Brocade Communications Systems Mobility 7131 Series Service Manual Page 220
- Page / 520
- Table of contents
- BOOKMARKS
Rated. / 5. Based on customer reviews
208 Brocade Mobility 7131 Access Point Product Reference Guide
53-1002517-01
6
Configuring Multi Cipher Support
The access point’s Multi Cipher allows legacy and new MUs (Wi-Fi handheld devices) within the
same WLAN. Multi cipher extends the access point’s existing WLAN security options by allowing
dynamic WEP and 802.11i configurations to co-exist, and allowing multiple security policies to be
associated with the same ESSID on different WLANs. Within such an environment, legacy MUs are
capable of WEP, while new MUs are capable of WPA/2-TKIP and WPA2-CCMP encryption. This
particular form of multi cipher (security) support helps maintain the co-existence of Dynamic WEP
and 802.11i based environments.
To support this feature, certain security policy combinations need to be available on a per-WLAN
basis. The following combinations are supported:
• WEP 64 and WPA/WPA2-TKIP
• WEP 64 and WPA2-CCMP
• WEP 128 and WPA/WPA2-TKIP
• WEP 128 and WPA2-CCMP
• WPA2-CCMP and WPA/WPA2-TKIP
To configure multi cipher support, WLANs should be created with the same ESSID, but different
BSSIDs and security schemes. This results in the AP announcing different beacons for the same
ESSID. MUs can then select a corresponding BSSID to associate, depending on their individual
configurations.
From the MU’s point of view, the scenario is as if there are two APs available with same ESSID, but
different security policies. The MU can choose an appropriate AP based on its configuration.
NOTE
Multi Cipher is supported in adaptive mode (AAP), provided the required configuration is allowed on
switch.
Configuring multi cipher support requires:
• Creating WLANs with the same ESSID, but different BSSIDs and security schemes. This results
in the AP beaconing the same ESSID, but a different BSSID.
• Each WLAN having a unique WLAN name. If a WLAN’s name is same as the ESSID, it’s difficult
to distinguish them when doing WLAN-BSSID grouping.
• Not using WLANs with same ESSID and security scheme. If this were to be deployed, beacons
will contain the same ESSID and security scheme data, but different BSSIDs would be
generated, potentially confusing MUs.
• Ensuring WLANs with the same ESSID use the same authentication method(s) in their security
policies.
• WLANs with the same ESSID not use both WEP64 and WEP128 as security schemes. If both
are defined for the same ESSID, MUs configured with WEP could be associated with the wrong
WLAN and fail to get an IP address.
NOTE
Since the AP supports a maximum of 4 different BSSID groups, Brocade Mobility recommends
grouping WLANs with common security schemes under the same BSSID group to support a greater
number of WLANs.
- Brocade Mobility 7131 1
- Access Point 1
- Document History 2
- Contents 3
- Chapter 3 Getting Started 5
- Chapter 5 Network Management 6
- Chapter 8 CLI Reference 8
- Chapter 10 Adaptive AP 8
- Chapter B Usage Scenarios 9
- 53-1002517-01 10
- About This Guide 11
- Related publications 12
- Getting technical help 12
- Introduction 13
- New Features 14
- Hotspot Customization 15
- WAN Failover 15
- Proxy ARP Support 16
- Multi Cipher Support 16
- Dynamic Chain Selection 17
- Dedicated Sensor Support 17
- LED Disable 17
- Feature Overview 18
- 802.11n Support 19
- Sensor Support 19
- Mesh Roaming Client 21
- Separate LAN and WAN Ports 21
- Multiple Mounting Options 22
- Sixteen Configurable WLANs 22
- • Kerberos Authentication 23
- • EAP Authentication 23
- • WEP Encryption 23
- Kerberos Authentication 24
- EAP Authentication 24
- WEP Encryption 25
- KeyGuard Encryption 25
- Firewall Security 26
- VPN Tunnels 26
- VLAN Support 27
- Updatable Firmware 27
- Power-over-Ethernet Support 28
- MU-MU Transmission Disallow 28
- Voice Prioritization 29
- Support for CAM and PSP MUs 29
- Statistical Displays 29
- DHCP Support 30
- Transmit Power Control 30
- Mesh Networking 31
- Additional LAN Subnet 31
- Hotspot Support 32
- Manual Date and Time Settings 33
- Dynamic DNS 33
- Auto Negotiation 33
- Adaptive AP 33
- Rogue AP Enhancements 34
- QBSS Support 34
- Triple Radio Support 34
- IP Filtering 35
- MU Rate Limiting 35
- Per Radio MU Limit 35
- Power Setting Configuration 36
- AMSDU Transmission Support 36
- IPSec VPN Support 36
- Theory of Operations 37
- MAC Layer Bridging 38
- Media Types 39
- MU Association Process 39
- Operating Modes 40
- Management Access Options 41
- MAC Address Assignment 41
- Hardware Installation 43
- Package Contents 44
- Access Point Placement 45
- Power Options 47
- Power Injector System 47
- Cabling the Power Injector 49
- Mobility 7131N Access Point 50
- • Light pipe 55
- • Badge for light pipe 55
- • Decal for badge 55
- • Security cable (optional) 55
- LED Indicators 57
- Dual Radio (2.4/5 GHz) LEDs 59
- Single Radio 2.4 GHz LEDs 60
- Single Radio 5 GHz LEDs 60
- Setting Up MUs 61
- Getting Started 63
- Basic Device Configuration 65
- Configuring Device Settings 67
- Testing Connectivity 76
- Where to Go from Here? 76
- System Configuration 79
- Configuring Power Settings 82
- Available Power 83
- Power 2.4 GHz 84
- Maximum Transmit 84
- Power 5 GHz 84
- Power 5 GH 85
- Adaptive AP Setup 87
- Configuring Data Access 89
- LAN1, LAN2 or WAN interfaces: 90
- Importing a CA Certificate 93
- Ensure the 97
- Configuring SNMP Settings 99
- Feature MIB Feature MIB 100
- Mobility 7131 Access Point 103
- Mobility 7131 Access 103
- • Enabling SNMP Traps 104
- Enabling SNMP Traps 105
- Configuring LLDP Settings 111
- Mobility 7131 114
- Logging Configuration 115
- Updating Device Firmware 121
- Network Management 127
- Configuring VLAN Support 130
- Configuring WAN Settings 139
- • Novatel Merlin 870 143
- Configuring Port Forwarding 146
- Configuring Dynamic DNS 147
- Customizing a Hotspot Display 168
- (mutually exclusive) 173
- Configuring MU Rate Limiting 188
- Configuring Router Settings 190
- Setting the RIP Configuration 191
- Configuring IP Filtering 193
- Creating a Global Filter 196
- LAN and WLAN filter policies 197
- Assessing IP Filter Stats 199
- In this chapter 201
- Configuring Security Options 202
- Setting Passwords 202
- Mobility 205
- 7131 Access Point 205
- Configuring WEP Encryption 211
- Configuring Firewall Settings 222
- Available Protocols 226
- Configuring VPN Tunnels 228
- Configuring Auto Key Settings 236
- Configuring IKE Key Settings 238
- VPN Configuration - Example 241
- Viewing VPN Status 242
- Displaying Rogue AP Details 250
- Configuring the Radius Server 253
- Group Member 256
- Attribute 256
- Mapping Users to Groups 259
- Monitoring Statistics 265
- Viewing LAN Statistics 268
- Viewing Wireless Statistics 273
- Viewing WLAN Statistics 274
- Viewing Radio Statistics 279
- Retry Histogram 282
- Viewing MU Statistics Summary 283
- Viewing MU Details 284
- Pinging Individual MUs 286
- MU Authentication Statistics 286
- CLI Reference 293
- Admin and Common Commands 294
- Description: 295
- Syntax: 295
- Example: 295
- Network Commands 298
- Network Type Filter Commands 310
- Network WAN Commands 313
- Network WAN NAT Commands 315
- Related Commands: 318
- Network Wireless Commands 330
- Network ACL Commands 348
- GHz].advanced)>show 358
- GHz].advanced)>set 359
- GHz].mesh)>show 360
- GHz].mesh)>delete 361
- Descripton: 370
- Network Rogue-AP Commands 373
- Network Firewall Commands 380
- Network Router Commands 383
- Network IP Filter Commands 387
- System Commands 390
- Power Setup Commands 394
- Adaptive AP Setup Commands 395
- LLDP Commands 398
- System Access Commands 399
- Description: ) 402
- System SNMP Commands 407
- System SNMP Traps Commands 410
- System User Database Commands 415
- System Radius Commands 421
- Description: set 425
- zone-list 434
- System Log Commands 435
- Firmware Update Commands 443
- Statistics Commands 445
- Configuring Mesh Networking 455
- Spanning Tree Protocol (STP) 457
- Defining the Mesh Topology 457
- Normal Operation 458
- Configuring AP#1: 470
- Configuring AP#2 474
- Configuring AP#3 474
- Configuring AP#1 476
- Where to Go From Here 484
- Adaptive AP Management 484
- Licensing 484
- Switch Discovery 484
- Auto Discovery using DHCP 485
- Manual Adoption Configuration 485
- Adaptive AP WLAN Topology 486
- Configuration Updates 486
- Adaptive AP Switch Failure 487
- Adaptive Mesh Support 487
- Extended WLANs Only 488
- Independent WLANs Only 489
- Adaptive AP Configuration 491
- Option Data Type Value 492
- Switch Configuration 493
- IPSec and Independent WLAN 496
- Technical Specifications 501
- Electrical Characteristics 502
- Country Codes 503
- Country Code Country Code 504
- Usage Scenarios 507
- Code Data type 508
- • 1 TFTP Server 509
- DHCP Priorities 510
- BootP Options 511
- • Sends a true BootP request 512
- BootP Priorities 513
- • 1 Cisco VPN device 517
Related products and manuals for WLAN access points Brocade Communications Systems Mobility 7131 Series
(65 pages)© 2020, manymanuals.com. All rights reserved. | 0.308 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals