manualshive.com logo in svg

Proxim ORiNOCO AP-2500, User Manual

Share
Download
Proxim ORiNOCO AP-2500 User Manual Download Page 56

56

AP-2500 Authentication Methods

First identify the default RADIUS service profile. Note that you must first configure a RADIUS service profile on 
the 

Public Space

 > 

AAA

 > 

Profile

 tab.

Place a check mark in the 

AAA Radius

 box to enable the feature.

The AP can reauthenticate repeat subscribers who return to the system without 720 hours. To enable this 
feature place a check mark in the

 Enable Automatic Subscriber Reauthentication

 box.

Select the 

RADIUS Username Type

. When using the AP-2500, you can authenticate subscribers using the 

following credentials:

UserInput

 (that is, User Name and Password)

MAC-MAC

 (Enter the MAC address as both the user name and the password)

MAC-Key

 (Enter the MAC address as the user name and the AP/RADIUS Shared Secret as the 

password)

If using MAC-MAC or MAC-Key, enter the MAC address in the following format: 123456-7890ab (6 digits, a 
dash, final 6 digits).

Place a check mark in the

 Radius Idle Timeout

 box to

 

have the AP time out users who are inactive for the 

specified number of seconds.
— The AP only uses this parameter if the Idle-Timeout attribute is not set or if the attribute specifies an 

amount of time that is greater than this setting. See 

RADIUS Messages and RADIUS Attributes

 for 

details.

— When set to 0, a user never times out (assuming that the Idle-Timeout attribute is not set).

Place a check mark in the 

Send NAS Identifier

 box if you want to include the AP’s NAS Identifier in the 

messages sent to the RADIUS server.

Configure the 

RADIUS NAS ID

 if you enabled Send NAS Identifier. (In RADIUS terminology, the AP is the 

NAS or Network Access Server.) 
— You can use this parameter to differentiate between multiple APs in the RADIUS accounting logs. 
— Also, the RADIUS server can alter a user’s access policy depending on the NAS identifier. For example, 

the maximum session time could be reduced if the NAS identifier is “restaurant” instead of “library.”

To send the NAS IP address with your account request, place a check mark in the

 Send NAS IP

 box.

To send a NAS port type with your account request, check the box for 

Send NAS Port Type

, then define the 

NAS port in the 

RADIUS NAS Port Type

 field.

Place a check mark in the 

Send Framed IP

 box if you want to include the IP address assigned to the client in 

the messages sent to RADIUS server.
— You can use this parameter to help identify the IP address assigned to clients in the RADIUS accounting 

logs. If using IP Upsell, you can also see how many clients are using public IP addresses.

Place a check mark in the 

Enable URL Redirection

 box if you configured the Nomadix-URL-Redirection 

VSA.

Place a check mark in the 

Goodbye URL On

 box to enable the display of a post-session Goodbye page. The 

Goodbye page can be defined as a Radius VSA or through the Internal Web Server.

If required, check the box for 

AAA RADIUS Terminate End of Day

 to allow business policies that want to 

terminate the session at midnight of every day.

If required, check the box for 

AAA Enable Byte Count Reset on Acct Start

 to reset the transmitted and 

received byte count for a subscriber once an "accounting start" is sent. This function prevents granting Walled 
Garden traffic if the billing plan is using bytes sent/recevied as a charge criterion.

5. Click 

PublicSpace

 > 

AAA

 > 

Internal

.

6. Confirm that there is check mark next to the 

Enable User Names

 box if you are authenticating users based on 

User name/Password.

7. Place a check mark in the 

Enable Smart Client

 box if you are a partner with a hotspot aggregator, such as 

Boingo, iPass, or GRIC, and you want to support subscribers who have the aggregator’s Smart Client application 
installed on their computers. In this case, the RADIUS settings you configured should point to the aggregator’s 
RADIUS servers. See 

Smart Client

 for details.

8. Click 

OK

 if you made any changes.

9. Reboot the AP.

Summary of Contents for ORiNOCO AP-2500

Page 1: ...ORiNOCO AP 2500 Access Point Public Access AP User Guide ...

Page 2: ...8 2002 The OpenSSL Project All rights reserved The names OpenSSL Toolkit and OpenSSL Project must not be used to refer to endorse or promote the products or for any other purpose related to the products without prior written permission For written permission please contact openssl core openssl org THIS SOFTWARE IS PROVIDED BY THE OPENSSL PROJECT AS IS AND ANY EXPRESSED OR IMPLIED WARRANTIES INCLUD...

Page 3: ...ng Capabilities 21 Web Browser Interface 21 Command Line Interface 21 SNMP Management 22 Active Ethernet 23 2 Installation Basic Configuration 24 Prerequisites 24 Hardware Installation 25 AP 2500 with Active Ethernet 25 AP 2500 with Power Supply 26 Installing a Card in Slot B 29 5 GHz Kit Installation 29 Installing the AP 2500 in a Plenum 31 Initialization ScanTool 32 ScanTool Instructions 32 Basi...

Page 4: ...ration Files Backup 41 Downloading Configuration Files 42 3 AP 2500 Authentication Methods 43 Authentication Overview 43 Internal Authentication 44 End User Experience 45 Configuration Instructions 46 Internal Authentication with RADIUS 51 Authentication Procedure 51 Notes Concerning RADIUS 52 Configuration Instructions 52 Install and Configure RADIUS 52 Configure the AP 2500 55 External Authentic...

Page 5: ... 77 Wireless 802 11b 78 Distance Between APs 80 Multicast Rate 80 Wireless Distribution System WDS 82 Ethernet 84 Management 84 Passwords 84 IP Access Table 84 Services 86 Static Port Mapping 88 Network Time Protocol NTP 90 Filtering 90 Ethernet Protocol 90 Static MAC 91 Alarms 93 Groups 93 Alarm Host Table 93 Bridge 94 Security 94 MAC Access 94 Subscribers and MAC Access Control 95 Encryption 96 ...

Page 6: ...30 RADIUS Configuration Parameters 132 AAA Radius 132 Profile Radius Service Profile 134 Logging 136 General Syslog Information 136 Configuration Instructions 137 Sample Logging Events 137 URL Filtering 142 URL Filtering by DNS Names or Domain Names 142 URL Filtering by IP Address 142 Information and Control Console ICC 143 ICC Appearance 144 Customizing the ICC 145 Potential End User Issues 148 S...

Page 7: ...cribers Table 175 DAT Sessions 177 Interfaces 178 Link Test 802 11b Only 179 7 Commands 181 Download 181 File Type Overview 181 Download Instructions 182 Upload 182 Reboot 184 Reset 184 Help Link 185 8 Troubleshooting 186 Troubleshooting Concepts 187 Symptoms and Solutions 187 Connectivity Issues 187 AP 2500 Unit Will Not Boot No LED Activity 187 Serial Link Does Not Work 187 Ethernet Link Does No...

Page 8: ...covery Procedures 191 Reset to Factory Default Procedure 191 Forced Reload Procedure 191 Download a New Image Using ScanTool 191 Download a New Image Using the Bootloader CLI 192 Setting IP Address using Serial Port and Normal CLI 194 Hardware and Software Requirements 194 Attaching the Serial Port Cable 194 Initializing the IP Address using Normal CLI 194 System Alarms Traps 195 Security Alarms 1...

Page 9: ...les User Strings 210 Working with Tables 210 Using Strings 211 Configuring Objects that Require Reboot 212 set CLI Command 212 show CLI Command 212 Configuring the AP 2500 Unit using CLI commands 213 Log Into the AP 2500 Unit using HyperTerminal 213 Log Into the AP 2500 Unit using Telnet 213 Set Basic Configuration Parameters using CLI Commands 213 Set System Name Location and Contact Information ...

Page 10: ...Parameters 221 Miscellaneous System Parameters 221 Inventory Management Information 222 Network Parameters 222 Location Parameters 222 DHCP Server Parameters 223 DNS Parameters 224 VLAN Parameters 224 Interface Parameters 224 Wireless 802 11b Parameters 224 Wireless 802 11a Parameters 227 Ethernet Interface Parameters 228 Management Parameters 228 IP Access Table Parameters 228 Access Control Para...

Page 11: ...A Passthrough Port 243 Bandwidth Management Parameters 243 Billing Parameters 244 Billing Plans Configuration 244 Billing Mirroring Parameters 245 Subscriber Messages Parameters 247 Authorized Subscribers Table 249 Current Subscribers Table 250 Miscellaneous Parameters 252 Session Limit Parameters 252 iNAT Parameters 252 DAT Session Parameters 253 Static Port Parameters 253 CLI Monitoring Paramete...

Page 12: ... Sample command XML 264 Response for the User Authorize Command 264 Sample Response XML 264 External Authentication Procedure Detailed 266 C Credit Card Interface Specification 267 Data sent by the AP 2500 to the credit card clearing server 267 Data sent by credit card clearing server to the AP 2500 268 Explanation 268 D ASCII Character Chart 269 E Specifications 270 Hardware Specifications 270 Ph...

Page 13: ...mentation Downloads 274 Knowledgebase 274 Telephone Support 275 G Statement of Warranty 276 Warranty Coverage 276 Repair or Replacement 276 Limitations of Warranty 276 Support Procedures 276 Other Information 277 Search Knowledgebase 277 Ask a Question or Open an Issue 277 Other Adapter Cards 277 ...

Page 14: ...he ORiNOCO AP 2000 Although in implementation there is some overlap between these feature sets for the sake of simplicity this document refers to the first set of features as the AP s Public Space features and the second set as the AP s Networking features Public Space Features The AP 2500 s Public Space features are designed to provide a simple billing management and authentication solution for h...

Page 15: ...and than no transaction records are lost See Credit Card Mirroring for details Information and Control Console The AP can open a pop up window on your subscribers Web browsers that reports the amount of time remaining in the user s account if paid for by credit card or allows the user to logout if using RADIUS to manage users Also the ICC supports multiple advertising banners that you can customiz...

Page 16: ...herwise each need to have its own public IP address to communicate with the network The AP 2500 uses NAT for clients that are configured to obtain an IP address automatically from a DHCP server which is the typical configuration for hotspot users and for clients with misconfigured static IP addresses that is addresses that are not valid on the AP s local IP network When performing NAT an AP 2500 u...

Page 17: ... Mbits sec Also in 1999 the IEEE modified the 802 11 standard to support devices operating in the 5 GHz frequency band This standard is referred to as 802 11a 802 11a devices are not compatible with 2 4 GHz 802 11 or 802 11b devices 802 11a radios use a radio technology called Orthogonal Frequency Division Multiplexing OFDM to achieve data rates of up to 54 Mbits sec 802 11a and 802 11b Networks T...

Page 18: ... Encryption settings 2 If you use a RADIUS server to authenticate subscribers a subscriber can move between multiple AP 2500s but the user will need to re login each time he connects to a different Access Point This solution does not provide seamless roaming NOTE If you have enabled the Information and Control Console ICC a RADIUS user who clicks the Logout button will not be logged out following ...

Page 19: ... not be available with all 802 11b cards WEP Plus Weak Key Avoidance yes no Available only one way AP to client if using an ORiNOCO 802 11a b ComboCard or a non ORiNOCO client WDS Relay yes no Remote Link Test yes no Link Test Responder yes no Medium Density Distribution yes no Distance between APs yes no Closed System yes no Interference Robustness yes no Load Balancing yes no No client support f...

Page 20: ...e channels 10 13 only 36 5 180 GHz 40 5 200 GHz 44 5 220 GHz 48 5 240 GHz 52 5 260 GHz default 56 5 280 GHz 60 5 300 GHz 64 5 320 GHz Channels 36 64 are valid for products in the FCC and ETSI regulatory domains The following channels are available in Japan 34 5 170 GHz default 38 5 190 GHz 42 5 210 GHz 46 5 230 GHz Transmit Rate N A 0 Auto Fallback default 6 Mbit sec 9 Mbits sec 12 Mbits sec 18 Mb...

Page 21: ...ing Web browsers installed Microsoft Internet Explorer 5 5 or later recommended Netscape 6 or later The computer is required to configure the AP 2500 using the Web browser interface Internet connectivity on your Ethernet network Management and Monitoring Capabilities There are several management and monitoring interfaces available to the network administrator to configure and manage the AP 2500 on...

Page 22: ...SNMPc The AP 2500 supports several Management Information Base MIB files that describe the parameters that can be viewed and or configured over SNMP MIB II RFC 1213 Ethernet like MIB RFC 1643 ORiNOCO Enterprise MIB Nomadix MIB for Public Space and IP features IEEE 802 11 MIB Proxim provides these MIB files on the AP 2500 CD You need to compile one or more of the above MIBs into your SNMP program s...

Page 23: ...lable via SNMP Active Ethernet Some AP 2500 units are equipped with an Active Ethernet module Active Ethernet AE delivers both data and power to the access point over Ethernet cabling There is no difference in operation the only difference is in the power source The Active Ethernet AE integrated module adds 48 VDC to unused non data wires in standard Category 5 Ethernet cable The cable length betw...

Page 24: ...ssword to access the web interface The default password is public CLI Password Each Access Point requires a read write password to access the CLI interface The default password is public SNMP Read Password Each Access Point requires a password to allow get requests from an SNMP manager The default password is public SNMP Read Write Password Each Access Point requires a password to allow get and se...

Page 25: ...t B 5 GHz Kit Installation Installing the AP 2500 in a Plenum AP 2500 with Active Ethernet Follow these installation steps if you purchased an AP with Active Ethernet 1 Slide the AP module onto the mounting bracket Make sure it is properly seated Figure 2 1 Insert Module into mounting bracket 2 Slide an 802 11b wireless card not included in the kit into Slot A Figure 2 2 Slide a PC Card into the A...

Page 26: ...able to an Active Ethernet power injector if not already connected 5 Wait for the Power LED indicator to turn green before proceeding Figure 2 3 Connect an Ethernet cable from an AE hub to the AP 6 Determine the best location for your device NOTE Proxim recommends that you perform a Site Survey prior to determine the installation location for your AP 2500 For information about how to conduct a Sit...

Page 27: ... Figure 2 5 Install the power supply 3 Slide the AP module onto the mounting bracket Make sure it is properly seated 4 Plug the DC connector from the power supply into the top of the AP module Figure 2 6 Insert module in mounting bracket and attach power connector 5 Slide an 802 11b wireless card not included in the kit into Slot A ...

Page 28: ...Installation 6 Attach one end of an Ethernet cable to the AP s Ethernet port and the other end to a network hub or switch 7 Connect the unit s power supply to a power source 8 Wait for the power LED to turn green before proceeding Figure 2 8 Power LED turns green when the unit is operational 9 Determine the best location for your device NOTE Proxim recommends that you perform a Site Survey prior t...

Page 29: ... to install a second radio card Follow these steps to remove the faceplate 1 Disconnect the power and Ethernet cables from the AP if necessary 2 Locate a thin flathead screwdriver 3 Place the screwdriver under the tab of the faceplate 4 Apply torque upwards to snap the plate off the AP 5 GHz Kit Installation NOTE You can install one 5 GHz IEEE 802 11a adapter in each AP or you can use one 2 4 GHz ...

Page 30: ... of the unit see diagram and insert the 5 GHz card into the available card slot Figure 2 12 Insert card 6 Angle the antenna adapter slightly upwards pinch the end tabs inwards and carefully slide the antenna adapter onto the mounting bracket 7 Gently push forward while rotating the antenna downwards and clip the adapter into the small cutouts on the face of the mounting bracket ...

Page 31: ...s also use the plenum to house communication equipment and cables However these products and cables must comply with certain safety requirements such as Underwriter Labs UL Standard 2043 Standard for Fire Test for Heat and Visible Smoke Release for Discrete Products and Their Accessories Installed in Air Handling Spaces The AP 2500 has been certified under UL Standard 2043 and can be installed in ...

Page 32: ...ress is printed on the product label Each unit has a unique MAC address which is assigned at the factory 2 Confirm that the AP is connected to the same LAN subnet as the computer that you will use to configure the AP 3 Turn on the AP if necessary 4 Insert the ORiNOCO CD into the CD ROM drive of the computer that you will use to configure the AP Result The installation program will launch automatic...

Page 33: ...e on the Internet Some of the Public Space features will not work properly if the AP s IP address changes at a later date 10 If you set IP Address Type to Static follow these additional steps Enter a static IP Address for the AP 2500 in the field provided This should be a routable public IP address Contact your network administrator if you need assistance selecting an IP address for the unit Enter...

Page 34: ...face supports the following Web browser Microsoft Internet Explorer 5 5 or later Netscape 6 or later NOTE For security reasons the AP 2500 can only be configured over its Ethernet port You cannot configure the AP using a wireless client 2 If necessary disable the browser s Internet proxy settings For Internet Explorer users follow these steps Select Tools Internet Options Click the Connections tab...

Page 35: ...cation and Contact Information Figure 2 19 System Configuration 1 Click Configure System 2 Enter a name for the AP its location within your network or its physical location such as Front Lobby or Engineering and the name phone number and e mail address of the person responsible for this device 3 Click OK ...

Page 36: ...ask needs to match the Subnet Mask of your network 4 Click OK when finished The AP 2500 unit will need to be rebooted for the changes to take effect Figure 2 20 Network IP Configuration Configure Network Names for the Wireless Interfaces During boot up the AP automatically detects the number and type of radio cards installed and updates the wireless configuration parameters accordingly Many of the...

Page 37: ...EP Key When Encryption is enabled two 802 11 devices must have the same Encryption Keys and both devices must be configured to use Encryption in order to communicate If one device is configured to use Encryption but a second device is not then the two devices will not communicate even if both devices have the same Encryption Keys The AP 2500 supports 64 bit and 128 bit encryption for both 802 11a ...

Page 38: ...for these changes to take effect Figure 2 21 WEP Encryption Set and Change Passwords 1 Click Configure Management Passwords 2 Set the SNMP Read Password Enter a password in both the Password field and the Confirm field An SNMP management program must be configured with this same password also known as a community string to gain read access to the AP The default password is public 3 Set the SNMP Re...

Page 39: ...e the date and time See http www ntp org to identify the IP addresses for public time servers in your area Follow these steps to configure the AP to use NTP 1 Click Configure Management NTP 2 Place a check mark in the Enable NTP box 3 Enter the IP address for a public time server in the Primary Time Server box 4 Enter the IP address of a second public time server in the Secondary Time Server box T...

Page 40: ...located on the installation CD ROM You can also download the latest TFTP software from Solarwind s Web site at http www solarwinds net If a TFTP server is not configured and running you will not be able to download and upload images and configuration files to from the AP Remember that the TFTP server does not have to be local as long as you have a valid TFTP server IP address Also note that a TFTP...

Page 41: ...s file contains both the Network settings that correspond to the parameters described in the ORiNOCO MIB and the Public Space settings that correspond to the parameters described in the Nomadix MIB See SNMP Management for more information on the MIB files The file named current txt is only required when you want to manually modify the AP s configuration You may upload the file from the AP to a TFT...

Page 42: ...ation is complete The AP should reboot automatically after uploading the config sys file Following the reboot the AP will use the settings contained in the config sys and current txt files you downloaded to the unit Public Space and Advanced Configuration Once you ve configured the basic settings and have become comfortable with using the AP s Web browser interface you can configure the AP s Publi...

Page 43: ...an enable the AP to use its Internal Web Server and login page This method is easy to setup but provides less customization options than the more complicated techniques that involve other servers on your network such as a RADIUS server or an External Web Server The AP 2500 supports the following authentication methods No Authentication The AP s Authentication Authorization and Accounting AAA servi...

Page 44: ...edia Access Control MAC addresses are listed in the AP 2500 s Authorized Subscribers Table Only these cards can gain access to the network Customers pay cash to rent cards for a specified period of time from the hotspot operator Note that this configuration does not require an account with a credit card billing service but a user may need to run an installation program to install the wireless card...

Page 45: ...id Web site to call up the login screen Entering an unreachable URL or invalid Web address will not bring up the login screen Customers who try to access e mail first will not have a connection Customers need to login via a Web browser first 5 If an existing customer that is the customer is already in the AP s Authorized Subscribers Table the customer enters his user name and password if enabled I...

Page 46: ...xpensive private IP addresses and premium customers public IP addresses This concept is known as IP Upsell Some applications require a public IP address to function properly over the Internet such as certain VPN applications on line gaming and Web hosting Customers who require a public IP address may be willing to pay a premium for this service The subscriber s wireless card must be configured to ...

Page 47: ... and XML Interface Specification for information on XML commands 15 Click OK to save your changes to the AAA settings 16 Click the Internal tab 17 Configure the SSL parameters Enable SSL and Certificate DNS Name if desired This provides secure communication between subscribers and the AP If you enable this feature you will also need to upload your certificate keys to the AP See Secure Socket Layer...

Page 48: ...ntinuing support for WebLink Proxim is working to provide support for Authorize net s Simple Integration Solution SIM method in the next AP 2500 firmware release NOTE If your credit card service provider is not on the above list you will need to provide your service provider with the Credit Card Interface Specification The credit card service provider will need to develop an interface that communi...

Page 49: ... s Internet settings in other words these email settings may work on the subscriber s home or office network but they won t work in the hotspot Properly Configured refers to subscribers whose email settings should work on the hotspot network so you do not necessarily need to redirect these messages to your own server If you want properly configured subscribers to send mail without being redirected...

Page 50: ...nd or minutes the time out counter will begin as soon as you click OK After the subscriber has timed out he she must re subscribe to the service 6 Configure the Amount Paid field if desired The AP automatically fills in this field after a successful credit card purchase 7 Configure the optional User Alias fields if desired These are for notes only and do not have an impact on the authentication pr...

Page 51: ...ent Subscribers Table with State set to Pending 2 AP redirects client to the AP s internal login page or to a Portal Page The AP redirects the customer when it receives an HTTP request from the customer s browser If the browser s default home page is loaded in the browser s cache the customer may not be redirected to the login screen But the customer will be redirected the first time he tries to a...

Page 52: ...s Session timer expires These two timers are RADIUS attributes that you can configure for the subscribers in your RADIUS database See RADIUS Messages and RADIUS Attributes for details See RADIUS for more information on the AP s RADIUS implementation Configuration Instructions The configuration instructions are divided into two topics Install and Configure RADIUS Configure the AP 2500 Install and C...

Page 53: ... AP to use the same Shared Secret 7 Click Finish 3 Add your list of users to the RADIUS database When using the AP 2500 you can authenticate subscribers using the following credentials User Input that is User Name and Password MAC MAC Enter the MAC address as both the user name and the password MAC Key Enter the MAC address as the user name and the AP RADIUS Shared Secret as the password If using ...

Page 54: ...lowing format http www myhotspot com Nomadix IP Upsell attribute number 4 format integer decimal attribute value enter 1 to enable This attribute allows the user to receive a public address from a DHCP pool typically relay DHCP server when the AP has the IP Upsell feature enabled Nomadix MaxBytesUp integer This attribute specifies the maximum number of bytes that a user can transmit Nomadix MaxByt...

Page 55: ...nting Service box 2 Enter the server s IP address or DNS name in the Primary Acct Server field Use either identifier but not both 3 Enter the Primary Acct Port number This port must match the RADIUS Accounting port supported by your RADIUS program Most RADIUS servers use port 1813 the default setting for Accounting However Funk Steel belted RADIUS uses port 1646 4 Enter the Shared Secret for the A...

Page 56: ...mum session time could be reduced if the NAS identifier is restaurant instead of library To send the NAS IP address with your account request place a check mark in the Send NAS IP box To send a NAS port type with your account request check the box for Send NAS Port Type then define the NAS port in the RADIUS NAS Port Type field Place a check mark in the Send Framed IP box if you want to include th...

Page 57: ...ccept commands that follow the XML specification detailed in XML Interface Specification The XML interface allows the AP to accept and process these XML commands received from an external source XML commands are sent from the external source External Web Server in the form of an encoded query string The AP parses the query string executes the commands specified by the string and returns data to th...

Page 58: ...Internal Authentication with RADIUS if you do not have experience working with XML Configure the AP 2500 Follow these steps to configure the AP to communicate with an External Web Server 1 Configure the AP 2500 s basic settings This includes the AP s IP address System parameters and management passwords See Basic Configuration for details 2 If not already open access the AP s Web browser interface...

Page 59: ... in the XML Sender IP Address field 13 Set Authorization Method to External 14 Click OK 15 Click the External tab 16 Enter the IP address of the External Web Server in the IP Address field 17 Enter the location of the subscriber login page in the External Login Page URL field The AP will redirect unauthenticated customers to this page Be sure to enter your External Web Server s IP address in the P...

Page 60: ...y of the server settings in their email program Typically this will be your local mail server if you have one or your ISP s mail server If you want all outgoing mail traffic redirected to the specified server enable both the Misconfigured and Properly Configured options Misconfigured refers to subscribers whose email settings are incompatible with the AP 2500 s Internet settings in other words the...

Page 61: ... Address Translation and Session Rate Limiting NOTE See Logging into the Web Interface for instructions on how to access the AP s Web browser interface System You can configure and view the following parameters within the System Configuration screen Name The name assigned to the AP 2500 Location The location where the AP 2500 is installed Contact Name The name of the person responsible for the AP ...

Page 62: ... IP address of the Access Point s gateway When IP Address Assignment Type is set to Dynamic this field is read only and reports the IP address of the unit s gateway as assigned by the DHCP server When shipped from the factory or reset to factory settings the Access Point defaults to a gateway IP address of 10 0 0 1 DHCP Server The AP 2500 acts as a Dynamic Host Configuration Protocol DHCP server f...

Page 63: ...orks set this parameter so it matches the AP s IP address DHCP Relay Agent ID Configures the Relay Agent Information Option option 82 The Relay Agent ID is included when forwarding client originated DHCP packets to the DHCP server DHCP servers that support the Relay Agent Information option may use the information in the assignment of IP addresses or other parameters DHCP Relay Server IP The IP ad...

Page 64: ...endor Specific Attribute VSA can be added to subscriber s RADIUS user information and passed back to the AP This would still have the same sequence for IP lease handout that is private address for five minutes and then public after authentication After selecting a plan private or public address the client s lease time is determined by the DHCP server that assigned it an address if the AP assigns i...

Page 65: ... 9 Click OK 10 Reboot the AP Enabling IP Upsell with Internal DHCP Server Follow these steps to enable IP Upsell with the AP providing both private and pubic IP addresses 1 Login to the AP s Web browser interface 2 Click PublicSpace AAA 3 Place a check mark in the Enable AAA Services box 4 Click OK 5 Click Configure Network DHCP Server 6 If necessary place the check mark in the Enable DHCP Server ...

Page 66: ... in the Enable AAA Services box 4 Click OK 5 Click Configure Network DHCP Server 6 Place a check mark in the Enable DHCP Server box 7 Remove the check mark from the Enable DHCP Server IP Upsell box 8 Place a check mark in the Enable DHCP Relay box to enable 9 Place a check mark in the Enable DHCP Relay IP Upsell box to enable 10 In the DHCP Relay Agent IP field enter the IP address of the AP 11 Co...

Page 67: ...onfiguration Screen Follow these steps to configure the DHCP Pool settings 1 Login to the Web interface 2 Click Configure Network DHCP Pool The default private DHCP IP address pool is the first entry in the DHCP Pools table 3 Click Add to create a DHCP Pool table entry or Edit to modify an existing entry Figure 4 3 DHCP Pool Add Entries ...

Page 68: ...es to subscribers End IP Address Specifies the last IP address in the address range that the AP will use to provide addresses to subscribers Subnet Mask Specifies the subnet mask that the AP will assign to subscribers Lease Time Specifies in minutes the length of time for which the subscriber s IP address lease is valid A subscriber must renew its address lease after the lease time elapses The def...

Page 69: ...st be in IP address format including HTTP requests from subscribers Figure 4 4 DNS Server Configuration Screen Follow these steps to configure the DNS Server settings 1 Login to the Web interface 2 Click Configure Network DNS Server 3 Enter a DNS Host Name for the AP The default Host Name should be suitable for most configurations unless you have multiple APs and want to assign each one a differen...

Page 70: ...asily manage your network Manage adds moves and changes from a single point of contact Define and monitor groups Reduce broadcast and multicast traffic to unnecessary destinations Improve network performance and reduce latency Increase security Secure network restricts members to resources on their own workgroup Clients roam without compromising security Typical VLAN Configurations VLANs collect a...

Page 71: ...fiers into the packets transmitted on the wired backbone to a network switch Finally the switch would be configured to route packets from the EMPLOYEE workgroup to the appropriate corporate resources such as printers and servers Packets from the GUEST workgroup transmitted on the same network as packets from the EMPLOYEE workgroup could in contrast be restricted to a gateway that allowed access to...

Page 72: ...1Q standard is configured for one of the wireless cards and VLAN is enabled The AP 2500 applies a VLAN header to tag traffic from wireless clients members of a tagged VLAN and transmits the traffic as appropriate on either the wired or wireless backbone An untagged User VLAN is created when a VLAN ID of 0 is configured for one of the wireless cards and VLAN is enabled Traffic received from wireles...

Page 73: ... the two Network Names based on VLAN membership Setting Up a Single VLAN Workgroup The VLAN feature enables all wireless clients that access the network through the same AP 2500 to be configured as members of the same VLAN In this scenario each wireless card is configured with the same VLAN ID The same VLAN header or tag is then applied to all traffic received from wireless clients and transmitted...

Page 74: ...less B tab 5 Set the SSID for card B this can be the same SSID as card A 6 Click Network VLAN 7 Set the VLAN ID for the card in Slot A to a value between 1 and 4094 8 Set the VLAN ID for the card in Slot B to the same value configured for the card in Slot A 9 Place a check mark in the Enable VLAN Protocol box 10 Click OK 11 Configure the wireless client with one of the two Network Names based on V...

Page 75: ...ntegrity Place a check mark in the box provided to enable Link Integrity Poll Interval milliseconds The interval between link integrity checks Range is 500 15000 ms in increments of 500 ms default is 500 ms Poll Retransmissions The number of times a poll should be retransmitted before the link is considered down Range is 0 to 255 default is 5 Target IP Address Entry This entry specifies the IP add...

Page 76: ...s the unique MAC Media Access Control address for the Access Point s wireless interface The MAC address is assigned at the factory Network Name SSID Enter a Network Name between 1 and 31 characters long for the wireless network You must configure each wireless client to use this name as well See Configure Network Names for the Wireless Interfaces for more information Auto Channel Select The AP 250...

Page 77: ...ications Standard Institute ETSI requires that 802 11a devices use DFS to prevent interference with radar systems and other devices that already occupy the 5 GHz band If you are using an AP with a 5 GHz upgrade kit in Europe keep in mind the following DFS is not a configurable parameter It is always enabled and cannot be disabled You cannot manually select the device s operating channel you must l...

Page 78: ...l address for the Access Point s wireless interface The MAC address is assigned at the factory Network Name SSID Enter a Network Name between 1 and 31 characters long for the wireless network You must configure each wireless client to use this name as well See Configure Network Names for the Wireless Interfaces for more information Auto Channel Select The AP 2500 scans the area for other Access Po...

Page 79: ...cified size or greater When set to 2347 the default setting RTS CTS is disabled See RTS CTS Medium Reservation for more information Interference Robustness Enable this option if other electrical devices in the 2 4 GHz frequency band such as a microwave oven or a cordless phone may be interfering with the wireless signal The AP will automatically fragment large packets into multiple smaller packets...

Page 80: ...cal warehouse has a few forklifts requiring low bandwidth for simple transactions This parameter is particularly useful in roaming environments with traditional access points However this feature has limited applications with AP 2500 since the AP is designed for small to medium hotspot and offers only a few options for roaming see Limitations on Roaming Also this feature is not available if you or...

Page 81: ...transmit rate The variation between Multicast Rate and Distance Between APs is presented in the following table The Distance Between APs must be set before the Multicast Rate because when you select the Distance Between APs the appropriate range of Multicast values automatically populates the drop down menu This feature is not available if you are using an ORiNOCO 802 11a b ComboCard or a non ORiN...

Page 82: ...0 Each WDS link is mapped to a logical WDS port on the AP WDS ports behave like Ethernet ports rather than like standard wireless interfaces on a BSS port an Access Point learns by association and from frames on a WDS or Ethernet port an Access Point learns from frames only WDS Warnings When setting up a WDS keep in mind the following You cannot create a WDS link between AP 2500s When creating a W...

Page 83: ...ary 6 Write down the Frequency Channel in use 7 Scroll down to the Wireless Distribution System heading 8 Click the Edit button to update the Wireless Distribution System WDS Table 9 Enter the MAC address for the AP 2000 or AP 600b in one of the Partner MAC Address field of the WDS Table Configuration screen 10 Set the Status of the device to Enable 11 Click OK Figure 4 14 WDS Configuration 12 Res...

Page 84: ...default password is public SNMP Read Write Password The password for read and write access to the AP using SNMP Enter a password in both the Password field and the Confirm field The default password is public Telnet CLI Password The password for the CLI interface via serial or Telnet Enter a password in both the Password field and the Confirm field The default password is public HTTP Web Password ...

Page 85: ... in the IP Access Table will have access to the AP s management interfaces over the Ethernet network To delete an entry click Edit and select Destroy from the Status pull down menu NOTE You cannot enable Access Control unless one or more IP Address ranges exist in the IP Access Table Also if you remove all entries from the table Access Control will be automatically disabled that is the AP will aut...

Page 86: ...the AP NOTE Blocking Telnet Services or web access will terminate the current sessions NOTE Do not enable the blocking of all interfaces without setting up and enabling SNMP Enabling the blocking of all interfaces and disabling SNMP will completely block management access to the AP For assistance contact Technical Support SNMP Settings SNMP Interface Bitmask To allow management of the AP using SNM...

Page 87: ...system will wait during a session while there is no activity The AP will terminate the session on timeout The range is 1 to 36000 seconds the default is 900 seconds Serial Configuration Settings The serial port interface on the AP is enabled at all times See Using the Command Line Interface for information on how to access the CLI interface via the serial port You can configure and view following ...

Page 88: ...n the subscriber side of the AP The advantage for the network administrator is that free private IP addresses can be used to manage devices such as Access Points on the subscriber side of the AP without setting them up with public IP addresses To access the static port mapping tab click Configure Management Static Port Map Figure 4 16 Static Port Mapping Screen Click Add to add static ports Figure...

Page 89: ...table Internal Port The port number of the internal device External IP Address The default is the IP address of the AP External Port The port number on the external device Remote IP Address This field is optional Leave this field blank if you want to connect to the internal device from any network work station Remote Port This field is optional Leave this field blank if you want to connect to the ...

Page 90: ... is reported in the System Status screen as No response from SNTP server SNTP stands for Simple Network Time Protocol a simplified version of the Network Time Protocol defined in RFC 2030 at http www rfc editor org See http www ntp org to identify the IP addresses for public time servers in your area You can also manually set the date and time from the NTP Server Configuration screen However if NT...

Page 91: ...2500 does not provide the same functionality as the Static MAC feature supported by the AP 2000 and AP 600 The AP 2500 supports the AP 2000 AP 600 Static MAC implementation only when the AP is operating in Bridge mode Each static MAC entry contains the following fields Wired MAC Address Wired Mask Wireless MAC Address Wireless Mask Comment This field is optional Each MAC Address or Mask is compris...

Page 92: ... 00 03 8F 00 00 00 to 00 03 8F FF FF FF To the filter 00 03 8F 43 23 12 and 00 03 8F 00 00 00 are the same address based on the specified Wired Mask only the value of the first six digits matter NOTE For the purposes of this filter the Wired Address refers to a packet s source address Therefore all packets whose source address equals the Wired MAC Filter will be blocked by the AP 6 Enter 00 00 00 ...

Page 93: ...Host Table See System Alarms Traps for the list of alarms contained in each group Alarm Host Table The Alarm Host Table contains the list of SNMP managers to which the AP will send SNMP trap messages If the table is empty the AP will not send SNMP traps onto the Ethernet network Follow these steps to add a Trap Host or SNMP manager to the Alarm Host Table 1 Click Configure Alarms Alarm Host Table ...

Page 94: ...gure the RADIUS settings within the Security configuration screens MAC Access Encryption VPN iNAT Intelligent Address Translation iNAT Session Rate Limiting MAC Access The MAC Access tab allows you to build a list of wireless clients authorized to access the network through the AP The wireless clients are identified by their unique MAC addresses For example if a thief steals one of your authorized...

Page 95: ...en Subscribers and MAC Access Control MAC Access Control does not prevent wireless clients from associating with an Access Point but it does prevent unauthorized clients from communicating with the Access Point For example the client software on a blocked wireless subscriber will report that the card is linked to the AP but the AP acting as a DHCP server will not assign the client an IP address Va...

Page 96: ...s The AP 2500 supports 64 bit and 128 bit encryption for both 802 11a and 802 11b For 64 bit encryption an encryption key is 10 hexadecimal characters 0 9 and A F or 5 ASCII characters see ASCII Character Chart For 128 bit encryption an encryption key is 26 hexadecimal characters or 13 ASCII characters Note that some 802 11b cards do not support 128 bit encryption NOTE 64 bit encryption is sometim...

Page 97: ... his company without involving the AP 2500 However must subscribers in your hotspot will use private IP address assigned by the AP performing Network Address Translation NAT See Dynamic Address Translation DAT for information on NAT Therefore you must configure the AP to support VPN connections The AP 2500 supports two of the most popular VPN protocols when performing NAT Point to Point Tunneling ...

Page 98: ...Potential causes include Customer uses an IPSec mode other than ESP The AP 2500 supports only Encapsulating Security Payload ESP tunnel mode This is the most common mode of establishing IPSec tunnels In the rare case that a subscriber is using one of the other methods then it would be necessary for this user to be given a public IP address Other IPSec methods are Authentication Header AH transport...

Page 99: ... is 200 sessions per Session Time Limit Interval defined Session Limit Burst Size the default is 400 sessions per Session Time Limit Interval defined Session Limit Time Interval the default is 60 seconds The Time interval is how much time the subscriber is given to consume TCP IP sessions before a new allotment occurs The Burst Size is the maximum number of sessions allowed per the Time Interval T...

Page 100: ...essages to a Syslog server URL Filtering Blocks subscriber access to a list of specified Web sites URL Filtering by DNS Names or Domain Names URL Filtering by IP Address Information and Control Console ICC Configures the Java pop up window that appears on subscriber s Web browser screens SMTP Redirection Enables redirection of outgoing e mails to a specified SMTP server Passthrough Addresses Confi...

Page 101: ...and you use a Portal Page If you use a Portal Page the AP 2500 can track a subscriber s initial Web request typically the subscriber s home page when Parameter Passing is enabled Then after successful authentication you can direct the subscriber back to this page from a customized confirmation screen see the confirm asp sample described in the Portal Page section for an example of this The sample ...

Page 102: ...igured from the AAA tab See AP 2500 Authentication Methods for detailed information on the available authentication methods AAA Basic This tab provides information needed to set up AAA basic settings that apply to all authentication methods Figure 5 2 AAA Basic Screen Enable AAA Services Enable this option to support any of the authentication methods described in AP 2500 Authentication Methods Whe...

Page 103: ...re the AP to support XML Extensible Markup Language commands received from the XML Sender IP Address The XML interface can be used with Internal or External authentication but is generally used in conjunction with External authentication XML commands are appended to a URL in the form of an encoded query string The AP parses the query string executes the commands specified by the string and returns...

Page 104: ... information on the external authentication process and for step by step configuration instructions This section provides general information on the configuration options available within this screen Figure 5 3 AAA External Web Server Screen You can configure the following options from this screen see External Authentication Configuration Instructions for detailed step by step instructions for set...

Page 105: ...nto the system s memory and the subscriber s login page is served directly from the AP 2500 NOTE See Internal Authentication for information on the internal authentication process and for step by step configuration instructions This section provides detailed information on the configuration options available within this screen Secure Socket Layer SSL Portal Page Smart Client User Name New Subscrib...

Page 106: ...download at several Web sites including http www cygwin com Cygwin is a UNIX environment for Windows It operates on computers running Windows 95 and later except Windows CE Download and execute the Cygwin Setup exe file Follow the on screen instructions to install the software When prompted to select packages to install select cygwin and openssl only You do not need to install any other packages i...

Page 107: ...editor such as Notepad and copy and paste the text to Verisign s on line form Begin copying at the BEGIN NEW CERTIFICATE REQUEST line Copy through and including the END NEW CERTIFICATE REQUEST line 7 Follow the remaining instructions to complete the enrollment process If the CA asks you to select your server software vendor when uploading the CSR file select Apache Freeware or Apache SSL You can p...

Page 108: ...he following syntax http APIPADDR 1111 usg login OS http www anyWebSite com A secure login link uses the following syntax http Certificate DNS Name 1112 usg login OS http www anyWebSite com See Portal Page for more information Portal Page A Portal Page is a great way to customize the login experience for the users at your hotspot You can provide custom content on the page and links to free Web sit...

Page 109: ...ou will be installing all of the default IIS options See the Windows 2000 documentation if you have a question concerning a particular option 6 Click Next and follow the on screen instructions to install IIS You may be prompted to insert your Windows 2000 installation CD during the installation process 7 Launch the Internet Services Manager from Start Programs Administrative Tools 8 Click the plus...

Page 110: ...Active Server Page ASP files portalpage asp and confirm asp Microsoft s IIS uses this file type the ASP files contain script commands that are processed by the IIS server You can use these files if you use Microsoft IIS and you want to incorporate some additional features namely Redirect customers back to the Web site they initially requested before viewing the Portal Page typically their browser ...

Page 111: ... click a link to login for full access 6 The customer wants full access so he clicks the link to login The AP s internal login screen appears 7 The customer follows the on screen instructions and successfully logs in or signs up for service 8 Following successful authentication the customer is redirected to the page you specified in the http APIPADDR 1111 usg login OS http www anyWebSite com state...

Page 112: ... edit the sample ASP Portal Page file simply open the file using a text editor such as Notepad You only need to edit the walled garden content in the ASP file you do not need to specify the IP address of your AP this information will be transmitted by the AP in the redirect request 1 Open the portalpage asp file with in Notepad 2 Edit the Free Content section as necessary Each free content link in...

Page 113: ...h DNS Table Click Add Enter the DNS name in the field provided Click OK Continue entering DNS names and clicking OK until you have entered all of the Web sites in your walled garden Click the back arrow button to return to the previous screen Add the IP address of your Web server to the Passthrough IP Table Click Add Enter the Web server s IP address in the field provided Click OK Click the back a...

Page 114: ...Web server For this example the files are copied to c inetpub wwwroot portal 2 Configure the AP to use Internal Authentication following the instructions described in the Internal Authentication section Skip any steps that refer to Portal Page walled garden or Home Page Redirection 3 Click PublicSpace AAA Internal 4 Place a check mark in the Enable Portal Page field 5 Enter the location of the por...

Page 115: ... DNS Table Click Add Enter the DNS name in the field provided Click OK Continue entering DNS names and clicking OK until you have entered all of the Web sites in your walled garden Click the back arrow button to return to the previous screen 9 Add the IP address of your Web server to the Passthrough IP Table Click Add Enter the Web server s IP address in the field provided Click OK Click the back ...

Page 116: ...tab 12 Place a check mark in the Enable Home Page Redirection box 13 Place a check mark in the Enable Parameter Passing box This feature allows the AP 2500 and your Web server to remember a subscriber s Origin Server OS request However note that the AP may truncate the subscriber s request to the site s default Web page See Home Page Redirection HPR for details Your subscribers will be redirected ...

Page 117: ...ingo http www boingo com GRIC http www gric com iPass http www ipass com These companies provide customers with wireless access at hotspots across the country At each specific hotspot the aggregator may own the access infrastructure or they may have an agreement in place with the hotspot operator Refer to the Web sites listed above if you are interested in partnering with a hotspot aggregator This...

Page 118: ...o they match the following settings if necessary Place a check mark in the Enable SSL box and enter the Certificate DNS Name this is optional but recommended to provide subscribers with a secure login If using SSL you must download keys to the AP first See Secure Socket Layer SSL Place a check mark in the Enable Portal Page box and enter the page s location in the Portal Page URL field if you want...

Page 119: ...le shows the AP s internal login screen when both options are enabled User Name New Subscribers System Response Disabled default Enabled default Allows new and existing subscribers access to the network without supplying a User name and password Authentication is based on the MAC address of the subscriber s Wi Fi card This setting works in conjunction with credit card services Enabled Enabled Allo...

Page 120: ... the account is not already in use as displayed in the Current Subscribers Table Note that a subscriber that has turned off his computer or has left the hotspot is removed from the Current Subscriber Table after 10 minutes Credit Card Services A key payment feature of the AP 2500 is direct Credit Card billing New subscribers can enter your hotspot and sign up for service directly from their comput...

Page 121: ...g this specification NOTE You will need to configure any account settings required by your credit card service provider For example if you are using Authorize net s SIM solution you must add the AP s IP address and port number as a Response Receipt URL Configuring Authorize net s SIM Solution 1 Go to http www authorize net and login to your account with your Merchant ID and password 2 Click the Lo...

Page 122: ...ts such as the AP is powered down unexpectedly NOTE Billing records are sent to the carbon copy server only after the records are place in the message queue Carbon copy servers will not receive the records again even if the AP has to retransmit the data to the primary or secondary server Bill Mirroring Server The AP sends the XML strings that contain the billing information to a specified server s...

Page 123: ...hould be a unique value for each AP This field differentiates between APs if you have multiple units installed in the same location that is with the same Property ID 6 Select a Retransmit Method for billing records being sent to the primary A or secondary B servers Alternate This is a round robin method e g try A try B try A try B Do Not Alternate This is the fail over method e g try A twice try B...

Page 124: ...s VSA or be driven by the Internal Web Server in the AP by selecting the Enable Goodbye Page option Using the IWS option means that this functionality is also available for other post paid billing mechanisms Configuring the Goodbye Page Follow these steps to configure a Goodbye page 1 Login to the AP s Web browser interface 2 Click Public Space AAA Goodbye Page Figure 5 15 Goodbye page 3 Configure...

Page 125: ...perlink Hyperlink URL If you enabled Show Hyperlink enter the URL for the link Define the following field label definitions to appear on the Goodbye page Goodbye Page Summary Label Goodbye Page Subscriber IP Label Goodbye Page Authentication Label Goodbye Page Start Label Goodbye Page Stop Label Goodbye Page Bytes Sent Goodbye Page Bytes Received Go To ...

Page 126: ... via a real time RADIUS accounting request message This feature lets you upsell a premium service plan to premium users with no additional costs For example a user may be synchronizing his or her email at an airport when he or she finds that a co worker has sent a 20 Mbyte presentation Since the user only subscribes to the most cost effective plan at 256 Kbits sec it may mean that he she has to mi...

Page 127: ... the Accounting information per user in case of a device reboot RADIUS Messages and RADIUS Attributes The AP 2500 s RADIUS functionality can be broken down into the following categories Authentication Request Authentication Reply Accept Accounting Request Authentication Request Attributes Username Included if enabled Password Service Type NAS Port communication port number NAS Identifier Included ...

Page 128: ... the frequency with which the AP sends a RADIUS Accounting Interim message for the specific subscriber If this attribute is not present or equal to 0 no Interim message is sent Note that the AP will not send Interim messages more frequently than every 2 minutes Nomadix Vendor Specific Attributes The AP 2500 supports the following Vendor Specific Attributes from Nomadix Inc Nomadix Bw Up integer Th...

Page 129: ...ted Acct Stop Acct Session Time time of last sent packet subscriber login time Acct Terminate Cause Stop 1 User Requested 4 Idle Timeout 5 Session Timeout NAS IP NAS Port Type NAS Port Framed IP Acct Delay Time Nomadix Vendor Specific Attributes The AP 2500 supports the following Vendor Specific Attributes from Nomadix Inc Nomadix URL Redirection string Nomadix IP Upsell integer The AP 2500 will a...

Page 130: ...pe 19 Framed IP Address 56 57 58 59 Nomadix IP Upsell 0 Acct Delay Time 0 Accounting Interim Message Thu Aug 29 12 48 54 2002 User Name testflo NAS IP Address 64 209 75 102 NAS Port 0 Acct Status Type Alive Acct Session Id 98000004 Acct Output Octets 10200 Acct Input Octets 276874 Acct Output Packets 93 Acct Input Packets 393 Nomadix Bw Up 256 Nomadix Bw Down 256 Called Station Id 00 20 A6 00 12 3...

Page 131: ...Type 19 Framed IP Address 56 57 58 59 Nomadix URL Redirection http www msn com Nomadix IP Upsell 1 Acct Delay Time 0 Accounting Stop Message Thu Aug 29 12 49 45 2002 User Name testflo NAS IP Address 64 209 75 102 NAS Port 0 Acct Status Type Stop Acct Session Id 98000004 Acct Output Octets 40644 Acct Input Octets 525734 Acct Output Packets 316 Acct Input Packets 679 Nomadix Bw Up 56 Nomadix Bw Down...

Page 132: ...creen A RADIUS service profile must first be configured on the Profile tab and entered in the RADIUS Default Profile field before enabling Radius You can configure RADIUS service profiles on the Configure Public Space AAA Profile screen A service profile defines a certain RADIUS configuration If you are using RADIUS with Internal Authentication see Internal Authentication with RADIUS for additiona...

Page 133: ... the MAC address as the user name and the AP RADIUS Shared Secret as the password If using MAC MAC or MAC Key enter the MAC address in the following format 123456 7890ab 6 digits a dash final 6 digits 7 Place a check mark in the Radius Idle Timeout box to have the AP time out users who are inactive for the specified number of seconds The AP only uses this parameter if the Idle Timeout attribute is...

Page 134: ... mark in the Goodbye URL On box to enable the display of a post session Goodbye page The Goodbye page can be defined as a Radius VSA or through the Internal Web Server 16 If required check the box for AAA RADIUS Terminate End of Day to allow business policies that want to terminate the session at midnight of every day 17 If required check the box for AAA Enable Byte Count Reset on Acct Start to re...

Page 135: ...ver Funk Steel belted RADIUS uses port 1645 d Enter the Shared Secret for the AP and RADIUS server in Primary Auth Secret Key field This is the same Shared Secret that you used when you added the AP as one of the RADIUS server s clients e Repeat the above procedure for the Secondary Server parameters if you have a back up RADIUS server Accounting a Select the Enable radio button for Enable Acct Se...

Page 136: ...types of messages or you can specify a different server for each message type General Syslog Information The Syslog message format is defined in RFC 3164 see http www rfc editor org The AP transmits Syslog messages to the specified server s using the well known UDP Syslog port 514 If Syslog is enabled the AP sends a Syslog heartbeat every 60 seconds and the Syslog heartbeat message contains the AP...

Page 137: ...are enabling this feature If this generates too many messages you can always change the priority level at a later date NOTE The Log Number between 0 and 7 corresponds to an event priority level The AP will send event messages to the Syslog server that correspond to the selected priority and above For example if set to 6 the AP will transmit event messages labeled priority 0 to 6 to the Syslog serv...

Page 138: ...up Time_expired 00 50 04 29 37 56 bytes 98769 User s time has expired USG_AAA 4006 AAA_Interface Removed_by_administrator 00 50 04 29 37 56 User s profile has been deleted by the administrator Message Meaning USG_AAA 4301 Expired_time Expired_time_entry_will_be_reused 00 50 04 29 37 56 bytes 25485 User has been removed due to Session Timeout USG_AAA 4303 update_Timer_Timeout expired_time_entry_reu...

Page 139: ...collect dangling bind structure bindptr data 0x3efdb14 cid 0x000000000000 IP 61 193 248 17 I The AP code attempts to clean up DHCP bindings that have been turned off and a subscriber in the subscriber table appears with the same IP address DHCP icmp_check BAD conflict Req MAC 00 00 0E FE 87 09 In SubTable IP 219 103 171 66 MAC 00 05 02 CB 58 23 This happens if the DHCP lease the AP wants to hand o...

Page 140: ...g suggests that the AP could not get the subscriber associated with a particular DNS redirection request USG_DNS ndxDNSService FromSubscriber Unable to determine if redirection is needed The AP was unable to redirect the DNS request because the packet had the wrong packet info type Message Meaning USG_HRS 3009 HRS_Object _returned_by_HRS_GetRequestMethod The HTTP request method is invalid USG_HRS ...

Page 141: ...rofile has been removed from the Current Subscribers list USG_AAA 4102 AAA_lookup Time_expired 00 00 39 05 53 3A Pending user has been removed from the Current Subscribers list by the cleanup routine USG_AAA 4104 AAA_lookup Memory_updated__State_valid 00 00 21 DB FD D3 A Pending user has been changed to Valid because his MAC address already exists in the internal database of the AP USG_AAA 4106 AA...

Page 142: ...URLFilter 3 Place a check mark in the Enable URL Filtering box 4 Click the Add button above the URL Filtering by DNS Names heading Enter the DNS name to filter in the URL field and click OK Enter www myhotspot com to block access to that specific web address Enter myhotspot com to block access to all sites associated with the specified DNS name 5 Enter a second DNS name to filter if applicable and...

Page 143: ...r delete an entry click the Edit button To delete an entry change the Status to Destroy Only Active and Destroy are valid options within the Status field when using the Web browser interface Information and Control Console ICC The AP 2500 supports an optional Information and Control Console ICC which can be presented to subscribers in the form of a pop up window when new web browsers are opened Th...

Page 144: ...ime This field shares the same space as the Logout button Logout Button This option appears for all customers authenticated by a RADIUS server if using Internal authentication with RADIUS This field shares the same space as the Count down Timer field The appearance of the ICC will vary depending on the subscriber s access method For example if a subscriber has been authenticated by a RADIUS server...

Page 145: ... and RADIUS Messages and RADIUS Attributes for details Figure 5 24 ICC Screen RADIUS Customizing the ICC You can customize the buttons banners and ISP logo button that appear on the ICC Follow these steps 1 Determine the design of the ICC and decide which buttons you want to customize 2 Obtain or design the images that will appear on the ICC You can customize Up to 5 Banners 373 pixels width x 32 ...

Page 146: ...ion of Logout Console option Select the location on the subscriber s screen where the Logout console should appear Upper Left Upper Right Lower Left or Lower Right 11 Configure the ICC on subscriber session close option When set to Redisplay the ICC reappears approximately 5 minutes after a subscriber closes it but only in response to a new URL request from the user For example if a user closes th...

Page 147: ...tton 2 through Button 9 as necessary These buttons correspond to the lower row of buttons in the ICC Enter the Name or Title of the button in the appropriate Name Text field This is the text that will appear in the text bar at the bottom of the ICC when a subscriber rolls over the icon with his her mouse cursor In the Target URL field enter the Web address to which a subscriber will be redirected ...

Page 148: ...r No Support for Windows CE Windows CE devices do not currently support Java and therefore do not currently support the ICC If you have enabled ICC and a subscriber is using a PDA running Windows CE the PDA s browser will lock up while trying to load the ICC Do not enable ICC if you expect your subscribers to be using PDAs to connect to the AP ICC and Cached Pages The ICC appears after successful ...

Page 149: ...rected to the specified server enable both the Misconfigured and Properly Configured options If you want properly configured subscribers to send mail without being redirected enable only the Misconfigured option Misconfigured refers to subscribers whose e mail settings are incompatible with the AP 2500 s Internet settings in other words these e mail settings may work on the subscriber s home or of...

Page 150: ...addresses must appear in a Passthrough table for the related feature to work properly Portal Page server address Credit Card server address External Web Server address if using External authentication The Domain Names or IP addresses for walled garden content The DNS and IP Address tables can hold up to 50 entries each The AAA port option supports only passthrough port Passthrough DNS Table Passth...

Page 151: ... address if applicable and click OK Continue until you have entered all of the IP addresses that you want to passthrough 7 Click the back arrow button to return to the previous screen 8 Reboot the AP If you later want to edit or delete an entry click the Edit button To delete an entry change the Status to Destroy Only Active and Destroy are valid options within the Status field when using the Web ...

Page 152: ...t uplink or downlink speed to 0 this will disable access to the unit over the Ethernet The upper limit for uplink or downlink speed is 100 000 Kbps 100 Mbps This is the maximum speed at which the AP can connect to the Ethernet network In reality the uplink and downlink speeds will depend upon the speed of your hotspot s Internet connection for example T1 or DSL and the speed of the wireless cards ...

Page 153: ...ogin and error messages Messages tab and the Authorized Subscribers database Authorized tab NOTE The Billing and Messages options are used in conjunction with the Internal Web Server You do not need to configure these options if using an External Web Server The Internal Billing Options screen defines the billing plans that you want to offer to your subscribers Figure 5 30 Billing Options Screen ...

Page 154: ... 256 Kbits s upstream private IP address 35 charge Plan C 1 week 1 Mbit s downstream 1 Mbit s upstream public IP address 99 charge Follow these steps to configure the billing plans 1 Login to the AP s Web browser interface 2 Click Subscriber Billing Options 3 Configure the messages that will appear on the login screen where new users select a billing plan as shown in the following example without ...

Page 155: ...de 8 Click OK 9 Click the Plan 0 tab 10 Configure the settings for billing plan 0 Place a check mark in the Assigned box and the Enable Plan box to make the plan active It will appear as an option in the New User screen presented to subscribers Enter a description for this billing option in the Description of Service field 140 characters maximum Define the Upstream Bandwidth to network and Downstr...

Page 156: ...156 Public Space Parameters Figure 5 32 Subscriber Billing Plans Screen 11 Configure the other billing plans that you want to offer You can configure up to six different billing plans 12 Reboot the AP ...

Page 157: ...tween 0 and 5 3 Place a check mark in the Enable Plan box to make the plan active 4 Enter a name for the plan in the Plan Label field 5 Enter a description for this billing option in the Description of Service field 140 characters maximum 6 Set all Rates to 0 00 7 Define the Upstream Bandwidth and Downstream Bandwidth range for this free plan 8 Define the DHCP Pool Private or Public Typically a fr...

Page 158: ...n with the Internal Web Server You do not need to configure these options if using an External Web Server The Subscriber Messages screens let you customize the look and content of the AP s internal login screens that are presented to subscribers Follow these steps to customize the text and images that appear on AP s internal Web pages NOTE See Billing Options for Subscribers for information on how...

Page 159: ...cSpace AAA Internal Default is Please enter your user ID and password New User Name Message Appears on the New User screen when the User Name and New Subscribers options are enabled in PublicSpace AAA Internal Default is Please enter a new user ID and password Contact Message Appears on all internal Web pages Default is Please contact your Network Administrator in case of problems A sample login s...

Page 160: ...ssages as necessary Please select the Billing Mode Bill by Credit Card Choose a User ID optional This text appears on the New User screen if the User Name and New Subscribers options are enabled in PublicSpace AAA Internal Choose a Password ID optional This text appears on the New User screen if the User Name and New Subscribers options are enabled in PublicSpace AAA Internal Retype the Password i...

Page 161: ...st was declined Your request was successful NOTE Some messages only appear when certain features are enabled 14 Click OK 15 Click the Sub Msg 3 tab 16 Edit the subscriber messages as necessary Thank you for your business We are verifying your account Please wait This message appears if RADIUS is enabled The AP displays this page while it wait for an authentication response from the RADIUS server Y...

Page 162: ...th no decimals Your account was not found Please check your User name and Password 23 Click OK 24 Reboot the AP Enabling Cookie Support The AP can store an encrypted login cookie in the subscriber s browser to facilitate future logins When enabled the AP stores a cookie in the subscriber s browser when the customer selects the Remember my username and password option during login The next time the...

Page 163: ...s a partner image the myhotspot logo Figure 5 38 Connecting Screen with Partner Image The second image that appears on the AP s internal web pages is the default logo This logo appears at the top of each login page The following sample page includes the custom myhotspot logo Figure 5 39 Login Screen with Custom Logo ...

Page 164: ...e you may want to try out multiple image sizes before you settle on one particular size 2 Copy the image files to your TFTP server s root directory 3 Login to the AP s Web browser interface 4 Click Commands Download 5 Use the Download command to download the image files to the AP Enter the file name in the File Name field Remember that the name cannot exceed 8 characters not including the extensio...

Page 165: ...e MAC address of user s wireless card User s IP address User s Upstream and Downstream bandwidth settings The monetary amount paid by the customer The monetary amount remaining in the user s account if applicable The user s status should be Active at all times when in the Authorized Subscribers Table Click Edit to view additional information about the subscriber You can also edit certain parameter...

Page 166: ... see XML Interface Specification for details If a user appears in both tables deleting the user from one table will automatically remove the user from the second table Also rebooting the AP will clear the Current Subscribers Table but not the Authorized Subscribers Table The Authorized Subscribers information is retained in non volatile memory Manually Adding a Subscriber Follow these steps to man...

Page 167: ...ally fills in this fields after a successful credit card purchase 12 Configure the optional User Alias fields if desired These are for notes only and do not have an impact on the authentication process 13 Define the Upstream and Downstream Bandwidth limits for the user in Kbps The user s bandwidth is not limited if you leave this blank or set it to 0 14 Click OK to add the subscriber 15 Add additi...

Page 168: ...cking Subscriber Language within the Web browser interface The available options are English Chinese Big 5 French German Japanese Shift_JIS Spanish Other Western iso 8859 1 Chinese big5 Chinese euc cn Chinese euc tw Japanese euc jp Japanese iso 2022 jp Japanese shift jis Korean euc kr Korean iso 2022 kr or Korean ks c 5601 Figure 5 42 Subscriber Language Screen ...

Page 169: ...sage Protocol packets sent and received by the Access Point IP ARP Table Displays the Access Point s IP Address Resolution table Learn Table Displays the list of nodes that the Access Point has learned are on the network Current Subscribers Table Displays the list of current subscribers DAT Sessions Displays the list of current Dynamic Address Translation DAT sessions Interfaces Displays the Acces...

Page 170: ...m Status This area provides system level information including the unit s IP address and contact information See System for information on these settings System Alarms System traps if any appear in this area Each trap identifies a specific severity level Critical Major Minor and Informational See System Alarms Traps for a list of possible alarms To delete an alarm place a check mark in the box to ...

Page 171: ...lays the following information for each Access Point component Serial Number The component s serial number if applicable Component Name ID The AP identifies a system component based on its ID Each component has a unique identifier Variant Several variants may exist of the same component for example a hardware component may have two variants one with more memory than the other Version Specifies the...

Page 172: ...example if you ping the AP from another computer the AP reports the ping requests Echos and replies Echo Reply on this screen as shown in the example below Not all ICMP traffic on the network is counted in the ICMP Internet Control Message Protocol statistics NOTE To update the statistics click the Refresh button Figure 6 3 ICMP Monitoring Screen ...

Page 173: ... with which the AP directly communicates This includes devices that manage the AP ping the AP and or receive traps from the AP The AP does not create an entry for every station it detects on the network An entry times out after five minutes of inactivity that is after five minutes of no communication between the device and the AP NOTE To update the table click the Refresh button Figure 6 4 IP ARP ...

Page 174: ...entries in the Learn Table Click the Refresh button if you want to update the table For this screen Port 1 is Ethernet interface Port 2 is the Slot A interface Ports 3 through 8 are WDS ports for Slot A if applicable Port 9 is the Slot B interface Ports 10 through 15 are WDS ports for Slot B if applicable In the example below the AP has two wireless clients in its Learn Table both clients are asso...

Page 175: ...rispin received an IP address from the AP via DHCP and Edgar is using a static IP address but the AP s DAT functionality accounts for this and the user is unaware that his IP address is misconfigured for the hotspot s network MAC address of user s wireless card State Set to Pending for devices that have associated to the AP wirelessly but are not yet authenticated Set to Valid after a device or us...

Page 176: ...d Users authenticated by the Authorized Subscribers Table whose expiration time expires are reset to State Pending The subscriber s entry times out after a period of inactivity RADIUS authenticated users time out based on the Default Idle Timeout setting the Idle Timeout attribute or the Session Timeout attribute Pending users and users authenticated by the Authorized Subscribers Table whose time ...

Page 177: ...hout rebooting the device check the Delete All Sessions box and click OK Current subscriber connections will be terminated The SubPort identifies the source port that the subscriber is using the NetPort identifies the port that the AP maps with its IP address to send out the subscriber s packet For UDP sessions the SessState is MAPPED meaning the subscriber s port has been mapped to a port on the ...

Page 178: ...178 Monitor Information Interfaces This tab displays statistics for the Ethernet and wireless interfaces The Operational Status can be up down or testing Figure 6 8 Interface Monitoring ...

Page 179: ...s Point referred to as the Initiator Station and the wireless client referred to as the Remote Station Station Name The Access Point s System Name or the client s Windows Networking name MAC Address SNR dB The Signal to Noise ratio for the received signal The displayed value is the running average since the start of the test and is reported in decibels dB Higher numbers correspond to a stronger li...

Page 180: ...t packets will be received at the 11 Mbits sec rate if the devices have a strong link 5 5 Mbps pkts The number of packets received at the 5 5 Mbits sec transmit rate since the start of the Link Test 2 Mbps pkts The number of packets received at the 2 Mbits sec transmit rate since the start of the Link Test 1 Mbps pkts The number of packets received at the 1 Mbits sec transmit rate since the start ...

Page 181: ...Download Use the Download tab to download AP Image Bootloader Configuration and Generic files from a TFTP server to the Access Point NOTE The Download and Upload commands are from the AP s perspective In other words to send files to the AP use the Download command to obtain files from the AP use the Upload command A TFTP server must be running and configured to point to the directory containing th...

Page 182: ...al login pages see Changing the Login Screen Logos NOTE The Generic files support both Download and Upload operations Download Instructions Follow these steps to send new files to the AP 2500 1 Launch your TFTP server application if necessary 2 Copy the file or files you want to send to the AP to the TFTP server s root directory If you are using the SolarWinds TFTP program the root directory is mo...

Page 183: ...ss field 4 Enter the name of the file that you want to send to the TFTP server in the File Name field Be sure to include the appropriate file extension for example you would enter images zip if you want to upload the set of ICC banner images from the AP to the TFTP server 5 Select the appropriate file type from the File Type drop down menu Config or Generic see File Type Overview for details 6 Cli...

Page 184: ...operation Figure 7 3 Reboot Command Screen Reset Use the Reset tab to restore the AP 2500 to factory default conditions The AP 2500 may also be reset from the RESET button located on the side of the unit Since this will reset the Access Point s current IP address a new IP address must be assigned Refer to Recovery Procedures for more information CAUTION Resetting the AP 2500 to its factory default...

Page 185: ...the Access Point s on line help files are downloaded to the default location C Program Files ORiNOCO AP HTML index htm If you want to place these files on a shared drive copy the Help Folder to the new location and then specify the new path in the Help Link box Figure 7 5 Help Link Configuration Screen ...

Page 186: ...rface Does Not Work HTML Help Files Do Not Appear Telnet CLI Does Not Work TFTP Server Does Not Work Client Connection Problems Client Manager Finds No Connection Client PC Card Does Not Work Intermittent Loss of Connection Client Does Not Receive an IP Address Cannot Connect to Internet VLAN Operation Issues Active Ethernet The AP 2500 Unit Does Not Work There Is No Data Link Overload Indications...

Page 187: ...nfiguration but does not change the current AP Image If all else fails The Forced Reload Procedure erases the current AP 2500 Image Once the new image is loaded use the Reset to Factory Default Procedure to set the unit to factory default values and reconfigure the unit AP 2500 supports a Command Line Interface CLI If you are having trouble locating your AP 2500 on the network connect to the unit ...

Page 188: ...P address from a DHCP server confirm that the AP is connected to the network before rebooting it If you do not know the AP s IP address use ScanTool or the CLI to identify its address 3 To find the current IP Address using DHCP check the IP Client Table in the DHCP Server to match the AP s MAC Address to its assigned IP address 4 Once you have the current IP Address use the HTTP or CLI Interface t...

Page 189: ... which the file is to be uploaded 4 Verify that you have the proper file names and directory path Client Connection Problems Client Manager Finds No Connection 1 Make sure you have configured your client software with the proper Network Name s Network Names are typically allocated and maintained by your network administrator Client PC Card Does Not Work 1 Make sure you are using the latest PC Card...

Page 190: ...d resets all values to factory defaults Active Ethernet The AP 2500 Unit Does Not Work 1 Verify that you are using a standard UTP Cat 5 cable including all 8 wires 4 pairs 2 Try to move the same load into a different port on the same AE power injector if it works there is probably a faulty port or bad RJ 45 port connection 3 If possible try to connect the load device into a different AE power inje...

Page 191: ...et to Factory Default Procedure above For this procedure you will first erase the AP Image currently installed on the unit and then use either ScanTool or the Bootloader CLI over the serial port to set the IP address and download a new AP Image Follow these steps 1 While the unit is running press the RESET button Result The AP reboots and the indicators begin to flash CAUTION By completing Step 2 ...

Page 192: ...s within the TFTP server s status screen 12 Click OK when prompted that the device has been updated successfully to return to the Scan List screen 13 Click Cancel to close the ScanTool 14 When the download process is complete reset the AP to factory defaults see Reset to Factory Default Procedure and configure the AP settings or download configuration files to the AP that you saved as a back up pr...

Page 193: ...cess Point IP Address Device name set ipsubmask IP Mask Device name set tftpipaddr TFTP Server IP Address Device name set tftpfilename AP Image File Name including file extension Device name set ipgw Gateway IP Address Device name show ip to confirm your new settings Device name show tftp to confirm your new settings Device name reboot 0 Example Device name set ipaddrtype static Device name set ip...

Page 194: ...l Once the IP Address has been assigned use the HTTP Interface or the CLI to set the AP s other parameters Many web sites offer shareware or commercial terminal programs you can download Use the following procedure to initialize the AP s IP Address 1 Open your terminal emulator and then set the following connection properties Com Port COM1 COM2 etc depending on your computer Baud rate 9600 Data Bi...

Page 195: ... oriTrapWLCNotPresent Wireless Card A and or B not present oriTrapWLCFailure Wireless Card A and or B general failure riTrapWLCRemoval Wireless Card A and or B removal oriTrapWLCIncompatibleFirmware Wireless Card A and or B incompatible firmware detected oriTrapWLCVoltageDiscrepancy Wireless Card A and or B voltage discrepancy detected oriTrapWLCIncompatibleVendor Wireless Card A and or B incompat...

Page 196: ...as been downloaded to device oriTrapImageTooLarge Image downloaded to device is too big oriTrapIncompatibleImage Incompatible image has been downloaded to device coldStart Device has been cold started warmStart Device has been warm started linkUp Device Link is up Ethernet interface is up linkDown Device Link is down Ethernet interface is down subCapacityReached Subscriber capacity reached subscri...

Page 197: ...figured to point to the directory containing the files you want to download to the AP Make sure you have the proper TFTP server IP Address the proper file names and that the TFTP server is connected Make sure the TFTP server is configured to both send and receive with no time out SIM Credit Card Transaction Configuring SIM Credit Card Transactions consists of adding the AP s IP address and port nu...

Page 198: ...l Operation Amber n a not applicable Amber Amber Rebooting Amber n a n a n a Missing or bad AP Image if amber after reboot Red Red n a n a Power On Self Test POST running n a n a Red Red PC Card incompatible on indicated interface n a n a Red Red PC Card failure on indicated interface Green n a Amber Amber Indicated interface in Administrative State n a n a Off Off PC Card not present ...

Page 199: ...dge Notation Conventions Important Terminology Navigation and Special Keys CLI Error Messages Command Line Interface CLI Variations Bootloader CLI CLI Command Types Operational CLI Commands Parameter Control Commands Using Tables User Strings Working with Tables Using Strings Configuring the AP 2500 Unit using CLI commands Configuring Objects that Require Reboot set CLI Command show CLI Command Se...

Page 200: ...ple the System Group is composed of several related parameters Groups can also contain Tables All items for a given Group can be displayed with a show Group CLI Command Image File The Access Point software executed from RAM To update an Access Point you typically download a new Image File This file is often referred to as the AP Image Parameter A fundamental network value that can be displayed and...

Page 201: ... of initial device parameters using the set command show command to view the device s configuration parameters help command to provide additional information on all commands supported by the Bootloader CLI reboot command to reboot the device The parameters supported by the Bootloader CLI for viewing and modifying are System Name IP Address Assignment Type IP Address IP Mask Gateway IP Address TFTP...

Page 202: ...ading rebooting and so on After entering commands and parameters if any press the Enter key to execute the Command Line Operational commands include Question Mark Lists CLI Commands or parameters depending on usage done exit quit Terminates the CLI session download Uses TFTP server to download image config generic or bootloader upgrade files to the AP help Displays general CLI help information or ...

Page 203: ...isplay specific Commands To show all commands that start with specified letters enter one or more letters then with no space between letters and Device Name s CR Returns the following Figure A 4 Result of s CLI command Example 3 Display parameters for set and show Example 3a allows you to see every possible parameter for the set or show commands Notice from example 3a that the list is very long Ex...

Page 204: ...sed on letter sequence This example shows entries for parameters that start with the letter i The more letters you enter the fewer the results returned Notice that there is no space between the letters and the question mark Device Name show ipa CR Returns the following Figure A 6 Result of show ipa CLI command Device Name show iparp CR Returns the following Figure A 7 Result of show iparp CLI comm...

Page 205: ...oad 10 0 0 2 apimage img done exit quit Each command disconnects the CLI Session Device Name done Device Name exit Device Name quit download Downloads the specified file from TFTP server to the Access Point Executing download in combination with the asterisks character will make use of the previously set TFTP parameters Executing download without parameters will display command help and usage info...

Page 206: ...ession To avoid re entering long command statements use the keyboard up arrow and down arrow keys to recall pervious statements from the Command History Buffer When the desired statement reappears press the Enter key to execute or you may edit the statement before executing it Device Name history passwd Changes the CLI Password Device Name passwd oldpassword newpassword newpassword reboot Reboots ...

Page 207: ...rch mgmtipaccesstbl CLI command upload Uploads the specified file from AP 2500 to TFTP Server directory Executing upload with the asterisks character will make use of the previously set stored TFTP parameters Executing upload without parameters will display command help and usage information 1 Syntax to upload a file Device Name upload tftp server address path and filename filetype Example Device ...

Page 208: ...CLI reminds you when rebooting is required for a change to take effect To reboot immediately enter reboot 0 zero at the CLI prompt Example 2 Create a table entry or row Use 0 zero as the index to the table when creating an entry When creating a table row only the mandatory table elements are required comment is usually an optional table element There are other optional table elements which if not ...

Page 209: ...able Device Name set mgmtipaccesstbl 2 status delete Device Name set mgmtipaccesstbl 2 status 2 NOTE You may need to enable a disabled table entry before you can change the entry s elements Also some tables use a different syntax See Working with Tables for details Example 5 Show the Group Parameters In this example you can view all elements of a group or table Syntax Device Name show group name E...

Page 210: ...stbl to create an instance the index is always zero 0 For other tables such as secenckeylentbl you need to specify the index number The order in which the table arguments or objects are entered in not important Parameters that are not required can be omitted in which case they will be assigned the default value as specified in the MIB or product functional specification document Modification The t...

Page 211: ...23 33 11 1 passthroughIPTableStatus 4 Using Strings Since there are several string objects supported by the AP 2500 device a string delimiter is required for the strings to be interpreted correctly by the command line parser For this CLI implementation the single quote or double quote character can be used at the beginning and at the end of the string For example Device Name set sysname Lobby Does...

Page 212: ...ects that require reboot and execute the exit command the following message is displayed Device Name exit CR OR quit CR OR done CR Modifications have been made to parameters that require the device to be rebooted These changes will only take effect after the next reboot set CLI Command Sets modifies the value of given parameter To see a definition and syntax example type only set and then press th...

Page 213: ... HyperTerminal Log into the AP 2500 unit using Telnet 1 Go to the DOS command prompt on your computer 2 Type in telnet IP Address of the unit 3 Enter the Telnet password default is public NOTE Proxim recommends changing your default passwords immediately To perform this operation using CLI commands refer to Change Passwords Set Basic Configuration Parameters using CLI Commands There are a few basi...

Page 214: ...t 255 0 0 0 Device Name set ipgw gateway IP address default 10 0 0 1 Device Name show network CR NOTE The IP Mask of the AP 2500 unit needs to match the IP Mask of your network Set a Network Name for each Wireless Interface 3 wireless card in Slot A 4 wireless card in Slot B Device Name set wif 3 netname Network Name SSID for wireless card in Slot A Device Name set wif 4 netname Network Name SSID ...

Page 215: ...ch Wireless Interface can only support one Key Length so each of the configured keys must have the same length The available key sizes vary based on card type See Encryption for more information For the wireless card in Slot A You can set up to four encryption keys This example describes setting encryption Key 1 on the wireless card in Slot A Device Name set wifsec 3 encrypt enable encryptkey 1 WE...

Page 216: ...assword Device Name set snmprwpasswd new password SNMP read write password Device Name reboot 0 CAUTION Proxim strongly urges you to change the default passwords to restrict access to your network devices to authorized personnel If you lose or forget your password settings you can always perform the Reset to Factory Default Procedure Other Network Settings There are other configuration settings th...

Page 217: ...stribution 3 wireless card in Slot A 4 wireless card in Slot B Device Name set wif 3 or 4 meddendistrib enable disable This feature is only available for 802 11b wireless cards Autochannel Select ACS ACS is enabled by default In order to disable ACS disable the cards in slots A and B and reboot 3 wireless card in Slot A 4 wireless card in Slot B Device Name set wif 3 or 4 autochannel disable Devic...

Page 218: ... 11b wireless cards Set Ethernet Speed and Transmission Mode Device Name set etherspeed value see below Device Name reboot 0 Set Interface Management Services Set Communication Ports Device Name set httpport HTTP port number default is 80 Device Name set telport Telnet port number default is 23 Set Session Timeouts Device Name set tellogintout time in seconds Device Name set telsessiontout time in...

Page 219: ... Device Name set serbaudrate 2400 4800 9600 19200 38400 57600 Device Name set serflowctrl none xon xoff Device Name show serial Figure A 15 Result of show serial CLI Command NOTE To avoid unexpected performance of your AP 2500 leave the setting Flow Control to its default value none unless you are sure what this setting should be Interface bitmask Description 0 disable all interfaces All managemen...

Page 220: ...S and VLAN configuration DHCP Server Parameters DNS Parameters VLAN Parameters Interface Parameters Wireless and Ethernet configuration Wireless 802 11b Parameters including WDS Wireless 802 11a Parameters Ethernet Interface Parameters Management Parameters Control access to the AP 2500 s management interfaces and set the time SNMP Parameters SNMP Table Host Table Parameters Telnet Parameters Seri...

Page 221: ...em Name DisplayString User Defined RW sysname Location DisplayString User Defined RW sysloc Contact Name DisplayString User Defined RW sysctname Contact E mail DisplayString User Defined RW sysctemail Contact Phone DisplayString User Defined max 254 characters RW sysctphone FLASH Backup Interval Integer 0 65535 seconds RW sysflashbckint Flash Update 0 1 RW sysflashupdate System OID DisplayString N...

Page 222: ...PFromPending Name Type Values Access CLI Parameter System Inventory Management Subgroup N A R sysinvmgmt Component Table Subgroup N A R sysinvmgmtcmptbl Component Interface Table Subgroup N A R sysinvmgmtcmpiftbl Name Type Values Access CLI Parameter Network Group N A R network IP Configuration Group N A R ip Note The network and ip parameters display the same information IP Address IpAddress User...

Page 223: ...PoolStartIP DHCP Lease Pool IP Stop IpAddress User Defined RW Reboot dhcpPoolStopIP DHCP Lease Duration Integer 0 65536 RW Reboot dhcpLeaseMinutes DHCP Public Pool Integer false 0 true 1 RW Reboot dhcpPublicPool DHCP IP Upsell Service Integer disable 0 enable 1 RW Reboot dhcpIpUpsell DHCP Default Pool Integer false 0 true 1 RW Reboot dhcpDefaultPool DHCP Pool Status Integer active 1 notInService 2...

Page 224: ...ot dnsDomain Primary DNS Server IpAddress User Defined RW Reboot dnsPrimaryServer Secondary DNS Server IpAddress User Defined RW Reboot dnsSecondaryServer Tertiary DNS Server IpAddress User Defined RW Reboot dnsTertiaryServer Name Type Values Access CLI Parameter VLAN Group N A R vlan Status Integer enable disable default RW vlanstatus Name Type Values Access CLI Parameter VLAN ID Table Table N A ...

Page 225: ...r enable disable default RW closedsys Load Balancing Integer enable default disable RW ldbalance Medium Distribution Integer enable default disable RW meddendistrib MAC Address PhyAddress 12 hex digits R macaddr Supported Data Rates Octet String Reported in 500 Kb sec intervals 2 1 Mbit sec 4 2 Mbit sec default 11 5 5 Mbit sec 22 11 Mbit sec R suppdatarates Transmit Rate Integer32 Reported in 500 ...

Page 226: ...ype Values Access CLI Parameter WDS Table Table N A R wdstbl Port Index Integer 3 1 3 6 Wireless A 4 1 4 6 Wireless B R portindex Status Integer enable 1 disable 2 default RW status Partner MAC Address PhysAddress User Defined RW partnermacaddr ...

Page 227: ...r the FCC and ETSI regulatory domains The following channels are available in Japan 34 5 170 GHz default 38 5 190 GHz 42 5 210 GHz 46 5 230 GHz RW channel RTS CTS Medium Reservation Integer 0 2347 Default is 2347 off RW medres MAC Address PhyAddress 12 hex digits R macaddr Supported Data Rates Octet String See Transmit Rate R suppdatarates Transmit Rate Integer32 Reported in 500 Kb sec intervals 0...

Page 228: ...utoduplex default RW etherspeed MAC Address PhyAddress N A R ethermacaddr Name Type Values Access CLI Parameter IP Access Table Table N A R mgmtipaccesstbl Table Index Integer User Defined N A index IP Address IpAddress User Defined RW ipaddr IP Mask IpAddress User Defined RW ipmask Comment optional DisplayString User Defined RW cmt Status optional Integer enable disable delete RW status Name Type...

Page 229: ...sk Interface Bitmask 0 no interfaces disable 1 Ethernet 4 Wireless A 8 Wireless B 15 all interfaces RW snmpifbitmask Read Password DisplayString User Defined public default max 63 characters W snmprpasswd Read Write Password DisplayString User Defined public default max 63 characters W snmprwpasswd SNMP Trap Host Table N A N A R snmptraphosttbl Name Type Values Access CLI Parameter SNMP Trap Host ...

Page 230: ...0 Using the Command Line Interface Telnet Login Inactivity Time out Integer 1 60 seconds 30 sec default RW tellogintout Telnet Session Idle Time out Integer 1 900 seconds 900 sec default RW telsessiontout ...

Page 231: ...ger 8 R serdatabits Parity Integer none R serparity Stop Bits Integer 1 R serstopbits Flow Control Value none default xon xoff RW serflowctrl Name Type Values Access CLI Parameter HTTP Group N A R http HTTP Management Interface Bitmask Interface Bitmask 0 no interfaces disable 1 Ethernet 4 Wireless A 8 Wireless B 15 all interfaces RW httpifbitmask HTTP Password DisplayString User Defined max 64 ch...

Page 232: ...1 atlantic canada 12 santiago 13 newfoundland 14 brasilia 15 buenos aires 16 mid atlantic 17 azores 18 london 19 western europe 20 eastern europe 21 cairo 22 russia iraq 23 iran 24 arabian 25 afghanistan 26 pakistan 27 india 28 bangladesh 29 burma 30 bangkok 31 australia wt 32 hong kong 33 beijing 34 japan korea 35 australia ct 36 australia et 37 central pacific 38 new zealand 39 tonga 40 western ...

Page 233: ...e RADIUS Default Profile DisplayString Size 0 40 User Defined RW aaaRadiusDefProf AAA RADIUS Profile Caching Integer disable 0 enable 1 RW aaaRadiusCacheOn AAA RADIUS Subscriber Timeout Integer User Defined RW aaaRadiusDefaultIdle Radius Username Type Integer user Input 0 mac mac 1 mac key 2 RW aaaRadiusUsernameType AAA RADIUS NAS ID Enable Integer disable 0 enable 1 RW aaaRadiusNasIdOn AAA RADIUS...

Page 234: ...dAuthSrv1Sec Secondary RADIUS Auth Server IP Address IpAddress User Defined RW radAuthSrv2Ip Secondary RADIUS Auth Server Port Integer User Defined RW radAuthSrv2Port Secondary RADIUS Auth Server Secret Key DisplayString Size 0 130 User Defined RW radAuthSrv2Sec Enable RADIUS Accounting Integer disable 0 enable 1 RW radAcctOn Primary RADIUS Acct Server IP Address IpAddress User Defined RW radAcctS...

Page 235: ...IUS Acct Server DNS Name DisplayString Size 0 240 User Defined RW radAcctSrv1Dns Secondary RADIUS Acct Server DNS Name DisplayString Size 0 240 User Defined RW radAcctSrv2Dns Profile Status Integer active 1 notInService 2 notReady 3 createAndGo 4 createAndWait 5 destroy 6 R profStatus Name Type Values Access CLI Parameter Wireless Interfaces Security Group R wifsec Encryption Status Integer enable...

Page 236: ...HPR Frequency mins Integer User Defined RW hprRedirectionFrequency Name Type Values Access CLI Parameter AAA Group Group N A R AAA AAA Service Integer disable 0 enable 1 RW aaaOn AAA XML Service Integer disable 0 enable 1 RW aaaXmlOn AAA XML Server IP IpAddress User Defined RW aaaXmlSenderIp AAA Passthrough Port Integer disable 0 enable 1 RW aaaPassthroughPortOn AAA Passthrough Port Number Integer...

Page 237: ...sing the Command Line Interface External Authorization Server IP IpAddress User Defined RW aaaExternalIPAddress External Authorization Server URL DisplayString Size 0 238 User Defined RW aaaAuthorizationUrl ...

Page 238: ...er Defined RW aaaCreditCardIp Merchant ID for Credit Card Service DisplayString Size 0 32 User Defined RW aaaMerchantId Smart Client Support Integer disable 0 enable 1 RW aaaSmartClientOn AAA Relogin Integer disable 0 enable 1 RW aaaReloginOn AAA Portal Parameter Passing Integer disable 0 enable 1 RW aaaPortalParameterPassing AAA Portal Post URL DisplayString Size 0 238 User defined RW aaaPortalPo...

Page 239: ...W aaaLogNumber AAA SYSLOG Server IP IpAddress User Defined RW aaaLogServerIp Name Type Values Access CLI Parameter URL Filtering Group N A R urlFiltering URL Filtering On Integer disable 0 enable 1 RW urlFilteringOn Name Type Values Access CLI Parameter URL Filtering IP Table Table N A R urlFilteringIPTable URL Filtering IP Table Index Integer N A R urlFilteringIPTableIndex URL Filtering IP Table ...

Page 240: ...ring DNS Table Index Integer N A R urlFilteringDNSTableIndex URL Filtering DNS Table Name DisplayString Size 0 237 User Defined RW urlFilteringDNSTableAddress URL Filtering DNS Table Status RowStatus active 1 notInService 2 notReady 3 createAndGo 4 createAndWait 5 destroy 6 RW urlFilteringDNSTableStatus ...

Page 241: ... 2 chinese euc cn 3 chinese euc tw 4 chinese gb2312 5 japanese euc jp 6 japanese iso 2022 jp 7 japanese shift jis 8 korean euc kr 9 korean iso 2022 kr 10 korean ks c 5601 11 RW iccCharSetOption ICC Console Option Integer icc 1 logoutConsole 2 RW iccConsoleSelection ICC Console Location Integer upperLeftCorner 1 upperRightCorner 2 lowerLeftCorner 3 lowerRightCorner 4 RW iccConsoleLocation ISP Logo ...

Page 242: ...er Defined RW iccBannerImgName1 ICC Banner 1 Duration Integer User Defined RW iccBannerDuration1 ICC Banner 1 Start Time DisplayString Size 1 16 User Defined RW iccBannerStartTime1 ICC Banner 1 Stop Time DisplayString Size 0 16 User Defined RW iccBannerStopTime1 Name Type Values Access CLI Parameter SMTP Service Group N A R smtp SMTP Redirection Integer disable 0 enable 1 RW smtpRedirect SMTP Serv...

Page 243: ...tInService 2 notReady 3 createAndGo 4 createAndWait 5 destroy 6 RW passthroughIPTableStatus Name Type Values Access CLI Parameter Passthru DNS Table Table N A R passthroughDNSTable Passthru DNS Table Index Integer N A R passthroughDNSTableIndex Passthru DNS Table Name DisplayString Size 0 238 User Defined RW passthroughDNSTableName Passthru DNS Table Status RowStatus active 1 notInService 2 notRea...

Page 244: ...e Week Time Integer User Defined RW aaaBilloptMinTimeUnitWeek Minimum Purchase Month Time Integer User Defined RW aaaBilloptMinTimeUnitMonth Free Access Time Integer User Defined RW aaaBilloptFreeAccessTime Max Free Access Time Integer User Defined RW aaaBilloptMaxSubLifetime Promotion Code 1 DisplayString Size 0 4 User Defined RW aaaPromotionalCode1 Promotion Percentage 1 Integer User Defined RW ...

Page 245: ...Defined RW aaaBillingPlanMonth0 Uplink Bandwidth Integer 0 1500 RW aaaBillingPlanBandwidthUp0 Downlink Bandwidth Integer 0 1500 RW aaaBillingPlanBandwidthDown0 DHCP Pool Integer private 0 public 1 RW aaaBillingPlanDHCPPool0 Billing Rate Time Unit Integer minute 0 hour 1 day 2 week 3 month 4 RW aaaBillingPlanRateShow0 Billing Plan Assigned Integer disable 0 enable 1 RW aaaBillingPlanAssigned0 Billi...

Page 246: ...ne Carbon Copy Server URL One DisplayString Size 1 238 User Defined RW brmServerCCUrlOne Carbon Copy Server Secret Key One DisplayString Size 0 32 User Defined RW brmServerCCSecretOne Carbon Copy Server Port One Integer User Defined RW brmServerCCPortOne Carbon Copy Server IP Two IpAddress User Defined RW brmServerCCIpTwo Carbon Copy Server URL Two DisplayString Size 1 238 User Defined RW brmServe...

Page 247: ...ency Symbol DisplayString Size 0 16 User Defined RW aaaCurrency Decimals in Currency Integer User Defined RW aaaAmountDecimals Image Filename DisplayString Size 0 140 User Defined RW aaaWebImage Background Color DisplayString Size 0 140 User Defined RW aaaWebPageBgcolor Table Background Color DisplayString Size 0 140 User Defined RW aaaWebTabBgcolor Title Font DisplayString Size 0 140 User Defined...

Page 248: ...Defined RW aaaMessageChooseUsername Choose Password Message 1 DisplayString Size 0 218 User Defined RW aaaMessageChoosePasswd1 Choose Password Message 2 DisplayString Size 0 218 User Defined RW aaaMessageChoosePasswd2 Free Internet Message DisplayString Size 0 218 User Defined RW aaaMessageFreeInternet New User Login Message DisplayString Size 0 218 User Defined RW aaaMessageNewUserLogin Existing ...

Page 249: ...rrect Warning Message DisplayString Size 0 218 User Defined RW aaaMessageWarning Already Logged in Message DisplayString Size 0 218 User Defined RW aaaMessageAlreadyLoggedIn CC Confirmation Message DisplayString Size 0 218 User Defined RW aaaMessageCCReceived Double Charged Message DisplayString Size 0 218 User Defined RW aaaMessageDoubleCharged Logged in 802 1x Message DisplayString Size 0 218 Us...

Page 250: ...hSubAmtLeft Optional Notation 1 DisplayString Size 0 16 User Defined RW authSubUser1 Optional Notation 2 DisplayString Size 0 16 User Defined RW authSubUser2 Subscriber Upload Bandwidth Integer User Defined RW authSubBwUp Subscriber Download Bandwidth Integer User Defined RW authSubBwDown Credit Card Confirmation Number DisplayString N A R authSubConfirmation Subscriber Status RowStatus active 1 n...

Page 251: ... A R subExpiration Inactivity Logoff Timer DisplayString N A R subIdleTimeout Subscriber MBytes Sent Integer N A R subBytesSentInMegaByte Subscriber MBytes Received Integer N A R subBytesRecInMegaByte Total MBytes Sent and Received Integer N A R subBytesTotalInMegaByte Subscriber Proxy Status DisplayString N A R subProxy Subscriber Status RowStatus active 1 notInService 2 notReady 3 createAndGo 4 ...

Page 252: ...essionLimitBurstSize Session Time Limit Interval Integer User Defined RW sessionLimitTimeInterval Name Type Values Access CLI Parameter iNAT Group N A R inat Enable iNATt Integer disable 0 enable 1 RW inatOn Enable PPTP Integer disable 0 enable 1 RW pptpOn Enable IPSEC Integer disable 0 enable 1 RW ipsecOn Enable PPTP ID Integer disable 0 enable 1 RW pptpidOn iNAT IP Table Table N A R inatIpTable ...

Page 253: ...imeout Name Type Values Access CLI Parameter Static Port Mapping Table Table N A R systemStaticPortMappingTable Index Integer N A R systemStaticPortMappingIndex SP Mapping MAC DisplayString Size 0 17 N A RW systemStaticPortMappingMAC SP Mapping Internal IP Address IP Address N A RW systemStaticPortMappingInternalIP SP Mapping Internal Port Integer N A RW systemStaticPortMappingInternalPort SP Mapp...

Page 254: ...for the HTTP Web interface staticmp Displays the ICMP Statistics statarptbl Displays the IP ARP Table Statistics statbridgetbl Displays the Learn Table statif Displays information and statistics about the Ethernet and wireless interfaces stat802 11 Displays additional statistics for the wireless interfaces statethernet Displays additional statistics for the Ethernet interface datSessionTable Displ...

Page 255: ...ing purposes only Proxim provides no guarantee that these files will function error free PMS features are not supported by the AP 2500 at this time This specification covers the following topics AP 2500 XML Communication Overview XML Query String Command Format XML Response Form Format AP Command Reference External Authentication Procedure Detailed AP 2500 XML Communication Overview The AP uses XM...

Page 256: ...ery string and that with XML the AP will return data to the system that initiated the command request Upon receive of an XML POST command the AP will parse the query string execute the command specified and return requested data and or error response codes in the format of an XML form as part of an HTTP response data stream An example follows NOTE Refer to the HTTP 1 1 specifications for informati...

Page 257: ...ter a command request will always contain error information The attribute RESULT will be assigned either OK or ERROR If an error did occur two additional tag data pairs will be added as part of the response form ERROR_NUM and ERROR_DESC The error number data will contain an integer number representing the error that occurred The error description data will be a readable text description of the err...

Page 258: ...MAC_ADDR attribute optional Subscriber s MAC address char 12 USER_NAME optional Subscriber s username char 96 PASSWORD optional Subscriber s password char 128 ENCRYPT attribute Either TRUE or FALSE EXPIRY_TIME optional Expiry time UNITS attribute Either SECONDS MINUTES HOURS or DAYS PAYMENT_METHOD optional but recommended Either RADIUS or CREDIT_CARD IP_TYPE optional Either PRIVATE or PUBLIC CONFI...

Page 259: ...r will get an acknowledgement XML message from the AP 2500 OK or ERROR see Standard OK ERROR Response section for DTD definition Update Cache Command The user s status in the Current Subscribers Table will change from Pending to Valid Sample file name UpdateCache htm NOTE It is important to update the cache to enable proper access for the user This XML command has the following DTD ...

Page 260: ...T_BANDWIDTH_UP SUBSCRIBER 1A2B3C4D5E6F SET_BANDWIDTH_UP 128 SET_BANDWIDTH_UP USG Response for the Bandwidth Up Command Standard As a response to this command the web server will get an acknowledgement XML message from the AP 2500 OK or ERROR see Standard OK ERROR Response section for DTD definition Bandwidth Down Command Set the bandwidth down for an authorized user This XML command has the follow...

Page 261: ...his XML command has the following DTD Where COMMAND attribute USER_DELETE USER attribute ID_TYPE either MAC_ADDR or USER_NAME MAC_ADDR Subscriber s MAC address char 12 optional if username is present USER_NAME Subscriber s username char 96 optional if MAC is present Sample command XML xml version 1 0 DOCTYPE USG ndxDeleteUser dtd USG COMMAND USER_DELETE USER ID_TYPE MAC_ADDR 1A2B3C4D5E6F USER USG ...

Page 262: ...ame is present USER_NAME Subscriber s username char 96 optional if MAC is present Sample command XML xml version 1 0 DOCTYPE USG ndxQueryUser dtd USG COMMAND QUERY_USER USER ID_TYPE USER_NAME jsmith USER USG or USG COMMAND QUERY_USER USER ID_TYPE MAC_ADDR 1A2B3C4D5E6F USER USG Response for the User Query Command This is the response sent to User Query command The response is an XML message with th...

Page 263: ...r by administrator DATA_VOLUME data transferred by subscriber in Kbytes ID attribute ID of the AP 2500 char 6 IP attribute IP address of the AP 2500 char 18 Sample Response XML xml version 1 0 DOCTYPE USG ndxQueryUserRsp dtd USG RESULT OK ID ABC1234 IP 192 168 100 102 MAC_ADDR 1A2B3C4D5E6F MAC_ADDR USER_NAME jsmith USER_NAME PASSWORD JSMITH6 PASSWORD EXPIRY_TIME UNITS SECONDS 3600 EXPIRY_TIME PAYM...

Page 264: ...and has the following DTD Where COMMAND USER_AUTHORIZE MAC_ADDR attribute Subscriber s MAC address char 12 Sample command XML xml version 1 0 DOCTYPE USG ndxUserAuth dtd USG COMMAND USER_AUTHORIZE MAC_ADDR 1A2B3C4D5E6F USG Response for the User Authorize Command This is the response sent for User Authorize command The response is an XML message with the following DTD Where STATUS VALID_USER or INV...

Page 265: ...265 XML Interface Specification DOCTYPE USG ndxUserAuthRsp dtd USG RESULT OK ID ABC123 IP 192 168 100 102 STATUS VALID_USER STATUS PAYMENT_METHOD CREDIT_CARD PAYMENT_METHOD USG ...

Page 266: ...od sends the USER_ADD command to the AP with the MAC address captured from step 1 the User Name Password entered by user Expiration Time in seconds Payment Method and Payment payment amount 3 The AP now using the HTTP POST method sends a reply indicating that it has received the command and has executed it The AP adds the new user to the Authorized Subscribers Table NOTE The AP will send the reply...

Page 267: ... any currency 1 input type hidden name FNAME value d n 2 input type hidden name MA value s n 3 input type hidden name IP value lu n 4 input type hidden name servidx value d n 5 input type hidden name OS value s n 6 input type hidden name PAID value s n 7 input type hidden name timeUnit value s n 8 input type hidden name x_Login value s n 9 input type hidden name x_Amount value s n 10 input type hi...

Page 268: ...server to the AP 2500 The following items need to be posted to the silent URL of the AP 2500 1 x_amount websGetVarIgnoreCase wp T x_amount T 0 2 x_trans_id websGetVarIgnoreCase wp T x_trans_id T 0 3 x_response_code websGetVarIgnoreCase wp T x_response_code T 0 4 x_response_reason_text websGetVarIgnoreCase wp T x_response_reason_text T 0 5 UI websGetVarIgnoreCase wp T UI T defaultData 6 servidx ato...

Page 269: ...so lists the Hexadecimal equivalent for each ASCII character ASCII Character Hex Equivalent ASCII Character Hex Equivalent ASCII Character Hex Equivalent ASCII Character Hex Equivalent 21 9 39 Q 51 i 69 22 3A R 52 j 6A 23 3B S 53 k 6B 24 3C T 54 l 6C 25 3D U 55 m 6D 26 3E V 56 n 6E 27 3F W 57 o 6F 28 40 X 58 p 70 29 A 41 Y 59 q 71 2A B 42 Z 5A r 72 2B C 43 5B s 73 2C D 44 5C t 74 2D E 45 5D u 75 2...

Page 270: ...cifications Without Active Ethernet Module Voltage 100 to 240 VAC 50 60 Hz Current 0 2 amp Power Consumption 20 Watts With Active Ethernet Module Input Voltage 42 to 60 VDC Output Current 200mA at 48V Power Consumption 9 10 Watts Environmental Specifications AP 2500 Unit Operating 0 to 40 C 32 to 104 F 20 to 90 relative humidity Transport 40 to 60 C 40 to 140 F 15 to 95 relative humidity no conden...

Page 271: ... Type DB9 male Serial Cable Standard RS 232C serial data cable with a female DB 9 connector at each end Active Ethernet Interface Category 5 foiled twisted pair cables must be used to ensure compliance with FCC Part 15 subpart B Class B requirements Standard 802 3af pin assignments HTTP Interface Microsoft Internet Explorer 5 5 or better preferred or Netscape 6 or higher ...

Page 272: ...lowing table shows the channel allocations that vary from country to country Values listed in bold font indicate default channels and frequencies Table E 2 802 11a Channel Frequencies Channel ID FCC World MHz ETSI MHz France MHz Japan MHz 1 2412 2412 2412 2 2417 2417 2417 3 default most countries 2422 2422 2422 4 2427 2427 2427 5 2432 2432 2432 6 2437 2437 2437 7 2442 2442 2442 8 2447 2447 2447 9 ...

Page 273: ...m In Semi open Office environments workspace is divided by shoulder height hollow wall elements antennas are at desktop level In a Closed Office environment solid walls and other obstructions may affect signal strength The following tables show typical range values for various environments Table E 3 802 11b Wireless communication ranges Table E 4 802 11a Wireless communication ranges Range 11 Mbps...

Page 274: ...ccess Points are connected to e g Active Ethernet power injector hub switch etc Type of Security enabled on the wireless network None WEP Encryption 802 1x Mixed A description of the problem you are experiencing What were you doing when the error occurred What error message did you see Can you reproduce the problem For each ORiNOCO product describe the behavior of the device s LEDs when the proble...

Page 275: ...se is available to all website visitors First time users will be asked to create an account to gain access Telephone Support Contact technical support by phone 24 hours a day seven days a week Domestic 1 866 674 6626 International 408 542 5390 ...

Page 276: ...air partners v by the Product being subjected to unusual physical or electrical stress or vii by failure of Buyer to comply with any of the return procedures specified in this Statement of Warranty Support Procedures Buyer should return defective LAN Products1 within the first 30 days to the merchant from which the Products were purchased Buyer can contact a Proxim Customer Service Center either b...

Page 277: ...arges Other Information Search Knowledgebase Proxim stores all resolved problems in a solution database at the following URL http support proxim com Ask a Question or Open an Issue Submit a question or open an issue to Proxim technical support staff at the following URL http support proxim com cgi bin proxim cfg php enduser ask php Other Adapter Cards Proxim does not support internal mini PCI devi...

Reviews:

No comments

Brands by name

Popular brands

Load more brands