AirLive WH-5000A Скачать руководство пользователя

Страница: 45 / 62

AirLive WH-5000A User’s Manual

WH-5000A Serials User Guide

6.2.3 WPA-EAP-TLS/WPA2-EAP-TLS

The 802.1x system uses a Radius

Server for key management and a

separate certification system

for

authentication. The IEEE 802.1x provides

Extensible Authentication Protocol

(EAP)

security types allows you to use authentication

methods such as smart cards and certificates.

WH-5000A provides EAP-TLS security

types.

If your wireless network have installed

Radius Servers and the AP that

WH-5000A client mode will link with uses

WPA 802.1x or WPA2 802.1x function,

you need to select WPA-EAP-TLS or WPA2-EAP-TLS.

There are two items, Certificates and Encryption, have to be selected in order to have successful 802.1x

authentication. They are listed as following:

Certificates:

To set up WPA-EAP-TLS/WPA2-EAP-TLS function, you need to get “Certification file” from certification

system. If you have it, then click “

Load New Certification

” to load it. The following picture appears after

you click “Load New Certification”.

unsigned public key certificate and

is part of a public key infrastructure

scheme. The most common commercial

variety is based on the ISO X.509

standard. Normally an X.509 certificate

includes a digital signature from a certificate

authority

(CA)

which vouches

for

correctness of the data contained in

a certificate. This file should have

pem

extension.

Содержание WH-5000A

Страница 1: ...0 AirLive WH 5000A User s Manual WH 5000A 802 11a b g Wireless Outdoor AP User s Manual ...

Страница 2: ...ement Product standard to demonstrate the Compliance of radio base stations and Fixed terminal stations for wireless Telecommunication System with the Basic restrictions or the reference levels related to human exposure to radio Frequency electromagnetic fields 110 MHz Safety for information technology equipment including electrical business equipment Manufacturer Importer Position Title Vice Pres...

Страница 3: ...ables o exigibles de la Directiva 1999 5 CE pt Português Portuguese OvisLink Corp declara que este WH 5000Aestá conforme com os requisitos essenciais e outras disposições da Directiva 1999 5 CE el Ελληνική Greek ΜΕ ΤΗΝ ΠΑΡΟΥΣΑ OvisLink Corp ΔΗΛΩΝΕΙ ΟΤΙ WH 5000A ΣΥΜΜΟΡΦΩΝΕΤΑΙ ΠΡΟΣ ΤΙΣ ΟΥΣΙΩΔΕΙΣ ΑΠΑΙΤΗΣΕΙΣ ΚΑΙ ΤΙΣ ΛΟΙΠΕΣ ΣΧΕΤΙΚΕΣ ΔΙΑΤΑΞΕΙΣ ΤΗΣ ΟΔΗΓΙΑΣ 1999 5 ΕΚ sl Slovensko Slovenian OvisLink Corp i...

Страница 4: ...py of the license contact OvisLink Corp and a copy will be provided to you UNITED STATES GOVERNMENT LEGEND If you are a United States Government agency then this documentation and the product described herein are provided to you subject to the following All technical data and computer software are commercial in nature and developed solely at private expense Software is delivered as Commercial Comp...

Страница 5: ...3 2 4 Forget username password and IP 16 Chapter 3 System Configuration 17 3 1 System Configuration General 17 3 2 System Configuration Operating Mode 18 3 3 System Configuration WAN 18 Chapter 4 Wireless Access Point Configuration 20 4 1 Select Operation Mode 20 4 2 Wireless Access Point General 21 4 2 1 MAC address 21 4 2 2 SSID 21 4 2 3 Wireless Mode 22 4 2 4 Channel Number 23 4 2 5 TX Power Mo...

Страница 6: ... 2 2 WPA PSK WPA2 PSK 41 6 2 3 WPA EAP TLS WPA2 EAP TLS 42 Chapter 7 Service Settings Menu 44 7 1 DHCP server 44 7 2 SNMP Agent 45 Chapter 8 User Management Menu 46 8 1 List All Users 46 8 2 Add New User 47 Chapter 9 Monitoring Reports Menu 48 9 1 System Status 48 9 2 Bridging Status 49 9 3 Bridge Site Map 49 9 4 Wireless Clients 50 9 5 Adjacent AP list 50 9 6 DHCP Client List 50 Chapter 10 Logs 5...

