Moxa Technologies AWK-4121 Скачать руководство пользователя страница 34 | Manualshive

Страница: 34 / 76

background image

AirWorks AWK-4121 User’s Manual

Web Console Configuration

You can use

Basic Wireless Settings

→

WLAN Certificate Settings

to import your WLAN

certificate and enable EAP-TLS on the client end.

You can check the current certificate status in

Current Status

if it is available.

Certificate issued to

: shows the certificate user

Certificate issued by

: shows the certificate issuer

Certificate expiration date

: indicates when the certificate gets invalid

EAP-TTLS

It is usually much easier to re-use existing authentication systems, such as a Windows domain or
Active Directory, LDAP directory, or Kerberos realm, rather than creating a parallel authentication
system. As a result, TTLS (Tunneled TLS) and PEAP (Protected EAP) are used to support the use
of so-called “legacy authentication methods.”

TTLS and PEAP work in a similar way. First, they establish a TLS tunnel, like EAP-TLS, and
validate whether the network is trustworthy with digital certificates on the authentication server.
This step is run to establish a tunnel that protects the next step (or “inner” authentication) so it is
sometimes referred to as the “outer” authentication. Then the TLS tunnel is used to encrypt an
older authentication protocol that authenticates the user for the network.

As you can see, digital certificates are still needed for the outer authentication in a simplified form.
Only a small number of certificates are required, which can be generated by a small certificate
authority. Certificate reduction makes TTLS and PEAP much more popular than EAP-TLS.

The AWK-4121 provides some non-cryptographic EAP methods including

PAP

,

CHAP

,

MS-CHAP

, and

MS-CHAP-V2

. These EAP methods are not recommended for direct use on

wireless networks. However, they may be useful as inner authentication methods with TTLS or
PEAP.

Because the inner and outer authentications can use distinct user names in TTLS and PEAP, you
can use an anonymous user name for the outer authentication, while the true user name is shown
only through the encrypted channel. Remember, not all client software supports anonymous
altercation. Confirm this with the network administrator before you enable identity hiding in TTLS
and PEAP.

3-18

«
...
32
33
34
35
36
...
»

Содержание AWK-4121

Страница 1: ...Moxa AirWorks AWK 4121 User s Manual First Edition January 2009 www moxa com product 2009 Moxa Inc All rights reserved Reproduction without permission is prohibited...

Страница 2: ...eserves the right to make improvements and or changes to this manual or to the products and or the programs described in this manual at any time Information provided in this manual is intended to be a...

Страница 3: ...ings 3 5 Network Settings 3 6 Time Settings 3 7 Wireless Settings 3 8 Basic Wireless Settings 3 8 WLAN Security Settings 3 12 Advanced Wireless Settings 3 20 WLAN Certification Settings for EAP TLS in...

Страница 4: ...r with HTTPS SSL 4 5 Disabling Telnet and Browser Access 4 7 Chapter 5 References 5 1 Wireless Distribution System WDS 5 2 Beacon 5 4 DTIM 5 4 Fragment 5 4 RTS Threshold 5 4 STP and RSTP 5 4 The STP R...

Страница 5: ...4121 is rated to operate at temperatures ranging from 40 to 75 C and is rugged enough for any harsh industrial environment In this chapter we cover the following topics Overview Package Checklist Prod...

Страница 6: ...ipped with the following items If any of these items is missing or damaged please contact your customer service representative for assistance y 1 AWK 4121 y 2 Omni directional antennas 5dBi N type mal...

Страница 7: ...roxy ARP DNS HTTP HTTPS IP ICMP SNTP TCP UDP RADIUS SNMP RTP AP only Protocols ARP BOOTP DHCP dynamic VLAN Tags for 802 1X Clients STP RSTP IEEE 802 1D w Data Rates 802 11b 1 2 5 5 11 Mbps 802 11a g 6...

Страница 8: ...4 x 147 7 x 66 5 mm 8 82 x 5 82 x 2 62 in Weight 1 2 kg Installation Wall Mounting or DIN Rail with optional wall mounting kit Casing IP67 protection aluminum case Environment Operating Temperature 40...

Страница 9: ...ot being supplied On Relay is event triggered Blink slow Cannot get an IP address from the DHCP server interval 1 sec Blink fast IP address conflict interval 0 5 sec FAULT Red Off Normal status Green...

Страница 10: ...the system is ready with two short beeps Reset Button The RESET button is located on the bottom panel of the AWK 4121 You can reboot the AWK 4121 or reset it to factory default settings by pressing t...

Страница 11: ...y contacts form an open circuit when a user configured event is triggered If a user configured event does not occur the relay circuit will remain closed For safety reason the relay circuit is kept ope...

Страница 12: ...the first time quickly set up your wireless network and test whether the connection is running well With the function guide you can easily locate the functions you need In this chapter we cover the f...

Страница 13: ...ED indicator on AWK 4121 s LAN port lights up it means the connection is established Step 3 Set up the computer s IP address Set an IP address on the same subnet as the AWK 4121 Since the AWK 4121 s d...

Страница 14: ...ngs if you would like to use the Client mode instead Detailed information about configuring the AWK 4121 s operation can be found in Chapter 3 Step 6 Test communications We will describe 2 test method...

Страница 15: ...t port Use the default settings for the first AWK 4121 connected to notebook A and change the second or third AWK 4121 connected to notebook B to Client mode Then configure the notebooks and AWK 4121s...

Страница 16: ...ommunication These advanced functions are all optional Application oriented device management functions to set up events traps and reactions via relay warning e mail and SNMP notification These functi...

Страница 17: ...s easy to use management functions will help you set up your AWK 4121 as well as establish and maintain your wireless network easily In this chapter we cover the following topics Configuration by Web...

Страница 18: ...K 4121 you must make sure that the PC host and AWK 4121 are on the same logical subnet Similarly if the AWK 4121 is configured for other VLAN settings you must make sure your PC host is on the managem...

Страница 19: ...ges to access each of AWK 4121 s functions In the following paragraphs we will go through each of the AWK 4121 s management functions in detail You can also get a quick overview of these functions in...

Страница 20: ...e summarizes the AWK 4121 s current status The information is categorized into several groups System info Device info and 802 11 info NOTE Some values for 802 11 info may not show up due to different...

Страница 21: ...g Description Factory Default Max 31 Characters This option is useful for specifying the role or application of different AWK 4121 units AWK 4121_ Serial No of this AWK 4121 Device location Setting De...

Страница 22: ...e AWK 4121 on a TCP IP network 192 168 127 253 Subnet mask Setting Description Factory Default AWK 4121 s subnet mask Identifies the type of network to which the AWK 4121 is connected e g 255 255 0 0...

Страница 23: ...NTP server or user specified Date and Time information Functions such as Auto warning can add real time information to the message You can click on the Modify button to initiate a time setting dialog...

Страница 24: ...s of NTP time server The 2nd time will be used if the 1st NTP server fails to connect None Query period Setting Description Factory Default Query period time 1 9999 seconds This parameter determines h...

Страница 25: ...APs at both end of the WDS link must be configured manually with each other s MAC addresses To establish a dynamic bridge link between an AP and a Client both devices must be configured with the same...

Страница 26: ...listing the information of available APs as shown in the following figure You can click on the SSID of an entity and bring the value of its SSID onto the SSID field of the Basic Wireless Settings page...

Страница 27: ...less AP 6 in B G Mixed mode SSID Setting Description Factory Default Max 31 Characters The SSID of a client and the SSID of the AP must be identical for them to communicate with each other MOXA SSID b...

Страница 28: ...dels are available in AWK 4121 by selecting Security mode and WPA type y Open No authentication no data encryption y WEP Static WEP Wired Equivalent Privacy keys must be manually configured y WPA WPA2...

Страница 29: ...Open or Open System authentication type is often used when WEP data encryption is run with authentication When WEP is enabled as a security mode the length of a key so called WEP seed can be specifie...

Страница 30: ...Wi Fi Protected Access and WPA2 are significantly improved encryption methods of WEP WPA is a security standard based on 802 11i draft 3 while WPA2 is based on the fully ratified version of 802 11i Th...

Страница 31: ...mode only TKIP Passphrase Setting Description Factory Default 8 63 characters Master key to generate keys for encryption and decryption None Key renewal for AP mode only Setting Description Factory D...

Страница 32: ...sphrases WPA type Setting Description Factory Default Personal Provides Pre Shared Key enabled WPA and WPA2 Enterprise Provides enterprise level security for WPA and WPA2 Personal Encryption method Se...

Страница 33: ...urity protocol TTLS Specifies Tunneled Transport Layer Security PEAP Specifies Protected Extensible Authentication Protocol or Protected EAP TLS Before choosing the EAP protocol for your WPA WPA2 Ente...

Страница 34: ...is run to establish a tunnel that protects the next step or inner authentication so it is sometimes referred to as the outer authentication Then the TLS tunnel is used to encrypt an older authenticati...

Страница 35: ...Factory Default Max 31 characters A distinct name used for outer authentication None User name Password Setting Description Factory Default User name and password used in inner authentication None PE...

Страница 36: ...ireless related parameters are presented in this section to help you set up your wireless network in detail Transmission Rate Setting Description Factory Default Auto The AWK 4121 will sense and adjus...

Страница 37: ...oordinates transmission and reception to ensure efficient communication 2346 NOTE You can refer to the related glossaries in Chapter 5 for more detailed information about the above mentioned settings...

Страница 38: ...K 4121 reboots Even though it is expired it can still be seen on Current Certificate Advanced Settings Several advanced functions are available to increase the functionality of your AWK 4121 and wirel...

Страница 39: ...e DHCP server function Disable Default gateway Setting Description Factory Default IP address of a default gateway The IP address of the router that connects to an outside network None Subnet mask Set...

Страница 40: ...es various filters for IP based packets going through LAN and WLAN interfaces You can set these filters as a firewall to help enhance network security MAC Filter The AWK 4121 s MAC filter is a policy...

Страница 41: ...nd netmasks you can specify a single IP address or a range of IP addresses to accept or drop For example IP address 192 168 1 1 and netmask 255 255 255 255 refers to the sole IP address 192 168 1 1 IP...

Страница 42: ...se the end port cannot be larger then the start port The Application name is a text string that describes the corresponding entity with up to 31 characters Remember to check the Active check box for e...

Страница 43: ...STP RSTP in AP mode including WDS only The following figures indicate which Spanning Tree Protocol parameters can be configured A more detailed explanation of each parameter is given below the figure...

Страница 44: ...Spanning Tree topology Disable unchecked Port priority Setting Description Factory Default Numerical value selected by user Increase this port s priority as a node on the Spanning Tree topology by inp...

Страница 45: ...le Select the security mode and level that will be used to communicate between the SNMP agent and manager Protocol Version Setting on UI web page Authentication Type Data Encryption Method V1 V2c Read...

Страница 46: ...nt version Setting Description Factory Default V1 V2c V3 or V1 V2c or V3 only Select the SNMP protocol version used to manage the switch V1 V2c Admin auth type for V1 V2c V3 and V3 only Setting Descri...

Страница 47: ...following table You can check the box for Enable log to enable the grouped events All default values are enabled checked The log for system events can be seen in Status System Log System related even...

Страница 48: ...ovides the event logs for the Syslog server The function supports up to three configurable Syslog servers and Syslog server UDP port numbers When an event occurs the event will be sent as a Syslog UDP...

Страница 49: ...Active to enable the event items All default values are deactivated unchecked Details for each event item can be found on the System log Event Types table on page 3 31 E mail Server Settings You can...

Страница 50: ...s Enter the receivers e mail addresses None Relay The AWK 4121 has one relay output which consists of 2 terminal block contacts on the AWK 4121 s top panel These relay contacts are used to indicate us...

Страница 51: ...or send requests to query every object on every device It would be better if the managed device agent could notify the management station by sending a message known as a trap for the event Trap Event...

Страница 52: ...ntication Alert Status Associated Client List for AP mode only Associated Client List shows all the clients that are currently associated with a specific AWK 4121 You can click Select all to select al...

Страница 53: ...Clear Log button to clear the log contents and the Refresh button to refresh the log Relay Status The status of user configurable events can be found under Relay Status The status will refresh every...

Страница 54: ...n on the Wireless Status page The status will refresh every 5 seconds if the Auto refresh box is checked Certain values for 802 11 info may not show up due to different operation modes As a result Cur...

Страница 55: ...consoles HTTPS and SSH Ping Ping helps to diagnose the integrity of wired or wireless networks By inputting a node s IP address in the Destination field you can use the ping command to make sure it e...

Страница 56: ...lf When upgrading your firmware the AWK 4121 s other functions are forbidden ATTENTION Please make sure the power source is stable when you upgrade your firmware An unexpected power breakup may damage...

Страница 57: ...e new password for confirmation For your security do not use the default password root and remember to change the administration password regularly Save Configuration The following figure shows how th...

Страница 58: ...n in the non volatile memory until you save the configurations Restart If you submitted configuration changes you will find a blinking string in the upper right corner of the screen After making all y...

Страница 59: ...ges already saved you will see just one Restart button on your screen You will not be able to run any of the AWK 4121 s functions while the system is rebooting Logout Logout helps users disconnect the...

