ZyXEL Communications WX3310-B0 User Manual Download | Manualshive

Page: 97 / 118

background image

Appendix A Wireless LANs

WX3310-B0 User’s Guide

97

authentication, EAP-TTLS supports EAP methods and legacy authentication methods such as PAP, CHAP,
MS-CHAP and MS-CHAP v2.

PEAP (Protected EAP)

Like EAP-TTLS, server-side certificate authentication is used to establish a secure connection, then use
simple username and password methods through the secured connection to authenticate the clients,
thus hiding client identity. However, PEAP only supports EAP methods, such as EAP-MD5, EAP-MSCHAPv2
and EAP-GTC (EAP-Generic Token Card), for client authentication. EAP-GTC is implemented only by
Cisco.

LEAP

LEAP (Lightweight Extensible Authentication Protocol) is a Cisco implementation of IEEE 802.1x.

Dynamic WEP Key Exchange

The AP maps a unique key that is generated with the RADIUS server. This key expires when the wireless
connection times out, disconnects or re-authentication times out. A new WEP key is generated each
time re-authentication is performed.

If this feature is enabled, it is not necessary to configure a default encryption key in the wireless security
configuration screen. You may still configure and store keys, but they will not be used while dynamic
WEP is enabled.

Note: EAP-MD5 cannot be used with Dynamic WEP Key Exchange

For added security, certificate-based authentications (EAP-TLS, EAP-TTLS and PEAP) use dynamic keys for
data encryption. They are often deployed in corporate environments, but for public deployment, a
simple user name and password pair is more practical. The following table is a comparison of the
features of authentication types.

WPA and WPA2

Wi-Fi Protected Access (WPA) is a subset of the IEEE 802.11i standard. WPA2 (IEEE 802.11i) is a wireless
security standard that defines stronger encryption, authentication and key management than WPA.

Key differences between WPA or WPA2 and WEP are improved data encryption and user
authentication.

Table 31 Comparison of EAP Authentication Types

EAP-MD5

EAP-TLS

EAP-TTLS

PEAP

LEAP

Mutual Authentication

No

Yes

Yes

Yes

Yes

Certificate – Client

No

Yes

Optional

Optional

No

Certificate – Server

No

Yes

Yes

Yes

No

Dynamic Key Exchange

No

Yes

Yes

Yes

Yes

Credential Integrity

None

Strong

Strong

Strong

Moderate

Deployment Difficulty

Easy

Hard

Moderate

Moderate

Moderate

Client Identity Protection

No

No

Yes

Yes

No

«
...
95
96
97
98
99
...
»

Summary of Contents for WX3310-B0

Page 1: ... Wireless AX Gigabit Extender Copyright 2020 Zyxel Communications Corporation Web Address http zyxelsetup Windows http zyxelsetup local Mac LAN IP Address http DHCP assigned IP OR http 192 168 1 2 Password See the device label Version 1 0 Edition 2 03 2020 ...

Page 2: ...ct due to differences in your product firmware or your computer operating system Every effort has been made to ensure that the information in this manual is accurate Related Documentation Quick Start Guide The Quick Start Guide shows how to connect the WX3310 and access the Web Configurator More Information Go to support zyxel com to find other information on the WX3310 ...

Page 3: ... referred to as the WX in this guide Product labels screen names field labels and field choices are all in bold font A right angle bracket within a screen name denotes a mouse click For example Configuration Network IP Setting means you first click Configuration in the navigation panel then the Network sub menu and finally the IP Setting tab to get to that screen Icons Used in Figures Figures in t...

Page 4: ... User s Guide 9 Introduction 10 The Web Configurator 16 Modes 24 Easy Mode 26 Access Point Mode 31 Repeater Mode 36 Tutorials 41 Technical Reference 44 Monitor 45 Network 51 Wireless LAN 54 AP Connection Repeater Mode 75 Mesh 79 Maintenance 81 Troubleshooting 87 ...

Page 5: ... 1 Using the WPS Button 14 1 7 The RESET Button 15 1 7 1 Using the RESET Button 15 Chapter 2 The Web Configurator 16 2 1 Overview 16 2 1 1 What You Can Do in this Chapter 16 2 2 Accessing the Web Configurator 16 2 3 Preparing your Computer to Access the Web Configurator 18 2 3 1 Static IP Configuration in Microsoft Windows 19 2 3 2 Static IP Configuration in MAC OS X 21 Chapter 3 Modes 24 3 1 Over...

Page 6: ... You Can Do in this Chapter 36 6 2 Setting your WX3310 to Repeater Mode 36 6 2 1 Status Screen Repeater Mode 37 6 2 2 Repeater Navigation Panel 39 Chapter 7 Tutorials 41 7 1 Overview 41 7 2 Configuring the WX3310 as an Access Point 41 7 3 Configuring the WX3310 as a Repeater 41 7 3 1 Selecting an AP from an Automatically Detected List 41 7 3 2 Selecting an AP by Manually Entering Security Informat...

Page 7: ...WPS Screen 58 10 7 MAC Filter 59 10 8 MBSS Screen 60 10 9 Technical Reference 61 10 9 1 Wireless Network Overview 61 10 9 2 Wireless Security Overview 63 10 9 3 WiFi Protected Setup WPS 66 Chapter 11 AP Connection Repeater Mode 75 11 1 Overview 75 11 2 What You Can Do in this Chapter 75 11 3 Station Screen 75 11 4 AP List Screen 76 11 5 WPS Screen 78 Chapter 12 Mesh 79 12 1 Overview 79 12 2 Mesh S...

Page 8: ... 85 13 7 Restart Screen 86 Chapter 14 Troubleshooting 87 14 1 Power Hardware Connections and LEDs 87 14 2 WX3310 Access and Login 88 14 3 Internet Access 89 14 4 Resetting the WX3310 to Its Factory Defaults 90 14 5 Wireless Problems 90 Appendix A Wireless LANs 91 Appendix B Customer Support 103 Appendix C Legal Information 109 Index 116 ...

Page 9: ...9 PART I User s Guide ...

Page 10: ... Device Operation Mode Example In Figure 1 the WX3310 that is acting as a Repeater is letting a wireless client connect to an existing wired network and also lets the wireless client connect to the network through the other WX3310 that is acting as an AP The WX3310 that is acting as an AP is bridging a wired network and a wireless LAN in the same subnet See Chapter 3 on page 24 for more informatio...

Page 11: ... guess and that consists of different types of characters such as numbers and letters Write down the password and put it in a safe place Back up the configuration and make sure you know how to restore it Restoring an earlier working configuration may be useful if the device becomes unstable or even crashes If you forget your password you will have to reset the WX3310 to its factory default setting...

Page 12: ...s Red On WPS failed Blinking Overlapping WPS processes two wireless clients are trying to simultaneously connect to the WX3310 Wait for the LED to go off then initiate WPS again Off No WPS activity AP Mode Link Quality wired connection Green On Connected to the modem router Blinking Connected but not synced with the Zyxel MPro Mesh gateway router controller Off There is no connection to the modem ...

Page 13: ...er see Chapter 12 on page 79 for more information on Easy Mesh Red On Place the WX3310 closer to the modem router Blinking Place the WX3310 closer to the modem router Not synced with the Zyxel MPro Mesh gateway router controller see Chapter 12 on page 79 for more information on Easy Mesh Off There is no connection to the modem router WiFi Green On The 2 4G and 5G wireless radios are ready Blinking...

Page 14: ...tton recommended on the device itself or in its configuration utility or enter a PIN a unique Personal Identification Number that allows one device to authenticate the other in each of the two devices When WPS is activated on a device it has two minutes to find another device that also has WPS activated Then the two devices connect and set up a secure network by themselves The WPS button is locate...

Page 15: ...You must activate WPS in the WX3310 and in another wireless device within two minutes of each other Note With WPS wireless clients can only connect to the 5GHz or 2 4GHz wireless network using the first 5GHz or 2 4GHz SSID on the WX3310 in AP or repeater mode For more information on using WPS see Section on page 43 1 7 The RESET Button If you forget your password or IP address or you cannot access...

Page 16: ...rder to use the Web Configurator you need to allow Web browser pop up windows from your device JavaScript enabled by default Java permissions enabled by default Refer to Chapter 14 on page 87 to see how to make sure these functions are allowed in Internet Explorer 2 1 1 What You Can Do in this Chapter To change your computer s IP address in Windows 7 operating system see Section 2 3 1 on page 19 T...

Page 17: ...e web address in your web browser If the WX3310 is not connecting to a router or DHCP server type the WX3310 s default static IP address 192 168 1 2 Your computer must be in the same subnet in order to access this website address You must give it a fixed IP address in the range between 192 168 1 3 and 192 168 1 254 see Section 2 3 on page 18 4 Type the Username and Password on the device label def...

Page 18: ...to save your changes Click Ignore if you do not want to change the password this time Figure 7 Change Password Screen Right after you log in the easy mode network map screen is displayed See Chapter 3 on page 24 for more information about the easy mode 2 3 Preparing your Computer to Access the Web Configurator This section shows you how to assign a static IP address to your computer ...

Page 19: ...low these steps to change your computer s IP address in Windows 7 operating system 1 Click on the Network Icon located in the System Tray of your Task Bar After you have clicked the icon a small message window will appear select Open Network and Sharing Center Note You can also access the Network and Sharing Center by going to the Control Panel in the Start Menu and clicking on Network and Sharing...

Page 20: ...em then click on the Properties button 5 Once you have accessed the Internet Protocol Version 4 TCP IPv4 properties click on the Use the following IP address radio button and type your new IP address Your computer must be in the same subnet in order to access this website address You must give it a fixed IP address in the range between 192 168 1 3 and 192 168 1 254 Then type 255 255 255 0 as your ...

Page 21: ... Obtain an IP address automatically radio button and click OK 2 3 2 Static IP Configuration in MAC OS X Follow these steps to change your computer s IP address in MAC OS X 10 11 operating system 1 Open your System Preferences then click on Network 2 Once the Network screen is open it is recommended you click on Location Edit Locations to create a new profile Use the button to add a new profile in ...

Page 22: ... on the Configure IPv4 scroll button and select Manually Then modify your IP Address your computer must be in the same subnet in order to access this website address You must give it a fixed IP address in the range between 192 168 1 3 and 192 168 1 254 Then type 255 255 255 0 as your subnet mask and click Apply to save your changes ...

Page 23: ...nfigured your WX3310 you must remember to change your static IP back to obtaining it automatically to be able to access the Internet If you want to change the IP address to automatic default repeat step 1 then on Location select Automatic or a different profile you have configured ...

Page 24: ...anced users can change to this mode to customize all the functions of the WX3310 Click Expert Mode after logging into the Web Configurator The User s Guide Chapter 2 on page 16 through Chapter 13 on page 81 discusses the screens in this mode 3 1 2 Device Operating Modes This refers to the operating mode of the WX3310 which can act as a Access Point Use this mode if you already have a router in you...

Page 25: ...s acting as a Repeater is letting a wireless client connect to an existing wired network and also lets the wireless client connect to the network through the other WX3310 that is acting as an AP The WX3310 that is acting as an AP is bridging a wired network and a wireless LAN in the same subnet ...

Page 26: ...o Easy Mode by default This mode is useful to users by visualizing their networks layout You can view details about the devices connected to your WX3310 and their status When you log in to the Web Configurator the following screen opens Figure 9 Easy Mode Network Map Click Status to open the following screen ...

Page 27: ... the Internet see Section 4 3 on page 28 Use the Status screen to view read only information about the WX3310 including the WAN IP MAC address of the WX3310 and the software version see Section 4 4 on page 28 4 2 Navigation Panel Use this navigation panel to opt out of the Easy mode Figure 11 Navigation Panel The following table describes the labels in this screen Table 2 Navigation Panel LABEL DE...

Page 28: ... connecting the modem router to the Internet becomes green when the modem router is able to ping the Internet It becomes red when the ping initiating from the modem router does not get a response from the Internet You can also view the devices represented by icons indicating the kind of network device such as Android device iOS device or Windows OS connected to the WX3310 including those connectin...

Page 29: ... in Easy Mode LABEL DESCRIPTION Device Name This is the WX3310 s model name Uptime This displays the time in minutes the WX3310 s system has been working IP Address This shows the LAN port s IP address MAC Address This shows the MAC address of the WX3310 s LAN port Software Version This is the firmware version Downlink Name SSID This shows a descriptive name the client uses to connect to the WX331...

Page 30: ...is shows a descriptive name the WX3310 uses to connect to the wireless LAN This field is not available when the WX3310 is in AP mode Uplink Encryption This shows the data encryption method the connected access point uses for the wireless connection This field is not available when the WX3310 is in AP mode Table 3 Status Screen in Easy Mode continued LABEL DESCRIPTION ...

Page 31: ... see Section 5 2 on page 31 Use the Status screen to view read only information about your WX3310 in AP mode see Section 5 2 1 on page 32 Use the Navigation Panel to configure WX3310 features in AP mode see Section 5 2 2 on page 34 5 2 Setting your WX3310 to AP Mode 1 Connect your computer to one of the LAN port of the WX3310 2 Connect a modem router to the other LAN port of the WX3310 using an Et...

Page 32: ...ype http zyxelsetup for Windows http zyxelsetup local for Mac or http DHCP assigned IP as the web address in your web browser 5 Log into the Web Configurator See the Section 2 2 on page 16 for instructions on how to do this 5 2 1 Status Screen AP Mode Click on Status The screen below shows the status screen in AP Mode Figure 16 Status Screen AP Mode ...

Page 33: ... Device Mode This is the device mode Section 3 1 2 on page 24 to which the WX3310 is set Access Point Mode Current Partition This shows which partition the WX3310 uses The WX3310 has two partitions and supports dual image function LAN Information Ethernet MAC Address This shows the MAC Address of the WX3310 s Ethernet LAN port IP Address This shows the LAN port s IP address IP Subnet Mask This sho...

Page 34: ...ew Log Use this screen to view the list of activities recorded by your WX3310 Wireless Monitor Wireless Monitor Use this screen to view the wireless summary currently associated to the WX3310 MBSS Monitor MBSS Monitor Use this screen to view a summary of the Multiple Basic Server Sets MBSS available on the WX3310 The MBSS allows you to use one access point to provide several Basic Serve Sets BSS s...

Page 35: ...this screen to enable or disable WX3310 Mesh MAINTENANCE Password Password Setup Use this screen to change the password of your WX3310 Time Time Setup Use this screen to change your WX3310 s time and date Firmware Upgrade Firmware Upgrade Use this screen to upload firmware to your WX3310 Telnet Telnet Use this screen to enable or disable Telnet Telnet allows you to access the WX3310 s command line...

Page 36: ...0 wirelessly connects to the available access point B Figure 18 Repeater Mode After the WX3310 and the access point connect the WX3310 acquires its IP address from the access point The clients of the WX3310 can now surf the Internet 6 1 1 What You Can Do in this Chapter To set your WX3310 to repeater mode see Section 5 2 on page 31 Use the Status screen to view read only information about your WX3...

Page 37: ...omputer s IP address open a web browser such as Internet Explorer and type http zyxelsetup for Windows http zyxelsetup local for Mac http 192 168 1 2 or http DHCP assigned IP as the web address in your web browser 5 Log into the Web Configurator See the Section 2 2 on page 16 for instructions on how to do this 6 2 1 Status Screen Repeater Mode Click on Status The screen below shows the status scre...

Page 38: ...reated Device Mode This is the device mode Section 3 1 2 on page 24 to which the WX3310 is set Repeater Mode Current Partition This shows which partition the WX3310 uses The WX3310 has two partitions and supports dual image function LAN Information Ethernet MAC Address This shows the MAC Address of the WX3310 s Ethernet LAN port IP Address This shows the LAN port s IP address IP Subnet Mask This s...

Page 39: ... time Table 8 Status Screen Repeater Mode LABEL DESCRIPTION Table 9 Navigation Panel Repeater Mode LINK TAB FUNCTION Status Status This screen shows the WX3310 s general device system status information MONITOR Monitor Log View Log Use this screen to view the list of activities recorded by your WX3310 Wireless Monitor Wireless Monitor Use this screen to view the wireless summary currently associat...

Page 40: ...ettings Advanced Use this screen to configure advanced wireless settings WPS Use this screen to enable and configure WPS on your WX3310 MAC Filter Use this screen to configure the WX3310 to block access to devices or block the devices from accessing the WX3310 MBSS Use this screen to configure multiple BSSs on the WX3310 Mesh Mesh Use this screen to enable or disable WX3310 Mesh MAINTENANCE Passwo...

