Features
Features:

Product Tour >

Edraw AI >

Paid Plans:

Individuals >

Business >

Eduaction >
Resources
Blog

History

How-tos & Tips

Discovery

Biography

Business Analysis

Examples

AI concept Map

Free AI Mind Map Generator

Onenote Mind Map

Bcg Matrix Examples

Nike Marketing Strategy

Unilever SWOT Analysis

Make Mind Maps in Google Docs

Guide

FAQs

What's New

Resource Center
Templates
All Templates

Brain Storming Templates

Strategy and Planning Templates

Project Management Templates

Product Management Templates

Human Resources Templates

Agile Workflow Templates

Marketing Templates

Education Templates

Fun and Games Templates

User Gallery
Download
Pricing
Enterprise

MindMap Gallery WLAN knowledge summary

WLAN knowledge summary

Summarizes the main support of WLAN, including: WLAN basics, 802.11 standards, networking architecture, WLAN workflow, etc.

Edited at 2024-01-16 13:09:00

PlotWizard

Recent works View more works>>

WLAN knowledge summary

PlotWizard

Recent works View more works>>

Recommended to you
Outline

WLAN

basic meaning

Wireless Local Area Network, wireless local area network

Common wireless technologies

WiFi, infrared, Bluetooth, ZigBee

Wireless network classification

WPAN (Wireless Personal Area Network)

Personal wireless network, common technologies: Bluetooth, NFC

WLAN (Wireless Local Area Network)

Wireless LAN, common technology: Wi-Fi

WMAN (Wireless Metropolitan Area Network)

Wireless metropolitan area network, commonly used technology: WiMax

WWAN (Wireless Wide Area Network)

Wireless Wide Area Networks: Common Technologies: 5G

802.11 standard

concept

Today's standards for wireless LAN communications

Main technique

WiFi

work level

data link layer

Responsible for channel access, addressing, data frame verification, error checking, security mechanism, etc.

physical layer

Responsible for transmitting bit streams over the air interface, such as specifying the frequency band to be used

main agreement

802.11

Wi-Fi 1

802.11b

Wi-Fi 2

802.11a, 802.11g

Wi-Fi 3

802.11n

Wi-Fi 4

802.11ac wave1, 802.11ac wave2

Wi-Fi 5

802.11ax

Wi-Fi 6

WLAN device

Household use

Home Wi-Fi Router

enterprise

PoE switch

Unlimited access points (AP, Access Point)

Wireless access controller (AC, Access Controller)

Workstation (STA)

Networking architecture

FAT (Fat AP) AP architecture

family scene

AC FIT AP (thin AP) architecture

Medium and large enterprises

Agile distributed AP architecture

Scenes with densely distributed rooms

CAPWAP tunnel

protocol

UDP

Message type

Manage traffic

Manage tunnels via CAPWAP

business traffic

Via CAPWAP data tunnel

port

Management traffic is UDP port 5246

Business traffic is UDP port 5247

Function

Status maintenance between AP and AC

The AC manages APs and delivers configurations through CAPWAP tunnels.

Business data forwarding (in tunnel forwarding mode)

Wired side networking concept

AP and AC networking method

Layer 2 networking

The AP and AC are on a directly connected or layer 2 network (connected through a switch)

AP discovers AC

Layer 2 broadcast

DHCP

Layer 3 networking

AP and AC are located in the three-layer network (through routing and connection)

AP discovers AC

DHCP

DNS

Configure static IP

AC connection method

direct connection

The AP and AC are connected in series, and all traffic must pass through the AC. The AC can easily become a performance bottleneck.

Side-mounted

The AC is placed in a network directly connected to the AP and the uplink network. Service traffic does not need to pass through the AC.

Wireless side networking concept

wireless communication system

Source->Coding->Modulation->Channel->Demodulation->Decoding->Sink

radio electromagnetic waves

Infinite electromagnetic wave frequency

3Hz~300GHz

Main frequency band

2.4G (2.4GHz~2.4385GHz)

5G (5.154GHz~5.354GHz, 5.7254GHz~5.854GHz)

wireless channel

Wireless channels are electromagnetic waves in space

Electromagnetic waves are everywhere in space, and random use of frequencies can easily cause interference.

2.4G is divided into 14 channels with overlay and frequency width of 20MHz

AC maintains a relative balance by managing the channels and power of each AP to reduce mutual interference.

BSS/SSID/BSSID

BSS (Basic Service Set)

Basic service set, the range covered by an AP

BSSID (Basic Service Set Identifier)

Basic Service Set Identifier, AP’s MAC address

SSID (Service Set Identifier)

service set identifier, wireless network name

VAP

Virtual AP (VAP, Virtual Access Point)

One physical AP virtualizes multiple APs, and each VAP is a BSS

save costs

ESS

Extended Server (ESS, Extend Service Set)

Multiple BSSs with the same SSID form a larger BSS

Users can roam between different APs in the same ESS

WLAN workflow

AC preconfigured

Configure network communication

Configure a DHCP server to assign IP addresses to APs and STAs. You can also configure the AC device as a DHCP server. Configure network communication between the AP and the DHCP server; configure network communication between the AP and the AC.

Create AP group

Each AP will join and can only join one AP group. AP groups are usually used for common configuration of multiple APs.

Configure the country code of the AC (administrative template)

The country code is used to identify the country where the AP radio frequency is located. Different country codes specify different AP radio frequency characteristics, including the AP's transmit power, supported channels, etc.

Configure the source interface or source address (to establish a tunnel with the AP)

Each AC must uniquely specify an IP address or interface. The AP attached to the AC device learns this IP address or the IP address configured under this interface, which is used for communication between the AC and AP and the establishment of CAPWAP tunnels.

Configure automatic upgrade when AP goes online (optional)

Automatic upgrade means that during the online process, the AP automatically compares its own version with the AP version configured on the AC or SFTP or FTP server. If the versions are inconsistent, the AP will be upgraded, and then the AP will automatically restart and go online again.

Add AP device and configure AP authentication mode)

There are three ways to add APs: offline importing APs, automatically discovering APs, and manually confirming APs in the unauthenticated list.

AP goes online

AP obtains IP address

How to get IP address

static mode

dynamic mode

Configure the DHCP server so that the AP acts as a DHCP client to request an IP address from the DHCP server.

Typical solution

Deploy a dedicated DHCP Server to assign IP addresses to APs

Use the AC's DHCP service to assign an IP address to the AP

Use devices in the network, such as core switches, to assign IP addresses to APs

The AP discovers the AC and establishes a CAPWAP tunnel with it

AP discovers AC

static mode

The static IP address list of the AC is pre-configured on the AP.

dynamic mode

DHCP method, DNS method and broadcast method.

Establish CAPWAP tunnel

data tunnel

The service data packets received by the AP are forwarded to the AC through the CAPWAP data tunnel.

control tunnel

Interaction of management packets between AP and AC through CAPWAP control tunnel

AP access control

After receiving the Join Request message sent by the AP, the AC will authenticate the validity of the AP. If the authentication is successful, the AC will add the corresponding AP device.

The AC supports three authentication methods for APs.

MAC authentication

Serial number (SN) authentication

Not authenticated

There are three ways to add an AP to the AC:

Import AP offline

Pre-configure the MAC address and SN of the AP. When the AP connects to the AC, if the AC finds that the MAC address and SN of the AP match the pre-added AP, the AC starts to establish a connection with the AP.

Automatically discover APs

When configuring the AP's authentication mode to non-authentication or configuring the AP's authentication mode to MAC or SN authentication and adding the AP to the AP whitelist, when the AP connects to the AC, the AP will be automatically discovered by the AC and come online normally.

Manually confirm APs in the unauthenticated list

When the authentication mode of an AP is configured as MAC or SN authentication, but the AP is not imported offline and is not in the set AP whitelist, the AP will be recorded in the unauthorized AP list. The AP needs to be manually confirmed by the user before it can go online normally.

AP version upgrade

The AP determines whether the current system software version is consistent with the one specified on the AC based on the parameters in the Join Response message received. If they are inconsistent, the AP requests the software version by sending an Image Data Request message, and then performs a version upgrade.

After the software version update is completed, the AP restarts and repeats the previous three steps.

Upgrade method

Upgrade methods include AC mode, FTP mode and SFTP mode.

CAPWAP tunnel maintenance

Control tunnel maintenance

The AP and AC exchange Echo (UDP port number is 5246) messages to detect the connectivity status of the control tunnel.

Data tunnel maintenance

The AP and AC exchange Keepalive (UDP port number 5247) messages to detect the connectivity status of the data tunnel.

WLAN service configuration delivery

The AC sends a Configuration Update Request message to the AP, the AP responds with a Configuration Update Response message, and the AC delivers the AP's service configuration information to the AP.

Configuration template

Domain Management Template

The domain management template provides the configuration of the AP's country code, tuning channel set, and tuning bandwidth.

RF template

Radio frequency templates are mainly used to optimize radio frequency parameters and configure the channel switching function without interrupting services.

VAP template

Configure various parameters under the VAP template, and also reference SSID templates, security templates, authentication templates, etc.

SSID template

Configure the SSID name of the WLAN network

Hide SSID function

The maximum number of users that can be successfully associated under a single VAP

Function to automatically hide SSID when the number of users reaches the maximum

security template

Configure security policy

security strategy

Open authentication

WEP

WPA/WPA2-PSK

WPA/WPA2-802.1X

Data forwarding method

control message

tunnel forwarding

User data packets are divided into

tunnel forwarding

Forward directly

tunnel forwarding

Business VLAN

single VLAN

Insufficient IP addresses

VLAN pool

Reduce broadcast domain

Evenly distribute IP addresses

Other templates

AP system template, positioning template, WIDS template, Mesh template, etc.

RF parameter configuration

Configure basic radio frequency parameters: working frequency band, channel, transmit power, etc.

STA access

six stages

scanning phase

Active scanning

Active scanning mode carrying the specified SSID, scanning the specified network

Active scanning mode with empty SSID, scanning all available networks

Passive scan

The AP regularly sends Beacon frames (beacon frames, including: SSID, supported rate and other information) to discover surrounding wireless networks

By default, the period for the AP to send Beacon frames is 100TUs (1TU=1024us)

Link authentication phase

open system certification

That is, without authentication, any STA can be authenticated successfully.

Shared key authentication

The STA and AP are pre-configured with the same shared key, and verify whether the key configurations on both sides are the same. If they match, the authentication is successful; otherwise, the authentication fails.

association stage

STA will continue to initiate link service negotiation. The negotiation content includes: supported rate, channel, etc.

Access authentication stage

Restrict users before they can access the network

verification method

PSK certification

802.1X authentication

DHCP

STA address allocation

User Authentication

WLAN business data forwarding

Tunnel forwarding method

advantage

The AC centrally forwards data packets, which has good security and facilitates centralized management and control.

shortcoming

Service data must be forwarded through the AC. The packet forwarding efficiency is lower than the direct forwarding method, and the AC is under great pressure.

Direct forwarding method

advantage

Data packets do not need to be forwarded by the AC. The packet forwarding efficiency is high and the AC is under little pressure.

shortcoming

Business data is not easy to centrally manage and control