manualshive.com logo in svg

Nortel 6220, User Manual, Page: 151 / 178

Share
Download
Nortel 6220 User Manual Download Page 151

 
 

152

 

 

WLAN Cable Access Point 6220 CSU   NTPM99CA   Rel 2.0 Issue 5 Dec 2005

 

 

System Name

-- Optionally, enter the logical location of a base station 

(for example, the network segment to which the base station has been 
connected). 
 

System Location

-- The optional field to identify the physical location of 

a base station. For example, the building or room where the base station 
is located at 
 

Trap Host IP Address

-- The IP Address of the network management 

station that collects the SNMP Trap messages. 
 
The Trap Host is the station in an SNMP managed network where SNMP 
trap messages are collected. Trap messages are sent to the trap host when 
certain events occur, such as rebooting. 
 

Trap Host Password

-- The Trap Host is the station in a SNMP managed 

network where SNMP trap messages are collected. Trap messages are 
sent to the trap host when certain events occur, such as rebooting.  
 
Enter a password that corresponds to the password set at the Trap Host to 
filter unsolicited or unauthorized SNMP Trap messages at the Trap Host. 
 
The Trap Host IP Password will be embedded in the SNMP Trap 
messages sent by this base station. If the Trap Host receives a message 
without or with an unknown password, the Trap message will be ignored. 
 

SNMP IP Access List

-- The SNMP IP Access List displays the IP 

addresses and subnet masks of those stations that you have designated as 
stations that will manage networks using SNMP. 
 
In addition to the Read and Read/Write passwords, you can use the 
SNMP Access List to prevent unauthorized users from modifying the 
SNMP setup of your base stations. 
 
The SNMP IP Access List enables you to authorize SNMP management 
to a restricted group of SNMP Management stations identified by: 

 

ƒ

 

The unique IP address of the Management Station(s)  

ƒ

 

The interfaces via which the base station will be accessed. 

Click the Add button to display the Input SNMP Access List to add new 
IP addresses to the list.   

Summary of Contents for 6220

Page 1: ... Cable Access Point 6220 User Guide Standard Release 2 0 Issue 1 Dec 2005 What s inside About this document Overview Planning your WLAN network Installation Configuration Administration Troubleshooting Appendix NTPM99CA 02 ...

Page 2: ...a particular installation If this equipment does cause harmful interference to radio or television reception which can be determined by turning the equipment off and on the user is encouraged to try to correct the interference by one or more of the following measures Reorient the receiving antenna Increase the separation between the equipment and receiver Connect the equipment into an outlet on a ...

Page 3: ...3 Publication history December 2005 Issue 1 Issued for WLAN Cable Access Point 6220 APU CSU ...

Page 4: ...TION 29 PROCEDURE 1 1 33 PROCEDURE 1 2 38 PROCEDURE 1 3 39 PROCEDURE 1 4 41 PROCEDURE 1 5 48 PROCEDURE 1 6 49 PROCEDURE 1 7 51 CSU INSTALLATION CONFIGURATION 53 PROCEDURE 2 1 54 PROCEDURE 2 2 56 CONFIGURATION 59 SOFTWARE INSTALLATION AP CONFIGURATOR 60 PROCEDURE 3 1 62 PROCEDURE 3 2 73 PROCEDURE 3 3 85 PROCEDURE 3 4 97 PROCEDURE 3 5 106 PROCEDURE 3 6 138 ADMINISTRATION 179 SAVE CONFIGURATION 180 L...

Page 5: ...5 WLAN Cable Access Point 6220 NTPM99CA 01 Rel 1 0 Issue 3 Dec 2004 APPENDIX A SPECIFICATION 198 APPENDIX B DOCSIS SPECIFICATION 207 APPENDIX C ANTENNA 209 APPENDIX C ENCLOSURE DIMENSION 215 ...

Page 6: ...Unit CSU Corporate Service Unit System Planning Site Survey Planning Wireless Network Designing Installation APU Hardware Installation CSU Hardware Installation Configuration APU in Secure Data Mode P2P P2M CSU in Secure Data Mode P2P P2M Testing Connection between APU and CSU Advanced Configuration System Administration Tasks Save configuration Edit configuration Load new configuration Upload new...

Page 7: ... Keying DHCP Dynamic Host Configuration Protocol DOCSIS Data Over Cable Service Interface Specifications DQPSK Differential Quadrature Phase Shift Keying DVM Digital Volt Ohm Meter EAP Extensible Authentication Protocol EIRP Equivalent Isotropic Radiated Power EMI Electromagnetic Interference FCC Federal Communications Commission FCS Frame Check Sequence FTP File Transfer Protocol HFC Hybrid Fiber...

Page 8: ...mote Authentication Dial In User Services RF Radio Frequency RIP Routing Information Protocol SEC Super Ethernet Converter SMTP Simple Mail Transfer Protocol SNMP Single Network Management Protocol SNR Signal to Noise Ratio SSID Service Set Identification TCP Transmission Control Protocol TLS Transport Layer Security TTL Time to Live UDP User Datagram Protocol UNII Unlicensed National Information ...

Page 9: ...w nortelnetworks com cgi bin comments comments cgi Click on Technical Support Select Online Support Open a Customer Service Request online Telephone 1 800 4NORTEL 1 800 466 7835 Call 1 800 4NORTEL Find the nearest Technical Solutions Center Enter ERC Express Routing Code if it is available FCC Conformance This device complies with Part 15 of the FCC rules Operation is subject to the following two ...

Page 10: ...erruption follow all precautionary messages found in WLAN Cable Access Point 6220 documentation and the safety procedures established by your company The following precautionary messages appear in WLAN Cable Access Point 6220 documentation The graphic symbol of an exclamation point within an equilateral triangle warns the user of the device that it is necessary to refer to the instruction manual a...

Page 11: ...HOULD BE INSTALLED BY A PROFESSIONAL FIELD TECHNICIAN TO REMOVE THE POSSIBILITY OF INCORRECT INSTALLATION FOR APU AND CSU DO NOT EXPOSE THIS UNIT TO RAIN MOISTURE OR DUST UNCOVERED BE SURE NOT TO BE SITUATED NEAR HIGH VOLTAGE POWER SOURCES MAKE SURE THAT ALL BOLTS ON THE ENCLOSURE ARE TIGHTENED FIRMLY SO THAT WATER DOES NOT ENTER THE UNIT BE SURE THAT ALL CONNECTORS ARE CONNECTED TO THE UNIT AND T...

Page 12: ......

Page 13: ...me permits and construction costs associated with extending aerial or buried drops The WLAN Cable Access Point 6220 solution provides Flexible service platform The WLAN Cable Access Point 6220 is a flexible service platform giving cable operators the ability to offer many different wireless services such as Public Hot Spots and Commercial High Speed Data services Standard Compliance and Interopera...

Page 14: ...Performance optimization via multiple antenna options Nortel Networks provides antenna options specifically engineered to enable the WLAN Cable Access Point 6220 to achieve peak link performance in Line of Sight LOS and Near LOS applications Ease of installation Designed for simple fast installation by professional technicians the WLAN Cable Access Point 6220 is installed in a simple three step pr...

Page 15: ...N Cable Access Point 6220 NTPM99CA 01 Rel 1 0 Issue 3 Dec 2004 Product Description Figure 1 2 WLAN Cable Access Point 6220 APU Package Components Figure 1 3 WLAN Cable Access Point 6220 CSU Package Components ...

Page 16: ...hrough coaxial cable Monitoring Port can provide the safe testing method for measuring CATV signal to an installation engineer by attenuating RF power and protect AC power signal Basically two kinds of mounting types are available for the APU such as a steel wire strand mounting and wall mounting but in case of wall mounting another optional bracket kit will be needed for installation The three av...

Page 17: ...17 WLAN Cable Access Point 6220 NTPM99CA 01 Rel 1 0 Issue 3 Dec 2004 Figure 1 4 APU Top head Figure 1 5 APU Bottom ...

