Manualshelf

User guide

ManualsBrandsSiemens ManualsCell PhoneC10
919293949596979899100
HWC_VNSConfiguration.fm
A31003-W1010-A100-1-7619, July 2005
HiPath Wireless Controller, Access Points and Convergence Software V3.0: User Guide
93
Virtual Network configuration
Filtering rules for a VNS
3. For each filtering rule you are defining:
4. For Captive Portal, define a rule to allow access to the default gateway for this VNS. Select
IP / Port and key in the default gateway IP address that you defined in the Topology screen
for this VNS.
5. Click on the Add button. The information appears in a new line in the Filter Rules area of
the screen.
6. Highlight the new filtering rule and fill in (or leave unchecked) the three checkboxes in the
combinations that define the traffic access:
For Captive Portal, to allow access to the defined IP address, check all three boxes on.
7. Edit the order of a filtering rule by highlighting the line and clicking on the Up and Down
buttons. The filtering rules are executed in the order defined here.
8. To save the filtering rules, click on the Save button.
Non-authenticated filters: examples
A basic Non-Authenticated filter for Captive Portal should have three rules in this order:
If you put URLs in the header and footer of the Captive Portal page, you must include a filtering
rule to allow traffic to each of these URLs. Put these rules above the "deny everything" rule.
IP / Port: Type in the destination IP address. You can also specify an IP range, a port
designation or a port range on that IP address.
Protocol: Default is N/A. To specify a protocol, select from the drop-down list (may
include UDP, TCP, IPsec-ESP, IPsec-AH, ICMP).
In: Click checkbox on to refer to traffic from the wireless device that is trying to get
on the network ("going to" the network)
Out: Click checkbox on to refer to traffic from the network host that is trying to get to
a wireless device. ("coming from" the network)
Allow: Click checkbox on to allow. Leave unchecked to disallow.
In Out Allow IP / Port Description
x x x IP address of the Default
Gateway
Allow all incoming wireless devices access
to the default gateway of the VNS.
x x x IP address of the DNS
Server
Allow all incoming wireless devices access
to the DNS server of the VNS.
x x *.*.*.* Deny everything else.