Страница 7: ...4 AirLive WH 5000A User s Manual WH 5000A Serials User Guide Chapter 12 Reset and Rest to Factory Default Setting 58 Chapter 13 Technical Support 59 ...

Страница 8: ... protect your wireless network With support of 802 11 a b g standards the WH 5000A works at 2 4GHz 802 11b g and 5GHz 802 11a Besides with 54Mbps transmit data rate of 802 11 a g and 11Mbps transmit data rate of 802 11b the WH 5000A also provides Super G Turbo A function Turbo A mode doesn t support at ETSI domain region the 802 11g Super and 802 11a Turbo technologies provide speed and throughput...

Страница 9: ...de including WEP WPA TKIP and AES CCM and WPA2 TKIP and AES CCM are available The AirLive WH 5000A also supports EAP MD5 EAP TTLS EAP TLS PEAP EAP SIM protocols 1 3 Wireless Bridging Mode WDS In Wireless Bridging WDS mode the WAN interface may or may not need to connect to a backbone Ethernet switch It depends on needs of infrastructure network The Wireless Bridging Mode function extends the netwo...

Страница 10: ...t is the interface for computer connected to it The following diagram an example of WDS mode network topology There is numerous security methods provided in this mode including WEP WPA TKIP and AES CCM and WPA2 TKIP and AES CCM are available 1 5 Product Features 1 5 1 Basic Features Single Radio Module Support 802 11 a b g 2 4GHz 5GHz Band Support Super G and Turbo A mode Multifunction functions W...

Страница 11: ...oint and Point to Multi Point Bridge Bridge site map Adjustable ACK timing Radio Support IEEE 802 11a b g Adjustable Radio Power Automatically optimal channel selection in 2 4GHz frequency band 1 5 3 Security Features Configuration through HTTPS TLS secure web AP WEP 64 bit 128 bit and 152 bit WPA n Pre shared key n TKIP AES CCMP WPA2 802 11i MAC based authentication MAC address filtering In band ...

Страница 12: ...ry according to individual country regulations Receive Sensitivity Typical n 93dBm at 1Mbps n 88dBm at 11Mbps 802 11g Frequency band American FCC 2 412 2 462GHz 11 channels Europe ETSI 2 412 2 462GHz 13 channels Data rate 6 9 12 18 24 36 48 54 Mbps 72 96 108 Mbps Super G mode Modulation Orthogonal Frequency Divisional Multiplexing OFDM BPSK at 6 and 9 Mbps QPSK at 12 and 18 Mbps 16 quadrature ampl...

Страница 13: ...er setting will vary according to individual country regulations Receive Sensitivity Typical n 84dBm at 6Mbps n 70dBm at 48Mbps n 68dBm at 54Mbps 1 7 LED indicator definition LED Description Power If this light is on the unit is on If it is not on the unit is off WAN If this light is on the unit is connected to network If it is off the unit does not have an active connection to network WLAN The li...

Страница 14: ...11 AirLive WH 5000A User s Manual WH 5000A Serials User Guide 1 9 Appearance RJ45 x1 SMA antenna connector x1 Reset Button LED indictor x3 Power WAN WLAN DC IN jack ...

Страница 15: ...indows XP A compatible IEEE 802 11a b g PC card or device for each computer that you wish to wirelessly connect to your wireless network Access to one laptop or PC with an Ethernet card and cable that can be used to complete the initial configuration of the unit A Web browser program such as Microsoft Internet Explorer 5 5 or later or Netscape 6 2 or later installed on the PC or laptop you will be...

Страница 16: ... a static IP address Go to your network connection settings and modify your laptop PC s LAN connection TCP IP properties Set the IP address and subnet mask The IP address can be in the range of 192 168 254 xxx where xxx can be from 2 to 199 Now you can open a browser and connect to the AirLive WH 5000A to begin configuring the unit 2 3 Login On your computer pull up a browser window and put the de...

Страница 17: ...list in Crypto Officer Role group and then three times you fail to re authenticate your account will be locked 3 There are two kind of user roles for WH 5000A crypto officer and administrator Please refer to Chapter 8 to get more detail information The username list in Crypto Officer Role group is the only role that can unlock locked account Once the account has been locked use the username and pa...

Страница 18: ...ide If the login username and password are correct the following figure will be showed The default operation mode is Client mode You can select Wireless Access Point or Wireless Bridge mode at System Configuration Operation mode to switch to AP or Bridge mode ...

Страница 19: ...ad changed username password and IP but you forget it You can find there is a Reset button at front plane Press this button over 8 seconds the unit will go back as factory default setting The username and password will back to airlive and airlive and the IP will be back to 192 168 254 254 and operation mode as Client Mode ...

Страница 20: ...ation General page This screen lists the software version number for your WH 5000A and allows you to set the Host Name and Domain Name as well as establish system date and time Description Host and Domain Name Both set at the System Time You can manual key in the WH 5000A is with RTC chip to keep date and time data It can keep system date and time data for 5 days Note The Crypto Officer is the onl...

Страница 21: ...es your configuration will be lost 3 3 System Configuration WAN Click the entry on the left hand navigation panel for System Configuration WAN This directs you to the System Configuration WAN page Static IP The default setting of WAN port IP is Specify a static IP address You need input the information that the AP requires in order to allow the WH 5000A access to the wired LAN This will be the IP ...

Страница 22: ...r There are two ways to obtain the new IP address 1 Using WH 5000A embedded Remote Logging function Set up Remote Logging before setting up WAN using DHCP to obtain new IP address Remote logging allows you to forward the syslog data from each machine to a central remote logging server Thus you can get new IP from logging server Please refer to Chapter 11 3 to get more detail information 2 Using Wi...

Страница 23: ... MAC Address Filtering Rogue AP Detection Advanced Service Settings DHCP Server Monitoring Reports Wireless Clients Adjacent AP List DHCP Client List 4 1 Select Operation Mode The default operation mode is Client mode You can select Wireless Access Point mode at System Configuration Operation mode to switch to AP mode Click the entry on the left hand navigation panel for System Configuration Opera...

Страница 24: ...nder Wireless Access Point General Security MAC Address Filtering Rogue AP Detection Advanced Those setup items allow your computer s WLAN Card to communicate with the access point 4 2 1 MAC address The MAC address list here is AP s wireless interface 4 2 2 SSID If you will be using an SSID for a wireless LAN enter it here and in the setup of each wireless client This nomenclature has to be set on...

Страница 25: ...02 11b rates for all of 802 11g and 802 11b devices It will little slow down the network throughput 802 11g Super The 802 11g Super mode can support data rate up to 108Mbps 72 96 108 Mbps Although you can gain a highest data rate you need to use this function carefully because it occupies large bandwidth and may corrupt the adjacent channels radio signal Note Super G s channel bonding feature can ...

Страница 26: ...s radio signal at each channel and show them at this screen This action does not select the channel for you but shows you what will most probably be channel selected if you leave the following dropdown menu at Yes Auto When channel number set up as Auto the WH 5000A will select the optimal channel at boot up 802 11b 802 11g and 802 11b g Mixed mode There are 11 13 for ETSI channel numbers that may...

Страница 27: ... operation it is fixed at channel 6 802 11a The frequency band of IEEE 802 11a will vary according to individual country regulations The following picture shows the channel at 5GHz frequency band that WH 5000A supports at 802 11a mode 802 11a Turbo The following picture shows the channel at 5GHz frequency band that WH 5000A supports at 802 11a Turbo mode airlive airlive airlive ...

Страница 28: ...ize is greater than the RTS threshold the RTS CTS handshaking is performed DTIM 1 65535 The number of beacon intervals between successive Delivery Traffic Identification Maps DTIMs This feature is used for Power Save Mode Basic Rate 802 11b 1 and 2 Mbps 1 2 5 5 and 11Mbps The basic rates used and reported by the AP The highest rate specified is the rate that the AP uses when transmitting broadcast...

Страница 29: ...gned to provide the same level of security for wireless LANs as that of a wired LAN but is not now state of the art But the use of WEP encryption can still provides some measure of security WEP relies on the use of identical static keys deployed on client stations and access points In WEP you can set the Authentication Type for Open System Shared Key or Open Shared Select 64 bit 128bit or 152 bit ...

Страница 30: ...ity types allows you to use authentication methods such as smart cards and certificates Using 802 1x function you need to install a separate certification system such as Radius Server for key management and authentication requires and each client must have been issued an authentication certificate Pre Share Key or 802 1x If you don t have Radius Server selecting pre shared key Simply input up to 6...

Страница 31: ... 4 MAC Address Filtering Click the entry on the left hand navigation panel for Wireless Access Point MAC Address Filtering This directs you to the Wireless Access Point MAC Address Filtering page The factory default for MAC Address filtering is Disabled If you enable MAC Address filtering you should also set the toggle for Filter Type This works as follows If Filtering is enabled and Filter Type i...

Страница 32: ... option to only send rogue APs that match the AP s channel or the wireless bridge s channel If both options are checked only APs that match both the SSID and channel are sent The Adjacent AP lists under Monitoring Reports on the navigation menu will detail any APs information 4 6 Wireless Access Point Advanced Click the entry on the left hand navigation panel for Wireless Access Point Advanced Thi...

Страница 33: ...t hand navigation panel for Services Setting SNMP Server This directs you to the Services Setting SNMP page The detail description of DHCP server writes at Section 7 1 4 8 Monitoring Reports If you want to understand some information about WLAN status the entry on the left hand navigation panel for Monitoring Reports Wireless Clients Monitoring Reports Adjacent AP List and Monitoring Reports DHCP ...

Страница 34: ...the basic service set BSS of a standalone AP and to connect two separate LANs without installing my cabling The WH 5000A model support manual bridge function The manual bridging function in the WH 5000A allows you to set a number of alternate bridging configurations Point to Point bridging of two Ethernet Links Point to Multipoint bridging of several Ethernet links Repeater mode The following scre...

Страница 35: ... General Click the entry on the left hand navigation panel for Wireless Bridge General This directs you to the Wireless Access Point Bridging page Signal strength LED MAC Signal strength LED MAC allows you set up the SS Signal Strength LED to indicate the received bridge signal strength RSSI Received Signal Strength Indication of remote device the When you key in the BSSID at Add remote sAP BSSID ...

Страница 36: ...rt number and confirm by clicking Delete 5 3 Wireless Bridge Radio Click the entry on the left hand navigation panel for Wireless Bridge Radio This directs you to the Wireless Access Point Radio page MAC Address This is the MAC Address for WLAN card and as BSSID for the bridge devices at the other end that want to link with this unit The Wireless Bridging uses the BSSID for purposes of establishin...

Страница 37: ... Bridging uses the BSSID for purposes of establishing contact You need to enter the BSSID of remote bridge enter hexadecimal with colons Data entry is not case sensitive You may also enter a note that defines the location of the remote bridge Then click Add to accept 5 4 Wireless Bridge Encryption Click the entry on the left hand navigation panel for Wireless Bridge Encryption This directs you to ...

Страница 38: ... loop or Disable if there is no possibility of bridging loop to gain higher efficient Bridge signal strength LED port Set up the SS LED map to which remote bridge BSSID Entering remote bridge s MAC address at the BSSID field of Add remote AP s BSSID Note section Although it is option item entering a note that defines the location of the remote bridge may be helpful for your management lots of remo...

Страница 39: ...ble if no bridging loop Wireless Bridge Radio Channel 4 4 Wireless Mode 802 11g for high data rate 802 11g for high data rate TX Power Auto Auto Propagation distance Select appropriate value Select appropriate value BSSID Add Bridge 2 BSSID MAC address Add Bridge 1 BSSID MAC address Wireless Bridge Encryption Encryption Select appropriate Key type and Key Must be the same key as Bridge 2 Select ap...

Страница 40: ... 3 Wireless Bridge General Bridge Mode Manual Bridge Manual Bridge Spanning Tree Protocol Enable or Disable if no bridging loop Enable or Disable if no bridging loop Wireless Bridge Radio Channel 4 4 Wireless Mode 802 11g for high data rate 802 11g for high data rate TX Power Auto Auto Propagation distance Select appropriate value Select appropriate value BSSID Add Bridge 2 BSSID MAC address Add B...

Страница 41: ...ge Manual Bridge Spanning Tree Protocol Enable Disable if no loop Enable Disable if no loop Enable Disable if no loop Wireless Bridge Radio Channel 4 4 4 Wireless Mode 802 11g for high data rate 802 11g for high data rate 802 11g for high data rate TX Power Auto Auto Auto Propagation distance Appropriate value Appropriate value Appropriate value BSSID Add Bridge2 s BSSID MAC address Add Bridge1 s ...

Страница 42: ... to link with AP lists as following 1 Operation mode Click the entry on the left hand navigation panel for System Configuration Operation mode Select the operation mode as Wireless Client and click Apply button 2 SSID This nomenclature of SSID has to be same as the one on the access point which WH 5000A want to link with The bundle Site Survey function can help you discover the APs in your environ...

Страница 43: ...ns under System Configuration Open WEP Shared WEP WPA PSK WPA EAP TLS WPA2 PSK WPA2 EAP TLS 6 2 1 Open This is one of WEP Authentication Type Select None 64 bit 128 bit or 152 it encryption and enter the WEP key That same WEP key must also be set on each wireless clients AP those are to become part of the wireless network Key Generator The Key generator function generates a randomized encryption k...

Страница 44: ...wireless network If the shared mode is selected each wireless device must also be as shared mode 6 2 2 WPA PSK WPA2 PSK If the AP that WH 5000A client mode will link with uses WPA PSK or WPA2 PSK function and your wireless network hasn t installed Radius Server you need to select WPA PSK or WPA2 PSK mode Simply input up to 63 character numeric hexadecimals in the Passphrase field If the AP uses WP...

Страница 45: ...PA EAP TLS or WPA2 EAP TLS There are two items Certificates and Encryption have to be selected in order to have successful 802 1x authentication They are listed as following e Certificates To set up WPA EAP TLS WPA2 EAP TLS function you need to get Certification file from certification system If you have it then click Load New Certification to load it The following picture appears after you click ...

Страница 46: ... Private Key Password Private key password encrypts your certificate s private key Login Name Enter your user name into the Login name field This is the name that is presented to the network when you authenticate If you authenticate against a Windows Active Directory use the form domain user_name Otherwise use a login name that matches the form of the user name as it is stored in the authenticatio...

Страница 47: ...ervice Setting DHCP Server This directs you to the DHCP server page This page allows configuration of the DHCP server function The DHCP server function accessible only from the Local LAN port is used for initial configuration of the management function The default factory setting for the DHCP server function is enabled You can disable the DHCP server function if you wish You can also set the range...

Страница 48: ...er In the current release the SNMP agent module support SNMPv1 SNMPv2C and SNMPv3 It also implements warmStart linkDown linkUp and authentication The SNMP configuration consists of several fields which are explained below Community The Community field for Get Read Only Set Read Write and Trap is simply the SNMP terminology for password for those functions Source The IP address or name where the in...

Страница 49: ...cryption function The WH 5000A default username is airlive password is airlive and its role is crypto officer role to allow you initial the configuration job There are two options under Admin User Management List All Users Edit User Add New Users Each screen is described in detail in the following subsections 8 1 List All Users Click the entry on the left hand navigation panel for User Management ...

Страница 50: ... panel for User Management Add New User This directs you to this page The Add New User screen allows you to add new Crypto Officer or Administrators assigning and confirming the password for each The password can not be less than 8 characters After you key in user ID password and choose Role click Add to add this new user ...

Страница 51: ...e Map There are three options under Montioring Reprots when the operation mode is Wireless Bridging and Wireless Client System Status Bridging Status Bridging Site Map Wireless Clients Adjacent AP List DHCP Client List 9 1 System Status Click the entry on the left hand navigation panel for Monitor Reports System status This directs you to this page This screen displays the status of the WH 5000A d...

Страница 52: ...gation panel for Monitor Reports Bridge Site Map This screen displays the graphology of Bridges Network topology with some useful information IP Signal Strength and so on The map shows the network layer 2 topology APs that are part of another network are not displayed in the map The root STP node is always on top and the nodes of the hierarchy are displayed below it Wired links are double dotted l...

Страница 53: ...ist This screen displays the detected APs BSSID MAC address SSID Channel Signal Strength Operation Type Age and WEP status These APs are detected by the AP s wireless card The lists of APs are only within the band that can be seen from a particular channel For example if the AP is on channel 1 it will display APs on channels 1 3 If you select the check box next to any AP shown the AP will thereaft...

Страница 54: ...list displays all clients currently connected to the WH 5000A via DHCP server including their hostnames IP addresses and MAC addresses The DHCP Client list constantly collects entries To remove entries from the list check mark the Revoke Entry selection and click Remove to confirm the action ...

Страница 55: ... entry on the left hand navigation panel for Logs System Log This directs you to this page The system log display system facility messages with date and time stamp There are messages documenting functions performed internal to system based on the system s functionality Generally the network administrator would only use this information if trained as or working with a field engineer or as informati...

Страница 56: ...isplays system facility messages with date and time stamp for any actions involving web access For example this log records when you set encryption mode change operating mode etc using the web browser It establishes a running record regarding what actions were performed and by whom The Web Access Log will continue to accumulate listing If you wish to export listings use the Export button ...

Страница 57: ...ome available When a new upgrade file becomes available you can do a firmware upgrade from the Firmware Upgrade window There is also a configuration file transfer option which allows the system configuration file from one AP to be transferred to another AP in order to minimize the administration of the APs Only configuration parameters that can be shared between APs are downloaded in the configura...

Страница 58: ...he passphrase protects the file from unauthorized users It prevents unauthorized user from applying the system configuration file to an unauthorized AP to gain access to the network Before downloading the system configuration file to a local computer the use must enter a passphrase to protect the file Before the system configuration file can be uploaded onto another WH 5000A the passphrase must be...

Страница 59: ... Remote Logging Click the entry on the left hand navigation panel for System Administration Remote Logging to enter this page Remote logging allows you to forward the syslog data from each machine to a central remote logging server In the WH 5000A this function uses the syslogd daemon You can find more information about syslogd by searching for syslogd in an Internet search engine such as Google t...

Страница 60: ...hanging any preset functionality Both Crypto Officer and Administrator roles have access to this function 11 5 Utilities Click the entry on the left hand navigation panel for System Administration Utilities to enter this page This screen gives you ready access to two useful utilities Ping and Trace route Simply enter the IP address or hostname you wish to ping or trace route and click either the P...

Страница 61: ...factory default settings that will change any preset functionality There are two ways to do reset function One is by enter configure screen introduce at chapter 11 2 and chapter 11 4 and another way is done by press reset button at the front panel of case The behaviors of reset button are as below No action if press button less than 3 seconds Reset system if press button between 3 8 seconds Reset ...

Страница 62: ...t generates uses and can radiate radio frequency energy and if not installed and used in accordance with the instruction manual may came harmful interference to radio communications Operation of this equipment in a residential area is likely to cause harmful interference in which case the user will be required to correct the interference at his own expense Installation should be accomplished using...

Результаты поиска

Содержание WH-5000A

Отзывы:

Похожие инструкции для WH-5000A

Бренды по названию

Популярные бренды

AirLive WH-5000A, Руководство пользователя

Результаты поиска

Содержание WH-5000A

Отзывы:

Похожие инструкции для WH-5000A

Бренды по названию

Популярные бренды