User's Manual

ManualsBrandsSiemens Communications ManualsElectronicsHiPath Wireless AP, Altitude 450, Altitude 451

141

142

143

144

145

146

147

148

149

150

Virtual Network Services

hwc_vnsintro.fm

Topology of a VNS

A31003-W1050-U100-2-7619

, March 2008

150 HiPath Wireless Controller, Access Points and Convergence Software V5 R1 , C20/C2400 User Guide

Configure Captive Portal page, select the No Captive Portal option. There will

be no authentication of users, but the Controller, Access Points and Convergence

Software is otherwise operational.

The user access plan should also identify the user groups in your enterprise, and

the business structure of the enterprise network, such as:

• Department (such as Engineering, Sales, Finance)

• Role (such as student, teacher, library user)

• Status (such as guest, administration, technician)

For each user group, you should set up a filter ID attribute in the RADIUS server,

and then associate each user in the RADIUS server to at least one filter ID name.

You can define specific filtering rules, by filter ID attribute, that will be applied to

user groups to control network access. Filtering is applied by the controller. Filter

ID assignments is a configuration option, and not a requirement to setup per user

filter ID definitions. If a filter is not returned by the Access-Accept confirmation for

a particular user, the controller uses the default filter profile for the VNS as the

applicable filter set.

5.3 Topology of a VNS

Before you decide if a VNS will participate in a VLAN and configure a VNS, define

the global settings that will apply to all VNS definitions. For example, global

settings can include identifying the location of the RADIUS servers and enabling

priority traffic handling for voice-over-internet traffic and dynamic authorization

server support.

The type of network assignment determines all the other factors of the VNS.

There are two options for network assignment:

• SSID:

• Has Captive Portal authentication, or no authentication

• Requires restricted filtering rules before authentication

• Requires filtering rules for group filter IDs after authentication. A default

filter applies if a more specific filter is not indicated by the RADIUS

Access-Accept response.

• Used for a VNS supporting wireless voice traffic (QoS)

• Used for a VNS supporting third-party APs

• Has WEP and WPA-PSK privacy

• AAA: