Vocera WLAN Requirements and Best Practices. B3000n Compatible



Similar documents
Vocera Infrastructure Planning Summary. B3000n Compatible

Vocera Infrastructure Planning Guide. Version 4.4

Vocera Infrastructure Planning Guide. Version 4.3

Web Authentication Proxy on a Wireless LAN Controller Configuration Example

Welch Allyn Acuity Network installation. Best practices

Apple Airport Extreme Base Station V4.0.8 Firmware: Version 5.4

How To Set Up A Cisco Wireless Network Controller (Wired) With A Wireless Network (Wired And Wireless) With An Ipad Or Ipad (Wired Or Wireless) For A Pb/G/G (Wired/Wired) Or Ip

Tuning Cisco WLC for High Density Deployments - William Jones

Wireless Local Area Networks (WLANs)

Welch Allyn Connex, VitalsLink by Cerner, and Connex CSK Network installation. Best practices overview

Configure WorkGroup Bridge on the WAP131 Access Point

JK0 015 CompTIA E2C Security+ (2008 Edition) Exam

Configuration Notes Trapeze Networks Infrastructure in Ascom VoWiFi System

Configuration Guide. How to Configure the AP Profile on the DWC Overview

WiNG 5.x How-To Guide

Cisco RV220W Network Security Firewall

Configuring Settings on the Cisco Unified Wireless IP Phone 7925G

Network Interface Table of Contents

Securing Networks with PIX and ASA

Voice over WiFi Deployment recommendations and best practices

The Wireless Network Road Trip

Computer Networks. Secure Systems

EAP N Wall Mount Access Point / WDS AP / Universal Repeater

running operation mode painless TECHNICAL SPECIFICATION WAN/LAN: One 10/100 Fast Ethernet RJ-45 WPS (WiFi Protected Setup) WAN (Internet connection)

Table of Contents. Cisco Wi Fi Protected Access 2 (WPA 2) Configuration Example

Cisco HWIC-AP WLAN Module for Cisco 1800 (Modular), Cisco 2800 and Cisco 3800 Series Integrated Services Routers

Microsoft Lync Certification Configuration Guide for WiNG 5.5

Wireless LAN Apple Bonjour Deployment Guide

Configuration of Cisco Autonomous Access Point with 802.1x Authentication for Avaya 3631 Wireless Telephone

Document Created by Nick Schuster

Cisco RV 120W Wireless-N VPN Firewall

Understanding Wireless Security on Your Polycom SpectraLink 8400 Series Wireless Phones

Cisco RV220W Network Security Firewall

Nokia Siemens Networks. CPEi-lte User Manual

QuickSpecs. Models HP 110 ADSL-B Wireless-N Router

WBS210/WBS510 Datasheet

Linksys WAP300N. User Guide

IEEE a/ac/n/b/g Enterprise Access Points ECW5320 ECWO5320. Management Guide. Software Release v

The All-in-One, Intelligent WLAN Controller

NWA1120 Series. User s Guide. Quick Start Guide. Wireless LAN Ceiling Mountable PoE Access Point. Default Login Details

Efficient Video Distribution Networks with.multicast: IGMP Querier and PIM-DM

Application Note. Onsight Connect Network Requirements V6.1

Using Templates. Information About Templates. Accessing the Controller Template Launch Pad CHAPTER

Cisco Networking Professional-6Months Project Based Training

ENHWI-N n Wireless Router

ESR b/g/n SOHO Router PRODUCT OVERVIEW. 2.4 GHz 150Mbps 11N Router/AP

Deploying Cisco Basic Wireless LANs WDBWL v1.1; 3 days, Instructor-led

Enterprise WLAN Architecture

Tunnels and Redirectors

Output Power (without antenna) 5GHz 2.4GHz

Cisco on Cisco Best Practices Cisco Wireless LAN Design

Design and Implementation Guide. Apple iphone Compatibility

Wireless-N. User Guide. PCI Adapter WMP300N (EU) WIRELESS. Model No.

