Login
| Title | Size | Downloads |
|---|---|---|
| 00-About the WX Series Access Controllers Configuration Guides-book.zip | 9.17 MB |
- Table of Contents
- Related Documents
-
Contents
About the H3C WX Access Controller Series Configuration Guides
Models of WX series access controllers
Access controller module network scenario
Wireless switch network scenario
Feature matrix for the WX5000 series
Feature matrix for the WX6000 series
Feature matrix for the WX3024E wireless switch
About the H3C WX Access Controller Series Configuration Guides
The H3C WX Access Controller Series configuration guides are part of the H3C WX Access Controller Series documentation set. They describe the software features for the H3C WX Series Access Controllers, and guide you through the software configuration procedures. These configuration guides also provide configuration examples to help you apply the software features to different network scenarios. The H3C WX Series documentation set includes the following configuration guides:
|
Configuration guide |
Content |
|
Fundamentals Configuration Guide |
Describes how to access the command line interface (CLI), log in to and set up the AC, upgrade the software, manage files and licenses, and use the basic management functions. This guide includes: · CLI · Logging In to the Device · FTP and TFTP · File Management · Configuration File Management · Software Upgrade · License Management · Device Management |
|
WLAN Configuration Guide |
Describes how to configure WLAN services, WLAN security, WLAN roaming, WLAN RRM, WLAN QoS, WLAN IDS, and WLAN mesh link. This guide includes: · WLAN Interface · WLAN Service · WLAN Security · WLAN Roaming · WLAN RRM · WLAN IDS · WLAN QoS · WLAN Mesh Link · WLAN Optimization · Advanced WLAN |
|
Layer 2 Configuration Guide |
Covers Layer 2 technologies and features used on a LAN switched network, such as Ethernet interface, loopback and null interfaces, VLAN technology, MAC address table management, spanning tree, and Layer 2 forwarding. This guide includes: · Ethernet Interface · Loopback and Null Interfaces · VLAN · MAC Address Table · Ethernet Link Aggregation · Spanning Tree · Layer 2 Forwarding · PPP · QinQ · VLAN Termination |
|
Layer 3 Configuration Guide |
Describes IP addressing (including static and dynamic IPv4 and IPv6 address assignment), network performance optimization, ARP, and interoperation between IPv4 and IPv6. This guide includes: · ARP · IP Addressing · DHCP · DNS · NAT · IPv6 Basics · DHCPv6 · IPv6 DNS · Adjacency Table · Flow Classification · IP Performance Optimization · IPv6 Application · IP Routing Basics · Static Routing · IPv6 Static Routing |
|
IP Multicast Configuration Guide |
Covers Layer 2 IPv4 multicast protocol IGMP snooping, and Layer 2 IPv6 multicast protocol MLD snooping. This guide includes: · IGMP Snooping · MLD Snooping · Multicast VLAN · IPv6 Multicast VLAN |
|
ACL and QoS Configuration Guide |
Describes how to classify traffic with ACLs, and allocate network resources and manage congestions with QoS technologies to improve network performance and network use efficiency. You can use ACLs to help other function modules (such as QoS and IP routing) classify or filter traffic. This guide includes: · ACL · QoS |
|
Security Configuration Guide |
· Covers security features. The major security features available on the AC include: identity authentication (AAA , public Key and PKI), access security (802.1X, MAC authentication, portal, and port security), secure management (SSH, user profile, password control), SSL, and security protection. This guide includes: · AAA · 802.1X · MAC Authentication · Portal · Port Security · User Profile · Password Control · Public Key · PKI · SSH2.0 · SSL · TCP and ICMP Attack Protection · ARP Attack Protection · FIPS · IPsec |
|
High Availability Configuration Guide |
Describes high availability technologies and features for network fault detection and diagnosis. This guide includes: · High Availability Overview · VRRP · Stateful Failover · Track |
|
Network Management and Monitoring Configuration Guide |
Describes features that help you manage and monitor your network, for example, display system information, and use the ping and tracert commands to check and debug network connectivity. This guide includes: · System Maintenance and Debugging · NQA · NTP · IPC · SNMP · RMON · Mirroring · Information Center |
|
OAA Configuration Guide |
Describes the open application architecture (OAA), how to log in to the H3C open application platform (OAP) card connected to your device and reset the operating system of the OAP card, and the basic configurations of ACSEI. |
|
Access Controller Module Basic Configuration Guide |
Describes the compatibility matrix between access controller modules and Ethernet switches, and the required configurations for an access controller module to cooperate with an Ethernet switch. |
H3C WX series access controllers include the WX3000E series wireless switches, and WX5000 and WX6000 series access controllers. Table 1 shows the models of WX series.
Table 1 Models of WX series access controllers
|
Product |
Model |
|
WX3000E series wireless switches |
WX3024E wireless switch |
|
WX5000 series access controllers |
WX5002V2 access controller WX5004 access controller LSWM1WCM10 access controller module LSWM1WCM20 access controller module |
|
WX6000 series access controllers |
· WX6103 access controller · LSQM1WCMB0 access controller module · LSQM1WCMD0 access controller module · LSBM1WCM2A0 access controller module · LSRM1WCM2A1 access controller module · LSRM1WCM3A1 access controller module NOTE: The WX6103 access controller supports EWPX1WCMB0 and EWPX1WCMD0 main boards. |
AC network scenario
As Figure 1 shows, the AC connects to a Layer 2 or Layer 3 switch through GE1/0/1, the switch is connected to APs directly or over an IP network, and clients access the network through the APs.
Access controller module network scenario
As Figure 2 shows, the AC is installed on a Layer 2 or Layer 3 switch, the switch is connected to APs directly or over an IP network, and clients access the network through the APs.
Figure 2 Access controller module network Scenario
Wireless switch network scenario
As Figure 3 shows, the wireless switch that has both AC and switch functions is connected to APs directly or over an IP network, and clients access the network through the APs.
Figure 3 Unified switch network scenario
In this document, "Yes" means a feature or command is supported, and "No" means not supported.
Feature matrix for the WX5000 series
|
|
NOTE: The LSWM1WCM10 and LSWM1WCM20 modules on the WX5000 series adopt the OAA architecture. They work as OAP cards to exchange data and status and control information with the switches through their internal interfaces. Do not configure services such as QoS rate limiting and 802.1X authentication on XGE 1/0/1 of the LSWM1WCM10, and the logical aggregate interface BAGG1 formed by GE 1/0/1 and GE 1/0/2 of the LSWM1WCM20. |
Table 2 Feature matrix for the WX5000 series
|
Document |
Module |
Feature |
WX5002V2 |
WX5004 |
LSWM1WCM10 |
LSWM1WCM20 |
|
Fundamentals Configuration Guide |
Logging In to the Device |
AUX user interface |
No |
No |
Yes |
Yes |
|
Console user interface |
Yes |
Yes |
No |
No |
||
|
File Management |
Storage media supported |
CF |
CF |
CF |
Flash |
|
|
Configuration File Management |
Configuration file encryption |
No |
No |
No |
Yes |
|
|
License Management |
APs supported |
Supports 32 concurrent APs by default, and can be extended to support 64 APs. |
Supports 64 concurrent APs by default, and can be extended to support 256 APs. |
Supports 64 concurrent APs by default, and can be extended to support 256 APs. |
Supports 32 concurrent APs by default, and can be extended to support 128 APs. |
|
|
Device Management |
Configuring temperature alarm thresholds for boards (common) |
Yes |
Yes |
No |
Yes |
|
|
Configuring temperature alarm thresholds for boards (enhanced) |
No |
No |
No |
No |
||
|
Pluggable modules |
Yes |
Yes |
No |
No |
||
|
WLAN Configuration Guide |
WLAN Service |
AC Hot backup |
Yes |
Yes |
Yes |
No |
|
Maximum number of SSIDs supported |
128 |
256 |
256 |
128 |
||
|
WLAN IDS |
Maximum number of dynamic blacklist entries |
512 |
512 |
512 |
512 |
|
|
Maximum number of static blacklist entries |
64 |
64 |
64 |
32 |
||
|
Layer 2 Configuration Guide |
Ethernet Interface Configuration |
Combo port |
Yes |
Yes |
No |
No |
|
Shutting down an Ethernet interface |
Yes |
Yes |
Yes. Do not use the shutdown command on internal interfaces; otherwise, the normal operation of the device will be affected. |
No |
||
|
Configuring interface rate negotiation |
Yes |
Yes |
No |
Does not support configuring half duplex or full duplex mode on Ethernet interfaces |
||
|
Configuring flow control on an Ethernet interface |
Yes |
Yes |
No |
No |
||
|
Configuring loopback detection on an Ethernet interface |
Yes on GE interfaces only |
Yes on GE interfaces only |
Internal loopback detection supported on XGE interfaces only |
