the termination link in accept response page.</P>
+ </TD>
+ </TR>
+ <TR>
+ <TD>
+ <P>Applied network</P>
+ </TD>
+ <TD>
+ <P>TCP/IP communication, Wired/wireless LAN.<BR>No address
+ translation (NAT) between gateway and client.</P>
+ </TD>
+ </TR>
+ <TR>
+ <TD>
+ <P>Applied machines</P>
+ </TD>
+ <TD>
+ <P>Mobile PC/desktop PC, Service terminal installed by the
+ organization/Notebook PC carried in by users.
+ </P>
+ </TD>
+ </TR>
+</TABLE>
+<P>Requirements for Gateway Machine</P>
+<TABLE BORDER=1 CELLPADDING=2 CELLSPACING=2>
+ <TR>
+ <TD>
+ <P>OS</P>
+ </TD>
+ <TD>
+ <P>FreeBSD newer than 4.0</P>
+ </TD>
+ </TR>
+ <TR>
+ <TD>
+ <P>hardware</P>
+ </TD>
+ <TD>
+ <P>PC that can run FreeBSD, Two NICs (either 802.3 and/or 802.11)</P>
+ </TD>
+ </TR>
+ <TR>
+ <TD>
+ <P>required software</P>
+ </TD>
+ <TD>
+ <P>Apache, ipfw</P>
+ </TD>
+ </TR>
+ <TR>
+ <TD>
+ <P>recommended software</P>
+ </TD>
+ <TD>
+ <P>natd, DHCP, SSL, perl, BIND</P>
+ </TD>
+ </TR>
+</TABLE>
+<P>Requirements for Authentication Server</P>
+<TABLE BORDER=1 CELLPADDING=2 CELLSPACING=2>
+ <TR>
+ <TD>
+ <P>Protocols</P>
+ </TD>
+ <TD>
+ <P>POP3, POP3S, FTP, FTPS, RADIUS, LDAP, LDAPS or PAM</P>
+ </TD>
+ </TR>
+ <TR>
+ <TD>
+ <P>Configuration</P>
+ </TD>
+ <TD>
+ <P>The serverID and its configuration are set in opengatesrv.conf.</P>
+ </TD>
+ </TR>
+ <TR>
+ <TD>
+ <P>Choosing Servers</P>
+ </TD>
+ <TD>
+ <P>In case of entering [user] only, authentication request is sent
+ to the default server. In case of entering [user@serv], request is
+ sent to the server set in extraID [serv]. Thus an independent
+ authentication server for each department can be set. Secondary
+ server can also be set, which is used should the primary server
+ malfunction.</P>
+ </TD>
+ </TR>
+</TABLE>
+<P>Merits of Opengate
+</P>
+<TABLE BORDER=1 CELLPADDING=2 CELLSPACING=2>
+ <TR>
+ <TD>
+ <P>Wide compatibility</P>
+ </TD>
+ <TD>
+ <P>It only requires web browser for the client. It's compatible
+ with clients having various OSes and connection forms.
+ </P>
+ </TD>
+ </TR>
+ <TR>
+ <TD>
+ <P>Easy management</P>
+ </TD>
+ <TD>
+ <P>It can use existing authentication servers. Only the gateway
+ system should be maintained. No installation or user guidance is
+ required.
+ </P>
+ </TD>
+ </TR>
+ <TR>
+ <TD>
+ <P>Easy interface</P>
+ </TD>
+ <TD>
+ <P>It has a web user-friendly interface. The network is opened by
+ providing userid and password to the - automatically displayed -
+ authentication page. The network is closed when terminating the
+ web browser.
+ </P>
+ </TD>
+ </TR>
+ <TR>
+ <TD>
+ <P>Quick response</P>
+ </TD>
+ <TD>
+ <P>It opens and closes the network with very short time delay
+ after user action.</P>
+ </TD>
+ </TR>
+ <TR>
+ <TD>
+ <P>Wide applicability</P>
+ </TD>
+ <TD>
+ <P>It does not depend in specific software and hardware. It can
+ easily be inserted in the existing network infrastructure. It can
+ control both IPv4 and IPv6.</P>
+ </TD>
+ </TR>
+ <TR>
+ <TD>
+ <P>High flexibility</P>
+ </TD>
+ <TD>
+ <P>The network control depends on ipfw rules. Simple perl script
+ is used to add rules.</P>
+ </TD>
+ </TR>
+ <TR>
+ <TD>
+ <P>Low cost</P>
+ </TD>
+ <TD>
+ <P>It can be used under GPL. It uses no specific hardware or
+ software. The gateway machine is a simple PC running FreeBSD.</P>
+ </TD>
+ </TR>
+</TABLE>
+<P><BR><BR>
+</P>
+</BODY>
+</HTML>