Allied Telesis Summit 24 User's Guide Page 86
- Page / 198
- Table of contents
- TROUBLESHOOTING
- BOOKMARKS
Rated. / 5. Based on customer reviews
86 Summit 300-48 Switch Software User Guide
Unified Access Security
incorporate each of these suites, and the Altitude 300 wireless port supports hardware-based AES and
RC4 encryption.
WPA-Only Support
To support WPA clients, the Summit 300-48 switch port sets the privacy bit in the beacon frames it
advertises. The switch also advertises the set of supported unicast and multicast cipher suites and the
configured and supported authentication modes as part of the association request. If the switch
advertises the cipher suites and authentication modes, then the client is able to associate with the
wireless port and is subject to further authentication and key derivation. If the cipher suites and
authentication modes are not advertised, then the client cannot associate with the wireless port.
WPA support is compatible with 802.1x authentication or pre-shared keys. With pre-shared keys, key
derivation and distribution are done using the EAPOL-KEY messages. All clients that indicate PSK are
assigned to the PSK VLAN, which is configured on the Summit 300-48 switch port. The switch
advertises this information using WPA IEs.
Legacy and WPA 802.1x Support
It is possible to support WEP40 and WEP104 as unicast cipher suites along with legacy and WPA-based
clients. You can configure the WEP options independently of the AES and TKIP options used for WPA.
The multicast uses the lowest WEP suite. The switch advertises the set of unicast cipher and multicast
suites using WPA IEs.
1
If dot1x authentication is set to all and the same VLAN is used for WPA and legacy clients, then
session key derivation and distribution takes place independently. For multicast keys, the legacy 802.1x
is now used for all clients. When legacy and WPA clients are supported simultaneously, group key
updates are disabled.
When Legacy 802.1x and WPA clients are both allowed access, then a different set of keys are used for
legacy clients and for WPA clients. WPA clients can use AES and TKIP encryption, while legacy clients
use WEP encryption. The multicast cipher can be set to AES, TKIP, or WEP, in which case the unicast
cipher used by WPA clients will be AES, TKIP, and WEP respectively.
NOTE
Legacy and WPA clients should not be put on the same VLAN.
Table 28: Wi-Fi Security Cipher Suites
Name Authentication Privacy
Sponsoring
Organization
WEP None or MAC WEP/RC4 IEEE
WPA 802.1x TKIP/RC4 Wi-Fi Alliance
WPA 802.1x CCMP/AES/TKIP IEEE
1. 40-bit WEP encryption is sometimes called 64bit (40+24IV), and 104-bit encryption is sometimes
called 128bit (104+24IV).
- Summit 300-48 Switch 1
- Software User Guide 1
- Contents 3
- Chapter 3 Managing the Switch 4
- Chapter 6 Wireless Networking 5
- Chapter 8 Power Over Ethernet 6
- Chapter 10 Access Policies 7
- Chapter 14 IP Unicast Routing 8
- Appendix A Safety Information 9
- Appendix D Troubleshooting 9
- Index of Commands 10
- Ta bl es 14
- Introduction 15
- Conventions 15
- Related Publications 16
- 1 ExtremeWare Overview 17
- Unified Access 18
- Virtual LANs (VLANs) 18
- Spanning Tree Protocol 18
- Software Licensing 19
- Security Licensing 20
- Software Factory Defaults 20
- ExtremeWare Overview 22
- 2 Accessing the Switch 23
- Syntax Helper 24
- Command Shortcuts 24
- Line-Editing Keys 25
- Command History 26
- Common Commands 26
- Configuring Management Access 28
- User Account 29
- Administrator Account 29
- Default Accounts 29
- Creating a Management Account 30
- Viewing Accounts 31
- Deleting an Account 31
- Checking Basic Connectivity 32
- Accessing the Switch 34
- 3 Managing the Switch 35
- Using the Console Interface 36
- Using Telnet 36
- Managing the Switch 38
- Using Secure Shell 2 (SSH2) 39
- Using SNMP 40
- Supported MIBs 41
- Configuring SNMP Settings 41
- Displaying SNMP Settings 42
- Authenticating Users 43
- RADIUS RFC 2138 Attributes 44
- Using ExtremeWare Vista 47
- Accessing ExtremeWare Vista 48
