User Guide

ManualsBrandsNETGEAR ManualsOtherWFS709TP-100NAS

100

Table Of Contents

WFS709TP ProSafe Smart Wireless Switch Software Administration Manual
Contents
About This Manual
- Conventions, Formats, and Scope
- How to Use This Manual
- How to Print this Manual
- Revision History
Chapter 1 Overview of the WFS709TP
- WFS709TP System Components
- Basic WLAN Configuration
- Wireless Client Access to the WLAN
- Configuring and Managing the WFS709TP
  - Tools
Chapter 2 Deploying a Basic WFS709TP System
- Configuration Overview
- Configuring the WFS709TP
- Deploying APs
- Additional Configuration
Chapter 3 Configuring Network Parameters
- Configuring VLANs
  - Assigning a Static Address to a VLAN
  - Configuring a VLAN to Receive a Dynamic Address
- Configuring Static Routes
- Configuring the Loopback IP Address
Chapter 4 RF Plan
- RF Plan Overview
- Before You Begin
  - Task Overview
  - Planning Requirements
- Using RF Plan
- RF Plan Example
Chapter 5 Configuring WLANS
- Before You Begin
  - Determine the Authentication Method
  - Determine the Default VLAN
- Basic WLAN Configuration in the Browser Interface
  - Example Configuration
- Advanced WLAN Configuration in the Browser Interface
- IntelliFi RF Management
Chapter 6 Configuring AAA Servers
- Configuring an External RADIUS Server
- Adding Users to the Internal Database
- Configuring Authentication Timers
Chapter 7 Configuring 802.1x Authentication
- 802.1x Authentication
  - Authentication with a RADIUS Server
  - Authentication Terminated on WFS709TP
- Configuring 802.1x Authentication
  - 802.1x Authentication Page
- Advanced Configuration Options for 802.1x
Chapter 8 Configuring the Captive Portal
- Overview of Captive Portal Functions
- Configuring Captive Portal
- Configuring Advanced Captive Portal Options
- Configuring the AAA Server for Captive Portal
  - Changing the Protocol to HTTP
- Personalizing the Captive Portal Page
Chapter 9 Configuring MAC-Based Authentication
- Configuring the WFS709TP
- Configuring Users
Chapter 10 Adding Local WFS709TPs
- Moving to a Multi-Switch Environment
- Configuring Local WFS709TPs
Chapter 11 Configuring Redundancy
- Virtual Router Redundancy Protocol
- Redundancy Configuration
Chapter 12 Configuring Wireless Intrusion Protection
- Rogue/Interfering AP Detection
- Misconfigured AP Detection
  - Configuring Misconfigured AP Protection
Chapter 13 Configuring Management Utilities
- Configuring Management Users
- Configuring SNMP
- Creating Guest Accounts
- Managing Files on the WFS709TP
- Installing a Server Certificate
Chapter 14 Configuring WFS709TP for Voice
- Voice over IP Proxy ARP
- Battery Boost
- Limiting the Number of Active Voice Calls
- WPA Fast Handover
Appendix A Configuring DHCP with Vendor-Specific Options
- Overview
- Windows-Based DHCP Servers
  - Configuring Option 60
  - Configuring Option 43
- Linux DHCP Servers
Appendix B Windows Client Example Configuration for 802.1x
- Window XP Wireless Client Example Configuration
Appendix C Internal Captive Portal
- Creating a New Internal Web Page
  - Basic HTML Example
- Installing a New Captive Portal Page
- Displaying Authentication Error Message
- Language Customization
- Customizing the Welcome Page
- Customizing the Pop-Up Box
- Customizing the Logged Out Box
Appendix D Related Documents
Index

WFS709TP ProSafe Smart Wireless Switch Software Administration Manual

5-4 Configuring WLANS

v1.0, June 2007

** Only when the AAA FastConnect feature is enabled and EAP-Generic Token Card (EAP-GTC) is used within the Protected

EAP tunnel. See “Configuring 802.1x Authentication” on page 7-4.

Determine the Default VLAN

Each SSID is linked to a VLAN on the WFS709TP. Successful wireless client association to an

AP places the user into the default VLAN specified by the SSID configuration. The default VLAN

can be overridden by authentication server attributes; if you are authenticating a user to an external

authentication server, the user VLAN can be based on attributes returned by the server during

authentication.

Basic WLAN Configuration in the Browser Interface

The WLAN Basic Configuration page in the browser interface allows you to define many useful

options that pertain to a specific SSID without having to navigate to other configuration pages.

These options include:

•SSID

• Radio type: 802.11a, 802.11b/g, or 802.11a/b/g

• Layer 2 authentication and encryption type

• “Advanced” authentication features such as Captive Portal, VPN, and MAC authentication, in

addition to Layer 2 authentication

• Authentication server: either RADIUS or the WFS709TP’s internal database

• VLAN into which wireless clients are placed

When you configure a WLAN in the WLAN Basic Configuration page, the SSID will not be

hidden in beacons sent by the AP. In addition, the system does not send the SSID in response to

broadcast probe requests sent by clients.

Note the following about using the WLAN Basic Configuration page:

• The SSID configuration is global, that is, it applies to all APs in the network. If you need to

configure a WLAN for a set of APs in a specific location—for example, a WLAN that only

applies to a particular building or floor—you must configure the SSID using the WLAN

Advanced Configuration pages.

Note: If the authentication server is a RADIUS server, you can configure server

parameters on the WLAN Basic Configuration page