Wireless│BE NE ENG

2021-04-05
2021-04-05
0件

Be careful with meraki MR’s L3 firewall settings

Meraki, a cloud-managed network device that is one of the Cisco products, has attracted a lot of attention in recent years! It is also very easy to set up, manage, and become a very convenient and popular product in remote work environments. In addition, it is very speedy at the time of introduction, and it can be used simply by connecting Meraki to a port that is connected to the Internet. It is a very favorite product among me! Therefore, I will introduce the MR series “Default setting of firewall function” that I met many times in various environments in the author. About meraki MR series firewalls About features The Meraki MR series is an access point, but a firewall function is implemented. There is a “firewall”, but it is not a function like UTM, but “access list (ACL)” of layer 3 and layer 7. (*Adult content filtering is possible in NAT mode.) ） Layer 3-level ACLs allow you to specify transport protocols (UDP, TCP, ICMP), destination IP addresses (segments), and destination port numbers, allowing/blocking radio client traffic as it crosses mr uplinks. Note) Cisco devices basically have ALL Deny set on the last line, while Meraki MR has ALL […]

How to find a list of Cisco Wireless features for each product/OS

Cisco’s Wireless products have two types of operating systems, such as AyreOS and IOS XE, and there are various forms of management in which the Cisco00 series and catalyst series exist and are deployed in the Wireless Lan Controller (WLC). Ap modes include Autonomous, Lightweight, CME, and EWC, which are very complex to deploy. Of course, “difference” is also born in functions that can be used in different ap modes, OS, etc. To be honest, I want you to unify. I think that it is to be able to introduce / propose flexibly to various environments. You can easily check the list of functions by these modes and operating systems in “Feature Matrix” published by Cisco. Feature Matrix for Access Point Let’s take a < at The Feature Matrix for Wave 2 and 802.11ax (Wi-Fi 6) Access points > cisco official website. How do you see it? From “Table of Contents”, you can first scroll to the list of functions by clicking on the OS and mode you plan to introduce/use. For example, if you are using FlexConnect mode in Lightweight, see FlexConnect Feature Matrix (AspireOS). The left column “Features” contains common wireless and Cisco function names, and yes or […]

Cisco AP not powered by 802.3at from PoE switch

One of the requirements when introducing a wireless access point (AP) is “power supply”, isn’t it? There are many factors that must be considered, such as the amount of power supplied to the AP and the power supply method. If they are not met, the wireless transmission power will be insufficient and the cell range will be reduced, or the usable frequency band will be limited. There are various effects such as being done. So I connected the Cisco Catalyst 9120 Series to a PoE switch that could power at 802.3at (PoE +) in my previous environment, but for some reason it didn’t power at 802.3at. I will write about this including the cause element. Wireless AP is not powered at 802.3at. Matter I connected the AP (Catalyst 9120) to a switch (Catalyst 9200) that can supply power to PoE, but there was a phenomenon that power was not supplied at 802.3at (PoE +). Since the model of Catalyst 9200 has a model number that can be powered by PoE +, it is possible to secure a budget of up to 30 W with one port. Therefore, you can receive a maximum of 25.5W of power to the AP side […]