Intelicis Cedar 860AG User Manual Download

Page: 95 / 102

Cedar 860AG Enterprise Dual-Radio Access Point

Example:

Cedar#

show syslog

11.6.10 config

syslog

Syntax:

config syslog {<on | off> | clear}

Descr

ption:

Configure system log settings.

Example:

Cedar#

config syslog on

Cedar#

config syslog clear

11.7 Miscellaneous Commands

11.7.1 ping

Syntax:

ping <host>

Description:

A utility to test the network connection between two hosts.

Example:

Cedar#

ping 100.100.100.1

11.7.2 traceroute

Summary of Contents for Cedar 860AG

Page 1: ...Cedar 860AG Enterprise Dual Radio Access Point User Guide Release 1 1 September 2006...

Page 2: ...f this product or document may be reproduced transmitted transcribed and stored in a retrieval system in any form or by any means without prior written authorization of Intelicis Third Party Copyright...

Page 3: ...ial Configuration 15 3 1 Scan Tool 15 3 2 Default Setting 18 3 3 Web Management Interface 18 3 3 1 Menu 20 3 3 2 Tool Bar 20 4 System 22 4 1 System Setting 22 4 2 Change Password 23 4 3 Upgrade 24 4 4...

Page 4: ...0 8 1 Management Setting 60 8 2 SNMP 60 9 Log 62 10 Monitor 63 10 1 Interfaces 63 10 2 Wireless Statistics 64 10 3 Rogue APs 65 10 4 Wireless Users 65 10 5 Wireless Link 66 11 Command Line Interface 6...

Page 5: ...show wds 90 11 5 8 config wds 91 11 6 Management Commands 91 11 6 1 show telnet 92 11 6 2 config telnet 92 11 6 3 show ssh 92 11 6 4 config ssh 92 11 6 5 show web 93 11 6 6 config web 93 11 6 7 show s...

Page 6: ...Cedar 860AG Enterprise Dual Radio Access Point 6...

Page 7: ...g Description of the log file Monitor Description of how to monitor the system Command Line Interface Description of Command Line Interface CLI syntax 1 1 Wireless Network A wireless network is a flex...

Page 8: ...ccess points wirelessly As illustrated in Figure 1 2 Access Point A has no cable access and can not be connected with a switch or router It relies on Access Point B to relay the data for its remote cl...

Page 9: ...than through a concrete one For newly constructed buildings where Ethernet cable CAT 5 is pre installed wiring is not a concern For older construction where re cabling is cost prohibitive a solution w...

Page 10: ...e scenario High Speed Internet Access is available for all wireless clients Voice over IP applications can be used for calling over the Internet Streaming media data can be offered over the IP network...

Page 11: ...uld contain the following Cedar 860AG Dual Radio Access Point Cedar 860AG Installation Guide Mounting rubber foot for desktop installation 4 Power Adaptor CAT5 Ethernet cable RJ45 to RJ45 Cedar 860AG...

Page 12: ...nnector The RJ45 connector provides the connection switch or gateway through a CAT 5 cable This connector also provides the connection to PoE power source DB9 Connector This DB9 connector provides the...

Page 13: ...e included power adaptor to the wall outlet and plug the DC output connector into the power jack on the rear panel of Cedar 860AG Cedar 860AG also supports the 802 3af PoE standard If your switch or g...

Page 14: ...Cedar 860AG Enterprise Dual Radio Access Point After 30 seconds the 802 11a and 802 11g LEDs will be flashing 14...

Page 15: ...es the following functions z Discover Cedar AP s IP address MAC address and firmware version z Change AP s IP address z Upgrade AP s firmware z Switch on off AP s telnet SNMP and web interface Please...

Page 16: ...AP s MAC address can be found at its back panel If the AP has acquired an IP address from the DHCP server use it to log in to AP s web interface section 3 3 5 If DHCP server is not available in the sy...

Page 17: ...is private 7 You can also use Scan Tool to upgrade the AP firmware by clicking the Upgrade tab a Select either FTP or TFTP protocol b Enter server IP address firmware name and optional FTP login name...

Page 18: ...d from the DHCP server Default gateway Acquired from the DHCP server Default DNS IP address Acquired from the DHCP server Default management VLAN ID Untagged Default SSID for Radio 1 Intelicis a Defau...

