User guide
Table Of Contents
- Introduction
- Installation and Initialization
- Managing the Access Point
- Basic Configuration for an Enterprise
- Access Point Features
- Using Web Interface to Manage the Access Point
- Using SNMP Interface to Manage the Access Point
- Using CLI to Manage the Access Point
- Global Configuration Mode
- General Notes
- Configuring the AP using CLI Commands
- Command Line Interface Mode Overview
- User Exec Mode
- Privileged Exec Mode
- Show Command Tree Structure Command
- Show VLAN Command
- Show MAC ACL Command
- Show RADIUS Server Table Command
- Show RADIUS Supported Profile Table Command
- Show Security Wireless Config Table Command
- Show QoS Profile and Policy Command
- Show QoS EDCA Command
- Show Wireless Properties Command
- Show 11n Wireless Properties Command
- Wireless VAP Command
- Ethernet Interface Command
- Network Configuration Command
- Advaned Filter and Global Filter Command
- TCP-UDP and Static MAC Address Table Commands
- Protocl Filter, Filter Type and Filter Control Table Command
- Access Control and HTTP, Telnet and TFTP Commands
- SNMP Read, Read-Write Password and Trap Host Table Command
- Country Code and Management Commands
- System Information Command
- System Inventory Management Command
- Event Logand ICMP Commands
- IP ARP Statistics and SNTP Command
- Syslog configuration and RADIUS Client Authentication Table Commands
- RADIUS Client Access Command
- Interface Statistics Command
- Wireless Station Statistics Command
- IP Address, Subnet Mask and Gateway Command
- Scalar Objects Commands
- Table Entries Commands
- Table Entry Deletion Command
- Table Entry Edition Command
- VAP Table Commands
- Troubleshooting
- ASCII Character Chart
- Bootloader CLI
- Specifications
- Technical Services and Support
- Statement of Warranty
Access Point Features AP-800 User Guide
Configuring the Device
47
You can enter a maximum number of 64 entries for a table.
Intra BSS Filtering
The wireless clients that associate with a certain AP from the Basic Service Set (BSS) of a network infrastructure. By
default, wireless subscribers in the same BSS can communicate with each other. However, some administrators may
wish to block traffic between wireless subscribers that are associated with the same AP to prevent unauthorized
communication and to conserve bandwidth. This feature enables you to prevent wireless subscribers within a BSS from
exchanging traffic.
Although this feature is generally enabled in public access environments, Enterprise LAN administrators use it conserve
wireless bandwidth by limiting communication between wireless clients. For example, this feature prevents peer-to-peer
file sharing or gaming over the wireless network.
• If you select to block the traffic, then the wireless traffic between the clients associated with the same or different BSS
(Basic Service Set) will not be able to communicate with each other.
• If you select to passthru, then the wireless traffic between the clients associated with the same or different BSS will be
able to communicate with each other.
IP Layer
IP Protocol Filtering
This filtering type is also known as Advanced Filtering. The device is provided with some known protocol entries. Using
this filter type you can block the specific IP Protocol traffic. You can enable or disable the entries as well the change the
direction of the traffic.
TCP/UDP Layer
Port-based filtering enables you to control wireless user access to network services by selectively blocking TCP/UDP
protocols through the AP. A user specifies a Protocol Name, Port Number, Port Type (TCP, UDP, or TCP/UDP), and
filtering interfaces (only Wireless, only Ethernet or Both) in order to block access to services, such as Telnet and FTP, and
traffic, such as NETBIOS and HTTP. You can enter up to maximum 64 entries for a table.
For example, an AP with the following configuration would discard frames received on its Ethernet interface with a UDP
destination port number of 137, effectively blocking NETBIOS Name Service packets.
Filtering Features
• Global Filter Flag: This parameter is used to enable or disable the filtering tag. If you disable this filtering tag, then the
no filtering feature will be applicable.
• Intra BSS Filtering: This parameter is used configure wireless to wireless communication.
Protocol Filter
• Filtering Control: This parameter is used to enable the interface either for Ethernet, Wireless or both.
• Filtering Type: This parameter is used to configure the filtering type. If the specific protocol is not available on the
protocol filter table, then the filtering type would be performed on the packet that is being transmitted.
• Protocol Name: This parameter represents the Ethernet protocol filtering name.
• Protocol Number: This parameter represents the Ethernet protocol filtering number.
• Filter Status: This parameter is used for configuring the status of the Ethernet protocol filtering.
Protocol Name Port Number Port Type Filter InterfaceEntry Status
(Enable/Disable)
NETBIOS Name Service 137 UDP Ethernet Enable