Page 41: ...er mode allows you to extend the original AP coverage Selecting an AP from an Automatically Detected List create a secure wireless network simply by selecting an AP from a list of detected APs See Section 11 4 on page 76 This is the easier method Selecting an AP by Manually Entering Security Information create a secure wireless network by manually entering the AP s wireless security settings in th...

Page 42: ...formation This example shows you how to configure wireless security settings with the following parameters on your WX3310 Follow the steps below to create a secure wireless network by manually entering the AP s wireless security settings in the WX3310 s interface The instructions require that your hardware is connected see the Quick Start Guide and you are logged into the Web Configurator through ...

Page 43: ...Chapter 7 Tutorials WX3310 B0 User s Guide 43 ...

Page 44: ...44 PART II Technical Reference ...

Page 45: ...ss stations or AP that are currently associated with the WX3310 see Section 8 4 on page 46 Use the MBSS Monitor screen to view a summary of the BSS configured in your WX3310 see Section 8 5 on page 48 Use the Multicast Monitor screen to view the multicast group information see Section 8 6 on page 50 8 3 Log Click to open the Monitor menu Use the View Log screen to see the logged messages for the W...

Page 46: ...ireless client for example your network or computer with a wireless network card has connected successfully to the AP or wireless router using the same SSID channel and security settings Table 10 Monitor Log LABEL DESCRIPTION This field is a sequential value and is not associated with a specific entry Time This field displays the time the log was recorded Message This field states the reason for t...

Page 47: ...Chapter 8 Monitor WX3310 B0 User s Guide 47 Figure 23 Monitor Wireless Monitor Uplink in Repeater mode Figure 24 Monitor Wireless Monitor AP mode ...

Page 48: ...en successfully received by the WX3310 Bytes Received This shows the number of bytes that have been received by the WX3310 Packets Transmitted Successfully This shows the number of packets that have been successfully transmitted by the WX3310 Bytes Transmitted This shows the number of bytes that have been transmitted by the WX3310 Association Table The table displays after you click the Associatio...

Page 49: ...0 for Disable and 1 for Enable Association This shows the number of devices connected to each BSS Detail Click this button and a summary table describing the BSS is displayed under the MBSS Summary table Association Table The table displays after you click the Detail button Access Point This shows the SSID name for each BSS RSSI dbm This shows the RSSI Received Signal Strength Indicator of the wir...

Page 50: ...ts to just a group of hosts on the network This screen shows a summary of the multicast group IP addresses Figure 26 Monitor Multicast Monitor The following table describes the labels in this screen Table 13 Monitor Multicast Monitor LABEL DESCRIPTION Multicast IP This field displays the multicast group IP address Interface This field displays the interface that belongs to the multicast group Refr...

Page 51: ... building or floor of a building The LAN screens can help you configure the WX3310 s IPv4 and IPv6 addresses on the LAN Figure 27 LAN Setup 9 2 What You Can Do Use the Networking screen Section 9 4 on page 52 to change the LAN IP address for your WX3310 9 3 What You Need To Know The actual physical connection determines whether the WX3310 ports are LAN or WAN ports There are two separate IP networ...

Page 52: ...igure 28 LAN and WAN IP Addresses 9 4 Networking Screen Use this screen to change your basic LAN settings Click Network Networking Note The fields and buttons in this screen is not available if you choose DHCP or SLAAC Figure 29 Network Networking ...

Page 53: ...es the network number portion of an IP address Gateway IP Enter a gateway IPv4 address if your ISP or network administrator gave you one in this field DNS Server 1 Enter the first DNS server address assigned to WX3310 DNS Server 2 Enter the second DNS server address assigned to WX3310 IPv6 Select DHCP to obtain an IPv6 address using IPv6 stateful autoconfiguration Select SLAAC StateLess Address Au...

Page 54: ... wireless network Figure 30 Example of a Wireless Network The wireless network is the part in the blue circle In this wireless network devices A and B are called wireless clients The wireless clients use the access point AP to interact with other devices such as the printer or with the Internet Your WX3310 is the AP in the above example Note This chapter is only for AP mode and Repeater mode It sh...

Page 55: ... should use different channels Like radio stations or television channels each wireless network uses a specific channel or frequency to send and receive information Every wireless client in the same wireless network must use security compatible with the AP Security stops unauthorized devices from using the wireless network It can also protect the information that is sent in the wireless network 10...

Page 56: ...the Basic screen Figure 31 Networking Wireless Network 5G 2 4G Basic Repeater Mode The following table describes the general wireless LAN labels in this screen Table 15 WiFI Standards Comparison WIFI STANDARD MAXIMUM LINK RATE BAND SIMULTANEOUS CONNECTIONS 802 11b 11 Mbps 2 4 GHz 1 802 11a g 54 Mbps 2 4 GHz and 5 GHz 1 802 11n 600 Mbps 2 4 GHz and 5 GHz 1 802 11ac 3 47 Gbps 5 GHz 4 802 11ax 573 Mb...

Page 57: ... wireless network The wireless clients which want to associate to this network must have same wireless security settings as this device Or you can select No Security to allow any client to associate this network without authentication Pre Shared Key Enter the password that lets you connect to the WX3310 Your password should be in a string of ASCII characters between 8 and 63 or hexadecimal charact...

Page 58: ...0MHz or 80MHz A standard 20MHz channel offers transfer speeds of up to 150Mbps whereas a 40MHz channel uses two standard channels and offers speeds of up to 300 Mbps 40 MHz channel bonding or dual channel bonds two adjacent radio channels to increase throughput A 80 MHz channel consists of two adjacent 40 MHz channels The wireless clients must also support 40 MHz or 80 MHz It is often better to us...

Page 59: ...fter the WPS connection is established Select Unconfigured to enable WPS but change the wireless security key after the WPS connection is established Select Disabled to turn off WPS WPS PBC Click the Push Button to perform wireless security information synchronization using the Push Button Configuration PBC Method WPS PIN Use this field to type the same PIN number generated in the wireless station...

Page 60: ...s point To open this screen click Networking Wireless Network 5G 2 4G MBSS Table 19 Networking Wireless Network 5G 2 4G MAC Filter LABEL DESCRIPTION Interface Select the SSID for which you want to configure MAC filtering Policy Define the filter action for the list of specified MAC addresses Select None to deactivate the MAC filtering rule you configure below Select Allow to permit access to the W...

Page 61: ... extending a network s range Traditionally a wireless network operates in one of two wa An infrastructure type of network has one or more access points and one or more wireless clients The wireless clients connect to the access points Table 20 Networking Wireless Network 5G 2 4G MBSS LABEL DESCRIPTION MBSS Selection Select the BSS you want to configure Enable Click on the check box to enable the B...

Page 62: ...f two wireless networks overlap they should use a different channel Like radio stations or television channels each wireless network uses a specific channel or frequency to send and receive information Every device in the same wireless network must use security compatible with the AP Security stops unauthorized devices from using the wireless network It can also protect the information that is sen...

Page 63: ...ecure if you use a short key which is very easy to guess for example a three letter word from the dictionary Because of the damage that can be done by a malicious attacker it s not just people who have sensitive information on their network who should use security Everybody who uses any wireless network should ensure that effective security is in place A good way to come up with effective security...

Page 64: ...ess network even if they cannot use the wireless network Furthermore there are ways for unauthorized wireless users to get a valid user name and password Then they can use that user name and password to use the wireless network 10 9 2 4 Encryption Wireless networks can use encryption to protect the information that is sent in the wireless network Encryption is like a secret code If you do not know...

Page 65: ...ent SSIDs Wireless devices can use different BSSIDs to associate with the same AP 10 9 2 8 Notes on Multiple BSS A maximum of eight BSSs are allowed on one AP simultaneously You must use different keys for different BSSs If two wireless devices have different BSSIDs they are in different BSSs but have the same keys they may hear each other s communications but not communicate with each other MBSSI...

Page 66: ...her in each of the two devices When WPS is activated on a device it has two minutes to find another device that also has WPS activated Then the two devices connect and set up a secure network by themselves This section gives you an example of how to set up wireless networks using WPS when the WX3310 is in AP or Repeater mode The following example uses the WX3310 as the AP and a WPS enabled Android...

Page 67: ...ing Wireless Network 2 4G or Wireless Network 5G WPS and press the Push Button Note Your WX3310 has a WPS button located on its panel as well as a WPS button in its configuration utility Both buttons have exactly the same function you can use one or the other Note It doesn t matter which button is pressed first You must press the second button within two minutes of pressing the first one The WX331...

Page 68: ...the configuration interfaces of both devices to use the PIN method When you use the PIN method you must enter the PIN from one device usually the wireless client into the second device usually the Access Point or wireless router Then when WPS is activated on the first device it presents its PIN to the second device If the PIN matches one device sends the network and security information to the oth...

Page 69: ...n AP mode 3 Click the WPS PIN button or button next to the PIN field on the WX3310 s WPS screen within two minutes The WX3310 authenticates the wireless client and sends the proper configuration settings to the wireless client This may take up to two minutes Then the wireless client is able to communicate with the WX3310 securely The following figure shows an example of how to set up wireless netw...

Page 70: ... EAP Extensible Authentication Protocol tunnel and sends the network name SSID and the WPA PSK or WPA2 PSK pre shared key to the enrollee Whether WPA PSK or WPA2 PSK is used depends on the standards supported by the devices If the registrar is already part of a network it sends the existing information If not it generates the SSID and WPA2 PSK randomly The following figure shows a WPS enabled clie...

Page 71: ...pports both functions If the registrar is unconfigured the security settings it transmits to the enrollee are randomly generated Once a WPS enabled device has connected to another device using WPS it becomes configured A configured wireless client can still act as enrollee or registrar in subsequent WPS connections but a configured access point can no longer act as enrollee It will be the registra...

Page 72: ...ay in order to use the network In this case AP1 must be the registrar since it is configured it already has security information for the network AP1 supplies the existing security information to Client 2 Figure 42 WPS Example Network Step2 In step 3 you add another access point AP2 to your network AP2 is out of range of AP1 so you cannot use AP1 for the WPS handshake with the new access point Howe...

Page 73: ...enrollee devices Whether the network uses WPA PSK or WPA2 PSK depends on the device You can check the configuration interface of the registrar device to discover the key the network is using if the device supports this feature Then you can enter the key into the non WPS device and join the network as normal the non WPS device must also support WPA PSK or WPA2 PSK When you use the PBC method there ...

Page 74: ...s not involved in the WPS handshake a rogue device must still associate with the access point to gain access to the network Check the MAC addresses of your wireless clients usually printed on a label on the bottom of the device If there is an unknown MAC address you can remove it or reset the AP ...

Page 75: ... Can Do in this Chapter Use the Station screen to manually enter the SSID and security settings of the AP to which you want the WX3310 to connect see Section 11 3 on page 75 Use the AP List screen to scan the wireless networks in the WX3310 s area You can also select an AP from the list and enter its WiFi password to connect the wireless network see Section 11 4 on page 76 Use the WPS screen to en...

Page 76: ...cally displayed in the Basic Station screen Click Networking AP Connection AP List The screen appears as shown Table 22 Networking AP Connection Basic Station LABEL DESCRIPTION Network Name SSID Enter the name of the wireless network to which the WX3310 is connecting Connection Status This shows whether the WX3310 is already connected attempting to connect or not connected to a wireless network En...

Page 77: ...ress This shows the MAC address of the AP Channel This shows the channel the AP uses RSSI dbm This shows the strength of the AP s radio signal measured in dbm Security This shows Yes if the WX3310 needs a security password to connect to the AP It shows No if the WX3310 does not need a password to connect AP This shows the name of the AP you click and try to connect Passphrase The Passphrase input ...

Page 78: ...S LABEL DESCRIPTION WPS Setup WPS PBC Click the Push Button to perform wireless security information synchronization using the Push Button Configuration PBC Method WPS PIN This field displays the PIN number for the WX3310 you will use to perform wireless security information synchronization using the PIN Configuration Method Click the WPS PIN button to establish the synchronization Click Generate ...

Page 79: ...s clients to steer from one band to another For example if the 2 4G channel is congested wireless clients that support 5G could be moved to the 5G channel You need a router that can function as a controller in order to set up a Mesh network A controller manages and coordinates WiFi activity in a network such as AP steering Band steering Management of SSIDs and password on all APs in a network For ...

Page 80: ...ter AP Access Point RP Repeater C1 Client1 C2 Client2 APC Access Point coverage area RPC Repeater coverage area Note R is a router controller 12 2 Mesh Screen Click Configuration Mesh The following screen displays Figure 48 Configuration Mesh Click on the check box to enable Easy Mesh on the WX3310 ...

Page 81: ...ware Upgrade screen to update firmware see Section 13 5 on page 83 Use the Telnet screen to enable or disable access to the WX3310 using Telnet see Section 13 6 on page 84 Use the Restore screen to back up and restore device configurations see Section 13 6 on page 84 Use the Restart screen to reboot the WX3310 without turning the power off see Section 13 7 on page 86 13 3 Password Screen Use this ...

Page 82: ...w password again in this field Apply Click Apply to save your changes Cancel Click Cancel to begin configuring this screen afresh Table 26 Maintenance Time LABEL DESCRIPTION NTP Time Server NTP Server 1 Enter the first IP address or URL up to 29 extended ASCII characters in length of your time server NTP Server 2 Enter the second IP address or URL up to 29 extended ASCII characters in length of yo...

Page 83: ...Time at the same moment 1 A M GMT or UTC So in the European Union you would select Last Sunday March The time you select in the at field depends on your time zone In Germany for instance you would select 2 because Germany s time zone is one hour ahead of GMT or UTC GMT 1 End Date Configure the day and time when Daylight Saving Time ends if you selected Daylight Saving Enable The at field uses the ...

Page 84: ...nected After the WX3310 restarts log in again and check your new firmware version in the Status screen 13 6 Restore Screen Click Maintenance Restore Information related to factory defaults backup configuration and restoring configuration appears as shown next Figure 53 Maintenance Restore Table 27 Maintenance Firmware Upgrade LABEL DESCRIPTION Firmware Upgrade File Path Click Choose file to find t...

Page 85: ...t then wait one minute before logging into the WX3310 again The WX3310 automatically restarts in this time causing a temporary network disconnect In some operating systems you may see the following icon on your desktop Figure 54 Temporarily Disconnected If you uploaded the default configuration file you may need to change the IP address of your computer to be in the same subnet as that of the defa...

Page 86: ...our WX3310 Refer to Section 1 7 on page 15 for more information on the resetting the WX3310 13 7 Restart Screen System restart allows you to reboot the WX3310 without turning the power off Click Maintenance Restart The following screen displays Click Reboot to have the WX3310 restart This does not affect the WX3310 s configuration Figure 56 Maintenance Restart ...

Page 87: ...an appropriate power source Make sure the power source is turned on 2 Disconnect and re connect the WX3310 3 Remove the WX3310 from the outlet Then connect an electrical device that you know works into the same power outlet This checks the status of the power outlet 4 If the problem continues contact the vendor One of the LEDs does not behave as expected 1 Make sure you understand the normal behav...

Page 88: ... your Internet browser does not block pop up windows and has JavaScript and Java enabled 4 Reset the device to its factory defaults and try to access the WX3310 with the default address 5 If the problem continues contact the network administrator or vendor or try one of the advanced suggestions Advanced Suggestions If your computer is connected wirelessly use a computer that is connected to a LAN ...

Page 89: ... connections and make sure the LEDs are behaving as expected See the Quick Start Guide and Section 1 4 on page 11 2 Reboot the WX3310 3 Try to connect directly to the gateway If you can access the Internet check that the WX3310 has connected to the gateway by checking the Status screen See Section 4 4 on page 28 4 If the problem continues contact the network administrator or vendor The Internet co...

Page 90: ...he Web Configurator The password is in the device label If the WX3310 does not restart automatically disconnect and reconnect the WX3310 Then follow the directions above again 14 5 Wireless Problems I cannot access the WX3310 or ping any computer from the WLAN 1 Make sure the WX3310 is working in AP or Repeater mode and the wireless LAN is enabled on the WX3310 2 Make sure the wireless adapter on ...

Page 91: ...ok computers using wireless adapters to form an ad hoc wireless LAN Figure 57 Peer to Peer Communication in an Ad hoc Network ESS An Extended Service Set ESS consists of a series of overlapping BSSs each containing an access point with each access point connected together by a wired network This wired connection between APs is called a Distribution System DS This type of wireless LAN topology is c...

Page 92: ...ally overlap however To avoid interference due to overlap your AP should be on a channel at least five channels away from a channel that an adjacent AP is using For example if your region has 11 channels and an adjacent AP is using channel 1 then you need to select a channel between 6 or 11 RTS CTS A hidden node occurs when two stations are within range of the same access point but are not within ...

Page 93: ...n the time frame for the requested transmission Stations can send frames smaller than the specified RTS CTS directly to the AP without the RTS Request To Send CTS Clear to Send handshake You should only configure RTS CTS if the possibility of hidden nodes exists on your network and the cost of resending large frames is more than the extra network overhead involved in the RTS Request To Send CTS Cl...

Page 94: ...less clients access points and the wired network Wireless security methods available on the WAP6804 are data encryption wireless client authentication restricting access by device MAC address and hiding the WAP6804 identity The following figure shows the relative effectiveness of these wireless security methods available on your WAP6804 Note You must enable the same wireless security settings on t...

Page 95: ... The RADIUS server handles the following tasks Authentication Determines the identity of the users Authorization Determines the network services available to authenticated users once they are connected to the network Accounting Keeps track of the client s network activity RADIUS is a simple package exchange in which your AP acts as a message relay between the wireless client and the network RADIUS...

Page 96: ...erver sends a challenge to the wireless client The wireless client proves that it knows the password by encrypting the password with the challenge and sends back the information Password is not sent in plain text However MD5 authentication has some weaknesses Since the authentication server needs to get the plaintext passwords the passwords must be stored Thus someone other than the authentication...

Page 97: ...the wireless security configuration screen You may still configure and store keys but they will not be used while dynamic WEP is enabled Note EAP MD5 cannot be used with Dynamic WEP Key Exchange For added security certificate based authentications EAP TLS EAP TTLS and PEAP use dynamic keys for data encryption They are often deployed in corporate environments but for public deployment a simple user...

Page 98: ...US server distributes a Pairwise Master Key PMK key to the AP that then sets up a key hierarchy and management system using the PMK to dynamically generate unique data encryption keys to encrypt every data packet that is wirelessly communicated between the AP and the wireless clients This all happens in the background automatically The Message Integrity Check MIC is designed to prevent an attacker...

Page 99: ...P Funk Software s Odyssey client The Windows XP patch is a free download that adds WPA capability to Windows XP s built in Zero Configuration wireless client However you must run Windows XP to use it WPA 2 with RADIUS Application Example To set up WPA 2 you need the IP address of the RADIUS server its port number default is 1812 and the RADIUS shared secret A WPA 2 application example with an exte...

Page 100: ...decimal characters including spaces and symbols 2 The AP checks each wireless client s password and allows it to join the network only if the password matches 3 The AP and wireless clients generate a common PMK Pairwise Master Key The key itself is not sent over the network but is derived from the PSK and the SSID 4 The AP and wireless clients use the TKIP or AES encryption process the PMK and inf...

Page 101: ...ows you to visualize the shape of the antenna s coverage area Antenna Gain Antenna gain measured in dB decibel is the increase in coverage within the RF beam width Higher antenna gain improves the range of the signal for better communications For an indoor site each 1 dB increase in antenna gain results in a range increase of approximately 2 5 For an unobstructed outdoor site each 1dB increase in ...

Page 102: ...ge pattern Angles typically range from 20 degrees very directional to 120 degrees less directional Directional antennas are ideal for hallways and outdoor point to point applications Positioning Antennas In general antennas should be mounted as high as practically possible and free of obstructions In point to point application position both antennas at the same height and in a direct line of sight...

Page 103: ...ormation Please have the following information ready when you contact an office Required Information Product model and serial number Warranty Information Date that you received your device Brief description of the problem and the steps you took to solve it Corporate Headquarters Worldwide Taiwan Zyxel Communications Corporation http www zyxel com Asia China Zyxel Communications Shanghai Corp Zyxel...

Page 104: ...m pk Philippines Zyxel Philippines http www zyxel com ph Singapore Zyxel Singapore Pte Ltd http www zyxel com sg Taiwan Zyxel Communications Corporation http www zyxel com tw zh Thailand Zyxel Thailand Co Ltd http www zyxel co th Vietnam Zyxel Communications Corporation Vietnam Office http www zyxel com vn vi Europe Austria Zyxel Deutschland GmbH http www zyxel de Belarus Zyxel BY http www zyxel b...

Page 105: ...ech Republic Zyxel Communications Czech s r o http www zyxel cz Denmark Zyxel Communications A S http www zyxel dk Estonia Zyxel Estonia http www zyxel com ee et Finland Zyxel Communications http www zyxel fi France Zyxel France http www zyxel fr Germany Zyxel Deutschland GmbH http www zyxel de Hungary Zyxel Hungary SEE http www zyxel hu Italy Zyxel Communications Italy http www zyxel it ...

Page 106: ...ux http www zyxel nl Norway Zyxel Communications http www zyxel no Poland Zyxel Communications Poland http www zyxel pl Romania Zyxel Romania http www zyxel com ro ro Russia Zyxel Russia http www zyxel ru Slovakia Zyxel Communications Czech s r o organizacna zlozka http www zyxel sk Spain Zyxel Communications ES Ltd http www zyxel es Sweden Zyxel Communications http www zyxel se Switzerland Studer...

