manualshive.com logo in svg

SMC Networks 2555W-AG2, User Manual

The SMC Networks 2555W-AG2 is a versatile wireless router with advanced features and functionalities. Stay connected seamlessly with high-speed internet and secure access. Easily set up and configure your device with the help of the User Manual, available for free download from manualshive.com. Get the most out of your router today!

Share
Download
background image

USER GUIDE

EliteConnect

TM

 Universal

802.11a/g 2.4GHz/5GHz 
Wireless Access Point

SMC2555W-AG2

Summary of Contents for 2555W-AG2

Page 1: ...USER GUIDE EliteConnectTM Universal 802 11a g 2 4GHz 5GHz Wireless Access Point SMC2555W AG2...

Page 2: ...rvine CA 92618 Phone 949 679 8000 EliteConnect SMC2555W AG2 Universal 2 4GHz 5GHz Wireless Dual Band Access Point The easy way to make all your network connections October 2008 Pub 149100033500E E1020...

Page 3: ...ed by implication or otherwise under any patent or patent rights of SMC SMC reserves the right to change specifications at any time without notice Copyright 2008 by SMC Networks Inc 20 Mason Irvine CA...

Page 4: ...become the property of SMC Replacement products may be either new or reconditioned Any replaced or repaired product carries either a 30 day limited warranty or the remainder of the initial warranty wh...

Page 5: ...WITH THE SALE INSTALLATION MAINTENANCE USE PERFORMANCE FAILURE OR INTERRUPTION OF ITS PRODUCTS EVEN IF SMC OR ITS AUTHORIZED RESELLER HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES SOME STATES D...

Page 6: ...vi...

Page 7: ...that to which the receiver is connected Consult the dealer or an experienced radio TV technician for help FCC Caution Any changes or modifications not expressly approved by the party responsible for...

Page 8: ...e met Industry Canada Class B This digital apparatus does not exceed the Class B limits for radio noise emissions from digital apparatus as set out in the interference causing equipment standard entit...

Page 9: ...or European Community countries as described below This device requires that the user or installer properly enter the current country of operation in the command line interface as described in the use...

Page 10: ...ettings Window as described in the user guide This device is restricted to indoor use when operated in the European Community using the 5 15 5 35 GHz band Channels 36 40 44 48 52 56 60 64 See table be...

Page 11: ...cument Allowed 5GHz Channels in Each European Community Country Allowed Frequency Bands Allowed Channel Numbers Countries 5 15 5 25 GHz 36 40 44 48 Austria Belgium 5 15 5 35 GHz 36 40 44 48 52 56 60 6...

Page 12: ...igences essentielles et aux autres dispositions pertinentes de la directive 1999 5 CE Swedish H rmed intygar SMC att denna Radio LAN device st r I verensst mmelse med de v sentliga egenskapskrav och v...

Page 13: ...Voltage conditions according to IEC 60950 The conditions are only maintained if the equipment to which it is connected also operates under SELV conditions The PoE Power over Ethernet which is to be in...

Page 14: ...least 10 A The attachment plug must be an earth grounding type with NEMA 5 15P 15 A 125 V or NEMA 6 15P 15 A 250 V configuration Denmark The supply plug must comply with Section 107 2 D1 Standard DK2...

Page 15: ...950 Ces conditions ne sont maintenues que si l quipement auquel il est raccord fonctionne dans les m mes conditions France et P rou uniquement Ce groupe ne peut pas tre aliment par un dispositif imp d...

Page 16: ...teeingang haben Die Netzsteckdose mu in der N he des Ger ts und leicht zug nglich sein Die Stromversorgung des Ger ts kann nur durch Herausziehen des Ger tenetzkabels aus der Netzsteckdose unterbroche...

Page 17: ...ne strombelastbarkeit aus wenigstens 10 A Dieser Stromstecker mu hat einer erdschluss mit der typ NEMA 5 15P 15A 125V oder NEMA 6 15P 15A 250V konfiguration Danemark Dieser Stromstecker mu die ebene 1...

Page 18: ...COMPLIANCES xii...

Page 19: ...2 Ad Hoc Wireless LAN no Access Point 4 2 Infrastructure Wireless LAN 4 3 Infrastructure Wireless LAN for Roaming Wireless PCs 4 4 Infrastructure Wireless Bridge 4 5 Infrastructure Wireless Repeater 4...

Page 20: ...ation Status 6 89 Event Logs 6 92 STP Status 6 94 Chapter 7 Command Line Interface 7 1 Using the Command Line Interface 7 1 Accessing the CLI 7 1 Console Connection 7 1 Telnet Connection 7 1 Entering...

Page 21: ...2 show version 7 23 show config 7 23 show hardware 7 27 System Logging Commands 7 27 logging on 7 28 logging host 7 28 logging console 7 29 logging level 7 29 logging facility type 7 30 logging clear...

Page 22: ...56 dir 7 57 show bootfile 7 57 RADIUS Client 7 58 radius server address 7 58 radius server port 7 59 radius server key 7 59 radius server retransmit 7 60 radius server timeout 7 60 radius server port...

Page 23: ...e 7 79 show bridge filter entry 7 80 show bridge link 7 80 Spanning Tree Commands 7 82 bridge stp enable 7 82 bridge stp forwarding delay 7 83 bridge stp hello time 7 83 bridge stp max age 7 84 bridge...

Page 24: ...rogue ap enable 7 112 rogue ap authenticate 7 113 rogue ap duration 7 114 rogue ap interval 7 114 rogue ap scan 7 115 show rogue ap 7 116 Wireless Security Commands 7 116 auth 7 117 encryption 7 119...

Page 25: ...ooting A 1 Appendix B Cables and Pinouts B 1 Twisted Pair Cable Assignments B 1 10 100BASE TX Pin Assignments B 1 Straight Through Wiring B 2 Crossover Wiring B 3 Console Port Pin Assignments B 3 Wiri...

Page 26: ...xx Contents...

Page 27: ...t does not have a cable connection to the wired Ethernet LAN Bridge Providing links to access points operating in Bridge or Root Bridge mode and thereby connecting other wired LAN segments Root Bridge...

Page 28: ...32 console cable One AC power adapter and power cord Four rubber feet User Guide CD Inform your dealer if there are any incorrect missing or damaged parts If possible retain the carton including the o...

Page 29: ...ts from both antennas at the same time The antennas transmit the outgoing signal as a toroidal sphere doughnut shaped with the coverage extending most in a direction perpendicular to the antenna The a...

Page 30: ...s to PCs switches or hubs The access point appears as an Ethernet node and performs a bridging function by moving packets from the wired LAN to remote workstations on the wireless infrastructure LED S...

Page 31: ...uired The access point may also receive Power over Ethernet PoE from a switch or other network device that supplies power over the network cable based on the IEEE 802 3af standard Note that if the acc...

Page 32: ...n User Name admin Password smcadmin General HTTP Server Enabled HTTP Server Port 80 HTTP Server Enabled HTTP Server Port 443 TCP IP DHCP Enabled IP Address 192 168 2 2 Subnet Mask 255 255 255 0 Defaul...

Page 33: ...isabled VLAN Management VLAN ID 1 VLAN ID VAP Interface 1 VLAN Tag Support Disabled QoS QoS Mode Off SVP SpectraLink Voice Priority Disabled Filter Control Local Bridge Disabled AP Management Enabled...

Page 34: ...Logging Facility Type 16 System Clock SNTP Server Status Enabled SNTP Server 1 IP 137 92 140 80 SNTP Server 2 IP 192 43 244 18 Date and Time 00 00 Jan 1 1970 when there is no time server Daylight Sav...

Page 35: ...ation Timeout Interval 30 minutes Authentication Timeout Interval 60 minutes Rogue AP Detection Disabled Antenna Control Method Diversity Antenna ID 0x0000 Antenna Location Indoor Wireless Security 80...

Page 36: ...s Association Timeout Interval 30 minutes Authentication Timeout Interval 60 minutes Rogue AP Detection Disabled Antenna Control Method Diversity Antenna ID 0x0000 Antenna Location Indoor Wireless Sec...

Page 37: ...System Defaults 1 11 1 Link Integrity Status Disabled Ping Interval 30 seconds Fail Retry Count 6 Table 1 1 System Defaults Feature Parameter Default...

Page 38: ...Introduction 1 12 1...

Page 39: ...access point can be mounted on any horizontal surface Mounting on a horizontal surface To keep the access point from sliding on the surface attach the four rubber feet provided in the accessory kit t...

Page 40: ...A 1 Note The RJ 45 port on the access point supports auto MDI MDI X operation so you can use either straight through or crossover cable to connect to switches or PCs 6 Position the Antennas Each ante...

Page 41: ...e Installation Pigtail Cables Use the coax pigtail cable attached to the antenna to connect to the access point Because most pigtail cables are a relatively short length 83 cm or 33 inches be sure to...

Page 42: ...to point the antennas towards the coverage area Outdoor Installation When installing an antenna outdoors be sure to consider these additional factors Always place the antenna away from power and tele...

Page 43: ...sing the web browser interface CLI or SNMP 2 Remove power to the access point 3 Remove both of the access point s antennas by unscrewing them at their base 4 For diversity antennas connect the antenna...

Page 44: ...3 4 3 5 Reconnect power to the access point Note Before enabling the radio with an external antenna attached be sure to first configure the access point s antenna mode Antenna pigtail cable Screw ont...

Page 45: ...ure wireless LAN for roaming wireless PCs Infrastructure wireless bridge to connect wired LANs Infrastructure wireless repeater for extended range The 802 11b and 802 11g frequency band which operates...

Page 46: ...ireless adapter connected via radio signals as an independent wireless LAN Computers in a specific ad hoc wireless LAN must therefore be configured to the same radio channel An ad hoc wireless LAN can...

Page 47: ...group via a radio link or access other computers or network resources in the wired LAN infrastructure via the access point The infrastructure configuration not only extends the accessibility of wirele...

Page 48: ...ccess points The SSID can be manually configured by the clients can be detected in an access point s beacon or can be obtained by querying for the identity of the nearest access point For clients that...

Page 49: ...The root bridge should be the unit connected to the main core of the wired LAN Other bridges must configure one parent link to the root bridge or to a bridge connected to the root bridge The other fi...

Page 50: ...o six WDS repeater links In repeater mode the access point does not support an Ethernet link to a wired LAN Note that when the access point operates in this mode only half the normal throughput is pos...

Page 51: ...up through the CLI Required Connections The access point provides an RS 232 serial port that enables a connection to a PC or terminal for monitoring and configuration Attach a VT100 compatible termina...

Page 52: ...ress By default the access point is configured to obtain IP address settings from a DHCP server If a DHCP server is not available the IP address defaults to 192 168 2 2 which may not be compatible wit...

Page 53: ...r wireless networks in the specified country Type exit to leave configuration mode Then type country to display the list of countries Select the code for your country and enter the country command aga...

Page 54: ...Initial Configuration 5 4 5 The home page displays the Main Menu...

Page 55: ...red IP address of the access point or use the default address http 192 168 2 2 To log into the access point enter the default user name admin and the password smcadmin then press LOGIN When the home p...

Page 56: ...22 AP Management Configures access to management interfaces 6 28 Administration Configures user name and password for management access upgrades software from local file FTP or TFTP server resets conf...

Page 57: ...ely identified on the network Default SMC Range 1 32 characters Security Enables each VAP interface sets the SSID and configures wireless security 6 69 Status Displays information about the access poi...

Page 58: ...g end 7 87 Enterprise AP show system 7 22 System Information Serial Number System Up time 0 days 0 hours 32 minutes 22 seconds System Name R D System Location System Contact Contact System Country Cod...

Page 59: ...e page 5 2 After you have network access to the access point you can use the web browser interface to modify the initial IP configuration if needed Note If there is no DHCP server on your network or D...

Page 60: ...s From the global configuration mode enter the interface configuration mode with the interface ethernet command Use the ip dhcp command to enable the DHCP client or no ip dhcp to disable it To manuall...

Page 61: ...Wi Fi Protected Access WPA wireless security A secondary RADIUS server may also be specified as a backup should the primary server fail or become inaccessible In addition the configured RADIUS server...

Page 62: ...System Configuration 6 8 6...

Page 63: ...k spaces in the string Maximum length 255 characters Timeout Number of seconds the access point waits for a reply from the RADIUS server before resending a request Range 1 60 seconds Default 5 Retrans...

Page 64: ...ddress 192 168 1 25 7 58 Enterprise AP config radius server port 181 7 59 Enterprise AP config radius server key green 7 59 Enterprise AP config radius server timeout 10 7 60 Enterprise AP config radi...

Page 65: ...altered Clients can then securely use the local user name and password for access authentication Note that SSH client software needs to be installed on the management station to access the access poin...

Page 66: ...mall network with a limited number of users MAC addresses can be manually configured on the access point itself without the need to set up a RADIUS server but managing a large number of MAC addresses...

Page 67: ...station is compared against the local database stored on the access point Use the Local MAC Authentication section of this web page to set up the local database and configure all access points in the...

Page 68: ...all unknown MAC addresses that is those not listed in the local MAC database Deny Blocks access for all MAC addresses except those listed in the local database as Allow Allow Permits access for all M...

Page 69: ...tication server local 7 71 Enterprise AP config mac authentication session timeout 5 7 71 Enterprise AP config address filter default denied 7 69 Enterprise AP config address filter entry 00 70 50 cc...

Page 70: ...en use the 802 1X supplicant command to enable the feature To display the current settings use the show authentication command from the Exec mode not shown in the following example Enterprise AP confi...

Page 71: ...access point Inter Client STAs Communication Filter Sets the global mode for wireless to wireless communications between clients associated to Virtual AP VAP interfaces on the access point Default Pre...

Page 72: ...a MAC address from the filtering table Ethernet Type Filter Controls checks on the Ethernet type of all incoming and outgoing Ethernet packets against the protocol filtering table Default Disabled Di...

Page 73: ...73 Enterprise AP config filter ap manage 7 73 Enterprise AP config filter uplink enable 7 74 Enterprise AP config filter uplink add 00 12 34 56 78 9a 7 74 Enterprise AP config filter ethernet type ena...

Page 74: ...r an assigned client VLAN ID default VLAN ID or the management VLAN ID Traffic received from the wired network must also be tagged with one of these known VLAN IDs Received traffic that has an unknown...

Page 75: ...te The specific configuration of RADIUS server software is beyond the scope of this guide Refer to the documentation provided with the RADIUS server software VLAN Classification Enables or disables VL...

Page 76: ...es that is an STP compliant switch bridge or router in your network to ensure that only one route exists between any two stations on the network and provide backup links which automatically take over...

Page 77: ...dio interface Root Bridge Operates as the root bridge in the wireless bridge network Up to six Child links are available to other bridges in the network Bridge Parent The physical layer address of the...

Page 78: ...network It selects a root port on each bridging device except for the root device which incurs the lowest path cost when forwarding a packet from that device to the root device Then it selects a desig...

Page 79: ...ge 0 65535 Default 32768 Bridge Max Age The maximum time in seconds a device can wait without receiving a configuration message before attempting to reconfigure All device ports except for designated...

Page 80: ...s point radio interface use the bridge role command from the CLI wireless interface configuration mode If the role of the radio interface is set to Bridge or Repeater the MAC address of the parent nod...

Page 81: ...stp command Enterprise AP config bridge stp enable 6 104 Enterprise AP config bridge stp forwarding delay 2500 6 105 Enterprise AP config bridge stp hello time 500 6 106 Enterprise AP config bridge st...

Page 82: ...the access point will reject the connection UI Management Enables or disables management access through Telnet the Web HTTP or SNMP interfaces Default Enabled Note Secure Web HTTPS connections are no...

Page 83: ...efault admin user name from the system Note Pressing the Reset button on the back of the access point for more than five seconds resets the user name and password to the factory defaults For this reas...

Page 84: ...ding Firmware You can upgrade new access point software from a local file on the management workstation or from an FTP or TFTP server New software may be provided periodically from your distributor Af...

Page 85: ...software is stored If upgrading from an FTP server be sure that you have an account configured on the server with a user name and password If VLANs are configured on the access point determine the VL...

Page 86: ...nfiguration file to a specified remote FTP or TFTP server A configuration file can also be downloaded to the access point to restore a specific configuration Export Import Select Export to upload a fi...

Page 87: ...ir command can be used to check that the new file is present in the access point file system To run the new software use the reset board command to reboot the access point Enterprise AP copy tftp file...

Page 88: ...to memory or sent to a Syslog server The logged messages serve as a valuable tool for isolating access point and network problems System Log Setup Enables the logging of error messages Default Disabl...

Page 89: ...in the access point s memory are erased when the device is rebooted Logging Facility Type Sets the facility type for remote logging of syslog messages The command specifies the facility type tag sent...

Page 90: ...ic time servers You can configure up to two time server IP addresses The access point will attempt to poll each server in the configured sequence SNTP Server Configures the access point to operate as...

Page 91: ...t from the global configuration mode specify SNTP server IP addresses using the sntp server ip command then use the sntp server enable command to enable the service Use the sntp server timezone comman...

Page 92: ...cifications and the protocol used to access this information over the network The access point includes an onboard agent that supports SNMP versions 1 2c and 3 clients This agent continuously monitors...

Page 93: ...ns SNMP Enables or disables SNMP management access and also enables the access point to send SNMP traps notifications Default Disable Location A text string that describes the system location Maximum...

Page 94: ...sent with the notification operation Maximum length 23 characters case sensitive Default public Engine ID Sets the engine identifier for the SNMPv3 agent that resides on the access point This engine p...

Page 95: ...Fail A client station has failed MAC address authentication with the RADIUS server dot1xAuthNotInitiated A client station did not initiate 802 1X authentication dot1xAuthSuccess A 802 1X client statio...

Page 96: ...contact commands to indicate the physical location of the access point and define a system contact To set the read only and read write community names use the snmp server community command Use the sn...

Page 97: ...Enabled dot11StationAuthentication Enabled dot11StationReAssociation Enabled dot11StationRequestFail Enabled dot1xAuthFail Enabled dot1xAuthNotInitiated Enabled dot1xAuthSuccess Enabled dot1xMacAddrA...

Page 98: ...e corresponding Passphrase field Priv Type The data encryption type used for the SNMP user either DES or none When DES is selected enter a key in the corresponding Passphrase field Passphrase The pass...

Page 99: ...and group settings use the show snmp users or show snmp group assignments commands Enterprise AP config snmp server engine id 1a 2b 3c 4d 00 ff 7 44 Enterprise AP config snmp server user 7 45 User Nam...

Page 100: ...opens to configure the filter see below To edit an existing filter select the radio button next to the entry in the table and then click the Edit button To delete a filter select the radio button nex...

Page 101: ...ude entries for the required trap objects to send to the target Note that the filter entries are applied in the sequence that they are defined CLI Commands for Configuring SNMPv3 Trap Filters To creat...

Page 102: ...gure the settings see below To edit an existing target select the radio button next to the entry in the table and then click the Edit button To delete targets select the radio button next to the entry...

Page 103: ...efined SNMP v3 user that is to receive notification messages Assigned Filter The name of a user defined notification filter that is applied to the target CLI Commands for Configuring SNMPv3 Targets To...

Page 104: ...wever most radio signal parameters apply to all eight VAP interfaces The VAPs function similar to a VLAN with each VAP mapped to its own VLAN ID Traffic to specific VAPs can be segregated based on use...

Page 105: ...system After you have configured the radio settings go to the Security page under the 802 a Interface see Security on page 6 69 enable the radio service for any of the VAP interfaces and then set an S...

Page 106: ...lient is disassociated from the VAP interface Range 5 60 minutes Default 30 minutes WPA2 PMKSA Life Time WPA2 provides fast roaming for authenticated clients by retaining keys and other security setti...

Page 107: ...ue AP Detection To configure Rouge AP detection select the Radio Settings page and scroll down to the Rouge AP section Rogue AP A rogue AP is either an access point that is not authorized to participa...

Page 108: ...enabled the access point checks the MAC address Basic Service Set Identifier BSSID of each access point that it finds against a RADIUS server to determine whether the access point is allowed With RADI...

Page 109: ...ise AP if wireless g rogue ap interval 120 7 114 Enterprise AP if wireless g rogue ap scan 7 115 Enterprise AP if wireless g rogueApDetect Completed Radio G 5 APs detected rogueAPDetect Radio G refres...

Page 110: ...f up to 108 Mbps Enabling Turbo Mode allows the access point to provide connections up to 108 Mbps Default Disabled Note In normal mode the access point provides a channel bandwidth of 20 MHz and supp...

Page 111: ...the service area Options 100 50 25 12 minimum Default 100 Note When operating the access point using 5 GHz channels in a European Community country the end user and installer are obligated to operate...

Page 112: ...nce of the access point can be improved by selecting the best method for the specific deployment Default Software Hardware Provides best performance when the number of supported clients is less than 2...

Page 113: ...p the retransmission of smaller frames However it is more efficient to set the fragment size larger if very little or no interference is present because it requires overhead to send multiple frames Ra...

Page 114: ...te for wireless network bandwidth at the same time WMM employs techniques that are a subset of the developing IEEE 802 11e QoS standard and it enables the access point to inter operate with both WMM e...

Page 115: ...dent on two timing parameters AIFSN Arbitration Inter Frame Space Number a number used to calculate the minimum time between data frames CW Contention Window a number used to calculate a random backof...

Page 116: ...values equate to less backoff and wait time and therefore more transmit opportunities To configure WMM select the Radio Settings page and scroll down to the WMM configuration settings AIFS Random Bac...

Page 117: ...limit of the random backoff wait time before wireless medium access can be attempted The initial wait time is a random value between zero and the CWMin value Specify the CWMin value in the range 0 15...

Page 118: ...the access point The wmm acknowledge policy command is used to enable or disable a policy for each access category The wmmparms command defines detailed WMM parameters Enterprise AP if wireless a wmm...

Page 119: ...old 2347 bytes Beacon Interval 100 TUs Authentication Timeout Interval 60 Mins Association Timeout Interval 30 Mins DTIM Interval 1 beacon Maximum Association 64 stations MIC Mode Software Super A Dis...

Page 120: ...can associate with a VAP Note You must first enable VAP interface 0 before the other interfaces can be enabled Quality of Service WMM Mode SUPPORTED WMM Acknowledge Policy AC0 Best Effort Ack AC1 Back...

Page 121: ...s specific to the 802 11g interface are included in this section To configure the 802 11g radio settings select the Radio Settings page Radio Mode Selects the operating mode for the 802 11g wireless i...

Page 122: ...tance is affected by the data rate The lower the data rate the longer the transmission distance Default 54 Mbps Super G The Atheros proprietary Super G performance enhancements are supported by the ac...

Page 123: ...ou have to implement two main functions Authentication It must be verified that clients attempting to connect to the network are authorized users Traffic Encryption Data passing between the access poi...

Page 124: ...bled system and network card driver native support provided in Windows XP Provides robust security in WPA only mode i e WPA clients only Offers support for legacy WEP clients but with increased securi...

