Dell PowerConnect WAirWave 7.
Copyright © 2012 Aruba Networks, Inc. Aruba Networks trademarks include , Aruba Networks®, Aruba Wireless Networks®, the registered Aruba the Mobile Edge Company logo, and Aruba Mobility Management System®. Dell™, the DELL™ logo, and PowerConnect™ are trademarks of Dell Inc. All rights reserved. Specifications in this manual are subject to change without notice. Originated in the USA. All other trademarks are the property of their respective owners.
Contents Preface....................................................................................................................................................................... 1 Document Organization..................................................................................................................... 1 Note, Caution, and Warning Icons .................................................................................................. 2 Contacting Support ...............................
ARM Traps......................................................................................................................... 20 Ensuring That IDS And Auth Traps Display in AirWave..................................................... 20 Understanding WMS Offload Impact on Dell PowerConnect W-Series Infrastructure....... 22 Chapter 6 Dell PowerConnect W-Series Specific Capabilities in AirWave .............................. 23 Dell PowerConnect W-Series Traps for RADIUS Auth and IDS Tracking ..........
Preface The preface provides an overview of the best practices guide and contact information for Dell PowerConnect W, and includes the following sections: “Document Organization” on page 1 “Note, Caution, and Warning Icons” on page 2 “Contacting Support” on page 2 Document Organization This best practices guide includes instructions and examples of optimal ways to use and integrate the Dell PowerConnect W-AirWave Management Platform (AirWave) with Dell PowerConnect W-Series devices and infrastr
Note, Caution, and Warning Icons This document uses the following notice icons to emphasize advisories for certain actions, configurations, or concepts: NOTE: Indicates helpful suggestions, pertinent information, and important things to remember. CAUTION: Indicates a risk of damage to your hardware or loss of data. WARNING: Indicates a risk of personal injury or death. Contacting Support Web Site Support 2 | Preface Main Website dell.com Support Website support.dell.
Chapter 1 Overview This document provides best practices for leveraging AirWave to monitor and manage your Dell PowerConnect W-Series infrastructure. Dell PowerConnect W-Series wireless infrastructure provides a wealth of functionality such as firewall, VPN, remote AP, IDS, IPS, and ARM, as well as an abundance of statistical information. Follow the simple guidelines in this document to garner the full benefit of your Dell PowerConnect W-Series infrastructure.
Prerequisites for Integrating Dell PowerConnect W-Series Infrastructure You will need the following information to monitor and manage your Dell PowerConnect W-Series infrastructure: SNMP community string (monitoring and discovery) Telnet/SSH credentials (configuration only) Enable password (configuration only) NOTE: Without proper Telnet/SSH credentials AirWave will not be able to acquire license and serial information from controllers.
Chapter 2 Configuring AirWave for Global Dell PowerConnect W-Series Infrastructure This chapter explains how to optimally configure Dell PowerConnect W-AirWave to globally manage your global Dell PowerConnect W-Series infrastructure, and contains the following topics: “Disabling Rate Limiting in AMP Setup > General” on page 5 “Entering Credentials in Device Setup > Communication” on page 5 “Setting Up Recommended Timeout and Retries” on page 6 “Setting Up Time Synchronization” on page 7
Figure 3 Credentials in Device Setup > Communication 4. Enter the required fields for configuration and basic monitoring: Telnet/SSH Username Telnet/SSH Password “enable” Password 5. Enter the required fields for WMS Offload: SNMPv3 Auth Protocol SNMPv3 Privacy Protocol SNMPv3 Username Auth Password Privacy Password NOTE: The protocols should be SHA and DES in order for WMS Offload to work. 6. Select Save when you are finished.
Figure 4 Timeout settings in Device Setup > Communication 4. Select Save. Setting Up Time Synchronization Setting up NTP on AirWave On the AMP Setup > Network page, locate the Network Time Protocol (NTP) section. The Network Time Protocol is used to synchronize the time between AirWave and your network reference NTP server. NTP servers synchronize with external reference time sources, such as satellites, radios, or modems. NOTE: Specifying NTP servers is optional.