Internal loopback detection supported on GE interfaces only |
||
|
Ethernet Link Aggregation (only static link aggregation supported) |
Link aggregation |
Yes |
Yes |
No |
Yes |
|
|
Spanning Tree |
STP |
Yes |
Yes |
No |
No |
|
|
PPP |
PPPoE server |
Yes |
Yes |
Yes |
Yes |
|
|
QinQ |
QinQ |
No |
No |
No |
No |
|
|
VLAN Termination |
VLAN termination |
No |
No |
No |
No |
|
|
Layer 3 Configuration Guide |
NAT |
NAT |
No |
No |
No |
No |
|
ACL and QoS Configuration Guide |
QoS |
Configuring interface rate limit |
Yes |
Yes |
Yes |
Yes |
|
Security Configuration Guide |
AAA |
Specifying a backup source address for RADIUS packets |
Yes |
Yes |
Yes |
No |
|
Portal |
Specifying the portal group to which the portal service backup interface belongs |
Yes |
Yes |
Yes |
No |
|
|
Configuring stateful failover for portal authentication |
Yes |
Yes |
Yes |
No |
||
|
Port Security |
Maximum number of PSK users |
4096 |
4096 |
4096 |
2048 |
|
|
IPsec |
IPsec stateful failover |
Yes |
Yes |
Yes |
Yes |
|
|
Setting the anti-replay information synchronization intervals in IPsec stateful failover mode |
Yes |
Yes |
Yes |
Yes |
||
|
High Availability Configuration Guide |
VRRP |
VRRP |
Yes |
Yes |
Yes |
No |
|
Stateful Failover |
Stateful failover |
Yes |
Yes |
Yes |
No |
|
|
Network Management and Monitoring Configuration Guide |
IPC |
IPC |
Yes |
Yes |
Yes |
No |
|
Mirroring |
Port mirroring |
Yes |
Yes |
No |
No |
|
|
Information center |
Log file |
Yes |
Yes |
Yes |
No |
|
|
OAA Configuration Guide |
OAA |
OAP module configuration |
No |
No |
No |
No |
|
Access Controller Module Basic Configuration Guide |
Access Controller Module Basic Configuration |
Access Controller Module Basic Configuration |
No |
No |
Yes |
Yes |
Feature matrix for the WX6000 series
|
|
NOTE: · The switch interface board of the WX6103 adopts OAA architecture and is installed on the slot with purple paint at slot sides. The WX6103 supports EWPX1WCMB0 and EWPX1WCMD0 main boards. The switch interface board exchanges data, and state and control information with the main board through internal interfaces. Do not configure services such as QoS rate limiting and 802.1X authentication on the internal interfaces. · This document only shows the feature matrix for the main boards (EWPX1WCMB0 and EWPX1WCMD0) of the WX6103. For configuration information about the switch interface board of the WX6103, see the H3C WX6103 Access Controller Switch Interface Board Configuration Guide and H3C WX6103 Access Controller Switch Interface Board Command Reference. · The LSQM1WCMB0/LSQM1WCMD0/LSBM1WCM2A0/LSRM1WCM2A1/LSRM1WCM3A1 of WX6000 series are OAP cards. Each OAP card is installed on the expansion slot of the switch and exchanges data and status and control information with the switch through internal interfaces. Do not configure services such as QoS rate limiting and 802.1X authentication on the internal interfaces. |
Table 3 Feature matrix for the WX6000 series
|
Document |
Module |
Feature |
WX6103 |
LSQM1WCMB0 |
LSQM1WCMD0 |
LSBM1WCM2A0 |
LSRM1WCM2A1 |
LSRM1WCM3A1 |
|
Fundamentals Configuration Guide |
Logging In to the Device |
AUX user interface |
No |
Yes |
Yes |
Yes |
Yes |
Yes |
|
Console user interface |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
||
|
File Management |
Storage media supported |
CF and USB |
CF and USB |
CF and USB |
CF and USB |
CF and USB |
CF and USB |
|
|
Configuration File Management |
Configuration file encryption |
No |
No |
No |
No |
No |
No |
|
|
License Management |
APs supported |
EWPX1WCMB0 supports 128 concurrent APs by default, and can be extended to support 640 APs. EWPX1WCMD0 supports 128 concurrent APs by default, and can be extended to support 1024 APs. |
Supports 128 concurrent APs by default, and can be extended to support 640 APs. |
Supports 128 concurrent APs by default, and can be extended to support 1024 APs. |
Supports 128 concurrent APs by default, and can be extended to support 640 APs. |
