Certificate on wlan bridge 1400
I have a wlan network with EAP-TLS Authentication. So any clients have a certificate, but some client's in the fabrik have no wlan Adapter,
so i must use a wlan bridge (such as 1400 series). So is it possible to use a certificate on the wlan-bridge, to
have a TLS Tunnel from the bridge ?
regars Wolfgang
Hello Wolfgang,
do your wired clients already have a (legacy) e.g. RADIUS server to which they authenticate ?
If not, you will need an authentication server that can 'distinguish between wired and wireless authentication requests for the same user and handle them appropriately. E.g. Interlink Networks RAD-Series and Secure.XS servers have the flexibility and power to configure both wireless and wired authentication for the same user groups.
If you already have a legacy e.g. RADIUS server, both the EAP and the RADIUS have to work together, preferably by, as you suggested, a TLS tunnel.
Is that what you are asking ?
Regards,
GP
Similar Messages
-
Hallo Community,
wie im Anhang zu sehen ist folgender Aufbau in der Planungsphase.
Hardware
Cisco 886 VDSL/ADSL
Cisco SG 300-28P 28-port
cisco AP WPA 321
Cisco SPA 122
Einrichtung
Die Einrichtung des konvergenten Netzes erfolgt über zwei VLAN's (Daten / Voice).
Die Konfiguration des Switches / Telefone snom 720 wird über LLDP für die Auto Voice Provisionierung erfolgen.
Mit DSCP 46 EF die QoS
Router 886 fungiert als DHCP für das Voice VLAN
Die Frage an der community ist wie eine WLAN BRIDGE konvergent mit einem best practice aufgebaut wird.
Eine Anfrage bei cisco hat folgenden Lösungsvorschlag
Es werden drei WAP321 benötigt.
Ein WAP321 wird an dem Switch direkt verbunden und zwei WAP 321 sind in dem abgesetzten Office installiert.
Die zwei AP im externen Office sind notwendig aufgrund der WLAN Bridge die nur ein VLAN auf die MAC Adresse binden kann.
Die beiden AP im Office bekommen die SSID Voice und Data.
Was uns unklar ob diese Konfig so wirklich funktioniert oder ob es falsch verstanden ist.
Zu diesem Lösungsweg zwei konkrete Fragen.
1.) LLDP
Ist über die WLAN Bridge ein LLDP bis zum Switch möglich ?
Ist ein manuelles Einbinden der Telefone notwendig VLAN usw.
2.) Konfiguration
Wie sieht die Konfiguration WLAN Bridge / VLAN im Detail aus.
Mit dem Thema WLAN Bridge und Voice in Verbindung mit LLDP zurzeit wenig Erfahrung, kann jemand helfen?
Gruß
ReneHallo Rene,
1.) LLDP
Ist über die WLAN Bridge ein LLDP bis zum Switch möglich ?
LLDP ist ein Layer 2 protokol und ist im SG300-28P supportet.
Eine WLAN Bridge uebertraegt die Informationen von einer Stelle an die andere. Die Bruecke veraendert die Informationen nicht.
2.) Konfiguration
Wie sieht die Konfiguration WLAN Bridge / VLAN im Detail aus.
Eine Erklaerung zur WLAN Bridge ist im Anhang.
Gruss,
Friedrich Scharz -
ACS 4.1 Server and WLAN Bridge
Hi,
we have a Cisco Bridge (with 1310Gs)and have the problem that the non root bridge does not reach the ACS server with its authentication requests (when we use OPEN authentication the bridge works fine).
The authentication requests by the root Bridge are passed to ACS w/o any problems.
How can I tell the Root Bridge to pass on the AUTH-requests by the Non Root Bridge to ACS ? (we do not even see any failed requests from the NON Root AP on ACS - nothing arrives there...). Thanks for helping.
Cheers,
T.Following would be the right section to put this question,
Wireless - Mobility | Security and Network Management.
As issue is not with ACS, but with the way communication takes place between root and non root bridge.
Regards,
Prem -
Number of connections over WLAN bridge?
I have a network that has been working flawlessly for many years but when I recently added a printer I ran into some problems. The printer is connected to a switch that is connected to an Airport Express that is connected over WLAN to an Airport Extreme. My problem is that I can only connect four devices to the switch. If I connect a fifth device it does not get an IP adress until I disconnect one of the other four devices. Please see the attached overview of the network. Red dotted lines represent wireless connections.
Any ideas about what causes this behavior is appreciated. Thank you.on a jetpack or mi-fi 5 GB is nothing. Streaming Netflix can use 2.3 GB an HOUR. Even streaming YouTube in HD can use 1 or 2 GB per hour. I'm not sure why people think 5 GB is a lot for a regular internet connection. it's not. That why people should be using cable or DSL or fiber for internet
-
Hello,
I've been attempting to set up a wireless bridge between two short range locations. I can get the exact set up to work in a lab environment until I place it in the field.
I'm not too great with explaining myself so please forgive me.
VLAN 100 is our set Wireless VLAN for the network, and it is set in a trunking native mode on Switch1
We are attempting to get the switch on the other side of the wireless bridge to use VLAN 101
So we have Switch1 -> Wireless AP1 -> Wireless AP2 -> Switch2
Our wireless AP's are controlled using a WLC.
From the Wireless controller we are able to access and control both Wireless AP's and they show proper configuration.
Switch1 is directly connected to our network and is working properly with devices directly connected to it.
Wireless AP1 is working properly and broadcasts the proper wireless networks as well as connects to Wireless AP2.
Wireless AP2 can see Switch2 in the CDP and has all the information for it. Though it seems that Switch2 is unable to connect to the Wireless AP2 even with a direct connection.
Sorry if this is confusing!
I can give more information if necessary.
Thanks,
DavidThe point of a bridge is to span the same network across multiple devices. I bet if you configure a vlan 100 on switch 2 and attach the ap to that port, it will work.
Sent from Cisco Technical Support iPad App -
Question about aironet 1400 bridge
We are currently trying to set up a link
across the street using 2 bridges. My concern is more of a mounting one and what needs to be visible for the link to work
We are 13 stories up ..and the building across the street is 11 stories up...
We have purches the 9.5 dbi sector antenna. Can I keep the Bridge itself
on the inside and just mounth the antenna
on the outside? While reading the doc, it appeared that the Bridge itself had an antennaHi Richard,
The 1400 can be ordered in two models as shown below (with either one the Bridge itself will be mounted outdoors);
Cisco Aironet 1400 Series Bridge with 22.5 dBi Antenna
The Cisco Aironet 1400 Series Wireless Bridge features an 802.11a 5.8 GHz radio, which supports data rates up to 54 Mbps. With this option, a 22.5 dBi patch array antenna is integrated into the ruggedized enclosure
Cisco Aironet 1400 Series Wireless Bridge with Captured Antenna
Product Number
AIR-BR1410A-A-K9
Cisco Aironet 1400 Series Wireless Bridge with N-Type Connector
A connectorized version provides professional installers with an N-Type connector that allows the deployment of the root nodes of point-to-multipoint networks with omni-directional or sector antennas, or of high-gain dish antennas for longer links (Table 2).
Table 2 Cisco Aironet 1400 Series Wireless Bridge with N-Type Connector
Product Number
AIR-BR1410A-A-K9-N
http://www.cisco.com/en/US/products/hw/wireless/ps5279/prod_technical_reference09186a0080184933.html
Quick Start Guide Cisco Aironet 1400 Series Wireless Bridge
http://www.cisco.com/en/US/docs/wireless/bridge/1400/quick/guide/br1410qs.html
The 9.5 Sector Antenna is used for Point to Multi-Point Links;
1400 With 9.5 Sector;
http://www.cisco.com/en/US/docs/wireless/antenna/installation/guide/14sect.html
Hope this helps!
Rob -
EA6300 - Cascading the Linksys router to another router (LAN-LAN) - Does not Bridge built in Wifi AP
Regarding:
http://kb.linksys.com/Linksys/ukp.aspx?pid=80&vw=1&articleid=3733#
Cascading the Linksys router to another router (LAN-LAN)
The Bridge mode function on the EA6300 does not bridge the Wifi AP radio to the network.
The ethernet ports are bridged, and the router can see network devices and wifi devices connected to itand ping devices in both directions , but Wifi clients connecting to the unit running in bridge mode are not "bridged" to the network.
~
Using the built in webpage of the router, all devices can be pinged.
Ethernet RJ-45 devices plugged into it can ping the unit and pull up the units config webpage, but not ping wifi clients connected to it.
Wfii devices connected to its access point radio, can pull up the units config webpage, but not ping ethernet RJ-45 devices connected to it.
If there is a bridge, then the bridge is broken in half and not functional.
~
All devices are set with IPs on the same subnet, 192.168.2.x
~
I have a Netgear router in Bridge mode, and it works fine, connecting the wifi access point and RJ-45 ethernet clients together like it should be, so I know how Bridge mode... should work...
But it doesn't on this unit, it is not working completely out the factory door. It will bridge one Router to another via the RJ-45 ethernet ports, but its own AP radio is no longer bridged and connected (like when running in NAT
Note that doing cascading using NAT as described under "Cascading the Linksys router to another router (LAN-WAN)" works fine.Hi,
There's no WLAN bridge feature on the new Linksys Smart Wifi routers. You might also like to check and review these articles about Bridge Mode:
Article ID: 24583 - Setting up your Linksys Wi-Fi or Smart Wi-Fi Router to Bridge Mode
Article ID: 25714 - Setting up your Linksys Smart Wi-Fi Router to Bridge Mode using your Linksys Smart Wi-Fi Account
Hope this helps!
If everyone needs to believe in something, I believe I'll have another beer.. -
Hello,
I have a Telstra Turbo Elite wireless mobile boroadband device (see link) this device has no ethernet ports, it only connects to a mobile BB signal and then provides a WLAN that you can access wirelesly.
I want to connect my TC to this device wirlessly and then create a separate WLAN network that my household devices can connect to and use the internet connection provided by the Telstra device. So that I can use the TC to store my digital media and backup my laptop aswell.
How do I do this?
I tried turning the TC into a WLAN bridge but then i could not access the 2TB HDD in it and thus could not use Time Machine either.
Please Help.
SimonI want to connect my TC to this device wirlessly and then create a separate WLAN network that my household devices can connect to and use the internet connection provided by the Telstra device
Unfortunately, this is not possible.
The TC needs a wired Ethernet connection at its WAN port to be able to create a wireless network.
The only way that this might work would be to add a wireless to Ethernet bridge, then feed that signal to the WAN port on the TC. -
Encrypting Aironet 1410 bridge link using multiple VLANs
I've looked at the documentation available for Aironet 1400 series, and still would like to see a single document showing an example of
the best encryption/authentication available for bridge links using multiple VLANs.
As I understand it, 1400 series can support WPA-PSK using AES, which would work for me. I just can't picture how to integrate chapters 9 and 10 for the 'WEP and WEP Features' + 'Configuring Authentication Types' instructions.
I'm looking either for an example config, or a step-by-step that did all steps consecutively.
ThanksWhat doc are you refering to? If you want to encrypt the link from root bridge to non-root bridge, then WPA/TKIP-PSK is what you should use. Here is a link to how to setup your link ssid to WPA: http://www.cisco.com/en/US/docs/wireless/bridge/1400/12.2_15_JA/configuration/guide/p15auth.html#wp1044935
Don't worry about the example they show on the WEP, just use the configuration from the above link for your encryption.
