Manualshelf

User's Manual

ManualsBrands4IPNET ManualsElectronicsWLAN Controller
71727374757677787980
© 2008 4IPNET, INC .
71
4ip ne t WHG 301
Use r
s Ma nua l
4.2.4 Policy Configuration
WHG301 supports multiple Policies, including one Global Policy and 12 individual Policy. Each Policy consists of
access control profiles that can be configured respectively and applied to a certain Group of users. Global Policy is
the systems universal policy and applied to all clients, while other individual Policy can be selected and defined to
be applied to any Service Zone.
The clients belonging to a Service Zone will be bound by an applied Policy. In addition, a Policy can be applied at a
Group basis; a Group of users can be bound by a Policy. The same Group can be applied with different Policies
within different Service Zones.
When the type of authentication database is RADIUS, the Class-Group Mapping function will be available to allow
the administrator to assign a Group for a RADIUS class attribute; therefore, a Policy applied to this Group will be
mapped to a user Group of a RADIUS class attribute. When the type of authentication database is LDAP, the
Attribute-Group Mapping function will be available to allow the administrator to assign a Group for LDAP attribute;
therefore, a Policy applied to this Group will be mapped to a user Group of a LDAP attribute. When the type of
database is SIP, the Group selection function will be available to allow the administrator to assign a Group option for
all SIP clients.
4.2.4.1 Global Policy
Global is the systems universal policy including Firewall Rules, Specific Routes Profile and Maximum
Concurrent Session which will be applied to all users unless the user has been regulated and applied with another
Policy.
Select Policy: Select Global to set the Firewall Profile, Specific Route Profile and Privilege Profile.
Firewall Profile: Global policy and each policy have a firewall service list and a set of firewall profile which is
composed of firewall rules.
Specific Route Profile: The default gateway of WAN1, WAN2, or a desired IP address can be defined in a
policy. When Specific Default Route is enabled, all clients applied this policy will access the Internet through this
default gateway.
Maximum Concurrent Sessions: Set the maximum concurrent sessions for each client.