SonicPoint : SonicPoint > SonicPoints

SonicPoint Deployment Best Practices
This section provides SonicWALL recommendations and best practices regarding the design, installation, deployment, and configuration issues for SonicWALL’s SonicPoint wireless access points. The information covered allows site administrators to properly deploy SonicPoints in environments of any size. This section also covers related external issues that are required for successful operation and deployment.
Further information about SonicPoint best practices can be found in the SonicPoint Deployment Best Practices Guide at https://support.software.dell.com/.
Topics:
Prerequisites
The following are required for a successful SonicPoint deployment:
Tested Switches
Wiring Considerations
Site Survey and Planning
Channels
The default setting of SonicPoints is auto-channel. When this is set, at boot-up the SonicPoint will do a scan to check if there are other wireless devices transmitting. Then, it will try to find an unused channel to use for transmission. Especially in larger deployments, this process can cause trouble. In large deployments, it is recommended to assign fixed channels to each SonicPoint. A diagram of the SonicPoints and their MAC Addresses helps to avoid overlaps. It is recommended is to mark the location of the SonicPoints and MAC Addresses on a floor-plan.
Wireless Card Tuning
If you are experiencing connectivity issues with laptops, check to see if the laptop has an Intel embedded wireless adapter. The following Intel chip sets are publicly known and acknowledged by Intel to have disconnect issues with third-party wireless access points:
These wireless cards are provided to OEM laptop manufacturers and are often rebranded under the manufacturers name—for example, both Dell and IBM use the above wireless cards, but the drivers are branded under their own name.
To identify the adapter, go to Intel’s support site and do a search for Intel Network Connection ID Tool. Install and run this tool on any laptop experiencing frequent wireless disconnect issues. The tool will identify which Intel adapter is installed inside the laptop.
After you have identified the Intel wireless adapter, go to Intel’s support site and download the newest software package for that adapter—it is recommended that you download and install the full Intel PRO/Set package and allow it to manage the wireless card, instead of Windows or any OEM-provided wireless network card management program previously used. SonicWALL recommends that you use version 10.5.2.0 or newer of the full Intel PRO/Set Wireless software driver/manager.
Be sure to use the Intel wireless management utility and to disable Microsoft’s Wireless Zero Config management service—the Intel utility should control the card, not the OS.
In the Advanced section, disable the power management by clearing the checkbox next to Use default value, then move the slider under it to Highest. This instructs the wireless card to operate at full strength and not go into sleep mode. When you are done, click on the OK button to save and activate the change. Reboot the laptop.
In the Advanced section, adjust the roaming aggressiveness by clearing the checkbox next to Use default value, then move the slider under it to Lowest. This instructs the wireless card to stay stuck to the AP it’s associated with as long as possible, and only roam if the signal is significantly degraded. This is extremely helpful in environments with large numbers of access points broadcasting the same SSID. When you are done, click on the OK button to save and activate the change. Reboot the laptop.
If you continue to have issues, you may also try adjusting the Preamble Mode on the wireless card. By default the Intel wireless cards above are set to auto. All SonicWALL wireless products by default are set to use a Long preamble, although this can be adjusted in the Management GUI. To adjust the Intel wireless card’s preamble setting, go to the Advanced section and clear the checkbox next to Use default value, then select Long Tx Preamble from the drop-down menu below it. When you are done, click on the OK button to save and activate the change. Reboot the laptop.
PoE
Long cable runs cause loss of power; 100-meter runs between SonicPoint and PoE switch may incur up to 16 percent power/signal degradation; because of this, the PoE switch needs to supply more power to the port to keep the SonicPoint operational.
SonicPoint ACe/ACi/N2
Full 802.3at compliance is required on any switch supplying PoE to SonicPoint ACe/ACi/N2. Do not operate SonicPoints on non-compliant switches as Dell SonicWALL does not support it.
Turn off pre-802.3at-spec detection as it may cause connectivity issues.
SonicPoint ACs (Type 1) can be set to Class 0, 1, 2, or 3 PD. SonicPoint ACs (Type 2) are set to Class 4 PD. The minimum and maximum power output values are as follows:
 
Ensure each SonicPoint AC/SonicPoint N2 is guaranteed to get 25 watts.
