Brocade Communications Systems RFS6000 System Reference Manual page 37
Provides centralized wireless lan (wlan) configuration and management
Hide thumbs
Also See for RFS6000:
- Cli reference manual (839 pages) ,
- System reference manual (553 pages)
Table of Contents
Advertisement
Authorized AP lists
Configure a list of authorized Access Points based on their MAC addresses. The controller
evaluates the APs against the configured authorized list after obtaining Rogue AP information from
one of the 2 mechanisms as mentioned in
Rogue AP report
After determining which are authorized APs and which are Rogue, the controller prepares a report.
ACLs
ACLs control access to the network through a set of rules. Each rule specifies an action taken when
a packet matches a set of rules. If the action is deny, the packet is dropped. If the action is permit,
the packet is allowed. If the action is to mark, the packet is tagged for priority. The controller
supports the following types of ACLs:
•
•
•
•
For information on creating an ACL, see
page 348.
Local Radius server
Radius is a common authentication protocol utilized by the 802.1x wireless security standard.
Radius improves the WEP encryption key standard, in conjunction with other security methods
such as EAP-PEAP. The controller has one onboard Radius server. For information on configuring
the controller's resident Radius Server, see
IPSec VPN
IP Sec is a security protocol providing authentication and encryption over the Internet. Unlike SSL
(which provides services at layer 4 and secures two applications), IPsec works at Layer 3 and
secures the network. Also unlike SSL (which is typically built into the Web browser), IPsec requires
a client installation. IPsec can access both Web and non-Web applications, whereas SSL requires
workarounds for non-Web access such as file sharing and backup.
A VPN is used to provide secure access between two subnets separated by an unsecured network.
There are two types of VPNs:
•
•
The controller supports:
•
•
•
•
Brocade Mobility RFS6000 and RFS7000 System Reference Guide
53-1001858-01
IP Standard ACLs
IP Extended ACLs
MAC Extended ACLs
Wireless LAN ACLs
Site-Site VPN — For example, a company branching office traffic to another branch office
traffic with an unsecured link between the two locations.
Remote VPN — Provides remote user ability to access company resources from outside the
company premises.
IPSec termination for site to site
IPSec termination for remote access
IPSec traversal of firewall filtering
IPSec traversal of NAT
"Rogue AP detection"
on page 22.
"Configuring firewalls and access control lists"
"Configuring the Radius server"
Software overview
on
on page 426.
1
23
Advertisement
Table of Contents
