Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

WDS Explanation

I'm having a hard time understanding what WDS is and whether I should enable it or not. I've read the documentation, but I don't understand if this is just for Cisco devices (clients and APs). I think I need it if I want to take advantage of rouge AP detection with the WLSE, but I'm not quite sure how to set it up. Like I've said, I've read the documentation, so I need a "WDS for dummies" explanation and instructions. thanks

2 REPLIES
Blue

Re: WDS Explanation

For Radio Management including Rouge AP detection via WLSE, you'd need to have WDS setup and 12.2(13)JA IOS on the APs. Here some tech tips on how to setup/use this: http://www.cisco.com/en/US/products/hw/wireless/ps4570/products_configuration_example09186a00801c951f.shtml

http://www.cisco.com/en/US/products/sw/cscowork/ps3915/products_white_paper09186a00801d8630.shtml

New Member

Re: WDS Explanation

For WSLE Radio scanning and monitoring features to work, you need to have one WDS per subnet. WDS is a logical entity within a Cisco IOS AP (yes, WDS is specific to Cisco APs).

You would configure one AP to become a WDS within a subnet. And you would need to setup one or more APs to act as backup WDSs. WDS is elected based on a priority value configured at the AP.

Once an AP gets elected as a WDS, other APs within the subnet become WDS-clients to that WDS (register with the WDS).

For WLSE to work, you would need to setup LEAP crendentials for WLSE-WDS link.

Setting up WDS and WDS-AP links:

STEP-1:

-------

on an AP designated to become WDS:

#wlccp wds priority 100 interface BVI1

#wlccp authentication-server infrastructure

STEP-2:

-------

on client APs:

#wlccp ap username USERNAME password PASSWORD

NOTE: AP that is hosting the WDS also need to be setup as client to itself.

STEP-3:

Configure NAS and above username/password at the RADIUS server.

STEP-4:

-------

Point your WDS to WLSE2.5

#wlccp wnm ip address 192.168.1.50

STEP-5:

-------

Configure WDS username/password at the WLSE2.5

NOTE: Username/password validated with the RADIUS server by the WDS.

VERIFYING

On WDS:

#show wlccp wds

(should show that WDS is active)

#show wlccp wds ap

(should show the list of registered APs)

#show wlccp wnm status

(you should see SECURITY KEYS SETUP message)

on AP:

#show wlccp ap

The above steps allow you to setup the infrastructure for radio scanning and monitoring, which inturn produces rogue APs and radio location reports.

For MN authentication to work, you would need to conigure little bit more.

223
Views
0
Helpful
2
Replies
CreatePlease login to create content