Be particularly careful to ensure all PoE switches can provide a minimum of 25 watts of power to each of its PoE ports. For example, a port that supports a SonicPoint ACs or SonicPoint N2 needs 25 watts of power. If a switch cannot guarantee each port 25 watts to each port, an external redundant power supply must be added. You need to work closely with the manufacturer of the PoE switch to ensure that enough power is supplied to the switch to power all of your PoE devices.
Legacy and SonicPoint N/Ni/Ne/NDR
Legacy SonicPoints and SonicPoint N/Ni/Ne/NDR are set to Class 0 PD, which uses 0.44W minimum up to 12.95W maximum power.
Full 802.3af compliance is required on any switch supplying PoE to legacy SonicPoints and SonicPoint N/Ni/Ne/NDR. Do not operate SonicPoints on non-compliant switches as Dell SonicWALL does not support it.
Turn off pre-802.3af-spec detection as it may cause connectivity issues.
Ensure each port can get 10 watts guaranteed, and set the PoE priority to critical or high.
Spanning-Tree
When an Ethernet port becomes electrically active, most switches by default will activate the spanning-tree protocol on the port to determine if there are loops in the network topology. During this detection period of 50-60 seconds, the port does not pass any traffic—this feature is well-known to cause problems with SonicPoints.
If you do not need spanning-tree, disable it globally on the switch, or disable it on each port connected to a SonicPoint device. If this is not possible, check with the switch manufacturer to determine if they allow for fast spanning-tree detection, which is a method that runs spanning-tree in a shortened time so as to not cause connectivity issues. Refer to Sample Dell switch configuration (per interface) for programming samples on how to do this.
VTP and GVRP
Turn these trunking protocols off on ports connected directly to SonicPoints as they have been known to cause issues with SonicPoints, especially the high-end Cisco Catalyst series switches.
Port-Aggregation
Broadcast Throttling/Broadcast Storm
This feature is an issue on some switches, especially D-Link. Disable on per port basis if possible, if not, disable globally.
Speed and Duplex
Virtual Access Point (VAP) Issues
Only VLAN-supported SonicWALL platforms can offer VAP features for existing releases. Each SSID should be associated with the unique VLAN ID to segment traffic in different broadcast domains. SDP/SSPP protocol packets must be untagged before reaching SonicWALL WLAN interface or SonicPoint.
The switch between the Dell SonicWALL network security appliance and the SonicPoint must be configured properly to allow both untagged SDP/SSPP traffic and tagged traffic with VLAN ID for each VAP SSID.
If at all possible assign each VAP to its own VLAN/Security Zone—this will provide maximum security and, although not explicitly required for PCI compliance, puts you solidly in the "green" zone.
Troubleshooting
When creating a Wireless zone and interface, make sure to configure the interface for the number of SonicPoints you wish to support—new interfaces are set to No SonicPoints by default. If you do not do this, the UTM appliance will not create the necessary DHCP scope and will not acquire any SonicPoints added to the interface.
Troubleshooting Older SonicPoints
If you have an older SonicPoint and it’s consistently port flapping, doesn’t power up at all, is stuck reboot cycling, or reports in the GUI as stuck in provisioning, check to see if you are running a current version of the firmware and the Dell SonicWALL network appliance has public internet access. You may need a newer SonicPoint.
Resetting the SonicPoint
The SonicPoint has a reset switch inside a small hole in the back of the unit, next to the console port. You can reset the SonicPoint at any time by pressing the reset switch with a straightened paperclip, a tooth pick, or other small, straight object.
The reset button resets the configuration of the mode the SonicPoint is operating in to the factory defaults. It does not reset the configuration for the other mode. Depending on the mode the SonicPoint is operating in, and the amount of time you press the reset button, the SonicPoint behaves in one of the following ways:
Press the reset button for at least three seconds, and less than eight seconds with the SonicPoint operating in Managed Mode to reset the Managed Mode configuration to factory defaults and reboot the SonicPoint.
Press the reset button for more than eight seconds with the SonicPoint operating in Managed Mode to reset the Managed Mode configuration to factory defaults and reboot the SonicPoint in SafeMode.
Switch Programming Tips
Topics:
Sample HP ProCurve switch commands (per-interface)
Sample Dell switch configuration (per interface)
Sample D-Link switch configuration
The D-Link PoE switches do not have a CLI, so you will need to use their web GUI.
Disable spanning-tree, broadcast storm control, LLDP and the Safeguard Engine on the switch before adding SonicPoints to the switch, as all may impact their successful provisioning, configuration, and functionality.