Control And Provisioning of Wireless Access Points (CAPWAP) Protocol Specification, March Canonical URL: txt; File. RFC (part 1 of 6): Control And Provisioning of Wireless Access Points ( CAPWAP) Protocol Specification. Control and Provisioning of Wireless Access Points (CAPWAP) is a standard and interoperable RFC defines the actual CAPWAP protocol specifications.

Author: Akinohn Maurisar
Country: Sri Lanka
Language: English (Spanish)
Genre: Automotive
Published (Last): 25 July 2009
Pages: 60
PDF File Size: 16.79 Mb
ePub File Size: 3.34 Mb
ISBN: 993-5-85054-623-7
Downloads: 42177
Price: Free* [*Free Regsitration Required]
Uploader: Bagar

It claims that the physical security of the LAN prevents most attackers from accessing the stream between controller and AP, but does not guarantee against traffic sniffing beyond the scope of LWAPP, and suggests that in the requirement of full end to end encryption, IPsec be used. Finally configuration takes capwp, and the AP is set into active mode.

Overview of CAPWAP (Cisco Wireless LAN Controllers)

SLAPP was designed as a simple, extensible protocol that could be extended to other wireless standards, and allow for newer authentication schemes and control protocols to be implemented on top of SLAPP. Access points retrieve their configuration from the controller, and report their status back to the controller for management purposes. 5451 document describes the base CAPWAP protocol, cpawap separate binding extensions will enable its use with additional wireless technologies.

However, this power comes at a cost.

Current Status and Overview of the CAPWAP Protocol

The standard provides configuration management and device management, allowing for configurations and firmware to be pushed to APs.

In capwal survey, a look at different proposed standards for enabling WLAN controllers to support multi-vendor APs, and how to solve capqap problems introduced by the AP-controller architecture, has been taken.

Not all access points are alike, as they fall into 3 categories. Aruba also claims that as of Marchno vendor has implemented CAPWAP per the [RFC] specifications, instead claiming that vendors have been using proprietary extensions to complete the specification.


Current Status and Overview of the CAPWAP Protocol

54415 Meru has made no plans public for enabling support for a standards compliant method of AP-controller interaction. And finally, ensuring network security, both from 3rd party hardware, such as rogue access ccapwap being connected to the network, as well as preventing the loss of network secrets from the physical 515 of access points is also critical. Vendors such rrc Trapeze criticized the specification, as it makes assumptions about the topology of the network that the WLAN will be deployed on, as well as assumptions about the complexity and functionality implemented by the AP, by allowing only Local and Split MAC implementations.

The exception is 6. Some vendors have produced products that allow operation with multiple brands of AP, such as Aruba Network’s AirWave being able to provision and control Aruba, Cisco, and Meru access points. Many vendors use this to their advantage, and create product differentiation by including features into their wireless products, such as firewall capability in their controller hardware. The controller awaits a Discovery Request from an AP.

The process by which an AP discovers a controller, validates firmware, and downloads firmware and configurations does not change.

Negotiated Control Protocol – Here both devices begin communicating in the previously agreed-upon protocol. The controller opens a channel to the AP, which stays open for the up time of the access point.

The proposal cites the availability of IPsec for general data traffic, and does not provide any mechanism of capwzp data messages between the controller and AP, only control messages, and the key exchange process between both devices.

Additionally, because of its generic design, the network location of an AP and controller do not necessarily have to be within the same broadcast domain. The only difference is the protocol being used between the AP and the controller. In [fig6]the same SLAPP protocol would be used by an AP to decide how to download updated firmware, as would be used to determine a protocol to communicate with the controller.


This would be a similar scenario to two controllers running different versions of code. Local MAC has the benefit of being able to perform all of the MAC functions quickly, without having to rely on the controller.

AC Name with Priority WTPs require a set of dynamic management and control functions related to their primary task of connecting the wireless and wired mediums.

RFC – part 1 of 6

Because they are standalone devices, they also cause difficulties when managing a growing capdap of many devices, as firmware and configuration must be handled on an individual basis for each device. Oligopolies are typically resistant to destabilization of the market, introduced by large paradigm shifts, such as the shift that is promised by CAPWAP.

It usually falls to the vendor to create a specific implementation. However, only the control messages are transmitted in a DTLS tunnel still. Centralization of these functions will enable reduced cost and higher efficiency by applying the capabilities of network processing silicon to the wireless network, as in wired LANs.

Terminology Access Controller AC: There is no back haul required for Fat APs, because it can put packets and frames directly on the wire, in contrast to Thin AP implementations. Fit APs are a combination of the Thin and Thick metaphors.

The nature of such systems is of such complexity, rcc vendor implementations can vary widely in their scope and features, leading to incompatibilities between vendors. The need for flexible wireless network infrastructure will become more pronounced as WLANs become larger and more widespread. Non-realtime capabilities are authentication procedures, fragmenting and defragmenting frames, and more. The AP sends the controller its current configuration, and the controller responds with an updated configuration.