Alcatel-Lucent IAP93 Podręcznik Użytkownika Strona 241
- Strona / 335
- Spis treści
- ROZWIĄZYWANIE PROBLEMÓW
- BOOKMARKI
Oceniono. / 5. Na podstawie oceny klientów
(Instant Access Point)(config)# vpn reconnect-user-on-failover
(Instant Access Point)(config)# vpn reconnect-time-on-failover <down_time>
(Instant Access Point)(config)# end
(Instant Access Point)# commit apply
Example
(Instant Access Point)(config)# vpn primary 192.0.2.18
(Instant Access Point)(config)# vpn backup 192.0.2.18
(Instant Access Point)(config)# vpn fast-failover
(Instant Access Point)(config)# vpn preemption
(Instant Access Point)(config)# ip dhcp distl2
(Instant Access Point)(DHCP Profile "distL2")# server-type Distributed,L2
(Instant Access Point)(DHCP Profile "distL2")# server-vlan 2
(Instant Access Point)(DHCP Profile "distL2")# ip-range 10.15.205.0 10.15.205.255
(Instant Access Point)(DHCP Profile "distL2")# subnet-mask 255.255.255.0
(Instant Access Point)(DHCP Profile "distL2")# lease-time 86400
(Instant Access Point)(DHCP Profile "distL2")# default-router 10.15.205.254
(Instant Access Point)(DHCP Profile "distL2")# dns-server 10.13.6.110,10.1.1.50
(Instant Access Point)(DHCP Profile "distL2")# domain-name alcatel-lucent.com
(Instant Access Point)(DHCP Profile "distL2")# client-count 5
(Instant Access Point)(config)# ip dhcp local
(Instant Access Point)(DHCP Profile "local")# server-type Local
(Instant Access Point)(DHCP Profile "local")# server-vlan 200
(Instant Access Point)(DHCP Profile "local")# subnet 172.16.200.1
(Instant Access Point)(DHCP Profile "local")# subnet-mask 255.255.255.0
(Instant Access Point)(DHCP Profile "local")# lease-time 86400
(Instant Access Point)(DHCP Profile "local")# dns-server 10.13.6.110,10.1.1.50
(Instant Access Point)(DHCP Profile "local")# domain-name alcatel-lucent.com
To view VPN configuration:
Instant Access Point# show vpn config
Enabling Automatic Configuration of GRETunnel
GRE is an Alcatel-Lucent proprietary tunnel protocol for encapsulating multicast, broadcast, and L2 packets
between the Switch and OAW-IAPs. The automatic GRE feature uses the IPSec connection between OAW-IAP
and switch to send the control information for setting up a GRE tunnel. When automatic GRE configuration is
enabled, a single IPSec tunnel between the OAW-IAP cluster and switch and one or several GRE tunnels are
created based on the Per-AP tunnel configuration on the OAW-IAP. When this feature is enabled on the OAW-IAP,
no manual configuration is required on switch to create the GRE tunnel.
Automatic configuration of GRE tunnel is supported only on Alcatel-Lucent switchs. This feature is not supported
on switches running AOS-W Instant 6.3.x.x or lower versions.
You can configure an OAW-IAP to automatically set up a GRE tunnel from the OAW-IAP to Switch by using AOS-W
Instant UI or CLI.
In the AOS-W Instant UI
1. Click the More>VPN link at the top right corner of the AOS-W Instant UI. The Tunneling window is displayed.
2. Select Aruba GRE from the Protocol drop-down list.
3. Enter the IP address or FQDN for the main VPN/IPSec endpoint in the Primary host field.
4. Enter the IP address or FQDN for the backup VPN/IPSec endpoint in the Backup host field. This entry is
optional. When you enter Primary host IP address, Backup host IP address, other fields are displayed.
5. Specify the following parameters. A sample configuration is shown in Figure 80.
AOS-W Instant 6.3.1.1-4.0 | User Guide VPN Configuration | 241
- User Guide 1
- AOS-W Instant 1
- 6.3.1.1-4.0 1
- Contents 3
- In the AOS-W Instant UI 71 5
- In the CLI 72 5
- Mesh OAW-IAP Configuration 79 6
- VLAN Configuration 81 6
- Wireless Network Profiles 85 7
- Wired Profiles 102 8
- In the CLI 121 9
- User Management 128 10
- Authentication 134 10
- In the AOS-W Instant UI 148 11
- In the CLI 149 11
- In the AOS-W Instant UI 149 11
- In the AOS-W Instant UI 159 12
- In the CLI 160 12
- Roles and Policies 164 13
- Example 180 14
- Example 183 14
- In the AOS-W Instant UI 185 14
- Uplink Configuration 187 15
- Spectrum Monitor 203 16
- Adaptive Radio Management 211 16
- Intrusion Detection 221 17
- Content Filtering 228 17
- DHCP Configuration 231 17
- VPN Configuration 239 18
- IAP-VPN Configuration 252 18
- In the AOS-W Instant UI 261 19
- In the CLI 262 19
- AirGroup Configuration 268 20
- Hotspot Profiles 287 21
- Extended Voice and Video 301 22
- Dynamic CPUManagement 302 22
- OAW-IAP Management 304 22
- Regulatory Domain 322 23
- ClearPass Guest Setup 327 23
- Terminology 331 23
- Intended Audience 25
- Related Documents 25
- Conventions 25
- Contacting Support 26
- AOS-W Instant Overview 27
- AOS-W Instant UI 28
- AOS-W Instant CLI 28
- New Features in 6.3.1.1-4.0 29
- Platform 31
- Description 31
- Chapter 3 32
- Setting up an OAW-IAP 32
- Assigning a Static IP 33
- OAW-IAP Cluster 33
- 9600 8 None 1 None 34
- Specifying Country Code 35
- Connecting to a CLI Session 35
- Sequence-Sensitive Commands 37
- Login Screen 38
- Main Window 39
- Networks Tab 40
- Access Points Tab 40
- Clients Tab 41
- New Version Available 41
- Security 44
- Maintenance 45
- Monitoring 51
- Table 7: 52
- RF Dashboard Icons 53
- Icon Name Description 54
- RF Trends 54
- Figure 17 Signal Graph 54
- Table 9: 56
- Table 10: 57
- Spectrum 60
- Types of Alerts 61
- Alerts list 62
- Configuration 64
- AirGroup 65
- OmniVista 3600 Setup 65
- Pause/Resume 65
- Chapter 5 67
- Initial Configuration Tasks 67
- Modifying the OAW-IAP Name 68
- Configuring External Antenna 69
- Upgrading an OAW-IAP 70
- Enabling Terminal Access 73
- Enabling Auto Join Mode 74
- Configuring a Preferred Band 74
- Configuring an NTP Server 77
- Mesh Network Overview 79
- Mesh Points 80
- Chapter 7 81
- VLAN Configuration 81
- Virtual Controller Overview 82
- Antenna Type:Internal 83
- Iap_master:1 83
- Chapter 9 85
- Wireless Network Profiles 85
- WLAN Configuration Parameters 87
- Security Level 93
- Table 18: 93
- 802.11r Roaming 97
- Opportunistic Key Caching 98
- Enabling the Extended SSID 100
- Editing a WLAN SSID Profile 101
- Deleting a WLAN SSID Profile 101
- Configuring a Wired Profile 102
- In the CLI 103
- In the AOS-W Instant UI 103
- Editing a Wired Profile 108
- Deleting a Wired Profile 109
- Understanding Captive Portal 110
- Walled Garden 111
- Parameters Description 112
- In the Instant UI 116
- RADIUS Services 121
- OAW-IAP Users 128
- Interface 128
- 5. Click OK 133
- Chapter 13 134
- Authentication 134
- External RADIUS Server 136
- Internal RADIUS Server 136
- Supported VSAs 137
- WPA and WPA2 141
- Access-Accept 142
- Parameter Description 145
- Table 27: 145
- Table 28: 146
- Enabling Dynamic RADIUS Proxy 148
- Management Interface 150
- Blacklisting Clients 158
- Blacklisting Clients Manually 159
- Uploading Certificates 160
- Figure 54 Selecting the Group 163
- Firewall Configuration 164
- Managing Inbound Traffic 167
- Access Control List Rules 169
- Field Description 170
- Table 30: 170
- Configuring User Roles 175
- Configuring Derivation Rules 178
- Understanding VLAN Assignment 180
- User Role 182
- VLANs Created for an SSID 182
- Creating a User VLAN Role 185
- Uplink Interfaces 187
- Ethernet Uplink 188
- 3G/4G Uplink 190
- List of Supported 3G Modems 191
- 4G Supported Modem 192
- Wi-Fi Uplink 194
- Enforcing Uplinks 196
- Setting an Uplink Priority 196
- Enabling Uplink Preemption 197
- Layer-3 Mobility Overview 200
- Configuring L3-Mobility 201
- Understanding Spectrum Data 203
- Non Wi-Fi Interferers 204
- Non Wi-Fi Interferer Types 205
- Channel Details 206
- Channel Metrics 207
- Spectrum Alerts 208
- ARM Overview 211
- Airtime Fairness Mode 212
- ARM Metrics 213
- Figure 71 RF Window - ARM Tab 214
- Table 38: 214
- To view ARM configuration: 217
- OS Fingerprinting 221
- Table 43: 223
- Client Detection Policies 224
- Client Protection Policies 225
- Configuring IDSUsing CLI 226
- Content Filtering 228
- Enabling Content Filtering 228
- Configuring DHCP Scopes 231
- Name Description 232
- Table 47: 232
- Understanding VPN Features 239
- Configuring an L2TPv3 Tunnel 244
- To view L2TPv3 configuration: 247
- To view L2TPV3 tunnel status: 248
- To view L2TPv3 tunnel config: 249
- Configuring Routing Profiles 250
- Overview 252
- IAP-VPN Scalability Limits 253
- OSPFConfiguration 253
- VPN Configuration 255
- Viewing Branch Status 256
- Omnivista Features 258
- Trending Reports 259
- Intrusion Detection System 259
- Configuring Omnivista 260
- Shared Key 261
- Figure 97 Omnivista —Monitor 267
- AirGroup Overview 268
- AirGroup with AOS-W Instant 269
- AirGroup Solution 270
- AirGroup Features 271
- AirGroup Components 272
- AirGroup Services 272
- Creating a RADIUS Server 275
- Assign a Server to AirGroup 275
- Chapter 26 276
- Chapter 27 281
- Client Traffic Replication 283
- Creating a CALEA Profile 283
- Verifying the configuration 285
- Chapter 28 287
- Hotspot Profiles 287
- Configuring Hotspot Profiles 288
- Venue Types 291
- Configuring a 3GPP Profile 293
- Configuring a Domain Profile 293
- Creating a Hotspot Profile 295
- Table 57: 296
- Sample Configuration 298
- Chapter 29 301
- Extended Voice and Video 301
- Dynamic CPU Management 302
- Chapter 31 303
- Configuring LED Display 304
- Restoring Configuration 305
- Rebooting the OAW-IAP 309
- Configuring SNMP 311
- Configuring a Syslog Server 314
- Logging Levels 315
- Configuring TFTP Dump Server 316
- Support Commands 317
- Country Codes List 322
- Code Country Name 323
- ClearPass Guest Setup 327
- Troubleshooting 330
- Acronyms and Abbreviations 331
- Glossary 332
- List of Terms 333
© 2020, manymanuals.pl. Wszelkie prawa zastrzeżone. | 0.019 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Komentarze do niniejszej Instrukcji