manualshive.com logo in svg

D-Link DWL-3500AP, Configuration Manual

The D-Link DWL-3500AP is a high-performance wireless access point designed to provide seamless and reliable internet connectivity. Enhance your network by accessing its user manual, available for free download at manualshive.com. This comprehensive manual is packed with valuable instructions and troubleshooting tips to maximize the potential of your DWL-3500AP.

Share
Download
background image

 

1.3 ACL 

Configuration 

The ACL in this scenario prevents wireless clients from accessing the web management 
interface of the switch. All other types of traffic is allowed. 
 
1.  From the LAN menu, navigate to the 

Access Control Lists > IP ACL > Access 

Profile Settings

 page. 

2. From 

the 

IP ACL

 field, select 

Create New Extended ACL

 from the drop-down 

menu. 

3.  Enter 100 in the 

ACL ID

 field, then click 

Submit

4. From 

the 

Rule Configuration

 page, enter 1 as the Rule ID, Deny as the 

Action

, and 

False for 

Match Every

, then click 

Submit

5.  The screen refreshes with additional fields. Click the 

Configure

 button associated 

with the appropriate fields and enter the following criteria to deny HTTP traffic from 
clients on the Guest Network to the Switch and APs: 

• 

Protocol Keyword

: IP 

• 

Source IP Address

: 10.90.91.1 

• 

Source IP Mask

: 0.0.0.255 (This is a wildcard mask) 

• 

Destination IP Address: 

10.90.90.1 

• 

Destination IP Mask:

 0.0.0.255 

• 

Destination L4 Port

: http  

6.  Create a new rule, enter 2 as the Rule ID, Permit as the 

Action

, and True for 

Match 

Every

, then click 

Submit

.  The reason for this second rule is that an ACL has an 

implicit “deny all” rule at the end.  ACL rules are checked in order and the action of 
the first to match the flow is taken.  If no match occurs, the packet will be dropped. 

 

Summary of Contents for DWL-3500AP

Page 1: ...Unified Wired Wireless Access System ProductModel DWS 3000 Series DWL 3500AP 8500AP Version2 1 Configuration Guide...

Page 2: ...uring LAN Settings 20 2 1 1 Create VLANs 20 2 1 2 Configure VLAN Routing 23 2 1 3 Enable Global Routing 25 2 1 4 Configure Static Routing 25 2 1 5 Configure the Loopback Interface 25 2 1 6 DHCP Server...

Page 3: ...DHCP 51 4 2 2 Configure routes on WS1 WS2 and L3 device 51 4 2 3 Set the MTU Size 52 4 3 Configure WLAN Settings 52 4 3 1 WPA2 Configuration 52 4 3 2 Configure Discovery 52 4 3 3 Connections 52 4 4 C...

Page 4: ...ireless switch for wireless client address assignment Understand some of the D LINK Unified Access Point features WS1 AP1 AP2 Seamless Roaming 10 90 90 90 8 CL1 10 90 90 91 8 10 90 90 92 8 SSID Guest...

Page 5: ...ew static IP address so that it does not use the same IP address as AP1 To access and configure AP1 and AP2 by using the access point CLI use the following steps Note you will only have CLI access to...

Page 6: ...access of all clients that have addresses within this range and still maintain additional addresses in this space for static configuration for clients or servers Since these addresses are on the 10 0...

Page 7: ...ireless clients 1 Select Pool Configuration in the Navigation tree 2 Select create and specify the following settings a Pool Name GuestPool b Type of Binding Dynamic c Network Number 10 0 0 0 d Networ...

Page 8: ...refreshes with additional fields Click the Configure button associated with the appropriate fields and enter the following criteria to deny HTTP traffic from clients on the Guest Network to the Switc...

Page 9: ...e applied to the appropriate wireless client traffic that goes through the APs connected to the switch 1 From the ACL Interface Configuration page 2 Select port 0 1 from the Slot Port drop down menu 3...

Page 10: ...and APs and peer switches It is important to set the correct country code on the switch so that the APs operate in the correct regulatory domain 1 To configure wireless features select the WLAN tab f...

Page 11: ...to port 13 of the switch 3 Wait about 60 seconds and click Monitoring Access Points Authentication Failed Access Points 4 Select the APs to be managed and click Manage to add them to the valid AP dat...

Page 12: ...1 6 Save Configuration To save the switch configuration select Save Changes from the tool bar...

Page 13: ...will also observe minimal packet loss during a roam 1 8 2 Auto channel adjustment after associating with AP2 To check the current operating channel and to see if any channel adjustment is required se...

Page 14: ...P Management RF Management 2 Choose the 802 11 b g and select the Manual Channel Plan tab and then the Start button to start the process Use the Refresh button to check the results of the channel plan...

Page 15: ...ent Advanced page Select the appropriate channel of the AP radio and change it to the desired channel on the next screen 1 8 3 Rogue AP Detection To check the rogue AP list select the WLAN tab from th...

Page 16: ...ed to a level based on presence or absence of packet transmission errors The power is changed in increments of 10 Automatic adjustment can be done by selecting the Automatic Power in the Radio tab of...

Page 17: ...be applied to the AP To do this click Administration Advanced Configuration AP Profiles Select the profile to apply then click Apply to update all APs that use the selected profile 1 8 4 1 Self Healin...

Page 18: ...in the Radio Details tab of Monitoring Access Points Managed Access Points 1 9 Switch and AP Cleanup You will not need any of the settings you configured in this scenario for the other three scenario...

Page 19: ...o block IP traffic between clients on different SSIDs Assign IP addresses of APs wireless clients through the WS DHCP server Configure multiple SSIDs with different VLANs Enable wireless encryption WS...

Page 20: ...VLAN routing interfaces for the two VAPs The third VAP is the Guest Network which is not used in this scenario When wireless clients connect to the AP all traffic from the client is tagged with the V...

Page 21: ...uration tells the switch to add an 802 1Q VLAN Tag to the packets that egress the port on those VLANs This is so that the AP knows which Network or SSID to forward the traffic on 7 Click Submit 8 Repe...

Page 22: ...r you have repeated the steps to configure all four VLANs use the Monitoring VLAN Summary VLAN Status and VLAN Port Status pages to verify that the VLANs and the ports are configured properly VLAN Sta...

Page 23: ...lick L3 Features VLAN Routing Configuration 2 Enter the VLAN ID for VLAN 20 in the VLAN ID field and select Create to create a VLAN routing interface for VLAN 20 This creates a logical routing interfa...

Page 24: ...interface 4 2 VLAN 30 4 3 VLAN 100 and 4 4 VLAN 200 Refer to the following table for IP address information Interface IP Address Subnet Mask Interface 4 1 192 168 20 254 255 255 255 0 Interface 4 2 1...

Page 25: ...eed to configure any static routes for this scenario 2 1 5 Configure the Loopback Interface When routing is enabled you should create a Loopback interface for the wireless functions The loopback inter...

Page 26: ...From the LAN menu click Administration DHCP Server Global Configuration 2 In the Admin Mode field select Enable then click Submit to enable the DHCP server 3 Select Pool Configuration in the Navigatio...

Page 27: ...eld then click Submit 10 From the Rule Configuration page enter 1 as the Rule ID Deny as the Action and click Submit 11 The screen refreshes with additional fields Click the Configure button associate...

Page 28: ...utton associated with the appropriate fields and enter the following criteria to deny IP traffic from clients on the D LINK NET2 network to clients on the D LINK NET1 network Protocol Keyword IP Sourc...

Page 29: ...ion field and True in the Match Every field and then click Submit Next you must attach the ACL to port 0 1 and port 0 13 so that the rules are applied to the appropriate wireless client traffic that g...

Page 30: ...b of the Administration Basic Setup page make sure the switch IP address is the Loopback interface address 192 168 10 254 the country code is correct and that the WLAN Switch Operational Status is Ena...

Page 31: ...ect the 802 11b g radio 6 Select the check box next to Managed SSID 2 and click Edit 7 Change the following Network parameters and select Submit a SSID D LINK NET1 b VLAN 100 c Security WEP Select PSK...

