Manuals / 3Com / Household Appliance / Home Security System

3Com 3CRWE825075A, 3CRWE850075A, 3CRWE875075A manual Filtering By Vlan, Security Filters

Models: 3CRWE875075A 3CRWE850075A 3CRWE825075A

1 62

Download 62 pages 25.68 Kb

Page 34

FILTERING BY VLAN

The access point supports filtering of up to 64 VLANs (virtual local area networks). VLAN IDs must be configured for each client on one of the RADIUS authentication servers specified on the RADIUS configuration page. If a RADIUS server is not being used or not setup to update the VLAN ID, then the access point will tag all ethernet packets with the Native VLAN ID (defaulted to 1).

If a RADIUS authentication server will be used to create/modify the VLAN ID, the following attributes must be provisioned on the RADIUS Server to be passed back to the authenticating client:

The AP’s IP address is the RADIUS Client/Radius User Tunnel_type (64) = VLAN (13)

Tunnel_Medium_type (65) = 802

Tunnel_Private_group_ID (81) = VLAN ID specified in Hexadecimal format.

VLAN Switch ports must be tagged ports that match the VLAN ID on the Access Point. Associated client VLAN IDs will appear in the Syslog file in ASCII Decimal format.

When VLAN filtering is enabled, the access point queries the server for the VLAN IDs of associating clients and saves the VLAN IDs. If a client does not have a VLAN ID, the access point assigns its own native VLAN ID to that client.

To enable VLAN filtering, enter a VLAN ID (a number between 1 and 4095) in the Native VLAN ID field and select VLAN Enable.

When VLAN filtering is disabled, the access point ignores VLAN-tagged frames.

SECURITY FILTERS

These options allow you to block communication among wireless clients (client-to-client blocking) and prevent wireless clients from performing access point administration.

nLocal Bridge Filter—Enable this filter to prevent direct communication between wireless clients, creating a more secure wireless network.

nAP Management Filter—Enable this filter to prevent wireless clients from accessing the access point for management; for example through TELNET or SNMP.

34

Image 34

3Com 3CRWE825075A, 3CRWE850075A, 3CRWE875075A manual Filtering By Vlan, Security Filters

Contents

Wireless LAN Access Points 8250/8500/8750 User Guide3Com Corporation 350 Campus Drive Marlborough, MA UNITED STATES GOVERNMENT LEGEND1Introduction 2Installing the Access PointContents 3System Configuration Technical Support TroubleshootingRegulatory Compliance Information Index PRODUCT FEATURES 1 INTRODUCTIONPERFORMANCE AND RELIABILITY SECURITYMANAGEABILITY FAR-REACHING 802.11G WIRELESS NETWORK STANDARDSHIGH-PERFORMANCE 802.11A AD HOC WIRELESS LAN NETWORK CONFIGURATION AND PLANNINGINFRASTRUCTURE WIRELESS LAN INFRASTRUCTURE WIRELESS LAN FOR ROAMING WIRELESS TERMINOLOGY Seamless RoamingWPA-Wi-FiProtected Access 2 INSTALLING THE ACCESS POINT INSTALLATION REQUIREMENTSPOWER REQUIREMENTS SAFETY INFORMATIONPage Reset CONNECTING THE STANDARD ANTENNASBEFORE YOU BEGIN Access PointCONNECTING POWER Rotate for best receptionTo Hub/Switch USING THE POWER SUPPLYTo Access Point Using the Power SupplyMOUNTING ON A WALL CHECKING THE LEDSUSING A POWER-OVER-ETHERNET LAN PORT secure vertical surface, use 2 screws If installing into a stud or otherIf installing into drywall, use 3 plastic anchors and 3 screwsFLAT SURFACE INSTALLATION Back BackEuropean Community INSTALLING SOFTWARE UTILITIES USING THE 3COM WIRELESS DEVICE MANAGER 3 SYSTEM CONFIGURATIONLAUNCHING A WIRELESS DEVICE CONFIGURATION Button 3Click ConfigureDescription SETTING THE COUNTRY CODE CONFIGURATION LOGINUSING THE PRE-IPCONFIGURATION WIZARD BASIC SETUP 7Click FinishIDENTIFICATION TCP/IP SETTINGSADVANCED SETUP DHCP CLIENTRADIUS SECURE WEB SERVER CONNECTIONAUTHENTICATION Description DefaultField Broadcast Key Refresh RateField FILTER CONTROLDefault DescriptionFILTERING BY VLAN SECURITY FILTERSUPLINK PORT MAC ADDRESS FILTERING CLIENT LIST TIMEOUTFILTERING BY ETHERNET PROTOCOL TYPE ADMINISTRATION SNMPBackup Configuration SYSTEM LOG STATUSRADIO SETTINGS RADIO INTERFACEAuto Channel Select 802.11g and 802.11a only-Select Auto Channel Select Enable to allow the access point to select a radio channel automatically. Default Enable CONFIGURING AUTHENTICATION SECURITY1Select 128-bitDynamic Security Link WPA Configuration CONFIGURING ENCRYPTIONWEP Configuration WPA Note3Select Advanced Setup b Encryption is Enabled 3Select Advanced SetupHOW TO SETUP THE ACCESS POINT FOR WPA WITH PRE-SHARED PSK KEYWPA CONFIGURATION FOR WINDOWS XP Access Points 8200/8250/8500/8700/8750 Windows XP Wireless ZeroConfiguration AuthenticationSymptom 4 TROUBLESHOOTINGSolutions click Configure SymptomSolutions No operationSolutions SymptomWhile you are configuring the REGISTER YOUR PRODUCT TO GAIN SERVICE BENEFITS A TECHNICAL SUPPORTOBTAINING SUPPORT FOR YOUR PRODUCT PURCHASE VALUE-ADDED SERVICESCONTACT US ACCESS SOFTWARE DOWNLOADSTELEPHONE TECHNICAL SUPPORT AND REPAIR Country CountryTelephone Number Telephone NumberNorth America Telephone REGULATORY COMPLIANCE INFORMATION FOR HOME OR OFFICE USEIndustry Canada IC Emissions Compliance Statement Greece CountriesAllowable Frequencies of Operation CountriesSafety Compliance Notice INDEX Numbers