ZDC ZN-7200-2AEI-L Скачать руководство пользователя

Страница: 48 / 110

To prevent unauthorized radios from accessing data transmitting over the connectivity, the ZAC

Access Point provides you with rock solid security settings.

Network Authentication

Open System

: It allows any device to join the network without performing any security check.

Shared Key

: Data encryption and key are required for wireless authentication (Not available in

Bridge/AP Repeater mode).

Legacy 802.1x

: It provides the rights to access the wireless network and wired Ethernet. With User

and PC identity, centralized authentication as well as dynamic key management, it controls the

security risk of wireless network to the lowest. To serve the 802.1x, at least one EAP type should be

supported by the RADIUS Server, AP and wireless client.

WPA with RADIUS

: Wi-Fi Protected Access (WPA) is a subset of the IEEE 802.11i standard. With

warrant (username, password and etc.) offered by user, this kind of authentication can be realized

with specific RADIUS server. This is the common way to be adopted in large enterprise network.

WPA2 with RADIUS

: W PA2 (IEEE 802.11i) is a wireless security standard that defines stronger

encryption, authentication and key management than WPA. If it is selected, AES encryption and

RADIUS server are required.

WPA&WPA2 with RADIUS

: It provides options of WPA (TKIP) or W PA2 (AES) for the client. If it is

selected, the data encryption type must be TKIP + AES and the RADIUS server must be set.

Содержание ZN-7200-2AEI-L

Страница 1: ...1 ZN 7200 2EI O ZN 7200 2AEI O ZAC Wireless Access Point User s Manual V1 1 Sep 2014...

Страница 2: ...guide professional installer to install the IEEE 802 11n ZAC Access Point series and how to build the infrastructure centered on it It includes procedures to assist you in avoiding unforeseen problem...

Страница 3: ...reception which can be determined by turning the equipment off and on the user is encouraged to try to correct the interference by one of the following measures Reorient or relocate the receiving ant...

Страница 4: ...a distance of at least 100cm between you and the antenna of the installed equipment This transmitter must not be co located or operating in conjunction with any other antenna or transmitter The availa...

Страница 5: ...TOR BE LIABLE TO YOU OR ANY OTHER PARTY FOR ANY DIRECT INDIRECT GENERAL SPECIAL INCIDENTAL CONSEQUENTIAL EXEMPLARY OR OTHER DAMAGE RISING OUT OF THE USE OR INABILITY TO USE THE PRODUCT INCLUDING WITHO...

Страница 6: ...on 14 Professional Installation Required 14 Safety Precautions 14 Installation Precautions 15 Product Package 15 Hardware Installation 17 Connect up 17 Using the Grounding Wire 18 Install External Ant...

Страница 7: ...ocols 50 Access Control 52 Traffic Shaping 53 Radius Settings 54 TCP IP Settings 55 Captive Portal 56 Firewall Settings 58 Management 61 AP Management 61 System Settings 63 Time Settings 66 Firmware U...

Страница 8: ...77 View Bridge Table 77 View Active DHCP Client Table 77 View Network Activities 78 System 78 Basic System Settings 78 TCP IP Settings 79 Time Settings 82 RADIUS Settings 83 Firewall Settings 84 UDP P...

Страница 9: ...Firmware 102 Backup Retrieve Settings 103 Restore Factory Default Settings 103 Reboot 104 Remote Management 104 SNMP Management 105 Certificate Settings 107 Tools 108 System Log 108 Ping Watch Dog 10...

Страница 10: ...oring of all the managed APs on the network In addition the easy to install ZAC Access Point is also a high performance last mile broadband solution that provides reliable wireless network coverage fo...

Страница 11: ...11 Hardware Overview Front View Back View...

Страница 12: ...device has the Ethernet connection Off The device has no Ethernet connection Blinking Transmitting receiving Ethernet packets WLAN Green On The WLAN is active Off The WLAN is inactive Blinking Transmi...

Страница 13: ...g figure illustrates a ZAC wireless network When a thin AP mode joins a wired network it will start to look for a ZAC Access Point in AC mode If the thin AP founds the AP controller on the network it...

Страница 14: ...you are installing the ZAC Access Point for the first time for your safety as well as others please seek assistance from a professional installer who has received safety training on the hazards invol...

Страница 15: ...3 Users MUST power off the ZAC Access Point first before connecting the external antenna to it Do not switch from built in antenna to the external antenna from WEB management without physically attach...

Страница 16: ...rite Suppression Core 24VDC Power Cord PoE Injector Users MUST use the Power cord PoE Injector shipped in the box with the IEEE 802 11n ZAC Wireless Access Point Use of other options will likely cause...

Страница 17: ...Access Point is a movable cover Grab the cover and pull it back harder to take it out as the figure shown below 2 Plug a standard Ethernet cable into the RJ45 port 3 Slide the cover back and press dow...

Страница 18: ...se against surges or ESD 1 Remove the screw on the grounding point at the bottom of the ZAC Access Point 2 Put the grounding wire on the grounding point at the bottom of the ZAC Access Point Then scre...

Страница 19: ...that higher gain antennas be used to best suit the application Users MUST power off the Access Point first before connecting the external antenna to it Do not power on the device for a certain of tim...

Страница 20: ...f the antennas are fairly close together since they couple together much less than if they are both pointed in the same direction parallel The polarization of antennas should be properly aligned Maxim...

Страница 21: ...nnector joint counterclockwise first then adjust antenna to the desired position DO NOT bend or turn the antennas without loosening the connector joint otherwise damage might be caused to the antennas...

Страница 22: ...ting ring through the middle hole of it Note that you should unlock the pole mounting ring with a screw driver before putting it through the device as the following right picture shows 2 Mount the ZAC...

Страница 23: ...3 Power Up 1 Connect power cord to the PoE injector as the following right picture shows 2 Connect the Ethernet cable that connects the Access Point to the POE port of the PoE injector as figured belo...

Страница 24: ...ge the ZAC Access Point please do the followings 1 Open the ferrite core by unsnapping the connector latches The core will open revealing a concave surface 2 Lay the Ethernet cable into the core usual...

Страница 25: ...core This helps lock the core in place and may be required in circumstances with severe interference 4 Close the core and snap the halves back together 5 Connect the Ethernet cable with suppression co...

Страница 26: ...26 6 Connect the other end of Ethernet cable to a PC or a switch hub The hardware installation is complete To configure the Access Point please refer to Chapter 2 Quick Setup Tutorial...

Страница 27: ...erface to easily manage the access point Configure the computer with a static IP address of 192 168 1 x as the default IP address of the ZAC Access Point is 192 168 1 1 X cannot be 0 1 nor 255 Open We...

Страница 28: ...efault admin and password Default password respectively and click Login to login the main page of the ZAC Access Point The username and password are case sensitive and the password should be no more t...

Страница 29: ...P go to Basic Settings From Device Mode drop down list select Virtual AC mode If you would like the Access Point to perform as a virtual controller and access point concurrently please select Virtual...

Страница 30: ...guration is made click Save to save the settings A dialog message will pop up to remind you changes will also apply to other managed Thin APs Click Apply to apply the configuration immediately To make...

Страница 31: ...anaged Access Points to your network with Ethernet cables Power them up respectively They will automatically discover the ZAC Access Point in controller mode and register themselves To check whether t...

Страница 32: ...32 Moving the mouse over MAC address of each managed AP will also display relevant RF information such as channel mode current channel antenna being used together with transmit output power...

Страница 33: ...controller mode and go to Management AP Management the following screen shows up The ZAC Access Point AP in Virtual AC Thin AP mode on the list is highlighted in bold font By selecting it and hitting...

Страница 34: ...may choose to upgrade the selected managed AP by hitting Upgrade Selected or do the group upgrade by hitting Upgrade All Before upgrading the managed AP you need to locate the new firmware in the ZAC...

Страница 35: ...so monitor the wireless clients that are currently associated with the managed APs as well as packets statistics Configure the Fat AP mode Fat AP mode operates as standalone AP that cannot be managed...

Страница 36: ...e take effect The Fat AP covers AP mode Wireless Client mode Bridge mode as well as AP Repeater mode For details please refer to the next Chapter AP Mode 1 Choose Wireless Basic Settings The default i...

Страница 37: ...egal levels to comply the regulation you need to enter the Web GUI and to specify the gain of the antenna after the external antenna is installed onto the Access Point 2 If security is required open W...

Страница 38: ...cifying the distance go to Wireless Advanced Setting and fill in the number in the Distance field If the distance is below 1000 meters remain the number unchanged Wireless Client Mode 1 Go to Wireless...

Страница 39: ...the wireless client will scan all the available access points within coverage Select the one you prefer to connect and click Select AP to establish the connection 3 If the AP you connect to require a...

Страница 40: ...with the Access Point has been successfully made go to Status Connections If the connection is established it will display association information of the Access Point including MAC address wireless mo...

Страница 41: ...emote AP MAC Address 1 field and click Apply Bridge uses the WDS protocol that is not defined as the standard thus compatibility issues between equipment from different vendors may arise Moreover Tree...

Страница 42: ...ters enter 3000 in the field Click Apply to save configuration 5 Use ping to check whether the link between the two bridges is OK 6 To check the wireless connectivity go to Status Connections If the c...

Страница 43: ...To establish point to point bridge connection please follow the procedures described in Bridge mode To connect the wireless client to the AP please follow the procedures described in Wireless Client m...

Страница 44: ...nly Information includes system information IP settings and wireless network setting Click Refresh at the bottom to have the real time information View Managed APs Open Managed APs in Status to check...

Страница 45: ...naged APs that are associated with signal strength connection up time and uploaded downloaded packets All is read only Click Refresh at the bottom to update the list View DHCP Client Table Open DHCP C...

Страница 46: ...he other managed APs Wireless Networks VAP Profiles Settings The IEEE 802 11n ZAC Access Point allows up to 8 virtual SSIDs on a single BSSID and to configure different profile settings such as securi...

Страница 47: ...o enhance the security of network transmission By enabling Wireless Separation can prevent the communication among associated wireless clients WMM Support WMM Wi Fi Multimedia is a subset of 802 11e I...

Страница 48: ...wireless network to the lowest To serve the 802 1x at least one EAP type should be supported by the RADIUS Server AP and wireless client WPA with RADIUS Wi Fi Protected Access WPA is a subset of the...

Страница 49: ...ryption can only be TKIP AES and the passphrase is required Data Encryption If data encryption is enabled the key is required and only sharing the same key with other wireless devices can the communic...

Страница 50: ...ork mode It includes Bridge and Router When switch to Router mode the LAN IP address for web page access will become 192 168 0 99 Wireless Protocols Allow the user to change country code 802 11 mode a...

Страница 51: ...for compromise of a long distance by fixing the data rate Advanced Settings A MPDU A MSDU Aggregation The data rate of your AP except wireless client mode could be enhanced greatly with this option e...

Страница 52: ...ackets Setting it too low may result in poor network performance Leave it at its default of 2346 is recommended Beacon Interval Specify the frequency interval to broadcast packets Enter a value betwee...

Страница 53: ...wireless clients on the list will not be able to connect the AP MAC Address Enter the MAC address of the wireless client that you would like to list into the access control list click Apply then it wi...

Страница 54: ...re and then the connection will be bound to the traffic shaping rule at all times You may decrease it to smaller value if the incoming traffic limit is smaller Radius Settings RADIUS Remote Authentica...

Страница 55: ...Shared Secret This secret which is composed of no more than 31 characters is shared by the IEEE 802 11n ZAC Access Point and RADIUS during authentication Global Key Update Check this option and specif...

Страница 56: ...the managed Access Point For wireless clients who want to access the unit s web page in Router mode please type the IP address here in the browser s address bar to enter the web page Captive Portal Ca...

Страница 57: ...rt number for authentication Radius Acct Port Enter the port number for billing Radius Shared Secret Enter the secret key of the radius server Radius NAS ID Enter the name of the radius server if any...

Страница 58: ...is is available only under Router Mode Source IP Filtering You may create and activate a rule that filters a packet based on the source IP address from your local network to Internet Check Enable Sour...

Страница 59: ...k Apply and the IP address will be added in the list To delete the IP address from filtering click Select checkbox of the designated destination IP address and click the Delete Selected button You may...

Страница 60: ...a rule that filters a packet based on the destination port from your local network to Internet Check Enable Destination Port Filtering to activate rule Port Range Enter the port range you would like t...

Страница 61: ...l server on the private local network behind IEEE 802 11n Wireless ZAC Access Point s NAT firewall Management The IEEE 802 11n ZAC Access Points can manage up to 20 managed APs The ZAC Access Point pr...

Страница 62: ...in the IP address from ZAC Access Point in AC mode Default is DHCP client Radio Allows to configure the channel bandwidth operating channel antenna and output power for the selected managed Access Poi...

Страница 63: ...AC mode Device Settings Device Mode Three modes are provided AC Thin AP Thin AP FAT AP Select AC Thin AP to have the device act as virtual access controller to manage other managed APs on your network...

Страница 64: ...eck this option thus the IEEE 802 11n ZAC Access Pioint is able to obtain IP settings automatically from the DHCP server Use Fixed IP Address Check this option You have to specify a static IP address...

Страница 65: ...65...

Страница 66: ...the time server from the NTP Server dropdown list or manually input the IP address of available time server into Manual IP Firmware Upgrade Besides upgrading firmware for the ZAC Access Point in AC m...

Страница 67: ...tion file of ZAC Access Point in AC mode Then the configuration file ac cfg will be generated and saved to the specified location Save TAP Settings to File Click Save to export the configuration file...

Страница 68: ...the reset button Press and hold the button for at least 5 seconds and then release it until the PWR LED gives a blink The hardware reset will take about 2 minutes to complete Reboot You can software...

Страница 69: ...m Password Enter the new password again for confirmation The password is case sensitive and its length cannot exceed 19 characters Syslog Setting The ZAC Access Point provides remote syslog management...

Страница 70: ...g Time for Sending Log Specify the time of the day to send the log Clear Log To clear log after sending logs via email check the After Sending Mail checkbox Mail Server Setting Send Log From Enter the...

Страница 71: ...P in this page Once the log entries are all used the log will wrap around and the old logs will be deleted You may click Clear to delete logs manually as well Tools The IEEE 802 11n ZAC Access Points...

Страница 72: ...Enter the number of pings Packet Size Specify ping packet size Trace Route This tool is used to discover the routes that packets take when traveling to the destination destination Destination IP Addre...

Страница 73: ...may see some managed AP s basic information such as model name firmware version MAC address current up time registration status as well as MAC address Basic Settings Allows you to configure device and...

Страница 74: ...signment Obtain IP Address Automatically If a DHCP server exists in your network you can check this option thus the IEEE 802 11n ZAC Access Pioint is able to obtain IP settings automatically from the...

Страница 75: ...ce status Click Refresh at the bottom to have the real time information View Association List Open Connections in Status to check the information of associated wireless devices such as MAC address sig...

Страница 76: ...ow Statistics Open Statistics in Status to check the data packets received on and transmitted from the wireless and Ethernet ports Click Refresh to view current statistics Poll Interval Specify the re...

Страница 77: ...w Bridge Table Open Bridge Table in Status as below Click Refresh to view current connected status View Active DHCP Client Table Open DHCP Clients in Status as below to check the assigned IP address M...

Страница 78: ...ale and throughput dimension Bps Kbps Mbps changes dynamically according to the mean throughput value Throughput statistics can be updated manually using the Refresh button System Basic System Setting...

Страница 79: ...nal frequency bands is country dependent Spanning Tree Spanning Tree Protocol STP is a link management protocol for AP which provides path redundancy while preventing loops in a network STP allows onl...

Страница 80: ...y running the nbtstat r command before using the device name of the ZAC Access Point to access its Web Management page In case the IEEE 802 11n ZAC Access Point is unable to obtain an IP address from...

Страница 81: ...hysical subnet To enable the DHCP relay agent check the Enable DHCP Relay checkbox and enter the IP address of the DHCP server In AP mode the IEEE 802 11n ZAC Access Point must establish connection wi...

Страница 82: ...AC Access Point is capable of keeping its time in accord with the Internet time To use this feature check Enable NTP Client Update in advance Current Time Display the present time in Yr Mon Day Hr Min...

Страница 83: ...to configure radius settings Open RADIUS Settings in System to make RADIUS configuration Authentication RADIUS Server This is for RADIUS authentication It can communicate with RADIUS through IP Addre...

Страница 84: ...le only under Router Mode Source IP Filtering You may create and activate a rule that filters a packet based on the source IP address from your local network to Internet Check Enable Source IP Filteri...

Страница 85: ...ck the Delete Selected button You may delete all the IP addresses in the list by clicking Delete All Source Port Filtering You may create and activate a rule that filters a packet based on the source...

Страница 86: ...added in the list To delete the restricted destination ports click Select checkbox of the designated ports and click the Delete Selected button You may delete all the IP addresses in the list by click...

Страница 87: ...through the firewall Note that opening all the UDP ports will be very likely to expose the network to intruders DMZ A Demilitarized Zone is used to provide Internet services without sacrificing unaut...

Страница 88: ...n ZAC Access Point establishes a wireless coverage and receives connectivity from other wireless devices Wireless Client The IEEE 802 11n ZAC Access Point is able to connect to the AP and thus join th...

Страница 89: ...nder 802 11n mode wireless client can be divided into HT STA and Non HT STA among which the one with HT protect enabled gets higher throughput Frequency Channel Channel varies much as the available ba...

