Cisco Systems 3.2 Manuale Utente
5-4
Cisco Wireless LAN Controller Configuration Guide
OL-8335-02
Chapter 5 Configuring Security Solutions
Configuring the System for SpectraLink NetLink Telephones
for and notify when active), or marking them as Contained rogue access points (have between one and
four Cisco 1000 Series lightweight access points discourage rogue access point clients by sending the
clients deauthenticate and disassociate messages whenever they associate with the rogue access point).
four Cisco 1000 Series lightweight access points discourage rogue access point clients by sending the
clients deauthenticate and disassociate messages whenever they associate with the rogue access point).
Integrated Security Solutions
•
Cisco WLAN Solution Operating System Security is built around a robust 802.1X AAA
(authorization, authentication and accounting) engine, which allows operators to rapidly configure
and enforce a variety of security policies across the Cisco WLAN Solution.
(authorization, authentication and accounting) engine, which allows operators to rapidly configure
and enforce a variety of security policies across the Cisco WLAN Solution.
•
The controllers and lightweight access points are equipped with system-wide authentication and
authorization protocols across all ports and interfaces, maximizing system security.
authorization protocols across all ports and interfaces, maximizing system security.
•
Operating System Security policies are assigned to individual WLANs, and lightweight access
points simultaneously broadcast all (up to 16) configured WLANs. This can eliminate the need for
additional access points, which can increase interference and degrade system throughput.
points simultaneously broadcast all (up to 16) configured WLANs. This can eliminate the need for
additional access points, which can increase interference and degrade system throughput.
•
The controllers securely terminates IPSec VPN clients, which can reduce the load on centralized
VPN concentrators.
VPN concentrators.
•
Operating System Security uses the RRM function to continually monitor the air space for
interference and security breaches, and notify the operator when they are detected.
interference and security breaches, and notify the operator when they are detected.
•
Operating System Security works with industry-standard authorization, authentication, and
accounting (AAA) servers, making system integration simple and easy.
accounting (AAA) servers, making system integration simple and easy.
•
The Operating System Security solution offers comprehensive Layer 2 and Layer 3 encryption
algorithms which typically require a large amount of processing power. Rather than assigning the
encryption tasks to yet another server, the controller can be equipped with a VPN/Enhanced Security
Module that provides extra hardware required for the most demanding security configurations.
algorithms which typically require a large amount of processing power. Rather than assigning the
encryption tasks to yet another server, the controller can be equipped with a VPN/Enhanced Security
Module that provides extra hardware required for the most demanding security configurations.
Configuring the System for SpectraLink NetLink Telephones
For best integration with the Cisco Wireless LAN Solution, SpectraLink NetLink Telephones require an
extra Operating System configuration step: enable long preambles. The radio preamble (sometimes
called a header) is a section of data at the head of a packet that contains information that wireless devices
need when sending and receiving packets. Short preambles improve throughput performance, so they are
enabled by default. However, some wireless devices, such as SpectraLink NetLink phones, require long
preambles.
extra Operating System configuration step: enable long preambles. The radio preamble (sometimes
called a header) is a section of data at the head of a packet that contains information that wireless devices
need when sending and receiving packets. Short preambles improve throughput performance, so they are
enabled by default. However, some wireless devices, such as SpectraLink NetLink phones, require long
preambles.
Use one of these methods to enable long preambles:
•
•