manualshive.com logo in svg

Xirrus XR-520, User Manual

Share
Download
Xirrus XR-520 User Manual Download Page 72

Wireless Array

50

Installing the Wireless Array

 Security Planning

This section offers some useful guidelines for defining your preferred encryption 
and authentication method. For additional information, see 

“Understanding 

Security” on page 214

 and the 

Security

 section of 

“Frequently Asked Questions” 

on page 492

Wireless Encryption

Encryption ensures that no user can decipher another user’s data transmitted 
over the airwaves. There are three encryption options available to you, including:

WEP-40bit or WEP-128bit

Because WEP is vulnerable to cracks, we recommend that you only use 
this for legacy devices that cannot support a stronger encryption type.

Wi-Fi Protected Access (WPA)

This is much more secure than WEP and uses TKIP for encryption.

Wi-Fi Protected Access (WPA2) with AES

 

This is government-grade encryption — available on most new client 
adapters 

— 

and uses the AES–CCM encryption mode (Advanced 

Encryption Standard–Counter Mode).

Authentication

Authentication ensures users are who they say they are, and occurs when users 
attempt to join the wireless network and periodically thereafter. The following 
authentication methods are available with the Wireless Array:

RADIUS 802.1x 

802.1x uses a remote RADIUS server to authenticate large numbers of 
clients, and can handle different authentication methods (EAP-TLS, EAP-
TTLS, EAP-PEAP, and EAP-LEAP Passthrough). Administrators may 
also be authenticated via RADIUS when preferred, or to meet particular 
security standards. 

Xirrus Internal RADIUS server

Recommended for smaller numbers of users (about 100 or less). Supports 
EAP-PEAP only

Summary of Contents for XR-520

Page 1: ...High Performance Wireless Networks Wireless Arrays and Access Points USER S GUIDE XR Series March 10 2014 Release 6 7...

Page 2: ......

Page 3: ...eserved This document may not be reproduced or disclosed in whole or in part by any means without the written consent of Xirrus Inc Part Number 800 0022 001 Revision J Wireless Arrays and Access Point...

Page 4: ...ers Please see Legal Notices Warnings Compliance Statements and Warranty and License Agreements in Appendix C Notices Arrays except XR 500 600 and H Models on page 511 Xirrus Inc 2101 Corporate Center...

Page 5: ...rays 10 Enterprise Class Security 11 Deployment Flexibility 11 Power over Gigabit Ethernet PoGE 12 Enterprise Class Management 13 Key Features and Benefits 14 High Capacity and High Performance 14 Ext...

Page 6: ...city and Cell Sizes 32 Fine Tuning Cell Sizes 33 Roaming Considerations 34 Allocating Channels 34 About IEEE 802 11ac 37 Up to Eight Simultaneous Data Streams Spatial Multiplexing 39 MIMO Multiple In...

Page 7: ...g 68 Zero Touch Provisioning and Ongoing Management 69 XMS Cloud Next Generation XMS 9500 CL x 69 XMS Enterprise 69 If you are not using XMS 70 Array AP Management Interfaces 71 User Interfaces CLI WM...

Page 8: ...tatus 105 Routing Table 106 ARP Table 106 DHCP Leases 107 Connection Tracking NAT 107 CDP Neighbors 108 Network Assurance 109 Undefined VLANs 110 RF Monitor Windows 111 IAPs 112 Spectrum Analyzer 113...

Page 9: ...iguring the Wireless Array 157 Express Setup 159 Network 165 Network Interfaces 166 Network Interface Ports 167 Bonds and Bridging 169 DNS Settings 176 CDP Settings 177 Services 179 Time Settings NTP...

Page 10: ...Access Control List 234 Global Settings 236 External Radius 240 About Creating User Accounts on the RADIUS Server 241 Internal Radius 244 Active Directory 246 Rogue Control List 250 OAuth 2 0 Managem...

Page 11: ...l Settings 11ac 325 Global Settings 11u 327 Understanding 802 11u 327 Advanced RF Settings 333 About Standby Mode 334 RF Monitor 334 RF Resilience 335 RF Power Sensitivity 336 RF Spectrum Management 3...

Page 12: ...User Procedure for Wireless Access 382 Using Tools on the Wireless Array 385 System Tools 386 About Licensing and Upgrades 387 System 388 Automatic Updates from Remote Image or Configuration File 390...

