Cisco Cisco Access Registrar 4.2 Especificaciones Pagina 512
- Pagina / 636
- Tabla de contenidos
- SOLUCIÓN DE PROBLEMAS
- MARCADORES
Valorado. / 5. Basado en revisión del cliente
12-4
Cisco Wireless LAN Controller Configuration Guide
OL-13826-01
Chapter 12 Configuring Hybrid REAPWireless Device Access
Overview of Hybrid REAP
require that an external RADIUS server be configured. Other WLANs enter either the “authentication
down, switching down” state (if the WLAN was configured for central switching) or the “authentication
down, local switching” state (if the WLAN was configured for local switching).
When hybrid-REAP access points are connected to the controller (rather than in standalone mode), the
controller uses its primary RADIUS servers and accesses them in the order specified on the RADIUS
Authentication Servers page or in the config radius auth add CLI command (unless the server order is
overridden for a particular WLAN). However, in order to support 802.1X EAP authentication,
hybrid-REAP access points in standalone mode need to have their own backup RADIUS server to
authenticate clients. This backup RADIUS server may or may not be the one used by the controller. You
can configure a backup RADIUS server for individual hybrid-REAP access points in standalone mode
by using the controller CLI or for groups of hybrid-REAP access points in standalone mode by using
either the GUI or CLI. A backup server configured for an individual access point overrides the backup
RADIUS server configuration for a hybrid-REAP group.
When a hybrid-REAP access point enters standalone mode, it disassociates all clients that are on
centrally switched WLANs. For web-authentication WLANs, existing clients are not disassociated, but
the hybrid-REAP access point stops sending beacons when the number of associated clients reaches zero
(0). It also sends disassociation messages to new clients associating to web-authentication WLANs.
Controller-dependent activities such as network access control (NAC) and web authentication (guest
access) are disabled, and the access point does not send any intrusion detection system (IDS) reports to
the controller. Furthermore, most radio resource management (RRM) features (such as neighbor
discovery; noise, interference, load, and coverage measurements; use of the neighbor list; and rogue
containment and detection) are disabled. However, a hybrid-REAP access point supports dynamic
frequency selection in standalone mode.
Note If your controller is configured for NAC, clients can associate only when the access point is in connected
mode. When NAC is enabled, you need to create an unhealthy (or quarantined) VLAN so that the data
traffic of any client that is assigned to this VLAN passes through the controller, even if the WLAN is
configured for local switching. Once a client is assigned to a quarantined VLAN, all of its data packets
are centrally switched. See the “Configuring Dynamic Interfaces” section on page 3-15 for information
on creating quarantined VLANs.
The hybrid-REAP access point maintains client connectivity even after entering standalone mode.
However, once the access point re-establishes a connection with the controller, it disassociates all clients,
applies new configuration information from the controller, and reallows client connectivity.
Hybrid REAP Guidelines
Keep these guidelines in mind when using hybrid REAP:
• A hybrid-REAP access point can be deployed with either a static IP address or a DHCP address. In
the case of DHCP, a DHCP server must be available locally and must be able to provide the IP
address for the access point at bootup.
• Hybrid REAP supports up to four fragmented packets or a minimum 500-byte maximum
transmission unit (MTU) WAN link.
• Roundtrip latency must not exceed 100 milliseconds (ms) between the access point and the
controller, and LWAPP control packets must be prioritized over all other traffic.
• The controller can send multicast packets in the form of unicast or multicast packets to the access
point. In hybrid-REAP mode, the access point can receive multicast packets only in unicast form.
- Configuration Guide 1
- CONTENTS 3
- Contents 10
- OL-13826-01 10
- Audience 22
- Organization 22
- Conventions 23
- Related Publications 25
- Overview 27
- Chapter 1 Overview 28
- Single-Controller Deployments 29
- Operating System Software 31
- Operating System Security 31
- Operational Requirements 33
- Configuration Requirements 33
- Controller Platforms 34
- Features Not Supported 35
- Cisco 4400 Series Controllers 36
- Cisco UWN Solution WLANs 40
- Identity Networking 40
- File Transfers 42
- Power over Ethernet 42
- Startup Wizard 43
- Rogue Access Points 47
- • Using the CLI, page 2-7 49
- Guidelines for Using the GUI 50
- Opening the GUI 50
- Using the CLI 55
- Logging Out of the CLI 56
- CLI Interfaces 57
- Controller console 61
- Distribution System Ports 62
- Interfaces 63
- Management Interface 64
- AP-Manager Interface 64
- Virtual Interface 65
- Service-Port Interface 66
- Dynamic Interface 66
- Service-Port Interfaces 68
- Configuring Ports 76
- Configuring Port Mirroring 80
- Enabling Link Aggregation 87
- Link Aggregation Guidelines 89
- Step 3 Reboot the controller 92
- Connecting Additional Ports 98
- Before You Start 100
- Configuring 802.11 Bands 106
- Configuring DHCP Proxy 116
- Configuring RADIUS Settings 117
- Configuring SNMP 118
- Enabling System Logging 124
- Enabling 802.3x Flow Control 124
- Configuring 802.3 Bridging 127
- Configuring Multicast Mode 129
- Configuring Client Roaming 134
- Intra-Controller Roaming 135
- Inter-Controller Roaming 135
- Inter-Subnet Roaming 135
- CCX Layer 2 Client Roaming 136
- Call Admission Control 146
- Expedited Bandwidth Requests 147
- Traffic Stream Metrics 148
- Figure 4-19 Clients Page 152
- (see Figure 4-25) 156
- Configuring EDCA Parameters 162
- Configuring RFID Tag Tracking 173
- General WiSM Guidelines 181
- Configuring the Supervisor 182
- Cisco UWN Solution Security 186
- Layer 3 Solutions 187
- Rogue Access Point Solutions 187
- Configuring TACACS+ 188
- Configuring LDAP 203
- Configuring Local EAP 207
- Figure 5-16 Local EAP Example 208
- Configuring DHCP Option 82 220
- Validating SSIDs 221
- Guidelines for Using MFP 234
- Identity Networking Overview 242
- ACL-Name 243
- Interface-Name 243
- VLAN-Tag 244
- Tunnel Attributes 244
- Configuring AAA Override 245
- Configuring IDS 248
- Viewing Shunned Clients 251
- Configuring IDS Signatures 252
- Configuring AES Key Wrap 260
- WLAN Overview, page 6-2 265
- Configuring WLANs, page 6-2 265
- WLAN Overview 266
- Configuring WLANs 266
- Using the GUI to Create WLANs 267
- Using the CLI to Create WLANs 269
- Configuring DHCP 270
- Security Considerations 271
- Configuring DHCP Scopes 273
- Enabling MAC Filtering 276
- Creating a Local MAC Filter 276
- Assigning WLANs to Interfaces 277
- Configuring Layer 2 Security 280
- WPA1 and WPA2 282
- Configuring a Session Timeout 287
- Configuring Layer 3 Security 288
- VPN Passthrough 289
- Web Authentication 289
- Configuring QoS Enhanced BSS 293
- Configuring IPv6 Bridging 296
- Configuring WLAN Override 301
- Creating Access Point Groups 304
- Configuring the RADIUS Server 307
- External Antenna Connectors 316
- Antenna Sectorization 317
- Wireless Mesh 320
- Configuring Mesh Parameters 324
- MESH MESH 331
- MESH MESH MESH 331
- MESHMESH 331
- Figure 7-10 All APs Page 334
- Figure 7-12 All APs Page 340
- Background Scanning Scenarios 344
- Channel 1 = 153 345
- Channel 2 = 161 345
- Routing Around Interference 346
- Authorizing Access Points 349
- Using DHCP Option 43 351
- • Type: 0xf1 (decimal 241) 352
- Lightweight Mode 356
- Local Core Files: 357
- Cisco Workgroup Bridges 359
- Guidelines for Using WGBs 360
- Sample WGB Configuration 362
- Figure 7-24 Clients Page 363
- Configuring Country Codes 367
- -U Regulatory Domain 373
- Guidelines for Migration 374
- Dynamic Frequency Selection 376
- Access Points 377
- Figure 7-30 Inventory Page 378
- Performing a Link Test 379
- Figure 7-32 Clients Page 380
- Figure 7-33 Link Test Page 381
- Configuring Flashing LEDs 384
- Viewing Clients 385
- Using the CLI to View Clients 388
- Configurations 391
- Upgrading Controller Software 392
- Downloading CA Certificates 400
- Uploading PACs 402
- Using the GUI to Upload PACs 403
- Using the CLI to Upload PACs 403
- Uploading Configuration Files 404
- Saving Configurations 408
- Resetting the Controller 409
- Managing User Accounts 411
- Creating Guest User Accounts 412
- Viewing Guest User Accounts 416
- Web Authentication Process 417
- Configuration Overview 434
- Configuration Guidelines 435
- Configuring Radio Resource 443
- Radio Resource Monitoring 444
- Dynamic Channel Assignment 445
- Overview of RF Groups 447
- Configuring an RF Group 448
- Viewing RF Group Status 450
- Figure 10-3 All APs Page 453
- Configuring Dynamic RRM 456
- Table 10-1 RRM Parameters 457
- Overriding Dynamic RRM 466
- Radio Measurement Requests 472
- Location Calibration 472
- Configuring Pico Cell Mode 476
- Overview of Mobility 484
- Overview of Mobility Groups 487
- Configuring Mobility Groups 490
- Prerequisites 491
- Running Mobility Ping Tests 508
- Overview of Hybrid REAP 510
- Hybrid REAP Guidelines 512
- Configuring Hybrid REAP 513
- Figure 12-6) 520
- Safety Considerations and 529
- Translated Safety Warnings 529
- Safety Considerations 530
- Warning Definition 530
- Varoitus 531
- Attention 531
- Avvertenza 531
- Advarsel 531
- ¡Advertencia! 532
- Varning! 532
- Class 1 Laser Product Warning 533
- Produto a laser de classe 1 534
- Klasse 1 laserprodukt 534
- Ground Conductor Warning 535
- Waarschuwing 546
- Controllers 551
- Information 555
- Statement 556
- Canadian Compliance Statement 557
- • Safety: EN 60950 558
- • Radio: EN 301.893 559
- Japanese Translation 560
- English Translation 560
- All Access Points 561
- End User License and Warranty 565
- End User License Agreement 566
- Limited Warranty 568
- Disclaimer of Warranty 570
- Additional Open Source Terms 571
- Troubleshooting 573
- Interpreting LEDs 574
- System Messages 574
- Monitoring Memory Leaks 582
- Diagnostic Channel 584
- Client Reporting 584
- Figure D-3) 591
- Using the Debug Facility 599
- Logical Connectivity Diagrams 605
- Cisco WiSM 606
- Controller Switch 608
- • debug wcp ? 609
- Numerics 611
© 2020, manymanuals.es. Todos los derechos reservados | 0.040 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales