Netgear WC7520 WC7520 Reference Manual - Page 24
DHCP Server, Client Authentication and Data Encryption, Client VLANs - radius
UPC - 606449072969
View all Netgear WC7520 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 24 highlights
ProSafe 20-AP Wireless Controller WC7520 Reference Manual Client VLANs Each authenticated wireless user is placed into a VLAN that determines the user's DHCP server, IP address, and layer 2 connection. Although you could place all authenticated wireless users into the single VLAN that is specified in the basic security profile, the wireless controller allows you to group wireless users into separate VLANs based on the wireless SSID to differentiate access to network resources. For example, you might place authorized employee users into one VLAN and itinerant users, such as contractors or guests, into a separate VLAN. To use different VLANs, you must create different security profiles. For information about how to configure regular VLANs, see Managing Wireless Security Profiles on page 83. DHCP Server The wireless controller can function as a DHCP server and assign IP addresses to both wireless and wired devices that are connected to it. You can add up to 64 DHCP server pools, each assigned to a different VLAN. Client Authentication and Data Encryption A user must authenticate to the WLAN to be able to access WLAN resources. The wireless controller supports several types of security methods, including those that require an external RADIUS or LDAP authentication server. The encryption option that you can select depends upon the authentication method that you have selected. The following table lists the authentication methods available, with their corresponding encryption options. Table 2. Authentication and Encryption Options Authentication Method Open system Shared Key Legacy 802.1x WPA-PSK WPA2-PSK WPA-PSK and WPA2-PSK WPA WPA2 WPA and WPA2 Encryption Option 64-bit, 128-bit, or 152-bit WEP 64-bit, 128-bit, or 152-bit WEP WEP TKIP or TKIP+AES AES or TKIP+AES TKIP+AES TKIP or TKIP+AES AES or TKIP+AES TKIP+AES Authentication Server None None Internal authentication server or external RADIUS server None None None Internal authentication server, external RADIUS server, or external AD server Internal authentication server, external RADIUS server, or external AD server Internal authentication server, external RADIUS server, or external AD server For information about how to configure client authentication and data encryption, see Managing Wireless Security Profiles on page 83. Chapter 2: System Planning and Deployment Scenarios | 24