Page 13: ...ompt 413 configure Commands 414 show Commands 417 statistics Commands 420 Configuration Commands 422 acl 422 admin 423 auth 424 cdp 424 clear 426 cluster 428 contact info 429 date time 430 dhcp server...

Page 14: ...SID using WPA PEAP 469 Enabling Global IAPs 470 Disabling Global IAPs 471 Enabling a Specific IAP 472 Disabling a Specific IAP 473 Setting Cell Size Auto Configuration for All IAPs 474 Setting the Cel...

Page 15: ...00 Enabling Monitoring on the Array 500 How Monitoring Works 500 Radio Assurance 501 Radio Assurance Options 502 RADIUS Vendor Specific Attribute VSA for Xirrus 503 Location Service Data Formats 504 E...

Page 16: ...ective 1999 5 EC Compliance Information 537 Compliance Information Non EU 544 Safety Warnings 545 Translated Safety Warnings 546 Software License and Product Warranty Agreement 547 Hardware Warranty A...

Page 17: ...e 16 Allocating Channels Manually 36 Figure 17 Spatial Multiplexing 39 Figure 18 MIMO Signal Processing 40 Figure 19 MU MIMO with Four Antennas 41 Figure 20 Physical Layer Data Encoding 42 Figure 21 C...

Page 18: ...in Login History 100 Figure 50 Network Settings 101 Figure 51 Network Map 102 Figure 52 Spanning Tree Status 105 Figure 53 Routing Table 106 Figure 54 ARP Table 106 Figure 55 DHCP Leases 107 Figure 56...

Page 19: ...e 86 Filter Statistics 143 Figure 87 Station Statistics 144 Figure 88 Individual Station Statistics Page 145 Figure 89 Application Control 148 Figure 90 Application Control Pie Charts 150 Figure 91 Ap...

Page 20: ...Tunnel SSID Assignments 211 Figure 126 Security 213 Figure 127 Import Xirrus Certificate Authority 217 Figure 128 Admin Management 219 Figure 129 Admin Privileges 221 Figure 130 Admin RADIUS 224 Figu...

Page 21: ...rocessing 300 Figure 160 Additional Optimization Settings 306 Figure 161 Global Settings 11an 311 Figure 162 Global Settings 11bgn 316 Figure 163 Global Settings 11n 322 Figure 164 Global Settings 11a...

Page 22: ...Documentation Toolbar 405 Figure 199 WMI Display Options 406 Figure 200 Login Window 407 Figure 201 Logging In 410 Figure 202 Help Window 411 Figure 203 Full Help 412 Figure 204 Partial Help 412 Figu...

Page 23: ...XR Series The Xirrus family of products includes the following The XR Series of Xirrus Wireless Arrays The newest Xirrus Wireless Arrays have been completely redesigned to provide distributed intellig...

Page 24: ...cking One two and eight port PoGE injectors are also available for a range of Array power requirements Nomenclature Throughout this User s Guide Xirrus Wireless Arrays and Access Points are referred t...

Page 25: ...have come to expect from their networks The technology is being driven by these major IEEE standards 802 11ac Operates in the 5 GHz range using a number of advanced techniques to achieve a maximum spe...

Page 26: ...achieve up to 1 3 Gbps throughput Figure 2 Wireless Array XR Series The Wireless Array regardless of the product model is Wi Fi compliant and simultaneously supports 802 11ac 802 11a 802 11b 802 11g...

Page 27: ...ted locations These models have an integrated controller firewall threat sensor and spectrum analyzer These models have omni directional antennas rather than directional antennas Feature XR 520 No rad...

Page 28: ...directional antennas The XR 630 supports a unique feature that optimizes wireless performance by automatically segmenting faster 802 11ac clients from slower Wi Fi clients Since Wi Fi is a shared medi...

Page 29: ...physically separated locations The elliptical shaped coverage pattern produced by its directional antennas is ideal for covering facilities with central hallways and adjacent rooms commonly found in o...

Page 30: ...n onboard multi gigabit switch controller firewall threat sensor and spectrum analyzer on a modular chassis designed for extensibility Some smaller Arrays APs have less memory XR 500 1000 Series and X...

Page 31: ...rts and four or eight radios IAPs connecting up to 1920 users at one time and offering a maximum wireless bandwidth of 3 6 Gbps up to 450 Mbps per radio Smaller models may be upgraded to eight radios...

Page 32: ...y with an optional Xirrus 10 Gig fiber optics adapter See Also Key Features and Benefits Wireless Array Product Overview Power over Gigabit Ethernet PoGE Feature XR 6820 XR 6830 XR 7220 XR 7230 XR 762...