Page 19: ...860AG Enterprise Dual Radio Access Point After the initial login the home page is displayed The administrator now has easy access to configuring system parameters as well as managing any AP activitie...

Page 20: ...lnet SSH and SNMP parameters Log Display system log file Monitor Display statistics and usage of the system 3 3 2 Tool Bar The tool bar located in the upper right hand corner provides a shortcut to fr...

Page 21: ...g this is by clicking Save The save operation is required otherwise changes will be lost after reboot Reboot Sometimes you may need to reboot the system in order for any new changes to take effect Cli...

Page 22: ...me The System Name is a descriptive string maximum length of 20 that describes the system The default value is none Login Name The administrator uses the combination of Login Name and Login Password t...

Page 23: ...ult value is time nist gov SNTP Offset The SNTP Server uses the UTC Universal Time Coordinated as the reference for the current time The SNTP offset specifies the number of hours to be added to or sub...

Page 24: ...d The Privilege Password is used by the administrator to enter the privilege mode The manufacture default value is changeitnow Changes to Login Password and or Privilege Password are saved automatical...

Page 25: ...and password Cedar uses to log into the FTP server If the username and password are not specified Cedar logs in to the FTP server as anonymous with no password Server IP The Server IP is the IP addre...

Page 26: ...n put all the CLI commands in a batch file and execute them together Command batch files are especially useful when the administrator needs to make sizeable configuration changes One of the following...

Page 27: ...e existing configuration to a file for archiving purpose If for any reasons a recovery is required The export file contains useful configuration information Enter the FTP Server IP address and the use...

Page 28: ...e concept extends to a wireless network Wireless clients can be grouped into wireless sub networks A client can access the network by connecting to an AP which supports its assigned VLAN see Figure 5...

Page 29: ...ic IP addresses to computers on a network Dynamic addressing simplifies network administration because the software keeps track of IP addresses This means a new computer can be added to a network with...

Page 30: ...use the Static IP If Static mode is chosen the administrator assigns the static IP address subnet mask default gateway and DNS server address for the AP The AP will always have the same IP address af...

Page 31: ...or secondary Domain Name Server DNS IP address DNS translates domain names into IP addresses Using DNS network users are allowed to use more descriptive names such as www example com rather than 198 1...

Page 32: ...nactive MAC address remains in the MAC table before it is removed from the table The default is 300 seconds 5 minutes Interfaces Display a list of interfaces associated with this VLAN The system initi...

Page 33: ...Aging time Number of seconds remaining before this entry is removed due to inactivity 5 2 3 DHCP If DHCP is not available in your network Cedar can be configured to assign dynamic IP addresses to comp...

Page 34: ...to its Windows users Lease Time Enter how long the assigned IP address is valid for The default is 1800 seconds 30 minutes 5 3 Examples 5 3 1 Configure Static IP Address 1 Consult your ISP or IT depa...

Page 35: ...ice e g switch that the AP connects to will support VLAN The VLAN ID needs to be pre configured there 2 Click Network IP from Cedar web interface to modify the network settings 3 Select Tagged and ent...

Page 36: ...It is part of the 802 1x WLAN standards defined by IEEE The IEEE 802 1x specification uses three important terms The user or client who wants to be authenticated is called a supplicant The actual ser...

Page 37: ...ver responds with a success message which is then passed onto the supplicant The authenticator now allows access to the network with possible restrictions based on attributes that came back from the a...

Page 38: ...on Select Security RADIUS to list the available RADIUS profiles in the system Click the existing profile name to enter the editing screen or click the Add button to create a new one Profile Name Enter...

Page 39: ...tting is 1812 Auth Server Secret Enter the secret for communicating with the primary and or secondary authentication RADIUS server If the Cypress RADIUS server is used this secret must match the secre...

Page 40: ...thenticate the clients Re authentication Period This parameter specifies the re authentication timer in seconds The default setting is 3600 seconds 60 minutes Dynamic WepKey Length If dynamic WEP keys...

Page 41: ...ive name for the profile The maximum length is 15 Authentication Method Reject all users except for the ones on the Permit List Allow all users except for the ones on the Deny List Consult RADIUS Serv...

