manualshive.com logo in svg

D-Link DWL-8600AP, Administrator'S Manual

Share
Download
D-Link DWL-8600AP Administrator'S Manual Download Page 55

Software User Manual

 D-Link UAP

12/10/09

34CSFP6XXUAP-SWUM100-D13

Virtual Access Point Settings

Page  55

WPA E

NTERPRISE

WPA Enterprise with 

RADIUS

 is an implementation of the Wi-Fi Alliance IEEE 

802.11i

 standard, which includes 

CCMP

(

AES

), and 

TKIP

 mechanisms. The Enterprise mode requires the use of a RADIUS server to authenticate users.

This security mode is backwards-compatible with wireless clients that support the original 

WPA

.

Table 19:  WPA Enterprise 

Field

Description

WPA Versions

Select the types of client stations you want to support:

• WPA.

 If all client stations on the network support the original 

WPA

 but none support the newer 

WPA2

, then select WPA.

• WPA2. 

If all client stations on the network support 

WPA2

, we suggest using WPA2 which provides 

the best security per the 

IEEE

 

802.11i

 standard.

• WPA  and  WPA2.

 

If you have a mix of clients, some of which support 

WPA2

 and others which 

support only the original 

WPA

, select both WPA and WPA2. This lets both WPA and WPA2 client 

stations associate and authenticate, but uses the more robust WPA2 for clients who support it. 
This WPA configuration allows more interoperability, at the expense of some security. 

Enable

 

pre-authentication

If for WPA Versions you select only WPA2 or both WPA and WPA2, you can enable pre-
authentication for 

WPA2

 clients.

Click

 Enable pre-authentication

 if you want 

WPA2

 wireless clients to send pre-authentication 

packet. The pre-authentication information will be relayed from the AP the client is currently using to 
the target AP. Enabling this feature can help speed up authentication for roaming clients who 
connect to multiple APs.

This option does not apply if you selected WPA for WPA Versions because the original 

WPA

 does 

not support this feature.

Cipher Suites

Select the cipher suite you want to use:

TKIP

CCMP (AES)

TKIP and CCMP (AES)

By default both TKIP and CCMP are selected. When both TKIP and CCMP are selected, client 
stations configured to use WPA with RADIUS must have one of the following:

A valid TKIP RADIUS IP address and RADIUS Key

A valid CCMP (AES) IP address and RADIUS Key

Use Global RADIUS 
Server Settings

By default each VAP uses the global RADIUS settings that you define for the AP at the top of the 
VAP page. However, you can configure each VAP to use a different set of RADIUS servers. 

To use the global RADIUS server settings, make sure the check box is selected. 

To use a separate RADIUS server for the VAP, clear the check box and enter the RADIUS server IP 
address and key in the following fields.

RADIUS IP Address 
Type

Specify the IP version that the RADIUS server uses.

You can toggle between the address types to configure IPv4 and IPv6 global RADIUS address 
settings, but the AP contacts only the RADIUS server or servers for the address type you select in 
this field. 

RADIUS IP Address

 RADIUS IPv6 
Address 

Enter the IPv4 or IPv6 address for the primary RADIUS server for this VAP.

If the IPv4 RADIUS IP Address Type option is selected in the previous field, enter the IP address of 
the RADIUS server that all VAPs use by default, for example 192.168.10.23. If the IPv6 RADIUS IP 
Address Type option is selected, enter the IPv6 address of the primary global RADIUS server, for 
example 2001:0db8:1234::abcd. 

Summary of Contents for DWL-8600AP

Page 1: ...Copyright 2009 All rights reserved Unified Access Point AP Administrator s Guide Product Model DWL 8600AP Unified Wired Wireless Access System Release 1 0 December 2009...

Page 2: ...D Link UAP Software User Manual 12 10 09...

Page 3: ...rface by Using the IPv6 Address 21 Using the CLI to View the IP Address 21 Configuring the Ethernet Settings 22 Using the CLI to Configure Ethernet Settings 23 Configuring IEEE 802 1X Authentication 2...

Page 4: ...System 56 WEP on WDS Links 59 WPA PSK on WDS Links 59 Controlling Access by MAC Authentication 60 Configuring a MAC Filter and Station List on the AP 60 Configuring MAC Authentication on the RADIUS S...

Page 5: ...iguring VAP QoS Parameters 87 Managing Client QoS ACLs 89 IPv4 ACLs 89 ACL Configuration Process 89 Creating a DiffServ Class Map 94 Defining DiffServ 94 Creating a DiffServ Policy Map 99 Client QoS S...

Page 6: ...sing SNMP 117 Configuring Radio Settings 119 Radio Configuration from the Web Interface 119 Radio Configuration from the CLI 120 Radio Configuration Using SNMP 121 Configuring the Wireless Distributio...

Page 7: ...ts 48 Figure 13 Configuring WDS Settings 57 Figure 14 Configuring MAC Authentication 60 Figure 15 Configuring Load Balancing 62 Figure 16 Configuring Managed Access Point Settings 64 Figure 17 IEEE 80...

Page 8: ...XUAP SWUM100 D13 Figure 34 Client QoS Status 101 Figure 35 Cluster Information and Member Configuration 104 Figure 36 Session Management 106 Figure 37 Channel Management 108 Figure 38 Wireless Neighbo...

Page 9: ...Points 35 Table 12 Ethernet Settings Page 38 Table 13 Wireless Settings 41 Table 14 Radio Settings 44 Table 15 Virtual Access Point Settings 48 Table 16 Static WEP 51 Table 17 IEEE 802 1X 53 Table 18...

Page 10: ...nfiguration 90 Table 41 DiffServ Class Map 95 Table 42 DiffServ Policy Map 100 Table 43 Client QoS Status 102 Table 44 Access Points in the Cluster 104 Table 45 Clustering Options 105 Table 46 Session...

Page 11: ...s on page 27 Section 4 Managing the Access Point on page 37 Section 5 Configuring Access Point Services on page 67 Section 6 Configuring SNMPv3 on page 77 Section 7 Maintaining the Access Point on pag...

Page 12: ...e to save your settings Menu titles page names and button names Blue Text See Document Conventions on page 12 Hyperlinked text courier font WLAN AP show network Screen text file names commands user ty...

Page 13: ...The information in the online help is a subset of the information available in the Unified Access Point Administrator s Guide Online help information corresponds to each page on the UAP Administratio...

Page 14: ...ation about configuring the AP in Managed Mode by using the D Link Unified Switch see the Administrator Guide for the switch Before you power on a new UAP review the following sections to check requir...

Page 15: ...work For wireless connection to the access point your administration device will need Wi Fi capability similar to that of any wireless client Portable or built in Wi Fi client adapter that supports on...

Page 16: ...esetting the AP configuration to the factory defaults see Resetting the Factory Default Configuration on page 84 or you can get a dynamically assigned address by connecting the AP to a network that ha...

Page 17: ...To install the UAP use the following steps 1 Connect the AP to an administrative PC by using a LAN connection or a direct cable connection To use a LAN connection connect one end of an Ethernet cable...

Page 18: ...from the administrative computer to the AP and use a terminal emulation program to access the command line interface CLI b At the login prompt enter admin for the user name and admin for the password...

Page 19: ...lan to use one you must change the Connection Type from DHCP to Static IP You can either assign a new Static IP address to the AP or continue using the default address We recommend assigning a new Sta...

Page 20: ...rough the Ethernet Settings page IPv6 Link Local Address Shows the IPv6 Link Local address which is the IPv6 address used by the local physical link The link local address is not configurable and is a...

Page 21: ...dress of the access point into a Web browser If a DHCP server on your network assigns an IP address to the UAP and you do not know the IP address use the following steps to view the IP address of the...

Page 22: ...and VLAN information might not work for all networks By default the DHCP client on the UAP automatically broadcasts requests for network information If you want to use a static IP address you must dis...

Page 23: ...untagged vlan status down Set the untagged VLAN ID set untagged vlan vlan id 1 4094 View the connection type get management dhcp status Use DHCP as the connection type set management dhcp client statu...

Page 24: ...s to the network until the 802 1X authenticator grants access If your network uses 802 1X you must configure 802 1X authentication information that the AP can supply to the authenticator If your netwo...

Page 25: ...rom the computer and the access point b Connect an Ethernet cable from the access point to the LAN c Connect your computer to the LAN by using an Ethernet cable or a wireless card 2 Test LAN connectiv...