- Navigating ExtremeWare Vista 48
- Task Frame 49
- Content Frame 49
- Saving Changes 50
- Filtering Information 50
- Configuring and Using SNTP 51
- (continued) 53
- SNTP Configuration Commands 54
- SNTP Example 54
- Configuring Ports on a Switch 55
- Switch Port Commands 56
- Load Sharing on the Switch 57
- Switch Port-Mirroring 59
- Port-Mirroring Commands 60
- Extreme Discovery Protocol 61
- 5 Virtual LANs (VLANs) 63
- Types of VLANs 64
- System 1 65
- System 2 65
- Tagged VLANs 66
- Uses of Tagged VLANs 67
- Assigning a VLAN Tag 67
- Marketing 68
- VLAN Names 69
- Renaming a VLAN 70
- VLAN Configuration Commands 70
- Displaying VLAN Settings 71
- 6 Wireless Networking 73
- Wireless Devices 74
- Bridging 75
- Managing Wireless Ports 75
- Configuring RF Properties 76
- Configuring Country Codes 78
- Configuring Wireless Ports 79
- Managing Wireless Clients 80
- Show Commands 80
- Event Logging and Reporting 81
- Wireless Networking 82
- 7 Unified Access Security 83
- User Access Security 84
- Cipher Suites 85
- WPA-Only Support 86
- Legacy and WPA 802.1x Support 86
- Network Security Policies 87
- Policy Examples 88
- Policies and RADIUS Support 88
- RADIUS Attributes 88
- Security Profile Commands 89
- Unified Access Security 90
- 8 Power Over Ethernet 95
- Port Power Management 96
- Port Power Events 97
- Per-Port LEDs 98
- Power Over Ethernet 100
- Table 37: PoE Show Commands 101
- 9 Forwarding Database (FDB) 103
- How FDB Entries Get Added 104
- Configuring FDB Entries 105
- Displaying FDB Entries 106
- 10 Access Policies 107
- Access Masks 108
- Access Lists 108
- Rate Limits 109
- How Access Control Lists Work 109
- Specifying a Default Rule 110
- Maximum Entries 111
- Access Control List Commands 112
- Using Access Control Lists 113
- Access Policies 114
- 10.10.10.1 116
- 10.10.10.100 10.10.20.100 116
- 10.10.20.1 116
- 11 Quality of Service (QoS) 121
- Applications and Types of QoS 122
- Web Browsing Applications 123
- File Server Applications 123
- Traffic Groupings 124
- MAC-Based Traffic Groupings 125
- Configuring 802.1p Priority 126
- Observing 802.1p Information 126
- 802.1p Commands 127
- Configuring DiffServ 128
- DiffServ Examples 130
- Source port 130
- QoS Monitor 131
- Modifying a QoS Configuration 132
- Traffic Rate-Limiting 132
- Status Monitoring 133
- Port Statistics 135
- Port Errors 136
- Port Monitoring Display Keys 137
- Local Logging 139
- Remote Logging 139
- Logging Configuration Changes 140
- Logging Commands 140
- About RMON 142
- RMON Features of the Switch 142
- Configuring RMON 143
- Event Actions 144
- Spanning Tree Protocol (STP) 145
- STP Configurations 146
- Sales, Personnel, Marketing 147
- Switch 1 148
- Switch 2 148
- Switch 3 148
- Configuring STP on the Switch 149
- Displaying STP Settings 151
- Disabling and Resetting STP 152
- 14 IP Unicast Routing 153
- Router Interfaces 154
- Populating the Routing Table 154
- Static Routes 155
- Multiple Routes 155
- IP Route Sharing 155
- Proxy ARP 156
- Relative Route Priorities 157
- IP Commands 158
- IP Unicast Routing 160
- Routing Configuration Example 162
- Displaying Router Settings 163
- Configuring DHCP/BOOTP Relay 164
- UDP-Forwarding 165
- UDP-Forwarding Example 166
- ICMP Packet Processing 166
- UDP-Forwarding Commands 166
- A Safety Information 169
- Power Cord 170
- Connections 170
- Lithium Battery 171
- Safety Information 172
- B Supported Standards 173
- Supported Standards 174
- Downloading a New Image 175
- Saving Configuration Changes 176
- Remember to Save 179
- Upgrading Bootloader 179
- Accessing the Bootstrap CLI 179
- Accessing the Bootloader CLI 180
- Boot Option Commands 181
- D Troubleshooting 183
- Troubleshooting 184
- Port Configuration 185
- Debug Tracing 187
- TOP Command 187
- • [email protected] 188
- Numerics 189
Related products and manuals for Network switches Allied Telesis Summit 24
(39 pages)© 2020, manymanuals.com. All rights reserved. | 0.267 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals