Manualshelf

Installation guide

ManualsBrandsMotorola ManualsComputer equipmentRFS6000 - Wireless RF Switch
31323334353637383940
Overview 1-23
allowed. If the action is to mark, the packet is tagged for priority. The switch supports the following types of
ACLs:
IP Standard ACLs
IP Extended ACLs
MAC Extended ACLs
Wireless LAN ACLs
For information on creating an ACL, see Configuring Firewalls and Access Control Lists on page 6-14.
1.2.5.9 Local Radius Server
Radius is a common authentication protocol utilized by the 802.1x wireless security standard. Radius
improves the WEP encryption key standard, in conjunction with other security methods such as EAP-PEAP.
The switch has one onboard Radius server. For information on configuring the switch’s resident Radius
Server, see Configuring the Radius Server on page 6-84.
1.2.5.10 IPSec VPN
IP Sec is a security protocol providing authentication and encryption over the Internet. Unlike SSL (which
provides services at layer 4 and secures two applications), IPsec works at Layer 3 and secures the network.
Also unlike SSL (which is typically built into the Web browser), IPsec requires a client installation. IPsec can
access both Web and non-Web applications, whereas SSL requires workarounds for non-Web access such
as file sharing and backup.
A VPN is used to provide secure access between two subnets separated by an unsecured network. There are
two types of VPNs:
Site-Site VPN — For example, a company branching office traffic to another branch office traffic with
an unsecured link between the two locations.
Remote VPN — Provides remote user ability to access company resources from outside the company
premises.
The switch supports:
IPSec termination for site to site
IPSec termination for remote access
IPSec traversal of firewall filtering
IPSec traversal of NAT
IPSec/L2TP (client to switch)