beautypg.com

Brocade Mobility Access Point System Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

Page 330

background image

320

Brocade Mobility Access Point System Reference Guide

53-1003100-01

5

Set or override the following Extended VLAN Tunnel parameters:

NOTE

If creating a mesh connection between two access points in Standalone AP mode, Tunnel must be
selected as the bridging mode to successfully create the mesh link between the two access points.

Select Tunnel Over Level 2 to tunnel extended VLAN traffic over level 2 links.

Set or override the following Layer 2 Firewall parameters:

Click the IGMP Snooping tab to set or override the IGMP snooping configuration.

Bridging Mode

Specify one of the following bridging mode for use on the VLAN.

Automatic: Select Automatic mode to let the controller determine the best bridging mode for
the VLAN.

Local: Select Local to use local bridging mode for bridging traffic on the VLAN.

Tunnel: Select Tunnel to use a shared tunnel for bridging traffic on the VLAN. Tunnel must be
selected to successfully create a mesh connection between two Standalone APs.

isolated-tunnel: Select isolated-tunnel to use a dedicated tunnel for bridging traffic on the
VLAN.

IP Outbound Tunnel ACL

Select an IP Outbound Tunnel ACL for outbound traffic from the drop-down menu. If an
appropriate outbound IP ACL is not available click the create button to make a new one.

MAC Outbound Tunnel ACL

Select a MAC Outbound Tunnel ACL for outbound traffic from the drop-down menu. If an
appropriate outbound MAC ACL is not available click the create button to make a new one.

Trust ARP Responses

Select this option to use trusted ARP packets to update the DHCP snoop table to prevent IP spoof
and arp-cache poisoning attacks. This feature is disabled by default.

Trust DHCP Responses

Select this option to use DHCP packets from a DHCP server as trusted and permissible within the
network. DHCP packets are used to update the DHCP snoop table to prevent IP spoof attacks.
This feature is disabled by default.

Edge VLAN Mode

Select this option to enable edge VLAN mode. When selected, the IP address in the VLAN is not
used for normal operations, as its now designated to isolate devices and prevent connectivity.
This feature is enabled by default.

See also other documents in the category Brocade Computer Accessories: