Extreme Networks Summit WM20 User Manual page 125

Version 4.2

Hide thumbs Also See for Summit WM20:

Installation instructions (2 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

251

252

253

254

255

256

257

258

259

260

261

262

263

264

265

266

267

268

269

270

page of 270

/ 270
Contents
Table of Contents
Bookmarks

Table of Contents

rule is to deny all. Administrators should define a rule set that will permit users to access essential

services:

DNS (IP of DNS server)

●

Default Gateway (WM-AD Interface IP)

●

Any HTTP streams requested by the client for denied targets will be redirected to the specified location.

The non-authenticated filter should allow access to the Captive Portal page IP address, as well as to any

URLs for the header and footer of the Captive Portal page. This filter should also allow network access

to the IP address of the DNS server and to the network address—the gateway of the WM-AD. The WM-

AD gateway is used as the IP for an internal Captive Portal page. An external Captive Portal will

provide a specific IP definition of a server outside the Summit WM Controller.

Redirection and Captive Portal credentials apply to HTTP traffic only. A wireless device user attempting

to reach Websites other than those specifically allowed in the non-authenticated filter will be redirected

to the allowed destinations. Most HTTP traffic outside of those defined in the non-authenticated filter

will be redirected.

NOTE

Although non-authenticated filters definitions are used to assist in the redirection of HTTP traffic for restricted or

denied destinations, the non-authenticated filter is not restricted to HTTP operations. The filter definition is general.

Any traffic other than HTTP that the filter does not explicitly allow will be discarded by the controller.

The non-authenticated filter is applied by the Summit WM Controller to sessions until they successfully

complete authentication. The authentication procedure results in an adjustment to the user's applicable

filters for access policy. The authentication procedure may result in the specification of a specific filter

ID or the application of the default filter for the WM-AD.

Typically, default filter ID access is less restrictive than a non-authenticated profile. It is the

administrator's responsibility to define the correct set of access privileges.

To define filtering rules for a non-authenticated filter:

1 From the main menu, click WM-AD Configuration. The WM-AD Configuration screen is

displayed.

2 In the left pane WM Access Domains list, click the WM-AD you want to define filter ID values for.

The Topology tab is displayed.

3 Click the Filtering tab.

Summit WM20 User Guide, Software Release 4.2

Configuring Filtering Rules for a WM-AD

125

Table of Contents

Extreme Networks Summit WM20 User Manual page 125

Related Manuals for Extreme Networks Summit WM20

Related Products for Extreme Networks Summit WM20

Table of Contents