beautypg.com

Brocade Mobility RFS7000-GR Controller System Reference Guide (Supporting software release 4.1.0.0-040GR and later) User Manual

Page 115

background image

Brocade Mobility RFS7000-GR Controller System Reference Guide

101

53-1001944-01

Viewing and configuring switch WLANs

4

Authentication

Encryption

Advanced

5. The Switch field displays the IP address of the cluster member associated with each WLAN.

When clustering is enabled on the switch and Cluster GUI is enabled the Switch field will be
available on the Wireless LAN screen. For information on configuring enabling Cluster GUI, see

Managing clustering using the Web UI

.

6. Refer to the Configuration field to define the following WLAN values

ESSID

Displays the Extended Service Set ID (ESSID) associated with each WLAN. If
changing the ESSID, ensure the value used is unique.

Description

If editing an existing WLAN, ensure its description is updated accordingly to best
describe the intended function of the WLAN.

Deny Static MU

Enabling this option provides WLAN based configuration to allow only traffic from
those mobile units whose IP is present in the layer 3 entity table. If the IP entry is
not present in the layer 3 entity table, the event will be logged and the packet
dropped.

Enable URL Logging

Enable URL Logging to log all HTTP GET requests.Along with the URL, a mobile unit
IP address will also be logged.

Independent Mode
(AAP Only)

Determines whether the WLAN is functioning as an independent or extended
WLAN in regards its support of adaptive AP (AAP) operation. Select the checkbox to
designate the WLAN as independent and prevent traffic from being forwarded to
the switch. Independent WLANs behave like WLANs as used on a a standalone
Access Point. Leave this option unselected (as is by default) to keep this WLAN an
extended WLAN (a typical centralized WLAN created on the switch).
For an overview of AAP and how it is configured and deployed using the switch and
Access Point, see

“Adaptive AP”

on page 487

VLAN ID

Displays the VLAN ID of VLANs assigned to WLANs. By default, all WLANs created
are assigned to VLAN 1.

Dynamic Assignment

With any authentication method that involves a RADIUS server, the RADIUS server
may be configured to include a VLAN Id attribute in its "ACCESS Accept" response.
This VLAN, instead of the configured VLAN(s) on this WLAN, will be assigned to the
mobile unit. Enabling this check mark will enable switch to take VLAN ID from
RADIUS response. When disabled, switch will ignore the VLAN ID from RADIUS
response.

Assign Multiple VLANs

Click this button when it is desirable to assign multiple VLANs to this WLAN. For
more information, see

“Assigning multiple VLANs per WLAN”

on page 104.

802.11w-PMF

On WLANS with CCMP encryption enabled, choose a 802.11w-PMF mode from the
pulldown menu. Available options are:

None

Optional

Required

SA Query Max Timeout

Define the maximum time (in miliseconds) before an SA Query is timed out. The
valid timeout range is between 100msec and 6000msec with a default value of
1000msec.

SA Query Retry Timeout

Define the maximum number of retries before an SA Query is timed out. The valid
retry range is between 10 and 1500 retries with a default value of 201 retries.

See also other documents in the category Brocade Computer Accessories: