Proxim ORiNOCO AP-8000 User Manual Download Page 34 | Manualshive

Page: 34 / 178

Proxim ORiNOCO AP-8000 User Manual Download Page 34

Basic Configuration for an Enterprise

AP-8000 User Guide

34

If you want to create a new entry, click

Add

in the

Wireless Security Configuration

page. The

Wireless Security Add

Row

page appears.

1. Enter the

Profile Name

.

2.

Authentication Mode

:

•

Authentication Mode: None,

then the AP allows access to stations without authentication. In other words, the

security will be disabled for that VAP.

•

Authentication Mode: WEP

—

Wep Key

: Enter the Wep Key. The Key Length can be 64, 128 or 152 Bits.

• For 64-bit encryption, an encryption key is 10 hexadecimal characters (0-9 and A-F) or 5 Alpha numeric

characters.

• For 128-bit encryption, an encryption key is 26 hexadecimal characters or 13 Alpha numeric characters.
• For 152-bit encryption, an encryption key is 32 hexadecimal characters or 16 ASCII characters.

—

Encryption Type

: Select the Encryption type.

— Select the

Status

.

•

Authentication Mode

:

Psk

—

Encryption Type

: Select Encryption type: WPA-TKIP, WPA2-AES or WPA-WPA2AES-TKIP

—

PSK

: Enter the password. It ranges from 8 to 64 alphanumeric characters

—

Rekeying Interval

: Enter Rekeying Interval. The value ranges from 900 to 65535 seconds.

— Select

Status

.

NOTE:

When you select the encryption type as WPA-TKIP+WPA2-AES, then the AP is considered to be in
Auto-Encryption mode, and the client will support both encryption type.

•

Authentication Mode

:

802.1x

—

Encryption Type

: Select Encryption type: WEP, WPA-TKIP, WPA2-AES and WPA-WPA2AES-TKIP

—

Re-Keying Interval

: Enter Rekeying Interval. The value ranges from 900 to 65535 seconds.

— Select

Status

.

NOTE:

If you select WEP or TKIP, then the device will work on legacy rates not on 11n rates.

3. Select the Entry Status as either

Enable

or

Disable

.

4. When finished configuring all parameters, click

Add

.

5. If you have selected a security profile of 802.1x, then you must configure a RADIUS 802.1x/EAP server.

NOTES:

•

If you have selected a security profile of 802.1x, then you must configure a RADIUS 802.1x/EAP server.

•

Ensure that you assign the newly configured Security profiles to VAP.

«
...
32
33
34
35
36
...
»

Summary of Contents for ORiNOCO AP-8000

Page 1: ...ORiNOCO AP 8000 User Guide ...

Page 2: ...00 extract the source version and explore opensrc directory The GPL Code and LGPL Code used in AP 8000 are distributed WITHOUT ANY WARRANTY and are subject to the copyrights of one or more authors For details see the GPL Code and LGPL Code for AP 8000 and the terms of the GPL and LGPL OpenSSL License Note This product contains software developed by the OpenSSL Project for use in the OpenSSL Toolki...

Page 3: ... LED Indicators 12 Antennas 12 Power Socket 13 Reset 13 Reload 13 Ethernet Port 13 Serial Port 13 Prerequisites 13 System Requirements 15 Product Package 15 Optional Accessories 16 Hardware Installation 16 Attach the Cables 16 Using a Console Port 17 Install the Cable Security Cover Optional 17 Install the Antenna 17 Mount the Unit 17 Power on the Unit 18 Initialization 19 ScanTool 19 Logging in t...

Page 4: ...de 33 Password Management 33 Configuring the Security Profile 33 5 Access Point Features 35 Configuring the Device 36 Wireless 11n Properties 36 Ethernet 38 Security 38 RADIUS 41 QoS 43 IP Configuration 45 VLAN 45 Filtering 47 Managing the Device 50 System Information 50 Upgrading the Firmware 51 Password Management 52 Management Access Control 52 Reset to Factory 52 Monitoring the Device 53 Syste...

Page 5: ...RADIUS 102 7 Using SNMP Interface to Manage the Access 105 Pre requisites 106 Viewing the MIB Objects 106 Configuring the MIB Objects 106 To Configure the Scalar Objects 106 To Configure the Tabular Objects 106 To apply the changes to the flash memory 107 8 Using CLI to Manage the Access Point 108 Introduction 110 Accessing the Command Line Interface 110 Using CLI to Manage the Device 110 General ...

Page 6: ...p Host Table Configuration 140 System Information Configuration 140 System Management Configuration 141 Country Code Configuration 142 Inventory Management 142 Monitoring the Device Using CLI Commands 145 Event Log Configuration 145 SNTP Configuration 145 System Log and System Log Host Configuration 145 View Interface Statistics 146 Wireless Station Statistics Configuration 149 View the ICMP Stati...

Page 7: ...ons 166 Advanced Bridging Functions 167 Medium Access Control MAC Functions 167 Security Features 167 Network Features 168 Hardware Specifications 168 Available Channels 169 D Technical Services and Support 174 Obtaining Technical Service and Support 174 Support Options 174 Proxim eService Web site Support 174 Telephone Support 175 ServPak Support 175 E Statement of Warranty 177 Warranty Coverage ...

Page 8: ...ns information on the following Products Covered in this User Guide About AP 8000 Dual Radio Wireless Access Point Core Features of AP 8000 Multi Band MIMO Radios 802 11n MIMO Security Quality of Service QoS Software Upgrade Compliant to Wireless Standards ...

Page 9: ...ersion 2 0 Core Features of AP 8000 Multi Band MIMO Radios AP 8000 has multi band MIMO radios 802 11a b g n that offers a significant increase in capacity and performance within a given bandwidth and power AP 8000 operates on both 2 4 GHz and 5 GHz radio bands It provides you the flexibility to select a band on which you would like to operate This multi band MIMO radios can be planned independentl...

Page 10: ...lient station and vice versa You can prioritize the traffic according to your network requirements so that flow of traffic is eased out without loosing any information Software Upgrade You can upgrade the firmware easily as and when you want either through Web Interface CLI SNMP and ProximVision Element Management System PVES Compliant to Wireless Standards AP 8000 adheres to the 802 11a 802 11b g...

Page 11: ...eload Ethernet Port Serial Port Prerequisites System Requirements Product Package Optional Accessories Hardware Installation Attach the Cables Using a Console Port Install the Cable Security Cover Optional Install the Antenna Mount the Unit Power on the Unit Initialization ScanTool Logging in to the Web Interface Upgrade the Software Install Software Using TFTP Server ...

Page 12: ...dicators Antennas AP 8000 supports 3x3 MIMO antennas with 3 antennas for each radio This device has been designed to operate with omni directional antennas having the maximum gain of 2 5 dBi These antennas have standard connectors and can be Indicator Name Indicator Symbol Description Power LED The Power LED indicates whether the device is switched on off Ethernet LED The Ethernet LED signals Ethe...

Page 13: ... can be established with PC or laptop Figure 2 2 Rear View of the AP 8000 Prerequisites Before installing your unit you need to gather certain information as tabulated Access Point IP Address If you do not have a DHCP server on your network then you need to assign the Access Point an IP address that is valid on your network Web Interface CLI User Name and Password Each Access Point requires a read...

Page 14: ...Installation and Initialization AP 8000 User Guide 14 Gateway IP Address and Subnet Mask Determine the gateway IP address and subnet mask of the network environment where the Access Point is deployed ...

Page 15: ... Serial Port MIB Browser Ethernet NIC Card Product Package Each AP 8000 shipment includes the items tabulated below Verify that you have received all parts of the shipment NOTE Unless noted in this table cables are not supplied with the unit AP 8000 Product Package Description Images AP 8000 unit with 1 Qty Two radios 802 11a b g n support Ethernet port with PoE support 10 100 1000 CD ROM containi...

Page 16: ... Ethernet interface may show errors Cabling with Power Adapter 1 Plug the barrel of the power cable from the power supply into the power jack 2 Connect one end of an CAT 6 Ethernet cable not supplied to the unit s Ethernet port The other end of the cable should not be connected to another device until installation is complete Cabling with Gigabit Ethernet PoE 1 To power the device using Gigabit Et...

Page 17: ...ging end of the security cover into the hole on the rear panel of the unit to the left of connectors Once in place pivot the cover to bring it close to the rear panel of the unit 3 Use two screws to fasten the security cover on to the rear panel of the unit Install the Antenna The omni directional antennas supplied with the product do not require any professional installation as they have non stan...

Page 18: ...ully slide the unit to the up until the tabs snap securely on to the narrow holes of the unit if the unit is mounted correctly no portion of the mounting plate should protrude from any of the sides of the unit Ceiling Mounting Follow these steps to mount the unit to a ceiling 1 If the unit s power supply is plugged in unplug it 2 Snap the rectangular tabs on the back of the mounting plate onto a c...

Page 19: ...f your network does not contain a DHCP server the Access Point s IP address defaults to 169 254 128 132 and the device starts with a dynamic IP address Set the IP Address of the AP device using ScanTool To set the IP address of the AP device using ScanTool 1 Power up reboot or reset the device 2 Double click the ScanTool icon on the Windows desktop to launch the program if the program is not alrea...

Page 20: ...e AP device you want to configure and click Change in the ScanList screen The Change screen appears Figure 2 4 Change Screen b Set IP Address Type to Static c Enter a static IP Address for the device in IP Address box You must assign the unit a unique address that is valid on your IP subnet Contact your network administrator if you need assistance selecting an IP address for the unit d Enter your ...

Page 21: ...een i After allowing sufficient time for the device to reboot click Rescan in the ScanList screen to verify that your changes have been applied j Click Change to return to the Change screen k Click the Web Configuration button at the bottom of the Change screen Figure 2 6 Change Screen Web Configuration l Proceed to the Logging in to the Web Interface section for information on how to access the H...

Page 22: ...nd return to Internet Explorer 3 Enter the Access Point s IP address in the browser s Address field and press Enter or Go This is either the dynamic IP address assigned by a network DHCP server or the static IP address you manually configured See ScanTool for information on how to determine the unit s IP address and manually configure a new IP address if necessary The Access Point Login screen app...

Page 23: ...Installation and Initialization AP 8000 User Guide 23 Figure 2 8 Home Page ...

Page 24: ... device using HTTP navigate to File Management Update Device HTTP in the AP 8000 home page The HTTP Update screen appears Perform the following steps to download the specific file to the device Figure 2 9 Update Device using HTTP 1 Select the File Type that needs to be updated from the File Type drop down box Choices include Image for the AP Image executable program Config for configuration such a...

Page 25: ... file extension Copy the file to the TFTP server s root folder 3 File Type Select the proper file type Choices include Config Configuration information such as System name contact name and so on Image AP image executable program 4 Operation Select either Update or Update and Reboot If you select None as Operation then no operation will be performed 5 Click Update to initiate the process If the ope...

Page 26: ...eve from Device TFTP in the AP 8000 home page The TFTP Retrieve screen appears The TFTP server must be running and configured to point to the directory to which you want to copy the uploaded file We suggest you to assign the file a meaningful name If you don t have a TFTP server installed on your system install the TFTP server from the installation CD You can either install the TFTP server from th...

Page 27: ...ing the HTTP interface TFTP Server Setup To download or upload a file you must connect to the computer with the TFTP server through the unit s Ethernet port This can be any computer in the network or a computer connected to the unit with a cross over Ethernet cable Ensure that 1 The upload or download directory is correctly set the default directory is C TFTP Root 2 The required image file is pres...

Page 28: ...th the default IP Address 169 254 128 132 unless otherwise it is configured to use a different IP In other words the default IP address type is static If the DHCP server is available then AP will be assigned an IP address automatically You can find the IP address of the device either from the DHCP server or from the ScanTool If the DHCP server is not available then you can use the default IP addre...

Page 29: ...ovides these MIB files on its support site http support proxim com You need to log on to the support site and use Answer ID 2813 to locate the MIB You need to compile one or more of the above MIBs into your SNMP program s database before you can manage an Access Point using SNMP The Enterprise MIB defines the read and read write objects that can be viewed or configured using SNMP These objects cor...

Page 30: ...your wireless network effectively and efficiently ProximVision ES combines industry leading functionality with an intuitive user interface enabling Network Administrators and Help Desk staff to support and control a wireless network ProximVision ES offers you a single intelligent console from which you can manage monitor analyze and even configure your AP 8000 device For more information see Proxi...

Page 31: ...ssed but as an enterprise user you can modify the default settings of the Access Point to provide a secure access for your enterprise This chapter contains information on the following Finding and Assigning the Access Point s IP Address Configuring the System Name and the Country Code Configuring the Wireless Information Configuring the Operational Mode Password Management Configuring the Security...

Page 32: ...ent System Information in the web interface The System Information page appears 2 Enter the following parameters System Name Location Select the Country Code using the drop down box It contains a list of countries in which the AP will be used Setting the country makes the AP automatically compliant with the rules of the regulatory domain in which it is used by configuring the allowed Frequency Ban...

Page 33: ...rd 1 Navigate to Management Services 2 Configure the following parameters HTTP HTTPS Change the password for the Web Interface by entering a new password in the Password box The password should be of minimum 6 and maximum of 32 characters By default the password is public Telnet SSH Change the password for the Command Line Interface via serial or Telnet by entering a new password in the Password b...

Page 34: ...Select Encryption type WPA TKIP WPA2 AES or WPA WPA2AES TKIP PSK Enter the password It ranges from 8 to 64 alphanumeric characters Rekeying Interval Enter Rekeying Interval The value ranges from 900 to 65535 seconds Select Status NOTE When you select the encryption type as WPA TKIP WPA2 AES then the AP is considered to be in Auto Encryption mode and the client will support both encryption type Aut...

Page 35: ...35 AP 8000 User Guide 5 Access Point Features This chapter provides information on the following Configuring the Device Managing the Device Monitoring the Device ...

Page 36: ...cast SSID The SSID is also broadcasted in probe response frames Broadcasting the SSID also depends on the type of network that the AP is running on Auto Rate Auto Rate automatically selects the data transmission rate depending on the traffic condition Retries Indicates the number of times the data packets should to be retransmitted over the wireless network Legacy Rate Indicates the rate at which ...

Page 37: ...from 100 ms to 1000ms TPC The unit transmits the maximum output power for the country or regulatory domain and operational mode selected However with Transmit Power Control TPC you can adjust the output power of the unit to a lower level in order to reduce interference to neighboring devices or to use a higher gain antenna without violating the maximum radiated output power allowed for your regula...

Page 38: ...ncryptions The IEEE 802 11 standards specify an optional encryption feature known as Wired Equivalent Privacy WEP that is designed to provide a wireless LAN with a security level equal to what is found on a Wired Ethernet Network WEP encrypts the data portion of each packet exchanged on an 802 11 network using an Encryption Key also known as a WEP Key When Encryption is enabled two 802 11 devices ...

Page 39: ...authentication status a client PC can always exchange 802 1x messages with the AP the client begins encrypting data after it has been authenticated The AP acts as a pass through device to facilitate communications between the client PC and the RADIUS server The AP 2 and the client 1 exchange 802 1x messages using an EAPOL EAP Over LAN protocol Messages sent from the client station are encapsulated...

Page 40: ... characters The AP also supports a PSK Pass Phrase option to facilitate the creation of the TKIP Pre Shared Key so a user can enter an easy to remember phrase rather than a string of characters 802 11i also known as WPA2 The AP provides security to clients according to the 802 11i standard using 802 1x authentication a CCMP cipher based on AES and re keying 802 11i PSK also known as WPA2 PSK The A...

Page 41: ... the AP allows the administrator to define a profile for RADIUS Servers used by the system or by a VLAN A Network Administrator can configure default RADIUS authentication servers to be used on a system wide basis or in networks with VLANs enabled the administrator can also configure separate authentication servers to be used for MAC authentication 802 1x authentication or RADIUS based accounting ...

Page 42: ...y the server to the client in an Access Accept or Access Challenge Termination Action This Attribute indicates the action taken by the NAS AP when the specified service is completed It is only used in Access Accept packets Called Station Id This attribute indicates the MAC address of the AP wireless interface with which the client gets authenticated Calling Station Id This attribute indicates the ...

Page 43: ...r Type There are four radius profiles available for configurations Primary Authentication Server Secondary Authentication Server Primary Accounting Server and Secondary Accounting Server IP Address The parameter represents the IP address of the Radius servers Server Port This parameter represents the port number which the AP and the server will use to communicate Shared Secret This parameter repre...