Page 26: ...y mode to control wireless client access Each radio has 16 VAPs with VAP IDs from 0 15 By default only VAP 0 on each radio is enabled VAP0 has the following default settings VLAN ID 1 Broadcast SSID E...

Page 27: ...nt Information Viewing Neighboring Access Points Viewing Managed AP DHCP Information VIEWING INTERFACE STATUS To monitor Ethernet LAN and wireless LAN WLAN settings click the Interfaces tab Figure 2 V...

Page 28: ...ormation about configuring these settings see Wireless Settings on page 40 and Modifying Radio Settings on page 43 VIEWING EVENTS The Events page shows real time system events on the AP such as wirele...

Page 29: ...g persistent logging can wear out the flash non volatile memory and degrade network performance You should only enable persistent logging to debug a problem Make sure you disable persistent logging af...

Page 30: ...eive the syslog messages The procedure to configure a remote log host depends on the type of system you use as the remote host ENABLING OR DISABLING THE LOG RELAY HOST ON THE EVENTS PAGE To enable and...

Page 31: ...of the transmit and receive statistics for the Ethernet interface on the AP and for the VAPs on both radio interfaces All transmit and receive statistics shown are totals since the AP was last started...

Page 32: ...interface on each of its two radios VLAN ID Virtual LAN VLAN ID You can use VLANs to establish multiple internal and guest networks on the same AP The VLAN ID is set on the VAP tab See Configuring Lo...

Page 33: ...enticated and Associated Status shows the underlying IEEE 802 11 authentication and association status which is present no matter which type of security the client uses to connect to the AP This statu...

Page 34: ...or all APs within range of the AP on which you are viewing the Administration Web pages Click Apply to refresh the screen and display the most current information To view information about other acces...

Page 35: ...meric string of up to 32 characters that uniquely identifies a wireless local area network It is also referred to as the Network Name The SSID is set on the VAP tab See Configuring Load Balancing on p...

Page 36: ...s that the AP learned about from a DHCP server on your network For information about how to configure a DHCP server to respond to AP DHCP requests with the switch IP address information see the Admini...

Page 37: ...igation tree of the UAP Web UI ETHERNET SETTINGS The default wired interface settings which include DHCP and VLAN information might not work for all networks By default the DHCP client on the UAP auto...

Page 38: ...port on this AP This is a read only field that you cannot change Management VLAN ID The management VLAN is the VLAN associated with the IP address you use to access the AP The default management VLAN...

Page 39: ...disable IPv6 management access to the AP IPv6 Auto Config Admin Mode Enable or disable IPv6 auto address configuration on the AP When IPv6 Auto Config Mode is enabled automatic IPv6 address configura...

Page 40: ...ts of the LAN related specifically to the radio device in the AP 802 11 Mode and Channel and to the network interface to the AP AP MAC address To configure the wireless interface click the Wireless Se...

Page 41: ...communications Standard Institute ETSI category 802 11h is also enabled for Japan Station Isolation To enable station isolation select the check box directly beside it When Station Isolation is disabl...

Page 42: ...oth the APs operate on the same channel For more information on WDS see Configuring Load Balancing on page 62 Channel Select the Channel The range of available channels is determined by the mode of th...

Page 43: ...trol the behavior of the radio devices in the AP and its interaction with the physical medium that is how and what type of electromagnetic waves the AP emits To specify radio settings click the Radio...

Page 44: ...d transnational authorities such as the Federal Communications Commission FCC or the International Telecommunication Union ITU R Channel Bandwidth 802 11n modes only The 802 11n specification allows a...

Page 45: ...d in bytes The fragmentation threshold is a way of limiting the size of packets frames transmitted over the network If a packet exceeds the fragmentation threshold you set the fragmentation function i...

Page 46: ...l location of your network Fixed Multicast Rate Select the multicast traffic transmission rate you want the AP to support Rate Sets Check the transmission rate sets you want the AP to support and the...

Page 47: ...ways acts as a primary while the others act as backup servers The network type IPv4 or IPv6 and accounting mode are common across all configured RADIUS servers You can configure each VAP to use the gl...

Page 48: ...ds and configuration options on the VAP page Table 15 Virtual Access Point Settings Field Description RADIUS IP Address Type Specify the IP version that the RADIUS server uses You can toggle between t...

Page 49: ...RADIUS IP Address 1 uses RADIUS Key 1 RADIUS IP Address 2 uses RADIUS Key 2 and so on Enable RADIUS Accounting Select this option to track and measure the resources a particular user has consumed such...

Page 50: ...WPA Enterprise If you select a security mode other than None additional fields appear These fields are explained below Note The Security mode you set here is specifically for this VAP MAC Authenticat...

Page 51: ...ch WEP key the AP will use to encrypt the data it transmits Key Length Specify the length of the key by clicking one of the radio buttons 64 bits 128 bits Key Type Select the key type by clicking one...

Page 52: ...e frame body and cyclic redundancy checking CRC of each 802 11 frame This mode requires the use of an external RADIUS server to authenticate users The AP requires a RADIUS server capable of EAP such a...

Page 53: ...resses to use as the backup RADIUS servers for this VAP The field label is RADIUS IP Address when the IPv4 RADIUS IP Address Type option is selected and RADIUS IPv6 Address when the IPv6 RADIUS IP Add...

Page 54: ...WPA2 and others which support only the original WPA select both of the check boxes This lets both WPA and WPA2 client stations associate and authenticate but uses the more robust WPA2 for clients who...

Page 55: ...AP Enabling this feature can help speed up authentication for roaming clients who connect to multiple APs This option does not apply if you selected WPA for WPA Versions because the original WPA does...

Page 56: ...er up to three IPv4 and or IPv6 addresses to use as the backup RADIUS servers for this VAP The field label is RADIUS IP Address when the IPv4 RADIUS IP Address Type option is selected and RADIUS IPv6...

Page 57: ...Both APs participating in a WDS link must be on the same Radio channel and using the same IEEE 802 11 mode See Modifying Radio Settings on page 43 for information on configuring the Radio mode and ch...

Page 58: ...wlan1 Remote Address Specify the MAC address of the destination AP that is the AP on the other end of the WDS link to which data will be sent or handed off and from which data will be received Click...

Page 59: ...any WDS link VAP0 of the selected radio must be configured for WPA PSK or WPA Enterprise Table 22 WPA PSK on WDS Links Field Description Encryption WPA PSK SSID Enter an appropriate name for the new W...

Page 60: ...he MAC address of the client in the local Stations List or on the RADIUS server If it is found the global allow or deny setting is applied If it is not found the opposite is applied On the VAP page th...

Page 61: ...hat are either permitted or denied access to the network through the AP To add a MAC Address to the local Stations List enter its 48 bit MAC address into the lower text boxes then click Add To remove...

Page 62: ...25 Load Balancing Field Description Load Balancing Enable or disable load balancing To enable load balancing on this AP click Enable To disable load balancing on this AP click Disable Utilization for...

Page 63: ...on As long as the AP maintains communication with the switch through the keepalive messages it remains in Managed Mode If the AP does not receive a message within 45 seconds of the last keepalive mess...

Page 64: ...tacting wireless switches Switch IP address Enter the IP address of up to four wireless switches that can manage the AP You can enter the IP address in dotted format or as an DNS name You can view a l...

Page 65: ...isabled to disable the Administrative status of the 802 1X Supplicant Username Enter the MD5 user name for the AP to use when responding to requests from an 802 1X authenticator The user name can be 1...

Page 66: ...Management ACL Table 28 Management ACL Field Description Management ACL Mode Enable or disable the management ACL feature At least one IPv4 or IPv6 address should be configured before enabling Managem...

Page 67: ...ss Point Configuring Quality of Service QoS Enabling the Network Time Protocol Server The configuration pages for the features in this section are located under the Service heading on the navigation t...

Page 68: ...he SNMPv3 heading you can manage SNMPv3 users and their security levels and define access control to the SNMP MIBs For information about how to configure SNMPv3 views groups users and targets see Conf...

Page 69: ...v1 SNMPv2c and SNMPv3 Read only community name for permitted GETs Enter a read only community name The community name as defined in SNMPv2c acts as a simple authentication mechanism to restrict the ma...

Page 70: ...55 255 255 0 The address range is used to specify the subnet of the designated NMS Only machines with IP addresses in this range are permitted to execute get and set requests on the managed device Giv...

Page 71: ...SSH tab and configure the settings as described in Table 31 Figure 21 SSH Status SETTING THE TELNET STATUS Telnet is a program that provides access to the D Link UAP CLI from a remote host From the Te...