Agenda. What is Hybrid AP Fat AP vs. Thin AP Benefits of ZyXEL Hybrid AP How Managed AP finds the Controller AP Web GUI

Configuration Guide for RFMS 3.0 Initial Configuration. WiNG 5 How-To Guide. Firewall. June 2011 Revision 1.0

Enterprise Best Practices for Apple Mobile Devices on Cisco Wireless LANs

BW-1000-ZBS Product. Specification. IEEE a/b/g/n Wireless Smart AP - 1 -

Table of Contents. Product Overview...4 Package Contents...4 System Requirements... 4 Introduction...5 Features... 7

Deploying iphone and ipad Virtual Private Networks

White paper. Cisco Compatible Extensions: Client Benefits on a Cisco WLAN

Key Features. EnGenius Outdoor Base Station designs High Power, High Sensitivity and Strong Reliability Solutions under Harsh Environment.

Ruckus Wireless ZoneDirector Command Line Interface

Wireless Robust Security Networks: Keeping the Bad Guys Out with i (WPA2)

This page displays the device information, such as Product type, Device ID, Hardware version, and Software version.

Security. TestOut Modules

DLB APC v5.77. User s Guide. Revision October Copyright 2011 Deliberant

Application Note. Onsight Connect Network Requirements v6.3

VLANs. Application Note

A host-based firewall can be used in addition to a network-based firewall to provide multiple layers of protection.

Firewall Defaults and Some Basic Rules

Deploy and Manage a Highly Scalable, Worry-Free WLAN

Cloud-based Wireless LAN for Enterprise, SMB, IT Service Providers and Carriers. Product Highlights. Relay2 Enterprise Access Point RA100 Datasheet

TECHNICAL NOTE. GoFree WIFI-1 web interface settings. Revision Comment Author Date 0.0a First release James Zhang 10/09/2012

IPsec VPN Security between Aruba Remote Access Points and Mobility Controllers

Table of Contents. Product Overview...4 Package Contents...4 System Requirements... 4 Introduction...5 Features... 7

WhatsUp Gold v16.1 Wireless User Guide

Course Contents CCNP (CISco certified network professional)

WiNG 5.X Reference. Best Practices & Recommendations. Part No. TME Rev. D

WiNG 5.X Reference. Best Practices & Recommendations. Part No. TME Rev. E

HP 830 Series PoE+ Unified Wired-WLAN Switch, HP 850/870 Unified Wired-WLAN Appliance, and HP 10500/ G Unified Wired-WLAN Module FAQ

Quick Start Guide. WRV210 Wireless-G VPN Router with RangeBooster. Cisco Small Business

G.DUO. Dual 11g Access Point. User s Manual

Cisco Collaboration with Microsoft Interoperability

Cisco ASA, PIX, and FWSM Firewall Handbook

SpectraLink 8020/8030 and 8400 Series Wireless Telephones. Enterasys Networks. with

Configuring Radio Resource Management

NEFSIS DEDICATED SERVER

Firewall Defaults, Public Server Rule, and Secondary WAN IP Address

Grandstream Networks, Inc. UCM6100 Security Manual

Required Ports and Protocols. Communication Direction Protocol and Port Purpose Enterprise Controller Port 443, then Port Port 8005

Document ID: Contents. Introduction. Prerequisites. Requirements. Components Used. Related Products. Conventions. 802.

How To Configure SSL VPN in Cyberoam

2.4GHz / 5GHz Dual CPU 600Mbps 11N AP/Router

Vocera Messaging Platform Administration Guide. Version 4.8

Cisco Packet Tracer 6.3 Frequently Asked Questions

Transcription:

Vocera WLAN Requirements and Best Practices B3000n Compatible

Notice Copyright 2002- Vocera Communications, Inc. All rights reserved. Vocera is a registered trademark of Vocera Communications, Inc. This software is licensed, not sold, by Vocera Communications, Inc. ( Vocera ). The reference text of the license governing this software can be found at www.vocera.com/legal. The version legally binding on you (which includes limitations of warranty, limitations of remedy and liability, and other provisions) is as agreed between Vocera and the reseller from whom your system was acquired and is available from that reseller. Certain portions of Vocera s product are derived from software licensed by the third parties as described at http://www.vocera.com/legal/. Microsoft, Windows, Windows Server, Internet Explorer, Excel, and Active Directory are registered trademarks of Microsoft Corporation in the United States and other countries. Java is a registered trademark of Oracle Corporation and/or its affiliates. All other trademarks, service marks, registered trademarks, or registered service marks are the property of their respective owner/s. All other brands and/or product names are the trademarks (or registered trademarks) and property of their respective owner/s. Vocera Communications, Inc. www.vocera.com tel :: +1 408 882 5100 fax :: +1 408 882 5101 2015-10-13 17:24 ii VOCERA WLAN REQUIREMENTS AND BEST PRACTICES

Contents WLAN Requirements and Best Practices... 4 WLAN s...4 Vocera Recommendations for Cisco CAPWAP...5 Vocera Recommendations for Aruba Networks... 6 Vocera Recommendations for Ruckus Networks...7 Vocera Recommendations for Meru Networks...8 IP Port Usage...9 Opening Ports for Communication...12 iii VOCERA WLAN REQUIREMENTS AND BEST PRACTICES

WLAN Requirements and Best Practices This document summarizes the required settings and best practices for Vocera system implementations. You can find more detailed information in the Vocera Infrastructure Planning Guide, available for download at: http://www.vocera.com/resource/vocera-infrastructure-planning-guide WLAN s Table 1: Required WLAN s Voice Grade Site Survey B3000 Transmit Power (2.4GHz) B3000n Transmit Power (2.4GHz) B3000n Transmit Power (5 GHz) Minimum Power Coverage Required Value Required Max 15dBm (30mW) - Min 11dBm (12.5mW) Max 17dBm (50mW) - Min 12dBm (16mW) Max 16dBm (40mW) - Min 13dBm (20mW) -65dBm Minimum SNR 25 Beacon Interval 100 DTIM 1 Peer to peer blocking Public Secure Packet Forwarding ARP Cache Priority Queue Encryption If N Rates Are Used except for Autonomous APs Highest - Voice AES Radio Channel Utilization Consistent less than 30% Channel Width Guard Interval 2.4 GHz: 20MHz 5 GHz: 20MHz or 40MHz 2.4 GHz: Long 5 GHz: Long Table 2: Recommended WLAN s Code Version Basic Data Rates Supported Data Rates Use most recent version of Controller and AP code Needs to be determined for each site All 4 VOCERA WLAN REQUIREMENTS AND BEST PRACTICES

WLAN REQUIREMENTS AND BEST PRACTICES Channel Plan 2.4 GHz: 1, 6, 11 5 GHz: 36, 40, 44, 48, 149, 153, 157, 161 Avoid channel 165 if possible Avoid DFS channels near an airport If you are using DFS channels, broadcast the SSID in beacons for B3000n benefit Roam Threshold 2 - May adjust based on AP density or Meru Virtual Cell Max Number of SSIDs 5 Client Exclusions Authentication Timeouts EAP Retry Timeout Add session timeout of at least 1 full shift 200 milliseconds or lower Max Retries 4 5 Ghz Channels in badge.properties (B3N.ChannelsToScan5G) Must match 5Ghz channels enabled in the controller Table 3: Multicast Recommendations IGMP on Badge IGMP V2 on Network Multicast Configuration PIM (Sparse Mode or Sparse Dense Mode) must be applied to all Vocera VLANs and the WLC management VLAN Enable IGMP Snooping on APs and all L2 devices in the multicast audio path Block all unnecessary multicast traffic Use Band Steering for data SSIDs to steer them towards 802.11a to reduce airtime contention Reverse Path Forwarding Table 4: Association Delays Caused by Authentication Authentication Type Association Delay Comments PSK < 100 ms PSK often provides the optimal trade-off between security and performance. EAP-FAST LEAP 200 ms Frequent session timeouts can result in additional delays Note: For EAP-FAST, use CCKM and OKC to cache credentials and optimize roaming times PEAP EAP-TLS Varies The association delay caused by authentication varies based on the cipher strength (1024 bit or 2048 bit) and the depth of certificate chains Note: For EAP-TLS, use CCKM and OKC to cache credentials and optimize roaming times Vocera Recommendations for Cisco CAPWAP Table 5: Cisco s RRM Dynamic Channel Assignment OK - Interval should be more than 8 hours (typical duration of one nursing shift) 5 VOCERA WLAN REQUIREMENTS AND BEST PRACTICES