Page 125: ...Settings Authentication Shared Key or Open System Encryption Enable 802 1x Disable Local RADIUS or Disabled Yesc Dynamic WEP 802 1x only Interface Detail Settings Authentication Open System Encryption...

Page 126: ...authentication rates Local or Disabled Yes WPA2 Pre Shared Key only Interface Detail Settings Authentication WPA2 PSK Encryption Enable WPA Configuraton Required Cipher Suite AES CCMP 802 1x Disable W...

Page 127: ...urity under Radio A or Radio G set an SSID to identify the wireless network service provided by each VAP you want to use and then click Apply to save your settings Before enabling the radio service fo...

Page 128: ...nded for a high level of network security For more robust wireless security the access point provides Wi Fi Protected Access WPA for improved data encryption and user authentication Setting up shared...

Page 129: ...ment with clients using static WEP keys and WPA select WEP transmit key index 2 3 or 4 The access point uses transmit key index 1 for the generation of dynamic keys To enable WEP shared keys for a VAP...

Page 130: ...h the web or CLI in order to enable all types of encryption WEP TKIP or AES in the access point CLI Commands for WEP Shared Key Security To enable WEP shared key security for the 802 11g interface use...

Page 131: ...de b g mixed mode Transmit Power FULL 5 dBm Max Station Data Rate 54Mbps Multicast Data Rate 5 5Mbps Fragmentation Threshold 2346 bytes RTS Threshold 2347 bytes Beacon Interval 100 TUs Authentication...

Page 132: ...Acknowledge AC3 Voice Acknowledge WMM BSS Parameters AC0 Best Effort logCwMin 4 logCwMax 10 AIFSN 3 Admission Control No TXOP Limit 0 000 ms AC1 Background logCwMin 4 logCwMax 10 AIFSN 7 Admission Co...

Page 133: ...port other systems require additional software Temporal Key Integrity Protocol TKIP WPA specifies TKIP as the data encryption method to replace WEP TKIP avoids the problems of WEP static keys by dynam...

Page 134: ...nd support for TKIP encryption The main differences and enhancements in WPA2 can be summarized as follows Advanced Encryption Standard AES WPA2 uses AES Counter Mode encryption with Cipher Block Chain...

Page 135: ...icated to a wireless network it has to be fully authenticated When the client is about to roam to another access point in the network the access point sends pre authentication messages to the new acce...

Page 136: ...hentication WPA2 PSK Clients using WPA2 with a Pre shared Key are accepted for authentication WPA WPA2 mixed Clients using WPA or WPA2 over 802 1X are accepted for authentication WPA WPA2 PSK mixed Cl...

Page 137: ...e shared Key Type Hex ASCII Encryption Enabled Authentication Setup WPA WPA2 WPA WPA2 mixed Cipher Suite WEP TKIP AES CCMP requires RADIUS server to be specified 1 You must enable data encryption in o...

Page 138: ...the access point grants client access to the network The 802 1X EAP packets are also used to pass dynamic unicast session keys and static broadcast keys to wireless clients Session keys are unique to...

Page 139: ...after successful wireless association with the access point The 802 1X supported mode allows access for clients not using WPA or WPA2 security Required The access point enforces 802 1X authentication...

Page 140: ...how interface wireless command from the Exec mode not shown in the example Status Information The Status page includes information on the following items Access Point Status The AP Status window displ...

Page 141: ...G MAC The physical layer address for the 802 11b g interface System Name Name assigned to this system System Contact Administrator responsible for the system IP Address IP address of the management in...

Page 142: ...or Displaying System Settings To view the current access point system settings use the show system command from the Exec mode To view the current radio interface settings use the show interface wirele...

Page 143: ...s as described below Note that this page is automatically refreshed every five seconds Station Address The MAC address of the wireless client Authenticated Shows if the station has been authenticated...

Page 144: ...cedure allows the wireless system to track the location of each mobile client and ensure that frames destined for each client are forwarded to the appropriate access point Forwarding Allowed Shows if...

Page 145: ...802 11a Channel Auto No 802 11a Channel Stations if wireless A VAP 1 802 11a Channel Auto No 802 11a Channel Stations No 802 11a Channel Stations if wireless A VAP 7 802 11a Channel Auto No 802 11a C...

Page 146: ...Error Messages An example of a logged error message is Station Failed to authenticate unsupported algorithm This message may be caused by any of the following conditions Access point was set to Open...

Page 147: ...rt 514 State Disabled Enterprise AP Enterprise AP show event log 7 32 Mar 09 11 57 55 Information 802 11g 11g Radio Interface Enabled Mar 09 11 57 55 Information 802 11g Radio channel updated to 8 Mar...

Page 148: ...for each port ID Displays the port ID number Priority The priority designated to the specified port Path Cost Displays the path cost value for the specified port Status Displays if STP is enabled or d...

Page 149: ...login screen displays Caution Command examples shown later in this chapter abbreviate the console prompt to AP for simplicity Telnet Connection Telnet operates over the IP transport protocol In this...

Page 150: ...ing the Telnet command the login screen displays Caution You can open up to four sessions to the device via Telnet Entering Commands This section describes how to enter CLI commands Keywords and Argum...

Page 151: ...show displays a list of possible show commands The command show interface will display the following information Enterprise AP show APmanagement Show management AP information authentication Show Auth...

Page 152: ...tory of commands by pressing the up arrow key Any command displayed in the history list can be executed again or first modified and then executed Using the show history command displays a longer list...

Page 153: ...ess Configuration IC W These commands modify the wireless port configuration of global parameters for the radio and include commands such as channel and transmit power Interface Wireless Virtual Acces...

Page 154: ...right one character Ctrl K Deletes from cursor to the end of the command line Ctrl L Repeats current command line on a new line Ctrl N Enters the next command line in the history buffer Ctrl P Shows t...

Page 155: ...rameters 7 82 Ethernet Interface Configures connection parameters for the Ethernet interface 7 87 Wireless Interface Configures radio interface settings 7 92 Wireless Security Configures radio interfa...

Page 156: ...ault Setting None Command Mode Exec Example Related Commands end 7 8 end This command returns to the previous configuration mode Default Setting None Command Mode Global Configuration Interface Config...

Page 157: ...e reached The following are some results of the ping command Normal response The normal response occurs in one to ten seconds depending on network traffic Destination does not respond If the host does...

Page 158: ...always run the Power On Self Test Example This example shows how to reset the system show history This command shows the contents of the command history buffer Default Setting None Command Mode Exec C...

Page 159: ...evice Designation prompt Customizes the command line prompt GC 7 14 system name Specifies the host name for the access point GC 7 14 snmp server contact Sets the system contact string GC 7 40 snmp ser...

Page 160: ...on the access point GC 7 19 System Status show system Displays system information Exec 7 22 show version Displays version information for the system Exec 7 23 show config Displays detailed configurat...

Page 161: ...BR Iceland IS New Zealand NZ Turkey TR Brunei Darussalam BN India IN Norway NO Ukraine UA Bulgaria BG Indonesia ID Qatar QA United Arab Emirates AE Canada CA Iran IR Oman OM United Kingdom GB Chile C...

Page 162: ...ring to use for the CLI prompt Maximum length 32 characters Default Setting Enterprise AP Command Mode Global Configuration Example system name This command specifies or modifies the system name for t...

Page 163: ...rd After initially logging onto the system you should set the password Remember to record it in a safe place Use the no form to reset the default password Syntax password password no password password...

Page 164: ...enerate host encryption keys The SSH server is disabled while the keys are being generated The show system command displays the status of the SSH server Example ip ssh server port This command sets th...

Page 165: ...port This command specifies the TCP port number used by the web browser interface Use the no form to use the default port Syntax ip http port port number no ip http port port number The TCP port to b...

Page 166: ...no form to restore the default port Syntax ip https port port_number no ip https port port_number The UDP port used for HTTPS SSL Range 80 1024 65535 Default Setting 443 Command Mode Global Configurat...

Page 167: ...pendently If you enable HTTPS you must indicate this in the URL https device port_number When you start HTTPS the connection is established in this way The client authenticates the server using the se...

Page 168: ...t interface on the access point from an invalid address the unit will reject the connection enter an event message in the system log and send a trap message to the trap manager IP address can be confi...

Page 169: ...r disables the selected management access method Default Setting All enabled Command Mode Global Configuration Example This example restricts management access to the indicated addresses show apmanage...

Page 170: ...em Contact System Country Code US UNITED STATES MAC Address 00 30 F1 F0 9A 9C IP Address 192 168 1 1 Subnet Mask 255 255 255 0 Default Gateway 0 0 0 0 VLAN State DISABLED Management VLAN ID AP 1 IAPP...

Page 171: ...prise AP Enterprise AP show config Authentication Information MAC Authentication Server DISABLED MAC Auth Session Timeout Value 0 min 802 1x supplicant DISABLED 802 1x supplicant user EMPTY 802 1x sup...

Page 172: ...Bm Data Rate 54Mbps Fragmentation Threshold 2346 bytes RTS Threshold 2347 bytes Beacon Interval 100 TUs DTIM Interval 1 beacon Maximum Association 64 stations Native VLAN ID 1 Security Closed System D...

Page 173: ...0 0 0 0 Port 1812 Key Retransmit 3 Timeout 5 Radius MAC format no delimiter Radius VLAN format HEX Radius Secondary Server Information IP 0 0 0 0 Port 1812 Key Retransmit 3 Timeout 5 Radius MAC forma...

Page 174: ...vice State Disabled SNTP server 1 IP 137 92 140 80 SNTP server 2 IP 192 43 244 18 Current Time 00 14 Jan 1st 1970 Time Zone 5 BOGOTA EASTERN INDIANA Daylight Saving Disabled Station Table Information...

Page 175: ...Enterprise AP Table 7 6 System Logging Commands Command Function Mode Page logging on Controls logging of error messages GC 7 28 logging host Adds a syslog server host IP address that will receive lo...

Page 176: ...t are stored in memory Example logging host This command specifies syslog servers host that will receive logging messages Use the no form to remove syslog server host Syntax logging host 1 2 3 4 host_...

Page 177: ...ult Setting Disabled Command Mode Global Configuration Example logging level This command sets the minimum severity level for event logging Syntax logging level Emergency Alert Critical Error Warning...

Page 178: ...ate service Range 16 23 Default Setting 16 Command Mode Global Configuration Level Argument Description Emergency System unusable Alert Immediate action needed Critical Critical conditions e g memory...

Page 179: ...Syntax logging clear Command Mode Global Configuration Example show logging This command displays the logging configuration Syntax show logging Command Mode Exec Example Enterprise AP config logging...

Page 180: ...09 11 55 52 Information SSH task Enable SSH server Mar 09 11 55 52 Information Enable Telnet Mar 09 11 55 40 Information 802 11a 11a Radio Interface Disabled Mar 09 11 55 40 Information 802 11a Trans...

Page 181: ...s enabled using the sntp server enable command the sntp server ip command specifies the time servers from which the access point polls for time updates The access point will poll the time servers in t...

Page 182: ...Example Related Commands sntp server ip 7 33 show sntp 7 36 sntp server date time This command sets the system clock Default Setting 00 14 00 January 1 1970 Command Mode Global Configuration Example...

Page 183: ...the specified period Example This sets daylight savings time to be used from July 1st to September 1st sntp server timezone This command sets the time zone for the access point s internal clock Syntax...

Page 184: ...urs and minutes your time zone is east before or west after of UTC Example show sntp This command displays the current time and configuration settings for the SNTP client Command Mode Exec Example Ent...

Page 185: ...nt s DHCP relay agent Use the no form to disable the agent Syntax no dhcp relay enable Default Setting Disabled Command Mode Global Configuration Command Usage For the DHCP relay agent to function the...

Page 186: ...r ip_address IP address of the server Default Setting Primary and secondary 0 0 0 0 Command Mode Global Configuration Example show dhcp relay This command displays the current DHCP relay configuration...

Page 187: ...cations GC 7 43 snmp server engine id Sets the engine ID for SNMP v3 GC 7 44 snmp server user Sets the name of the SNMP v3 user GC 7 45 snmp server targets Configures SNMP v3 notification targets GC 7...

Page 188: ...tations are able to both retrieve and modify MIB objects Default Setting public Read only access Authorized management stations are only able to retrieve MIB objects private Read write access Authoriz...

Page 189: ...255 characters Default Setting None Command Mode Global Configuration Example Related Commands snmp server contact 7 40 snmp server enable server This command enables SNMP management access and also...

Page 190: ...community string no snmp server host 1 First SNMP host 2 Second SNMP host 3 Third SNMP host 4 Fourth SNMP host host_ip_address IP of the host the targeted recipient host_name Name of the host Range 1...

Page 191: ...1StationReAssociation A client station has successfully re associated with the access point dot11StationRequestFail A client station has failed association re association or authentication dot1xAuthFa...

Page 192: ...diusServerChanged The access point has changed from the primary RADIUS server to the secondary or from the secondary to the primary sysSystemDown The access point is about to shutdown and reboot sysSy...

Page 193: ...aximum Default Setting None Command Mode Global Configuration Command Usage Up to 10 SNMPv3 users can be configured on the access point The SNMP engine ID is used to compute the authentication privacy...

Page 194: ...on md5 or none auth passphrase The user password required when authentication is used 8 32 characters priv proto The encryption type used for SNMP data encryption des or none priv passphrase The user...

Page 195: ...name The defined SNMP v3 user name that is to receive notifications version The SNMP version of notifications Currently only version 3 is supported in this command udp port The UDP port that is used o...

Page 196: ...oint allows up to 10 notification filters to be created Each filter can be defined by up to 20 MIB subtree ID entries Use the command more than once with the same filter ID to build a filter that incl...

Page 197: ...rs filter id A user defined name that identifies an SNMP v3 notification filter Maximum length 32 characters Default Setting None Command Mode Global Configuration Example show snmp groups This comman...

Page 198: ...ser group assignments Syntax show snmp group assignments Command Mode Exec Enterprise AP show snmp groups GroupName RO SecurityModel USM SecurityLevel NoAuthNoPriv GroupName RWAuth SecurityModel USM S...

Page 199: ...A user defined name that identifies an SNMP v3 notification filter Maximum length 32 characters Command Mode Exec Example Enterprise AP show snmp group assignments GroupName RWPriv UserName chris Ente...

Page 200: ...filter assignments This command displays the SNMP v3 notification filter assignments Syntax show snmp filter assignments Command Mode Exec Example Enterprise AP show snmp filter assignments HostID Fi...

Page 201: ...Disabled dot11InterfaceAGFail Enabled dot11InterfaceBFail Enabled dot11StationAssociation Enabled dot11StationAuthentication Enabled dot11StationReAssociation Enabled dot11StationRequestFail Enabled...

Page 202: ...um length for file names is 32 characters Valid characters A Z a z 0 9 _ If the file contains an error it cannot be set as the default file Example Table 7 10 Flash File Commands Command Function Mode...

Page 203: ...ation file from flash memory Default Setting None Command Mode Exec Command Usage The system prompts for data required to complete the copy command Only a configuration file can be uploaded to an FTP...

Page 204: ...e files in flash memory and the one used to boot the access point is deleted be sure you first use the bootfile command to update the application image file booted at startup before you reboot the acc...

Page 205: ...on code file that booted the system Syntax show snmp filter assignments Command Mode Exec Example Column Heading Description File Name The name of the file Type 2 Operation Code and 5 Configuration fi...