Page 72: ...lient stations AP Enhanced Distributed Channel Access EDCA Parameters affect traffic flowing from the AP to the client station Station Enhanced Distributed Channel Access EDCA Parameters affect traffi...

Page 73: ...tically sent to this queue Data 1 Video High priority queue minimum delay Time sensitive video data is automatically sent to this queue Data 2 best effort Medium priority queue medium throughput and d...

Page 74: ...r packet bursts on the wireless network A packet burst is a collection of multiple frames transmitted without header information The decreased overhead results in higher throughput and better performa...

Page 75: ...ling continues until either the data frame is sent or the Maximum Contention Window size is reached Once the Maximum Contention Window size is reached retries will continue until a maximum number of r...

Page 76: ...ork time protocol NTP server first enable the use of NTP and then identify the NTP server you want to use Table 34 SNTP Settings Field Description Network Time Protocol NTP NTP provides a way for the...

Page 77: ...ily of view subtrees where each view subtree is a subtree within the managed object naming tree You can create MIB views to control the OID range that SNMPv3 users can access A MIB view called all is...

Page 78: ...th and RO groups are defined by default To define additional groups navigate to the SNMPv3 Groups page and configure the settings that Table 36 on page 79 describes Table 35 SNMPv3 Views Field Descrip...

Page 79: ...ation and data encryption With this security level users send an MD5 key password for authentication and a DES key password for encryption For groups that require authentication encryption or both you...

Page 80: ...ups are RWAuth RWPriv and RO You can define additional groups on the SNMPv3 Groups page Authentication Type Select the type of authentication to use on SNMP requests from the user MD5 Require MD5 auth...

Page 81: ...Pv3 Users settings you must click Apply to apply the changes and to save the settings Table 38 SNMPv3 Targets Field Description IP Address Enter the IP address of the remote SNMP manager to receive th...

Page 82: ...nt or to save as a back up copy You can use HTTP or TFTP to transfer files to and from the UAP After you download a configuration file to the management station you can manually edit the file which is...

Page 83: ...REVIOUSLY SAVED FILE You can use HTTP or TFTP to transfer files to and from the UAP After you download a configuration file to the management station you can manually edit the file which is in XML for...

Page 84: ...are valid to use with Restore for example ap_config xml 5 Click the Restore button The AP reboots A reboot confirmation dialog and follow on rebooting status message displays Please wait for the reboo...

Page 85: ...menu on the main menu bar Information about the current firmware version is displayed and an option to upgrade a new firmware image is provided 2 Make sure the Use TFTP to upload the file check box is...

Page 86: ...Browse button and locate the firmware image file The firmware upgrade file supplied must be a tar file Do not attempt to use bin files or files of other formats for the upgrade these types of files wi...

Page 87: ...etwork such as the amount of bandwidth an individual client is allowed to send and receive To control general categories of traffic such as HTTP traffic or traffic from a specific subnet you can confi...

Page 88: ...VAP menu QoS must be enabled globally from the Client QoS Global Admin Mode field and on the VAP QoS Mode field for the Client QoS settings to be applied to wireless clients Bandwidth Limit Down Ente...

Page 89: ...n which can be one of the following IPv4 The ACL examines IPv4 packets for matches to ACL rules IPv6 The ACL examines IPv6 packets for matches to ACL rules MAC The ACL examines layer 2 frames for matc...

Page 90: ...rules to the ACL 5 Configure the match criteria for the rules 6 Apply the ACL to one or more VAPs To configure an ACL click the Client QoS ACL tab Figure 31 Client QoS ACL The following table describ...

Page 91: ...ou select Traffic that does not meet the criteria is forwarded unless this rule is the final rule Because there is an implicit deny all rule at the end of every ACL traffic that is not explicitly perm...

Page 92: ...http smtp snmp telnet tftp www Each of these keywords translates into its equivalent port number Match to Port Enter the IANA port number to match to the source port identified in the datagram header...

Page 93: ...ype octet in the IP header The TOS Bits value is a two digit hexadecimal number from 00 to ff The high order three bits represent the IP precedence value The high order six bits represent the IP Diffe...

Page 94: ...d Policy Map pages to define the following categories and their criteria Class create classes and define class criteria Policy create policies associate classes with policies and define policy stateme...

