Confirm Firewall Configuration | Symbol Technologies WS 2000

A Field Office Example

Confirm Firewall Configuration

After setting the NAT ranges, Leo selects Firewall under WAN in the left menu. The WS 2000 displays a series of Firewall Filters, all of which are currently enabled.

Leo examines the list and sees no reason to turn off any of the filters. He clicks the Apply button.

The next step is to determine which Access Ports each WLAN will use.

Adopting Access Ports

Now that the LAN and WAN interfaces are configured, Leo needs to specify which Access Ports will go with which wireless LANs (WLANs). To do this, Leo needs the MAC address for each Access Port. He removes them from their packaging and finds that they have consecutive MAC addresses: 00:A0:00:00:00:01 through 00:A0:00:00:00:04. He decides that he will install them as follows:

	MAC Address	Location	WLAN	Adoption List Label
	00:A0:00:00:00:01	Engineering offices	Engineering	WLAN1

	00:A0:00:00:00:02	Demonstration room,	Engineering	WLAN1
	00:A0:00:00:00:02	engineering area	Engineering	WLAN1
		engineering area
	00:A0:00:00:00:03	Sales and marketing area	Marketing	WLAN2

	00:A0:00:00:00:04	Administration area	Admin.	WLAN3

He marks each Access Port with its intended location and WLAN, so he will not get confused later.

Leo selects the Wireless item in the left menu. He sees that all three wireless LANs are enabled, though they do not have the names that Leo wants to use.

Copyright © 2004 Symbol Technologies, Inc. All Rights Reserved	125
WS 2000 Wireless Switch: 1.0 Date of last Revision: March 2004

Image 125

Symbol Technologies WS 2000 manual Confirm Firewall Configuration, Adopting Access Ports, MAC Address Location

Contents

72E-67701-01 Rev a March WS 2000 Wireless Switch VersionSystem Reference Patents Copyright Table of Contents Chapter Advanced Configuration Chapter Field Office Example 111 Document Conventions WS 2000 Wireless Switch System Reference GuideAbout this Document Wireless LAN Wlan Security Management of Access PortsSystem Overview Firewall Security Hardware Overview Technical SpecificationsPhysical Specifications Cell Controller Services Operating System OS ServicesPower Specifications Environmental Specifications Gateway Services 802.11b Support 802.11a Support Access Ports Network Address Translation NAT Gateway ServicesWS 2000 Wireless Switch Firewall Snmp Management Support Layer 3 RoutingDhcp Client and Server Overview WEP 128 104-bit Key 802.1x with Radius AuthenticationWEP 64 40-bit key Kerberos Authentication 802.1x with Shared Key Authentication KeyGuard-MCM Support Wireless Protected Access WPA Getting Started Overview Installing the SwitchSet up Communication to the Switch Getting Started Overview Changing the Administrator Password Configuring the Switch Configure the LAN Interface Field Description Defining the Subnets Interfaces Configure Subnets Dhcp Configuration Advanced Dhcp Settings Communicating with the Outside World Configure the WAN Interface Setting Up Point-to-Point over Ethernet PPPoE Communication Chap Enable Wireless LANs WLANs Wireless Summary Area Access Port Adoption Configure WLANs Subnet Configure Wlan SecurityField Description Name 802.1x EAP Authentication Setting the Authentication Method Configuring WEP Encryption Setting the Encryption MethodKerberos Authentication Configuring WPA-TKIP Configure Wlan Security No Encryption KeyGuard-MCM Mobile Unit Access Control List ACL Configure Access Ports Configure Access Ports Name Configure Subnet Access Access Exception Area Access Overview TableColor Access Type Description Green Yellow Http Protocol Transport Description Port Used ALL Transport Description WLAN-How to Configure Advanced Settings Advanced Configuration WLAN-Setting Default Access Port Settings WLAN-Setting Default Access Port Settings Dtim Period Beacon Interval Security Beacon WLAN-Advanced Access Port SettingsPrimary Wlan WLAN-Advanced Access Port Settings Beacon is a packet broadcast by the adopted access ports to Gateway-How to Configure Network Address Translation NAT Gateway-How to Configure Network Address Translation NAT Always On Firewall Filters Gateway-How to Configure the WS 2000 Firewall Configurable Firewall Filters Mime Flood Attack Check Gateway-How to Configure Static Routes Defining Routes Setting the RIP ConfigurationNo RIP RIP RIP v2 Security-How to Configure 802.1x EAP AuthenticationCompat None Security-How to Configure 802.1x EAP Authentication Security-How to Configure 802.1x EAP Authentication Security-How to Configure Kerberos Authentication Security-How to Specify a Network Time Protocol NTP Server WS 2000 Wireless Switch LED Functions Switch SettingsOverview Location Description Changing the Name of the Switch Location field Change the Location and Country Settings of the WS Updating the WS 2000 Wireless Switch’s Firmware How to Restart the WS 2000 Wireless Switch Performing the Firmware Update Checking for and Downloading Firmware updates Exporting and Importing Wireless Switch Settings System Configuration To Export Settings to a Local File To Import or Export Settings to an FTP SiteTo Import Settings to a Local File How to Restore Default Configuration Settings Property Value How to Configure Snmp Traps Remote AdministrationSetting the Snmp Version Configuration Setting Up Snmp v1/v2c Community Definitions NoAuth Setting Up Snmp v3 Community DefinitionsAuthNoPriv AuthPriv Setting the Trap Configuration Setting Up the Access Control List Configuration AuthenticationTrap Trap Name Generates a Trap when… Category Cold Start Setting the Trap Configuration for Snmp v1/v2c Setting the Trap Configuration for Snmp Configure Administrator Access Access Port Description Configure Management Access Setup AirBEAM Software Access Access Port StatisticsChanging the Administrator and Manager Passwords Statistics and Logs General Access Port Information Associated Mobile Units Received and Transmitted Tables Subnet Statistics Transmitted Description Field Received Field Description Interfaces WAN Statistics Received Field Description Viewing the Log on the Switch Setting Up and Viewing the System Log Setting Up a Log Server Background Retail Use Cases Plan Contacting the Wireless Switch Configuring the System Settings Entering the Basic System Settings Setting Access Control Subnet IP Address Range Configuring the SubnetsIP Address Plan For each subnet Configuring POS Subnet Configuring the Printer Subnet Retail Use Cases Configuring the Cafe Subnet Retail Use Cases Configuring the WAN Interface Configuring Network Address Translation NAT Retail Use Cases Setting Access Port Defaults Configuring the Access PortsSwitch Port Connected to Inspecting the Firewall Naming the POS Access Port Configuring the Printer Access Port Configuring the Cafe Access Port Associating the Access Ports to the WLANs Configuring the Cafe Wlan Configuring the WLANs Name Printer Configuring the Printer Wlan For the POS WLAN, she makes the following choices Configuring the POS Wlan Setting Subnet Access Retail Use Cases Configuring the Clients Testing ConnectionsWireless Authentication Encryption Channel Client IP Address Subnet Mask Gateway Port Field Office Example Plan Configuring the System Settings Entering the Basic System Settings Setting Access Control Field Office Example Configuring the Engineering LAN Configuring the LAN Field Office Example Field Office Example Configuring the Sales Subnet Configuring the WAN Field Office Example Setting Up Network Address Translation Field Office Example Adopting Access Ports Confirm Firewall ConfigurationMAC Address Location Adoption List Label Field Office Example Configuring the WLANs Security Field Office Example Wlan Field Office Example Field Office Example Field Office Example Access Port Channel Configuring Subnet Access Installing the Access Ports and Testing Appendix A. Sample Configuration File NTP menu Wlan 1 configuration set mode 1 enable Wlan 3 configuration set mode 3 disable Default 802.11 a radio configuration set reg a in/out 149 Access Port configuration LAN Dhcp configuration network Firewall configuration set syn enable Outbound 1-To-Many NAT configuration set outb map s1 Page Index FTP Snmp 802.1x EAP authentication