RFC CAPWAP Protocol Base MIB May CAPWAP Control Channel: A bi-directional flow defined by the AC IP Address, WTP IP Address, AC control. The Control And Provisioning of Wireless Access Points (CAPWAP) protocol is a standard, The protocol specification is described in RFC RFC (part 1 of 6): Control And Provisioning of Wireless Access Points ( CAPWAP) Protocol Specification.

Author: Dara Bazahn
Country: Cameroon
Language: English (Spanish)
Genre: Medical
Published (Last): 4 November 2004
Pages: 335
PDF File Size: 15.54 Mb
ePub File Size: 13.64 Mb
ISBN: 471-3-83170-842-6
Downloads: 71207
Price: Free* [*Free Regsitration Required]
Uploader: Nikokinos

This would allow for more rapid reaction to new capeap in the WLAN sector, as well as improve implementation quality. The proposal cites the availability of IPsec for general data traffic, and does not provide any mechanism of encrypting data messages between the controller and AP, only control messages, and the key exchange process between both devices. Discovery – Discovery is the initial broadcast from an AP, informing controllers that they are interested in communicating in a specific protocol.

The controller acts as a management station, configuration station, capqap potentially a router. Finally configuration takes place, and the AP is set into active mode. Please refer to the current edition of the “Internet Official Protocol Standards” STD 1 for the standardization state and status of this protocol. However, some control messages are transmitted unencrypted, such as Discovery Requests and Responses, because of the lack a preexisting association between the 2 devices.

The controller implements most of the management and configuration logic. The firmware is used to program radio capabilities on the AP.

CAPWAP, Control And Provisioning of Wireless Access Points

They are responsible for discovering, authenticating, capwa registration of APs, as well as maintaining a service channel to communicate over. The controller opens a channel to the AP, which stays open for the up time of the access point. Instead, this protocol leaves the market vulnerable to more proprietary firmware and configuration exchange protocols running on top of SLAPP.


The standard provides configuration management and device management, allowing for configurations and firmware to be pushed to APs. The only vendor that has produced a CAPWAP implementation cpawap far is Cisco, but it capwp on some proprietary protocols, thus limiting compatibility.

Returned Message Element Reason Acquiring – This state represents both devices connecting to each other, to begin encrypting their communications. Please review these documents carefully, as they describe your rights and restrictions with respect to this document. One of the main differences is the use of DTLS. Wireless controllers have some general tasks that they perform. Local MAC refers to the location of the The AP ffc the controller its current configuration, and the controller responds with an updated configuration.

However, the process is slow, as upgrade paths are not necessarily direct and simple.

Overview of CAPWAP (Cisco Wireless LAN Controllers)

The implementation described in [Bernaschi09] is not ready for currently available APs. Please see tfc 8] for a diagram. A device that contains an interface to a wireless medium WM.

These 3 MAC layer concepts will be discussed in greater detail in [Section 2. However, caapwap protocol itself is not finalized, resulting in both hesitation to implement on vendor’s parts, and incomplete or incompatible current implementations. Receiver and Session Manager [fig7]. The testing was conducted with computers running Linux, with wireless cards as their radio, and wired interfaces as their link to the controller.

Non-realtime capabilities are authentication procedures, fragmenting and defragmenting frames, and more. A Fat AP understands and speaks layer 2 and possible layer cwpwap protocols, and is addressable on the network. The AP then downloads the firmware, and once completed, enters the Reset state, dfc then attempts to rejoin a controller. Figure 2 shows the Local MAC mode, in which a station transmits a wireless frame that is encapsulated in an Deletion of Protected Records Once the AP has received the configuration, it may enter the Run state.


This lack of customer mobility leads to less innovative product offerings from the wireless vendors.

You might encounter a deployment scenario as in Figurewhere you have a mixed deployment. In either case, the L2 wireless management frames are processed locally. One of the reasons for such little support is that the deployment is restricted to a Layer 2 boundary.

It claims that the physical security of the LAN prevents most attackers from accessing the stream between controller and AP, but does not guarantee against cspwap sniffing beyond the scope of Rcc, and suggests that in the requirement of full end to end encryption, IPsec be used. However, this power comes at a cost. Fat APs are much more complex, and cost much more per unit than their thinner cousins.

Primary Discovery Request Message Not all access points are alike, as they fall into 3 categories.

Change State Event Response This is accomplished by the AP broadcasting a Discovery Request. Some vendors have produced products that allow operation with multiple brands of AP, such as Aruba Network’s AirWave being able to provision and control Aruba, Cisco, and Meru access points.

Once received, the controller moves to the Acquiring phase without responding yet.

Author: admin