Cisco Systems OL-6217-01 manual Cisco Swan Framework Overview

Page 7

Cisco Structured Wireless-Aware Network (SWAN) Implementation Guide

Cisco SWAN Framework Overview

 

Table 1

Acronyms, Terms, and Definitions

 

 

 

Term

 

Definition

 

 

 

Access Point-Based

 

The Access Point-Based WDS architecture is an architecture

WDS Architecture

 

with Layer 2 WLAN control domains, where WDS is hosted

 

 

on Cisco Aironet access points.

 

 

 

Switch-Based WDS

 

The Switch-Based WDS architecture is an architecture with

Architecture

 

Layer 3 WLAN control domains, where the WDS is hosted on

 

 

the WLSM.

 

 

 

mGRE

 

Multipoint Generic Route Encapsulation — A tunneling

 

 

encapsulation type defined by IETF RFC that is leveraged by

 

 

the Cisco SWAN framework switch-based WDS solution.

 

 

 

CCKM

 

Cisco Centralized Key Management — A Cisco- defined

 

 

encryption key management scheme that enables fast secure

 

 

roaming within a WLAN control domain.

 

 

 

802.1X/EAP

 

802.1X is an IEEE defined mechanism for port access control,

 

 

and extensible authentication protocol (EAP) is an

 

 

authentication protocol defined by IETF RFC. EAP is generic

 

 

enough to be implemented in a number of ways, including

 

 

Cisco LEAP, EAP-FAST, PEAP, EAP-TLS, and EAP-TTLS.

 

 

The combination of 802.1X port access control and EAP

 

 

authentication type is used to secure access to the WLAN.

 

 

 

Cisco LEAP

 

A Cisco-defined EAP type for secure access to the WLAN

 

 

 

EAP-FAST

 

A Cisco-defined EAP type for secure access to the WLAN

 

 

 

ACU

 

Cisco Aironet Client Utility

 

 

 

ADU

 

Cisco Aironet Desktop Utility

 

 

 

 

Cisco SWAN Framework Overview

Cisco SWAN provides the framework to integrate and extend wired and wireless networks to deliver the lowest possible total cost of ownership for companies deploying WLANs. Cisco SWAN extends "wireless awareness" into important elements of the network infrastructure, providing the same level of security, scalability, reliability, ease of deployment, and management for wireless LANs that organizations have come to expect from their wired LANs.

The Cisco SWAN framework addresses two key issues with managing and operating WLANs: fast secure WLAN client roaming and radio management. Fast secure roaming allows WLAN clients to move association from one access point to another with little or no service disruption. Cisco SWAN radio management characterizes the radio transmission environment and responds to the conditions of the environment.

The Cisco SWAN framework can be visualized as a layered model. The Cisco SWAN framework layers are:

Management Layer

Wireless Domain Services Layer

Infrastructure Access Point Layer

Wireless Client Layer

Cisco Structured Wireless-Aware Network (SWAN) Implementation Guide

 

OL-6217-01

7

 

 

 

Page 6 Page 8
Image 7
Page 6 Page 8
Contents Corporate Headquarters Cisco Aironet 1400 Series Wireless Bridge Deployment Guide N T E N T S Contents Book Title Xxxxx-xx Audience Acroymns and Terms Cisco Swan Framework Overview Cisco Swan Layers Cisco Swan Logical View Shows the access point-based WDS solution WDS Wlccp Cisco Swan Framework ComponentsHardware Components Software ComponentsImplementing the Cisco Swan Framework Common Tasks CiscoSecure ACS NAS Setup Adding Username and Password Credentials CiscoSecure ACS User Setup AAA-apconfig-radsrvuser username password password AAA-apconfig#radius-server localCiscoWorks Wlse Snmp Community Entry Screen CiscoWorks Wlse Telnet/SSH Credentials Entry Configuring the WDS Access Point Access Point-Based WDS Solution ConfigurationWds-apconfig#username username password password Wds-apconfig#hostname hostnameWds-apconfig#wlccp wds priority priority number Configuring the Infrastructure Access PointWds-apconfig#wlccp wnm ip address wlse ip address Infra-apconfig-line#access-class access-list number Managing the Access Points with the CiscoWorks WlseInfra-apconfig#hostname hostname Infra-apconfig#username username password passwordWds-ap#show wlccp wds ap Switch-Based WDS Solution ConfigurationValidating the Configuration Configuring the Catalyst 6500 SupervisorCreate the Vlan between the supervisor and Wlsm Configuring the WDS on the WlsmWlsmconfig#hostname hostname Wlsmconfig#snmp-server view iso iso includedWlsmconfig# wlccp wnm ip address wlse ip address Configuring the Infrastructure Access PointsInfra-apconfig#wlccp ap wds ip address wlsm ip address Wlsm# show wlccp wds ap Validating the SetupWlsm# show wlccp wnm status Mobility ap Sup720# show mobility statusFast Secure Roaming with Cckm Infra-apconfig-if-ssid#authentication network-eap eap-group When Using Multiple Encryption Types or VLANsInfra-apconfig#interface dot11Radio Infra-apconfig-if#encryption mode ciphers cipher-typeClick Profile Management Configuring ACU to use CckmCisco Swan Framework Radio Management Cisco Swan Radio Management FeaturesBuilding Tool Pop-Up Window Preparing to Use Cisco Swan Radio ManagementCisco Swan Radio Management Features Page OL-6217-01
Top Page Image Contents