Page 42: ...ority All the incoming and outgoing packets will be checked against the filter rules based on their priority Low number means high priority e g 1 is the highest priority and will be checked first When...

Page 43: ...hentication Write down its IP address and server secret code Confirm the authentication port is 1812 2 Create some 802 1x user entries in the RADIUS server For example User Name test1 Password xxx Typ...

Page 44: ...ce to display all the RADIUS profiles 4 Click Add to add a new profile Enter the following sample data and use default for the rest of the parameters Profile Name myRADIUS Primary Auth Server IP Addre...

Page 45: ...ministrator can selectively enable a list of WLANs on the AP A wireless user is allowed to access the wireless network by connecting to an AP which supports his assigned WLAN A RADIUS server can be us...

Page 46: ...It has to rely on other WDS APs to forward packets Country Code Display the AP s country code The country code is set during the manufacture stage and can not be modified by the users 80211d World Mod...

Page 47: ...and encryption method Select Wireless WLAN to list the available WLANs in the system Click the existing WLAN name to enter the editing screen or click the Add button to create a new one After a WLAN i...

Page 48: ...he SSID configured on the access point will be broadcast to all wireless devices within range Off The automatic SSID broadcast feature is disabled VLAN ID Specify whether the VLAN ID tag will be used...

Page 49: ...802 1x authentication o association mode is Wi Fi Alliance s WPA2 o encryption method is AES Using Key Passphrase The authentication mechanism used between wireless clients and the wireless network i...

Page 50: ...st Tx Rate This parameter allows you to set a maximum limit on the transmission rate to be used By default this option is disabled which allows any supported rate to be used Min Rate to Associate This...

Page 51: ...Cedar 860AG Enterprise Dual Radio Access Point 51...

Page 52: ...tting for Radio 1 b The radio supports 802 11b standard only g The radio supports 802 11g standard only bg The default setting for Radio 2 Choose bg if you want to support both 802 11b and 802 11g dev...

Page 53: ...fault setting 1 20 dbm WLAN Add a WLAN to this Radio from the available WLAN list Delete a WLAN from this Radio WDS Add a WDS to this Radio from the available WDS list Delete a WDS from this Radio Tx...

Page 54: ...d On The default setting Off Disable CTS protection Antenna Setting Antenna diversity improves performance of the AP by automatically selecting the best antenna for signal reception and transmission D...

Page 55: ...edia support Link Distance The typical distance between the wireless clients and AP is less than 1 kilometer km If your wireless network covers a bigger area you may need to adjust this parameter Incr...

Page 56: ...interface The maximum length is 7 Remote MAC Address If the WDS is planned to be added onto Radio 1 enter Radio 1 s MAC address of the remote station Role This parameter specifies the role of the loc...

Page 57: ...irst WLAN on radio 1 uses static WEP Key the WDS on radio 1 should use static WEP Key as well 7 3 Examples 7 3 1 WLAN with WPA and 802 1x Authentication You should already have a RADIUS profile and an...

Page 58: ...or the remainder of the parameters Name myWLAN SSID myWLAN 3 Select Using Key Passphrase for security policy The parameters in this sub section become enabled 4 Click Static WEP Key and enter a 5 13 o...

Page 59: ...to select Station as role 5 Enter WDS SSID the remote AP should use the same SSID 6 Click Static WEP Key and enter a 5 13 or 16 character WEP key in the WEP Key field the remote AP should configure wi...

Page 60: ...he administrator can modify the telnet SSH or Web interface setting by selecting Management from the menu 8 2 SNMP In addition to the command line interface and web interface the Cedar access point ca...

Page 61: ...ting Enable or disable SNMP Read Only Community Name The SNMP community name for read only GET operations The default value is public Read Write Community Name The SNMP community name for read and wri...

Page 62: ...Cedar 860AG Enterprise Dual Radio Access Point 9 Log The Cedar log file can be viewed by selecting Log from the menu 62...

Page 63: ...nterfaces Monitor radios Monitor Rogue APs Monitor wireless users Monitor wireless links 10 1 Interfaces Interface statistics are available for the administrator to monitor network activities Select M...

Page 64: ...erprise Dual Radio Access Point 10 2 Wireless Statistics Radio statistics are available for the administrator to monitor wireless network activities Select Monitor Radio to display radio 1 and radio 2...

Page 65: ...nts If any of the AP appears to be un trusted or invalid the administrator may consider to block its access by blocking the switch port that the AP is connected to Select Monitor Rogue AP to display i...

Page 66: ...x Rate Transmission rate Idle Time The amount of the time the AP has remained inactive Channel Usage A ratio indicating how busy the AP is Rx Pkts Number of packets received Rx Bytes Number of bytes r...

Page 67: ...link Signal Signal to Noise Ratio at the AP when frames are received from the WDS link Tx Rate Transfer rate Idle Time The amount of the time the AP has remained inactive Channel Usage A ratio indicat...

Page 68: ...Cedar 860AG Enterprise Dual Radio Access Point Description of the parameters SNR Signal to Noise Ratio at the AP when frames are received from the WDS link Signal Signal strength Noise Noise level 68...

Page 69: ...llowing commands telnet 192 168 1 188 ssh 192 168 1 188 11 1 Base Commands 11 1 1 enable Syntax enable Description This command allows the user to enter the privileged mode to do advanced configuratio...

Page 70: ...save 11 1 4 quit Syntax quit Description This command allows the user to quit from current CLI session This command is equivalent to exit Example Cedar quit 11 1 5 exit Syntax exit Description This c...

Page 71: ...iption Reset the current system configuration to manufacturer default and reboot the system Example Cedar reset 11 1 8 up arrow Syntax Description Display the previous typed command from the command h...

Page 72: ...fferent debug level can be used to control the amount of debug messages in the specified module Example Cedar debug enable global switch for debug messages Cedar debug auth 3 11 1 11 undebug Syntax un...

Page 73: ...tion Display system information including system login name model firmware version system time and system up time Example Cedar show system 11 2 2 config system Syntax config system name string login_...

Page 74: ...session time System time export The AP configuration can be exported to a file on an FTP server import The CLI command file can be imported from an FTP server Example Cedar config system name MyAP Ce...

Page 75: ...ame username username password password Description Upgrade system firmware The system uses the provided username and password to retrieve new firmware from either FTP or TFTP server and then performs...

Page 76: ...2 3 4 addr ip address netmask netmask address mode static dhcp clear Description Configure interface IP addresses and operation mode Each interface allows up to 5 different IP addresses clear It is u...

Page 77: ...created automatically by the system when management vid mgmt_vid or WLAN vid is configured to value other than untagged aging The time interval an inactive MAC address remains in the MAC table before...

Page 78: ...Cedar show ip dhcp pool 0 Cedar show ip dns Cedar show ip route 11 3 6 config ip Syntax config ip dhcp dns route Description dhcp Configure DHCP server related operations dns Configure DNS related ope...

Page 79: ...me Server IP address wins Windows Internet Name Server IP address gw Gateway IP address lease_time Valid time period for assigned IP from DHCP server Example Cedar config ip dhcp on Cedar config ip dh...

Page 80: ...ply gw The gateway IP address of the specified route will apply if The interface of the specified route will apply Example Cedar config ip route add net 10 60 0 0 netmask 255 255 0 0 if lan Cedar conf...

Page 81: ...dd profile name del profile name profile name radius_failover_limit radius_nas_ip ip address primary_radius_retry_period primary_auth_ip ip address primary_auth_port primary_auth_secret string seconda...

Page 82: ...secondary_auth_secret The secret for communicating with the secondary authentication radius server Default value is changeitnow primary_accounting_ip IP address of the primary accounting radius server...

Page 83: ...s Default is 3600 seconds wep_key_len The length of the generated dynamic WEP keys in bits Default is 128 bits Wep_key_interval The time interval the dynamic WEP keys will be re generated Default is 3...

Page 84: ...radius Example Cedar config auth mac profile add MAC Cedar config auth mac profile MAC denyadd 000cf157b3be Cedar config auth mac profile MAC auth_method radius 11 4 3 show filter Syntax show filter...

