Black Box LWN602A User Manual page 116

Smartpath enterprise wireless system

Hide thumbs Also See for LWN602A:

User manual (196 pages)

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

Table of Contents

Chapter 9: Common Configuration Examples

In this example, you only associate the user profile to an SSID that authenticates users with a preshared key, so the attri-

bute number is not used here. It becomes important if you use a remote RADIUS authentication server for IEEE 802.1X

authentication. When replying to a successful user authentication request, the server returns a set of attributes, and

SmartPath APs use a combination of three of them to determine which user profile to assign to traffic from an authenti-

cated user:

Tunnel-Type = GRE (10)

Tunnel-Medium-Type = IP (1)

Tunnel-Private-Group-ID = <number>

If a SmartPath AP receives all three attributes and the Tunnel-Private-Group-ID matches the attribute of a user profile, it then

applies that user profile to traffic from the authenticated user. Regardless of its ultimate use in an SSID using a preshared key or

802.1X, the attribute number for a user profile is a required setting.

Default VLAN: 1

Description: Visiting guests

Manage users for this profile via User Manager: (clear)†

†Although not a component in this example, User Manager is an excellent option for guest management. Information about

setting up and managing users through User Manager is available in the SmartPath EMS on-line Help. You can perform a search

for "User Manager," or navigate through the TOC to Home > Administration > User Manager.

Expand Firewalls, and enter the following in the IP Firewall Policy section:

From-Access: guest-IP-policy-from-access

This is the policy that you created in "Firewall Policy."

To-Access: (nothing)

Default Action: Deny

Expand QoS Settings, and enter the following:

Rate Control & Queuing Policy: QoS-Guests

This is the policy that you created in "QoS Rate Limiting." The SmartPath AP applies these rates and scheduling to users

that belong to this user profile on an individual basis.

CAC Guaranteed Airtime: 0 (default)

Call Admission Control (CAC) monitors the SmartPath AP resource load and airwaves for congestion, and then deter-

mines whether to allow additional VoIP calls using Session Initiation Protocol (SIP) or Vocera services to initiate on that

SmartPath AP. If the SmartPath AP and airwaves are already overused, then a new caller is not permitted to start a call.

Because this user policy will not be applied to voice traffic, it is unnecessary to set this.

Policing Rate Limit a/b/g mode (0-54000 Kbps): 2000

Policing Rate Limit 11n mode (0-2000000 Kbps): 2000

The maximum traffic policing rate for the entire user profile is the same as that for an individual user. By keeping the two

rates the same, a single on-line user is not restricted to a smaller rate than that of the profile to which he or she belongs.

(These rates can be the same as or greater than the individual user rates.)

Setting a rate limit of 2000 kbps provides guests with a basic amount of available bandwidth without interfering with the

bandwidth usage of other users, such as employees.

Page 116

724-746-5500 | blackbox.com

Table of Contents

Chapters

Table of Contents

This manual is also suitable for:

Lwn602ae Lwn602ha Lwn602hae

Black Box LWN602A User Manual page 116

Chapters

Related Manuals for Black Box LWN602A

Related Products for Black Box LWN602A

This manual is also suitable for:

Table of Contents