Supports 128 concurrent APs by default, and can be extended to support 640 APs. |
Supports 128 concurrent APs by default, and can be extended to support 1024 APs. |
|
|
Device Management |
Configuring temperature alarm thresholds for boards (common) |
Only supported by EWPX1WCMB0. |
Yes |
No |
Yes |
Yes |
No |
|
|
Configuring temperature alarm thresholds for boards (enhanced) |
Only supported by EWPX1WCMD0. |
No |
Yes |
No |
No |
Yes |
||
|
Pluggable modules |
No |
No |
No |
No |
No |
No |
||
|
WLAN Configuration Guide |
WLAN Service |
AC Hot backup |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
|
Maximum number of SSIDs supported |
512 |
512 |
512 |
512 |
512 |
512 |
||
|
WLAN IDS |
Maximum number of dynamic blacklist entries |
512 |
512 |
512 |
512 |
512 |
512 |
|
|
Maximum number of static blacklist entries |
64 |
64 |
64 |
64 |
64 |
64 |
||
|
Layer 2 Configuration Guide |
Ethernet Interface Configuration |
Combo port |
No |
No |
No |
No |
No |
No |
|
Shutting down an Ethernet interface |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
||
|
Configuring interface rate negotiation |
No |
No |
No |
No |
No |
No |
||
|
Configuring flow control on an Ethernet interface |
No |
No |
No |
No |
No |
No |
||
|
Configuring loopback detection on an Ethernet interface |
Internal loopback detection supported on XGE interfaces only |
Internal loopback detection supported on XGE interfaces only |
Internal loopback detection supported on XGE interfaces only |
Internal loopback detection supported on XGE interfaces only |
Internal loopback detection supported on XGE interfaces only |
Internal loopback detection supported on XGE interfaces only |
||
|
Ethernet Link Aggregation (only static link aggregation supported) |
Link aggregation |
No on EWPX1WCMB0; yes on EWPX1WCMD0 |
No |
Yes |
No |
No |
Yes |
|
|
Spanning Tree |
STP |
No |
No |
No |
No |
No |
No |
|
|
PPP |
PPPoE server |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
|
|
QinQ |
QinQ |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
|
|
VLAN Termination |
VLAN termination |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
|
|
Layer 3 Configuration Guide |
NAT |
NAT |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
|
ACL and QoS Configuration Guide |
QoS |
Configuring interface rate limit |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
|
Security Configuration Guide |
AAA |
Specifying a backup source address for RADIUS packets |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
|
Portal |
Specifying the portal group to which the portal service backup interface belongs |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
|
|
Configuring stateful failover for portal authentication |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
||
|
Port Security |
Maximum number of PSK users |
20480 |
20480 |
20480 |
20480 |
20480 |
20480 |
|
|
IPsec |
IPsec stateful failover |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
|
|
Setting the anti-replay information synchronization intervals in IPsec stateful failover mode |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
||
|
High Availability Configuration Guide |
VRRP |
VRRP |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
|
Stateful Failover |
Stateful failover |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
|
|
Network Management and Monitoring Configuration Guide |
IPC |
IPC |
Yes |
Yes |
Yes |
Yes |
Yes |
Yes |
|
Mirroring |
Port mirroring |
No |
No |
No |
No |
No |
No |
|
|
Information center |
Log file |
Yes |
No |
Yes |
No |
No |
Yes |
|
|
OAA Configuration Guide |
OAA |
OAP module configuration |
Yes |
No |
No |
No |
No |
No |
|
Access Controller Module Basic Configuration Guide |
Access Controller Module Basic Configuration |
Access Controller Module Basic Configuration |
No |
Yes |
Yes |
Yes |
Yes |
Yes |
Feature matrix for the WX3024E wireless switch
|
|
