Segurança Em Redes De Comunicações

VLANs on Access Points

AP have trunk ports to distribution/core switches.

“Wired” VLANs must/can be extended to the wireless domain.

  • e.g., VLAN 30 “Green” and VLAN 10 “Red”.

Each SSID can be mapped to a VLAN.

  • Different SSID/VLAN can have different security policies.

Wireless VLANs should be configured as end-to-end.

  • Mobility and AP roaming should not break Layer 3 connectivity.

  • IP address should be the same → same VLAN with campus.

A Native VLAN is required to provide management capability and client authentications.

  • Never extended to the wireless domain!!

    • e.g., VLAN 1.

AP Placement and Channel Allocation

802.11n or 802.11ac 5GHz deployment does not have the overlap or collision domain issues of 2.4GHz.

PreviousVirtual LANsNextSpanning Tree Protocol

Last updated