Page 18: ...18 WLAN Cable Access Point 6220 NTPM99CA 01 Rel 1 0 Issue 3 Dec 2004 Figure 1 6 Inner Panel APU ...

Page 19: ...19 WLAN Cable Access Point 6220 NTPM99CA 01 Rel 1 0 Issue 3 Dec 2004 Figure 1 7 APU Back Figure 1 8 APU System Structure and Signal Flow ...

Page 20: ... receiving data ON Indicates the 802 11 radio is enabled and operating 14 LED4 Radio 1 Flash Indicate that a frame is transmitted or received on the radio port 15 Reserved Reserved location for a future upgrade 16 Antenna Mount Hole Grounding Hole Screw Holes for mounting a APU antenna with a universal bracket and grounding the APU enclosure 17 Label Location for attaching a product label which in...

Page 21: ...ed at POE Injector and supplied to the Ethernet Port on the CSU through CAT5 Cable Two types of mounting alternatives are available pole mount and wall mount If wall mount is used a mounting kit will be required The antenna is basically a Flat Panel type which is a built in CSU body protected by a plastic material RADOME WLAN AP supports the secure mode connection which means that wireless traffic...

Page 22: ...22 WLAN Cable Access Point 6220 NTPM99CA 01 Rel 1 0 Issue 3 Dec 2004 Figure 1 9 WLAN Cable Access Point 6220 CSU Bottom Figure 1 10 WLAN Cable Access Point 6220 CSU Front ...

Page 23: ...23 WLAN Cable Access Point 6220 NTPM99CA 01 Rel 1 0 Issue 3 Dec 2004 Figure 1 11 WLAN Cable Access Point 6220 CSU Back Figure 1 12 WLAN Cable Access Point 6220 CSU ...

Page 24: ...g the enclosure to earth for protecting the product from damage 8 Label Front Location for attaching a product label which include S N PEC MAC address and so on 9 Label Back Location for attaching a product label which include S N PEC MAC address and so on 10 Access Point Mini PCI type III Radio Card System Board Wi Fi Secure Mode TM 11 POE Splitter Power Module to divide Ethernet Signal and DC po...

Page 25: ...OS Optical LOS NLOS Non LOS Because High Frequency Radio travels in a straight forward line a clear LOS line of sight between antennas is efficient and ideal Frequently locations of the desired links are fixed When you cannot achieve a clear line of sight you must plan according to basic consideration The Basic considerations for sites include Installation Facility must be constructed Electric Pol...

Page 26: ... Towers Purpose Business Requirements Bandwidth Roaming Requirements Available Resources Security Requirements Preparation Exercises Preparation Checklist Site Survey Equipment Corporate service unit CSU with POE Injector Laptop and or PDA Wireless PC card with driver utility software Battery pack charger DC to AC converter Site survey utility software loaded on laptop or PDA Clipboard pen pencils...

Page 27: ...rize every obstacle like tree and earth bulge in consideration of OLOS Optical LOS 4 With the site survey result adjust the tilt and angle of antenna so that there is maximum clearance within the FRESNEL ZONE of the direct path Note The best means of achieving FRESNEL ZONE clearance is to raise the height of APU or CSU mounting point as high as possible 5 In order to get the more exact information...

Page 28: ...information for the WLAN 6220 units mounting and powering instructions It is intended for use by trained installers familiar with CATV or Cable Modem and Wireless installations For technical assistance contact your next level of support or Nortel Networks according to the information available in Technical Support and Information section Installation Procedure Summary APU Access Point Unit ...

Page 29: ...e One or more antenna cables N Male to the connector on the external antenna External antennas selected by yourself Flat blade screwdrivers Wire cutters Phillips screwdriver Torque wrench driver Other proper tools for installation Heat gun with propane Mapp torch Trunk Distribution Cable Connector and Drop Cable F connector port RF cable for connecting between the APU and Testing Unit if needed Po...

Page 30: ...Note Ensure that the POE Injector is UL cUL approved with LPS limited power source output Heat gun with propane Mapp torch 1 CAT5 Ethernet Extender Coupler Document CD and Software CD that contains the APU Configurator online help for the System Configuration and various documents PC or workstation with a Web browser for configuration ...

Page 31: ... strand mountable Each unit is shipped with a strand clamp module Both Drop and Trunk cable termination types are applicable to the APU The recommended method is Drop cable The APU supports a variety of antenna types omni directional flat panel and bi directional The antenna type should be selected according to the coverage needed and type of application please refer to Appendix H for more detaile...

Page 32: ...e auxiliary mounting bracket using the 1 4 flat washers lock washers hex nuts and hex bolts as shown in the diagram Ensure that the brackets are attached through the oblong hole in mounting bracket 3 With the antenna connector oriented upward fasten mounting bracket 43 to the radio using the M6 flat washers lock washers and hex bolts as shown in the mounting diagram 4 To adjust the pan of the ante...

Page 33: ...mains on the bottom This drain hole must be kept open so that any moisture accumulating inside the RADOME will be able to drain properly Figure 3 2 NTA 2407 Antenna Assembly NTA 2400 Omni directional Antenna Step Action 1 Ensure that each part number matches the actual part in the box 2 Attach the mounting bracket to the antenna using the M6 flat washers lock washers and hex cap bolts as shown in ...

Page 34: ...m Lightning Protection The antenna is at DC ground for lightning protection If the antenna is mounted to a non conductive structure e g building wall wooden pole etc it should in turn be grounded using practices supplied approved by the customer Weatherproofing All connections between the antenna connector and the transmission line must be weatherproofed according to standard industry practices Fi...

Page 35: ...tning Protection The antenna is at DC ground for lightning protection If the antenna is mounted to a non conductive structure e g building wall wooden pole etc it should in turn be grounded using practices supplied approved by the customer Weatherproofing All connections between the antenna connector and the transmission line must be weatherproofed according to standard industry practices Drainage...

Page 36: ...37 WLAN Cable Access Point 6220 NTPM99CA 01 Rel 1 0 Issue 3 Dec 2004 Figure 3 4 NTA 2412 Antenna Assembly ...

Page 37: ...universal mounting holes on the front and rear cover we recommend that you do not mount two kinds of antenna such as omni directional and bi directional type on the front cover If inevitable the left side of the front cover is the preferred location in consideration of antenna cable length 2 Tighten each bolt until the washer is pressed firmly into the APU Enclosure Figure 3 5 Antenna mounting wit...

Page 38: ...1 Strand Tension and limitation Strand Diagram inches mm Weight lbs ft kg m Max rated Load lbs kg 0 109 2 77 0 032 0 048 1800 816 0 134 3 40 0 048 0 075 2680 1216 0 188 4 77 0 073 0 109 3990 1810 0 250 6 35 0 121 0 180 6650 3016 Figure 3 6 APU Installation scheme 2 Attach the strand clamp assemblies to the top strand clamp bosses mounting surfaces with a long socket cap screw bolt Diameter 5 mm Le...

Page 39: ...and Mounting Clamps on the APU Figure 3 8 Mounting the APU on the Strand by tightening the socket cap screw bolt ENSURE THAT ALL BOLTS IN THE ENCLOSURE ARE FIRMLY TIGHTENED WHEN INSTALLING THE UNIT CHOOSE A LOCATION THAT PROVIDES A MINIMUM SEPARATION OF 20 cm FROM ALL PERSONS DURING NORMAL OPERATION ...

Page 40: ...ection Hard line which may introduce RF power levels higher than 15 dBmV must have external device to attenuate the power being inserted into APU A Perform installation of the coaxial cable as below Action Trunk Cable Connection Step Action 1 Prepare 500 series Coaxial Cable GRS Type connector and all required Tools for Terminator Coring Jacket stripper and Compression Figure 3 9 Trunk and Distrib...

Page 41: ...nd trim accordingly Figure 3 12 Shading the tip of the center conductor 5 Make a cut halfway though and rotate the cutters 90 and complete the cut 6 Slide the heat shrink tubing over the cable 7 Remove the outer jacket to a length of 12 7mm 8 Install the back nut into the cable 9 Remove and clean flooding material 10 Install the main nut onto the cable as a final check on both coring depth and cen...

Page 42: ...inually keeping pressure on cable towards the body so that the center conductor will be properly seized 15 Using two wrenches use one wrench to hold the BODY from rotation and the other to continue tightening the main nut to the body until a firm stop is reached 16 Tighten the back nut by hand and by using two wrenches one on the main nut complete the installation by tightening the back nut firmly...

Page 43: ...e the heat shrink tubing over the connector against the APU 19 Shrink the tubing with a painting motion not concentrating on any one area using a propane torch with a broad soft frame Figure 3 16 Shrinking the tubing to Water Proof ENSURE THAT THE POWER SOURCE IS TURNED OFF PRIOR TO CONNECTING COAXIAL CABLE 75 ohm TO PROTECT FROM ELECTRICAL SHOCK ...

Page 44: ...4 inch 6 4mm of center conductor will protrude beyond the end of the connector nut Figure 3 18 Drop Connector Design 4 Slightly angle the connector cable and insert into the compression tool area between the plunger tip and the cable gate allowing the center conductor to enter the center conductor guide Push the cable into the cable gate Compress the connector by squeezing the tool handles togethe...

Page 45: ...closure and tighten firmly Figure 3 20 Connecting the N to F type Adapter to the enclosure 7 Connect a coaxial cable to the F connector port and fasten enough to prevent a water intrusion into the gap between connectors ENSURE THAT THE PIN LENGTH OF THE ADAPTATION CONNECTOR DOES NOT EXCEED 15mm 0 59055 inch TO PREVENT DAMAGE TO THE HFC FILTER JOINT PORTION IN THE UNIT ...

Page 46: ...shrink tubing over the connector against the APU 9 Shrink the tubing with a painting motion not concentrating on any one area using a propane Mapp torch with a broad soft frame Figure 3 22 Shrink the tubing to Water Proof ENSURE THAT THE POWER SOURCE IS TURNED OFF PRIOR TO CONNECTING COAXIAL CABLE 75 ohm TO PROTECT AN INSTALLER FROM ELECTRICAL SHOCK ...

Page 47: ...osure Action Step Action 1 Loosen the grounding bolt and wind the end of the ground wire around the bolt 2 Fasten the bolt and the ground wire to the earth by connecting them to the earth facility Figure 3 23 Assembling the grounding bolt and wire Figure 3 24 Concept diagram of APU enclosure grounding ...

Page 48: ... Cable Modem inside APU If the measured Signal level is outside from the allowed range referred in DOCSIS you should adjust the AMP Power level or perform another proper tuning method to meet the requirement of RF signal level It is also recommended to measure AC voltage from CATV UPS Power Supply to ensure a perfect operation Note In case of installation using a Drop Cable it is recommended to me...

Page 49: ...ng Port Acceptable Signal Levels HFC Signal level DOCSIS 1 1 2 0 Standard Standard Signal level Actual Value 15dBmV 15dBmV Calculated Signal level at Monitoring Port Downstream 35dBmV 5dBmV Effective Signal level at Monitoring Port Downstream 37dBmV 7dBmV HFC AC Power level Square wave 45 VAC 95VAC Recommended level 63Vac ...

Page 50: ...Procedure on the next page 5 Check if the LED 1 Power is ON Note If there is no LED light check if the power supply which provides the CATV HFC network with AC power 45 95VAC signal is working properly and that the CATV power is detected at the end of the coaxial cable If any problem has been found in the power system the unit has to be entered into a Repair Process 6 Check if LED 2 CM Link flashe...

Page 51: ...52 WLAN Cable Access Point 6220 NTPM99CA 01 Rel 1 0 Issue 3 Dec 2004 Figure 3 26 LED Visual Checking Procedure ...

Page 52: ...allation Concept Figure 3 1 CSU Installation Concept 1 on User s facility Figure 3 2 CSU Installation Concept 2 on User s facility By default CSU is pole mounted Each unit is shipped with a pole mounting module ENSURE THE CSU HAS BEEN POSITIONED NO LESS THAN 3 FEET ABOVE THE GROUND OR FROM A ROUGHLY HORIZONTAL SURFACE ...

Page 53: ...tach the Mounting Tilt Brackets to the back of CSU and insert the two stainless steel M6 hex head screws and M6 split lock washers into the hole Figure 3 3 Assembling the mounting bracket on the CSU 5 Lift the CSU to a selected installation point on the pole and then attach the clamp to the original location while lashing the CSU to the pole or using a hoisting rope to keep the unit in place durin...

Page 54: ... Figure 3 4 Assembling the mounting bracket with a installation tool 8 Adjust the up down tilt 50 º to 50 º and move the top or bottom of the CSU until the unit is roughly positioned at the correct angle and height Figure 3 5 CSU Pole Mounting and Antenna Tilting 100 º ...

Page 55: ...able Note It is recommended to use a shielded cable like S FTP Foiled Twisted Pair or STP Shielded Twisted Pair in which wire pairs are covered with overall shield material to prevent EMI effects to or from the near electronic devices or facilities Note The cable from CSU to POE Injector and from POE Injector to CPE PC should be a straight through cable 2 Connect a cable to the POE port on the fro...

Page 56: ...rformance factor relevant to the long term reliability 4 Tighten the EMI cap securely with the special tool packaged in the product box Figure 3 7 Covering the entry of EMI Cap and Shielded Cable with Tape or shrink wrap tubing 5 Connect the ground wire to the ground point at the lower right end of CSU back panel Figure 3 8 Connecting the ground wire to the ground point 6 Connect the other end of ...

Page 57: ... you see any obstructions between two antennas move one or both antennas to another location Use mounting hardware provided to secure the unit to the pole Leave the unit mounting loose enough to allow for movement when performing the alignment testing procedure The unit should be tightened only after the alignment testing procedure is completed Install the unit away from microwave ovens and 2 4 GH...

Page 58: ...Software Installation APU APU mode Basic Configuration and Operation Test CSU APU mode Basic Configuration and Operation Test CSU CSU mode Basic Configuration and Operation Test Testing the connection between APU CSU APU mode and CSU Testing Wireless Network Performance Basic Configuration Advanced and Optional Configuration ...

Page 59: ...ure your device This section explains the system configuration in detail Note The features available to you in the WLAN Cable AP Configuration vary depending on the version of the software This section explains all possible features involved in basic configuration Your actual software may not display all of the features and fields described Installing the Configurator Software 1 Insert the Softwar...

Page 60: ...tallation Dialog Window If you are installing the Configurator for the first time files are stored in the directory Program Files Nortel WLAN Cable AP Configurator If you are upgrading from a previous Configurator installation your files will be stored in the directory where you last saved the Configurator files The Install Shield also installs shortcuts to the Configurator on your desktop ...

Page 61: ... g Unit CH1 2412 MHz Æ 802 11a Unit CH149 5745 MHz Network ID 0 Transmit Rate Æ 802 11a g Unit 54Mbps Æ 802 11b Unit 11Mbps WEP Encryption Disable 2 The CSU CSU mode shall have the same system parameters with a factory default parameter of APU to install Table 4 1 System Main Parameters Parameter APU CSU APU mode CSU IP address DHCP Client DHCP Client Read Write Password Public Public SNMP Secure ...

Page 62: ...the Configurator and the IP Address for your APU and the IP addresses for any other devices in your network as appears in the Configurator window below Note In factory default APU and CSU have a default IP address as 198 17 74 254 regardless of the software modes APU CSU mode which means that APU and CSU are ready to get it s IP address from a remote DHCP Server Therefore when you launch AP config...