Страница 60: ...n method which requires using a short serial cable to connect the AWK 4121 to a PC s COM port can be used if you do not know the AWK 4121 s IP address The other consoles can be used to access the AWK...

Страница 61: ...tions when you cannot access the AWK 4121 over Ethernet LAN such as in the case of LAN cable disconnections or broadcast storming over the LAN ATTENTION Do not use the RS 232 console manager when the...

Страница 62: ...s Select the appropriate COM port for Console Connection 115200 for Baud Rate 8 for Data Bits None for Parity and 1 for Stop Bits 4 Click on the Terminal tab and select VT100 or ANSI for Terminal Type...

Страница 63: ...operation Configuration by Telnet and SSH Consoles You may use Telnet or SSH client to access the AWK 4121 and manage the console over a network To access the AWK 4121 s functions over the network fr...

Страница 64: ...putty exe and then input the AWK 4121 s IP address specifying 22 for the SSH connection port 2 The Console login screen will appear Please refer to the previous paragraph RS 232 Console Configuration...

Страница 65: ...y a company they have not chosen to trust 3 Select Yes to accept the certificate issued by Moxa IW and then enter the AWK 4121 s web browser interface secured via HTTPS SSL You can see the protocol in...

Страница 66: ...Access If you are connecting the AWK 4121 to a public network but do not intend to use its management functions over the network then we suggest disabling both Telnet Console and Web Configuration Ple...

Страница 67: ...chnologies The information in this chapter can help you administer your AWK 4121s and plan your industrial wireless network better The following topics are covered Wireless Distribution System WDS Bea...

Страница 68: ...orwards packets sent from the notebook computers to AP 1 through WDS Then AP 1 forwards the packets to the Ethernet LAN Packets destined for the notebook computers follow a reverse path from the Ether...

Страница 69: ...are connected to other peer bridges by WDS See the following figure for an example of a network planning diagram ATTENTION Be sure to eliminate loops from networks that consist of wireless bridges Et...

Страница 70: ...his setting determines how large a packet can be before the Access Point coordinates transmission and reception to ensure efficient communication This value should remain at its default setting of 2 3...

Страница 71: ...orming when it decides to enable a link to a neighboring bridge Adjacent bridges connected via point to point links will be able to enable a link without waiting to ensure that all other bridges in th...

Страница 72: ...and product You can also learn how to contact Moxa for technical support The following topics are covered About This User s Manual DoC Declaration of Conformity Federal Communication Commission Interf...

Страница 73: ...1 y Hardware Rev 1 0 y Firmware Ver 1 0 You are strongly recommended to visit Moxa s website http www moxa com and find the latest product datasheet firmware QIG Quick Installation Guide UM User s Man...

Страница 74: ...transmitter FCC Radiation Exposure Statement This equipment complies with FCC radiation exposure limits set forth for an uncontrolled environment This equipment should be installed and operated with a...

Страница 75: ...own during firmware update The AWK 4121 is designed to help administrators recover such damage and resume system operation rapidly You can refer to the following instructions to recover the firmware C...

Страница 76: ...own during firmware update The AWK 4121 is designed to help administrators recover such damage and resume system operation rapidly You can refer to the following instructions to recover the firmware C...

Отзывы:

Нет отзывов

Похожие инструкции для AWK-4121

Univerge SV8100

Бренд: NEC Страницы: 44

Бренд: 4IPNET Страницы: 97

SmartSwitch Router

Бренд: Cabletron Systems Страницы: 338

Бренд: Ubiquiti Страницы: 50

Бренд: XAVI Technologies Corp. Страницы: 71

Бренд: IBM Страницы: 32

JetWeb JX2-PR0FI1

Бренд: Jetter Страницы: 67

Бренд: JUMO Страницы: 60

2000 IDU Series

Бренд: EMS Страницы: 52

HIRESCHMANN IT MAMMUTHUS MTM8003-FAN

Бренд: Belden Страницы: 84

EdgeRouter PoE ERPoe-5

Бренд: Ubiquiti Страницы: 13

Бренд: Ubiquiti Страницы: 28

24-Port 1000BASE-T

Бренд: Comet Labs Страницы: 44

Бренд: Nexxt Страницы: 2

Бренд: SMC Networks Страницы: 68

Бренд: ADTRAN Страницы: 4

DHI-NVR5208-4KS2

Бренд: Dahua Страницы: 361

Бренд: Dahua Страницы: 489

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды