On-Board Dhcp; On-Board Kdc; Rogue Ap Detection; Simple Network Management Protocol (Snmp) - Symbol WS5000 Series System Reference Manual
Hide thumbs
Also See for WS5000 Series:
- System reference manual (728 pages) ,
- Reference manual (314 pages) ,
- Troubleshooting manual (56 pages)
Table of Contents
Advertisement
1.4.6 On-Board DHCP
Dynamic Host Configuration Protocol (DHCP) automatically assigns IP addresses to computers using TCP/IP. A
DHCP server assigns addresses to computers configured as DHCP clients. The WS5000 Series Switch provides
an on-board DHCP feature. See
WTLS
VPN.
1.4.7 On-Board KDC
The WLAN Switch has an on-board Key Distribution Center (KDC) or Kerberos authentication server. The
WS5000 Series Switch provides a secure means for authenticating users/clients associated to a WLAN or ESS
with the Kerberos security policy applied.
The on-board KDC can be configured to use up to three Network Time Protocol servers (NTPs). A separate
switch with an on-board KDC can be configured as a Slave KDC to support the Master KDC in case of a Master
KDC failure.
1.4.8 Rogue AP Detection
Rogue Access Ports are an area of concern with respect to LAN security. The term Rogue AP denotes an
unauthorized access port connected to the production network or operating in a stand-alone mode (perhaps in
a parking lot or in a neighbor's building). Rogue APs are not under the management of network administrators
and do not conform to any network security policies.
Although 802.1x security settings should completely protect the LAN, organizations are not always fully
compliant with the newest wireless-security best practices. In addition, organizations want the ability to
detect and disarm rogue APs. The WS5000 Wireless Switch provides a mechanism for detecting and reporting
rogue APs. See
Chapter 7, Configuring Rogue AP
1.4.9 Simple Network Management Protocol (SNMP)
SNMP defines the method for obtaining information about network operating characteristics as well as router
and gateway behaviors. This application-layer protocol initiates the exchange of configuration and
management information between network devices. The SNMP architecture allows a variety of relationships
among network entities.
The WS5000 Series Switch v2.0 supports SNMP v3.0 as well as SNMP v2.0 and v1.0. To configure SNMP on
the WS5000 Series Switch, see
The switch GUI and CLI help you enable or disable certain SNMP features. Disabling these features
("hardening" of the switch) helps manage security. Hardening of the KDC only is also permitted.
SNMP is also managed by the SNMP manager through a third-party SNMP client, software permitting the
manipulation and configuration of SNMP components. There are three elements in this process:
• Management Stations – Software managing SNMP protocol parameters and communicating with
SNMP Agents. The SNMP manager is responsible for this element.
• SNMP Agent – Local to the Wireless Switch, this SNMP server provides the network device
information. It processes information requests from the SNMP manager via the management station
using SNMP.
Configuring DHCP Server using CLI
Detection.
Chapter 11, Configuring
SNMP.
WS5000 Series Switch Overview
in
Chapter 12,
Configuring the WS5100
1-15
Advertisement
Table of Contents
