Application Note: Deploy a ProSecure UTM in a Multi SSID Multi VLAN network
Page 1
...Guest Engineering Layer 2/ Layer 3 switch configuration LAN IP 192.168.1.239 Management VLAN: 1 Membership : all ports Untagged in configuring a UTM 10 (Firmware version 1.0.16-0) and a WNDAP330 (Firmware version 3.0.3) to host a multi-SSID and multi-VLAN network. UTM 10 Configuration LAN IP 192.168.1.1 VLAN1 (Corporate - VLAN30 (ID 30)... 2.0 The diagram below shows a typical scenario. VLAN 20 (ID 20) SSID Engineering - The solution will allow separating the Wireless traffic and Wired traffic of each of the VLANs configured, from any other VLAN which will exist on the Wired or...
...Guest Engineering Layer 2/ Layer 3 switch configuration LAN IP 192.168.1.239 Management VLAN: 1 Membership : all ports Untagged in configuring a UTM 10 (Firmware version 1.0.16-0) and a WNDAP330 (Firmware version 3.0.3) to host a multi-SSID and multi-VLAN network. UTM 10 Configuration LAN IP 192.168.1.1 VLAN1 (Corporate - VLAN30 (ID 30)... 2.0 The diagram below shows a typical scenario. VLAN 20 (ID 20) SSID Engineering - The solution will allow separating the Wireless traffic and Wired traffic of each of the VLANs configured, from any other VLAN which will exist on the Wired or...
Layer 2/Layer and WNDAP330 to host a multi-SSID and multi-VLAN network.
Page 1
... and Wired traffic of each of the VLANs configured, from any other VLAN which will exist on the Wired or Wireless LAN. VLAN3 VLAN2 DGFV338 LAN to 1/0/2 WNDAP330 Management VLAN = 1 Management IP = 192.168.0.235 SSID "VLAN2" (VLAN ID = 2), Open system None SSID "VLAN3" (VLAN ID = 3), ... multi-SSID multi-VLAN network with traffic separation This document describes the steps to undertake in configuring a Layer 2/Layer 3 switch (in this document a FMS7382S with firmware 7.3.1.7) and a WNDAP330 to LAN Internet Corporate LAN Version 1.0
... and Wired traffic of each of the VLANs configured, from any other VLAN which will exist on the Wired or Wireless LAN. VLAN3 VLAN2 DGFV338 LAN to 1/0/2 WNDAP330 Management VLAN = 1 Management IP = 192.168.0.235 SSID "VLAN2" (VLAN ID = 2), Open system None SSID "VLAN3" (VLAN ID = 3), ... multi-SSID multi-VLAN network with traffic separation This document describes the steps to undertake in configuring a Layer 2/Layer 3 switch (in this document a FMS7382S with firmware 7.3.1.7) and a WNDAP330 to LAN Internet Corporate LAN Version 1.0
Layer 2/Layer and WNDAP330 to host a multi-SSID and multi-VLAN network.
Page 3
....0.235 SSID VLAN2 (VLAN ID=2), Network authentication (Optional) SSID VLAN3 (VLAN ID=3), Network authentication (Optional) Layer2/Layer3 switch Model: FSM7328S (or any Layer2, Layer3 switch) Firmware: 7.3.1.7 (or above) VLAN1 Management IP = 192.168.0.254 Ports = 1/0/1, 1/0/6-1/0/28 (All ports untagged) VLAN2 Ports = 1/0/2, 1/0/3 (PVID = 2, Untagged), 1/0/6 (Tagged) VLAN3 Ports = 1/0/4, 1/0/5 (PVID = 3, Untagged), 1/0/6 (Tagged) Version...
....0.235 SSID VLAN2 (VLAN ID=2), Network authentication (Optional) SSID VLAN3 (VLAN ID=3), Network authentication (Optional) Layer2/Layer3 switch Model: FSM7328S (or any Layer2, Layer3 switch) Firmware: 7.3.1.7 (or above) VLAN1 Management IP = 192.168.0.254 Ports = 1/0/1, 1/0/6-1/0/28 (All ports untagged) VLAN2 Ports = 1/0/2, 1/0/3 (PVID = 2, Untagged), 1/0/6 (Tagged) VLAN3 Ports = 1/0/4, 1/0/5 (PVID = 3, Untagged), 1/0/6 (Tagged) Version...
WNDAP350 User Manual
Page 3
...Übereinstimmung mit den grundlegenden Anforderungen und den übrigen einschlägigen Bestimmungen der Richtlinie 1999/5/EG befindet. Hereby, NETGEAR Inc., declares that this user's guide may become the cause of Directive 1999/5/EC. Read instructions for usage of radio spectrum...krav og øvrige relevante krav i direktiv 1999/5/EF. Europe - NOTE: This product's firmware limits operation to only the channels allowed in such residential areas. Käesolevaga kinnitab NETGEAR Inc. tímto prohlašuje, že tento Radiolan je ve shode se zá...
