Configuration updates, Securing data tunnels between the switch and aap, Adaptive ap switch failure – Brocade Mobility RFS7000-GR Controller System Reference Guide (Supporting software release 4.1.0.0-040GR and later) User Manual
Page 504
490
Brocade Mobility RFS7000-GR Controller System Reference Guide
53-1001944-01
In this chapter
A
NOTE
For a review of some important considerations impacting the use of extended and independent
WLANs within an AAP deployment, see
Adaptive AP deployment considerations
.
Configuration updates
An AAP receives its configuration from the switch initially as part of its adoption sequence.
Subsequent configuration changes on the switch are reflected on an AAP when applicable.
An AAP applies the configuration changes it receives from the switch after 30 seconds from the last
received switch configuration message. When the configuration is applied on the AAP, the radios
shutdown and re-initialize (this process takes less than 2 seconds) forcing associated MUs to be
deauthenticated. MUs are quickly able to associate.
NOTE
When using a Brocade Mobility 7131N-FGR Access Point in Adaptive AP Mode you must enable
WMM on the associated WLAN in order to achieve the highest data rates available.
NOTE
When using a Brocade Mobility 7131N-FGR Access Point in dependant mode, be aware that any
configuration changes made directly on the AP will be overwritten once the AP is adopted by the
switch and the configuration file from the switch is received.
Securing data tunnels between the switch and AAP
If a secure link (site-to-site VPN) from a remote site to the central location already exists, the AAP
does not require IPSec be configured for adoption.
For sites with no secure link to the central location, an AAP can be configured to use an IPSec
tunnel (with AES 256 encryption) for adoption. The tunnel configuration is automatic on the AAP
side and requires no manual VPN policy be configured. On the switch side, configuration updates
are required to adopt the AAP using an IPSec tunnel.
To review a sample AAP configuration, see
Sample switch configuration file for IPSec and
.
Adaptive AP switch failure
In the event of a switch failure, an AAP's independent WLAN continues to operate without
disruption. The AAP attempts to connect to other switches (if available) in background. Extended
WLANs are disabled once switch adoption is lost. When a new switch is discovered and a
connection is secured, an extended WLAN can be enabled.
If a new switch is located, the AAP synchronizes its configuration with the located switch once
adopted. If Remote Site Survivability (RSS) is disabled, the independent WLAN is also disabled in
the event of a switch failure.