Nortel Networks NN47250-500 Handbücher

Bedienungsanleitungen und Benutzerhandbücher für Vernetzung Nortel Networks NN47250-500.
Wir stellen 1 PDF-Handbücher Nortel Networks NN47250-500 zum kostenlosen herunterladen nach Dokumenttypen zur Verfügung Bedienungsanleitung

Nortel networks NN47250-500 Bedienungsanleitung (858 Seiten)

Marke: Nortel-networks | Kategorie: Vernetzung | Größe: 6.20 MB |

Englisch

Inhaltsverzeichnis

Nortel WLAN—Security

1

Switch 2300 Series

1

Configuration Guide

1

Trademarks and Service Marks

2

Restricted rights legend

2

Statement of conditions

2

Legal Information

3

SSH Source Code Statement

6

Contents

9

How to get help

37

38 How to get help

38

Nortel WLAN 2300 system

39

Documentation

40

Safety and advisory notices

41

CLI conventions

43

Command prompts

44

Syntax notation

45

MAC address notation

46

IP address and mask notation

46

User wildcards

47

MAC address wildcards

47

VLAN wildcards

48

Matching order for wildcards

48

Port lists

49

Virtual LAN identification

50

Command-line editing

51

Using CLI help

52

WSS setup methods

55

Overview

56

Quick starts

57

WLAN Management Software

58

WSS setup methods 59

59

Web View

60

WSS setup methods 61

61

62 WSS setup methods

62

Web Quick Start parameters

63

Web Quick Start requirements

64

Accessing the Web Quick Start

65

66 WSS setup methods

66

CLI quickstart command

67

68 WSS setup methods

68

2350-aabbcc> enable

68

Quickstart example

69

[0:0]: -8:0

70

Remote WSS configuration

71

Management Software

72

Before you start

75

About Administrative Access

75

Access modes

76

Enabling an administrator

78

WMS enable password

80

Authenticating at the console

81

Setting user passwords

83

Saving the configuration

85

WSS# save config configday

86

Local authentication

87

Telnet users

88

Managing User Passwords

91

Configuring Passwords

92

Managing User Passwords 95

95

98 Managing User Passwords

98

For example:

99

100 Managing User Passwords

100

NN47250-500 (Version 03.01)

100

Setting the port type

102

Configuring for a AP

104

Table 3: Valid ap-num Values

105

Clearing a port

106

Clearing a AP

107

Configuring a port name

108

Disabling a port

111

Disabling power over ethernet

111

Resetting a port

112

Displaying port information

113

Displaying port statistics

114

Clearing statistics counters

114

Monitoring port statistics

114

Load sharing

117

Link redundancy

117

Configuring a port group

117

Removing a port group

118

Users and VLANs

120

VLAN names

121

Roaming and VLANs

121

Traffic forwarding

121

802.1Q tagging

122

Tunnel affinity

122

Configuring a VLAN

123

Changing tunneling affinity

126

Displaying VLAN information

129

WSS# show fdb 00:*

134

WSS# show port status

139

WSS# show system

139

WSS# show port poe

141

Configuring and managing IP

145

MTU support

146

Adding an IP interface

148

Configuring the DHCP client

149

Removing an IP interface

152

Displaying IP routes

157

WSS# show ip route

158

Adding a static route

159

Removing a static route

160

Managing SSH

161

Adding an SSH user

162

Managing SSH server sessions

162

Managing Telnet

164

Managing HTTPS

166

Configuring and managing DNS

167

Configuring DNS servers

169

Adding an alias

172

Removing an alias

173

Displaying aliases

174

Setting the time zone

176

Displaying the time and date

179

Configuring and managing NTP

180

Adding an NTP server

181

Removing an NTP server

182

Enabling the NTP client

185

Managing the ARP table

186

Displaying ARP table entries

187

Adding an ARP entry

188

Pinging another device

189

Logging in to a remote device

190

Tracing a route

191

WSS# set summertime PDT

193

Summertime is enabled

194

Configuring SNMP

195

Enabling SNMP versions

197

Command examples

200

Setting SNMP security

201

202 Configuring SNMP

202

Displaying SNMP information

207

208 Configuring SNMP

208

Configuring SNMP 209

209

Displaying USM settings

210

Configuring SNMP 211

211

212 Configuring SNMP

212

Configuring SNMP 213

213

214 Configuring SNMP

214

Domain roaming

215

Configuring a Mobility Domain

216

Configuring the seed

217

Configuring a member

218

(for each member switch)

219

Displaying roaming stations

226

Displaying tunnel information

227

Effects of timers on roaming

229

Monitoring roaming sessions

229

Mobility Domain scenario

230

Configuring network domains

233

Figure 4. Network domain

234

WAN Link

235

Network domain seed affinity

236

Configuring a network domain

237

Domain seed are closed

243

Network domain scenario

245

RF load balancing overview

249

Configuring RF load balancing

249

Configuring APs

257

258 Configuring APs

258

Country of operation

259

260 Configuring APs

260

Distributed APs and STP

261

AP parameters

262

Table 5: Global AP parameters

262

Configuring APs 263

263

264 Configuring APs

264

Configuring APs 265

265

266 Configuring APs

266

Configuring APs 267

267

268 Configuring APs

268

Contacting a WSS

269

270 Configuring APs

270

Configuring APs 271

271

AP boot examples

272

Configuring APs 273

273

274 Configuring APs

274

Configuring APs 275

275

Example boot of dual-homed AP

276

Configuring APs 277

277

Session load balancing

278

Configuring APs 279

279

Service profiles

280

Configuring APs 281

281

Parameter Default Value

281

To Default Value

281

282 Configuring APs

282

Configuring APs 283

283

Public and private SSIDs

284

Encryption

284

Radio profiles

285

Default radio profile

286

Radio-specific parameters

287

288 Configuring APs

288

290 Configuring APs

290

Configuring APs 291

291

2360/2361 A 2360/2361 B

291

Changing AP parameter values

293

Enabling the auto-AP profile

294

Specifying IP information

298

Specifying WSS information

299

Specifying VLAN information

299

Changing AP names

300

Changing bias

300

Enabling LED blink mode

301

Configuring AP-WSS security

302

Finding the fingerprint

303

Fingerprint log message

305

PoE Requirements

306

Configuring a service profile

306

Removing a service profile

307

Changing transmit rates

308

Table 15: Transmit rates

308

Enforcing the Data Rates

309

Disabling idle-client probing

310

Configuring a radio profile

312

Changing the beacon interval

313

Changing the DTIM interval

313

Changing the RTS threshold

313

Changing the preamble length

314

Removing a radio profile

316

318 Configuring APs

318

Configuring APs 319

319

322 Configuring APs

322

2.4/5.0 GHz Dual Antennas

322

324 Configuring APs

324

Configuring APs 325

325

326 Configuring APs

326

Configuring APs 327

327

S5153WBPN36RSM

328

Configuring APs 329

329

S4901790PN36RS

330

Configuring APs 331

331

SR49120DAN36RS

331

332 Configuring APs

332

Configuring APs 333

333

334 Configuring APs

334

Figure 18. 5 GHz Antennas

334

2.4 GHz Antennas

334

336 Configuring APs

336

338 Configuring APs

338

340 Configuring APs

340

WSS# clear ap 3 radio 2

340

Displaying AP information

341

Configuring APs 343

343

WSS# show ap global

343

Total number of entries: 8

343

Configuring APs 345

345

346 Configuring APs

346

WSS# show service-profile sp1

346

Configuring APs 347

347

Reference.)

349

Configuring APs 351

351

352 Configuring APs

352

WLAN mesh services overview

353

Configuring the Mesh AP

355

Configuring Security

356

Configuring Wireless Bridging

357

Figure 20. Wireless Bridging

358

WSS# show ap status terse

358

Reference

360

Configuring user encryption

361

Software

362

840-9502-0030

363

Configuring WPA

364

WPA cipher suites

365

840-9502-0027

366

840-9502-0028

367

TKIP countermeasures

368

WPA authentication methods

369

WPA information element

370

Client support

371

Enabling PSK authentication

374

Displaying WPA settings

375

Configuring RSN (802.11i)

