Specifications
11-5
Cisco IOS Software Configuration Guide for Cisco Aironet Access Points
OL-5260-01
Chapter 11 Configuring WDS, Fast Secure Roaming, and Radio Management
Understanding Layer 3 Mobility
IP-Based Wireless Domain Services
You use IP-based WDS to configure the access point with the IP address of its WDS device. This allows
the access point to use a Cisco network infrastructure device running WDS from anywhere in the
network.
Layer 3 Mobility Service Through Fast Secure Roaming Tunnels
The access point uses this feature to segregate WLAN clients into different mobility groups. After a
client is authenticated according to its mobility group’s security policy, all IP traffic from that client is
encapsulated using generic routing encapsulation (GRE) and sent to a specific multipoint GRE (mGRE)
interface of a Cisco Structured Wireless-Aware Network (SWAN) infrastructure device that supports
mobility groups. An access point with Layer 3 Mobility Service provides clients within each mobility
group with Layer 3 mobility when used with a Cisco SWAN infrastructure device supporting Layer 3
mobility. Support for Layer 3 roaming is provided for all Wi-Fi certified client devices. Support for fast
secure Layer 3 roaming is provided for Cisco or Cisco Compatible wireless LAN client devices using
the Cisco Centralized Key Management (CCKM) protocol.
Components Required for Layer 3 Mobility
The Layer 3 mobility wireless LAN solution consists of these hardware and software components:
• 1100 or 1200 series access points participating in WDS
• Catalyst 6500 switch with Supervisor Module and WLSM configured as the WDS device
Note You must use a WLSM as your WDS device to properly configure Layer 3 mobility. Layer 3
mobility is not supported when your WDS device is an access point.
• Cisco (or Cisco compatible) client devices
Figure 11-3 shows the components that interact to perform Layer 3 mobility.