Virtual LAN override in a multiple BSSID mode of operation
First Claim
1. In a wireless access point operative to support a plurality of Basic Service Set Identifiers (BSSIDs), each of the BSSIDs mapping by default to a corresponding Service Set Identifier (SSID), and to bridge wireless frames onto a network implementing a plurality of virtual networks, wherein each BSSID maps to a corresponding virtual network, a method comprising:
- establishing a wireless connection, corresponding to a first BSSID, with a wireless client;
accessing a cache of network access information, wherein the network access information for a given wireless client identifies a corresponding BSSID;
using, if the wireless client is identified in the cache, the corresponding BSSID as the first BSSID;
otherwise using a default BSSID as the first BSSID;
receiving, from a remote node connected to the network, network access information for the wireless client, wherein the network access information comprises information identifying a virtual network;
storing the received network access information in the cache; and
if the virtual network identified in the network access information does not map to the first BSSID, terminating the wireless connection with the wireless client.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods, apparatuses and systems directed to the integration of VLANs and wireless access points operating in a Multiple BSSID mode of operation. According to one implementation of the present invention, a wireless access point dynamically maps an SSID provided by a mobile station to a BSSID based on a VLAN assignment corresponding to the mobile station. In one implementation, the wireless access point learns the correct VLAN/BSSID for a given mobile station, while proxying an authentication session between the mobile station and an authentication server.
136 Citations
24 Claims
-
1. In a wireless access point operative to support a plurality of Basic Service Set Identifiers (BSSIDs), each of the BSSIDs mapping by default to a corresponding Service Set Identifier (SSID), and to bridge wireless frames onto a network implementing a plurality of virtual networks, wherein each BSSID maps to a corresponding virtual network, a method comprising:
-
establishing a wireless connection, corresponding to a first BSSID, with a wireless client;
accessing a cache of network access information, wherein the network access information for a given wireless client identifies a corresponding BSSID;
using, if the wireless client is identified in the cache, the corresponding BSSID as the first BSSID;
otherwise using a default BSSID as the first BSSID;
receiving, from a remote node connected to the network, network access information for the wireless client, wherein the network access information comprises information identifying a virtual network;
storing the received network access information in the cache; and
if the virtual network identified in the network access information does not map to the first BSSID, terminating the wireless connection with the wireless client. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. In a wireless access point operative to support a plurality of Basic Service Set Identifiers (BSSIDs), each of the BSSIDs mapping by default to a corresponding Service Set Identifier (SSID), and to bridge wireless frames onto a network implementing a plurality of virtual networks, wherein each BSSID maps to a corresponding virtual network, a method comprising
receiving, from a wireless client, a probe request identifying a first SSID; -
accessing a cache of network access information to dynamically map the SSID to either a default BSSID or a BSSID stored in the cache in association with the wireless client;
providing the mapped BSSID to the wireless client;
proxying an authentication session between the wireless client and an authentication server, wherein the authentication server is operative to identify a virtual network corresponding to the wireless client, wherein the identified virtual network maps to a first BSSID;
comparing the first BSSID to the mapped BSSID;
storing, in the cache, the first BSSID in association with the wireless client; and
terminating a connection with the wireless client, if the first BSSID does not match the mapped BSSID. - View Dependent Claims (10, 11, 12, 13, 14, 15)
-
-
16. An apparatus operative to support a plurality of Basic Service Set Identifiers (BSSIDs), each of the BSSIDs mapping by default to a corresponding Service Set Identifier (SSID), and to bridge wireless frames onto a network implementing a plurality of virtual networks, wherein each BSSID maps to a corresponding virtual network, the apparatus comprising:
-
one or more processors;
a memory;
an authentication application, physically stored in the memory, comprising instructions operable to cause the one or more processors and the apparatus to establish a wireless connection, corresponding to a first BSSID, with a wireless client;
access a cache of network access information, wherein the network access information for a given wireless client identifies a corresponding BSSID;
use the corresponding BSSID as the first BSSID, if the wireless client is identified in the cache, otherwise use a default BSSID as the first BSSID;
receive, from a remote node connected to the network, network access information for the wireless client, wherein the network access information comprises information identifying a virtual network;
store the received network access information in the cache; and
if the virtual network identified in the network access information does not map to the first BSSID, terminate the wireless connection with the wireless client. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23)
-
-
24. An apparatus operative to support a plurality of Basic Service Set Identifiers (BSSIDs), each of the BSSIDs mapping by default to a corresponding Service Set Identifier (SSID), and to bridge wireless frames onto a network implementing a plurality of virtual networks, wherein each BSSID maps to a corresponding virtual network, the apparatus comprising:
-
means for establishing a wireless connection, corresponding to a first BSSID, with a wireless client;
means for accessing a cache of network access information, wherein the network access information for a given wireless client identifies a corresponding BSSID;
means for using, if the wireless client is identified in the cache, the corresponding BSSID as the first BSSID, otherwise, said means using a default BSSID as the first BSSID;
means for receiving, from a remote node connected to the network, network access information for the wireless client, wherein the network access information comprises information identifying a virtual network;
means for storing the received network access information in the cache; and
if the virtual network identified in the network access information does not map to the first BSSID, means for terminating the wireless connection with the wireless client.
-
Specification