Chapter 5 Configuring Security Solutions

Configuring the System for SpectraLink NetLink Telephones

for and notify when active), or marking them as Contained rogue access points (have between one and four Cisco 1000 Series lightweight access points discourage rogue access point clients by sending the clients deauthenticate and disassociate messages whenever they associate with the rogue access point).

Integrated Security Solutions

Cisco WLAN Solution Operating System Security is built around a robust 802.1X AAA (authorization, authentication and accounting) engine, which allows operators to rapidly configure and enforce a variety of security policies across the Cisco WLAN Solution.

The controllers and lightweight access points are equipped with system-wide authentication and authorization protocols across all ports and interfaces, maximizing system security.

Operating System Security policies are assigned to individual WLANs, and lightweight access points simultaneously broadcast all (up to 16) configured WLANs. This can eliminate the need for additional access points, which can increase interference and degrade system throughput.

The controllers securely terminates IPSec VPN clients, which can reduce the load on centralized VPN concentrators.

Operating System Security uses the RRM function to continually monitor the air space for interference and security breaches, and notify the operator when they are detected.

Operating System Security works with industry-standard authorization, authentication, and accounting (AAA) servers, making system integration simple and easy.

The Operating System Security solution offers comprehensive Layer 2 and Layer 3 encryption algorithms which typically require a large amount of processing power. Rather than assigning the encryption tasks to yet another server, the controller can be equipped with a VPN/Enhanced Security Module that provides extra hardware required for the most demanding security configurations.

Configuring the System for SpectraLink NetLink Telephones

For best integration with the Cisco Wireless LAN Solution, SpectraLink NetLink Telephones require an extra Operating System configuration step: enable long preambles. The radio preamble (sometimes called a header) is a section of data at the head of a packet that contains information that wireless devices need when sending and receiving packets. Short preambles improve throughput performance, so they are enabled by default. However, some wireless devices, such as SpectraLink NetLink phones, require long preambles.

Use one of these methods to enable long preambles:

Using the GUI to Enable Long Preambles, page 5-5

Using the CLI to Enable Long Preambles, page 5-5

Cisco Wireless LAN Controller Configuration Guide

5-4

OL-8335-02

 

 

Page 110
Image 110
Cisco Systems 3.2 manual Configuring the System for SpectraLink NetLink Telephones, Integrated Security Solutions