Manualshelf

User's Manual

ManualsBrandsAerohive Networks ManualsElectronics802.11 a/b/g/n access point
31323334353637383940
Table Of Contents
Chapter 8 HiveManager Configuration Examples
120 Aerohive
EXAMPLE 6: SETTING MANAGEMENT SERVICE PARAMETERS
Management services include the settings for DNS, syslog, SNMP, NTP, and location servers. HiveAPs use these
services for network communications and logging activities. In addition, you can set HiveAP admin access
parameters.
In this example, you configure the management services that you later reference in WLAN policies (see "Example 9:
Creating WLAN Policies" on page 126). Two WLAN policies are for HiveAPs at the corporate HQ site and the third is
for HiveAPs at the remote branch office. You define the following management services:
Three DNS (Domain Name Service) servers—one primary server at HQ, one primary server at the branch site, and
one secondary server at HQ. HiveAPs at the branch site connect to the secondary DNS server through a VPN
tunnel.
Although there are three DNS servers, there are only two IP address objects. The IP address object for the
primary DNS server has two IP address definitions. By using the classifier tags "hq" and "branch1", all HiveAPs
deployed at headquarters and classified as "hq" use the "hq" address definition, while all those deployed at the
branch site and classified as "branch1" use the "branch1" definition. Because all HiveAPs use the secondary DNS
server (at headquarters), its IP address definition is classified as Global; that is, it is the same for all HiveAPs.
One syslog server and one SNMP (Simple Network Management Protocol) server—both at headquarters. HiveAPs
at the branch office connect to these through a VPN tunnel.
One NTP (Network Time Protocol) server—located on the public network. HiveAPs synchronize the time on their
system clocks with this server.
The various servers and their relationship to the two sites is shown in Figure 15.
Figure 15 Location of Servers in Relation to Each WLAN Policy
Corporate Headquarters
Only the primary DNS server for the branch
office is at the branch office site. The NTP server
is on the public network. All other management
servers are at headquarters. A VPN tunnel
protects traffic between the two sites.
Primary DNS Server
10.1.1.25
Primary DNS Server
10.2.2.251
Secondary DNS Server
10.1.2.26
SNMP Server
10.1.1.24
Syslog Server
10.1.1.23
Branch Office
VPN Tunnel
Remote NTP Server
207.126.97.57
Management services at headquarters
Management services at the branch site