Page 206: ...s Default Setting None Table 7 11 RADIUS Client Command Function Mode Page radius server address Specifies the RADIUS server GC 7 58 radius server port Sets the RADIUS server network port GC 7 59 radi...

Page 207: ...ple radius server key This command sets the RADIUS encryption key Syntax radius server secondary key key_string secondary Secondary server key_string Encryption key used to authenticate logon access f...

Page 208: ...lobal Configuration Example radius server timeout This command sets the interval between transmitting authentication requests to the RADIUS server Syntax radius server secondary timeout number_of_seco...

Page 209: ...RADIUS accounting session is automatically started for each user that is successfully authenticated to the access point Example radius server timeout interim This command sets the interval between tr...

Page 210: ...MAC addresses in the form xxxxxx xxxxxx Default Setting No delimiter Command Mode Global Configuration Example radius server vlan format This command sets the format for specifying VLAN IDs on the RA...

Page 211: ...d Mode Exec Example Enterprise AP show radius Radius Server Information IP 0 0 0 0 Port 1812 Key Retransmit 3 Timeout 5 Radius MAC format no delimiter Radius VLAN format HEX Radius Secondary Server In...

Page 212: ...authentication process Uses standard 802 11 authentication for all others required Requires 802 1X authentication for all clients Default Setting Disabled Table 7 12 802 1X Authentication Command Func...

Page 213: ...If 802 1X authentication is not initiated by the station the access point will initiate authentication Only those stations successfully authenticated with 802 1X are allowed to access the network 802...

Page 214: ...sion key Range 0 1440 minutes Default Setting 0 Disabled Command Mode Global Configuration Command Usage Session keys are unique to each client and are used to authenticate a client connection and cor...

Page 215: ...can be enabled Example 802 1x supplicant user This command sets the user name and password used for authentication of the access point when operating as a 802 1X supplicant Use the no form to clear th...

Page 216: ...ec Example Enterprise AP config 802 1x supplicant user WA6102 dot1xpass Enterprise AP config Enterprise AP show authentication Authentication Information MAC Authentication Server DISABLED MAC Auth Se...

Page 217: ...y MAC addresses entered as allowed in the address filtering table are allowed Default allowed Command Mode Global Configuration Example Table 7 13 MAC Address Authentication Command Function Mode Page...

Page 218: ...Mode Global Configuration Command Mode The access point supports up to 1024 MAC addresses An entry in the address table may be allowed or denied access depending on the global setting configured for t...

Page 219: ...reless clients with the RADIUS server during 802 1X authentication Default Disabled Command Mode Global Configuration Example Related Commands address filter entry 7 70 radius server address 7 58 802...

Page 220: ...ng Commands Command Function Mode Page filter local bridge Disables communication between wireless clients GC 7 73 filter ap manage Prevents wireless clients from accessing the management interface GC...

Page 221: ...Clients can communicate with clients associated to other VAP interfaces Default Disabled Command Mode Global Configuration Command Usage This command can disable wireless to wireless communications b...

Page 222: ...in the form xx xx xx xx xx xx A maximum of eight addresses can be added to the filtering table Default Disabled Command Mode Global Configuration Example filter ethernet type enable This command chec...

Page 223: ...ns ARP RARP Berkeley Trailer Negotiation LAN Test X25 Level 3 Banyan CDP DEC XNS DEC MOP Dump Load DEC MOP DEC LAT Ethertalk Appletalk ARP Novell IPX old Novell IPX new EAPOL Telxon TXP Aironet DDP En...

Page 224: ...nk MAC access control list 00 12 34 56 78 9a Enabled Protocol Filters No protocol filters are enabled Enterprise AP Command Function Mode Page bridge role Selects the bridge operation mode for a radio...

Page 225: ...en the access point is operating in this mode traffic is not forwarded to the Ethernet port from the radio interface Up to four WDS bridge links MAC addresses per radio interface can be specified for...

Page 226: ...hexadecimal digits in the form xx xx xx xx xx xx Default Setting None Command Mode Interface Configuration Wireless Command Usage In root bridge mode up to six child bridge links can be specified usi...

Page 227: ...seconds Command Mode Global Configuration Command Usage If the MAC address of an entry in the address table is not seen on the associated interface for longer than the aging time the entry is discarde...

Page 228: ...nd Mode Exec Enterprise AP show bridge filter entry max entry numbers 512 current entry nums 13 Bridge MAC Addr Table MAC Port Fwd_type VlanID origin life remain Life Type 01 80 c2 00 00 00 0 5 4095 3...

Page 229: ...d priority 0 path cost 19 message age Timer Inactive message age 4469 designated root priority 32768 MAC 00 30 F1 F0 9A 9C designated cost 0 designated bridge priority 32768 MAC 00 30 F1 F0 9A 9C desi...

Page 230: ...e Page bridge stp enable Enables the Spanning Tree feature GC 7 82 bridge stp forwarding delay Configures the spanning tree bridge forward time GC 7 83 bridge stp hello time Configures the spanning tr...

Page 231: ...must receive information about topology changes before it starts to forward frames In addition each port needs time to listen for conflicting information that would make it return to the discarding s...

Page 232: ...sage before attempting to reconfigure All device ports except for designated ports should receive configuration messages at regular intervals Any port that ages out STP information provided in the las...

Page 233: ...r the port Range 1 65535 Default Setting 19 Command Mode Interface Configuration Command Usage This command is used by the Spanning Tree Protocol to determine the best path between devices Therefore l...

Page 234: ...ds bridge link path cost 7 85 show bridge stp This command displays aging time and spanning tree settings for the Ethernet and wireless interfaces Syntax show bridge stp Command Mode Exec Example Ente...

Page 235: ...mmand Function Mode Page interface ethernet Enters Ethernet interface configuration mode GC 7 87 dns primary server Specifies the primary name server IC E 7 88 dns secondary server Specifies the secon...

Page 236: ...servers are queried in sequence Example This example specifies two domain name servers Related Commands show interface ethernet 7 91 ip address This command sets the IP address for the access point U...

Page 237: ...ll not be accepted by the configuration program Example Related Commands ip dhcp 7 89 ip dhcp This command enables the access point to obtain an IP address from a DHCP server Use the no form to restor...

Page 238: ...ntax speed duplex auto 10MH 10MF 100MF 100MH auto autonegotiate speed and duplex mode 10MH Forces 10 Mbps half duplex operation 10MF Forces 10 Mbps full duplex operation 100MH Forces 100 Mbps half dup...

Page 239: ...o disable the Ethernet port due to abnormal behavior e g excessive collisions and reenable it after the problem has been resolved You may also want to disable the Ethernet port for security reasons Ex...

Page 240: ...terface configuration mode IC W 7 94 speed Configures the maximum data rate at which the access point transmits unicast packets IC W 7 95 turbo Configures turbo mode to use a faster data rate IC W a 7...

Page 241: ...description Adds a description to the wireless interface IC W VAP 7 105 ssid Configures the service set identifier IC W VAP 7 106 closed system Opens access to clients without a pre configured SSID IC...

Page 242: ...To specify the 802 11a interface enter the following command vap This command provides access to the VAP Virtual Access Point interface configuration mode Syntax vap vap id vap id The number that ide...

Page 243: ...refer to the table for maximum distances on page C 6 When turbo mode is enabled page 7 106 for 802 11a the effective maximum speed specified by this command is double the entered value e g setting th...

Page 244: ...sed to 40 MHz to support the increased data rate However this reduces the number of channels supported e g 5 channels for the United States Example multicast data rate This command configures the maxi...

Page 245: ...ne the number of channels that are available When multiple access points are deployed in the same area be sure to choose a channel separated by at least two channels for 802 11a to avoid having the ch...

Page 246: ...g b b only mode Both 802 11b and 802 11g clients can communicate with the access point but 802 11g clients can only transfer data at 802 11b standard rates up to 11 Mbps g g only mode Only 802 11g cli...

Page 247: ...ccess point can support all 802 11b and 802 11g clients Example antenna control This command selects the use of two diversity antennas or a single antenna for the radio interface Syntax antenna contro...

Page 248: ...tenna or an optional external antenna Syntax antenna id antenna id antenna id Specifies the ID number of an approved antenna that is connected to the access point Range 0x0000 0xFFFF Default Setting 0...

Page 249: ...cation ensures that the access point only uses radio channels that are permitted in the country of operation Example beacon interval This command configures the rate at which beacon signals are transm...

Page 250: ...p stations that are using Power Save mode The DTIM is the interval between two synchronous frames with broadcast multicast information The default value of 2 indicates that the access point will save...

Page 251: ...ccessful transmission due to smaller frame size If there is significant interference present or collisions due to high network utilization try setting the fragment size to send smaller fragments This...

Page 252: ...to notify the sending station that it can start sending data Access points contending for the wireless medium may not be aware of each other The RTS CTS mechanism can solve this Hidden Node problem Ex...

Page 253: ...m throughput ranges between 40 to 60 Mbps for connections to Atheros compatible clients Example description This command adds a description to a the wireless interface Use the no form to remove the de...

Page 254: ...IDs to the same as that of the access point Example closed system This command prohibits access to clients without a pre configured SSID Use the no form to disable this feature Syntax closed system no...

Page 255: ...is disassociated from the VAP interface Syntax assoc timeout interval minutes minutes The number of minutes of inactivity before disassociation Range 5 60 Default Setting 30 Command Mode Interface Co...

Page 256: ...terface Syntax shutdown no shutdown Default Setting Interface enabled Command Mode Interface Configuration Wireless VAP Command Usage You must first enable VAP interface 0 before you can enable VAP in...

Page 257: ...ection Method CTS only Transmit Power FULL 16 dBm Max Station Data Rate 54Mbps Multicast Data Rate 5 5Mbps Fragmentation Threshold 2346 bytes RTS Threshold 2347 bytes Beacon Interval 100 TUs Authentic...

Page 258: ...10 AIFSN 3 Admission Control No TXOP Limit 0 000 ms AC1 Background logCwMin 4 logCwMax 10 AIFSN 7 Admission Control No TXOP Limit 0 000 ms AC2 Video logCwMin 3 logCwMax 4 AIFSN 2 Admission Control No...

Page 259: ...A VAP 0 802 11a Channel 60 No 802 11a Channel Stations if wireless G VAP 0 802 11g Channel 1 802 11g Channel Station Table Station Address 00 04 23 94 9A 9C VLAN ID 0 Authenticated Associated Forward...

Page 260: ...on of nearby access points Use the no form to disable periodic detection Syntax no rogue ap enable Default Setting Disabled Command Mode Interface Configuration Wireless Command Usage While the access...

Page 261: ...icate Default Setting Disabled Command Mode Interface Configuration Wireless Command Usage Enabling authentication in conjunction with a database of approved access points stored on a RADIUS server al...

Page 262: ...time A long scan duration time will detect more access points in the area but causes more disruption to client access Example Related Commands rogue ap interval 7 114 rogue ap interval This command s...

Page 263: ...ue APs wireless clients will not be able to connect to the access point Therefore avoid frequent scanning or scans of a long duration unless there is a reason to believe that more intensive scanning i...

Page 264: ...9d a7 WLAN1AP 1 2412 MHz 12 ESS 0 0 00 30 f1 fb 31 f4 WLAN 6 2437 MHz 16 ESS 0 0 Enterprise AP Table 7 19 Wireless Security Commands Command Function Mode Page auth Defines the 802 11 authentication...

Page 265: ...are accepted for authentication wpa2 psk Clients using WPA2 with a Pre shared Key are accepted for authentication wpa wpa2 mixed Clients using WPA or WPA2 are accepted for authentication wpa wpa2 psk...

Page 266: ...nd be available in the wired network If a WPA WPA2 Pre shared Key mode is selected WPA PSK WPA2 PSK or WPA WPA2 PSK mixed the key must first be generated and distributed to all wireless clients before...

Page 267: ...ore secure data transmissions enable encryption with this command and set at least one static WEP key with the key command The WEP settings must be the same on each client in your wireless network Not...

Page 268: ...less Command Usage To enable Wired Equivalent Privacy WEP use the auth shared key command to select the shared key authentication type use the key command to configure at least one key and use the tra...

Page 269: ...t data signals that it sends to client devices Other keys can be used for decryption of data from clients When using IEEE 802 1X the access point uses a dynamic key to encrypt unicast and broadcast me...

Page 270: ...ny clients supported by the access point are not WPA enabled the multicast cipher algorithm must be set to WEP WEP is the first generation security protocol used to encrypt data crossing the wireless...

Page 271: ...mode hardware software hardware Uses hardware to calculate the MIC software Uses software to calculate the MIC Default Setting software Command Mode Interface Configuration Wireless Command Usage The...

Page 272: ...command to specify the authentication type and use the wpa preshared key command to specify one static key If WPA or WPA2 is used with pre shared key mode all wireless clients must be configured with...

Page 273: ...command enables WPA2 pre authentication for fast secure roaming Syntax pre authentication enable disable enable Enables pre authentication for the VAP interface disable Disables pre authentication for...

Page 274: ...nterfaces forcing clients to find and associate with another access point When the connection to the host is restored the access point re enables the radio interfaces Enterprise AP if wireless g VAP 0...

Page 275: ...the number of failed responses either the host does not respond or is unreachable exceeds the limit set by the link integrity ping fail retry command the link is determined as lost Example link integ...

Page 276: ...before the link is determined as lost Syntax link integrity ping fail retry counts counts The number of failed Ping counts before the link is determined as lost Range 1 10 Default Setting 6 Command Mo...

Page 277: ...guration Command Mode Exec Example Enterprise AP config link integrity ethernet detect Notification Ethernet Link Detect SUCCESS RADIO S ENABLED Enterprise AP config Enterprise AP show link integrity...

Page 278: ...oaming between different 802 11f compliant access points Use the no form to disable 802 11f signaling Syntax no iapp Default Enabled Command Mode Global Configuration Command Usage The current 802 11...

Page 279: ...does not include a VLAN tag To maintain network connectivity to the access point and wireless clients be sure that the access point is connected to a device port on a wired network that supports IEEE...

Page 280: ...vlan id vlan id Management VLAN ID Range 1 4094 Default Setting 1 Command Mode Global Configuration Command Usage The management VLAN is for managing the access point For example the access point allo...

Page 281: ...WMM Commands The access point implements QoS using the Wi Fi Multimedia WMM standard Using WMM the access point is able to prioritize traffic and optimize performance when multiple applications compet...

Page 282: ...owledge policy This command allows the acknowledgement wait time to be enabled or disabled for each Access Category AC Syntax wmm acknowledge policy ac_number ack noack ac_number Access categories Ran...

Page 283: ...contention window This is the initial upper limit of the random backoff wait time before wireless medium access can be attempted The initial wait time is a random value between zero and the LogCwMin...

Page 284: ...MM Parameters AC0 Best Effort AC1 Background AC2 Video AC3 Voice LogCwMin 4 4 3 2 LogCwMax 10 10 4 3 AIFS 3 7 2 2 TXOP Limit 0 0 94 47 Admission Control Disabled Disabled Disabled Disabled BSS Paramet...

Page 285: ...ice Set ESS are configured to the same SSID and authentication method 2 If the access point cannot be configured using the Telnet a web browser or SNMP software Be sure to have configured the access p...

Page 286: ...uration by pressing the reset button on the back panel for 5 seconds or more Then use the default user name admin and password smcadmin to access the management interface 5 If all other recovery measu...

Page 287: ...The following figure illustrates how the pins on the RJ 45 connector are numbered Be sure to hold the connectors in the same orientation when attaching the wires to the pins 10 100BASE TX Pin Assignm...

