D-Link DWL-8600AP User Manual page 561

D-Link UWS User Manual
Field
RADIUS Use Network
Configuration
RADIUS Accounting
Security
Client QoS
D-Link
Oct. 2015
Table 330: Wireless Network Configuration (Cont.)
Description
This field controls whether the VAP uses the network RADIUS settings or the global
RADIUS settings.
• Enable: Use RADIUS Servers defined on the Wireless Network Configuration
page.
• Disable: Use RADIUS servers defined on the Wireless Global Configuration page.
Select this option to enable RADIUS accounting for wireless clients.
The default AP profile does not use any security mechanism by default. In order to
protect your network, D-Link strongly recommends that you select a security
mechanism so that unauthorized wireless clients cannot gain access to your
network.
The following WLAN network security options are available:
• None
• WEP
• WPA/WPA2
• WPA Personal
• WPA Enterprise
If you select WEP or WPA/WPA2 as your security mechanism, a dialogue box asks if
you want to change network security. After you click OK, additional fields appear,
and any network settings that you modified are applied to the switch.
"Configuring AP Security" on page 564
additional fields you can configure if you select WEP or WPA/WPA2.
The Client QoS parameters allow the switch to apply access control lists (ACLs) and
differentiated service (DiffServ) policies to wireless clients associated to the AP and
extend the switch QoS features into the wireless domain.
Select this option to enable Client QoS operation for wireless clients that associate
with the AP using the SSID in the previous field.
Client QoS provides control over certain QoS aspects of wireless clients that connect
to the network, such as the amount of bandwidth and type of traffic an individual
client is allowed to send and receive. To control general categories of traffic, such as
HTTP traffic or traffic from a specific subnet, you can configure ACLs and assign them
to one or more VAPs. Client QoS also allows you to configure per-client conditioning
of various micro-flows through DiffServ.
ACLs are a collection of permit and deny conditions, called rules, that provide
security by blocking unauthorized users and allowing authorized users to access
specific resources. ACLs can block any unwarranted attempts to reach network
resources.
Each ACL is a set of up to ten rules applied to traffic sent from a wireless client or to
be received by a wireless client. Each rule specifies whether the contents of a given
field should be used to permit or deny the packet from being transmitted. Rules can
be based on various criteria and may apply to one ore more fields within a packet,
such as the source or destination IP address, the source or destination L4 port, or the
protocol carried in the packet.
DiffServ policies are a useful tool for establishing general micro-flow definition and
treatment characteristics that can be applied to each wireless client, both inbound
and outbound, when it is authenticated on the network. Packets are classified and
processed based on defined criteria. The classification criteria is defined by a class.
The processing is defined by a policy's attributes.
describes the security mechanisms and the
Unified Wired and Wireless Access System
Basic Setup
Page 561