Page 63: ...ange IP window is displayed as shown in the following screenshot Figure 4 6 IP setup dialog box 10 Enter an IP address that will be local to the IP of the PC laptop running the Configurator and then click the OK button in Read Write Password window Note The IP address to enter should be included in the same subnet area with PC Laptop computer for access to CSU For example in case the IP address of...

Page 64: ...enter a new password instead of the default password public in the basic SNMP password box Figure 4 7 SNMP Read Write Password dialog box 13 The main window is redisplayed 14 To setup the interface Click on the Interface Setup button 15 The Interface Setup screen is enabled and displayed as shown in the Figure 4 9 Figure 4 8 AP Configurator Main window ...

Page 65: ...adio standard to use according to the built in antenna specification like an operating frequency range Ex 2 4GHz antenna 802 11b g 5 8GHz antenna 802 11a 19 Make sure the APU Secure Data Mode in the left portion of Mode Selection is selected while Polling Base station is clicked in Secure Data Mode Base Station Mode 20 Select the Enable Signal Quality Front Panel Display checkbox if your unit has ...

Page 66: ...ansmit power referring to the permitted setting value specified in the following tables per radio standard Figure 4 11 Advanced setup dialog box 802 11a Frequency Channel 149 5745 MHz 153 5765 MHz 157 5785 MHz 161 5805 MHz Caution Do not use any other antennas exceeding the allowed maximum antenna gain value 22dBi in case you select 802 11a mode as operation radio standard Transmit Rate 6Mbps 36Mb...

Page 67: ...ing the maximum allowable EIRP at the maximum transmit power 802 11g Frequency Channel 6 2437 MHz 1 2412 MHz 7 2442 MHz 2 2417 MHz 8 2447 MHz 3 2422 MHz 9 2452 MHz 4 2427 MHz 10 2457 MHz 5 2432 MHz 11 2462 MHz Transmit Rate 54 Mbps 6 Mbps 48Mbps 11 Mbps 36 Mbps 5 5 Mbps 24 Mbps 2 Mbps 12 Mbps 1 Mbps Transmit Power Antenna Gain Maximum 50 25 12 5 Maximum allowable antenna Omni directional 7dBi Bi d...

Page 68: ... antenna with 14dBi even though the max allowable antenna is up to 14dBi Make sure that a gain per antenna type does not exceed the certified value Note It is recommended that you set the transmit power to Maximum as the antennas listed in Appendix C Antenna have been designed to meet FCC regulation specifying the maximum allowable EIRP at the maximum transmit power 802 11b Frequency Channel 6 243...

Page 69: ...le EIRP at the maximum transmit power 24 Select the Network ID in Network Settings referring to Appendix G Wireless Network Planning Note the Secure Data Mode network ID number 0 15 is used to differentiate between multiple Secure Data Mode stations using the same System Access Pass Phrase This is used to allow a Secure Data Mode CSU to specify the APU mode unit that it wants to connect to if two ...

Page 70: ...ct Specify an IP address and type a specific IP address and gateway IP address Click OK button Note Except for cable modem built in APU the CSU to operate as APU mode is required to set a mandatory static IP address for the unit even though it can be set in both static IP and DHCP setup But you can set DHCP mode to the CSU APU mode so that it can retrieve its IP address from a remote or local DHCP...

Page 71: ...ble Access Point 6220 CSU NTPM99CA Rel 2 0 Issue 5 Dec 2005 Figure 4 13 IP setup dialog box 28 For a more detailed setup refer to the procedure 3 5 Basic Configuration and 3 6 Advanced and Optional Configuration ...

Page 72: ... g Unit CH1 2412 MHz Æ 802 11a Unit CH149 5745 MHz Network ID 0 Transmit Rate Æ 802 11a g Unit 54Mbps Æ 802 11b Unit 11Mbps WEP Encryption Disable 2 The CSU CSU mode shall have the same system parameters with a factory default parameter of APU to install Table 4 1 System Main Parameters Parameter APU CSU APU mode CSU IP address DHCP Client DHCP Client Read Write Password Public Public SNMP Secure ...

Page 73: ...74 WLAN Cable Access Point 6220 CSU NTPM99CA Rel 2 0 Issue 5 Dec 2005 Figure 4 14 Test Network Configuration Radio Connection Case I APU to CSU PTP or PMP Case II CSU to CSU PTP or PMP ...

Page 74: ... and the IP addresses for any other devices in your network as appears in the Configurator window below Note In factory default APU and CSU have a default IP address as 198 17 74 254 regardless of the software modes APU CSU mode which means that APU and CSU are ready to get it s IP address from a remote DHCP Server Therefore when you launch AP configurator at PC with CSU turned on at first you can...

Page 75: ... address to enter should be included in the same subnet area with PC Laptop Computer for access to CSU For example in case the IP address of Laptop computer is 192 168 0 100 24 the CSU will be allowable in 192 168 0 1 24 192 168 0 254 24 as the IP address subnet group 10 The SNMP Password dialog box is displayed as shown below 11 Press Enter key or enter a new password instead of the default passw...

Page 76: ...nterface 16 Click the Setup 2 button The IEEE 802 11 Setup screen is displayed as shown in Figure 4 20 17 Select a radio standard to use according to the built in antenna specification like an operating frequency range Ex 2 4GHz antenna 802 11b g 5 8GHz antenna 802 11a 18 Make sure the APU Secure Data Mode in the left portion of Mode Selection is selected while Polling Base station is clicked in S...

Page 77: ...al quality Figure 4 20 Interface setup dialog box 20 Click on the advanced button to set up crucial parameters such as Radio Frequency Transmit Rate Bandwidth and Network ID 21 The Advanced Setup screen for a Secure Data Mode is shown below 22 Setup all radio parameters including a frequency channel and transmit power referring to the permitted setting value specified in the following tables per r...

Page 78: ...s the built in type of antenna ET 5PR12W designated in Appendix C Antenna in case you select 802 11b g mode as operation radio standard Note It is recommended that you set the transmit power to Maximum as the antenna ET 5PR12W have been designed to meet FCC regulation specifying the maximum allowable EIRP at the maximum transmit power Transmit Rate 6Mbps 36Mbps 9Mbps 48Mbps 12Mbps 54Mbps 24Mbps Tr...

Page 79: ...z Transmit Rate 54 Mbps 6 Mbps 48Mbps 11 Mbps 36 Mbps 5 5 Mbps 24 Mbps 2 Mbps 12 Mbps 1 Mbps Transmit Power Antenna Gain Maximum 50 25 12 5 Maximum allowable antenna Gain CSU 11G 12dBi Caution Do not use any other antennas exceeding the allowed maximum antenna gain value 12dBi except as the built in type of antenna ET PR12 designated in Appendix C Antenna in case you select 802 11b g mode as opera...

Page 80: ...d to meet FCC regulation specifying the maximum allowable EIRP at the maximum transmit power 802 11b Frequency Channel 6 2437 MHz 1 2412 MHz 7 2442 MHz 2 2417 MHz 8 2447 MHz 3 2422 MHz 9 2452 MHz 4 2427 MHz 10 2457 MHz 5 2432 MHz 11 2462 MHz Transmit Rate 11 Mbps 5 5 Mbps 2 Mbps 1 Mbps Transmit Power Antenna Gain Maximum 50 25 12 5 Maximum allowable antenna Gain CSU 11B 12dBi ...

Page 81: ... Data Mode stations using the same System Access Pass Phrase This is used to allow a Secure Data Mode CSU to specify the APU mode unit that it wants to connect to if two APU mode units can be seen by the same CSU Generally this value should be the same as the Channel Number Note The channel frequency values are usually determined by network administrators If you set the channel and frequency in 80...

Page 82: ...ess and gateway IP address Click OK button Note Except for cable modem built in APU the CSU to operate as APU mode is required to set a mandatory static IP address for the unit even though it can be set in both static IP and DHCP setup But you can set DHCP mode to the CSU APU mode so that it can retrieve its IP address from a remote or local DHCP server Note For DHCP client mode select 1 Ethernet ...

Page 83: ...ble Access Point 6220 CSU NTPM99CA Rel 2 0 Issue 5 Dec 2005 Figure 4 23 IP setup dialog box 27 For a more detailed setup refer to the procedure 3 5 Basic Configuration and 3 6 Advanced and Optional Configuration ...

Page 84: ...g Unit CH1 2412 MHz Æ 802 11a Unit CH149 5745 MHz Network ID 0 Transmit Rate Æ 802 11a g Unit 54Mbps Æ 802 11b Unit 11Mbps 2 The CSU CSU mode shall have the common system parameters with that of a factory default parameter of APU to install Table 4 2 System Main Parameters Parameter CSU APU mode CSU CSU mode IP address DHCP Client DHCP Client Read Write Password Public Public SNMP Secure Configura...

Page 85: ...86 WLAN Cable Access Point 6220 CSU NTPM99CA Rel 2 0 Issue 5 Dec 2005 Figure 4 24 Test Network Configuration Radio Connection Case I APU to CSU PTP or PMP Case II CSU to CSU PTP or PMP ...

Page 86: ...r your APU and the IP addresses for any other devices in your network as appears in the Configurator window below Note In factory default the CSU have a default IP address as 198 17 74 254 regardless of the software modes APU CSU mode Therefore when you launch AP configurator at PC with CSU turned on at first you can find the default IP address of the CSU showing the green exclamation point 198 17...

Page 87: ...U For example in case the IP address of Laptop computer is 192 168 0 100 24 the CSU will be allowable in 192 168 0 1 24 192 168 0 254 24 as the IP address subnet group 10 The SNMP Password dialog box is displayed as shown below 11 Press Enter key or enter a new password instead of the default password public in the basic SNMP password box Figure 4 27 SNMP Read Write Password dialog box 12 The main...

Page 88: ...2 11 interface 16 Click the Setup 2 button The IEEE 802 11 Setup screen is displayed as shown in Figure 4 30 17 Select a radio standard to use according to the built in antenna specification like an operating frequency range Ex 2 4GHz antenna 802 11b g 5 8GHz antenna 802 11a 18 Select the Enable Signal Quality Front Panel Display checkbox if your unit has a front panel display that is capable of d...

Page 89: ...utton to set up crucial parameters such as Radio Frequency Transmit Rate Bandwidth and Network ID 20 The Advanced Setup screen for a Secure Data Mode is shown below 21 Setup all radio parameters including a frequency channel and transmit power referring to the permitted setting value specified in the following tables per radio standard ...

Page 90: ...as the built in type of antenna ET 5PR12W designated in Appendix C Antenna in case you select 802 11b g mode as operation radio standard Note It is recommended that you set the transmit power to Maximum as the antenna ET PR12 have been designed to meet FCC regulation specifying the maximum allowable EIRP at the maximum transmit power Transmit Rate 6Mbps 36Mbps 9Mbps 48Mbps 12Mbps 54Mbps 24Mbps Tra...

Page 91: ...z Transmit Rate 54 Mbps 6 Mbps 48Mbps 11 Mbps 36 Mbps 5 5 Mbps 24 Mbps 2 Mbps 12 Mbps 1 Mbps Transmit Power Antenna Gain Maximum 50 25 12 5 Maximum allowable antenna Gain CSU 11G 12dBi Caution Do not use any other antennas exceeding the allowed maximum antenna gain value 12dBi except as the built in type of antenna ET PR12 designated in Appendix C Antenna in case you select 802 11b g mode as opera...

Page 92: ...d to meet FCC regulation specifying the maximum allowable EIRP at the maximum transmit power 802 11b Frequency Channel 6 2437 MHz 1 2412 MHz 7 2442 MHz 2 2417 MHz 8 2447 MHz 3 2422 MHz 9 2452 MHz 4 2427 MHz 10 2457 MHz 5 2432 MHz 11 2462 MHz Transmit Rate 11 Mbps 5 5 Mbps 2 Mbps 1 Mbps Transmit Power Antenna Gain Maximum 50 25 12 5 Maximum allowable antenna Gain CSU 11B 12dBi ...

Page 93: ... Data Mode stations using the same System Access Pass Phrase This is used to allow a Secure Data Mode CSU to specify the APU mode unit that it wants to connect to if two APU mode units can be seen by the same CSU Generally this value should be the same as the Channel Number Note The channel frequency values are usually determined by network administrators If you set the channel and frequency in 80...

Page 94: ...gned to it if you wish to connect to it using the Configurator tool which makes use of SNMP to connect to the Secure Data Mode Station 25 Select Specify an IP address and type a specific IP address and gateway IP address Click OK button Figure 4 33 IP setup dialog box Note Except for cable modem built in APU the CSU to operate as CSU mode is required to set a mandatory static IP address for the un...

Page 95: ... client mode select 2 IEEE 802 11 as the interface which is used to get DHCP IP address from DHCP Server Figure 4 34 IP setup dialog box Note If you select the DHCP option it is recommended though not required that you set up your DHCP server to always provide the same IP address to this Secure Data Mode Station system 26 For a more detailed setup refer to the procedure 3 5 Basic Configuration and...

Page 96: ...wn in Figure 4 35 2 Prepare a CSU module POE Injector and Power supply system like a Power booster in a vehicle or regular power outlet in the home Note Ensure that the CSU and the Laptop computer are set to DHCP Client so that they can get the IP address dynamically through the APU from the Server 3 The CSU has the same system parameters as the CSU APU mode Set the system parameter as follows to ...

Page 97: ...98 WLAN Cable Access Point 6220 CSU NTPM99CA Rel 2 0 Issue 5 Dec 2005 Figure 4 35 Test Network Configuration Radio Connection Case I APU to CSU PTP or PMP Case II CSU to CSU PTP or PMP ...

Page 98: ...an IP address assigned from the DHCP server at Network Center or statically defined by checking an IP address list box at the left side of the configurator window 7 Check if all units of APU CSU APU mode and Test CSU have its own IP addresses 8 If the APU CSU APU mode you wish to configure is on the same network subnet as your computer you can select it from the list that is automatically displaye...

Page 99: ...ate IP address Figure 4 37 IP address list box 10 Right click on the IP address and click the Configure button below the list box on the left side of a configurator window The Read Write Password screen is displayed as shown below Figure 4 38 SNMP Password Read Write 11 Enter the password public for the device you have selected at both text boxes and then click the OK button ...

Page 100: ...hen you test the APU CSU APU mode with Test CSU you don t have to change the parameters of APU CSU APU mode with AP configurator After all the tests are completed you should configure the APU CSU APU mode according to your local network design concept 13 Select Wireless Link Test from the Analyze Tab The Enter IP Address screen is displayed as shown below Figure 4 40 SNMP Password Read Write ...

Page 101: ...e list of stations that can be selected 16 Click the Link Test button to start the link test Note When you open this screen the base station will need approximately 20 seconds to build the list of stations and forward this information to your configurator station Due to the dynamic characteristics of mobile wireless stations the base station will rebuild the list of connected stations each time yo...

Page 102: ...ith troubleshooting hints to improve the quality of the link between the two remote nodes The following table summarizes the possible results of clicking the Advice button and what action is warranted based on the results 19 It is necessary that you adjust the vertical tilt and horizontal angle toward APU at the mounting point of CSU while monitoring the RF link quality status window so that the S...

Page 103: ...th between the unit and the base station Select another unit to verify if the base station is functioning properly Try to optimize antenna placement to improve the Signal Level or move it away from the source of interference No Connection Communication is no longer possible If the unit was in the process of transferring files data may not have arrived at the intended destination or it may have bee...

Page 104: ... indicator remains blank click the other button to return to the Select a Remote Link Partner screen Click the Explore button to refresh the list of Link Test Partners If the initial partner no longer appears it may have been switched off or have been moved outside the range of the selected Initiator Station Select another Link Test Partner to verify if the base station is functioning properly ...

Page 105: ...ughput and click the OK button The Ping Fill Test Parameters screen is displayed Note To test wireless performance the target system can be one of the APU Secure Data Mode station s clients You can also use a wired host to test wired interface performance 3 Enter the Test Window Size Max Packets and Test Running Time Ex Packet Length 60 Window size 80 Maximum Packets 20 Number of Seconds 5 4 Click...

Page 106: ...44 Ping Fill Test Parameters 6 As soon as Ping Fill test is over you can see the result windows as below 7 Record the results of Average Transfer Rate It is recommended that the results window be captured as a picture and saved in the file Figure 4 45 Ping Fill Test Results Window ...

Page 107: ...d the General Setup screen is used to enable various setup options Click on the Setup tab then click the General Setup button to display the General Setup screen as shown below Figure 4 46 General Setup window Note This menu has been modified for use in this manual This menu has all the supported features checked enabled and is NOT typical of the menu you will see Each of the fields on the screen ...

Page 108: ...networks The default behavior is to bridge all Ethernet protocols You can set which Ethernet protocols to bridge or deny as well as Ethernet stations that will be allowed or disallowed to send packets over the bridge using Bridge Setup from the Setup tab If disabled only the IP packets with correct the IP Routes set up in the IP Router Setup will be bridged between the base station s various inter...

Page 109: ...nutes a very rare occurrence the Secure Data Mode Station will reboot itself Once it has rebooted the 10 minute reboot timer will not activate again until a packet has been seen on one of the interfaces This is to ensure that only one reboot will occur if the entire network is truly shut down Enable IP UDP TCP Security Filters Select this option in General Setup to enable the base station s Firewa...

Page 110: ...e needs to connect with clients in the global public address space Enable DHCP Server Select this checkbox if you are using the Secure Data Mode Bridge Router to provide DHCP information to the computers on your network Note If you do not check this option you will not be able to access the DHCP Server screen Enable Secure Data Mode Radius Authentication Select this checkbox if you wish to enable ...

Page 111: ...You will typically set up one or more of the following interfaces As the name suggests the Interface Setup screen is used to set up network interfaces From the Setup tab click the Interface Setup button The Interface Setup screen is displayed as shown below Figure 4 48 Interface setup window Interface APU Interface CSU The following rules apply for setting up network interfaces You do not need to ...

Page 112: ... can be used for sending and receiving packets If you wish to limit the maximum data transfer rate for a particular interface enter the maximum number of kilobits per second that can be transmitted from and to the base station This helps to reduce the risk of over powering remote sites and to limit the bandwidth used by a particular base station Note The transfer rate represents the total transfer...

Page 113: ...e Station supports both Ethernet IEEE 802 3 and DIX Ethernet frame types Protocols are set in the Interface Setup window of the Setup Tab Note Do not change the default setup Auto speed Auto Duplex in this setup window without consulting the manufacturer Ethernet Type The Ethernet type options provide a variety of Ethernet settings The default value for Ethernet type will vary depending on your ha...

Page 114: ...terface Setup window APU Secure Data Mode Figure 4 51 802 11 Radio Interface Setup window CSU Secure Data Mode 802 11 Network Name The 802 11 Network Name is used in standard IEEE 802 11 networks to distinguish stations in your 802 11 network from stations that belong to a neighboring 802 11 network ...

Page 115: ...ther i e there are no hidden nodes When all connected Secure Data Mode Stations are not able to see one another this setting should not be used In that case you should set one of your Secure Data Mode Station stations to Secure Data Mode Base Station and the others to Remote Satellite Secure Data Mode Stations APU Secure Data Mode Selecting this option sets the Secure Data Mode Station to run as a...

Page 116: ...e may degrade considerably the hidden node problem In polling mode the Base Station will poll each station for data and also offer the opportunity for free for all sending of data at set intervals In conjunction with the standard features of the Secure Data Mode Network this Secure Data Mode Base Station Mode offers a significant performance increase over other wireless protocols when the network ...

Page 117: ...ion is hidden from all other machines or LAN s connected to the Secure Data Mode Network Properly setting up Protocol Filtering will disable the Windows Network Neighborhood from seeing other machines connected on the wireless network If you do not deny IP and IP ARP packet types in Protocol Filtering wireless machines are still able to connect to each other via IP packets including TCP and UDP Pe...

Page 118: ...routines historically work between physical interfaces only An Ethernet packet sent between two Ethernet hosts on the same Ethernet subnet will automatically be seen by the destination host With wireless the packet must be repeated by the AP This turns off the AP s packet repeating code Secure Data Mode Advanced Setup Clicking the Advanced Button on the 802 11 Setup screen displays the 802 11 adva...

Page 119: ...120 WLAN Cable Access Point 6220 CSU NTPM99CA Rel 2 0 Issue 5 Dec 2005 802 11g 802 11b ...

Page 120: ...02 11 Frequency Setup screen is used to change the channel and frequency for one of the remote devices on your network Note that this screen is only accessible if you have identified remote devices in your network If all devices are in your local network then the Frequency Setup screen is unavailable Channel Frequency Select the channel and frequency for the remote device from the drop down list S...

Page 121: ... numerical channels difference between two overlapping cells to avoid interference For example channels 1 6 and 11 don t overlap but channels 1 and 3 do In the other side if you are intended to use 802 11a please keep in mind that all channels 4 channels with 20MHz bandwidth are not permitted to be overlapped with each channels in the frequency plan Radio Transmit Power Select the Transmit power i...

Page 122: ...window Disable WEP Encryption Select this button if you wish to disable Wired Equivalent Privacy WEP encryption If you are not concerned about security for example home users using this device only to browse the Internet and if you are not concerned your AP is used by others then select this checkbox Note For simple security you can disable WEP encryption and select the Closed Wireless System chec...

Page 123: ...y in the Static WEP Encryption Keys fields Note that these keys must be entered identically on each access point station and Secure Data Mode unit in the network Encrypt Data Transmission Using Key n Enter the key number that should be used to encrypt data on this interface Note that you can receive using any key but will generally always transmit using a single key Unicast transmissions to an 802...

Page 124: ...ide whether or not to forward packets to or from that station based on authorization criteria There are three authentication modules that comprise MAC authentication but the network administrator determines which of those three modules are used Access Control List ACL MAC RADIUS Authentication with optional WARP support These modules are enabled on a per interface basis This provides greater contr...

Page 125: ...rocess by which authentication takes place is as follows The first module in the list for example ACL checks the source address of the incoming packet to see if it is permitted to send packets on the selected interfaces The module will designate the address as one of the following Permit the MAC address is permitted on this interface and packets are forwarded Deny the MAC address is denied on this...

Page 126: ...oint 6220 CSU NTPM99CA Rel 2 0 Issue 5 Dec 2005 Figure 4 56 Authentication Module Setup Window 4 Click the MAC RADIUS tab The MAC RADIUS Setup screen is displayed as shown below Figure 4 57 Authentication Module Setup Windows ...

Page 127: ...screen is explained in more detail below Use formatted MAC Address for username Select A1 2B 3C 45 CD EF if you wish to use all uppercase formatting for MAC address accounting This format corresponds to the new RFC RADIUS standards Select a1b2c3 d4e5f6 if you wish to use the older formatting of MAC addresses Select the EAP packet username if you wish to use the EAP packet username 802 1x Authentic...

Page 128: ...ton if you wish to deny network access to the user if the RADIUS server is down Do not change user authentication state Select this checkbox if you wish to keep the user authentication state the same as that before the RADIUS server went down When this checkbox is selected if the user was authenticated before the server went down then the user will remain authenticated If the user was not authenti...

Page 129: ...ADIUS accounting updates If this feature is enabled the number of bytes and packets sent by a client will be updated according to the update interval defined on the Advanced RADIUS Setup screen WARP Settings Button Clicking this button displays the WARP Settings screen which allows you to define various IP addresses and ports that will be used for Wireless Authentication and Registration Protocol ...