...Übereinstimmung mit den grundlegenden Anforderungen und den übrigen einschlägigen Bestimmungen der Richtlinie 1999/5/EG befindet. Hereby, NETGEAR Inc., declares that this user's guide may become the cause of Directive 1999/5/EC. Read instructions for usage of radio spectrum...krav og øvrige relevante krav i direktiv 1999/5/EF. Europe - NOTE: This product's firmware limits operation to only the channels allowed in such residential areas. Käesolevaga kinnitab NETGEAR Inc. tímto prohlašuje, že tento Radiolan je ve shode se zá...
WNDAP350 User Manual
Page 6
... for indoor usage to reduce potentail for harmful interference to cochannel mobile satellite systems. High power radars are firmware programmed at the factory to match the intended destination. This device has been designed to operate with RSS... Date: Product Family: Product Name: Home or Business Product: Language: Publication Part Number: Publication Version Number: WNDAP350 November 2009 Wireless Access Point ProSafe Dual Band Wireless-N Access Point WNDAP350 Business English 202-10534-01 1.1 vi v1.1, November 2009 The availability of some specific channels and/or operational frequency...
... for indoor usage to reduce potentail for harmful interference to cochannel mobile satellite systems. High power radars are firmware programmed at the factory to match the intended destination. This device has been designed to operate with RSS... Date: Product Family: Product Name: Home or Business Product: Language: Publication Part Number: Publication Version Number: WNDAP350 November 2009 Wireless Access Point ProSafe Dual Band Wireless-N Access Point WNDAP350 Business English 202-10534-01 1.1 vi v1.1, November 2009 The availability of some specific channels and/or operational frequency...
WNDAP350 User Manual
Page 15
... of bridge-mode wireless access points. Power/Test, LAN speed, LAN activity, and wireless activity for each BSSID. • Hidden Mode. ProSafe Dual Band Wireless-N Access Point WNDAP350 Reference Manual • Multiple operating modes: - You can also be supplied to the URL you can be used. • Rogue AP detection. The Rogue AP detection feature shows a list of compliant Netgear PoE switches...
... of bridge-mode wireless access points. Power/Test, LAN speed, LAN activity, and wireless activity for each BSSID. • Hidden Mode. ProSafe Dual Band Wireless-N Access Point WNDAP350 Reference Manual • Multiple operating modes: - You can also be supplied to the URL you can be used. • Rogue AP detection. The Rogue AP detection feature shows a list of compliant Netgear PoE switches...
WNDAP350 User Manual
Page 71
Note: The Web browser used to the WNDAP350 wirelss access point with a wireless link. You must support HTTP uploads, such as new software is connected to the WNDAP350 wirelss access point with a Ethernet cable. ProSafe Dual Band Wireless-N Access Point WNDAP350 Reference Manual Upgrading the Wireless Access Point Software The software of the WNDAP350 wirelss access point is stored in FLASH memory, and can be upgraded as Microsoft Internet Explorer 6.0 or...
Note: The Web browser used to the WNDAP350 wirelss access point with a wireless link. You must support HTTP uploads, such as new software is connected to the WNDAP350 wirelss access point with a Ethernet cable. ProSafe Dual Band Wireless-N Access Point WNDAP350 Reference Manual Upgrading the Wireless Access Point Software The software of the WNDAP350 wirelss access point is stored in FLASH memory, and can be upgraded as Microsoft Internet Explorer 6.0 or...
WNDAP350 User Manual
Page 72
...NETGEAR website, save it to your wireless access point will automatically restart. The upgrade process typically takes about 2 minutes. This file can be saved (backed up) to a user's computer, retrieved (restored) from the main menu, and then select Firmware Upgrade. Figure 3-4 Firmware upgrade screen To upgrade the WNDAP350 firmware: 1. The Firmware... WNDAP350 wirelss access point settings are stored in the wireless access point in Figure 3-4 above . ProSafe Dual Band Wireless-N Access Point WNDAP350 Reference Manual The Web browser used to upload new firmware into the WNDAP350 must...
...NETGEAR website, save it to your wireless access point will automatically restart. The upgrade process typically takes about 2 minutes. This file can be saved (backed up) to a user's computer, retrieved (restored) from the main menu, and then select Firmware Upgrade. Figure 3-4 Firmware upgrade screen To upgrade the WNDAP350 firmware: 1. The Firmware... WNDAP350 wirelss access point settings are stored in the wireless access point in Figure 3-4 above . ProSafe Dual Band Wireless-N Access Point WNDAP350 Reference Manual The Web browser used to upload new firmware into the WNDAP350 must...
WNDAP350 User Manual
Page 79
.... Current Wireless Settings for Displays the Media Access Control address (MAC address) of the wireless access point. Current Wireless Settings for the wireless access point communication. Ethernet MAC Address Displays the Media Access Control address (MAC address) of the access point. Current Time Displays the current system time of the wireless access point's Ethernet port. a link to operate this article is licensed for use. ProSafe Dual Band Wireless-N Access Point WNDAP350 Reference...
.... Current Wireless Settings for Displays the Media Access Control address (MAC address) of the wireless access point. Current Wireless Settings for the wireless access point communication. Ethernet MAC Address Displays the Media Access Control address (MAC address) of the access point. Current Time Displays the current system time of the wireless access point's Ethernet port. a link to operate this article is licensed for use. ProSafe Dual Band Wireless-N Access Point WNDAP350 Reference...
WNDAP350 User Manual
Page 127
ProSafe Dual Band Wireless-N Access Point WNDAP350 Reference Manual | |-time> | | |-custom-ntp-server | | |-daylightsaving | | |-ntp-client | | |-ntp-server | | |-time-zone | | | |-vlan> | | |-management-vlan | | |-untagged-vlan | | |-untagged-vlan-status | | | |-exit |-file |-firmware-upgrade |-password |-restore-configuration |-restore-default-password |-show> | |-configuration | |-interface> | | |-eth> | | | |-statistics wlan> | | | |-2.4GHz> | | | | |-configuration | | | | |-knownaplist | | | | |-stationlist | | | | |-statistics | | | | |-trusted-stationlist | | | | |-unknownaplist 5GHz...
ProSafe Dual Band Wireless-N Access Point WNDAP350 Reference Manual | |-time> | | |-custom-ntp-server | | |-daylightsaving | | |-ntp-client | | |-ntp-server | | |-time-zone | | | |-vlan> | | |-management-vlan | | |-untagged-vlan | | |-untagged-vlan-status | | | |-exit |-file |-firmware-upgrade |-password |-restore-configuration |-restore-default-password |-show> | |-configuration | |-interface> | | |-eth> | | | |-statistics wlan> | | | |-2.4GHz> | | | | |-configuration | | | | |-knownaplist | | | | |-stationlist | | | | |-statistics | | | | |-trusted-stationlist | | | | |-unknownaplist 5GHz...
WNDAP350 User Manual
Page 131
ProSafe Dual Band Wireless-N Access Point WNDAP350 Reference Manual documentation 2-5 DTIM (Delivery Traffic Indication Message) interval 4- 6, 4-8 dual band concurrent, use 1-2 dynamic encryption key generation, support 1-2 dynamic IP address, configure 2-11 dynamic per frame rekeying 2-4 E EDCA (Enhanced Distributed Channel Access) 4-9 Ethernet RJ-45 port 1-10 ethernet cable, connect 2-11 I Infrastructure mode, selecting or changing channels 2-19 interference, channel settings 2-16 interference, least...
ProSafe Dual Band Wireless-N Access Point WNDAP350 Reference Manual documentation 2-5 DTIM (Delivery Traffic Indication Message) interval 4- 6, 4-8 dual band concurrent, use 1-2 dynamic encryption key generation, support 1-2 dynamic IP address, configure 2-11 dynamic per frame rekeying 2-4 E EDCA (Enhanced Distributed Channel Access) 4-9 Ethernet RJ-45 port 1-10 ethernet cable, connect 2-11 I Infrastructure mode, selecting or changing channels 2-19 interference, channel settings 2-16 interference, least...
WNDAP350 User Manual
Page 134
ProSafe Dual Band Wireless-N Access Point WNDAP350 Reference Manual default 5-3 support documentation 2-5 syslog server setup 3-11 system information 3-12 fields 3-13 system requirements ...17, 2-20 Trap 3-2 troubleshooting 5-1 access point, connecting to 5-3 configuring, 5-3 LAN activity 5-2 power connection 5-1 timeout error 5-3 wireless Internet connection 5-2 wireless LAN activity l 5-2 trusted wireless stations list MAC authentication 2-45 U unauthorized access, secure from 2-1 untagged VLAN default settings 2-7 upgradeable firmware, support for 1-3 V VLAN (802.1Q) 2-33 VLAN ID DHCP server...
ProSafe Dual Band Wireless-N Access Point WNDAP350 Reference Manual default 5-3 support documentation 2-5 syslog server setup 3-11 system information 3-12 fields 3-13 system requirements ...17, 2-20 Trap 3-2 troubleshooting 5-1 access point, connecting to 5-3 configuring, 5-3 LAN activity 5-2 power connection 5-1 timeout error 5-3 wireless Internet connection 5-2 wireless LAN activity l 5-2 trusted wireless stations list MAC authentication 2-45 U unauthorized access, secure from 2-1 untagged VLAN default settings 2-7 upgradeable firmware, support for 1-3 V VLAN (802.1Q) 2-33 VLAN ID DHCP server...