Siemens EF 711 Series Betriebsanweisung Seite 190
- Seite / 492
- Inhaltsverzeichnis
- LESEZEICHEN
Bewertet. / 5. Basierend auf Kundenbewertungen
Configuring Policies
Filtering Rules
SCALANCE WLC711
5-6 C79000-G8976-C260-03, 07/2012, User Guide, V8.11
Filtering Rules for a Default Filter
After authentication of the wireless device user, the default filter will apply only after:
• No filter ID attribute value is returned by the authentication server for this user.
• No Policy match is found on the SCALANCE IWLAN Controller for the filter ID value.
The final rule in the default filter should be a catch-all rule for any traffic that did not match a
filter. A final Allow All rule in a default filter will ensure that a packet is not dropped entirely if no
other match can be found. VNS Policy is also applicable for Captive Portal and MAC-based
authorization.
Default Filter Examples
The following are examples of filtering rules for a default filter:
Filtering Rules Between Two Wireless Devices
Traffic from two wireless devices that are on the same VNS and are connected to the same
Wireless AP will pass through the SCALANCE IWLAN Controller and therefore be subject to
filtering policy. You can set up filtering rules that allow each wireless device access to the default
gateway, but also prevent each device from communicating with each other.
Add the following two rules to a filter ID filter, before allowing everything else:
Table 5-7 Default Filter Example A
In Out Allow IP / Port Description
x x Intranet IP, range Deny all access to an IP range
x x Port 80 (HTTP) Deny all access to Web browsing
x x Intranet IP Deny all access to a specific IP
x x x *.*.*.*. Allow everything else
Table 5-8 Default Filter Example B
In Out Allow IP / Port Description
x Port 80 (HTTP) on host IP Deny all incoming wireless devices access to
Web browsing the host
x Intranet IP 10.3.0.20, ports 10-
30
Deny all traffic from the network to the wireless
devices on the port range, such as telnet (port
23) or FTP (port 21)
x x Intranet IP 10.3.0.20 Allow all other traffic from the wireless devices
to the Intranet network
x x Intranet IP 10.3.0.20 Allow all other traffic from Intranet network to
wireless devices
x x *.*.*.*. Deny everything else
Table 5-9 Rules Between Two Wireless Devices
In Out Allow IP / Port Description
x x x [Intranet IP] Allow access to the Gateway IP address of the VNS only
- SCALANCE WLC711 1
- Postfach 48 48 2
- 90026 NÜRNBERG 2
- Contents 3
- Chapter 7: Configuring a VNS 5
- Chapter 9: Configuring Sites 6
- Appendix A: Glossary 9
- About This Guide 13
- Formatting Conventions 14
- Additional Documentation 15
- Introduction 17
- Conventional Wireless LANs 18
- Network Traffic Flow 23
- Network Security 24
- Virtual Network Services 25
- VNS Components 27
- Classes of Service 28
- WLAN Services 28
- Mobility and Roaming 29
- Network Availability 29
- Quality of Service (QoS) 30
- System Configuration Overview 31
- Applying Product License Keys 43
- Setting Up the Data Ports 44
- Setting Up Static Routes 51
- Setting Up OSPF Routing 53
- Configuring SNMP 76
- Configuring Network Time 79
- Network Time Synchronization 80
- RADIUS Servers 83
- Solution: 85
- Siemens Wireless 802.11n AP 92
- Shortened Guard Interval 94
- MAC Enhancements 94
- Environment 94
- Wireless AP Discovery 98
- Registration After Discovery 100
- LEDS Indicating WDS Strength 101
- Configuring the Wireless AP 102
- Wireless AP: 103
- Security Mode 104
- Discovery Timers 105
- Field Description 106
- Chapter 7, Configuring a VNS 113
- Channel Bonding 115
- Guard Interval 116
- Aggregate MSDU and MPDU 116
- Antenna Selection 116
- Table 3-9 Radio Properties 118
- Maximum Distance 121
- Proxy Mode 135
- Pass Through Mode 136
- Viewing 802.1x Credentials 137
- Deleting 802.1x Credentials 137
- 3. Click the AP36xx tab 143
- Configuration 154
- Defaults Feature 154
- WLC711 8 158
- Table 3-14 AP Load Groups 160
- Configuring an AP Cluster 163
- Configuring Topologies 169
- Configuring the Admin Port 170
- Enabling Management Traffic 173
- Layer 3 Configuration 174
- DHCP Configuration 176
- Exception Filtering 179
- To Define Exception Filters: 180
- Multicast Filtering 183
- Configuring Policies 185
- Filtering Rules 187
- Authenticated Filter Examples 189
- ICMP Type Enforcement 189
- Default Filter Examples 190
- Configuring Filter Rules 191
- Configuring WLAN Services 197
- To Configure a WLAN Service: 198
- Configuring Privacy 204
- WPA Key Management Options 207
- 152-bit 208
- Vendor Specific Attributes 210
- To Define Accounting Methods: 212
- Wireless Controller 217
- Field/Button Description 217
- Error Message Configuration 225
- Configuring the QoS Policy 231
- Defining the Service Class 233
- QoS Modes 234
- To Configure QoS Policy: 235
- 3. Click the QoS tab 236
- Configuring a VNS 241
- Controller Defaults 242
- VNS Global Settings 243
- Messages 248
- Configuring the Filters 257
- Using the Sync Summary 259
- Methods for Configuring a VNS 261
- Manually Creating a VNS 261
- AP Default Settings 270
- Naming Service (WINS) 287
- Creating a GuestPortal VNS 301
- Enabling and Disabling a VNS 310
- Renaming a VNS 311
- Deleting a VNS 311
- Classes of Service Overview 313
- CoS Rule Classification 316
- Priority and ToS/DSCP Marking 317
- Rate Limiting 318
- Configuring Sites 321
- Authentication 322
- Radius Configuration 325
- Selecting AP Assignments 327
- Selecting WLAN Assignments 327
- 3. Click Save 328
- Working with a Mesh Network 329
- Simple Mesh Configuration 330
- Wireless Bridge Configuration 331
- Examples of Deployment 332
- Mesh WLAN Services 332
- Key Features of Mesh 335
- Tree-like Topology 336
- Radio Channels 337
- Deploying the Mesh System 338
- Planning the Mesh Topology 339
- Mesh Deployment Overview 339
- Discovery and Registration 339
- Controller 340
- 8. Assign a backhaul radio 343
- Provisioning 344
- About WDS 345
- Simple WDS Configuration 346
- WDS WLAN Services 348
- Key Features of WDS 351
- Multi-Root WDS Topology 354
- Deploying the WDS System 355
- Services 361
- Availability 365
- Availability Prerequisites 367
- Verifying Availability 372
- Session Availability 373
- Wireless AP 374
- Enabling Session Availability 376
- WLC711 Maintenance Guide 378
- Verify Synchronization 381
- Viewing SLP Activity 383
- Configuring Mobility 385
- Mobility Domain Topologies 387
- Configuring a Mobility Domain 388
- Designating a Mobility Agent 389
- Working with Third-party APs 391
- Working with the Mitigator 393
- Analysis Engine Overview 394
- Enabling the Analysis Engine 394
- Viewing the Mitigator Logs 395
- Running Mitigator Scans 396
- To View Rogue AP Scan Results 399
- Viewing Friendly APs 404
- Adding Friendly APs Manually 404
- Deleting Friendly APs 405
- Modifying Friendly APs 405
- To Maintain the Wireless APs: 406
- Viewing Statistics for APs 410
- To View Active Wireless APs 411
- To View Wireless Statistics: 412
- AP Inventory Reports 415
- Viewing Active Clients 420
- Viewing Topology Statistics 422
- Viewing Mobility Reports 424
- Mobility Tunnel Matrix 426
- Remotable VNS 426
- To View System Information: 427
- To View Reports: 428
- Call Detail Records (CDRs) 429
- CDR File Naming Convention 430
- CDR File Types 430
- CDR File Format 430
- Viewing CDRs 432
- 3. Click the Backup tab 433
- Disassociating a Client 435
- Blacklisting a Client 436
- Login Groups 439
- Working with Logs 444
- Viewing Wireless AP Logs 445
- Viewing Login Logs 446
- Viewing Wireless AP Traces 450
- Viewing Audit Messages 451
- Viewing the DHCP Messages 452
- Viewing the NTP Messages 453
- About GuestPortals 457
- Adding New Guest Accounts 458
- Editing Guest Accounts 461
- Removing Guest Accounts 462
- To Export a Guest File 464
- To Import a Guest File 465
- GuestPortal Source Code 468
- Glossary 471
- Ticket Page 487
Verwandte Produkte und Handbücher für Kochfelder Siemens EF 711 Series
Kochfelder Siemens EH6..MB1.. Bedienungsanleitung
(218 Seiten)
Kochfelder Siemens ET 757 E Series Betriebsanleitung
(190 Seiten)
(190 Seiten)
Kochfelder Siemens TL.. Betriebsanleitung
(42 Seiten)
(42 Seiten)
Kochfelder Siemens CM343 Series Wartungshandbuch
(140 Seiten)
(140 Seiten)
Kochfelder Siemens EI645EC11 Reparaturanleitung
(122 Seiten)
(122 Seiten)
(70 Seiten)
Kochfelder Siemens ET 73X Series Spezifikationen
(156 Seiten)
(156 Seiten)
Kochfelder Siemens ET8 Series Betriebsanleitung
(52 Seiten)
(52 Seiten)
© 2020, manymanuals.de. Alle Rechte vorbehalten. | 0.041 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Kommentare zu diesen Handbüchern