Siemens EF 711 Series Podręcznik Użytkownika Strona 189
- Strona / 492
- Spis treści
- BOOKMARKI
Oceniono. / 5. Na podstawie oceny klientów
Configuring Policies
Filtering Rules
SCALANCE WLC711
User Guide, V8.11, 07/2012, C79000-G8976-C260-03 5-5
Once a wireless device user has logged in on the Captive Portal page, and has been authenticated
by the RADIUS server, then the following filters will apply:
• Policy filters — If a filter ID associated with this user is returned by the authentication server,
then the Policy with the same name as the filter ID will be applied.
• Default filter — If no matching filter ID is returned from the authentication server.
Authenticated Filter Examples
Below are two examples of possible filtering rules for authenticated users. The first example
disallows some specific access before allowing everything else.
The second example does the opposite of the first example. It allows some specific access and
denies everything else.
ICMP Type Enforcement
ICMP filter rules can now be constrained to ICMP type/range. You can define the ICMP type/
range in the Port field using the TCP/UDP port definition nomenclature. That is, define the rule as
a normal IP/subnet:port signature (10.0.0.0/24:8), where the ICMP type is entered in the Port field.
This feature allows for tighter granularity over enforcement of ICMP restrictions. You can allow
redirects and DF/MTU indications, and deny ICMP Echo (pings) for users.
x x x IP address of the DNS
Server
Allow all incoming wireless devices access to the
DNS server of the VNS.
x x [a specific IP address, or
address plus range]
Deny all traffic to a specific IP address, or to a
specific IP address range (such as:0/24).
x x x *.*.*.*:80 Allow all port 80 (HTTP) traffic.
x x *.*.*.* Deny everything else.
Table 5-4 Non-authenticated Filter Example B (continued)
In Out Allow IP / Port Description
Table 5-5 Filtering Rules Example A
In Out Allow IP / Port Description
x x *.*.*.*:22-23 SSH and telnet sessions
x x [specific IP address, range] Deny all traffic to a specific IP address or
address range
x x x *.*.*.*. Allow everything else
Table 5-6 Filtering Rules Example B
In Out Allow IP / Port Description
x x x [specific IP address, range] Allow traffic to a specific IP address or address
range.
x x *.*.*.*. Deny everything else.
- SCALANCE WLC711 1
- Postfach 48 48 2
- 90026 NÜRNBERG 2
- Contents 3
- Chapter 7: Configuring a VNS 5
- Chapter 9: Configuring Sites 6
- Appendix A: Glossary 9
- About This Guide 13
- Formatting Conventions 14
- Additional Documentation 15
- Introduction 17
- Conventional Wireless LANs 18
- Network Traffic Flow 23
- Network Security 24
- Virtual Network Services 25
- VNS Components 27
- Classes of Service 28
- WLAN Services 28
- Mobility and Roaming 29
- Network Availability 29
- Quality of Service (QoS) 30
- System Configuration Overview 31
- Applying Product License Keys 43
- Setting Up the Data Ports 44
- Setting Up Static Routes 51
- Setting Up OSPF Routing 53
- Configuring SNMP 76
- Configuring Network Time 79
- Network Time Synchronization 80
- RADIUS Servers 83
- Solution: 85
- Siemens Wireless 802.11n AP 92
- Shortened Guard Interval 94
- MAC Enhancements 94
- Environment 94
- Wireless AP Discovery 98
- Registration After Discovery 100
- LEDS Indicating WDS Strength 101
- Configuring the Wireless AP 102
- Wireless AP: 103
- Security Mode 104
- Discovery Timers 105
- Field Description 106
- Chapter 7, Configuring a VNS 113
- Channel Bonding 115
- Guard Interval 116
- Aggregate MSDU and MPDU 116
- Antenna Selection 116
- Table 3-9 Radio Properties 118
- Maximum Distance 121
- Proxy Mode 135
- Pass Through Mode 136
- Viewing 802.1x Credentials 137
- Deleting 802.1x Credentials 137
- 3. Click the AP36xx tab 143
- Configuration 154
- Defaults Feature 154
- WLC711 8 158
- Table 3-14 AP Load Groups 160
- Configuring an AP Cluster 163
- Configuring Topologies 169
- Configuring the Admin Port 170
- Enabling Management Traffic 173
- Layer 3 Configuration 174
- DHCP Configuration 176
- Exception Filtering 179
- To Define Exception Filters: 180
- Multicast Filtering 183
- Configuring Policies 185
- Filtering Rules 187
- Authenticated Filter Examples 189
- ICMP Type Enforcement 189
- Default Filter Examples 190
- Configuring Filter Rules 191
- Configuring WLAN Services 197
- To Configure a WLAN Service: 198
- Configuring Privacy 204
- WPA Key Management Options 207
- 152-bit 208
- Vendor Specific Attributes 210
- To Define Accounting Methods: 212
- Wireless Controller 217
- Field/Button Description 217
- Error Message Configuration 225
- Configuring the QoS Policy 231
- Defining the Service Class 233
- QoS Modes 234
- To Configure QoS Policy: 235
- 3. Click the QoS tab 236
- Configuring a VNS 241
- Controller Defaults 242
- VNS Global Settings 243
- Messages 248
- Configuring the Filters 257
- Using the Sync Summary 259
- Methods for Configuring a VNS 261
- Manually Creating a VNS 261
- AP Default Settings 270
- Naming Service (WINS) 287
- Creating a GuestPortal VNS 301
- Enabling and Disabling a VNS 310
- Renaming a VNS 311
- Deleting a VNS 311
- Classes of Service Overview 313
- CoS Rule Classification 316
- Priority and ToS/DSCP Marking 317
- Rate Limiting 318
- Configuring Sites 321
- Authentication 322
- Radius Configuration 325
- Selecting AP Assignments 327
- Selecting WLAN Assignments 327
- 3. Click Save 328
- Working with a Mesh Network 329
- Simple Mesh Configuration 330
- Wireless Bridge Configuration 331
- Examples of Deployment 332
- Mesh WLAN Services 332
- Key Features of Mesh 335
- Tree-like Topology 336
- Radio Channels 337
- Deploying the Mesh System 338
- Planning the Mesh Topology 339
- Mesh Deployment Overview 339
- Discovery and Registration 339
- Controller 340
- 8. Assign a backhaul radio 343
- Provisioning 344
- About WDS 345
- Simple WDS Configuration 346
- WDS WLAN Services 348
- Key Features of WDS 351
- Multi-Root WDS Topology 354
- Deploying the WDS System 355
- Services 361
- Availability 365
- Availability Prerequisites 367
- Verifying Availability 372
- Session Availability 373
- Wireless AP 374
- Enabling Session Availability 376
- WLC711 Maintenance Guide 378
- Verify Synchronization 381
- Viewing SLP Activity 383
- Configuring Mobility 385
- Mobility Domain Topologies 387
- Configuring a Mobility Domain 388
- Designating a Mobility Agent 389
- Working with Third-party APs 391
- Working with the Mitigator 393
- Analysis Engine Overview 394
- Enabling the Analysis Engine 394
- Viewing the Mitigator Logs 395
- Running Mitigator Scans 396
- To View Rogue AP Scan Results 399
- Viewing Friendly APs 404
- Adding Friendly APs Manually 404
- Deleting Friendly APs 405
- Modifying Friendly APs 405
- To Maintain the Wireless APs: 406
- Viewing Statistics for APs 410
- To View Active Wireless APs 411
- To View Wireless Statistics: 412
- AP Inventory Reports 415
- Viewing Active Clients 420
- Viewing Topology Statistics 422
- Viewing Mobility Reports 424
- Mobility Tunnel Matrix 426
- Remotable VNS 426
- To View System Information: 427
- To View Reports: 428
- Call Detail Records (CDRs) 429
- CDR File Naming Convention 430
- CDR File Types 430
- CDR File Format 430
- Viewing CDRs 432
- 3. Click the Backup tab 433
- Disassociating a Client 435
- Blacklisting a Client 436
- Login Groups 439
- Working with Logs 444
- Viewing Wireless AP Logs 445
- Viewing Login Logs 446
- Viewing Wireless AP Traces 450
- Viewing Audit Messages 451
- Viewing the DHCP Messages 452
- Viewing the NTP Messages 453
- About GuestPortals 457
- Adding New Guest Accounts 458
- Editing Guest Accounts 461
- Removing Guest Accounts 462
- To Export a Guest File 464
- To Import a Guest File 465
- GuestPortal Source Code 468
- Glossary 471
- Ticket Page 487
Powiązane produkty i podręczniki dla Płyty grzewcze Siemens EF 711 Series
Płyty grzewcze Siemens EI645EC11 Instrukcja Naprawy
(122 strony)
(122 strony)
(70 strony)
Płyty grzewcze Siemens ET 73X Series Dokumentacja
(156 strony)
(156 strony)
© 2020, manymanuals.pl. Wszelkie prawa zastrzeżone. | 0.046 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Komentarze do niniejszej Instrukcji