Cisco Cisco 2000 Series Wireless LAN Controller Manual Técnico

If DHCP option 43 or DNS resolution is not available at remote sites, the 1030 must first be primed at
the central office. Then, it is shipped out to the destination site.

• 

Upon WAN link failure, only the first WLAN remains active.

Security policies that require RADIUS will fail.

♦ 

Authentication/Encryption that uses WPA−PSK is recommended for WLAN 1. WEP works,
but is not recommended.

♦ 

• 

No Layer 3 encryption (Layer 2 encryption only)

• 

WLCs which REAPs connect to cannot reside behind NAT boundaries. However, REAPs can,
provided each internal static REAP IP address has both LWAPP ports (12222 and 12223) forwarded
to them.

Note: Port Address Translation (PAT) / NAT with overloading is not supported because the source
port of the LWAPP traffic that originates from the LAP can change over time. This breaks the
LWAPP association. The same problem can arise with NAT implementations for REAP where the
port address changes, such as PIX/ASA might, which depends on the configuration.

• 

Only LWAPP control messages traverse the WAN link.

• 

Data traffic is bridged at the Ethernet port of the 1030.

• 

The 1030 LAP does not perform 802.1Q tagging (VLANs). Therefore, wireless traffic from all SSIDs
terminates on the same wired subnet.

• 

IPv4

Yes

Yes

IPv6

Yes

Yes

All other
protocols

Yes (only if
client is also IP

Yes (only if client
is also IP enabled)