Dell PowerConnect W-ArubaOS 6.0.1 or later NOTE: ArubaOS 6.0.1 can report RF utilization metrics, while ArubaOS 6.1 is necessary to also obtain classified interferer information. Access points - Dell PowerConnect W AP-105, AP-92, AP-93, AP-125, AP-124, AP-134, AP-135 Controllers - Dell PowerConnect W 600 Series or 3000 Series AirWave Setup Follow these steps in AirWave: 1. Navigate to AMP Setup > General. 2.
Chapter 3 Configuring a Dell PowerConnect W Group in AirWave It is prudent to establish one or more Dell PowerConnect W Groups within AirWave. During the discovery process you will move new discovered controllers into this group. This chapter contains the following topics: “Basic Monitoring Configuration” on page 9 “Advanced Configuration” on page 10 Basic Monitoring Configuration 1. Navigate to Groups > List. 2. Select Add. 3.
11. Configure the proper SNMP Version for monitoring the Dell PowerConnect W-Series infrastructure. Figure 7 Group SNMP Version for Monitoring 12. Select Save and Apply. Advanced Configuration Refer to the Dell PowerConnect W-AirWave 7.5 Configuration Guide located at Home > Documentation for detailed instructions. 10 | Configuring a Dell PowerConnect W Group in AirWave Dell PowerConnect W-AirWave 7.
Chapter 4 Discovering Dell PowerConnect WSeries Infrastructure AirWave utilizes Dell PowerConnect W-Series topology to efficiently discover downstream infrastructure. This chapter guides you through the process of discovering and managing your Dell PowerConnect W-Series device infrastructure.
Figure 8 Dell PowerConnect W Credentials in Device Setup > Add 4. Enter the required fields for configuration and basic monitoring: Telnet/SSH Username Telnet/SSH password “enable” password 5. Enter the required fields for WMS Offload SNMPv3 Auth Protocol SNMPv3 Privacy Protocol SNMPv3 Username Auth Password Privacy Password NOTE: The protocols should be SHA and DES in order for WMS Offload to work.
CAUTION: If you are using SNMPv3 and the controller's date/time is incorrect, the SNMP agent will not respond to SNMP requests from AirWave SNMP manager. This will result in the controller and all of its downstream access points showing as Down in AirWave. 6. Assign controller to a Group and Folder. 7. Ensure Monitor Only option is selected. 8. Select Add. 9. Navigate to APs/Devices > New page. 10. Select the Dell PowerConnect W-Series master controller you just added from the list of new devices. 11.
14 | Discovering Dell PowerConnect W-Series Infrastructure Dell PowerConnect W-AirWave 7.
Chapter 5 AirWave and Dell PowerConnect WSeries Integration Strategies This chapter describes strategies for integrating AirWave and Dell PowerConnect W-Series devices and contains the following topics: “Integration Goals” on page 15 “Example Use Cases” on page 16 “Prerequisites for Integration” on page 17 “Enable Stats Utilizing AirWave” on page 17 “WMS Offload with AirWave” on page 18 “Define AirWave as a Trap Host using ArubaOS CLI” on page 18 “Understanding WMS Offload Impact
Example Use Cases The following are example use cases of integration strategies: When to Use Enable Stats You want to pilot AMWS and doesn't want to make major configuration changes to their infrastructure or manage configuration from AirWave. NOTE: Enable Stats still pushes a small subset of commands to the controllers via SSH. See “Enable Stats Utilizing AirWave” on page 17.
Prerequisites for Integration If you have not discovered the Dell infrastructure or configured credentials, refer to the previous chapters of this book: Chapter 2, “Configuring AirWave for Global Dell PowerConnect W-Series Infrastructure” on page 5 Chapter 3, “Configuring a Dell PowerConnect W Group in AirWave” on page 9 Chapter 4, “Discovering Dell PowerConnect W-Series Infrastructure” on page 11 Enable Stats Utilizing AirWave To enable stats on the Dell PowerConnect W-Series controllers, follo
audit these setting (display mismatches) and you will need to apply to the controller by hand. See Appendix A, “ArubaOS and AirWave CLI Commands” for detailed instructions.
(Controller-Name) (config) # snmp-server host version 2c NOTE: Ensure the SNMP community matches those that were configured in Chapter 2, “Configuring AirWave for Global Dell PowerConnect W-Series Infrastructure” . (Controller-Name) (config) # snmp-server trap source (Controller-Name) (config) # write mem NOTE: AirWave supports SNMP v2 traps and SNMP v3 informs in ArubaOS 3.4 and higher. SNMP v3 traps are not supported.
wlsxFrameRetryRateExceeded wlsxFrameReceiveErrorRateExceeded wlsxFrameFragmentationRateExceeded wlsxFrameBandWidthRateExceeded wlsxFrameLowSpeedRateExceeded wlsxFrameNonUnicastRateExceeded wlsxChannelRateAnomaly wlsxNodeRateAnomalyAP wlsxNodeRateAnomalySta wlsxEAPRateAnomaly wlsxSignalAnomaly wlsxSequenceNumberAnomalyAP wlsxSequenceNumberAnomalySta wlsxApFloodAttack wlsxInvalidMacOUIAP wlsxInvalidMacOUISta wlsxStaRepeatWEPIVViolation wls
Figure 11 Verify IP Address on APs/Devices > Monitor Page Verify that there is a SNMPv2 community string that matches the SNMP Trap community string on the controller. (Controller-Name) # show snmp community SNMP COMMUNITIES ---------------COMMUNITY ACCESS VERSION --------- -----------public READ_ONLY V1, V2c (Controller-Name) # #show snmp trap-host SNMP TRAP HOSTS --------------HOST VERSION ---------10.2.32.
Understanding WMS Offload Impact on Dell PowerConnect W-Series Infrastructure When offloading WMS, it is important to understand what functionality is migrated to AirWave and what functionality is deprecated. The following ArubaOS tabs and sections are deprecated after offloading WMS: Plan - The tab where floor plans are stored and heatmaps are generated. Prior to offloading WMS, ensure that you have exported floor plans from ArubaOS and imported them into AirWave.
Chapter 6 Dell PowerConnect W-Series Specific Capabilities in AirWave This chapter discusses Dell PowerConnect W-Series specific capabilities in AirWave and contains the following topics: “Dell PowerConnect W-Series Traps for RADIUS Auth and IDS Tracking” on page 23 “Remote AP Monitoring” on page 24 “ARM and Channel Utilization Information” on page 24 “Viewing Controller License Information” on page 27 “Rogue Device Classification” on page 27 “Rules-Based Controller Classification” o
Remote AP Monitoring To monitor remote APs, follow these steps: 1. From the APs/Devices > List page, filter on the Remote Device column to find remote devices. 2. To view detailed information on the remote device, select the device name. The page illustrated in Figure 15 appears. Figure 15 Remote AP Detail Page 3. You can also see if there are users plugged into the wired interfaces in the Connected Users list. NOTE: This feature is only available when the remote APs are in split tunnel and tunnel modes.
See the Dell PowerConnect W-AirWave User Guide in Home > Documentation for more information on the data displayed in the Radio Statistics page for these devices. VisualRF and Channel Utilization To view how channel utilization is impacting an area within a building, follow these steps: 1. Navigate to a floor plan by clicking on the thumbnail on a device’s APs/Devices > Monitor page or navigating to VisualRF > Floor Plans page. 2. Select the Overlays menu. 3. Select Utilization overlay. 4.
Figure 18 Channel Utilization Trigger 3. Enter the duration evaluation period. 4. Select Add New Trigger Condition. 5. Create a trigger condition for Radio Type and select the frequency to evaluate. 6. Select total, receive, transmit, or interference trigger condition. 7. Set up any restrictions or notifications (refer to the Dell PowerConnect W-AirWave 7.5 User Guide in Home > Documentation for more details) 8. When finished, select Add. Viewing Channel Utilization Alerts 1.
Viewing Controller License Information Follow these steps to view your controller’s license information in AirWave: 1. Navigate to the APs/Devices > Monitor page of a controller under AirWave management. 2. Select the License link in the Device Info section. A pop-up window appears listing all licenses. Figure 20 License Popup from APs/Devices > Monitor Rogue Device Classification Complete this section if you have completed WMS Offload procedure above.
Figure 21 Rogue Detail Page Illustration 2. Select the proper classification from the RAPIDS Classification Override drop-down menu. CAUTION: Changing the controller's classification within the AirWave UI will push a reclassification message to all controllers managed by the AirWave server that are in Groups with Offloading the WMS database set to Yes. To reset the controller classification of a rogue device on AirWave, change the controller classification on the AirWave UI to unclassified.
