Dell PowerConnect W Clearpass 100 Software Podręcznik Użytkownika Strona 222
- Strona / 296
- Spis treści
- ROZWIĄZYWANIE PROBLEMÓW
- BOOKMARKI
Oceniono. / 5. Na podstawie oceny klientów
222222 | VPN Configuration
Dell PowerConnect W-Series Aruba Instant 6.2.1.0-3.3 | User Guide
3. If you select GRE from the Protocol drop-down list, then the packets are sent and received without encryption.
a. Host— Enter the IP address or the fully qualified domain name (FQDN) for the main VPN/GRE endpoint.
a. GRE type — Enter the value for GRE type parameter.
b. Per-AP tunnel — Select Enabled or Disabled from the Per-AP tunnel drop-down list. The administrator can
enable this option to create a GRE tunnel from each OAW-IAP to the VPN/GRE Endpoint rather than the
tunnels created just from the Virtual Controller. When enabled, the traffic to the corporate network is sent
through a Layer-2 GRE tunnel from the OAW-IAP itself and need not be forwarded through the Virtual
Controller.
By default, the Per-AP tunnel option is disabled.
4. If you select IPSec from the Protocol drop-down list, the packets are sent and received with encryption.
a. Enter the IP address or fully qualified domain name for the main VPN/IPSec endpoint in the Primary host
field.
b. Enter the IP address or fully qualified domain name for the backup VPN/IPSec endpoint in the Backup host
field. This entry is optional.
c. Select Enabled from the Preemption drop-down list to allow the VPN tunnel to switch back to the primary
host when it becomes available again. This step is optional.
d. Specify a value in seconds for Hold time. When preemption is enabled and the primary host comes up, the
VPNtunnel switches to the primary host after the specified hold-time. The default value for Hold time is 600
seconds.
e. Select Enabled or Disabled from the Fast failover drop-down list. Enabling the fast failover feature allows
the OAW-IAP to create a backup VPN tunnel to the switch along with the primary tunnel, and maintain both
the primary and backup tunnels separately. If the primary tunnel fails, the OAW-IAP can switch the data
stream to the backup tunnel. This reduces the total failover time to less than one minute.
f. Specify a value in seconds for Secs between test packets. Based on the configured frequency, the OAW-
IAP can verify if an active VPN connection is available. The default value is 5 seconds, which means that the
OAW-IAP will send one packet to the controller at every 5 seconds.
g. Enter a value for Max allowed test packet loss, to define a number for lost packets, after which the IAP can
determine that the VPNconnection is unavailable. The default value is 2.
5. Click Next to continue.
In the CLI
To configure a GRE VPN tunnel:
(Instant Access Point)(config)# gre primary <name>
(Instant Access Point)(config)# gre type <type>
(Instant Access Point)(config)# gre per-ap-tunnel
(Instant Access Point)(config)# end
(Instant Access Point)# commit apply
To configure an IPSec VPN tunnel:
(Instant Access Point)(config)# vpn primary <name>
(Instant Access Point)(config)# vpn backup <name>
(Instant Access Point)(config)# fast-failover
(Instant Access Point)(config)# hold-time <seconds>
(Instant Access Point)(config)# preemption
(Instant Access Point)(config)# vpn monitor-pkt-send-freq <frequency>
(Instant Access Point)(config)# vpn monitor-pkt-lost-cnt <count>
(Instant Access Point)(config)# end
(Instant Access Point)# commit apply
- AOS-W Instant 1
- 6.2.1.0-3.3 1
- User Guide 1
- Contents 3
- Mesh OAW-IAP Configuration 75 6
- Wireless Network Profiles 79 7
- Uplink Configuration 95 8
- Wired Profiles 109 8
- Authentication 117 9
- 1010 10
- Roles and Policies 155 12
- Spectrum Monitor 183 14
- Adaptive Radio Management 191 15
- Intrusion Detection 201 15
- Content Filtering 209 15
- DHCP Configuration 213 16
- VPN Configuration 221 16
- IAP-VPN Configuration 225 16
- AirGroup Configuration 241 17
- Hotspot Profiles 251 18
- OAW-IAP Management 263 19
- Regulatory Domain 281 20
- ClearPass Guest Setup 286 20
- Terminology 291 20
- Related Documents 21
- Conventions 21
- Intended Audience 21
- Contacting Support 22
- AOS-W Instant Overview 23
- AOS-W Instant UI 24
- AOS-W Instant CLI 24
- New Features in 6.2.1.0-3.3 25
- Setting up Instant Network 27
- Assigning a Static IP 28
- OAW-IAP Cluster 28
- 9600 8 None 1 None 29
- Accessing the Instant CLI 30
- Sequence-Sensitive Commands 32
- Chapter 6 33
- AOS-W Instant User Interface 33
- Networks Tab 34
- Access Points Tab 34
- Clients Tab 35
- New Version Available 35
- Security 38
- Maintenance 39
- Figure 8 VPN - Default View 41
- Monitoring 44
- RF Dashboard Icons 46
- Icon Name Description 47
- RF Trends 47
- Figure 16 Signal Graph 47
- Spectrum 53
- Types of Alerts 54
- Alerts List 55
- Configuration 57
- AirGroup 57
- Language 58
- OmniVista 3600 Setup 58
- Pause/Resume 58
- 0511361-01 60
- Chapter 7 61
- Modifying the OAW-IAP Name 62
- Configuring External Antenna 63
- Upgrading an OAW-IAP 64
- Upgrading an Image Using CLI 66
- Enabling Terminal Access 67
- Enabling Auto Join Mode 67
- Configuring a Preferred Band 68
- Configuring an NTP Server 70
- 0511361-01 72
- Virtual Controller Overview 73
- Mesh Network Overview 75
- Mesh Points 76
- 0511361-01 78
- Chapter 10 79
- Wireless Network Profiles 79
- VLAN Pooling 83
- Enabling the Extended SSID 93
- Editing a WLAN SSID Profile 94
- Deleting a WLAN SSID Profile 94
- Chapter 11 95
- Uplink Configuration 95
- Ethernet Uplink 96
- 3G/4G Uplink 97
- List of Supported 3G Modems 98
- Configuring Uplinks 99
- In the Instant UI 100
- In the CLI 100
- 102102 102
- Enforcing Uplinks 104
- Setting an Uplink Priority 104
- Enabling Uplink Preemption 105
- 106106 106
- 0511361-01 108
- Configuring a Wired Profile 109
- 112112 112
- Deleting a Wired Profile 116
- Editing a Wired Profile 116
- Chapter 13 117
- Authentication 117
- 118118 118
- External RADIUS Server 119
- Internal RADIUS Server 119
- WPA and WPA2 120
- WPA and WPA2 Features 121
- Access-Accept 121
- 122122 122
- Parameter Description 125
- Table 20: 125
- Management Interface 127
- Configuring Users 129
- 136136 136
- 140140 140
- RADIUS Services 141
- Field Description 143
- Table 23: 143
- Blacklisting Clients 148
- Blacklisting Clients Manually 149
- Uploading Certificates 150
- 152152 152
- OAW-IAP 153
- 0511361-01 154
- Chapter 14 155
- Roles and Policies 155
- Service Description 156
- Destination Options 157
- Configuring Access Rules 158
- Configuring Source NAT 159
- Examples for Access Rules 160
- Configuring ALG Protocols 162
- Configuring User Roles 165
- MAC-Address Attribute 167
- 802.1X-Authentication-Type 167
- Understanding VLAN Assignment 168
- Supported VSAs 170
- 172172 172
- VLAN Derivation Rule 173
- User Role 173
- VLANs Created for an SSID 174
- Creating a User VLAN Role 175
- 176176 176
- 4. Click OK 177
- 0511361-01 178
- Layer-3 Mobility Overview 179
- Configuring L3-Mobility 180
- 0511361-01 182
- Understanding Spectrum Data 183
- Non Wi-Fi Interferers 184
- Non Wi-Fi Interferer Types 185
- Channel Details 186
- Channel Metrics 187
- Spectrum Alerts 188
- ARM Overview 191
- Airtime Fairness Mode 192
- ARM Metrics 193
- To view ARM configuration: 196
- 0511361-01 200
- OS Fingerprinting 201
- 202202 202
- Table 38: 203
- Client Detection Policies 204
- Client Protection Policies 205
- Configuring IDSUsing CLI 206
- 0511361-01 208
- Content Filtering 209
- Enabling Content Filtering 209
- 0511361-01 212
- Chapter 20 213
- DHCP Configuration 213
- Configuring DHCP Scopes 214
- Name Description 215
- Table 42: 215
- DHCP Relay and Option 82 218
- Understanding VPN Features 221
- Configuring Routing Profiles 223
- Overview 225
- VPN Configuration 226
- Viewing Branch Status 227
- IAP Table Parameters 228
- OmniVista 3600 Features 229
- Trending Reports 230
- Intrusion Detection System 230
- Configuring OmniVista 3600 231
- Shared Key 238
- 6. Click OK 239
- 0511361-01 240
- AirGroup Overview 241
- AirGroup with Instant 242
- AirGroup Solution 243
- AirGroup Features 244
- AirGroup Components 245
- To configure AirGroup Service 247
- AirGroup RADIUS client 247
- Creating a RADIUS Server 248
- Assign a Server to AirGroup 248
- Configuring RTLS 249
- To configure Aeroscout RTLS 250
- Chapter 26 251
- Hotspot Profiles 251
- Access Network Types 252
- NAI Realm List 253
- Venue types 253
- 254254 254
- 256256 256
- Configuring a 3GPP Profile 258
- Configuring a Domain Profile 258
- Configuring H2QP Profiles 258
- Configuring a Hotspot Profile 260
- Table 48: 261
- 262262 262
- Configuring LED Display 263
- Restoring Configuration 264
- 266266 266
- Rebooting the OAW-IAP 268
- 0511361-01 270
- Configuring SNMP 271
- Configuring SNMP Traps 274
- Configuring TFTP Dump Server 274
- Configuring a Syslog Server 275
- Viewing Logs 276
- Support Commands 277
- Country Codes List 281
- Code Country Name 282
- ClearPass Guest Setup 286
- Troubleshooting 290
- Acronyms and Abbreviations 291
- List of abbreviations 292
- Glossary 293
- List of Terms 294
Powiązane produkty i podręczniki dla Oprogramowanie Dell PowerConnect W Clearpass 100 Software
(378 strony)
(15 strony)© 2020, manymanuals.pl. Wszelkie prawa zastrzeżone. | 0.082 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Komentarze do niniejszej Instrukcji