No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

Configuration Guide - WLAN-AC

S5700 and S6720 V200R012C00

This document describes the configurations of WLAN, including WLAN Service Configuration, Radio Resource Management, Roaming, WLAN QoS, WLAN Security, WDS, Mesh, Location, Hotspot 2.0, Dual-Link Cold Backup, N+1 Backup.
Rate and give feedback :
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
(Optional) Configuring DTLS Encryption of an Inter-AC Tunnel

(Optional) Configuring DTLS Encryption of an Inter-AC Tunnel

Context

ACs of a mobility group set up tunnels to synchronize data and transmit packets. After DTLS encryption of an inter-AC tunnel is enabled, and the AC obtains the IP address of another AC through the discovery mechanism, the ACs enter the DTLS negotiation stage, in which the ACs use DTLS to set up a tunnel and encrypt UDP packets forwarded in the tunnel. This improves packet transmission security.

It is recommended that you configure the same PSK on the ACs at both ends before enabling DTLS encryption. In this way, the ACs have the same PSK. If you enable DTLS encryption first, and the ACs have different PSKs, DTLS negotiation fails. As a result, the tunnel cannot be set up between the two ACs.

Procedure

  1. Run system-view

    The system view is displayed.

  2. Run capwap dtls inter-controller psk psk-value

    The default PSK for DTLS encryption of an inter-AC tunnel is huawei_seccwp.

    The default PSK for DTLS encryption of an inter-AC tunnel is huawei_seccwp.

  3. Run capwap dtls inter-controller control-link encrypt

    DTLS encryption for an inter-AC control tunnel is enabled.

    By default, DTLS encryption for an inter-AC control tunnel is disabled.

Translation
Download
Updated: 2018-12-24

Document ID: EDOC1100038361

Views: 109699

Downloads: 368

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next