Page 44: ...DCA parameters unless strictly necessary QoS EDCA Features Profile Name This parameter is used to displays the name for the Wireless QoS EDCA profile Access Category A label for the common set of EDCA parameters that are used by a QOS STA to contend for the channel in order to transmit MSDUs with certain priorities STA CW Min This parameter is used to configure the minimum value for CW for the wir...

Page 45: ...e Access Point s subnet mask When Address Type is set to Dynamic this field is read only and reports the unit s current subnet mask The subnet mask will default to 255 255 0 0 if the unit cannot obtain one from a DHCP server Gateway IP Address The IP address of the Access Point s gateway When Address Type is set to Dynamic this field is read only and reports the IP address of the unit s gateway Th...

Page 46: ...N conserving bandwidth and maximizing throughput Typical User VLAN Configurations VLANs segment network traffic into workgroups which enable you to limit broadcast and multicast traffic Workgroups enable clients from different VLANs to access different resources using the same network infrastructure Clients using the same physical network are limited to those resources available to their workgroup...

Page 47: ...yer Filtering Static MAC Filtering The Static MAC Address filter optimizes the performance of a wireless and wired network When this feature is properly configured the AP can block traffic between wired devices and wireless devices based on the MAC address For example you can set up a Static MAC filter to prevent wireless clients from communicating with a specific server on the Ethernet network Yo...

Page 48: ...four parameters To prevent the traffic between wired and wireless MAC and Group MAC address pair configure any combination four A maximum of 64 entries can be created in the Static MAC filter table To create an entry click Add and enter the appropriate MAC addresses and Masks to setup a filter The entry is enabled automatically when saved NOTE You can specify the MAC addresses and their Masks and ...

Page 49: ...Wireless MAC Address This parameter represents the MAC address for the filter wireless address Wireless MAC Mask This parameter represents the MAC address for the filter wireless Mask Comment This parameter is used for entering any comments on the Static MAC filter table This is an optional parameter Advanced Filtering Protocol Name This parameter is used to represent the protocol name that is to ...

Page 50: ...ongitude The longitude at which the AP is installed Enter the value in the format required by your Network Management System GPS Latitude The latitude at which the AP is installed Enter the value in the format required by your Network Management System GPS Altitude The altitude at which the AP is installed Enter the value in the format required by your Network Management System Country Code The co...

Page 51: ...al time Image Error Checking during File Transfer The Access Point performs checks to verify that an image downloaded through HTTP or TFTP is valid The following checks are performed on the downloaded image Zero image size Large image size AP image Digital signature verification If any of the above checks fails on the download image the Access Point deletes the download image and retains the old i...

Page 52: ...the SSH access to the device from any host SNMP This parameter allows to enable or disable the SNMP access SNMP Read Password Provides Read access to AP using SNMP interface The default password is public The password should be alphanumeric with minimum of 6 and maximum of 32 characters SNMP Read Write Password Provides Read Write access to AP using SNMP interface The default password is public Th...

Page 53: ...presents the host port for the Sys Log table Host Comment This parameter is used to configure the status of the Syslog host entry table Event Log The Event Log keeps track of events that occur during the operation of the device The Event Log displays messages that may not be captured by System Traps such as the Transmit Power for the Frequency Channel selected Event Log Features Log Priority This ...

Page 54: ...col In Errors The number of inbound packets containing errors and preventing them from being delivered to a higher layer protocol Out Octets bytes The total number of octets transmitted out of the interface including framing characters Out Ucast Packets The total number of packets that higher level protocols requested to transmit to a subnetwork unicast address including those that were discarded ...

Page 55: ...eless networking devices Bridge Statistics display information that is available on the Bridge Bridge Statistics Description Information about the interface For example the name of the manufacturer the product name and the version of the hardware interface Type This displays the type of interface MTU Maximum Transfer Unit is the largest size of IP datagram which may be transferred using a specific...

Page 56: ... Reply messages received In Addr Masks The number of ICMP Address Mask Request messages received In Addr Mask Reps The number of ICMP Address Mask Reply messages received Out Msgs The total number of ICMP messages which this entity attempted to send It includes all those counted by icmpOutErrors Out Errors The number of ICMP messages which this entity did not send due to problems discovered within...

Page 57: ... of time outs for RADIUS Access Request messages since system startup Unknown Types This parameter represents the number of messages with unknown Radius Message Code since system startup Packets Dropped This parameter represents the number of Radius messages which do not contain any EAP payloads or EAP State machine do not have any valid EAP state data since system startup Accounting Statistics Th...

Page 58: ...nterface to Manage the Access Point This chapter contains information on how to configure manage and monitor the Access Points by using Web Interface Web Interface Overview Configuring the Device Managing the Device Monitoring the Device ...

Page 59: ...pane of the Web Interface provides a platform for the users to configure the features of the Access Point The Web Interface contains the following key buttons namely 1 Commit Commit button is used to apply the configuration changes into the device When changes are made to the configuration parameters of the device until the COMMIT button is clicked the changes will not take effect Some parameters ...

Page 60: ...es to take effect It is recommended that the device must be rebooted immediately after modifying a rebootable parameter To reboot click Reboot in the Web Interface The following screen appears Figure 6 4 Reboot Click Ok The following screen appears Figure 6 5 Device Reboots NOTE It is always mandatory to commit the changes before REBOOT otherwise the changes will not take effect 3 Home Allows the ...

Page 61: ...g To access Configuration features 1 Navigate to the left hand side pane of the Web Interface home page and click Configuration The Device Configuration page appears Figure 6 6 Configuration Main Page 2 Navigate and click the link that corresponds to the parameter you want to configure For example click Network to configure the Access Point s TCP IP settings Each Configuration link is described in...

Page 62: ...fault both the Interfaces Interface1 and Interface2 are active If you want you can change the default values for one Interface VAP To configure VAP 1 Navigate to Configuration Wireless Interface 1 VAP The Wireless Interface 1 page appears Figure 6 7 VAP Page NOTE You can configure up to 4 VAP 2 Click the radio button against the VAP Index for which you want to make changes and click Edit 3 The Wir...

Page 63: ...s AP NOTE You can configure up to 4 VAP SSID Enter the SSID name Wireless Network name BSSID BSSID is read only parameter and it displays the MAC address of the device Broadcast SSID Enable the status of Broadcast SSID to broadcast the beacons Auto Rate Either enable or disable the Auto Rate If you disable Auto Rate and click OK three additional parameters appear as shown in the following screen ...

Page 64: ...mentation of the packets occurs If AMPDU is enabled then Fragmentation Threshold will not be configurable Security Profile Name Select Security Profile Name from the drop down box Radius Profile Name Select Radius Profile Name from the drop down box VLAN ID Enter the VAP VLAN ID The value for VLAN ID ranges from 1 to 4094 If you select a value as 1 then this will disable the VLAN Tagging VLAN Prio...

Page 65: ...bove mentioned steps if you want to configure VAP for Interface 2 Properties To configure the properties of the wireless interface 1 Navigate to Configuration Wireless Interface 1 Properties The Wireless Interface 1 Properties page appears Figure 6 10 Wireless Properties Page 2 Configure the following parameters Status Select Status to enable the wireless radio NOTE If the status is disabled the i...

Page 66: ...and the associated clients may experience a delay in rate of beacons transmitted Whereas if you decrease the Beacon Interval value then this will increase the rate of beacons transmitted TPC By default the unit lets you transmit at the maximum output power for the country or regulatory domain and frequency selected The value ranges from 0 to 18 Cell Size Select the Cell Size DTIM Set the DTIM valu...

Page 67: ...which helps to increase the throughput The entire AMSDU frame is considered as one MPDU It supports two values 4K or 4096 8K or 8192 NOTE Currently our devices do not support AMSDU on the transmit side The Access Point can receive only 4K length of AMSDU Frequency Extension Select the frequency extension for the wireless interface Guard Interval Select the Guard Interval The supported values are 4...

Page 68: ...ect the Speed and Transmission Mode for the Ethernet interface from the drop down box 3 Click Ok Security The various Security features supported by AP are described in the following sections Wireless Security RADIUS MAC Access Control Wireless Security To configure Wireless Security parameters 1 Navigate to Configuration Security Wireless Security The Wireless Security Configuration page appears ...

Page 69: ... page appears Figure 6 15 Wireless Security Add Row Page 1 Profile Name Enter the security Profile Name 2 Authentication Mode Select Security Authentication Mode for the wireless interface The Authentication Mode is of three types a None If you select None then the security will be disabled for that VAP b Wep If you select WEP then the following screen appears Figure 6 16 Security Authentication M...

Page 70: ...KIP WPA2 AES or WPA WPA2AES TKIP PSK Enter the password Its value ranges from 8 to 64 characters Rekeying Interval Enter a value for rekeying interval Re key value is the interval at which AP will send Group keys for all associated clients By default the Rekeying Interval value is set to 900 Entry Status Enable the Entry Status by selecting Enable from the drop down box NOTE When you select the en...

Page 71: ...ng Servers in the VLAN configuration NOTE You can configure only single RADIUS profile containing four server profiles viz Primary Authentication Server Secondary Authentication Server Primary Accounting Server and Secondary Accounting Server The profile name is common for all the four entries To configure the Primary RADIUS Server associated with the profile 1 Navigate to Configuration Security R...

Page 72: ...ers 1 Click Configuration Security MAC ACL The MAC Access Control page appears Figure 6 20 MAC Access Control Page 2 Select the Operation Type and click Ok NOTE Based on the Operation type you can allow deny the association of the MAC ACL profile to an SSID 3 To add new entries for authorized wireless stations that can register with the unit and access the network click Add The MAC ACL Add Row pag...

Page 73: ... parameters in each table Access Category It is a read only parameter and indicates the Access Category being defined Background Best Effort Video Voice See the table below Access Category Default EDCA Parameters for Station Default EDCA Parameters for AP CW Min CWmax AIFS Tx OP unsigned integer CW Min CWmax AIFS Tx OP unsigned integer Background 15 1023 7 0 15 1023 7 0 Best Effort 15 1023 3 0 15 ...

Page 74: ...he upper limit placed on the value of TxOP a wireless entity can obtain for a particular access category Configurable range for Station is from 0 to 8160 Configurable range for AP is from 0 to 8160 ACM The Admission Control Mandatory ACM defines if an Access Point accepts or rejects a request traffic stream with certain QoS specifications based on available channel capacity and link conditions ACM...

Page 75: ...Mapping Table page appears Figure 6 24 802 1D to 802 1p Mapping Table Page 2 Enter the 802 1p Priority from 0 7 for 801 1D Priorities 0 7 3 Click OK QoS Profile To configure QoS Profile 1 Navigate to Configuration QoS QoS Profile The QoS Profile page appears Figure 6 25 QoS Profile Page 2 Configure the following parameters QoS Profile Name Enter the QoS Profile Name Policy Name Enter the Policy Na...

Page 76: ... 2 traffic type Outbound Layer 2 Outbound traffic direction Layer 2 traffic type Inbound Layer 3 Inbound traffic direction Layer 3 traffic type Outbound Layer 3 Outbound traffic direction Layer 3 traffic type Priority Mapping Enter the Priority Mapping For layer 2 policies an index from the 802 1D to 802 1p mapping table should be specified For layer 3 policies an index from the 802 1D to IP DSCP ...

Page 77: ... 3 Click Ok NOTE You must reboot AP to affect the change in IP Address configuration VLAN VLANs segment network traffic into workgroups which enable you to limit broadcast and multicast traffic Workgroups enable clients from different VLANs to access different resources using the same network infrastructure Clients using the same physical network are limited to those resources available to their w...

Page 78: ... update reflect the changes If you do not click Commit then the device will not be able to tag the incoming wireless packets Once you commit Reboot the AP device When VLAN is enabled ensure that all devices in the network share the same VLAN ID as this will ensure that all the Access Points are managed easily In the case of Radius server authentication or EAP authentication if the radius server is...

Page 79: ...filtering configuration can be applied Intra BSS Filtering Select the Intra BSS Filtering from the drop down box The Intra BSS Filtering parameter controls wireless to wireless communication If set to Enable then there will be no wireless to wireless communication If set to Disable then wireless to wireless communication is possible 3 Click OK Protocol Filter To configure Protocol Filtering parame...

Page 80: ...r Status is Block then the packets will be blocked 4 Click Ok 5 In the Filtering table if the Entry Status of a particular entry is Disable or non existing then it will depend on the Filtering Type that is selected 6 Configure the Protocol Filter table This table is pre populated with existing Protocol Filters however you may enter additional filters by specifying the appropriate parameters To add...

Page 81: ...is as follows Wired Interface 00 40 F4 1C DB 6A Wireless Client 1 00 02 2D 51 94 E4 Wireless Client 2 00 02 2D 51 32 12 Wireless Client 3 00 20 A6 12 4E 38 Prevent Two Specific Devices from Communicating Configure the following settings to prevent the Wired Interface and Wireless Client 1 from communicating Wired MAC Address 00 40 F4 1C DB 6A Wired Mask FF FF FF FF FF FF Wireless MAC Address 00 02...

Page 82: ...communicating with Wired Interface 1 Wired MAC Address 00 40 F4 1C DB 6A Wired Mask FF FF FF FF FF FF Wireless MAC Address 00 00 00 00 00 00 Wireless Mask 00 00 00 00 00 00 Result The Access Point blocks all traffic between Wired Interface 1 and all wireless clients Prevent a Wireless Device from Communicating with the Wired Network Configure the following settings to prevent Wireless Client 3 fro...

Page 83: ...ction the Ethernet to wireless direction or in both directions 3 To edit any protocol entry click Edit The Advance Filtering Edit Entries page appears Figure 6 35 Advanced Filtering Edit Entries 4 Update the Direction and Status parameters for each protocol and click Ok TCP UDP Port Filter To configure TCP UDP Port Filter 1 Navigate to Configuration Filtering TCP UDP Port Filter The TCP UDP Port F...

Page 84: ...DP Port Filter Table Add Entries 4 Enter the Protocol Name to filter 5 Set the destination Port Number a value between 0 and 65535 to filter See the IANA Web site at http www iana org assignments port numbers for a list of assigned port numbers and their descriptions 6 Set the Port Type for the protocol TCP UDP or both TCP UDP 7 Set the Filter Interface to filter Only Ethernet Only Wireless All In...

Page 85: ...ntrol Reset to Factory To access Management features Navigate to the left hand side pane of the Web Interface home page and click Management The Device Management page appears Figure 6 38 Device Management Page Navigate and click the link that corresponds to the parameter that you want to configure For example click System to configure the system specific information Each Management link is descri...

Page 86: ...on of the system that is Access Point s name serial number current image software version and current bootloader software version System Name This parameter provides the system name that is assigned By default this displays the complete domain name Email Enter the email address of the person responsible for the AP Phone Number Enter the contact number of the person responsible for the AP Location ...

Page 87: ...ardware firmware and software version To view System Inventory Management information navigate to Management System Inventory Management The System Inventory Management Table appears Figure 6 40 System Inventory Management Page Upgrading the Firmware The various File Management features supported by AP are described in the following sections Update Device Using HTTP Update Device Using TFTP Retrie...

Page 88: ...time Update Device Using TFTP To update AP device using TFTP a TFTP server must be running and configured to point to the directory containing the file If you do not have a TFTP server installed on your system install the TFTP server from the installation CD You can either install the TFTP server from the CD Wizard or run OEM TFTP Server exe found in the CD s Xtras SolarWinds sub directory To upda...

Page 89: ...reboot the AP after downloading the files NOTE If you select None as Operation then no operation will be performed Click Update to initiate the process Retrieve From Device Using HTTP To retrieve files from the AP device using HTTP 1 Navigate to Management File Management Retrieve from Device HTTP The HTTP Retrieve page appears Figure 6 43 Retrieve File using HTTP 2 In the HTTP Retrieve page provi...

Page 90: ...xe found in the CD s Xtras SolarWinds sub directory To retrieve from AP device using TFTP 1 Navigate to Management File Management Retrieve from Device TFTP The TFTP Retrieve page appears Figure 6 46 Retrieve From Device Using TFTP 2 In the TFTP Retrieve page provide the following details Server IP Address Enter the TFTP server IP Address Double click the TFTP server icon on your desktop and locat...

Page 91: ... any host SSH Either enable or disable the SSH access to the device from any host c SNMP Read Password Enter a password for Read access to AP using SNMP interface The default password is public The password should be alphanumeric with minimum of 6 and maximum of 32 characters Read Write Password Enter a password for Read Write access to the AP using SNMP interface The default password is public Th...

