Vsc Binding - HP MSM317 Installation And Configuration Manual
Hide thumbs
Also See for MSM317:
- Installation and getting started manual (76 pages) ,
- Deployment manual (21 pages) ,
- Installation manual (4 pages)
Table of Contents
Advertisement
U s e r
User A
Notebook
Untagged
-Wired
In this scenario, the Allow dynamic VLAN assignment option is disabled. However, dynamically
assigned VLANs can still be used by binding the port to an access-controlled VSC. In this case,
the dynamically assigned VLAN is applied on the controller and not on the access device. It
overrides the VLAN settings on the VSC egress mapping on the controller.
Port 2 is bound to the VSC named Guest. Authentication occurs using the local user accounts on
the controller (via 802.1X or HTML-based logins). Since the Guest VSC is not the default VSC, a
VLAN definition must be assigned to the port to ensure that user traffic is properly routed from the
access device to the VSC on the controller.
Once authenticated, VLAN 30 is assigned to the user. This overrides the VSC egress setting, causing
the user's traffic to reach the private network on VLAN 30. On the controller, VLAN 30 must be
bound to the Internet port (Internet network on the MSM720), have an IP address, and NAT must
be enabled.
VSC binding
Use this option to bind a port to a VSC. This applies settings from the VSC to the port. The type of
settings that are applied depend on the type of VSC: access-controlled or non-access-controlled.
Binding to an access-controlled VSC
When a port is bound to an access-controlled VSC, the controller is used for authentication and
access control, and all non-wireless VSC features are applied to the switch port.
When binding to an access-controlled VSC, other than the default VSC, a VLAN must be
assigned to both the port and the VSC to ensure that user traffic is handled correctly.
When the default VSC is used, no VLAN definitions are required because untagged traffic on
the controller LAN port is automatically handled by the default VSC.
The following examples illustrate various ways of binding to an access-controlled VSC.
tr
M S
M 3
1 7
t
k P o r
U p l i n
2
P o r t
A
MSM317
Port 2
-Primary VLAN=Uplink tagging
-Primary VLAN ID=10
-VSC=Guest
Management
-Default settings
7 x x
M S M
r o l l e r
C o n t
h
S w i t c
P o E
w i t h
MSM7xx Controller
VLAN=10
VSC: Guest
-VSC ingress=VLAN 10
Untagged
-VSC egress=No VLAN
Local user list: User A
-VLAN ID=30
Management
Untagged
-Default settings
t e
P r i v a
o r k
N e t w
Private network
User gains access to
VLAN=30
resources on the private
network.
Configuring the switch ports
35
Advertisement
Table of Contents