377

Configuring WEP

379

840-9502-0029

380

Setting static WEP key values

381

Assigning static WEP keys

382

Enabling WPA with TKIP

383

Configuring Auto-RF

391

How channels are selected

392

Channel and power tuning

393

Tuning the transmit data rate

394

Auto-RF parameters

395

Changing Auto-RF settings

396

Configuring Auto-RF 397

397

Locking down tuned settings

398

Displaying Auto-RF settings

400

Displaying RF neighbors

401

Displaying RF attributes

402

Locating an RFID tag

404

Using an AeroScout engine

405

Using WMS

406

WMS User can access

408

AirDefense UI from WMS

408

WSS# clear ap 1 image

414

About QoS

415

Summary of QoS features

416

Table 21.QoS parameters

417

End-to-End QoS

420

QoS mode

422

WMM QoS on the WSS

427

WMM QoS on an

427

Table 25.Default

428

Bandwidth Management for QoS

431

U-APSD support

432

Call admission control

432

Changing QoS settings

433

Changing the QoS mode

434

Enabling U-APSD support

434

Configuring static CoS

435

Changing CoS mappings

435

Displaying QoS information

436

Displaying CoS mappings

438

Displaying the DSCP table

439

Bridge priority

443

Port cost

443

Port priority

444

Changing the bridge priority

445

Changing STP port parameters

446

Changing spanning tree timers

448

Port fast convergence

449

Backbone fast convergence

449

Uplink fast convergence

450

Backbonefast is enabled

454

WSS# show spantree vlan mauve

457

Displaying blocked STP ports

459

Clearing STP statistics

462

Enabling the pseudo-querier

466

Changing IGMP timers

466

Changing the query interval

467

Enabling router solicitation

471

Clearing multicast statistics

476

Displaying multicast queriers

477

Displaying multicast routers

478

840-9502-0070

482

Security ACL filters

483

Traffic direction

484

Selection of user ACLs

484

Setting a source IP ACL

485

Wildcard masks

486

Class of Service

486

Setting an ICMP ACL

488

Setting TCP and UDP ACLs

490

Determining the ACE order

492

Committing a Security ACL

493

Viewing the edit buffer

494

Viewing security ACL details

495

Displaying security ACL hits

495

Mapping security ACLs

496

Clearing a security ACL map

499

Modifying a security ACL

500

Using ACLs to change CoS

505

Using the dscp option

507

Handling

507

General guidelines

509

Known limitations

511

IP-only clients

515

Wireless security through TLS

518

About keys and certificates

519

Public key infrastructures

521

Public and private keys

522

Digital certificates

523

File Type Standard Purpose

524

● Quotation marks (““)

530

● Question mark (?)

530

● Ampersand (&)

530

SSID name “Any”

539

Last-resort processing

539

User credential requirements

540

About AAA for network users

541

Authentication

542

Authentication algorithm

543

Accounting

548

AAA tools for network users

549

AAA rollover process

551

Local override exception

551

840-9502-0025

552

Ways a WSS can use EAP

555

Using pass-through

558

Bonded Authentication period

561

MAC address

563

Adding MAC users and groups

564

Clearing MAC users and groups

564

—for example

566

Display of the login page

568

WSS requirements

570

Portal ACL and user ACLs

572

Network requirements

573

WSS recommendations

573

Client NIC recommendations

573

● Set the SSID name

574

External Captive Portal

577

Using a custom login page

578

Custom login page scenario

579

Using an ACL other than

583

Requirements

590

Simultaneous login

600

About the location policy

610

Setting the location policy

612

Profile configuration

627

8 Save the configuration:

627

Overriding AAA-assigned VLANs

632

RADIUS overview

633

Before you begin

635

Configuring RADIUS servers

635

Deleting RADIUS servers

639

Creating server groups

640

Deleting a server group

643

Dynamic RADIUS

645

MAC User range authentication

646

Configuration

647

Managing 802.1X on the WSS

649

Setting 802.1X port control

651

WSS# set dot1x key-tx enable

652

Managing WEP keys

654

WSS# set dot1x reauth enable

656

Managing other timers

659

Displaying 802.1X information

662

Viewing 802.1X clients

663

Viewing 802.1X statistics

665

About SODA endpoint security

667

Specifying a remediation ACL

680

Managing sessions

685

690 Managing sessions

690

Managing sessions 697

697

Disabling keepalive probes

698

700 Managing sessions

700

Rogue detection and counter

701

Rogue classification

702

Rogue detection lists

703

RF detection scans

705

Countermeasures

707

Mobility Domain requirement

708

Configuring an attack list

713

Configuring an ignore list

714

Enabling countermeasures

715

Enabling AP signatures

716

IDS and DoS alerts

717

Flood attacks

718

DoS attacks

719

Wireless bridge

721

Ad-Hoc network

722

Weak WEP key used by client

723

Disallowed devices or SSIDs

724

IDS log message examples

726

Command Description

728

Displaying rogue clients

730

WSS# show rfdetect counters

731

Displaying RF detect data

734

WSS-IPaddr Port/Radio

736

Testing the RFPing

737

Managing system files

739

Managing system files 741

741

Working with files

742

Displaying a list of files

743

744 Managing system files

744

WSS# dir file:

744

WSS# dir core:

744

WSS# dir boot0:

744

Copying a file

745

Deleting a file

748

Creating a subdirectory

749

Managing configuration files

750

Saving configuration changes

753

754 Managing system files

754

Loading a configuration file

755

758 Managing system files

758

Managing system files 759

759

Upgrading the system image

760

Upgrade scenario

762

764 Managing system files

764

Appendix A:

765

Troubleshooting a

765

Symptom Diagnosis Remedy

766

Restart switch

768

840-9502-0026

768

Log message components

770

Using log commands

771

Logging to the log buffer

772

Logging to the console

773

Logging to the trace buffer

774

Enabling mark messages

774

Running traces

776

Displaying a trace

777

Stopping a trace

777

About trace results

777

Displaying trace results

778

Using show commands

780

Viewing FDB information

781

Viewing ARP information

781

Port mirroring

782

Remotely monitoring traffic

783

Configuring a snoop filter

784

Editing a snoop filter

785

Deleting a snoop filter

785

The show tech-support command

789

Core files

789

Debug messages

790

Sending information to NETS

791

System requirements

793

Logging onto Web View

794

Appendix C: Supported RADIUS

795

Table 49: 802.1X attributes

796

Table 50: Nortel VSAs

800

WSS software

801

Appendix E: DHCP server

803

Configuring the DHCP server

804

Appendix F: Glossary

807

808 Appendix F:Glossary

808

Appendix F:Glossary 809

809

810 Appendix F:Glossary

810

Appendix F:Glossary 811

811

812 Appendix F:Glossary

812

Appendix F:Glossary 813

813

814 Appendix F:Glossary

814

Appendix F:Glossary 815

815

816 Appendix F:Glossary

816

Appendix F:Glossary 817

817

818 Appendix F:Glossary

818

Appendix F:Glossary 819

819

820 Appendix F:Glossary

820

Appendix F:Glossary 821

821

822 Appendix F:Glossary

822

Appendix F:Glossary 823

823

824 Appendix F:Glossary

824

Appendix F:Glossary 825

825

826 Appendix F:Glossary

826

Appendix F:Glossary 827

827

828 Appendix F:Glossary

828

Numerics

829

848 Index

848

Command Index

849

856 Command Index

856

Release 7.0

858

Weitere Produkte und Handbücher für Vernetzung Nortel Networks

Modelle	Dokumententyp
Optivity Switch	Bedienungsanleitung Nortel Networks Optivity Switch User's Manual, 192 Seiten
NORTEL 3050	Bedienungsanleitung Nortel Networks NORTEL 3050 User's Manual, 15 Seiten
NN43001-318	Bedienungsanleitung Nortel Networks NN43001-318 User's Manual, 108 Seiten
NN42030-300	Bedienungsanleitung Nortel Networks NN42030-300 User's Manual, 64 Seiten
1000M	Bedienungsanleitung Nortel Networks 1000M User's Manual, 458 Seiten
CallPilot 100	Bedienungsanleitung Nortel Networks CallPilot 100 User's Manual, 16 Seiten
Network Card 4400	Bedienungsanleitung Nortel Networks Network Card 4400 User's Manual, 74 Seiten
10BASE-T	Bedienungsanleitung Nortel Networks 10BASE-T User's Manual, 330 Seiten
NN43001-321	Bedienungsanleitung Nortel Networks NN43001-321 User's Manual, 110 Seiten
24T	Bedienungsanleitung Nortel Networks 24T User's Manual, 310 Seiten
Network Router 3050	Bedienungsanleitung Nortel Networks Network Router 3050 User's Manual, 14 Seiten
400-S	Bedienungsanleitung Nortel Networks 400-S User's Manual, 86 Seiten
5100	Bedienungsanleitung Nortel Networks 5100 User's Manual, 160 Seiten
NN47200-503	Bedienungsanleitung Nortel Networks NN47200-503 User's Manual, 318 Seiten
Amplified Phone 2212	Bedienungsanleitung Nortel Networks Amplified Phone 2212 User's Manual, 64 Seiten
NN46110-602	Bedienungsanleitung Nortel Networks NN46110-602 User's Manual, 230 Seiten
CVX 600	Bedienungsanleitung Nortel Networks CVX 600 User's Manual, 168 Seiten
553-3901-200	Bedienungsanleitung Nortel Networks 553-3901-200 User's Manual, 48 Seiten
WEB OS 212777	Bedienungsanleitung Nortel Networks WEB OS 212777 User's Manual, 482 Seiten
NN43001-301	Bedienungsanleitung Nortel Networks NN43001-301 User's Manual, 306 Seiten

Nortel Networks Geräte