Page 85: ...match the rules will go to the immediate next rule to do further matching It is used for multiple rule chain priority 1 is the highest priority mac 000000000000 means all MAC addresses ip 0 0 0 0 mean...

Page 86: ...ple Cedar show wireless summary Cedar show wireless rogue Cedar show wireless link 11 5 2 config wireless Syntax config wireless on off op_mode ap repeater 80211d on off eap_relay on off Description o...

Page 87: ...tim 1 255 max_stations 0 2077 associate open wpa wpa2 wpa psk wpa2 psk wpa wpa2 wpa psk wpa2 psk encrypt none wep tkip aes wep tkip wep aes tkip aes wep tkip aes wep_key_0 string that is 5 13 or 16 ch...

Page 88: ...ate The association type between the client and AP connection encrypt The encryption mechanism used for the association wep_key_ The WEP key used for encryption default_wep_key The index to the WEP ke...

Page 89: ...on on off antenna diversity 1 2 drop_load off 0 99 deny_load off 0 99 intra_bss on off rogue_detection on off wmm on off distance 0 50 kilometers wlanadd wlan name wlandel wlan name wdsadd wds name wd...

Page 90: ...mit signals drop_load If the air time load is greater than the given parameter disassociate a station deny_load If the air time load is greater than the given parameter new stations are not allowed in...

Page 91: ...tion Enable Disable an association with the remote AP Wds_ssid SSID used between the local and remote APs security The security mechanism used for the association wepkey The wep key used between the l...

Page 92: ...w telnet 11 6 2 config telnet Syntax config telnet on off port port Description Configure TELNET server parameters port Port number which TELNET server will listen to Example Cedar config telnet port...

Page 93: ...Cedar config ssh port 12000 Cedar config ssh on 11 6 5 show web Syntax show web Description Display WEB server configuration Example Cedar show web 11 6 6 config web Syntax config web on off port por...

Page 94: ...name string write on off Description Configure SNMP community settings name SNMP community name write Enable or disable write privilege Example Cedar config snmp on Cedar config snmp community privat...

Page 95: ...fig syslog on off clear Description Configure system log settings Example Cedar config syslog on Cedar config syslog clear 11 7 Miscellaneous Commands 11 7 1 ping Syntax ping host Description A utilit...

Page 96: ...eroute www yahoo com 11 7 3 show arp Syntax show arp Description Display ARP table information Example Cedar show arp 11 7 4 show memory Syntax show memory Description Display system memory usage info...

Page 97: ...xxx file cedar860ag 05172005 1 0 0 120a bin 6 To execute a CLI command file Cedar import system runtime_cfg 192 168 15 184 batch cli admin xxx 11 8 2 Network Commands Network parameter changes take ef...

Page 98: ...n a Cypress RADIUS server Cedar config radius user_db add test1 test1 eap Cedar config radius user_db add test2 test2 eap 2 Create a RADIUS profile Cedar config auth radius profile add myRADIUS Cedar...

Page 99: ...profile myMAC auth_method radius Cedar show auth profile myMAC 4 Save the configuration changes Cedar config save 11 8 5 WLAN with WPA and 802 1x Authentication 1 Create a WLAN Cedar config wlan add...

Page 100: ...edar show wlan myWLAN 2 Add this WLAN to Radio 2 Cedar config radio 2 wlanadd myWLAN Cedar show radio 2 3 Save the configuration changes Cedar config save 11 8 7 WDS 1 Create a WDS Cedar config wds ad...

Page 101: ...The baud rate for the serial port is 115200 Ethernet Dead Unit TFTP server 192 168 1 237 straight console cable 3 Power on the dead unit and you will see Start booting message in console Press the Co...

Page 102: ...Inc Copyright C 2005 Devicescape Software Inc RAM 0x80010000 0x81000000 0x8006ad50 0x80fe1000 available FLASH 0xbe000000 0xbe7e0000 126 blocks of 0x00010000 bytes each Executing boot script in 4 000...

Search results

Summary of Contents for Cedar 860AG

Reviews:

Related manuals for Cedar 860AG

Brands by name

Popular brands

Intelicis Cedar 860AG, User Manual

Search results

Summary of Contents for Cedar 860AG

Reviews:

Related manuals for Cedar 860AG

Brands by name

Popular brands