Aruba Mobility Controller | Configuration Guide |
| VIEW Certified |
user-role phones session-acl phone_acl
!
Authentication
In addition to the encryption, it is recommended that you use MAC authentication to authenticate the wireless IP telephones. On the Aruba System, the roles for wireless IP telephones are derived using
For the
aaa derivation rules user
set role condition macaddr starts-with "00:90:7a" set-value phone
Quality of Service (QoS)
Quality of service is achieved by prioritizing the voice traffic over data traffic. To prioritize the voice traffic over data traffic in the AP traffic queues, the “queue high” tag is used at the end of each ACL to prioritize the traffic matching the ACL over all other traffic. In the example shown above:
user alias avpp
The traffic that matches the above two rules is prioritized over all other traffic. In addition, a DiffServ tag or a Dot1p tag can be configured at the end of each ACL to indicate the relative priority of the traffic to the traffic to the network.
Example:
user alias avpp
alias avpp user
By default, the packets are not tagged.
In addition multicast/bradcast traffic in the air can be limited by turning on the firewall voip-
(Aruba)# configuration terminal
(Aruba) (config)# firewall
Subnet Roaming
The Aruba system can be set up to support
When two or more switches are used in the Aruba WLAN system, one switch has to be identified as the master and the others as the local switch. During VIEW Certification testing, the Aruba 800 was configured as the master switch and the Aruba 6000 was configured as a local switch; therefore, this configuration is used in the following examples.
For instructions on setting up a switch as a local switch refer to Aruba’s User Guides.
Page 17