Configuring a VLAN
Configuring your bridge to support VLANs is a five-step process:
1. Create subinterfaces on the radio and Ethernet interfaces.
2. Enable 802.1q encapsulation on the subinterfaces and assign one subinterface as the native VLAN.
3. Assign a bridge group to each VLAN.
4. (Optional) Enable WEP on the native VLAN. <-- Use WPA-PSK
5. Assign the bridge's SSID to the native VLAN.
http://www.cisco.com/en/US/docs/wireless/bridge/1400/12.2_15_JA/configuration/guide/p15vlan.html
Here is an example of vlan 1 (native) will be your management and your wireless link. vlan 10 & 20 will pass through the link.
BR# configure terminal
BR(config)# interface dot11radio0.1
BR(config-subif)# encapsulation dot1q 1 native
BR(config-subif)# bridge group 1
BR(config-subif)# exit
BR(config)# interface fastEthernet0.1
BR(config-subif)# encapsulation dot1q 1 native
BR(config-subif)# bridge group 1
BR(config)# interface fastEthernet0.10
BR(config-subif)# encapsulation dot1q 10
BR(config-subif)# bridge group 10
BR(config)# interface fastEthernet0.20
BR(config-subif)# encapsulation dot1q 20
BR(config-subif)# bridge group 20
BR(config-subif)# exit
BR(config)# interface dot11radio0
BR(config-if)# ssid batman
BR(config-ssid)# vlan 1
BR(config-ssid)# infrastructure-ssid
BR(config-ssid)# end -
Does anyone know what is the command I can use to show me the signal strength of the antennas during the installation process?
What I have been doing is to do a linktest and then show log to see what happenned. I think there should be a better way that the screen will update with all the data when there is a change in signals strength.
Thank you.If they aren't assocaited and the bridges are in Install Mode you can use the LED's
http://www.cisco.com/en/US/partner/docs/wireless/bridge/1400/installation/guide/higch3.html -
Extend public wlan range with Express/Extreme?
I'm connecting a public wlan network from home with the iBook. Unfortunately the wlan signal strength is ok just close to the windows. I'd like to have a device to pick the incoming signal, strengten it and spread it to the appartment. Could I use one of the Airport products for this? The public wlan expects the clients to be configured to use dhcp. The wlan is open with no excryption. To enhance the signal quality it might be necessary to use an external antenna placed outside the window and attached to the device with a cable, but I'm not sure if this is needed. Suggestions anyone?
iBook Mac OS X (10.4.3)An Express/Extreme cannot extend the range of a non-WDS base station. Even with a WDS base station, it would need to be configured to know about your Express/Extreme and use it as a WDS remote base station.
About the only thing I can suggest is to get a wireless-to-Ethernet bridge and connect a directional antenna to it, which would be pointed toward the nearest WLAN base station. You could then run Ethernet from the bridge to an Express or Extreme set up as an access point using a different wireless channel than the public WLAN, which would give you coverage within your residence. It would look something like this:
<PRE>
Public WLAN ))))) bridge --------- Express/Extreme ))))) iBook
</PRE>
(")))))" represents wireless, "-----" represents Ethernet) -
Native VLAN and Trunks on Bridges
I have a need for different Native VLANs on the radio side and the ethernet side. Can this be done on the non-root 1410 bridge?
The radio native VLAN is to support the management on teh 1410 bridges. I also need to attach a single device from another VLAN on the non-root bridge and I do not want to have to put in a switch just to break out that needed VLAN.The bridge supports only one SSID. You should assign the SSID to the native VLAN
1.Create subinterfaces on the radio and Ethernet interfaces.
2. Enable 802.1q encapsulation on the subinterfaces and assign one subinterface as the native VLAN.
3. Assign a bridge group to each VLAN.
4. (Optional) Enable WEP on the native VLAN.
5. Assign the bridge's SSID to the native VLAN.
To assign an SSID to a VLAN and how to enable a VLAN on the bridge radio and Ethernet ports
For further information click this link.
http://www.cisco.com/en/US/docs/wireless/bridge/1400/12.3_8_JA/configuration/guide/p38vlan.html -
A small networking / bridging issue
Hello everyone,
Here's my setup at my home :
Internet -> (eth0) Computer1 (eth1) -> Linksys (Wireless) ~~ (wlan0) Computer2 (eth0) -> IP Phone
My computer is my HTTP (apache2), DHCP (dnsmasq), Firewall (shorewall), DNS (dnsmasq). Computer 2 is my Freevo Box. I connected the IP Phone on it because it was right in the middle of the apartment and the line was clearer when we were far.
I got many headaches trying to fix this setup. Right now, I must create a new sub network for Computer 2 because wlan0 is in the 192.168.2.x but the dhcp is not working through so the eth0 of Computer2 is 192.168.3.1 and there's another DHCP server and shorewall to share Internet on Computer2.
Is there an easy way I can setup everything to be on the same subnetwork? And that, Comp1 will be accessible by TEL IP.
Thanks and have a nice dayCurrently you have 2 routers in your network :
Computer1 routes between eth0(internet) and eth1 ( computer2)
Computer2 routes between wlan0 (wireless connection with computer1) and eth0 (ip phone).
* sharing internet is also a router function
Effectively you have 3 different subnets :
internet-computer1
computer1 - computer2
computer2 - ip phone
You will need to put a wlan bridge device with an ethernet switch at the location of computer2.
eth0 from computer2 AND the ip phone are then connected to computer1 on the same subnet.
If the linksys device you have now has switch ports, you can also connect your ip phone there.
The linksys WET54GS5 is an example of a wlan bridge with built-in switch ports. -
Can anybody tell me how to connect aironet 1400 to wlc 5508 ??
I try to deploy cisco wlc 5508 to wireless network that based on cisco aironet bridge 1400 seirese , but it dose not work !
when i read the data sheet of the wlc 5508 i found that it is not support that type of bridges , is there anyway to connect aironet 1400 to wlc 5505 ?
thanxDuplicate posts. :P
Go here: https://supportforums.cisco.com/discussion/12136581/can-anybody-tell-me-how-connect-aironet-1400-wlc-5508 -
Hello all,
Help please!
The led "uplink activity" in the cisco aironet 1400 -power injector lr- is off. I have checked coaxial and connectors, they are ok. I can not access the bridge by ethernet or telnet. I have reseted the bridge also, but the signal keep off. Is it a software/hardware problem?
ThanksIf you trun the AP backwards, what lights do you see. There are three lights down at the bottom and there is a sequence in which they blink. Please keep an eye on the blinking LED's.
http://www.cisco.com/en/US/docs/wireless/bridge/1400/12.2_15_JA/configuration/guide/p15trb.html
http://www.cisco.com/en/US/docs/wireless/bridge/1400/installation/guide/higch6.html
I had the same problem and I upgraded the IOS on the bridges to the latest one and that did the trick. If it doesnot then its a hardware replacement.
HTH,
-as
Maybe you are looking for
-
How do I get more space to update my iPhone 4 to iOS7? I am currently on iOS 6.1.3 with 6.3 GB capacity, 1.4 GB available AFTER deleting all apps, photos, music, and videos, and I need 3.8 GB.
-
Dynamic PDF document. (adding pages in between from time to time)
hi, I am working on a catalogue that will be expanded from time to time. On this catalogue there will be a couple of content pages that have hyperlinks link to the proper pages. If I add pages at the end of the this catalogue, hyperlinks will not get
-
what is the magic line that I have to add to my jar application in order to call another jar program ??? Regards Amnon
-
HTML Content in UWL Description
Hi All, We are developing UWL Connector with third party system. We want to display HTML Content in UWL Description. I tried with embedding HTML tags with Description. But it displays description with HTML tags. Is it possible to embed HTML design w
-
The search function of List pages
I have a question about the search function of List pages. If field is chosen, "Equal to" and "Begins with" will be displayed automatically. But I want to be displayed "Contains at least one value". Is there any method of specifying this value as "Co