Page 95: ...ers Match Layer 3 Protocol Specify whether to classify IPv4 or IPv6 packets Match Criteria Configuration Class Map Name Select name of the class to configure Use the fields in the Match Criteria Confi...

Page 96: ...are important The opposite is true with an ACL wild card mask For example to match the criteria to a single host address use a mask of 255 255 255 255 To match the criteria to a 24 bit subnet for exam...

Page 97: ...header The port range is 0 65535 and includes three different types of ports 0 1023 Well Known Ports 1024 49151 Registered Ports 49152 65535 Dynamic and or Private Ports Destination Port Select this f...

Page 98: ...ddress Select this field and enter the destination MAC address to compare against an Ethernet frame Destination MAC Mask Enter the destination MAC address mask specifying which bits in the destination...

Page 99: ...s A policy can contain multiple classes When the policy is active the actions taken depend on which class matches the packet Packet processing begins by testing the class match criteria for a packet A...

Page 100: ...ciate with this policy name Police Simple Select this option to establish the traffic policing style for the class The simple form of the policing style uses a single data rate and burst size resultin...

Page 101: ...m 0 7 Mark IP DSCP Select this field to mark all packets for the associated traffic stream with the IP DSCP value you select from the list or specify Select from List Select from a list of DSCP types...

Page 102: ...pe Up Shows the type of ACL that is applied to traffic in the inbound client to AP direction which can only be Pv4 The ACL examines IPv4 packets for matches to ACL rules ACL Name Up Shows the name of...

Page 103: ...L RADIO APS Clusters can contain a mixture of APs with two radios and APs with a single radio When the configuration of a single radio AP in the cluster changes the AP propagates the change to the fir...

Page 104: ...status field is visible then the AP is enabled for clustering If clustering is not enabled then the AP is operating in stand alone mode and none of the information in this table is visible To disable...

Page 105: ...e access point is now a cluster member Its Status Mode on the Cluster Access Points tab now indicates cluster instead of Not Clustered NAVIGATING TO CONFIGURATION INFORMATION FOR A SPECIFIC AP In gene...

Page 106: ...is currently connected To view a particular statistic for client sessions select an item from the Display drop down list and click Go You can view information about idle time data rate signal strength...

Page 107: ...lt automatic channel assignment is disabled You can start channel management to optimize channel usage across the cluster on a scheduled interval Table 46 Session Management Field Description AP Locat...

Page 108: ...signment is disabled off Click Start to resume automatic channel assignment When automatic channel assignment is enabled the Channel Manager periodically maps radio channels used by clustered access p...

Page 109: ...re automatically fine tuned once every hour if interference can be reduced by 25 percent or more Channels will be re assigned even if the network is busy The appropriate channel sets will be used b g...

Page 110: ...coverage expectations By assessing which APs are visible at what signal strength from other APs you can verify that the deployment meets your planning goals Detect faults Unexpected changes in the co...

Page 111: ...er Shows only neighbor APs that are members of the cluster Not in cluster Shows only neighbor APs that are not cluster members Both Shows all neighbor APs cluster members and non members Cluster The C...

Page 112: ...h number for example 50 indicates good signal strength detected from the Neighbor seen by the AP whose IP address is listed above that column Lighter Blue Bar A lighter blue bar and a lower signal str...

Page 113: ...ays have two different network names MAC Address Shows the MAC address of the neighboring access point A MAC address is a hardware address that uniquely identifies each node of a network Channel Shows...

Page 114: ...o Config Admin Mode Enabled Radio Settings Radio 1 and 2 On Radio 1 IEEE 802 11 Mode 802 11a n Radio 2 IEEE 802 11 Mode 802 11b g n 802 11b g n Channel Auto Radio 1 Channel Bandwidth 40 MHz Radio 2 Ch...

Page 115: ...Disabled HTTP Redirect None Other Default Settings WDS Settings None STP Disabled MAC Authentication No stations in list Load Balancing Disabled SNMP Enabled RO SNMP Community Name Public Managed AP M...

Page 116: ...s iso 1 org 3 dod 6 internet 1 private 4 enterprises 1 dlink 171 dlink products 10 dwl ap 37 dwlWLANAP 26 CONFIGURING A VAP This example shows how to configure VAP 1 with the following non default set...

