Dell PowerConnect W-AirWave 7.
Copyright © 2013 Aruba Networks, Inc. Aruba Networks trademarks include , Aruba Networks®, Aruba Wire® less Networks , the registered Aruba the Mobile Edge Company logo, and Aruba Mobility Management System®. Dell™, the DELL™ logo, and PowerConnect™ are trademarks of Dell Inc. All rights reserved. Specifications in this manual are subject to change without notice. Originated in the USA. All other trademarks are the property of their respective owners.
Contents Overview 1 Understanding Dell PowerConnect W-Series Topology 1 Prerequisites for Integrating Dell PowerConnect W-Series Infrastructure 1 Configuring AirWave for Global Dell PowerConnect W-Series Infrastructure 3 Disabling Rate Limiting in AMP Setup > General 3 Entering Credentials in Device Setup > Communication 4 Setting Up Recommended Timeout and Retries 5 Setting Up Time Synchronization 5 Setting up NTP on AirWave 5 Manually Setting the Clock on a Controller 6 Enabling Suppo
Ensuring That IDS And Auth Traps Display in AirWave 21 Understanding WMS Offload Impact on Dell PowerConnect W-Series Infrastructure Dell PowerConnect W-Series Specific Capabilities in AirWave 23 Dell PowerConnect W-Series Traps for RADIUS Auth and IDS Tracking 23 Remote AP Monitoring 23 ARM and Channel Utilization Information 24 VisualRF and Channel Utilization 24 Configuring Channel Utilization Triggers 25 Viewing Channel Utilization Alerts 27 View Channel Utilization in RF Health Reports
Chapter 1 Overview This document provides best practices for leveraging AirWave to monitor and manage your Dell PowerConnect WSeries infrastructure. Dell PowerConnect W-Series wireless infrastructure provides a wealth of functionality such as firewall, VPN, remote AP, IDS, IPS, and ARM, as well as an abundance of statistical information. Follow the simple guidelines in this document to garner the full benefit of your Dell PowerConnect W-Series infrastructure.
NOTE: Without proper Telnet/SSH credentials AirWave will not be able to acquire license and serial information from controllers. l 2 | Overview SNMPv3 credentials are required for WMS Offload: n Username n Auth password n Privacy password n Auth protocol Dell PowerConnect W-AirWave 7.
Chapter 2 Configuring AirWave for Global Dell PowerConnect W-Series Infrastructure This chapter explains how to optimally configure Dell PowerConnect W-AirWave to globally manage your global Dell PowerConnect W-Series infrastructure, and contains the following topics: l "Disabling Rate Limiting in AMP Setup > General" on page 3 l "Entering Credentials in Device Setup > Communication" on page 4 l "Setting Up Recommended Timeout and Retries" on page 5 l "Setting Up Time Synchronization" on page 5 l
Entering Credentials in Device Setup > Communication AirWave requires several credentials to properly interface with Dell PowerConnect W-Series devices. To enter these credentials, follow these steps: 1. Navigate to Device Setup > Communication. 2. In the Default Credentials section, select the Edit link next to Dell. The page illustrated in Figure 3 appears. 3. Enter the SNMP Community String.
Setting Up Recommended Timeout and Retries To set recommended timeout and retries settings, follow these steps: 1. In the Device Setup > Communication page, locate the SNMP Setting section. 2. Change SNMP Timeout setting to a value or either 3, 4, or 5. This is the number of seconds that the AirWave will wait for a response from a device after sending an SNMP request, so a smaller number is more ideal. 3. Change SNMP Retries to 10.
Manually Setting the Clock on a Controller You can use either the WebUI or CLI to manually set the time on the controller’s clock. 1. Navigate to the Configuration > Management > Clock page. 2. Under Controller Date/Time, set the date and time for the clock. 3. Under Time Zone, enter the name of the time zone and the offset from Greenwich Mean Time (GMT). 4. To adjust the clock for daylight savings time, click Enabled under Summer Time.
3. Select Save. Controller Setup (Master And Local) CAUTION: Enabling these commands on ArubaOS versions prior to 6.0.1.0 can result in performance issues on the controller. If you are running previous firmware versions such as ArubaOS 6.0.0.0, you should upgrade to ArubaOS 6.0.1 (to obtain RF utilization metrics) or 6.1 (to obtain RF utilization and classified interferer information) before you enter this command.
8 | Configuring AirWave for Global Dell PowerConnect W-Series Infrastructure Dell PowerConnect W-AirWave 7.
Chapter 3 Configuring a Dell PowerConnect W Group in AirWave It is prudent to establish one or more Dell PowerConnect W Groups within AirWave. During the discovery process you will move new discovered controllers into this group. This section contains the following topics: l "Basic Monitoring Configuration" on page 9 l "Advanced Configuration " on page 10 Basic Monitoring Configuration 1. Navigate to Groups > List. 2. Select Add. 3.
11. Configure the proper SNMP Version for monitoring the Dell PowerConnect W-Series infrastructure. Figure 7: Group SNMP Version for Monitoring 12. Select Save and Apply. Advanced Configuration Refer to the Dell PowerConnect W-AirWave 7.6 Configuration Guide at dell.com/support/manuals for detailed instructions. 10 | Configuring a Dell PowerConnect W Group in AirWave Dell PowerConnect W-AirWave 7.
Chapter 4 Discovering Dell PowerConnect WSeries Infrastructure AirWave utilizes Dell PowerConnect W-Series topology to efficiently discover downstream infrastructure. This chapter guides you through the process of discovering and managing your Dell PowerConnect W-Series device infrastructure.
Figure 8: Dell PowerConnect W Credentials in Device Setup > Add 4. Enter the required fields for configuration and basic monitoring: n Telnet/SSH Username n Telnet/SSH password n enable password 5. Enter the required fields for WMS Offload n SNMPv3 Auth Protocol n SNMPv3 Privacy Protocol n SNMPv3 Username n Auth Password n Privacy Password 12 | Discovering Dell PowerConnect W-Series Infrastructure Dell PowerConnect W-AirWave 7.
NOTE: The protocols should be SHA and DES in order for WMS Offload to work. CAUTION: If you are using SNMPv3 and the controller's date/time is incorrect, the SNMP agent will not respond to SNMP requests from AirWave SNMP manager. This will result in the controller and all of its downstream access points showing as Down in AirWave. 6. Assign controller to a Group and Folder. 7. Ensure Monitor Only option is selected. 8. Select Add. 9. Navigate to APs/Devices > New page. 10.
14 | Discovering Dell PowerConnect W-Series Infrastructure Dell PowerConnect W-AirWave 7.
Chapter 5 AirWave and Dell PowerConnect WSeries Integration Strategies This section describes strategies for integrating AirWave and Dell PowerConnect W-Series devices and contains the following topics: l "Integration Goals" on page 15 l "Example Use Cases" on page 16 l "Prerequisites for Integration" on page 17 l "Enable Stats Utilizing AirWave" on page 17 l "WMS Offload with AirWave" on page 18 l "Define AirWave as a Trap Host using ArubaOS CLI" on page 19 l "Understanding WMS Offload Impact
l Unless you enable stats on the local controllers in a master/local environment, the local controllers do not populate their MIBs with any information about clients or rogue devices discovered/associated with their APs. Instead the information is sent upstream to master controller.
l You are in the process of converting their older third-party WLAN devices to Dell PowerConnect W-Series devices and want a unified IDS dashboard for all WLAN infrastructure. l You want to relate Auth failures to a client device, AP, Group of APs, and controller. AirWave provides this unique correlation capability. l See "Define AirWave as a Trap Host using ArubaOS CLI" on page 19. When to Use Channel Utilization l You have a minimum version of ArubaOS 6.1.0.0 and W-AP105 or W-AP135.
6. Select Save and Apply. 7. Select Save. This will push a set of commands via SSH to all Dell PowerConnect W-Series local controllers. AirWave must have read/write access to the controllers in order to push these commands. NOTE: This process will not reboot your controllers. CAUTION: If you don't follow the above steps, local controllers will not be configured to populate statistics. This decreases AirWave's capability to trend client signal information and to properly locate devices.
stats-update-interval 120 write mem NOTE: AirWave will configure SNMPv2 traps with the mobile manager command. Define AirWave as a Trap Host using ArubaOS CLI To ensure the AirWave server is defined a trap host, access the command line interface of each controller (master and local), enter enable mode, and issue the following commands: (Controller-Name) # configure terminal Enter Configuration commands, one per line.
l wlsxSignStaNullProbeResp l wlsxSignAPDeauthBcast l wlsxSignStaDeauthBcastwlsxChannelFrameErrorRateExceeded l wlsxChannelFrameFragmentationRateExceeded l wlsxChannelFrameRetryRateExceeded l wlsxNIpSpoofingDetected l wlsxStaImpersonation l wlsxReservedChannelViolation l wlsxValidSSIDViolation l wlsxStaPolicyViolation l wlsxRepeatWEPIVViolation l wlsxWeakWEPIVViolation l wlsxFrameRetryRateExceeded l wlsxFrameReceiveErrorRateExceeded l wlsxFrameFragmentationRateExceeded l wlsxFr
Ensuring That IDS And Auth Traps Display in AirWave Validate your ArubaOS configuration by exiting the configure terminal mode and issue the following command: (Controller-Name) # show snmp trap-list If any of the traps in the output of this command do not appear to be enabled enter configure terminal mode and issue the following command: (Controller-Name) (config) # snmp-server trap enable NOTE: See "ArubaOS CLI" on page 32 for the full command that can be copied and pasted directl
SMI::enterprises.14823.2.3.1.11.1.1.58.0 = STRING: http://10.51.5.118/screens/wmsi/reports.html?mode=ap&bssid=00:1a:1e:6f:82:d0 NOTE: You will see many IDS and Auth Traps from this command. AirWave only processes a small subset of these traps which display within AirWave. The traps that AirWave does process are listed above.
Chapter 6 Dell PowerConnect W-Series Specific Capabilities in AirWave This section discusses Dell PowerConnect W-Series specific capabilities in AirWave and contains the following topics: l "Dell PowerConnect W-Series Traps for RADIUS Auth and IDS Tracking" on page 23 l "Remote AP Monitoring" on page 23 l "ARM and Channel Utilization Information" on page 24 l "Viewing Controller License Information" on page 27 l "Rogue Device Classification" on page 27 l "Rules-Based Controller Classification" o
2. To view detailed information on the remote device, select the device name. The page illustrated in Figure 15 appears. Figure 15: Remote AP Detail Page 3. You can also see if there are users plugged into the wired interfaces in the Connected Users list. NOTE: This feature is only available when the remote APs are in split tunnel and tunnel modes. ARM and Channel Utilization Information ARM statistics and Channel utilization are very powerful tools for diagnosing capacity and other issues in your WLAN.
1. Navigate to a floor plan by clicking on the thumbnail on a device’s APs/Devices > Monitor page or navigating to VisualRF > Floor Plans page. 2. Select the Overlays menu. 3. Select Utilization overlay. 4. Select Current or Maximum (over last 24 hours). 5. Select total (default), receive, transmit, or interference (see Figure 17). Figure 17: Channel Utilization in VisualRF (Interference) Configuring Channel Utilization Triggers 1. Navigate to System > Triggers and select Add. 2.
Figure 18: Channel Utilization Trigger 3. Enter the duration evaluation period. 4. Select Add New Trigger Condition. 5. Create a trigger condition for Radio Type and select the frequency to evaluate. 6. Select total, receive, transmit, or interference trigger condition. 7. Set up any restrictions or notifications (refer to the Dell PowerConnect W-AirWave User Guide in Home > Documentation for more details) 8. When you are finished, select Add.
Viewing Channel Utilization Alerts 1. Navigate to APs/Devices > Monitor or System > Alerts. 2. Sort the Trigger Type column and find Channel Utilization alerts. View Channel Utilization in RF Health Reports 1. Navigate to Reports > Generated. 2. Find and select a Device Summary or RF Health report. Figure 19: Channel Utilization in an RF Health Report Viewing Controller License Information Follow these steps to view your controller’s license information in AirWave: 1.
To check and reclassify rogue devices, follow these steps: 1. Navigate to the Rogue > Detail page for the rogue device, as shown in the following figure. Figure 21: Rogue Detail Page Illustration 2. Select the proper classification from the RAPIDS Classification Override drop-down menu. CAUTION: Changing the controller's classification within the AirWave UI will push a reclassification message to all controllers managed by the AirWave server that are in Groups with Offloading the WMS database set to Yes.
Figure 22: User Classification CAUTION: Changing User Classification within the AirWave UI will push a user reclassification message to all controllers managed by the AirWave server that are in Groups with Offloading the WMS database set to Yes. All users will be set to a default classification of unclassified when WMS is first offloaded.
Changing RAPIDS based on Controller Classification 1. Navigate to RAPIDS > Rules and select the desired rule. 2. In the Classification drop-down menu, select desired RAPIDS classification. 3. Select Controller Classification from drop-down menu, as shown in Figure 24. Figure 24: Configure Rules for Classification 4. Select Add. 5. Select desired controller classification to use as an evaluation in RAPIDS. 6. Select Save.
Appendix A ArubaOS and AirWave CLI Commands Enable Channel Utilization Events CAUTION: Enabling these commands on ArubaOS versions prior to 6.1 can result in performance issues on the controller. To enable channel utilization events utilizing the Dell PowerConnect W-Series ArubaOS CLI, use SSH to access a local or master controller’s command-line interface, enter enable mode, and issue the following commands: (Controller-Name) # configure terminal Enter Configuration commands, one per line.
ArubaOS CLI SSH into all controllers (local and master), and enter enable mode, and issue the following commands: (Controller-Name) # configure terminal Enter Configuration commands, one per line. End with CNTL/Z (Controller-Name) (config) # mobility-manager user (Controller-Name) (config) # write mem This command creates an SNMPv3 user on the controller with the authentication protocol configured to SHA and privacy protocol DES.
Disable Debugging Utilizing ArubaOS CLI If you are experiencing performance issues on the master controller, ensure that debugging is disabled. It should be disabled by default. Debugging coupled with gathering the enhanced statistics can put a strain on the controllers CPU, so it is highly recommended to disable debugging.
snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server snmp-server trap trap trap trap trap trap trap trap trap trap trap trap trap trap trap trap
Appendix B AirWave Data Acquisition Methods The following table describes the different methods through which AirWave acquires data from Dell PowerConnect W-Series devices on the network.
Data Elements N/A X Active interferers Active BSSIDs/SSIDs Dell PowerConnect W-Instant Controller/Thin AP X X Security Neighbors/rogues Neighbor re-classification N/A X IDS events X X Client classification User deauthorization 36 | AirWave Data Acquisition Methods X X X X N/A X N/A N/A Dell PowerConnect W-AirWave 7.
Appendix C WMS Offload Details WMS Offload instructs the master controller to stop correlating ARM, WIPS, and WIDS state information amongst its local controllers because AirWave will assume this responsibility. Figure 25 depicts how AirWave communicates state information with local controllers. Figure 25: ARM/WIPS/WIDS Classification Message Workflow State Correlation Process 1. AP-1-3-1 hears rogue device A. 2.
Using AirWave as Master Device State Manager AirWave offers the following benefits as a master device state manager: l Ability to correlate state among multiple master controllers. This will reduce delays in containing a rogue device or authorizing a valid device when devices roam across a large campus. l Ability to correlate state of third party access points with ARM. This will ensure Dell PowerConnect W-Series infrastructure interoperates more efficiently in a mixed infrastructure environment.
Appendix D Increasing Location Accuracy Understand Band Steering's Impact on Location Band steering can negatively impact location accuracy when testing in highly mobile environment. The biggest hurdle is scanning times in 5 GHz frequency. Table 6: Location accuracy impact Operating Frequency Total Channels Scanning Frequency Scanning Time Total Time One Pass 2.4 GHz 11 (US) 10 seconds 110 milliseconds 121.21 seconds 5 GHz 24 (US) 10 seconds 110 milliseconds 242.
Figure 27: Typical Tag Deployment Prerequisites You will need the following information to monitor and manage your Dell PowerConnect W-Series infrastructure.
Figure 28: RTLS Fields in AMP Setup > General 4. Select Save at the bottom of the page. Enable RTLS on the Controller NOTE: RTLS can only be enabled on the master controller and it will automatically propagate to all local controllers. SSH into master controller, enter enable mode, and issue the following commands: (Controller-Name) # configure terminal Enter Configuration commands, one per line.
Troubleshooting RTLS You can use either the WebUI or CLI to ensure the RTLS service is running on your AirWave server. Using the WebUI Access the AirWave WebUI and navigate to System > Status.
rssi => -64 tag_mac => 00:14:7E:00:4C:E4 timestamp => 303139810 tx_power => 19 Verify external applications can see WiFi Tag information by exercising the Tag XML API: https:///visualrf/rfid.xml You should see the following XML output:
44 | Increasing Location Accuracy Dell PowerConnect W-AirWave 7.
