Guide to configuring eduroam using a Cisco wireless controller Best ...
Guide to configuring eduroam using a Cisco wireless controller Best ...
Guide to configuring eduroam using a Cisco wireless controller Best ...
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
What one selects under QoS depends <strong>to</strong> some extent on how the organisation otherwise supports<br />
QoS in its network. The first QoS options are TOS (Type Of Service) values for IP tagging.<br />
Unfortunately this tagging will apply <strong>to</strong> all clients in this WLAN and therefore in practice is not<br />
applicable <strong>to</strong> <strong>eduroam</strong>. On the other hand, WMM depends on the relationship between the <strong>controller</strong><br />
(access point) and clients, and may provide measurable benefits for real-time applications, so “WMM<br />
Policy Allowed” is recommended.<br />
Under Advanced there are certain options <strong>to</strong> which one must give some thought, but as a rule these<br />
are:<br />
Allow AAA Override: Enabled – This makes it possible <strong>to</strong> let RADIUS override the VLAN<br />
which has been assigned <strong>to</strong> the WLAN. In other words, a user of a different category is<br />
assigned <strong>to</strong> another VLAN. Failure <strong>to</strong> override will result in the user being assigned <strong>to</strong> the<br />
VLAN which is defined for the WLAN. In this way, it is possible <strong>to</strong> assign users <strong>to</strong> separate<br />
VLANs depending on their class, such as employee, student or guest, without <strong>using</strong> different<br />
<strong>wireless</strong> profiles.<br />
Aironet IE: Enabled – Useful for those clients with this type of support.<br />
P2P Blocking Action: Disabled – This determines whether <strong>wireless</strong> clients are able <strong>to</strong><br />
communicate directly with each other (via WLC) or not. For security reasons it is not<br />
advisable <strong>to</strong> allow clients <strong>to</strong> do this, so we recommend “Disabled”, but it is up <strong>to</strong> each<br />
organisation <strong>to</strong> consider this.<br />
25