Wireless/Redundant Edge Services xl Module Management and Configuration Guide WS.02.xx and greater

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

621

622

623

624

625

626

627

628

629

630

Table Of Contents

ProCurve Wireless Edge Services xl Module and ProCurve Redundant Wireless Services xl Module
Title Page
Copyright and Disclaimer Notices
Table of Contents
1. Introduction
- Contents
- ProCurve Wireless Edge Services xl Module
- Radio Ports
- Redundancy Groups
- Layer 2 and Layer 3 Roaming Between RPs and Modules
2. Configuring the ProCurve Wireless Edge Services xl Module
- Contents
- Management Interfaces
- Radio Port Adoption
- System Maintenance
- SNMP Traps and Error Reporting
- Radio Port Licenses
- Setting System Information-Name, Time, and Country Code
- Enabling Secure Network Time Protocol (NTP)
- Digital Certificates
3. Radio Port Configuration
- Contents
- Overview
- Country-Code and Regulatory Procedures
- Configuring Radio Settings
  - Creating a Radio Adoption Default Configuration
  - Creating a Radio Configuration for a Particular Radio
- Considerations for Enabling Client Roaming
- Quality of Service (QoS) on RP Radios
  - WMM
  - SpectraLink Voice Priority (SVP)
4. Wireless Local Area Networks (WLANs)
- Contents
- Overview
- Configuration Options: Normal Versus Advanced Mode
  - Normal Mode Configuration
  - Advanced Mode Configuration
- Configuring a WLAN
- VLAN Assignment
  - WLAN-Based VLAN Assignment
    - Considerations for WLAN-Based VLAN Assignment
  - Identity-Based, or Dynamic, VLAN Assignment
- Traffic Management (QoS)
5. Web Authentication for Mobile Users
- Contents
- Overview
- Configuring Web-Auth
- Copying Logo Files to the Module’s Flash
- Configuring Custom Web-Auth Pages
  - Configuring the CGI Commands for the Login Page
  - Configuring the CGI Commands for the Welcome Page
6. IP Services-IP Settings, DHCP, and DNS
- Contents
- IP Settings
- IP Routing
- DNS Client
- DHCP Server
7. Access Control Lists (ACLs)
- Contents
- Overview
- Configuring ACLs
8. Configuring Network Address Translation (NAT)
- Contents
- Overview
- Planning the NAT Configuration
  - Consider Your Company’s Requirements for NAT
  - Record Necessary IP Addresses and Select the NAT Implementation Method
    - Planning the Configuration for Dynamic NAT
    - Planning the Configuration for Static NAT
- Configuring Standard ACLs for Dynamic NAT
- Configuring NAT
9. Fast Layer 2 Roaming and Layer 3 Mobility
- Contents
- Overview
- Configuring Fast Layer 2 Roaming for WPA/WPA2 with 802.1X
- Configuring Layer 3 Mobility
- Verifying and Managing Layer 3 Mobility
  - Monitoring Peers
  - Viewing a Station’s Status
10. Redundancy Groups
- Contents
- High Availability for Wireless Services
- Configuring a Redundancy Group
11. RADIUS Server
- Contents
- Overview
- RADIUS Authentication
  - Configuring the Internal RADIUS Server
  - Enabling Authentication to the Internal Server on a WLAN
- RADIUS Accounting
  - Enabling Accounting to the Internal RADIUS Server on a WLAN
  - Viewing the Internal RADIUS Server’s Accounting Logs
12. Configuring Tunnels with Generic Routing Encapsulation
- Contents
- Overview
- Configuring GRE Tunnels
- Viewing GRE Tunnels and WLAN Mappings
13. Wireless Network Management
- Contents
- Overview
- Monitoring the Wireless Network
- AP Detection
- Configuring Station Intrusion Detection
- Logging and Alarms
  - Configuring Logging
  - Managing the Alarm Log
- MAC Filters (Local MAC Authentication)
- Network Self Healing
  - Neighbor Recovery
  - Interference Avoidance
14. sFlow Agent
- Contents
- Overview
- Configuring sFlow Using the Web Browser Interface
Appendix A - ProCurve Wireless Services xl Module Command Line Reference
- Contents
- Overview
- Manager Commands
- Global Commands
- Interface Commands
- Wireless Commands
- Show Commands
- Show Commands (All Contexts)
- Show Commands (Wireless)
- Support Commands
- Support Commands (All Contexts)
- Support Commands (Wireless)
Index
Back Cover

9-9

Fast Layer 2 Roaming and Layer 3 Mobility

Overview

■ Seamless roaming—The defining feature of a seamless roam is not

speed, but preservation of the user’s authentication, IP address, and active

sessions. The user does not need to re-login, and a user browsing the

Internet probably would not notice a seamless roam; a user accessing a

real-time application may detect a slight lag.

■ Not seamless roaming—If a roam is not seamless, the user must log in

again so that his or her station can re-authenticate or change its IP address.

A Wireless Edge Services xl Module handles roaming between its own RPs

automatically—this roaming is always fast. To enable the best possible roam-

ing between RPs adopted by different modules, however, you may need to

take some additional steps.

If you configure and group your modules correctly, you can always enable at

least seamless, and sometimes fast, roaming. Table 9-1 explains how to enable

the best possible roaming depending on the WLAN’s security and on whether

the roam occurs at Layer 2 or Layer 3.

Table 9-1. Enabling the Best Roaming Between Different Wireless Edge Services

xl Modules

WLAN Security

Option

Layer 2 Roam

Without Special

Configuration

Best

Layer 2

Roam

Requirements for

Best Layer 2

Roam

Layer 3 Roam

Without Special

Configuration

Best

Layer 3

Roam

Requirements for

Best Layer 3

Roam

open

authentication

seamless seamless none not seamless seamless modules in the

same Layer 3

mobility domain

authentication

with a static key

(static Wired

Equivalent Privacy

[WEP] or WPA-

preshared key

[PSK])

seamless seamless none not seamless seamless modules in the

same Layer 3

mobility domain

Web-Auth not seamless seamless 48 RP limit, either:

•a single

module adopts

all RPs

• modules in the

same

redundancy

group

not seamless seamless • modules in the

same Layer 3

mobility

domain

dynamic WEP or

RADIUS MAC

authentication

seamless seamless none not seamless seamless modules in the

same Layer 3

mobility domain