Page 33: ...monitoring and RF spectrum analysis are performed in the background by the Array automatically Deployment Flexibility Xirrus unique multi radio architecture on all Arrays except the XR 500 Series gen...

Page 34: ...wer over Gigabit Ethernet PoGE Some smaller Arrays and APs XR 2000 models ending in 5 and XR 500 600 Series are compatible with IEEE802 3af and or IEEE802 3at PoE and may be connected to appropriate p...

Page 35: ...WMI The WMI enables easy configuration and control from a graphical console plus a full complement of troubleshooting tools and statistics Figure 5 WMI Array Status In addition a fully featured Comma...

Page 36: ...includes four Gigabit uplink ports for connection to the wired network Its sixteen IAPs radios provide a maximum wireless capacity of 7 2 Gbps which offers ample reserves for the high demands of curr...

Page 37: ...ncreased wireless range and enhanced data rates in all directions With a Wireless Array deployed far fewer access points are needed and wired like resiliency is delivered throughout your wireless netw...

Page 38: ...Delivers 180 wireless coverage with 3 dBi of gain 802 11a b g n monitor only Delivers 360 wireless coverage with 2 dBi of gain Non Overlapping Channels Complete use of non overlapping channels limits...

Page 39: ...zation tasks Powerful Management The Xirrus Management System XMS offers real time monitoring and management capabilities for the wireless network Secure Wireless Access Multiple layers of authenticat...

Page 40: ...ay s wireless infrastructure is faced with ever increasing numbers and variations of wireless enabled clients whether in the form of notebooks netbooks smart phones IP phones printers projectors camer...

Page 41: ...attacks eavesdropping etc As bring your own device BYOD becomes ubiquitous in enterprise networks defending against these threats becomes more critical With the Array s threat sensor radio scanning a...

Page 42: ...their changing environments The distributed architecture of the Array enables the execution of powerful wireless and networking analysis at the edge of the network where packets traverse the wireless...

Page 43: ...ss oriented applications such as BitTorrent You can increase the priority of mission critical applications like VoIP and WebEx See Application Control Windows on page 146 for more information About th...

Page 44: ...tools provided in the Web Management Interface It includes procedures for upgrading the system firmware uploading and downloading configurations and other files using diagnostic tools and resetting t...

Page 45: ...Index The index is a valuable information search tool Use the index to locate specific topics discussed in this User s Guide Simply click on any page number in the index to jump to the referenced top...

Page 46: ...Wireless Array 24 Introduction Product Specifications Please refer to the Xirrus web site for the latest specifications for these Arrays www xirrus com...

Page 47: ...s Arrays and APs are powered via Xirrus supplied Power over Gigabit Ethernet PoGE supplies power over the same Cat 5e or Cat 6 cable used for data thus reducing cabling and installation effort PoGE po...

Page 48: ...tatic route for management as described in the warning above Serial connection capability A serial port console is present on all Arrays APs except XR 500 600 1000 Series and some XR 2000 models where...

Page 49: ...es for small or large Wireless Array deployments External RADIUS server Although your Array comes with an embedded RADIUS server for 802 1x authentication in large deployments you may want to add an e...

Page 50: ...ts on page 52 Network Management Planning on page 56 WDS Planning on page 57 Common Deployment Options on page 60 General Deployment Considerations The Wireless Array s unique multi radio architecture...

Page 51: ...ice For example a wall that is 1 5 feet thick half a meter at 90 is actually almost 3 feet thick or 1 meter when viewed at a 45 angle At an acute 2 degree angle the same wall is over 42 feet or 14 met...

Page 52: ...om electrical devices or appliances that generate RF noise Because the Array is generally mounted on ceilings be aware of its position relative to lighting especially fluorescent lighting we recommend...

Page 53: ...disabling individual sectors Full Normal Coverage In normal operation the Array provides a full 360 degrees of coverage Figure 10 Full Normal Coverage Half Coverage Figure 11 Adjusting RF Patterns If...

Page 54: ...number of Arrays available at the location The capacity of a cell is defined as the minimum data rate desired for each sector multiplied by the total number of sectors being used Figure 13 Connection...

Page 55: ...nizational boundary Auto Cell uses communication between Arrays to dynamically set radio power so that complete coverage is provided to all areas yet at the minimum power level required This helps to...

Page 56: ...ately 10 15 to accommodate client roaming Figure 15 Overlapping Cells Allocating Channels Because the Wireless Array is a multi channel device allocating the best channels to radios is important if pe...

Page 57: ...o come up for the first time and not interfere with existing equipment that may be already running thereby limiting co channel interference More accurately tunes the RF characteristics of a wireless i...

Page 58: ...er radio basis though manual selection is not recommended and not necessary Figure 16 Allocating Channels Manually See Also Failover Planning Installation Prerequisites To avoid co channel interferenc...

Page 59: ...vidually configurable to different modes or groups of modes such as 802 11a 11b 11g and 11n Xirrus optimizes 802 11ac performance further with ACExpress This innovation intelligently separates high sp...

Page 60: ...es on page 44 ACExpress on page 45 It is important to consider 80 MHz and 160 MHz Channel Widths Bonding when planning your deployment since it contributes greatly to 802 11ac s speed improvements and...

Page 61: ...plexing The date rate increases directly with the number of transmit antennas used Note that mobile devices in the near future will support up to three or four streams at most with many supporting les...

Page 62: ...n the same channel With spatial multiplexing in 802 11ac up to 8 data streams may be concurrently transmitted MU MIMO s innovation allows the streams to be split between multiple devices at once With...

Page 63: ...1 station w 2 antennas or 2 stations w 1 antenna 3 1 station w 3 antennas or 1 station w 2 antennas 1 station w 1 antenna or 3 stations w 1 antenna 4 1 station w 4 antennas or 2 stations w 2 antennas...

Page 64: ...nveys 8 bits per symbol for a 33 increase in throughput vs the highest 802 11n data rate You may select the highest Modulation and Coding Scheme MCS level allowed with 1 2 or 3 Spatial Streams see the...

Page 65: ...nce you are using multiple channels for an IAP 802 11ac allows creation of 20 40 80 or 160 MHz wide channels The 160MHz channel can also be a combination of two non contiguous 80MHz channels 80 80 Alt...

Page 66: ...igure 22 shows the maximum Frequency Channel Number 36 5150MHz Channel Bandwidth 5250MHz 5350MHz 40 44 48 52 60 56 64 20MHz 40MHz 80MHz 160MHz 2 20MHz bonded channels 2 40MHz bonded channels 2 80MHz b...

Page 67: ...us will take four times as much air time for a given amount of data This takes available bandwidth away from faster clients reducing their performance significantly ACExpress intelligently separates c...

Page 68: ...ligence at the edge of the network may be a more scalable solution avoiding single points of failure More power Multi antenna APs handling 802 11ac speeds will likely require more power Power planning...

Page 69: ...it ports Figure 23 Port Failover Protection In addition the Array has full failover protection between the bonded pair Gigabit ports see following table The Wireless Array Gigabit Ethernet ports actua...

Page 70: ...event of a switch failure you can connect Arrays having multiple Gigabit ports to more than one Ethernet switch not a hub Figure 24 Switch Failover Protection See Also Coverage and Capacity Planning...

Page 71: ...t 6 cables to the Array without running power cables see Figure 4 on page 12 Specific models of the Array are compatible with specific PoGE modules For details please see the Power over Gigabit Ethern...

Page 72: ...ch more secure than WEP and uses TKIP for encryption Wi Fi Protected Access WPA2 with AES This is government grade encryption available on most new client adapters and uses the AES CCM encryption mode...

Page 73: ...list of client adapter MAC addresses that are allowed or denied access to the wireless network and can be used in addition to any of the above authentication methods ACLs are good for embedded device...

Page 74: ...rt requirements are illustrated in Figure 25 XMS requires ports 161 162 and 443 to be passed between Arrays and the XMS server Similarly port 9443 is required for communication between the XMS server...

Page 75: ...TFTP Server No 123 udp NTP NTP Server No 161 udp SNMP XMS Server No 162 udp SNMP Traphost Note Up to four Traphosts may be configured XMS Server Yes but required by XMS 443 tcp HTTPS WMI WPR Client Y...

Page 76: ...2000 tcp XMS Back end Server Internal No 3306 tcp MySQL Database Internal No 8001 tcp Status Viewer Internal No 8007 tcp Tomcat Shutdown Internal During installation 8009 tcp Web Container Internal Du...

Page 77: ...Wireless Array Installing the Wireless Array 55 See Also Management Control External Radius Services VLAN Management...

Page 78: ...atures Globally manage large numbers of Arrays Seamless view of the entire wireless network Easily configure large numbers of Arrays Rogue AP monitoring Easily manage system wide firmware updates Moni...

Page 79: ...ee Figure 26 WDS features include One to three IAPs may be used to form a single WDS link yielding up to 1350 Mbps bandwidth per link Up to three different WDS links may be created on a single Array A...

Page 80: ...y Figure 27 A Multiple Hop WDS Connection Multiple WDS links can provide link redundancy failover capability see Figure 28 A network protocol Spanning Tree Protocol STP prevents Arrays from forming ne...

Page 81: ...ame way that a station associates to an IAP The client side of the link must be configured with the root MAC address of the target host Array A WDS Host Link acts like an IAP by allowing one WDS Clien...

Page 82: ...tion Number of Wireless Arrays One or Two Three or More Power Power over Gigabit Ethernet Power over Gigabit Ethernet UPS backup recommended Failover Recommended Highly recommended VLANs Optional Opti...

Page 83: ...XMS customers will skip the last two steps Figure 29 Installation Workflow See Also Coverage and Capacity Planning Common Deployment Options Determine the number of Arrays needed Choose the location...

Page 84: ...Wireless Array 62 Installing the Wireless Array Failover Planning Installation Prerequisites Planning Your Installation Power Planning Wireless Array Product Overview Security Planning...

Page 85: ...location for the Array that will provide the best results for your needs The Wireless Array was designed to be mounted on a ceiling where the unit is unobtrusive and wireless transmissions can travel...

Page 86: ...crossover Network Arrays and APs all have at least one PoGE port to supply power and data over the same cable Many models have additional gigabit ports or even additional PoGE ports Please see the Qui...

Page 87: ...Failover Planning Installation Prerequisites Installation Workflow Mounting and Connecting the Array AP Power over Gigabit Ethernet PoGE The Array s Ethernet ports should be plugged into an Ethernet...

Page 88: ...up on the Array AP i e push it against the mounting plate Then turn the Array to the left to remove it This is similar to dismounting a smoke detector Powering Up the Wireless Array When powering up...

Page 89: ...er ON Blinking GREEN All OFF Boot loader power ON self test Blinking GREEN All ON Image load from compact FLASH Blinking GREEN Spinning pattern rotate all to ON then all to OFF Image load failure Blin...

Page 90: ...Hz IAP is up passing traffic Traffic 1500 packets sec Traffic 150 packets sec Traffic 1 packet sec IAP LED is GREEN IAP is operating in the 2 4 GHz band IAP LED is ORANGE IAP is operating in the 5 GHz...

Page 91: ...d to specify the initial settings for your Arrays APs A Guided Tour will walk you through the basic steps of creating a profile containing configuration settings including creating SSIDs and firewall...

Page 92: ...IDs encryption and authentication and SNMP settings Use the Mobilize service to specify these settings for each Array before deployment Settings may be duplicated from one Array to the next or entered...

Page 93: ...n of individual Arrays locally Array settings may be viewed or configured through the Command Line Interface CLI using SSH or on a browser with the Web Management Interface WMI You may use the CLI via...

Page 94: ...lso be used to communicate with Arrays locally as an alternative to using a serial connection to the console This is especially useful for the XR 500 600 1000 Series and some XR 2000 models which do n...

Page 95: ...Array is using its default hostname which is the Array s serial number found on the Array label and shipping container for example XR40123091CACD If your network provides DHCP and DNS then you can us...

Page 96: ...ddress Logging In When logging in to the Array use the default user name and password the default user name is admin and the default password is admin See Also Installation Workflow Performing the Exp...

Page 97: ...the Configuration section click Express Setup 3 License Key Enter the key that was provided for the Array The key was provided to you in an email as an attachment in the form of an Excel file xls Ent...

Page 98: ...le via the normal access methods such as SSH or WMI and that do not have a physical console port XR 500 600 1000 Series Arrays and some XR 2000 models or whose console port is not accessible Xircon di...

Page 99: ...ault XBL username and password and optionally to change the type of Xircon management access that is allowed These steps use CLI commands 1 To access CLI via the WMI click CLI under the Tools section...

Page 100: ...ensitive Array42 config boot env Array42 config boot set username newusername Array42 config boot set password newpassword Array42 config boot save Saving boot environment OK Array42 config boot exit...

Page 101: ...Wireless Array Installing the Wireless Array 79 wish See Management Control on page 226 Note that you cannot change the XBL username and password via the WMI...

Page 102: ...Wireless Array 80 Installing the Wireless Array...

Page 103: ...directly managing each Array individually You may change settings directly on the Array AP but be aware that XMS may not sync up with these changes for up to 24 hours All XMS versions automatically r...

Page 104: ...verview The WMI is an easy to use graphical interface to your Wireless Array It allows you to configure the product to suit your individual requirements and ensure that the unit functions efficiently...

Page 105: ...Tree Status Routing Table ARP Table DHCP Leases Connection Tracking NAT CDP Neighbors Network Assurance RF Monitor Windows IAPs Spectrum Analyzer Intrusion Detection Channel History Radio Assurance St...

Page 106: ...al Radius Active Directory Rogue Control List OAuth 2 0 Management SSIDs SSID Management Active IAPs Per SSID Access Control List Honeypots Configuration Windows cont d Groups Group Management IAPs IA...

Page 107: ...Wireless Array The Web Management Interface 85 User Interface Figure 38 WMI Frames Left frame Right frame Utilities Log Message counters Help Expanded menu section Command log Utilities...

Page 108: ...f messages generated by the ArrayOS Syslog subsystem during your session organized into Critical Warning and General messages Click on a counter to display the associated Syslog messages Messages at t...

Page 109: ...ity Buttons Click the Feedback button to generate a Web page that allows you to submit your comments to Xirrus Inc Click the Print button to open a print dialog to send a copy of the active window to...

Page 110: ...efault host name in the browser s URL The default host name is simply the Array s serial number for example XR0823091CACD Otherwise enter the Array s IP address This may be determined as described in...

Page 111: ...bove the changes that you have made are not saved to the latest configuration file in the Array s flash memory so they will not be restored after a reboot Click the Save button located on the upper ri...

Page 112: ...Wireless Array 90 The Web Management Interface...

Page 113: ...left frame of the WMI Array Status Windows on page 92 Network Status Windows on page 100 RF Monitor Windows on page 111 Station Status Windows on page 122 Statistics Windows on page 135 Application C...

Page 114: ...information for the Array in text format Admin History shows all current and past logins since the last reboot Array Summary This is a status only window that provides a snapshot of the global configu...

Page 115: ...Neg Shows whether auto negotiation is in use on this interface to determine settings for speed parity bits etc LED Shows whether LED display of interface status is enabled Link Shows whether the link...

Page 116: ...hether mirroring is enabled on this bond Integrated Access Point Section This section provides information about the Integrated Access Point IAPs that are contained within the Array How many IAPs are...

Page 117: ...o support Antenna Shows which antenna is being used by each IAP Cell Size Indicates which cell size setting is currently active for each IAP small medium large max automatic or manually defined by you...

Page 118: ...n set to support Long Distance Links See WDS on page 358 MAC Address BSSID Shows the MAC address for each IAP Description The description if any that you set for this IAP Network Assurance Section Thi...

Page 119: ...onnectivity tests and display this information See Management Control on page 226 Operating Status Section This section shows the Array controller board s current internal temperatures current fan spe...

Page 120: ...estamps and current internal temperatures and fan speed Note that the License Features row lists the features that are supported by your Array s license See About Licensing and Upgrades on page 387 an...

Page 121: ...ot Factory displays the configuration established at the factory Figure 48 Show Configuration If you want to see just the differences between the Running Saved Lastboot and Factory configurations you...

Page 122: ...istory Network Status Windows The following Network Status windows are available Network displays a summary of network interface settings Network Map displays information about this Array and neighbor...

Page 123: ...s window provides a snapshot of the configuration settings currently established for Array s wired interfaces This includes the Gigabit interfaces and their bonding settings DNS Settings are summarize...

Page 124: ...ariety of information that may be displayed You may sort the rows based on any column that has an active column header indicated when the mouse pointer changes to the hand icon Click Refresh to update...

Page 125: ...have been assigned for the Array To assign an SSID go to SSID Management on page 262 SSID On Informs you how many SSIDs are enabled To enable or disable SSIDs go to SSID Management on page 262 In Rang...

Page 126: ...version number of the SCD firmware on each Array IAP Info enabled by default Enable disable display of the IAP Up columns Stations Stations Tells you how many stations are currently associated to eac...

Page 127: ...forces certain redundant data paths into a standby blocked state If one segment in the spanning tree becomes unreachable the spanning tree algorithm reconfigures the network topology and reestablishe...

Page 128: ...Figure 53 Routing Table See Also VLANs Configuring VLANs on an Open SSID ARP Table This status only window lists the entries in the Array s ARP table For a device with a given IP address this table l...

Page 129: ...is valid The same IP address is normally renewed at the expiration of the current lease Figure 55 DHCP Leases See Also DHCP Server Connection Tracking NAT This status only window lists the session con...

Page 130: ...sco Discovery Protocol CDP Figure 57 CDP Neighbors The Array performs discovery on the network on an ongoing basis This list shows the devices that have been discovered Cisco devices and other devices...

Page 131: ...ray checks connectivity to network servers that you have configured for example DNS and NTP servers on an ongoing basis For each server this list shows the server s host name if any IP address and sta...

Page 132: ...rts you to the fact that an 802 1Q trunk to the Array has VLANs that are not being properly handled on the Array To reduce unnecessary traffic only VLANs that are actually needed on the Array should n...

Page 133: ...threat sensor monitor radio The associated software is part of the ArrayOS The following RF Status windows are available IAPs displays current statistics and RF measurements for each of the Array s IA...

Page 134: ...a cumulative total To graph these values over time for a particular channel see Channel History on page 118 For detailed information on the measurements displayed please see Spectrum Analyzer Measure...

Page 135: ...ed by the Array s monitor radio This differs from the RF Monitor IAPs window which displays values measured by each IAP radio for its current assigned channel For the spectrum analyzer the monitor rad...

Page 136: ...r graphs click the Rotate checkbox at the bottom of the data window In the rotated view if you wish to view data as a numerical table click the Text checkbox Click again to return to a graphical displ...

Page 137: ...me that 802 11 activity is seen on the channel Other Busy Percentage of time that the channel is unavailable due to non 802 11 activity The total busy time 802 11 Busy plus Other Busy will never total...

Page 138: ...Intrusion Detection This window displays all detected access points according to the classifications you select from the checkboxes at the top Blocked Unknown Known or Approved This includes ad hoc a...

Page 139: ...desired column header You can refresh the list at any time by clicking on the Refresh button or click in the Auto Refresh check box to instruct the Array to refresh the list automatically See Also Net...

Page 140: ...see Spectrum Analyzer Measurements on page 115 Figure 64 RF Monitor Channel History Figure 64 presents the data in graphical form New data appears at the left with older readings shifting to the right...

Page 141: ...s Array 119 Figure 65 RF Monitor Channel History Rotated If you select Rotate and Text together data is presented as a numerical table Figure 66 Click Pause to stop collecting data or Resume to contin...

Page 142: ...the Array can take corrective action if a problem is detected Note that radio assurance requires RF Monitor Mode to be enabled in Advanced RF Settings to turn on self monitoring functions It also requ...

Page 143: ...Wireless Array Viewing Status on the Wireless Array 121 ArraySee Also IAPs Xirrus Advanced RF Analysis Manager RAM RF Resilience Radio Assurance...

Page 144: ...d station this displays the Received Signal Strength Indicator at each of the Array s IAPs Signal to Noise Ratio SNR for each associated station this displays the SNR at each of the Array s IAPs Noise...

Page 145: ...active up time In the Link column click the details button to jump to a detailed statistics page for this station Click to see Application Control information You may click other buttons above the lis...

Page 146: ...station and explicitly denies it access by adding its MAC address to the Deny List in the Access Control List window To permit access again go to Access Control List on page 234 and delete the statio...

Page 147: ...tations shown in orange or 2 4 GHz stations shown in green or both Figure 69 Location Map The map and Array are shown as if you were looking down on the Array from above say from a skylight on the roo...

Page 148: ...etbios name of the station The TX Rate and RX Rate of this connection The approximate Distance of this station from the Array The distance is estimated using the received signal strength and your envi...

Page 149: ...ould be 100 feet per inch Then click Upload see below For more information on using the custom image see Working with the Custom Image on page 128 Upload After browsing to the desired custom image cli...

Page 150: ...u should move the display of the Array on your map to correspond with its actual location at your site To move the Array on the map simply click it then drag and drop it to the desired location The Ar...

Page 151: ...ased on your selection Figure 72 The stations are listed to the left of the Array click on a station to show its RSSI values on the Array Figure 72 Station RSSI Values Colorized Graphical View In eith...

Page 152: ...al to Noise Ratio Values You may choose to display Unassociated Stations as well with a checkbox at the bottom of the window By default the SNR is displayed numerically Figure 73 You may display the r...

Page 153: ...The noise floor value can be very useful for characterizing the environment of a station to determine the cause of poor performance A relatively high value means that action may need to be taken to re...

Page 154: ...ar view you may sort the rows based on any column that has an active column header indicated when the mouse pointer changes to the hand icon Click on the Refresh button to refresh the station list or...

Page 155: ...our day week month and year In other words the Max Station Count shows the high water mark over the selected period of time the maximum count of stations for the selected period rather than a cumulati...

Page 156: ...nt is triggered a trap is generated and a Syslog message is logged For each station this list shows the MAC address its IP address its host name its device type device class and manufacturer It also s...

Page 157: ...atistical data for all configured filters Station Statistics provides statistical data associated with each station IAP Statistics Summary This is a status only window that provides an overview of the...

Page 158: ...tal Retries the count of packets that were sent more than once before being received correctly CRC error the count of packets that were corrupted on the air and were dropped Some level of CRC errors a...

Page 159: ...h the data update the window with the latest information or Clear the data reset all content to zero and begin counting again at any time by clicking on the appropriate button You can also click in th...

Page 160: ...an Refresh the data update the window with the latest information or Clear the data reset all content to zero and begin counting again at any time by clicking on the appropriate button You can also cl...

Page 161: ...data associated with your assigned VLANs You can refresh the information that is displayed on this page at any time by clicking on the Refresh button or select the Auto Refresh option for this window...

Page 162: ...a for all WDS client and host links To access data about a specific WDS client or host link simply click on the desired link in the left frame to access the appropriate window You may also choose to v...

Page 163: ...t you must have Intrusion Detection Mode enabled to collect IDS statistics See Intrusion Detection on page 348 Information about IDS events is discussed in the IDS Event Log Window on page 155 Figure...

Page 164: ...he Reset button to return to showing all entries Figure 85 Filtered IDS Statistics Many of the column headers may be clicked to sort the entries in ascending or descending order based on that column Y...

Page 165: ...ame state enabled on or off and type allow or deny of each filter is shown For enabled filters this window shows the number of packets and bytes that met the filter criteria Click on a column header t...

Page 166: ...k the desired MAC address in the Station column or click the details button in the station s Link column and see Per Station Statistics on page 145 Figure 87 Station Statistics Click on a column heade...

Page 167: ...Station Statistics window Receive and Transmit statistics are listed by Rate this is the data rate in Mbps For a summary of statistics for all stations see Station Statistics on page 144 You can Refre...

Page 168: ...ick one to analyze application control information for only that station About Application Control The Array uses Deep Packet Inspection DPI to determine what applications are being used and by whom a...

Page 169: ...application is 1 Primarily recreational 2 Mostly recreational 3 Combination of business and recreational purposes 4 Mainly used for business 5 Primarily used for business Risk indicates how likely an...

Page 170: ...ovides a snapshot of the application usage on your Array In order to view the Application Control window the Array must have a license that supports this feature and you must have enabled the Applicat...

Page 171: ...all to see data from all VLANs Display for Station Use the drop down list if you wish to select just one station to analyze stations are listed by their MAC address or leave the default value of all...

Page 172: ...the Refresh button to refresh the window right now Pie Charts Figure 90 Application Control Pie Charts These charts provide a quick way to determine how your wireless bandwidth is being used There ar...

Page 173: ...kelihood of an application causing problems for your business such as a file sharing utility introducing viruses or exposing you to legal problems Risk is rated from 1 low risk e g Google to 5 high ri...

Page 174: ...of less productive traffic use filters to decrease the QoS assigned to traffic for applications like YouTube and Facebook Stations Application Control This status only window shows client stations cur...

Page 175: ...essage Message sorts the list based on the message category The displayed messages may be filtered by using the Filter Priority option which allows control of the minimum priority level displayed For...

Page 176: ...cut way to view system log messages If you click Log Messages near the bottom of the left hand frame WMI displays counts of log messages at different severity levels Click a count to display just thos...

Page 177: ...ample you may choose to display only beacon flood attacks Figure 94 IDS Event Log Use the Highlight Event field if you wish to highlight all events of one particular type in the list Click on a column...

Page 178: ...acked MAC Address the MAC address of the attacker Period the length of the window used to determine whether the count of this type of event exceeded the threshold Current the count of this type of eve...

Reviews:

No comments

Brands by name

Popular brands

Load more brands