Страница 90: ...ise of a long distance Extension Channel Protection Mode This is to avoid conflict with other wireless network and boost the ability of your device to catch all 802 11g transmissions However it may de...

Страница 91: ...rtual SSIDs on a single BSSID and to configure different profile settings such as security and VLAN ID to each SSID To create a virtual AP you may check the Enable box of the profile and click on the...

Страница 92: ...ication among associated wireless clients WMM Support WMM Wi Fi Multimedia is a subset of 802 11e It allows wireless communication to define a priority limit on the basis of data type under AP mode on...

Страница 93: ...adopted in large enterprise network WPA2 with RADIUS WPA2 IEEE 802 11i is a wireless security standard that defines stronger encryption authentication and key management than WPA If it is selected AE...

Страница 94: ...cryption Standard it is usually co used with WPA2 PSK WPA WPA2 etc TKIP AES It allows for backwards compatibility with devices using TKIP We strongly recommend you enable wireless security on your net...

Страница 95: ...e data rate of your AP except wireless client mode could be enhanced greatly with this option enabled however if your wireless clients don t support A MPDU A MSDU aggregation it is not recommended to...

Страница 96: ...elivery Traffic Indication Message is contained in the data packets It is for enhancing the wireless transmission efficiency The default is set to 1 Enter a value between 1 and 255 Preamble Type It de...

Страница 97: ...g distance the IEEE 802 11n ZAC Access Point can automatically adjust proper ACK timeout value by specifying distance of the two nodes Flow Control It allows the administrator to specify the incoming...

Страница 98: ...list will not be able to connect the AP MAC Address Enter the MAC address of the wireless client that you would like to list into the access control list click Apply then it will be added into the tab...

Страница 99: ...Shaping Check this box to control the overall bandwidth for a specific VAP network Incoming Traffic Limit To specify maximum incoming bandwidth to a certain rate in kbit s Incoming Traffic Burst To s...

Страница 100: ...ort number for authentication Radius Acct Port Enter the port number for billing Radius Shared Secret Enter the secret key of the radius server Radius NAS ID Enter the name of the radius server if any...

Страница 101: ...s WDS Settings is available only under Bridge and AP Repeater Mode Bridge uses the WDS protocol that is not defined as the standard thus compatibility issues between equipment from different vendors m...

Страница 102: ...ord again for confirmation The password is case sensitive and its length cannot exceed 19 characters Upgrade Firmware Open Firmware Upload in Management and follow the steps below to upgrade firmware...

Страница 103: ...e a dialog box will pop up Save it then the configuration file ap cfg will be generated and saved to your local computer Load Settings from File By clicking Browse a file selection menu will appear se...

Страница 104: ...and then release it until the PWR LED gives a blink Reboot You can reboot your IEEE 802 11n ZAC Access Point from Configuration File in Management as below Click Reboot and hit Yes upon the appeared p...

Страница 105: ...s Point and the SNMP manager The IEEE 802 11n ZAC Access Point supports SNMP v2 v3 Server Port Change the server port for a service if needed however you have to use the same port to use that service...

Страница 106: ...ing this user name are allowed to access the IEEE 802 11n ZAC Access Point Password Specify a password for the SNMPv3 administrator or user Only the SNMP commands carrying this password are allowed to...

Страница 107: ...trust The Server can trust all certificates issued by a given CA To import a user certificate from Import User Certificates click Browse and specify the location where the user certificate is placed C...

Страница 108: ...ystem Log in Tools as below Remote Syslog Server Enable Remote Syslog Enable System log to alert remote server IP Address Specify the IP address of the remote server Port Specify the port number of th...

Страница 109: ...mote unit to ping Ping Interval Specify the interval time to ping the remote unit Startup Delay Specify the startup delay time to prevent reboot before the IEEE 802 11n ZAC Access Point is fully initi...

Страница 110: ...ivalent ASCII Character Hex Equivalent ASCII Character Hex Equivalent ASCII Character Hex Equivalent 21 9 39 Q 51 i 69 22 3A R 52 j 6A 23 3B S 53 k 6B 24 3C T 54 l 6C 25 3D U 55 m 6D 26 3E V 56 n 6E 2...

Результаты поиска

Содержание ZN-7200-2AEI-L

Отзывы:

Похожие инструкции для ZN-7200-2AEI-L

Бренды по названию

Популярные бренды

ZDC ZN-7200-2AEI-L, Руководство пользователя

Результаты поиска

Содержание ZN-7200-2AEI-L

Отзывы:

Похожие инструкции для ZN-7200-2AEI-L

Бренды по названию

Популярные бренды