Page 107: ...ine http www ua zyxel com Latin America Argentina Zyxel Communication Corporation http www zyxel com ec es Brazil Zyxel Communications Brasil Ltda https www zyxel com br pt Ecuador Zyxel Communication Corporation http www zyxel com ec es Middle East Israel Zyxel Communication Corporation http il zyxel com homepage shtml Middle East Zyxel Communication Corporation http www zyxel com me en ...

Page 108: ...er s Guide 108 North America USA Zyxel Communications Inc North America Headquarters http www zyxel com us en Oceania Australia Zyxel Communications Corporation http www zyxel com au en Africa South Africa Nology Pty Ltd http www zyxel co za ...

Page 109: ...device This product has been tested and complies with the specifications for a Class B digital device pursuant to Part 15 of the FCC Rules These limits are designed to provide reasonable protection against harmful interference in a residential installation This device generates uses and can radiate radio frequency energy and if not installed and used according to the instructions may cause harmful...

Page 110: ... antenne Les types d antenne non inclus dans cette liste ou dont le gain est supérieur au gain maximal indiqué sont strictement interdits pour l exploitation de l émetteur Informations Antenne Lorsque la fonction sans fil 5G fonctionnant en 5150 5250 MHz and 5725 5850 MHz est activée pour ce produit il est nécessaire de porter une attention particulière aux choses suivantes Les dispositifs fonctio...

Page 111: ... http www bipt be for more details Draadloze verbindingen voor buitengebruik en met een reikwijdte van meer dan 300 meter dienen aangemeld te worden bij het Belgisch Instituut voor postdiensten en telecommunicatie BIPT Zie http www bipt be voor meer gegevens Les liaisons sans fil pour une utilisation en extérieur d une distance supérieure à 300 mètres doivent être notifiées à l Institut Belge des ...

Page 112: ...lektronisko sakaru direkcijas Vairâk informâcijas http www esd lv Lietuvių kalba Lithuanian Šiuo Zyxel deklaruoja kad šis įranga atitinka esminius reikalavimus ir kitas 2014 53 EU Direktyvos nuostatas Magyar Hungarian Alulírott Zyxel nyilatkozom hogy a berendezés megfelel a vonatkozó alapvetõ követelményeknek és az 2014 53 EU irányelv egyéb elõírásainak Malti Maltese Hawnhekk Zyxel jiddikjara li d...

Page 113: ... applicable collection point for the recycling of electrical and electronic devices For detailed information about recycling of this product please contact your local city office your household waste disposal service or the store where you purchased the product The following warning statements apply where the disconnect device is not incorporated in the device or where the plug on the power supply...

Page 114: ...Il simbolo sotto significa che secondo i regolamenti locali il vostro prodotto e o batteria deve essere smaltito separatamente dai rifiuti domestici Quando questo prodotto raggiunge la fine della vita di servizio portarlo a una stazione di riciclaggio Al momento dello smaltimento la raccolta separata del vostro prodotto e o della sua batteria aiuta a risparmiare risorse naturali e a proteggere l a...

Page 115: ...alent product of equal or higher value and will be solely at the discretion of Zyxel This warranty shall not apply if the product has been modified misused tampered with damaged by an act of God or subjected to abnormal working conditions Note Repair or replacement as provided under this warranty is the exclusive remedy of the purchaser This warranty is in lieu of all other warranties express or i...

Page 116: ...tions 113 viewing 115 channel 55 92 interference 92 configuration backup 85 reset factory defaults 86 restore 85 connection AP 41 contact information 103 copyright 109 CTS Clear to Send 93 customer support 103 D Daylight saving 82 disclaimer 109 dynamic WEP key exchange 97 E EAP Authentication 96 encryption 98 ESS 91 Extended Service Set See ESS 91 F factory defaults restore 85 filters MAC address...

Page 117: ... OS X 21 managing the device good habits 11 Media access control 59 Message Integrity Check MIC 98 Microsoft Windows 19 N Navigation Panel 34 39 navigation panel 34 39 O operation mode access point 24 client 31 router 24 universal repeater 24 P Pairwise Master Key PMK 98 100 PIN configuration 66 68 PSK 98 push button configuration 67 Q Quality of Service QoS 58 R RADIUS 95 message types 95 message...

Page 118: ...90 MAC address filter 63 Wireless network basic guidelines 55 75 channel 55 example 54 overview 54 security 55 SSID 55 Wireless security 55 wireless security 94 troubleshooting 90 WLAN interference 92 security parameters 66 WPA 97 key caching 99 pre authentication 99 user authentication 98 vs WPA PSK 98 wireless client supplicant 99 with RADIUS application example 99 WPA2 97 user authentication 98...

Reviews:

No comments

Related manuals for WX3310-B0

Brand: Fast-Stat Pages: 4

Brand: B&B Electronics Pages: 17

Brand: weBoost Pages: 20

Brand: B&B Electronics Pages: 2

Brand: e+p Pages: 12

1T-CT-680 Series

Brand: Tvone Pages: 10

AC-CXWP-KVM-KIT

Brand: AVProEdge Pages: 20

Brand: Braun Pages: 16

Brand: Maxwell Pages: 40

Brand: Hallde Pages: 38

Brand: Solutions Pages: 10

MULTI-PURPOSE Ultra-Stick MU-HB-02

Brand: Mueller Pages: 8

Brand: Fujitsu Pages: 31

Brand: Asus Pages: 119

Brand: Techly Pages: 16

Fusion4Home Omni/Panel

Brand: SureCall Pages: 20

Brand: SureCall Pages: 60

Brand: Creasol Pages: 2

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands