Filter
Top Products
Configuring Rights
Table 4-16. New Access Policy Settings Tab Contents
Column Description
VLAN Identifier How a VLAN Identifier (tag) should be handled:
• Select Remove any pre-existing tag to remove the VLAN tag (if any) associated
with client packets, resulting in untagged traffic being forwarded onto the network.
This is the default.
• Select Use client tag to preserve the VLAN tag (if any) associated with client
packets when forwarding traffic onto the network.
• Select Apply this VLAN tag (and enter the tag) to tag all client traffic with the
specified tag. Tag numbers can be between 1 and 4094.
See —VLANs and IP Addressing“ on page 2-26 for a more extensive discussion of
the use of VLANs within the 700wl Series system.
Encryption Whether encryption is required, allowed, or disabled:
• Select Disabled to disable encryption for clients associated with this Access
Policy. (This is the default.)
• Select Allowed, but not required to allow both encrypted and non-encrypted
traffic from clients associated with this Access Policy. The Encryption Protocols
settings determine the type of encryption allowed.
• Select Required to require all traffic from clients associated with this Access
Policy to be encrypted. The Encryption Protocols settings determine the type of
encryption required. Non-encrypted traffic is dropped.
Note: If you require encryption, make sure that the protocols you select are
enabled for the 700wl Series system on the Wireless Data Privacy page under
the VPN functions area.
See Chapter 7, —Setting up Wireless Data Privacy“, for a more extensive
discussion of the use of VPNs within the 700wl Series system.
Encryption Protocols The encryption protocols supported under this Access Policy, if encryption is
allowed or required.
• Check one or more checkboxes to specify the protocols allowed or required.
Note: Make sure that the protocols you select are enabled and configured
appropriately.
• To view or change the IPSec encryption and secure hash algorithms or the
enable/disable settings for the other protocols, click the Settings link that is part
of the label for the IPSec checkbox, or click the VPN icon on the navigation
toolbar.
Note: The settings under the VPN icon are global–they apply to all uses of
Wireless Data Privacy system-wide, not just to this Access Policy.
MPPE (PPTP only) For PPTP, whether MPPE encryption should be stateful or stateless:
• Select Stateless to specify that the encryption key is reset for every packet. This
is appropriate in a lossy environment, but is slower. This is the default.
• Select Stateful to specify that the encryption key is reset once every 256 packets.
This is appropriate in a low packet-loss environment, and is faster.
4-46 HP ProCurve Secure Access 700wl Series Management and Configuration Guide