User's Manual

ManualsBrandsAerohive Networks ManualsElectronics802.11 a/b/g/n access point

Deployment Guide 113

EXAMPLE 4: CREATING USER PROFILES

User profiles contain a grouping of settings that determine the QoS (Quality of Service), VLAN, firewall policies, and

mobility policy that you want HiveAPs to apply to traffic from a specific group of users. In this example, you define

user profiles and their companion QoS forwarding rates and VLANs for VoIP phone users ("VoIP"), IT staff ("IT"),

corporate employees ("Emp"), and corporate visitors ("Guests"

). The user profile settings, maximum traffic

forwarding rates per user, and the VLAN for each profile are shown in Figure 13.

Figure 13 User Profiles, Forwarding Rates per User, and Default VLANs

VoIP QoS and User Profile

1. Click Configuration > QoS Policies > Rate Control & Queuing > New, enter the following, and then click Save:

• Name: QoS-VoIP

• Per User Rate Limit: 512 Kbps (802.11a/b/g); 512 Kbps (802.11n)

This is the maximum amount of bandwidth that a single user belonging to this profile can use. It supports a

single 8 – 64-Kbps VoIP session—depending on the voice codec used—while reserving bandwidth for other

required telephony services such as DNS, DHCP, HTTP, and TFTP.

• Description: Enter a useful comment for future reference, such as "QoS for VoIP traffic per user".

• Per User Queue Management: Enter the following items that appear in bold:

2. For guest access using a captive web portal, there must be two user profiles: one for guests that register successfully ("Guests")

and another for guests have not registered or whose registration attempt failed ("Unregistered-Guests").

Class Number - Name Scheduling Type Scheduling

Weight

Weight %

(Read Only)

Policing Rate

Limit (Kbps)

(802.11a/b/g)

Policing Rate

Limit (Kbps)

(802.11n)

7 - Network Control Strict

0 0% 512 512

6 - Voice Strict

0 0% 64 64

5 - Video Weighted Round Robin 60

28% 512 512

4 - Controlled Load Weighted Round Robin 50

23% 512 512

3 - Excellent Effort Weighted Round Robin 40

19% 512 512

Notes: Because individual VoIP calls use relatively little

bandwidth (~128 Kbps, depending on the voice compression

codex used), a single VoIP user does not need as much

bandwidth as a user transmitting other types of traffic.

Corporate employees—IT and Emp—receive the highest

maximum data forwarding rates.

Guests receive enough bandwidth to satisfy basic network

access but not enough to interfere with employee traffic.

Regarding VLAN assignments, each user profile is securely

isolated in its own VLAN (IT and Emp being divisions within the

larger role of employee). Note: The link connecting the HiveAP

Ethernet interface to the interface on the connecting switch

must be an 802.1Q trunk port configured to allow traffic on

these VLANs from the HiveAPs.

User Profiles

Name: VoIP

Attribute: 2

Name: IT

Attribute: 3

Name: Emp

Attribute: 4

Name: Guests

Attribute: 5

Default

VLANs

Maximum Data

Forwarding Rates

per User

11a/b/g/n 512 Kbps

11a/b/g 54000 Kbps

11n 1,000,000 Kbps

11a/b/g/n 2000 Kbps

11a/b/g 54000 Kbps

11n 1,000,000 Kbps