Page 92: ...Access Table Add Row page appears Figure 6 49 Management Access Control Add Row Page 4 Enter the IP Address of the device 5 Select the Entry Status 6 Click Add 7 Click REBOOT to apply the changes to the AP device Reset to Factory Resetting the AP to its factory defaults will remove the configuration file and reboots the AP device automatically To Reset the Factory defaults 1 Navigate to Management...

Page 93: ...idge Network Layer RADIUS To access Monitor features Navigate to the left hand side pane of the Web Interface home page and click Monitor The Device Monitor page appears Figure 6 51 Monitor Page Navigate and click the link that corresponds to the parameter you want to configure For example click System Log to configure System Log settings Each Monitor link is described in the remainder of this cha...

Page 94: ...the drop down box Select Enable to enable the System Log status and Disable to disable the System Log status Log Priority Select the Log Priority from the drop down box The AP will send event messages to the System Log server that correspond to the selected priority 3 Click Show System Log to display the System Logs for a selected Log Priority Figure 6 53 System Log Information 4 Click Ok to hide ...

Page 95: ...d button to add new entries The System Log Host Table Add Row page appears Figure 6 55 System Log Host Table Add Row Page In the System Log Host Table Add Row page do the following IP Address Enter the IP Address for the management host Host Port Enter the host port number for system logging Comment Enter any comments Click Add This will add new entries to the System Log Host Table Event Log To co...

Page 96: ...rity Select Log Priority from the drop down box Click Show Event Log to display the Event Logs for a selected Log Priority Figure 6 57 Event Log Details 3 Click Ok to hide the display of Event Logs NOTE Select Clear Event Log if you want to clear the event log table SNTP To configure SNTP features 1 Navigate to Monitor SNTP The SNTP page appears ...

Page 97: ...of the secondary SNTP server Time Zone If SNTP is enabled select the appropriate time zone from the drop down box Day Light Saving Time When SNTP is enabled select the Day Light Saving Time from the drop down box 3 Click Ok NOTE If SNTP Status is disabled the user cannot configure the SNTP parameters The following message is displayed while trying to configure SNTP parameters with SNTP status disa...

Page 98: ...e Ethernet Statistics Wireless Station Statistics To view Station Statistics 1 Navigate to Monitor Interface Statistics Wireless Station Statistics This Station Statistics page appears Figure 6 61 Station Statistics Page Click Disassociate to disassociate a particular client from the AP Click Refresh to view the latest information For more information on Station Statistics see Station Statistics ...

Page 99: ...Interface 1 Statistics page appears Figure 6 62 Wireless Interface Page 2 Select the Interface for which you want to view the statistics and click Show The Statistics page appears Figure 6 63 Wireless Statistics Click Refresh to view the latest information For more information on the Wireless Interface see Wireless Statistics NOTE Follow the above mentioned steps to view Interface 2 statistics ...

Page 100: ...Statistics page appears Figure 6 64 Bridge Statistics Click Refresh to view the latest information For more information on the Bridge Statistics see Bridge Statistics Learn Table Learn Table provides information on Network Bridging The Learn Table contains the MAC address of each node that the device learns detects on the network There can be up to 10 000 entries in the Learn Table To view Network...

Page 101: ...rotocol ARP statistics 1 Navigate to Monitor Network Layer IP ARP The IP ARP page appears Figure 6 66 IP ARP Statistics Page ICMP Statistics ICMP Statistics provides information for both received and transmitted messages that are directed to the AP Not all ICMP traffic on the network is counted in the ICMP Internet Control Message Protocol statistics To view ICMP statistics 1 Navigate to Monitor N...

Page 102: ...lowing sections Authentication Statistics Accounting Statistics Authentication Statistics Authentication Statistics provides information on RADIUS Authentication for both the Primary and backup servers for each RADIUS server profile To view Authentication Statistics 1 Navigate to Monitor Radius Authentication Statistics The Radius Client Authentication Statistics page appears ...

Page 103: ...unting Statistics Account Statistics provides information on RADIUS Accounting for both the Primary and backup servers for each RADIUS server profile To view Accounting Statistics 1 Navigate to Monitor Radius Accounting Statistics The Radius Client Accounting Statistics page appears Figure 6 69 RADIUS Client Accounting Statistics Page Click Refresh to view the latest information For more informati...

Page 104: ...Point AP 8000 User Guide 104 NOTE When you try to configure a non configurable parameter the following error occurs This error message alerts the user to verify the configurable data and reconfigure Figure 6 70 Error in Configuring Parameters ...

Page 105: ...e to Manage the Access This chapter provides information on the following Pre requisites Viewing the MIB Objects Configuring the MIB Objects To Configure the Scalar Objects To Configure the Tabular Objects To apply the changes to the flash memory ...

Page 106: ...s If you want to browse the MIB then Proxim recommends to use NuDesign Configure the version of SNMP as V2c Configure the Port Number By default the port number is set to 161 Configure the Read Community Password By default the password is public Configure the Read Write Community Password By default the password is public NOTE To receive traps MgmtSnmpTrapHostTablePassword should be same as MgmtS...

Page 107: ... window to add a row for a table enter 0 and this will automatically create a row for a particular table 5 Add the required parameters and configure those parameters 6 Click Execute and proceed to SysMgmtCfgCommit table to Commit the changes To apply the changes to the flash memory 1 Navigate to deviceMgmt SysMgmtCfgCommit right click and click Set 2 Set the value as 1 and click OK 3 Click Execute...

Page 108: ...e Privileged Mode Accessing the CLI of an Access Point Log on to AP using HyperTerminal Log on to the AP using Telnet SSH Configuring the Device Using CLI Commands User Name and Password Command Show Command Tree Structure Commit Reboot Device Configuration Wireless Configuration QoS Configuration MAC ACL Configuration Security Configuration Filtering Configuration Ethernet Configuration VLAN Conf...

Page 109: ...ng the Device Using CLI Commands Event Log Configuration SNTP Configuration System Log and System Log Host Configuration View Interface Statistics Wireless Station Statistics Configuration View the ICMP Statistics View IP ARP Statistics View Radius Client Authentication Statistics View Radius Client Access Statistics ...

Page 110: ...over the Internet or using an Ethernet cable that is connected directly to your computer s Ethernet port Using CLI to Manage the Device The CLI is a primary interface that allows you to configure manage and monitor the device You can directly execute the CLI commands to manage the device The CLI commands may be entered in real time through a keyboard or submitted with CLI scripts The CLI can be ac...

Page 111: ...reate a Table Entry To create a table a Table Index and Entry Status Row Status are required Example config mgmt access ctrl access tbl index 0 entry status 4 config mgmt access ctrl access tbl index 0 ipaddress 10 0 0 100 config mgmt access ctrl access tbl index 0 entry status 4 Ctrl F Moves forward along the command line Ctrl A Moves to the beginning of the command line Ctrl E Moves to the end o...

Page 112: ...when you type the Question Mark at the command prompt When you enter a particular character followed by then the command prompt will display all the related commands or arguments that match the character that you have typed Example System Name Possible completions disable Turn off privileged commands enable Turn on privileged commands exit Exit from EXEC show Show Command Line Completion When you ...

Page 113: ...he user has to type question mark System Name Possible completions disable Turn off privileged commands enable Turn on privileged commands exit Exit from EXEC show Show To use the privileged mode you need to type enable command from the User mode System Name enable Privileged Mode In this mode you can view all the configured parameters of the device This mode is identified by a pound sign at the c...

Page 114: ...e Send line ends with line feeds option 3 Enter the CLI password By default the username is admin and password is public Log on to the AP using Telnet SSH To configure manage and monitor the AP using Telnet SSH do the following 1 Confirm that your computer s IP address is in the same IP subnet as the AP NOTE If you have not previously configured the Access Point s IP address and do not have a DHCP...

Page 115: ...privileged commands exit Exit from EXEC show Show System Name enable System Name Possible completions configure Enter configuration mode disable Turn off privileged commands enable Turn on privileged commands exit Exit from EXEC show Show System Name NOTE The username and password are case sensitive If you enter wrong Password then a message is displayed stating that the password is incorrect When...

Page 116: ...cture for Device Monitor show monitor event log icmp statistics interface statistics ip arp statistics sntp syslog radius radius accounting stats radius authentication stats wireless station statistics Commit To apply the changes done you have to commit those changes before exiting from the configure mode To do this use the following commands before doing an exit from configure mode Value for comm...

Page 117: ...g dev config if wireless properties tbl radio 1 cellsize large config dev config if wireless properties tbl radio 1 current channel bandwidth 40 changes in current channel bandwidth reboot requires config dev config if wireless properties tbl radio 1 current operating channel 36 config dev config if wireless properties tbl radio 1 dtim 1 config dev config if wireless properties tbl radio 1 operati...

Page 118: ...v config if wireless properties 11n tble config dev config if wireless 11n radio 1 ampdu max frame size 65535 config dev config if wireless 11n radio 1 ampdu max numberframes 64 config dev config if wireless 11n radio 1 ampdu status enable config dev config if wireless 11n radio 1 amsdu status 1 config dev config if wireless 11n radio 1 frequency extension upperExtensionChannel config dev config i...

Page 119: ...f wireless vap tbl index 1 second index 1 qos profile name Default config dev config if wireless vap tbl index 1 second index 1 auto rate selection disable config dev config if wireless vap tbl index 1 second index 1 mac acl status enable config dev config if wireless vap tbl index 1 second index 1 current ht rate 27 config dev config if wireless vap tbl index 1 second index 1 current legacy rate ...

Page 120: ... 18 24 36 48 72 96 108 current HT rate 270 supported HT rate 27 54 81 108 162 216 243 270 324 432 486 540 600 multicast legacy rate 18 supported multicast legacy rate 12 18 24 36 48 72 96 108 auto rateselection enable retry count 3 index 1 3 vaptype ap vapssid My Wireless Network 1_3 vapbssid broadcast ssid enable fragmentation threshold 2346 vlan id 1 vlan priority 0 qos profile name Default maca...

Page 121: ...sid 00 21 86 51 e4 d3 broadcast ssid enable fragmentation threshold 2346 vlan id 1 vlan priority 0 qos profile name Default macacl status disable radius macacl status disable radius accounting status disable status enable security profile index 1 radius profile index 1 current legacy rate 108 supported legacy rate 2 4 11 22 12 18 24 36 48 72 96 108 current HT rate 270 supported HT rate 27 54 81 10...

Page 122: ... legacy rate 108 supported legacy rate 2 4 11 22 12 18 24 36 48 72 96 108 current HT rate 270 supported HT rate 27 54 81 108 162 216 243 270 324 432 486 540 600 multicast legacy rate 18 supported multicast legacy rate 2 4 11 22 12 18 24 36 48 72 96 108 auto rateselection enable retry count 3 index 2 4 vaptype ap vapssid My Wireless Network 2_4 vapbssid broadcast ssid enable fragmentation threshold...

Page 123: ...FIGURATION L2 L3 QoS Dot1d to Dot1p Mapping Table index 1 dot1d priority 0 dot1p priority 0 index 1 dot1d priority 1 dot1p priority 1 index 1 dot1d priority 2 dot1p priority 2 index 1 dot1d priority 3 dot1p priority 3 index 1 dot1d priority 4 dot1p priority 4 index 1 dot1d priority 5 dot1p priority 5 index 1 dot1d priority 6 dot1p priority 6 index 1 dot1d priority 7 dot1p priority 7 IP DSCP Config...

Page 124: ...p upper limit 39 index 1 ipdscp 5 dscp lower limit 40 dscp upper limit 47 index 1 ipdscp 6 dscp lower limit 48 dscp upper limit 55 index 1 ipdscp 7 dscp lower limit 56 dscp upper limit 63 EDCA Configuration To configure the client STA and AP Enhanced Distributed Channel Access EDCA parameters use the following commands config dev configure config dev config qos config dev config qos edca table con...

Page 125: ...os edca tbl index 1 secondary index 1 sta acm disable Show Command System Name show configure qos wireless qos edca RUNNING CONFIGURATION QoS EDCA Table index 1 1 profile name default sta cwmin 123 sta cwmax 123 sta aifsn 7 sta txop 0 0000 sta acm disable ap cwmin 4 ap cwmax 234 ap aifsn 7 aptxop 0 0000 ap acm enable index 1 2 profile name Default sta cwmin 15 sta cwmax 1023 sta aifsn 3 sta txop 0...

Page 126: ...me default policy name Default edca profile name default nack status disable QoS Policy Configuration To configure Policy table parameters in QoS do the following config dev config qos config dev config qos policy table config dev config qos policy tbl index 1 secondary index 1 entry status active config dev config qos policy tbl index 1 secondary index 1 marking status enable config dev config qo...

Page 127: ...ex 1 status active config dev config security mac profile tbl index 1 operation type allow Show command System Name show configure security mac acl profiletable RUNNING CONFIGURATION MAC ACL Profile Table index 1 name Default operation type allow status active Address Configuration To create a Address table in MAC ACL use the following commands config dev configure config dev config security confi...

Page 128: ...bl index 1 second index 2 port 1812 config dev config security rad tbl index 1 second index 2 shared secret public config dev config security rad tbl index 1 second index 2 status 1 Show command System Name show configure security radius server profiletable RUNNING CONFIGURATION Radius Server Profile Table index 1 1 profile type primaryAuthticationServer ipaddress 192 168 9 2 port 1812 sharedsecre...

Page 129: ...status 4 System Name config dev config security config tbl index 0 authentication mode wep System Name config dev config security config tbl index 0 encryption type wep System Name config dev config security config tbl index 0 profile name WEP System Name config dev config security config tbl index 0 wepkey hello System Name config dev config security config tbl index 0 wepkeylength wep64 System N...

Page 130: ...ive Filtering Configuration Advanced Filtering Configuration To configure Advanced Filtering parameters use the following commands configure config dev configure System Name config dev config filtering System Name config dev config filter advanced tbl config dev config filter advanced index 1 direction both config dev config filter advanced index 1 row status 2 Show command System Name show config...

Page 131: ...Filter Control Configuration filtering global filter flag enable Intra BSS configuration To enable Intra BSS Filtering use the following commands System Name config dev config filter intra bss Identifier enable 1 disable 2 required System Name config dev config filter intra bss enable System Name show configure filtering intra bss RUNNING CONFIGURATION Filter Intra BSS Configuration filtering intr...

Page 132: ...tocol Filtering Configuration protocol filter filter type passthru System Name show configure filtering protocol filter filter control RUNNING CONFIGURATION Protocol Filtering Configuration filtering filter control disable System Name show configure filtering protocol filter table RUNNING CONFIGURATION Protocol Filter Table index 1 protocol name Apollo Domain protocol number 80 19 filter status bl...

Page 133: ...status block row status notInService index 10 protocol name DEC MOP Rem Cons protocol number 60 02 filter status block row status notInService index 11 protocol name DEC NetBIOS protocol number 80 40 filter status block row status notInService index 12 protocol name HP Probe Control protocol number 80 05 filter status block row status notInService index 13 protocol name IBM SNA Services protocol n...

Page 134: ...s config dev configure config dev config filtering config dev config filter static table config dev config filter static mac index 1 Possible completions Enter Execute this command filter comment Static Mac Address Comment row status Filter Table Row Status wired mac address Wired Mac Address Filter wired mac mask Wired Mac Mask wireless mac address Wireless Mac Address wireless mac mask Wireless ...

Page 135: ... enable config dev config filter tcpudp tcpudp table config dev config filter tcpudp tbl Possible completions Exit Exit from configure mode index Tcp Udp Port Filter Table Index config dev config filter tcpudp tbl index 0 Possible completions Enter Execute this command interface Tcp Udp Port Filter Interface port number Tcp Udp Port Filter Table Port Number port type Tcp Udp Port Filter Table Port...

Page 136: ...rface allInterfaces row status notInService index 3 protocol name NetBios Session Service port number 139 port type both interface allInterfaces row status notInService index 4 protocol name SNMP service port number 161 port type both interface allInterfaces row status notInService index 5 protocol name IPSEC ISAKMP port number 500 port type both interface allInterfaces row status notInService ind...

Page 137: ...it Supported Tx Mode fullDuplex Tx Mode and Speed auto VLAN Configuration To configure VLAN parameters use the following commands configure config dev configure config dev config vlan config dev config vlan status enable config dev config vlan vlan id 1 Show command System Name show configure vlan RUNNING CONFIGURATION VLAN Configuration vlan status enable vlan id 1 Network Configuration To config...

Page 138: ... config net index 1 address type static Changes in IP Configuration requires Reboot Show command System Name show configure network RUNNING CONFIGURATION Network Configuration network ipaddress 169 254 128 133 mask 255 255 255 0 gateway 169 254 128 133 address type static ...

Page 139: ...rl access tbl index 0 ipaddress 10 0 0 100 System Name config mgmt access ctrl access tbl index 0 entry status 4 Show command System Name show management access control RUNNING CONFIGURATION Access Control Configuration accesscontrol http access control enable httpsaccesscontrol enable snmp access control enable telnet access control enable ssh access control enable mgmt access status disable Mana...

Page 140: ...nfigure config dev management config mgmt snmp config mgmt snmp read write password public config mgmt snmp read password 123456 config mgmt snmp trap host table config mgmt snmp trap tble index 1 ipaddress 192 168 1 1 Show command System Name show management snmp trap host table RUNNING CONFIGURATION SNMP Trap Host Table index 1 ip address 192 168 1 1 password System Information Configuration To ...

Page 141: ... information RUNNING CONFIGURATION System Information Configuration system description System Description country code BE OID 1 3 6 1 4 1 841 uptime 0 02 09 24 39 name System Name contact mail name Organization com phone number Contact Phone Number location name System Location gps longitude 121 8893 gps latitude 37 3321 gps altitude 10 productdescr ORiNOCO AP 8000 WD v1 0 0 SN 08UT41110039 v2 0 0...

Page 142: ...ormation System Information config mgmt sys country code BE Show command System Name show management system information RUNNING CONFIGURATION System Information Configuration system description System Description country code BE OID 1 3 6 1 4 1 841 uptime 0 02 09 24 39 name System Name contact mail name Organization com phone number Contact Phone Number location name System Location gps longitude ...

Page 143: ...P Software Image component id 2100 component variant 1 release version 1 major version 0 minor version 2 index 4 serial number 08IN39111235 name Hardware Inventory component id 2000 component variant 1 release version 1 major version 0 minor version 0 index 5 serial number NA name BSP Bootloader component id 2102 component variant 1 release version 0 major version 0 minor version 0 index 6 serial ...

Page 144: ...e the Access Point AP 8000 User Guide 144 release version 0 major version 0 minor version 0 index 8 serial number NA name License File component id 0 component variant 0 release version 0 major version 0 minor version 0 ...

Page 145: ...e time nist gov config monitor sntp secondary server name string config monitor sntp sntp status disable config monitor sntp time zone dateline Show command System Name show monitor sntp RUNNING CONFIGURATION SNTP Configuration sntp status disable primary server time nist gov secondary server time zone dateline daylight saving time unchanged current time 01 01 1970 0 29 05 System Log and System Lo...

Page 146: ...ry status active View Interface Statistics To view Interface Statistics use the following commands System Name show monitor interface statistics RUNNING CONFIGURATION if number 7 Interface Statistics index 1 descripton eth0 type ethernet csmacd mtu 1500 speed 100000000 physical address 00 e0 0c 00 7d 09 admin status up operational status up last change 0 02 11 52 00 in octets 958041 in unicast 107...

Page 147: ... 0 specific 0 0 index 3 descripton br0 type ethernet csmacd mtu 1500 speed 100000000 physical address 00 e0 0c 00 7d 09 admin status up operational status up last change 0 02 11 52 00 in octets 808143 in unicast 10176 in non unicast 531 in discards 0 in errors 0 in unknown protos 2049436 out octets 2049436 out unicast packets 11095 out non unicast packets 0 out discards 0 out errors 0 outqlen 0 sp...

Page 148: ...icast 0 in non unicast 0 in discards 0 in errors 0 in unknown protos 0 out octets 0 out unicast packets 0 out non unicast packets 0 out discards 0 out errors 3918 outqlen 0 specific 0 0 index 8 descripton ath0 type ethernet csmacd mtu 1500 speed 100000000 physical address 00 21 86 51 e4 c2 admin status up operational status up last change 0 02 11 52 00 in octets 0 in unicast 0 in non unicast 0 in ...

Page 149: ... 0 Wireless Station Statistics Configuration To disassociate a client use the following commands configure config dev monitor config monitor sta disassociate 00 20 a6 c0 c0 ec Show Command System Name show monitor wireless station statistics WIRELESS STATION STATISTICS index 1 1 ifnumber 1 macaddress 00 20 a6 c0 c0 ec rxunicastframes 4 txdataframes 0 rssi 32 rxrate 324 txrate 12 state 1 View the I...

Page 150: ...pOutAddrMaskReps 0 View IP ARP Statistics To view IP ARP Statistics use the following commands System Name show monitor ip arp statistics RUNNING CONFIGURATION Ip Net to Media Table index 3 phyaddress 00 07 e9 0c 42 df netaddress 192 168 1 10 mediatype dynamic View Radius Client Authentication Statistics To view Radius Client Authentication Statistics use the following commands System Name show mo...

Page 151: ...llowing commands System Name show monitor radius radius accounting stats radius client access statistics index 0 1 roundtriptime 0 00 00 00 00 requests 1 re transmissions 4 responses 0 timeouts 4 unknowntypes 0 packetdropped 0 index 0 1 roundtriptime 0 00 00 00 00 requests 1 re transmissions 4 responses 0 timeouts 4 unknowntypes 0 packetdropped 0 ...

Page 152: ... TFTP Serial Communication Programs such as HyperTerminal Telnet Applications or Web Browsers refer to the appropriate documentation This chapter provides information on the following Troubleshooting Common Issues Connectivity Issues Basic Software Setup and Configuration Problems Client Connection Issues VLAN Operation Issues Gigabit Ethernet PoE Recovery Procedures Soft Reset to Factory Defaults...

Page 153: ...o the same subnet physical LAN segment to use ScanTool Note that ScanTool also works over the wireless interface you can run it on a wireless client connected to the target AP or an AP connected to the same LAN segment subnet NOTE If none of the above suggested solution solve the problem use Forced Reload to load the image again from the Bootloader Connectivity Issues Connectivity issues include a...

Page 154: ...p If your network s DHCP server is not available while the AP is booting the device will use the default IP address 169 254 128 132 Reboot the AP once your DHCP server is online again or use the ScanTool to find the Access Point s current IP address 3 To find the unit s current IP address that uses DHCP server open the IP Client Table in the DHCP Server and match the Access Point s IP address to i...

Page 155: ...ys are typically allocated and maintained by your network administrator Client PC Card Does Not Work 1 Make sure you are using the latest PC Card driver software 2 Download and install the latest client software from http support proxim com Intermittent Loss of Connection 1 Make sure you are within the range of an active AP 2 You can check the signal strength using the signal strength gauge on the...

Page 156: ...TP Category 5 Category 6 cable 2 Try a different port on the same Gigabit Ethernet PoE hub remember to move the input port accordingly if it works there is probably a faulty port or bad RJ 45 port connection 3 If possible try to connect the AP to a different Gigabit Ethernet PoE hub 4 Try using a different Ethernet cable if it works there is probably a faulty connection over the long cable or a ba...

Page 157: ...onnection to set the IP Address Subnet Mask and other IP parameters See Using CLI to Manage the Access Point for CLI information Forced Reload With Forced Reload you bring the unit into bootloader mode which erases the embedded software Use this procedure only as a last option if the unit does not boot and the Soft and Hard to Factory Defaults procedure do not help CAUTION With Forced Reload the e...

Page 158: ...file extension Enter the full directory path and file name If the file is located in the default TFTP directory you need to enter only the file name 11 Click OK The Access Point will reboot and the downloads automatically 12 Click OK when prompted to return to the Scan List screen after the device has updated successfully 13 Click Cancel to close the ScanTool 14 When the download process is comple...

Page 159: ...r set netmask Network Mask Bootloader set ipaddrtype static Bootloader show to confirm your new settings Bootloader reboot Example Bootloader show Bootloader set ipaddr 169 254 128 132 Bootloader set serverip 169 254 128 133 Bootloader set filename apimage_proxim sei Bootloader set gatewayip 169 254 128 133 Bootloader set netmask 255 255 255 0 Bootloader set ipaddrtype static Bootloader show Bootl...

Page 160: ...ame and password The commands to enter the username and password are as follows p r o x i m Version 1 0 2 203180 Architecture PPC 8347 Creation 18 Mar 2009 IST 08 07 12 PM Username admin Password This process may take up to 90 seconds 3 Enter the CLI Username and password default username is admin and password is public The terminal displays a welcome message and then the CLI Prompt System Name 4 ...

Page 161: ...P address by reconnecting to the CLI and enter a show configure network command Alternatively you can ping the AP from a network computer to confirm that the new IP address has taken effect 7 When the proper IP address is set use the HTTP interface or CLI over Telnet to configure the rest of the unit s operating parameters ...

Page 162: ...files across a network You can upload configuration files from the AP for backup or copying and you can download configuration files or new software images The TFTP software is located on the installation CD If a TFTP server is not configured and running you will not be able to download and upload images and configuration files to from the AP Remember that the TFTP server does not have to be local...

Page 163: ...I Character Hex Equivalent ASCII Character Hex Equivalent ASCII Character Hex Equivalent ASCII Character Hex Equivalent 21 9 39 Q 51 i 69 22 3A R 52 j 6A 23 3B S 53 k 6B 24 3C T 54 l 6C 25 3D U 55 m 6D 26 3E V 56 n 6E 27 3F W 57 o 6F 28 40 X 58 p 70 29 A 41 Y 59 q 71 2A B 42 Z 5A r 72 2B C 43 5B s 73 2C D 44 5C t 74 2D E 45 5D u 75 2E F 46 5E v 76 2F G 47 _ 5F w 77 0 30 H 48 60 x 78 1 31 I 49 a 61...

Page 164: ...tory settings help Print Online Help reboot Reboot the device set Set the parameters show Show the parameters The Bootloader CLI supports the following parameters for viewing and modifying ipaddr IP Address systemname System Name gatewayip Gateway IP Address serverip Server IP Address ipaddrtype IP Address Type netmask Net Mask filename AP Image file name If the Bootloader fails to load the firmwa...

Page 165: ...e NOTE If the device fails in any of the above cases it will pop up the Scantool Interface and waits for scan and change requests forever If you want to access the device with Scantool then the host running the scantool should also be in the same network as the device The scantool broadcast requests will be discarded by the routers if the device and the host running the scantool are in the differe...

Page 166: ...e software features available in AP 8000 Number of Stations per BSS Management Functions Advanced Bridging Functions Medium Access Control MAC Functions Security Features Network Features Number of Stations per BSS Number of stations supported per radio is 64 Management Functions Features Supported by AP 8000 Y N Web User Interface Y Telnet CLI Y SNMP Agent Y Serial CLI Y Secure Management Y SSH Y...

Page 167: ...64 bit 128 bit and 152 bit Feature Supported by AP 8000 Y N IEEE 802 1d Bridging Y Roaming Y Protocol Filtering Y Multicast Broadcast Storm Filtering Y TCP UDP Port Filtering Y Blocking Intra BSS Clients Y Packet Forwarding Y Feature Supported by AP 8000 Y N Automatic Channel Selection ACS Y Dynamic Frequency Selection DFS Radar Detection RD Y Wireless Service Shutdown Y 802 11d Support Y Tx Power...

Page 168: ...C0 MCS15 for 802 11n 6 5 Mbps 300 Mbps BPSK QPSK 16 QAM and 64 QAM for 802 11a and 802 11g 6 Mbps 54 Mbps DSSS for 802 11b 1 Mbps 11 Mbps Device Interface Ethernet Auto sensing 10 100 1000BASE T Ethernet Antenna Connector 3 RP SMA connector per radio Network Architecture Type Infrastructure Transmit Power For 2 4 GHz 19 dBm For 5 GHz 17 dBm Varies with modulation scheme Receive Sensitivity For 2 4...

Page 169: ...n Enterprise 802 11 a b g n Dimensions 8 25 x 12 00 x 1 5 Weight 1 8 lb Environmental Operating 0 to 55ºC 5 to 95 percent non condensing Storage 20º to 75ºC Packaging Contents One AP 8000 One Wall Ceiling mount kit One cable security attachment Six 2 4GHz 5GHz omni directional antennas with reverse SMA connectors One Quick Install Guide One Documentation CD MTBF 43 800 hrs Warranty One year parts ...

Page 170: ...2 442 8 2 447 9 2 452 10 2 457 11 2 462 12 2 467 13 2 472 36 5 18 40 5 2 44 5 22 48 5 24 52 5 26 56 5 28 60 5 3 64 5 32 Estonia 1 2 412 2 2 417 3 2 422 4 2 427 5 2 432 6 2 437 7 2 442 8 2 447 9 2 452 10 2 457 11 2 462 12 2 467 13 2 472 36 5 18 40 5 2 44 5 22 48 5 24 52 5 26 56 5 28 60 5 3 64 5 32 Finland 1 2 412 2 2 417 3 2 422 4 2 427 5 2 432 6 2 437 7 2 442 8 2 447 9 2 452 10 2 457 11 2 462 12 2...

Page 171: ... 467 13 2 472 36 5 18 40 5 2 44 5 22 48 5 24 52 5 26 56 5 28 60 5 3 64 5 32 Luxemburg 1 2 412 2 2 417 3 2 422 4 2 427 5 2 432 6 2 437 7 2 442 8 2 447 9 2 452 10 2 457 11 2 462 12 2 467 13 2 472 36 5 18 40 5 2 44 5 22 48 5 24 52 5 26 56 5 28 60 5 3 64 5 32 Malta 1 2 412 2 2 417 3 2 422 4 2 427 5 2 432 6 2 437 7 2 442 8 2 447 9 2 452 10 2 457 11 2 462 12 2 467 13 2 472 36 5 18 40 5 2 44 5 22 48 5 24...

Page 172: ...92 5 460 93 5 465 94 5 470 95 5 475 96 5 480 97 5 485 98 5 490 99 5 495 100 5 500 101 5 505 102 5 510 103 5 515 104 5 520 105 5 525 106 5 530 107 5 535 108 5 540 109 5 545 110 5 550 111 5 555 112 5 560 113 5 565 114 5 570 115 5 575 116 5 580 117 5 585 118 5 590 119 5 595 120 5 600 121 5 605 122 5 610 123 5 615 124 5 620 125 5 625 126 5 630 127 5 635 128 5 640 129 5 645 130 5 650 131 5 655 132 5 66...

Page 173: ...452 10 2 457 11 2 462 12 2 467 13 2 472 36 5 18 40 5 2 44 5 22 48 5 24 52 5 26 56 5 28 60 5 3 64 5 32 Spain 1 2 412 2 2 417 3 2 422 4 2 427 5 2 432 6 2 437 7 2 442 8 2 447 9 2 452 10 2 457 11 2 462 12 2 467 13 2 472 36 5 18 40 5 2 44 5 22 48 5 24 52 5 26 56 5 28 60 5 3 64 5 32 Sweden 1 2 412 2 2 417 3 2 422 4 2 427 5 2 432 6 2 437 7 2 442 8 2 447 9 2 452 10 2 457 11 2 462 12 2 467 13 2 472 36 5 18...

Page 174: ...formation If the product is not registered date when you purchased the product If the product is not registered location where you purchased the product NOTE Technical Support is free for the first 90 days from the date of purchase Support Options Proxim eService Web site Support The Proxim eService Web site is available 7x24x365 at http support proxim com On the Proxim eService Web site you can a...

Page 175: ...overage provides unlimited repair of your Proxim hardware for the life of the service contract The cost of an extended warranty is far less than the cost of a repair providing a sensible return on your investment 7x24x365 Technical Support This service provides unlimited direct access to Proxim s world class Tier 3 technical support engineers 24 hours a day 7 days a week 365 days a year including ...

Page 176: ... To purchase ServPak support services please contact your authorized Proxim distributor To receive more information or for questions on any of the available ServPak support options call Proxim Support at 408 383 7700 or send an email to servpak proxim com ...

Page 177: ...n this Agreement will not apply to defects in a Product caused i through no fault of Proxim Wireless during shipment to or from Buyer ii by the use of software other than that provided with or installed in the Product iii by the use or operation of the Product in an application or environment other than that intended or recommended by Proxim Wireless iv by modifications alterations or repairs made...

Page 178: ...f the container Calls to the Customer Service Center for reasons other than Product failure will not be accepted unless Buyer has purchased a Proxim Wireless Service Contract or the call is made within the first thirty 30 days of the Product s invoice date If Proxim Wireless reasonably determines that a returned Product is not defective or is not covered by the terms of this Warranty Buyer shall b...

Reviews:

No comments