NOTE: · The access controller engine and switching engine of the WX3024E adopt the OAA architecture. The switching engine is integrated on the access controller engine as an OAP software. You actually log in to the access controller engine when you log in to the wireless switch by default. The GE 1/0/1 and GE 1/0/2 interfaces of the access controller engine form a logical interface BAGG1, and the GE1/0/29 and GE1/0/30 interfaces of the switching engine form a logical interface BAGG1. The two BAGG1 interfaces exchange data, status, and control information. Do not configure services such as QoS rate limiting and 802.1X authentication on these internal interfaces. · This document only shows the feature matrix for the access controller of the WX3024E. For feature and configuration information about the switching engine of the WX3024E, see the H3C WX3024E Wireless Switch Switching Engine Configuration Guide and H3C WX3024E Wireless Switch Switching Engine Command Reference. |
Table 4 Feature matrix for the WX3024E
|
Document |
Module |
Feature |
WX3024E |
|
Fundamentals Configuration Guide |
Logging In to the Device |
AUX user interface |
No |
|
Console user interface |
Yes |
||
|
File Management |
Storage media supported |
Flash |
|
|
Configuration File Management |
Configuration file encryption |
Yes |
|
|
License Management |
APs supported |
Supports 24 concurrent APs by default, and can be extended to support 60 APs. |
|
|
Device Management |
Configuring temperature alarm thresholds for boards (common) |
No |
|
|
Configuring temperature alarm thresholds for boards (enhanced) |
No |
||
|
Pluggable modules |
No |
||
|
WLAN Configuration Guide |
WLAN Service |
AC Hot backup |
No |
|
Maximum number of SSIDs supported |
64 |
||
|
WLAN IDS |
Maximum number of dynamic blacklist entries |
256 |
|
|
Maximum number of static blacklist entries |
32 |
||
|
Layer 2 Configuration Guide |
Ethernet Interface Configuration |
Combo interface |
No on the access controller engine. Yes on the switching engine, on which four1000Base-X SFP ports and four 10/100/1000Base-T autosensing Ethernet ports numbered 21 through 24 form combo interfaces. |
|
Shutting down an Ethernet interface |
Yes NOTE: GE1/0/1 of the access controller engine communicates with GE1/0/29 of the switching engine; GE1/0/2 of the access controller engine communicates with GE1/0/30 of the switching engine. Do not shut down these ports to avoid affecting the switch. |
||
|
Configuring interface rate negotiation |
Does not support half duplex and full duplex. |
||
|
Configuring flow control on an Ethernet interface |
No |
||
|
Configuring loopback detection on an Ethernet interface |
Internal loopback detection supported on GE interfaces |
||
|
Ethernet Link Aggregation (only static link aggregation supported) |
Link aggregation |
Yes |
|
|
Spanning Tree |
STP |
No |
|
|
PPP |
PPPoE server |
No |
|
|
QinQ |
QinQ |
No |
|
|
VLAN Termination |
VLAN termination |
No |
|
|
Layer 3 Configuration Guide |
NAT |
NAT |
No |
|
ACL and QoS Configuration Guide |
QoS |
Configuring interface rate limit |
No |
|
Security Configuration Guide |
AAA |
Specifying a backup source address for RADIUS packets |
No |
|
Portal |
Specifying the portal group to which the portal service backup interface belongs |
No |
|
|
Configuring stateful failover for portal authentication |
No |
||
|
Port Security |
Maximum number of PSK users |
1024 |
|
|
IPsec |
IPsec stateful failover |
No |
|
|
Setting the anti-replay information synchronization intervals in IPsec stateful failover mode |
No |
||
|
High Availability Configuration Guide |
VRRP |
VRRP |
No |
|
Stateful Failover |
Stateful failover |
No |
|
|
Network Management and Monitoring Configuration Guide |
IPC |
IPC |
No |
|
Mirroring |
Port mirroring |
No |
|
|
Information center |
Log file |
No |
|
|
OAA Configuration Guide |
OAA |
OAP module configuration |
Yes |
|
Access Controller Module Basic Configuration Guide |
Access Controller Module Basic Configuration |
Access Controller Module Basic Configuration |
No |