Page 130: ...anced RADIUS Setup Window The Advanced RADIUS Setup screen is used to configure optional RADIUS related parameters 2 Enter values in the Advanced RADIUS Setup screen as indicated by the field descriptions below NAS Identifier This field displays your Network Access Server NAS name The access point s SNMP System Name is used as the NAS Identifier and is shown here for your convenience Note The NAS ...

Page 131: ...ends user credentials a user name is often included Within the user name are two elements Identification of the user account name Identification of the user account location For example for the user name user1 microsoft com user1 is the user account name and microsoft com is the location of the user account The identification of the location of the user account is known as a realm With RADIUS a re...

Page 132: ...e the provided realm name and do not use the one provided Example 1 User provided smith Behavior is set to Supply and user did not provide a realm name The supply action produces jsmith microsoft com Example 2 User provided smith Behavior is set to Supply and user provided the realm name yahoo com The supply action produces jsmith yahoo com Require Requires the user to use the selected realm name ...

Page 133: ...The user is authenticated as jsmith yahoo com Note The available behaviors vary depending on the type of accounting or authorization realm selected The following table shows the types of behaviors available for each type of accounting or authorization realm Table 4 5 Type of Accounting Authorization Realm Behavior s Available ACL Radius Accounting Append MAC RADIUS Accounting Append MAC RADIUS Aut...

Page 134: ...unched the AP Configurator and that you have completed all steps in Configure the Access Point for Basic Operation section From the Setup tab on the Configurator click the RADIUS Server button The RADIUS Authentication and Accounting Server Setup screen is displayed as shown below Figure 4 59 RADIUS Setup Window The RADIUS Server Setup screen is used to configure authentication and accounting para...

Page 135: ... Users will need to be authenticated re authorized after this time expires You should set this value to the maximum time you wish a user to be able to use your service without the need to be re authenticated Shared Secret The client file for your RADIUS server contains the IP address and password for the base station you are setting up You must add the IP address and password shared secret from th...

Page 136: ...rt If you are using a second RADIUS server for network robustness enter the authentication port default 1812 for that RADIUS server the host Secondary Server Accounting Port If you are using a second RADIUS server for network robustness enter the accounting port default 1812 for that RADIUS server the host ...

Page 137: ...ge Setup screen is used to set up the parameters used for bridging In most cases you will not need to modify the factory configured Bridge Setup If you are working with an extensive network environment however and if you are an experienced network administrator you may want to modify some of the parameters to fit specific network requirements The top half of the screen allows you to define differe...

Page 138: ...lick the OK button when finished to re display the Bridge Setup screen Note that the protocols you have selected are listed in the Protocol Filtering window and that all protocols are denied by default 2 If you wish to Bridge or Tunnel any of the protocols in the list select the protocol then click either the Bridge or Tunnel buttons 3 At the bottom of the Protocol Filtering list click the Bridge ...

Page 139: ... permit or deny access to individual stations by specifying their particular MAC Addresses or to multiple stations by using an X as a wildcard character You can also permit or deny Ethernet multicast address all traffic that does not match one of the pairs explicitly listed in the Ethernet pair list will be permitted or denied based on your selection Table 4 6 Traffic Filtering Selection Traffic M...

Page 140: ...llow you to filter Ethernet traffic due to bad or unknown DHCP Filtering allows you to limit DHCP responses to a particular DHCP server IP ARP Filtering allows you to prevent unnecessary IP ARP packets from being sent over the wireless link Incoming Broadcast Filters allow you to prevent broadcast and multicast packets arriving from the remote interface s from being transmitted on the local interf...

Page 141: ... will prevent the interface number from being changed once the source address has been seen A standard Bridge will also time out the learned table records every ten 10 minutes If learned table lockdown is enabled these records will not be timed out Once a record is learned it will not be changed or deleted until either the Secure Data Mode station reboots or the learned table becomes completely fi...

Page 142: ...will ignore all subsequent messages issued by the particular network device or ignore all messages of that type coming on that particular interface You can use the Storm Threshold screen to Specify a maximum value as received from a single network device identified by its MAC address Specify an absolute maximum of messages per second per Interface You can specify a set of thresholds for each Inter...

Page 143: ...ll be received on Interface 2 typically 802 11 Broadcast Interface 3 Threshold Enter the maximum number of broadcast messages per second that will be received on Interface 3 typically 802 11a Multicast Interface 3 Threshold Enter the maximum number of multicast messages per second that will be received on Interface 3 Preset Button Clicking the Preset button sets all broadcast and multicast rates t...

Page 144: ...ter allows you to influence the choice of the Root Bridge and Designated Bridge as calculated by the Spanning Tree Algorithm Valid Values 0 65000 Default 32768 A low numerical value makes the bridge more likely to become the designated bridge or root bridge typically 0 The recommended value is 32768 You may assign a duplicate priority value to multiple bridges provided that it is a non zero value ...

Page 145: ... Value 2 seconds Shortening the Hello Time will make the protocol more robust especially when the probability of loss of configuration messages is high Lengthening the Hello Time will lower the overhead of the algorithm since the interval between the transmissions of configuration messages will be longer Forward The Forward Delay is a timer that prevents a bridge to forward data packets when The b...

Page 146: ... transmits BPDU messages throughout the Local Area Network When a bridge unit receives a BPDU message at one of its ports it will add the value in the Path Cost field for that port to the value in the Root Path Cost Field of the BPDU message before forwarding the message again This will help the other bridges to determine the Total Path Cost to the Root Bridge via this port Valid Values 0 255 Defa...

Page 147: ...ion checkboxes been de selected on the General Setup screen Figure 4 65 IP Setup window You can choose to set up the base station to obtain an IP address from DHCP server If you select this option you must also choose the interface on which you would like the base station to send the request This option causes your base station to send a broadcast request for its IP address subnet mask and default...

Page 148: ...rovide the same IP address to this Secure Data Mode Station system Using Interfaces Select the interface for which you wish to obtain an IP address A base station has several network interfaces to which it may be connected The network interfaces are numbered 1 2 3 and the interface numbers may be found by selecting Interface Setup from the Setup Menu Specify an IP Address Select this radio button ...

Page 149: ...TL counter decreases by one When the TTL 0 the frame is rejected Syslog Host Address Syslog messages can be used to log information such as logins service errors and general configuration information Since there is no storage on a base station a general purpose computer is needed to log these messages The Syslog Host Address is the IP Address of the system which accepts syslog system logging packe...

Page 150: ...for network management that are password protected Figure 4 66 SNMP Setup window Read Password This password enables you to create a network management level where a local LAN Administrator can view but not modify the SNMP parameters Read Write Password This password enables you to create a network management level where only a Network Supervisor knowing the right Read Write password will be able ...

Page 151: ... such as rebooting Enter a password that corresponds to the password set at the Trap Host to filter unsolicited or unauthorized SNMP Trap messages at the Trap Host The Trap Host IP Password will be embedded in the SNMP Trap messages sent by this base station If the Trap Host receives a message without or with an unknown password the Trap message will be ignored SNMP IP Access List The SNMP IP Acce...

Page 152: ... IP Mask List and select a mask from the list Note A subnet mask value of 255 255 255 255 will authorize only the station with the address specified in the IP address A subnet mask value of 255 255 255 0 will authorize all stations that have an IP address within the range of that particular subnet the IP address field will display the value xxx xxx xxx 0 Warning The subnet mask value 0 0 0 0 will ...

Page 153: ...ter has been configured to use To add additional direct or indirect routes click on the Add Direct or Add Indirect buttons Table 4 8 IP Route List IP Route List This pane displays the list of IP Routes that this Router has been configured to use To add additional direct or indirect routes click on the Add Direct or Add Indirect buttons Mask The Subnet Mask of the IP Address which shows which addre...

Page 154: ...ber of hops a packet can take Each time the frame is forwarded by a router the TTL counter decreases by one When the TTL 0 the frame is rejected Syslog Host Address Syslog messages can be used to log information such as logins service errors and general configuration information Since there is no storage on a base station a general purpose computer is needed to log these messages The Syslog Host A...

