{"id":710,"date":"2020-03-10T10:44:48","date_gmt":"2020-03-10T09:44:48","guid":{"rendered":"https:\/\/blog.mhasin.eu\/?p=710"},"modified":"2020-03-20T13:49:36","modified_gmt":"2020-03-20T12:49:36","slug":"cisco-9800-configure-wlans","status":"publish","type":"post","link":"https:\/\/blog.mhasin.eu\/?p=710","title":{"rendered":"Cisco 9800 Configure WLANs"},"content":{"rendered":"\n<figure class=\"wp-block-image size-large is-style-zoooom\"><img loading=\"lazy\" decoding=\"async\" width=\"899\" height=\"397\" src=\"https:\/\/blog.mhasin.eu\/wp-content\/uploads\/2020\/03\/obr\u00e1zok-12.png\" alt=\"\" class=\"wp-image-711\" srcset=\"https:\/\/blog.mhasin.eu\/wp-content\/uploads\/2020\/03\/obr\u00e1zok-12.png 899w, https:\/\/blog.mhasin.eu\/wp-content\/uploads\/2020\/03\/obr\u00e1zok-12-300x132.png 300w, https:\/\/blog.mhasin.eu\/wp-content\/uploads\/2020\/03\/obr\u00e1zok-12-768x339.png 768w\" sizes=\"auto, (max-width: 899px) 100vw, 899px\" \/><\/figure>\n\n\n\n<ul class=\"wp-block-list\"><li> Status  \u2013 urcuje ci je dana siet aktivna<\/li><li> SSID  \u2013 nazov siete<\/li><li> Broadcast SSID  \u2013 moznost vysielania siete<\/li><li> Radio Policy  \u2013 moznost vysielania siete len na urcitych radiach (B\/G\/N\/A\u2026)<\/li><\/ul>\n\n\n\n<figure class=\"wp-block-image size-large is-style-zoooom\"><img loading=\"lazy\" decoding=\"async\" width=\"898\" height=\"333\" src=\"https:\/\/blog.mhasin.eu\/wp-content\/uploads\/2020\/03\/obr\u00e1zok-13.png\" alt=\"\" class=\"wp-image-712\" srcset=\"https:\/\/blog.mhasin.eu\/wp-content\/uploads\/2020\/03\/obr\u00e1zok-13.png 898w, https:\/\/blog.mhasin.eu\/wp-content\/uploads\/2020\/03\/obr\u00e1zok-13-300x111.png 300w, https:\/\/blog.mhasin.eu\/wp-content\/uploads\/2020\/03\/obr\u00e1zok-13-768x285.png 768w\" sizes=\"auto, (max-width: 898px) 100vw, 898px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">nastavenie zabezpecenia danej siete:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li> Layer 2 Security Mode :<ul><li>WPA + WPA2<\/li><li>WPA2 + WPA3 \u2013 preferovane pouzivat<\/li><\/ul><\/li><li> MAC Filtering \u2013 moznost urcena na definovanie MAC klientov ktory maju povolenie na pripojenie k sieti<\/li><li> Fast Transition \u2013 umoznuje rychle prepinanie klienta medzi AP pri vyuzicvani roumingu. Taktiez je mozne pri prepinani medzi controlermi v jednej mobility grupe. Tento algoritmus umoznuje vymenit si s AP na ktore dochadza k pripojeniu PTK kluce este skor ako dojde ku pripojeniu na dany pristupovy bod. Tato funkcionalita ma obmedzenia:<ul><li>nieje podporovana v MESH sietach<\/li><li>nutne pouzivat centralne riadenie cez controller<\/li><li>nieje podporvane u AP v standalone rezime<\/li><li>Fast rouming medzi localnou a centralnou authentifikaciou nieje podporovany<\/li><li>nutne mat podporu na strane klienta<\/li><\/ul><\/li><\/ul>\n\n\n\n<ul class=\"wp-block-list\"><li>nutne pri konfiguracii pouzit  Auth Key Mgmt:<ul><li>  FT + PSK                              <\/li><li>  FT + 802.1x                                                      <\/li><\/ul><\/li><\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"> WPA3 povolenie:  <\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"499\" height=\"270\" src=\"https:\/\/blog.mhasin.eu\/wp-content\/uploads\/2020\/03\/obr\u00e1zok-20.png\" alt=\"\" class=\"wp-image-817\" srcset=\"https:\/\/blog.mhasin.eu\/wp-content\/uploads\/2020\/03\/obr\u00e1zok-20.png 499w, https:\/\/blog.mhasin.eu\/wp-content\/uploads\/2020\/03\/obr\u00e1zok-20-300x162.png 300w\" sizes=\"auto, (max-width: 499px) 100vw, 499px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">Dokument\u00e1cia:<\/p>\n\n\n\n<div class=\"wp-block-file\"><a href=\"https:\/\/blog.mhasin.eu\/wp-content\/uploads\/2020\/03\/Cisco_Catalyst_9800_Series_Wireless_Controllers_WPA3.pdf\">Cisco_Catalyst_9800_Series_Wireless_Controllers_WPA3<\/a><a href=\"https:\/\/blog.mhasin.eu\/wp-content\/uploads\/2020\/03\/Cisco_Catalyst_9800_Series_Wireless_Controllers_WPA3.pdf\" class=\"wp-block-file__button\" download>Stiahnu\u0165<\/a><\/div>\n\n\n\n<p class=\"wp-block-paragraph\"><\/p>\n\n\n\n<figure class=\"wp-block-image size-large is-style-zoooom\"><img loading=\"lazy\" decoding=\"async\" width=\"894\" height=\"875\" src=\"https:\/\/blog.mhasin.eu\/wp-content\/uploads\/2020\/03\/obr\u00e1zok-14.png\" alt=\"\" class=\"wp-image-716\" srcset=\"https:\/\/blog.mhasin.eu\/wp-content\/uploads\/2020\/03\/obr\u00e1zok-14.png 894w, https:\/\/blog.mhasin.eu\/wp-content\/uploads\/2020\/03\/obr\u00e1zok-14-300x294.png 300w, https:\/\/blog.mhasin.eu\/wp-content\/uploads\/2020\/03\/obr\u00e1zok-14-768x752.png 768w\" sizes=\"auto, (max-width: 894px) 100vw, 894px\" \/><\/figure>\n\n\n\n<ul class=\"wp-block-list\"><li>Aironet IE \u2013 Atrib cisco zariadeni ktorimi je mozne docielit lepsie parametri pripojenia. Je odporucane tuto moznost mat vypnutu kvoli kompatibilite roznych klientov. <\/li><li> P2P Blocking Action  \u2013 moznost blokovania ARP. Zariadenia vranci jednej WLAN sa navzajom nevidia. Tuto moznost nieje mozne aplikovat na WLAN s povolenim multicast. <\/li><li>11v BSS Transition Support \u2013 ide o funkcionalitu ktora zabezpecuje komunikaciu klienta s AP  podla ktorej dochadza k prepinaniu  sa medzi AP.  Funkcionalita slizi na zabezpecenia pripojenia u pohyblivych klientov ked nieje mozne navolit akgresivitu roamingu. Klienti sa mozu sprava tym padom nepredvidatelne a volit prepnutie na ine AP az v pride ze nechytaju signal z povodneho AP.  Funkcionalita  802.11v je v novsich sietovvich kartach a novsich operacnych systemoch (nutne mat najnovsi driver\/ operacncy system s podporou) Tato funkcionalita nuti klienta sa prepojit a vybrat AP s lepsim signalom.<ul><li>  Optimized Roaming Disassociation Timer   \u2013 pri spusteni roumingu AP posle klientovi spravu o reasociacii na WLAN. Ak klient v tomto casovom intervale neodpovie cize nepoziada o zmemenu pripojenia na ine AP dojde k jeho pripojeniu na zvolene AP. <\/li><li> BSS Max Idle Service  \u2013  pom\u00e1ha klientom a\u00a0pr\u00edstupov\u00fdm bodom pri efekt\u00edvnom rozhodovan\u00ed o\u00a0tom,  ako dlho zachov\u00e1va\u0165 spojenie, ke\u010f nedoch\u00e1dza k\u00a0\u017eiadnej prem\u00e1vke  prenosov. Zariadenie tieto inform\u00e1cie vyu\u017e\u00edva na predl\u017eovanie v\u00fddr\u017ee  bat\u00e9rie zariadenia. <\/li><\/ul><\/li><\/ul>\n\n\n\n<ul class=\"wp-block-list\"><li> Universal Admin  \u2013 tato moznost zabezpeci pristup k manazment IP adresa controler a AP. <\/li><li>Load Balance \u2013 zabezpecuje rovnomerne zatazenie vsetkych AP ak je to mozne<\/li><li>Band Select \u2013 vyber medzi 5GHz a 2.4GHz<\/li><li>IP Source Guard \u2013 Ochrana voci nastavenia statickych IP adries<\/li><li>WMM Policy \u2013 <\/li><li>mDNS Mode \u2013  multicast Domain Name System . Fukncionalita sa pouziva na prepojenie tlaciarni, appleTV\u2026 <\/li><li><\/li><\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><\/p>\n<div class=\"pdf24Plugin-cp\"> \t<form name=\"pdf24Form0\" method=\"post\" action=\"https:\/\/doc2pdf.pdf24.org\/wordpress.php\" target=\"pdf24PopWin\" onsubmit=\"var pdf24Win = window.open('about:blank', 'pdf24PopWin', 'resizable=yes,scrollbars=yes,width=600,height=250,left='+(screen.width\/2-300)+',top='+(screen.height\/3-125)+''); pdf24Win.focus(); if(typeof pdf24OnCreatePDF === 'function'){void(pdf24OnCreatePDF(this,pdf24Win));}\"> \t\t<input type=\"hidden\" name=\"blogCharset\" value=\"Cw1x07UAAA==\" \/><input type=\"hidden\" name=\"blogPosts\" value=\"MwQA\" \/><input type=\"hidden\" name=\"blogUrl\" value=\"yygpKSi20tdPyslP18vNSCzOzNNLLQUA\" \/><input type=\"hidden\" name=\"blogName\" value=\"c\/LxdwcA\" \/><input type=\"hidden\" name=\"blogValueEncoding\" value=\"gzdeflate base64\" \/><input type=\"hidden\" name=\"postId_0\" value=\"Mzc0AAA=\" \/><input type=\"hidden\" name=\"postTitle_0\" value=\"c84sTs5XsLQwMFBwzs9Ly0wvLUpVCPdx9CsGAA==\" \/><input type=\"hidden\" name=\"postLink_0\" value=\"yygpKSi20tdPyslP18vNSCzOzNNLLdW3L7A1NzQAAA==\" \/><input type=\"hidden\" name=\"postAuthor_0\" value=\"y00syfcwNAIA\" \/><input type=\"hidden\" name=\"postDateTime_0\" value=\"MzIwMtA1MNY1NFAwNLAyMLYysQAA\" \/><input type=\"hidden\" name=\"postContent_0\" value=\"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\" \/> \t\t<a href=\"https:\/\/www.pdf24.org\" target=\"_blank\" title=\"www.pdf24.org\" rel=\"nofollow\"><img src=\"https:\/\/blog.mhasin.eu\/wp-content\/plugins\/pdf24-post-to-pdf\/img\/pdf_32x32.png\" alt=\"\" border=\"0\" height=\"32\" \/><\/a> \t\t<span class=\"pdf24Plugin-cp-space\">\u00a0\u00a0<\/span> \t\t<span class=\"pdf24Plugin-cp-text\">Send article as PDF<\/span> \t\t<span class=\"pdf24Plugin-cp-space\">\u00a0\u00a0<\/span> \t\t<input class=\"pdf24Plugin-cp-input\" style=\"margin: 0px;\" type=\"text\" name=\"sendEmailTo\" placeholder=\"Enter email address\" \/> \t\t<input class=\"pdf24Plugin-cp-submit\" style=\"margin: 0px;\" type=\"submit\" value=\"Send\" \/> \t<\/form> <\/div>","protected":false},"excerpt":{"rendered":"Status \u2013 urcuje ci je dana siet aktivna SSID \u2013 nazov siete Broadcast SSID \u2013 moznost vysielania siete Radio Policy \u2013 moznost vysielania siete len na urcitych radiach (B\/G\/N\/A\u2026) nastavenie zabezpecenia danej siete: Layer 2 Security Mode : WPA + WPA2 WPA2 + WPA3 \u2013 preferovane pouzivat MAC Filtering \u2013 moznost urcena na definovanie MAC klientov ktory maju povolenie na pripojenie k sieti Fast Transition \u2013 umoznuje rychle prepinanie klienta medzi AP pri vyuzicvani roumingu.&hellip;\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"arc_restricted_post":false,"footnotes":""},"categories":[3],"tags":[],"class_list":["post-710","post","type-post","status-publish","format-standard","hentry","category-cisco"],"_links":{"self":[{"href":"https:\/\/blog.mhasin.eu\/index.php?rest_route=\/wp\/v2\/posts\/710","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.mhasin.eu\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.mhasin.eu\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.mhasin.eu\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.mhasin.eu\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=710"}],"version-history":[{"count":11,"href":"https:\/\/blog.mhasin.eu\/index.php?rest_route=\/wp\/v2\/posts\/710\/revisions"}],"predecessor-version":[{"id":820,"href":"https:\/\/blog.mhasin.eu\/index.php?rest_route=\/wp\/v2\/posts\/710\/revisions\/820"}],"wp:attachment":[{"href":"https:\/\/blog.mhasin.eu\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=710"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.mhasin.eu\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=710"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.mhasin.eu\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=710"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}