MQC separates the classification function of a QoS tool from the action (PHB) that the QoS tool wants to perform. To do so, there are three major commands with MQC, with several subordinate commands: ■ The class-map command defines the matching parameters for classifying packets into service classes. ■ The PHB actions (marking, queuing, and so on) are configured under a policy-map command. ■ The policy map is enabled on an interface by using a service-policy comman..
The Internetwork Control Message Protocol (ICMP) allows for testing and troubleshooting of the TCP/IP internetwork layer by defining messages that can be used to determine whether the network can currently deliver packets. In fact, ICMP is a required component of every IP implementation, as described in the following brief excerpt from RFC 792: Occasionally a gateway or destination host will communicate with a source host, for example, to report an error in datagram processin..
In addition to the TKIP solution, the 802.11i standard includes the Advanced Encryption Standard protocol. AES offers much stronger encryption than WEP or TKIP. In fact, the U.S. Commerce Department’s National Institutes of Standards and Technology (NIST) organization chose AES to replace the aging Data Encryption Standard (DES). AES is now a Federal Information Processing Standard, FIPS Publication 197, that defines a cryptographic algorithm for use by U.S. government or..
Configuring IP Filtering via Access Lists
Since the first time that multiple systems were connected to form a network, there has been a need to restrict access to some systems or portions of a network for security, privacy, and other reasons. By using the packet-filtering facilities of the Cisco IOS software, a network administrator can restrict access to certain systems, network segments, ranges of addresses, and services based on a variety of criteria. The capability to restrict access is increasingly important as ..
Cisco Unified Wireless Network Architecture
Cisco has collected a complete set of functions that are integral to wireless LANs and called them the Cisco Unified Wireless Network. This new architecture offers the follow ing capabilities, which are centralized so that they affect wireless LAN devices located anywhere in the network: ■ WLAN security ■ WLAN deployment ■ WLAN management ■ WLAN control To centralize these aspects of a WLAN, many of the functions found within autonomous APs have to be shifted toward ..