Page 288: ...Table B 1 10 100BASE TX MDI Port Pinouts Pin MDI Signal Name 1 Transmit Data plus TD 2 Transmit Data minus TD 3 Receive Data plus RD 4 GND Positive Vport 5 GND Positive Vport 6 Receive Data minus RD...

Page 289: ...Assignments The DB 9 console port on the front panel of the access point is used to connect to the access point for out of band console configuration The command line configuration program can be acc...

Page 290: ...ceive data 5 Unused 1 Unused 6 Unused 9 Unused 7 RTS request to send 8 CTS clear to send 8 CTS clear or send 7 RTS request to send 9 Unused 6 Unused Note The left hand column pin assignments are for t...

Page 291: ...ance 10 13 MKK 1 14 Taiwan 1 11 Maximum Clients 64 per VAP interface Operating Range See Operating Range on page C 6 Data Rate 802 11a Normal Mode 6 9 12 18 24 36 48 54 Mbps per channel Turbo Mode 12...

Page 292: ...input 48 VDC 0 2 A maximum Power consumption 9 6 W maximum PoE DC Input voltage 48 volts 0 2 A 12 96 watts Note Power can also be provided to the access point through the Ethernet port based on IEEE 8...

Page 293: ...Signal Certification FCC Part 15C 15 247 15 207 2 4 GHz FCC part 15E 15 407 5 GHz RSS 210 Canada EN 301 893 EN 300 328 EN 301 489 1 EN 301 489 17 MPT RCR std 33 D33 1 13 Channel T66 Channel 14 Safety...

Page 294: ...87 87 QPSK 12 Mbps 86 86 86 86 QPSK 18 Mbps 84 84 84 84 16 QAM 24 Mbps 82 81 81 81 16 QAM 36 Mbps 80 79 78 78 64 QAM 48 Mbps 73 73 73 73 64QAM 54 Mbps 70 70 69 67 IEEE 802 11g Data Rate Sensitivity dB...

Page 295: ...17 17 17 36 Mbps 17 17 17 17 48 Mbps 17 17 17 17 54 Mbps 12 17 17 16 IEEE 802 11g Maximum Output Power GHz dBm Data Rate 2 412 2 417 2 467 2 472 6 Mbps 20 20 18 9 Mbps 20 20 18 12 Mbps 20 20 18 18 Mbp...

Page 296: ...30 m 99 ft 40 m 131 ft 85 m 279 ft 250 m 820 ft 310 m 1016 ft 400 m 1311 ft 445 m 1459 ft 455 m 1492 ft 465 m 1525 ft 510 m 1672 ft Indoors2 15 m 49 5 ft 20 m 66 ft 25 m 82 ft 35 m 115 ft 40 m 131 ft...

Page 297: ...tion algorithm that implements symmetric key cryptography AES provides very strong encryption using a completely different ciphering algorithm to TKIP and WEP Authentication The process to verify the...

Page 298: ...ice Set ESS More than one wireless cell can be configured with the same Service Set Identifier to allow mobile users can roam between different cells with the Extended Service Set Extensible Authentic...

Page 299: ...the wireless signaling required to ensure the successful handover of wireless clients roaming between different 802 11f compliant access points Local Area Network LAN A group of interconnected comput...

Page 300: ...NOT be enabled Service Set Identifier SSID An identifier that is attached to packets sent over the wireless LAN and functions as a password for joining a particular radio cell i e Basic Service Set B...

Page 301: ...adio spectrum Virtual LAN VLAN A Virtual LAN is a collection of network nodes that share the same collision domain regardless of their physical location or connection point in the network A VLAN serve...

Page 302: ...Glossary 6 Glossary...

Page 303: ...7 40 community string 6 40 7 40 configuration settings saving or restoring 6 32 7 55 configuration initial setup 5 1 console port 1 4 connecting 2 2 pin assignments B 3 required settings 5 1 country...

Page 304: ...rastructure wireless bridge 4 5 wireless repeater 4 6 initial setup 5 1 installation hardware 2 1 3 1 location considerations 3 1 mounting 2 1 IP address BOOTP DHCP 7 88 7 89 configuring 5 2 6 5 7 88...

Page 305: ...mmunity string 7 40 enabling traps 6 40 7 41 trap destination 6 40 7 42 trap manager 6 40 7 42 SNTP 6 36 7 33 enabling client 6 36 7 33 server 6 36 7 33 software displaying version 6 30 6 86 7 23 down...

Page 306: ...on 6 52 7 131 native ID 6 52 W WEP 6 74 configuring 6 74 shared key 6 75 7 120 Wi Fi Multimedia See WMM Wi Fi Protected Access See WPA Wired Equivalent Protection See WEP WPA 6 79 pre shared key 6 82...

Page 307: ......

Page 308: ...EUTSCH Technischer Support und weitere Information unter www smc com SPANISH En www smc com Ud podr encontrar la informaci n relativa a servicios de soporte t cnico DUTCH Technische ondersteuningsinfo...

Reviews:

No comments

Related manuals for 2555W-AG2

Qongle 1 Quick Start Manual preview
1
Brand: Qongle Pages: 13
IDENTEC SOLUTIONS IDS1000 Hardware User Manual preview
IDS1000
Brand: IDENTEC SOLUTIONS Pages: 17
D-Link DAP-1365 Setup Procedure preview
DAP-1365
Brand: D-Link Pages: 3
Watchguard AP100 Hardware Manual preview
AP100
Brand: Watchguard Pages: 26
Wavion WS410 Installation Manual preview
WS410
Brand: Wavion Pages: 66
D-Link DAP-1320 Manual preview
DAP-1320
Brand: D-Link Pages: 4
D-Link DWL-8600AP Reference Manual preview
DWL-8600AP
Brand: D-Link Pages: 36
D-Link DWL-8600AP Administrator'S Manual preview
DWL-8600AP
Brand: D-Link Pages: 135
D-Link AirPremier N DAP-3690 Quick Install Manual preview
AirPremier N DAP-3690
Brand: D-Link Pages: 8
D-Link AirPremier N DAP-2360 Quick Install Manual preview
AirPremier N DAP-2360
Brand: D-Link Pages: 12
D-Link AirPremier N DAP-3690 Reference Manual preview
AirPremier N DAP-3690
Brand: D-Link Pages: 23
D-Link AirPremier N DAP-2690 Quick Install Manual preview
AirPremier N DAP-2690
Brand: D-Link Pages: 52
D-Link AirPlus DWL-900AP+ Manual preview
AirPlus DWL-900AP+
Brand: D-Link Pages: 64
D-Link DWL-1000AP Quick Install Manual preview
DWL-1000AP
Brand: D-Link Pages: 8
D-Link DAP-1155 Quick Install Manual preview
DAP-1155
Brand: D-Link Pages: 3
D-Link Air Premier DAP-2695 Command Line Interface Reference Manual preview
Air Premier DAP-2695
Brand: D-Link Pages: 39
D-Link Rangebooster N 650 Access Point DAP-1353 User Manual preview
Rangebooster N 650 Access Point DAP-1353
Brand: D-Link Pages: 67
D-Link myPocket DIR-457 File Sharing User Manual preview
myPocket DIR-457
Brand: D-Link Pages: 4

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

ABB AEG Acer Asus Beko Black & Decker Bosch Brother Candy Canon Cisco Craftsman D-Link DeWalt Dell Electrolux Emerson Epson Frigidaire Fujitsu GE HP Haier Hitachi Honeywell Huawei Husqvarna JVC Kenmore Kenwood KitchenAid LG Lenovo Makita Miele Mitsubishi Electric Motorola NEC Nikon Nokia Panasonic Philips Pioneer Samsung Sanyo Sharp Siemens Sony TP-Link Toshiba Whirlpool Xiaomi Yamaha Zanussi Load more brands