Page 32: ...repeat the procedure and add a second secure network return to the SSID page by clicking on the SSID tab 9 Select the check box next to Managed SSID 3 and click Edit 10 Change the following parameters...

Page 33: ...onnect AP2 to port 13 of the switch 3 Wait about 60 seconds and click Monitoring Access Points Managed Access Points Note you might find the APs in the Authentication Failed Access Points page if you...

Page 34: ...your IP address does not change even though you have now associated with an AP on a different subnet Fast roams will not function on the Guest Network SSID because the client will be forced to acquire...

Page 35: ...for this scenario include the following To know how to setup the L3 tunneling L3 Tunneling must be used since the APs are on different IP subnets and there is not a L2 path between the APs for the WLA...

Page 36: ...rfaces or devices you configure along with their IP address and port information You configure the entries in bold in this scenario All other entries were configured in previous scenarios Interface De...

Page 37: ...t Configure the Port VLAN ID for ports 0 21 0 22 and 0 24 8 From the LAN tab on the switch Web interface click L2 Features VLAN Port Configuration 9 Select port 0 21 from the Slot Port drop down menu...

Page 38: ...ulated customer network You can either configure static routes for each network you need access to at the Wireless Switch or you can configure a default route The wireless switch at a minimum requires...

Page 39: ...clients on AP1 and AP2 if they associate with a non Tunneled SSID 3 1 4 DHCP Server You need to configure a new IP address pool for the clients that connect to the L3 Tunnel network the FTP Audio Vide...

Page 40: ...ch ports The AP can transmit and receive frames of up to 1542 bytes on the LAN port If you use tunneling only for IP telephony or if you set the MTU size on all wireless clients that use tunneling to...

Page 41: ...very tab on the Basic Setup page 3 Add the IP address for AP2 172 17 6 1 which is on the customer network to the L3 IP Discovery list and then click Submit Note since you do not know for sure which IP...

Page 42: ...PA2 h WPA Ciphers TKIP CCMP i Passphrase 1234567890 3 2 2 Apply the AP Profile Because the AP profile that the APs use has changed and you have not disconnected AP1 you can manually re apply the AP pr...

Page 43: ...the FTP Audio Video devices 7 Connect AP2 to a port in the 172 168 6 0 network on the customer L3 device 8 Wait about 60 seconds and click Monitoring Access Points Managed Access Points to make sure...

Page 44: ...rk and check if you re getting the IP address correctly from the Wireless switch s DHCP server on the Tunnel subnet 2 Once wireless connectivity is confirmed you can check which AP your laptop connect...

Page 45: ...se Full 4 WS Managed AP AP Neighbor List Full 5 WS Managed AP Client Neighbor List Full 6 WS AP Failure List Full 7 RF Scan AP List Full 8 Client Association Database Full 9 Client Failure List Full P...

Page 46: ...ed The trap logs can be viewed by traversing to DWS 3024 Monitoring Trap Logs in the LAN tab 3 8 Syslog Configuration Enable Syslog by traversing to DWS 3026 Administration System Log Configuration an...

Page 47: ...n required for engineering debugging Connect your laptop PC to WLAN Switch s serial console or telnet to the IP address of the switch and capture the following information 1 show running config 2 show...

Page 48: ......

Page 49: ...ives To know how to setup the multiple WS deployment as peer switches across a L3 core To know how to setup WPA2 EAP Authentication AP1 WS1 Network IP 10 90 90 90 Loopback 192 168 10 250 L3 Tunnels 19...

Page 50: ...rface to WS1 NA 172 17 5 254 24 L3 device port WS2 Management Interface NA 10 90 90 91 24 Any unused WS2 Loopback Interface NA 192 168 20 250 32 Logical only WS2 L3 Tunnel Interface 2 RD 192 168 2 253...

Page 51: ...0 0 172 17 6 254 L3 Device 192 168 101 0 255 255 255 0 172 17 5 253 L3 Device 192 168 102 0 255 255 255 0 172 17 6 253 L3 Device 192 168 4 0 255 255 255 0 172 17 6 253 L3 Device 192 168 10 0 255 255...