WLAN REQUIREMENTS AND BEST PRACTICES RRM Dynamic Transmit Power Control Transmit Power Threshold Coverage Hole Aggressive Load Balancing Multicast Mode Multicast Tx Data Rate Unicast-ARP WMM U-APSD DHCP Address Assignment Symmetric Mobility Tunneling Priority Queue Client Load Balancing Band Select CCKM Frame Aggregation Encryption if honoring the maximum and minimum transmit power levels Adjust to fit site - If Coverage Hole Detection is necessary, enable it with the following settings: Set Voice RSSI (-60 to -90 dbm) to -70 Set Min Failed Client Count per AP to 12 Multicast, Direct Disable Mobility Multicast Messaging if multicast is not properly enabled in network (causes one-way audio or no audio) Highest data rate Only have one Mandatory rate, fit to site. B3000n: B3000: Smartphone clients: B3000n: B3000: Smartphone clients: Platinum on transmit or receive for Traffic ID 6 (voice) and 7 (network control) Avoid WEP and TKIP Vocera Recommendations for Aruba Networks Table 6: Aruba s Minimum Controller Code 6.1.3 Role ARM Voice Aware Scanning Voice if honoring the maximum and minimum transmit power levels Tx Data Rates 2.4 GHz: 6, 9, 11, 12, 18, 24 5 GHz: Enable 9Mbps and above; disable all lower rates Probe Retry Max Tx Failure 25 Session ACL vocera-acl 6 VOCERA WLAN REQUIREMENTS AND BEST PRACTICES

WLAN REQUIREMENTS AND BEST PRACTICES Mcast-rate-opt (needed for multicast to go at highest rate) Multicast Filters - Use the Aruba Policy Enforcement Firewall (PEF) to configure these multicast filters to block traffic. netdestination HSRP Host 224.0.0.2 netdestination VRRP host 224.0.0.18 netdestination RIP host 224.0.0.9 netdestination OSPF host 224.0.0.5 host 224.0.0.6 netdestination PIM host 224.0.0.13 netdestination EIGRP host 224.0.0.10 OKC Vocera Recommendations for Ruckus Networks Table 7: Ruckus s Tunnel traffic Channel fly (Self-Healing) QOS Smart-Roam VLAN Authentication/Encryption Wireless Client Isolation WLAN Background Scanning Power Level Directed-Multicast Band steering, load balancing Mesh Proxy ARP EAP Retry Timeout ARP Broadcast Filter DHCP Relay Agent Inactivity Timeout Minimum BSS Rate Hiding SSID in Beacons Controller Code High, Smartcast enabled on WLAN Dedicated non-native VLAN WPA2/AES (802.11i) 1/8 (25mW) using SSH / console CLI 200 milliseconds or lower 480 (8 hrs) Depends on AP density Not recommended Latest from Ruckus 7 VOCERA WLAN REQUIREMENTS AND BEST PRACTICES

Vocera Recommendations for Meru Networks Table 8: Meru s WLAN REQUIREMENTS AND BEST PRACTICES SSID IGMP Snooping QoS Rules Virtual Port Virtual Cell 1 Separate for Vocera Enable QoS Rules 7 & 8 ( by Default) Badge Roaming Policy 1 Silent Client Polling Vocera Location Feature Multicast setting Disable Virtual Cell or divide APs into zones Configure UDP Broadcast Port 5555 for Badge Discovery for Meru 1 A Transmit Power Asymmetry problem may arise at the edges of Virtual Cell coverage if an AP s transmit power is higher than the Vocera device (~30mW). To avoid poor audio at the edges of the Virtual Cell, the RSSI of the Vocera device on the AP must be verified. The Vocera device should never drop below an RSSI of -75dBm on the AP. 8 VOCERA WLAN REQUIREMENTS AND BEST PRACTICES

IP Port Usage The following tables indicates the ports used by Vocera system components for IP communication: Table 9: Vocera Server IP port usage Badge Server Signaling UDP 5002 Vocera SIP Telephony Gateway -> Vocera Server Signaling TCP 5001 Vocera Client Gateway -> Vocera Server Signaling TCP 5006 Badge Updater Signaling UDP 5400 Badge -> Vocera Server Audio UDP 5100 - Max 2 Badge -> Vocera Server Audio Recording UDP 7200-7263 Vocera SIP Telephony Gateway -> Vocera Server Audio UDP 5100-5149 Vocera Client Gateway -> Vocera Server Audio UDP 5100-5355 Browser Apache Signaling TCP 80 and 443 (for SSL) Apache Tomcat Connector TCP 8009 Tomcat HTTP Connector TCP 8080 MySQL Signaling TCP 3306 Vocera Server VMI Clients TCP 5005 Vocera Server VMI Clients (TLS) TCP 5007 Vocera Server VAI Clients TCP 5251 Vocera Server Vocera Report Server Signaling TCP 5251 Vocera Server Cluster Signaling TCP 5251 Badge Vconfig (Vch) Signaling during Discovery UDP 5555 and 5556 Badge Vconfig (Vch) Signaling during Connection TCP 5555 and 5556 Nuance Watcher Telnet Client TCP 7023 Nuance Watcher HTTP Client TCP 7080 Nuance Watcher UDP 7890 Nuance License Manager TCP 27000 Nuance Speech Server (listens) TCP 5060, 5062 Nuance Speech Server (allows UDP connections) TCP 5060, 5062 Nuance Recognition Server (nuance-server.exe) TCP 8200 2 The port range used is based on the number of licensed speech ports. 9 VOCERA WLAN REQUIREMENTS AND BEST PRACTICES

IP PORT USAGE Nuance RTP signaling UDP 7500-8099 Administration Console Vocera Server TCP 9091 Vocera Server CUCM JTAPI Signaling TCP 2748 Table 10: Vocera SIP Telephony Gateway IP port usage IP PBX Vocera SIP Telephony Gateway Signaling Vocera Server -> Vocera SIP Telephony Gateway Audio IP PBX -> Vocera SIP Telephony Gateway Audio (RTP/RTCP) UDP 5060 UDP 5300-5555 3 UDP 8700-9467 4 Vocera Server -> Vocera SIP Telephony Gateway Signaling TCP any free port Table 11: Vocera Client Gateway IP port usage Smartphone Vocera Client Gateway Signaling UDP 5060, 5888-5889 Badge -> Vocera Client Gateway Audio Vocera Server -> Vocera Client Gateway Audio Vocera SIP Telephony Gateway -> Vocera Client Gateway Audio UDP 6300-6555 5 Smartphone -> Vocera Client Gateway Audio (RTP/RTCP) UDP 7700-8467 6 Vocera Server -> Vocera Client Gateway Signaling TCP any free port Table 12: MSP Server IP port usage MSP Console (Browser) IIS Web Server TCP 80 and 443 (for SSL) FTP Server Smartphone Note: Different ports are required based on the FTP mode used (Active vs. Passive). See below. TCP UDP 20 and 21 > 1023 Ports used when the FTP Server is in Passive Mode: FTP Server's port 21 from anywhere (Client initiates connection) FTP Server's port 21 to ports > 1023 3 The number of ports used is based on the number of lines configured. The maximum number of lines is 256 with one Vocera RTP port for each. The base port for this range is configurable. 4 The number of ports used is based on the number of lines configured. The maximum number of lines is 256 with 2 ports (RTP and RTCP) for each, or 512 total. The server multiplies 512 by 1.5 to reserve additional ports in case some ports are already in use, resulting in 768 ports. The base port for this range is configurable. 5 The number of ports used is based on the number of lines configured. 6 The number of ports used is based on the number of lines configured. 10 VOCERA WLAN REQUIREMENTS AND BEST PRACTICES