CAUTION: Changing User Classification within the AirWave UI will push a user reclassification message to all controllers managed by the AirWave server that are in Groups with Offloading the WMS database set to Yes. All users will be set to a default classification of unclassified when WMS is first offloaded. As APs report subsequent classification information about users, this classification will be reflected within AirWave UI and propagated to controllers that AirWave manages.
Figure 24 Configure Rules for Classification 4. Select Add. 5. Select desired controller classification to use as an evaluation in RAPIDS. 6. Select Save. 30 | Dell PowerConnect W-Series Specific Capabilities in AirWave Dell PowerConnect W-AirWave 7.
Appendix A ArubaOS and AirWave CLI Commands Enable Channel Utilization Events CAUTION: Enabling these commands on ArubaOS versions prior to 6.1 can result in performance issues on the controller. To enable channel utilization events utilizing the Dell PowerConnect W-Series ArubaOS CLI, use SSH to access a local or master controller’s command-line interface, enter enable mode, and issue the following commands: (Controller-Name) # configure terminal Enter Configuration commands, one per line.
(Controller-Name) (config) # write mem This command creates the AirWave server as an SNMPv3 Trap Host in the controller's running configuration. This command also creates an SNMPv3 user on the controller with authentication protocol configured to SHA and privacy protocol DES. The user and password must be at least eight characters, because the Net-SNMP package in AirWave adheres to this IETF recommendation. ArubaOS automatically creates Auth and Privacy passwords from this single password.
To disable debugging, SSH into the controller, enter “enable” mode, and issue the following commands: (Controller-Name) # show running-config | include logging level debugging If there is output, then use the following commands to remove the debugging: (Controller-Name) # configure terminal Enter Configuration commands, one per line.
snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server trap trap trap trap trap trap trap trap trap trap trap trap trap trap trap trap trap trap trap trap trap trap trap trap trap trap trap trap
Appendix B AirWave Data Acquisition Methods The following table describes the different methods through which AirWave acquires data from Dell PowerConnect W-Series devices on the network.
36 | AirWave Data Acquisition Methods Dell PowerConnect W-AirWave 7.
Appendix C WMS Offload Details WMS Offload instructs the master controller to stop correlating ARM, WIPS, and WIDS state information amongst its local controllers because AirWave will assume this responsibility. Figure 25 depicts how AirWave communicates state information with local controllers. Figure 25 ARM/WIPS/WIDS Classification Message Workflow State Correlation Process 1. AP-1-3-1 hears rogue device A. 2.
7. AirWave periodically polls each local controller's MIB to ensure state parity with the AirWave database. If the local controller's device state does not comply with the AirWave database, AirWave will send a reclassification message to bring it back into compliance. NOTE: The Rogue Detail page displays a BSSID table for each rogue that displays the desired classification and the classification on the device.
Appendix D Increasing Location Accuracy Understand Band Steering's Impact on Location Band steering can negatively impact location accuracy when testing in highly mobile environment. The biggest hurdle is scanning times in 5 GHz frequency. Table 7 Location accuracy impact Operating Frequency Total Channels Scanning Frequency Scanning Time Total Time One Pass 2.4 GHz 11 (US) 10 seconds 110 milliseconds 121.21 seconds 5 GHz 24 (US) 10 seconds 110 milliseconds 242.
Figure 27 Typical Tag Deployment Prerequisites You will need the following information to monitor and manage your Dell PowerConnect W-Series infrastructure.
4. Select Save at the bottom of the page. Enable RTLS on the Controller NOTE: RTLS can only be enabled on the master controller and it will automatically propagate to all local controllers. SSH into master controller, enter enable mode, and issue the following commands: (Controller-Name) # configure terminal Enter Configuration commands, one per line.
Issue the logs and tail rtls commands to check the RTLS log file and verify that Tag chirps are making it to the AirWave server. [root@AMPServer]# logs [root@AMPServer]# tail rtls payload: 00147aaf01000020001a1ec02b3200000001000000137aae0100000c001a1ec02b320000001a1e82b322 590006ddff02 1224534900.588245 - got 96 bytes from 10.51.1.39 on port 5050 Mon Oct 20 13:35:00 2008: 1224534900.588338 - got 96 bytes from 10.51.1.
44 | Increasing Location Accuracy Dell PowerConnect W-AirWave 7.
