Configuring The Nac Inclusion List - Brocade Communications Systems RFS6000 System Reference Manual

4
4. Refer to the Edit WMM screen for the following information:
SSID Displays the Service Set ID (SSID) associated with the selected WMM index. This SSID is read-only and cannot be
modified within this screen.
Access Category Displays the Access Category for the intended radio traffic. The Access Categories are the different WLAN-WMM
options available to the radio.
The four Access Category types are:
•
Background - Optimized for background traffic.
•
Best-effort - Optimized for best effort traffic.
•
Video - Optimized for video traffic. Video traffic receives priority.
•
Voice - Optimized for voice traffic. Voice traffic receives priority.
AIFSN Defines the current Arbitrary Inter-frame Space Number (AIFSN). Higher-priority traffic categories should have lower
AIFSNs than lower-priority traffic categories. This will cause lower-priority traffic to wait longer before trying to access
the medium.
Transmit Ops Defines the maximum duration a device can transmit after obtaining a transmit opportunity. For higher-priority
traffic categories, this value should be set to a low number.
CW Minimum The CW Minimum is combined with the CW Maximum to make the Contention screen. From this range, a random
number is selected for the back off mechanism. Select a lower value for high priority traffic.
CW Maximum The CW Maximum is combined with the CW Minimum to make the Contention screen. From this range, a random
number is selected for the back off mechanism. Lower values are used for higher priority traffic
Max Retries Defines a maximum number of retries for each Access Category.
Use DSCP or 802.1p Selects the DSCP or 802.1p radio buttons to choose between DSCP and 802.1p.
5. Refer to the Status field for the current state of the requests made from applet. This field
6. Click OK to use the changes to the running configuration and close the dialog.
7.

Configuring the NAC Inclusion List

Using NAC, the switch acts as an enforcement entity before allowing client access to specific
network resources. NAC performs a client host integrity check wherein a client sends host integrity
information to the NAC server. The NAC server configuration is defined on the switch on a per WLAN
basis. NAC verifies a client's compliance with the NAC server's security policy (not the switch).
For a NAC configuration example using the switch CLI, see NAC Configuration Examples Using the
Switch CLI on page 4-157.
An include list is a list of MAC addresses configured for a WLAN. During EAP authentication, the
EAP server (Radius or NAC server) is determined based on the client's MAC address.
•
•
The switch uses the include list to add devices that are NAC supported. The following explains how
authentication is achieved using 802.1x. The switch authenticates 802.1x enabled devices using
one of the following:
150
displays error messages if something goes wrong in the transaction between the applet and
the switch.
Click Cancel to close the dialog without committing updates to the running configuration.
All non-802.1x devices are partitioned into a WLAN (separate from a 802.1x enabled WLAN).
Communication between devices in a 802.1x supported WLAN and a non 802.1x supported
WLAN is achieved by merging the WLANs within the same VLAN.
Brocade Mobility RFS4000, RFS6000, and RFS7000 System Reference Guide
53-1002515-01