IP PORT USAGE (Server responds to client's control port) FTP Server's ports > 1023 from anywhere (Client initiates data connection to random port specified by server) FTP Server's ports > 1023 to remote ports > 1023 (Server sends acknowledgments and data to client's data port) Ports used when the FTP Server is in Active Mode: FTP Server's port 21 from anywhere (Client initiates connection) FTP Server's port 21 to ports > 1023 (Server responds to client's control port) FTP Server's port 20 to ports > 1023 (Server initiates data connection to client's data port) FTP Server's port 20 from ports > 1023 (Client sends acknowledgements to server's data port) Table 13: Vocera Report Server IP port usage Vocera Server Vocera Report Server Signaling TCP 5251 Report Console (Browser) Apache Tomcat TCP 8080 Report Console Report server TCP 9090 Report results TCP 80 MySQL port TCP 3306 Table 14: Badge IP port usage Badge Server Signaling UDP 5002 Badge -> Vocera Server Audio Recording UDP 7200-7263 Vocera Server -> Badge Audio Vocera SIP Telephony Gateway -> Badge Audio Badge -> Badge Audio UDP 5200 Badge Updater Signaling UDP 5400 Badge Vconfig (Vch) Signaling during Discovery UDP 5555 and 5556 Badge Vconfig (Vch) Signaling during Connection TCP 5555 and 5556 Table 15: Smartphone IP port usage Smartphone Vocera Client Gateway Signaling UDP 5060, 5888-5889 Vocera Client Gateway -> Smartphone Audio (RTP) UDP 50000-50255 FTP Server Smartphone UDP > 1023 11 VOCERA WLAN REQUIREMENTS AND BEST PRACTICES

IP PORT USAGE Table 16: Vocera Collaboration Suite IP port usage Vocera Collaboration Suite Contacts TCP 80 or 443 (for SSL) iphone and Android Smartphone Vocera Client Gateway Signaling UDP 5060, 5888-5889 iphone Audio UDP 7700-8467 Android Audio UDP 7700-8467 32768-65536 Opening Ports for Communication If a firewall separates Vocera servers from the wireless network, make sure the following ports are open for communication: Table 17: WLAN Ports Used by Vocera Clients Client Direction Server / Client Type Protocol Ports Badge VS Signaling UDP 5002 Badge Inbound VS Audio UDP / TCP 5100-5199 Badge Badge/VS/VSTG Audio UDP 5200 Badge Inbound VSTG Audio UDP 5300-5555 Badge Updater Signaling UDP 5400 Badge Badge VS Discovery UDP 5555 & 5556 VS Connection TCP 5555 & 5556 7 Badge Inbound VCG Audio UDP 6300-6555 8 Badge Inbound VS Audio UDP 7200-7263 Smartphone VCG Signaling UDP 5060 Smartphone VCG Audio UDP 50000-50255 Smartphone Smartphone FTP Server MSP / FTP TCP 20 & 21 FTP Server MSP / FTP UDP > 1023 Smartphone, Vocera Collaboration Suite for Android and iphone Inbound VCG Audio UDP 7700-8467 Smartphone, Vocera Collaboration Suite for Android and iphone Inbound VS Signaling (Comet push) TCP 80 or 443 (for SSL) 7 Make sure you allow packets from TCP port 5556 to be received on any available port on the Vocera Voice Server. 8 The base port for this range is configurable. 12 VOCERA WLAN REQUIREMENTS AND BEST PRACTICES

Client Direction Server / Client Type Protocol Ports IP PORT USAGE Vocera Collaboration Suite for Android and iphone Inbound VMP Signaling (Data) TCP 80 or 443 (for SSL) Vocera Collaboration Suite for Android and iphone Vocera Collaboration Suite for Android VMIClients VAI Clients (includes Staff Assignment) VCG Signaling UDP 5060, 5888-5889 Vocera Devices Audio UDP 32768-65536 VS Connection TCP 5005 VS Connection TCP 5251 VS (Vocera Connect for Cisco) Cisco UCM Signaling TCP 2748 13 VOCERA WLAN REQUIREMENTS AND BEST PRACTICES

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information