Settings Configuration

About this task

MiNT provides the means to secure profile communications at the transport layer. Using MiNT, a device can be configured to only communicate with other authorized (MiNT enabled) devices. Keys can also be generated externally using any application (like openssl). These keys must be present on the device managing the domain for key signing to be integrated with the UI. A device needing to communicate with another first negotiates a security context with that device.

The security context contains the transient keys used for encryption and authentication. A secure network requires users to know about certificates and PKI. However, administrators do not need to define security parameters for Access Points to be adopted (secure WISPe being an exception, but that isn‘t a commonly used feature). Also, users can replace any device on the network or move devices around and they continue to work. Default security parameters for MiNT are such that these scenarios continue to function as expected, with minimal user intervention required only when a new network is deployed

To define or override a profile's MiNT configuration:

Procedure

  1. Go to Configuration → Devices → System Profiles.

    A list of default and user-created profiles is displayed.

  2. Select a target profile from the displayed list.

    The selected profile's configuration menu is displayed.

  3. Expand Advanced tab and select MiNT Protocol.

    The Settings tab displays by default.

    Click to expand in new window
    Advanced Profile Overrides MiNT Screen - Settings Tab
    GUID-2C21FEDD-A5C0-4875-967A-641FBEE8119B-low.png
  4. Refer to the Area Identifier field to define or override the Level 1 and Level 2 Area IDs used by the profile‘s MiNT configuration.

    Level 1 Area ID

    Select this option to enable a spinner control for setting the Level 1 Area ID from 1 - 16,777,215. The default value is disabled. Alternatively, provide an alias by selecting the Alias option and adding the alias name to this field.

  5. Define or override the following Priority Adjustments settings in respect to devices supported by the profile:

    Designated IS Priority Adjustment

    Use the spinner control to set a Designated IS Priority Adjustment setting from -255 - +255. This is the value added to the base level DIS priority to influence the Designated IS (DIS) election. A value of +1 or greater increases DISiness. The default setting is 0.

  6. Select the Latency of Routing Recalculation option, in the Shortest Path First (SPF) field, to enable the spinner control used for defining or overriding a latency period (from 0 - 60 seconds).

    The option is disabled by default.

  7. Define or override the following MiNT Link Settings in respect to devices supported by the profile:

    MLCP IP

    Select this option to enable MLCP (MiNT Link Creation Protocol) by IP Address. MLCP is used to create a UDP/IP link from the device to a neighbor.

    The neighboring device can be another AP.

    MLCP IPv6

    Select this option to enable MiNT Link Creation Protocol (MLCP) by IPv6 Address. MLCP by IPv6 is used to create one UDP/IP link from the device to a neighbor. The neighboring device does not need to be a virtual controller; it can be an standalone access point.

    MLCP VLAN

    Select this option to enable MiNT MLCP by VLAN. MLCP is used to create one VLAN link from the device to a neighbor.

    The neighboring device can be another AP.

    Tunnel MiNT across extended VLAN

    Select this option to tunnel MiNT protocol packets across an extended VLAN. This setting is disabled by default.

  8. Select Tunnel Controller Load Balancing (Level 1) to enable load balancing through a WLAN tunnel controller.

    This setting is disabled by default.

  9. Select Inter Tunnel Bridging (Level 2) to enable inter tunnel bridging.

    This setting is disabled by default.

  10. Enter a 64-character maximum Tunnel Controller Name for this tunneled-WLAN-controller interface.
  11. Define the group name of clustered tunnel controllers in the Preferred Tunnel Controller Name field.
  12. Click OK to save the changes made to the MiNT protocol configuration.

    Click Reset to revert to the last saved configuration.