Table of Contents
Advertisement
Chapter 2 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - How it works - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Chapter 2
Integrated access point and access controller
The CN3000 is a fully integrated access point/access controller. It creates a public
wireless network and provides fine-grained management and control of customer
sessions.
The CN3000 divides the network into two segments: public and protected.
• The public segment is composed of all client stations connected via wireless or to a
• The protected segment is composed of all resources that are connected to the
While this default configuration may be suitable for a simple wireless hotspot that
provides access to the Internet, more complex setups require more fine-grained control
of the protected network resources. To support this, the CN3000 provides a fully-
configurable access list mechanism (page 153), which provides following benefits:
• The ability to make specific protected resources available to unauthenticated
• The ability to define a list of accessible resources for a single customer or an entire
• The ability to block specific addresses for a single customer or entire group. For
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 16 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Protected network
Corporate network
Corporate network
network linked to the CN3000's LAN port.
CN3000's Internet port. Access to these resources is controlled by configuration
settings on the CN3000. By default, these settings are:
• unauthenticated customers cannot access any protected network resources
• authenticated customers can access all protected network resources
customers. For example, when you want to have public web pages available to
customers before they log in, but locate the web server on a protected network.
group. For example, if you have several customer groups (teachers, students,
visitors), each can be given access to specific network resources.
example, you could disallow traffic to file swapping Internet sites to cut down on
bandwidth usage.
Public network
Internet port
Internet port
- Quick Links:
- Introduction
- Wireless Radio
- Logging in
- Reset Button
Hide quick links:
Advertisement
Table of Contents