Page 117: ...n0bssvap1 wpa cipher ccmp on 8 Set the Pre shared key set interface wlan0vap1 wpa personal key JuPXkC7GvY moQiUttp2 If the shared secret keys includes spaces place the key inside quotation marks 9 Use...

Page 118: ...object to wpa personal 3 10 Set the value of instance3 in the apIfConfigWpaPersonalKey object to JuPXkC7GvY moQiUttp2 which is the WPA pre shared key 11 Navigate to the objects in the apRadioBss apBs...

Page 119: ...ADIO CONFIGURATION FROM THE WEB INTERFACE 1 Log onto the AP and navigate to the Manage Radio page 2 Make sure the number 2 appears in the Radio field and that the status is On 3 From the Mode menu sel...

Page 120: ...io 2 on if the status is not currently up set radio wlan1 status on 3 Set the mode to IEEE 802 11b g n set radio wlan1 mode bg n 4 Set the channel to 6 set radio wlan1 channel policy static set radio...

Page 121: ...ject to set the transmission power on Radio 2 to 75 9 Navigate to the objects in the apBssTable 10 Use the apBssMaxStations object to set the value of the maximum allowed stations to 100 CONFIGURING T...

Page 122: ...WDS settings to the AP 6 Log onto MyAP2 and repeat steps 2 5 but be sure to use the MAC address of MyAP1 in the Remote Address field Note The WPA PSK option is available only if VAP 0 on Radio 1 uses...

Page 123: ...rm the same configuration steps on MyAP2 WDS CONFIGURATION USING SNMP 1 Load the DLINK WLAN ACCESS POINT MIB module 2 From the MIB tree navigate to the objects in the apIfConfig table 3 Walk the apIfC...

Page 124: ...ge 2 Enter the AP location and the name of the cluster for it to join 3 Click Update 4 Click Start Clustering to enable the clustering feature After you refresh the page other APs that are on the same...

Page 125: ...View information about the cluster settings on the AP get cluster detail 6 Start the automatic channel planner set channel planner status up 7 View the settings for the automatic channel planner get...

Page 126: ...in this example shows how to establish default DiffServ behavior for clients associating with the VAP that do not obtain a DiffServ policy name through the RADIUS server Voice traffic UDP packets rece...

Page 127: ...ttings Action Permit Match Every Clear the option Protocol IP Address 192 168 1 23 Wild Card Mask 0 0 0 0 9 Click Update to save the rule 10 Navigate to the Client QoS VAP QoS Parameters page 11 From...

Page 128: ...l fields appear 3 Select the Match Every option to indicate that all match criteria defined for the class must be satisfied in order for a packet to be considered a match 4 Select Protocol and then se...

Page 129: ...age 9 To create a policy enter pol_voip into the Policy Map Name field and then click Add Policy Map The page refreshes and additional fields appear 10 For the class_voip class map select the IP DSCP...

Page 130: ...Client QoS 34CSFP6XXUAP SWUM100 D13 11 Navigate to the Client QoS VAP QoS Parameters page 12 Select VAP 2 from the VAP menu 13 Make sure that the Client QoS Global Admin Mode and the QoS Mode are bot...

Page 131: ...src port http 4 Add another rule to acl1 that allows all traffic from the host with an IP address of 192 168 1 23 add rule acl name acl2 acl type ipv4 action permit protocol ip src ip 192 168 1 23 src...

Page 132: ...set vap wlan0vap2 def policy up pol_voip Configuring QoS by Using SNMP ACL Configuration 1 Load the DLINK WLAN ACCESS POINT MIB module 2 From the MIB tree navigate to the objects in the apQos apAclTab...

Page 133: ...1 to set apQosAclRuleCommit to a value of 1 true which saves the rule 5 Add another rule to acl1 that allows all traffic from the host with an IP address of 192 168 1 23 Use 1 3 6 1 4 1 6132 1 1 28 1...

Page 134: ...e class_voip to match all UDP packets from the 192 168 1 0 network that have a destination IP address of 192 168 2 200 the VoIP server Set apQosDsClassMapMatchEvery to true 1 Set apQosDsClassMapMatchP...

Page 135: ...1 which enables Client QoS on the AP 9 Walk the apVapDescription object to view the instance ID for VAP 2 wlan0vap2 VAP 2 on Radio 1 is instance 5 10 Use the apVapQosMode object to set the status of...

Reviews:

No comments

Brands by name

Popular brands

Load more brands