Page 52: ...in the configuration 4 3 1 WPA2 Configuration To support WPA2 enable wpa enterprise security mode configure the WPA Ciphers to use TKIP and CCMP and include WPA version WPA2 Furthermore configure the...

Page 53: ...ent entry for AP2 2 Add the user dlink with password admin to the users file as dlink Auth Type EAP User Password admin 3 Restart the RADIUS server you must restart it after you make any changes to th...

Page 54: ...e a roam by disabling the radio the client is currently associated with By using this method the link between the AP and the Wireless switch will not go down and therefore the local route will not be...

Page 55: ...hes D Link Access Points other access points and associated wireless clients The WLAN Visualization tool can help you visualize where the APs are in relationship to the building You can upload one or...

Page 56: ...d your own floor plan image file to Wireless Switch it s recommended the file size is smaller than 150KB 3 The RF power display in this tool is only for reference and it doesn t intend to reflect the...

Page 57: ...Then go to Edit and select New Graph and you can input the following then press Save...

Page 58: ...side tab including Switches Managed APs and Rogue APs Then you can go to View AP Power Display and select Show 802 11b g you ll be able to see the following Then you can move your cursor to any of th...

Page 59: ...2nd level of system access the command prompt is ex DWS 3024 and you can view all system information with the command Following are some useful ones for listed scenarios show network show vlan port a...

Page 60: ...WS 3024 SCN1 1018 DWS 3024 SCN2 1018 DWS 3024 SCN3 1018 DWS 3024 1 SCN4 1018 DWS 3024 2 SCN4 1018 respectively two configurations for scenario 4 for 2 WS so you can still go on the tests Downloading t...

Page 61: ......

Reviews:

No comments

Related manuals for DWL-3500AP

Samsung Ubigate iBG1000 Installation Manual preview
Ubigate iBG1000
Brand: Samsung Pages: 52
Samsung Connect Home Pro ET-WV530 Quick Start Manual preview
Connect Home Pro ET-WV530
Brand: Samsung Pages: 2
SMC Networks EliteConnect SMC2555W-AG2 Specifications preview
EliteConnect SMC2555W-AG2
Brand: SMC Networks Pages: 2
Cerio WP-300N Quick Start Manual preview
WP-300N
Brand: Cerio Pages: 13
InfiNet Wireless Quanta 5 Technical User'S Manual preview
Quanta 5
Brand: InfiNet Wireless Pages: 100
EAS Electric WFLCAS71-170 Instruction Manual preview
WFLCAS71-170
Brand: EAS Electric Pages: 110
Z-Com ZAC-1023-5 User Manual preview
ZAC-1023-5
Brand: Z-Com Pages: 66
HANSONG HSBT3031-08 User Manual preview
HSBT3031-08
Brand: HANSONG Pages: 34
Billion BIPAC 6500W User Manual preview
BIPAC 6500W
Brand: Billion Pages: 61
Linksys E2500 V4 Quick Start Manual preview
E2500 V4
Brand: Linksys Pages: 32
VDO MOBILE HOTSPOT Brochure preview
MOBILE HOTSPOT
Brand: VDO Pages: 2
Cambium Networks ePMP User Manual preview
ePMP
Brand: Cambium Networks Pages: 478
StarTech.com WAP1011BB Instruction Manual preview
WAP1011BB
Brand: StarTech.com Pages: 32
IP-COM CW500 Setup Manual preview
CW500
Brand: IP-COM Pages: 15
IP-COM W185AP User Manual preview
W185AP
Brand: IP-COM Pages: 63
2xWireless 2X User And Installation Manual preview
2X
Brand: 2xWireless Pages: 12
WOW!dea MOCA XP User Manual preview
MOCA XP
Brand: WOW!dea Pages: 8
AVM FRITZ!Box 7590AX Manual preview
FRITZ!Box 7590AX
Brand: AVM Pages: 288

Brands by name

Popular brands

Load more brands