Page 155: ... choose to permit only the packets that are a part of multicast group in your network Multicast pruning generates no additional network traffic allowing you to significantly reduce multicast traffic passing through your switch Add Direct IP Routes Clicking the Add Direct button displays the Add Direct IP Route screen which allows you to add new direct IP routes When the Secure Data Mode station ha...

Page 156: ...te screen is used to add indirect IP routes When the base station needs to send IP packets between IP subnets which are not directly connected to one of its interfaces i e not on the same network segment it must have an indirect route for sending those packets An indirect route consists of An IP Address which specifies the basic IP address to route A Subnet Mask which defines the class of IP addre...

Page 157: ... Target Router Enter the IP address of the router that you wish to use as the target router A target router is the IP address of the router that knows how to handle the IP packet that is being routed When used in indirect routes it could specify the router that is attached directly to the subnet of the packet s final destination or a router that knows where to send it Cost The cost value reflects ...

Page 158: ...should ACCEPT Routing Information Protocol RIP routes from other routers on a particular interface select that interface s checkbox on the Listen to RIP line By default the Secure Data Mode Station will not accept RIP Routes from other routers so you must select the interfaces if you wish to listen to RIP For the given example the Secure Data Mode Station will listen to RIP Routes on Interfaces 1 ...

Page 159: ...s 2 and 3 since clients on interfaces 2 and 3 have no other way of accessing the BOOTP DHCP server Forwarding Host If you have enabled BOOTP DHCP forwarding for one or more interfaces enter the IP address of the BOOTP DHCP server or relay agent to which you should forward BOOTP DHCP requests In this example the BOOTP DHCP Forwarding host is 10 2 3 1 Accept RIP 2 for the Following Routes In additio...

Page 160: ...n the base station gets its own IP Address by DHCP it will automatically determine the correct Domain Name information You should however set up the IP Range and Gateway Router Info section and select the correct interface Note This screen is only available when the Enable DHCP Server checkbox has been selected on the General Setup screen Figure 4 72 DHCP Server Setup window Offered IP Address Ent...

Page 161: ...s A DHCP lease is the amount of time that the DHCP server grants permission to the DHCP client to use a particular IP address Enter the lease time in minutes for your DHCP server DNS Server IP Addresses Enter the IP address for the DNS server Warning If you have set up the base station to Obtain IP Address from DHCP Server on the IP Host Setup screen do not enter any DNS server IP addresses or a d...

Page 162: ...ly traffic initiated by an interior computer is permitted through the NAT In the screen shown below when the client 10 0 1 1 wants to send data to the Internet the access point will take the packet replace the return address of 10 0 1 1 with 140 254 5 147 and then send the packet to the Internet When a response comes from the Internet the access point sends it to the correct client in the local ad...

Page 163: ...ients that connect to the base station Private IP Mask The IP mask that is seen by the local internal network Note The IP will be combined with the subnet mask and the range of addresses that results will be translated This range of IP set must match the addresses of the clients that connect to the base station Inhibit Private NAT IP Address through this interface This option allows you to select ...

Page 164: ... been selected on the General Setup screen Note Incoming NAT only needs to be configured if servers in the local private address space need to connect with clients in the global public address space You do not need to turn on Incoming NAT if you are using Outgoing NAT and vice versa To set up incoming NAT 1 From the Setup tab select General Setup The General Setup screen is displayed 2 Make sure t...

Page 165: ...g Note The Private IP Address must be the same as the address and subnet mask that was selected for your internal network Private IP Mask The private subnet mask for your local internal servers in the dialog Note The private IP Mask must be the same as the subnet mask that was selected for your internal network Add IP Address Port Pairs Clicking the Add button displays the Add IP Address Port Pair...

Page 166: ...arded Set up IP UDP TCP Filters Select the Firewall option from the Setup Tab to set up the IP TCP UDP firewall filtering features IP Firewalls are used to restrict access between sub networks to certain IP hosts types of IP packets or connections to certain ports You can set up the firewall to completely block all external IP traffic or restrict access to certain machines ports or packet types No...

Page 167: ...e remote network or host you would like to protect it from A particular filter is applied only to traffic between the specific local and remote networks or hosts shown in the list If you wish to filter all traffic set the Remote IP Address and Subnet Mask both to 0 0 0 0 Figure 4 77 Input IP address Firewall Setup window TCP Security Filters To set the TCP ports to which a given filter will be app...

Page 168: ... other ports from the Selected TCP Ports list and click on the Port Options button This will display the window below which you can click on for more information If you select the line All Other Ports and then click the Port Options button you will see a screen similar to the one described in the UDP Port Options screen Figure 4 79 TCP Port Options Setup window UDP Port Filters To set the UDP port...

Page 169: ...utton The window displayed below is for the All Other Ports line which sets the filter settings for all ports not explicitly listed in the Selected UDP Ports list See TCP Port Options for an example using a specific port Figure 4 81 UDP Port Options Setup window Firewall Setup Options The Firewall Setup Options screen allows you to set handling options for a particular filter Select the filter fro...

Page 170: ...Secure Data Mode Station to allow Source Routed IP packets to the local hosts protected by this filter Source Routed packets contain routing information inside the packet headers instead of allowing network routers to decide the best route for the packet They are primarily used in network troubleshooting but may be used to fool the firewall that the packets are coming from a trusted host We strong...

Page 171: ... TCP are source routed or are fragmented IP Protocol Filters Clicking the IP Protocols button displays the IP Protocol Filters screen which allows you to set the IP protocols to which a given filter will be applied Select the filter you want to modify on the Firewall Setup screen and click the IP Protocols button Less Frequently Used IP Protocols This list displays some of the less commonly used p...

Page 172: ...t a protocol to filter you will need to define an action to take when data using that protocol is sent or received Initially you will need to indicate whether you wish to permit or deny that protocol In addition you can optionally choose to log trap or record all packets and to dynamically deny all other protocols Figure 4 84 IP Protocol Option Setup window Permit All Other Protocols Button Select...

Page 173: ...es Figure 4 85 Outgoing ICMP Filter Setup window Permit Outgoing Echo Request and Incoming Reply Permit Echo ping Requests sent from local stations to remote stations and the remote stations replies Permit Outgoing Time Request and Incoming Reply Permit local stations Time Requests sent to remote stations and the replies from remote machines Permit Outgoing Info Request and Incoming Reply Permit l...

Page 174: ...m messages to the remote network when there was a problem with the header parameters of a packet Permit Other Outgoing ICMP Packets Permit other ICMP packets not listed above to be sent from the local network to the remote network Permit All Button Clicking this button selects all checkboxes on the Outgoing ICMP Filters screen Deny All Button Clicking this button de selects un checks all checkboxe...

Page 175: ... on the local private network and allow the local machine to reply to them Permit Incoming Info Request and Outgoing Reply Permit Information Request packets sent from remote un trusted computers to be sent to machines on the local private network and allow the local machine to reply to them Permit Incoming Mask Request and Outgoing Reply Permit Mask Request packets sent from remote un trusted com...

Page 176: ...t from the un trusted remote network to the private local network Permit All Button Clicking this button automatically selects all checkboxes on the Incoming ICMP Filters screen Deny All Button Clicking this button automatically de selects un checks all checkboxes on the Incoming ICMP Filters screen Permit Conservative Button Clicking this button automatically selects the following checkboxes on t...

Page 177: ...cation Class Number Enter a number for an SNMP based username password firewall authentication bypass class The Authentication class works much like a UNIX user group does you can specify what types of packets a person in this authentication class can pass through the firewall when logged in with the approved username and password ...

Page 178: ...nistration The WLAN Cable Access Point 6220 CSU has the following management and operational features listed below Saving Configuration Loading new Configuration Uploading Software Rebooting the remote station ...

Reviews:

No comments