beautypg.com

Brocade Mobility Access Point System Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

Page 152

background image

142

Brocade Mobility Access Point System Reference Guide

53-1003100-01

5

8. Define the following Extended VLAN Tunnel parameters:

NOTE

If creating a mesh connection between two access points in Standalone AP mode, Tunnel must be
selected as the Bridging Mode to successfully create the mesh link between the two access points.

Select Tunnel Over Level 2 to tunnel extended VLAN traffic over level 2 links.

Define the following Layer 2 Firewall parameters:

Select the IGMP Snooping tab.

Bridging Mode

Specify one of the following bridging mode for use on the VLAN:

Automatic: Select Automatic mode to let the access point determine the best bridging mode
for the VLAN.

Local: Select Local to use local bridging mode for bridging traffic on the VLAN.

Tunnel: Select Tunnel to use a shared tunnel for bridging traffic on the VLAN. Tunnel must be
selected to successfully create a mesh connection between two Standalone APs.

isolated-tunnel: Select isolated-tunnel to use a dedicated tunnel for bridging traffic on the
VLAN.

IP Outbound Tunnel ACL

Select an IP Outbound Tunnel ACL for outbound traffic from the drop-down menu. If an
appropriate outbound IP ACL is not available select the create icon to make a new one.

MAC Outbound Tunnel ACL

Select a MAC Outbound Tunnel ACL for outbound traffic from the drop-down menu. If an
appropriate outbound MAC ACL is not available select the create icon to make a new one.

Trust ARP Response

Select this option to use trusted ARP packets to update the DHCP Snoop Table to prevent IP
spoof and arp-cache poisoning attacks. This feature is disabled by default.

Trust DHCP Responses

Select this option to use DHCP packets from a DHCP server as trusted and permissible within the
network. DHCP packets update the DHCP Snoop Table to prevent IP spoof attacks. This feature is
disabled by default.

Enable Edge VLAN Mode

Select this option to enable edge VLAN mode. When selected, the IP address in the VLAN is not
used for normal operations, as its now designated to isolate devices and prevent connectivity.
This feature is enabled by default.

See also other documents in the category Brocade Computer Accessories: