ZyXEL Communications ZYAIR G-1000 Скачать руководство пользователя страница 117

Страница: 117 / 197

ZyAIR G-1000 Access Point User’s Guide

System Security

15-3

Table 15-1 Menu 23.2 System Security: RADIUS Server

FIELD DESCRIPTION

EXAMPLE

Port The default port of the RADIUS server for accounting is

1813

You need not change this value unless your network
administrator instructs you to do so with additional information.

1813

Shared Secret Specify a password (up to 31 alphanumeric characters) as the

key to be shared between the external accounting server and the
access points.

The key is not sent over the network. This key must be the same
on the external accounting server and ZyAIR.

When you have completed this menu, press [ENTER] at the prompt “Press ENTER to confirm or ESC to
cancel” to save your configuration or press [ESC] to cancel and go back to the previous screen.

15.1.3 IEEE 802.1x

The IEEE 802.1x standards outline enhanced security methods for both the authentication of wireless
stations and encryption key management.

Follow the steps below to enable EAP authentication on your ZyAIR.

Step 1.

From the main menu, enter 23 to display

Menu23 – System Security

Figure 15-4 Menu 23 System Security

Step 2.

Enter 4 to display

Menu 23.4 – System Security – IEEE802.1x

Menu 23 - System Security

1. Change Password
2. RADIUS Server

4. IEEE802.1X

Содержание ZYAIR G-1000

Страница 1: ...ZyAIR G 1000 Wireless 54 Mbps Access Point User s Guide Version 3 50 July 2003...

Страница 2: ...d by ZyXEL Communications Corporation All rights reserved Disclaimer ZyXEL does not assume any liability arising out of the application or use of any products or software described herein Neither does...

Страница 3: ...frequency energy and if not installed and used in accordance with the instructions may cause harmful interference to radio communications If this equipment does cause harmful interference to radio te...

Страница 4: ...dy of the purchaser This warranty is in lieu of all other warranties express or implied including any implied warranty of merchantability or fitness for a particular use or purpose ZyXEL shall in no e...

Страница 5: ...yxel com tw 886 3 578 2439 ftp europe zyxel com ZyXEL Communications Corp 6 Innovation Road II Science Based Industrial Park Hsinchu 300 Taiwan support zyxel com 1 800 255 4101 www us zyxel com NORTH...

Страница 6: ......

Страница 7: ...l of the ZyAIR 2 1 2 2 Top Panel and Connections of the ZyAIR 2 2 2 2 1 One 10 100M Ethernet Port 2 3 2 2 2 Power Port 2 3 2 2 3 The RESET Button 2 3 2 2 4 Antennas 2 3 2 3 Hardware Mounting Options 2...

Страница 8: ...tication Overview 6 7 6 7 Dynamic WEP Key Exchange 6 8 6 8 Introduction to Local User Database 6 9 6 9 Configuring 802 1x 6 9 6 10 Configuring Local User Database 6 12 6 11 Configuring RADIUS 6 13 IPA...

Страница 9: ...rnet Setup 12 1 12 3 Wireless LAN Setup 12 2 12 3 1 Configuring MAC Address Filtering 12 5 12 3 2 Configuring Roaming 12 6 Chapter 13 Dial in User Setup 13 1 13 1 Dial in User Setup 13 1 Chapter 14 SN...

Страница 10: ...Setting 18 2 18 2 1 Resetting the Time 18 3 Chapter 19 Remote Management 19 1 19 1 Telnet 19 1 19 2 FTP 19 1 19 3 Web 19 1 19 4 Remote Management 19 1 19 4 1 Remote Management Setup 19 2 19 4 2 Remot...

Страница 11: ...ZyAIR G 1000 Access Point User s Guide Table of Contents xi Appendix K Log Descriptions K 1 Appendix L Power Adaptor Specifications L 1 Appendix M Index M 1...

Страница 12: ...ZyAIR Wireless Security Levels 6 1 Figure 6 2 WEP Authentication Steps 6 2 Figure 6 3 Wireless 6 3 Figure 6 4 MAC Address Filter 6 5 Figure 6 5 EAP Authentication 6 8 Figure 6 6 802 1x Authentication...

Страница 13: ...ecurity RADIUS Server 15 2 Figure 15 4 Menu 23 System Security 15 3 Figure 15 5 Menu 23 4 System Security IEEE802 1x 15 4 Figure 16 1 Menu 24 System Maintenance 16 1 Figure 16 2 Menu 24 1 System Maint...

Страница 14: ...ZyAIR G 1000 Access Point User s Guide xiv List of Figures Figure 19 1 Telnet Configuration on a TCP IP Network 19 1 Figure 19 2 Menu 24 11 Remote Management Control 19 2...

Страница 15: ...Upload 9 5 Table 9 5 Restore Configuration 9 8 Table 10 1 Main Menu Commands 10 4 Table 10 2 Main Menu Summary 10 5 Table 11 1 Menu 1 General Setup 11 2 Table 12 1 Menu 3 2 TCP IP Setup 12 2 Table 12...

Страница 16: ...Point User s Guide xvi List of Tables Table 17 3 General Commands for Third Party TFTP Clients 17 5 Table 18 1 Menu 24 10 System Maintenance Time and Date Setting 18 2 Table 19 1 Menu 24 11 Remote Man...

Страница 17: ...erfaces Related Documentation Supporting Disk Refer to the included CD for support documents Quick Installation Guide Our Quick Installation Guide is designed to help you get up and running right away...

Страница 18: ...odem means first click the Apple icon then point your mouse pointer to Control Panels and then click Modem For brevity s sake we will use e g as a shorthand for for instance and i e for that is or in...

Страница 19: ...Getting Started I Part I GETTING STARTED This part introduces the main features and applications of ZyAIR hardware installation and setup and shows how to access the web configurator...

Страница 20: ......

Страница 21: ...asy to install and configure The embedded web based configurator and SNMP network management enables remote configuration and management 1 2 ZyAIR Features Your ZyAIR has a number of features that giv...

Страница 22: ...y be prone to RF Radio Frequency interference from other 2 4 GHz devices such as microwave ovens wireless phones Bluetooth enabled devices and other wireless LANs Wireless LAN MAC Address Filtering Yo...

Страница 23: ...via the SMT System Management Terminal interface The SMT is a menu driven interface that you can access from a terminal emulator over a telnet connection Logging and Tracing Built in message logging a...

Страница 24: ...porate network access the ZyAIR is an ideal solution for wireless stations to connect to the corporate network without expensive network cabling The following figure depicts a typical application of t...

Страница 25: ...nstallation and Initial Setup This chapter describes the physical features of the ZyAIR and how to make cable connections 2 1 Front Panel of the ZyAIR The LEDs on the front panel indicate the operatio...

Страница 26: ...iving data On The ZyAIR has a successful 10Mb Ethernet connection Blinking The ZyAIR is sending receiving data Green Off The ZyAIR does not have 10Mb Ethernet connection On The ZyAIR has a successful...

Страница 27: ...l reboot if the supplied power is too low This is a normal operation To avoid damage to the ZyAIR make sure you use the supplied power adapter Refer to the Power Adapter Specification appendix for mor...

Страница 28: ...etter performance mount the ZyAIR in a high position free of obstructions Refer to the Quick Installation Guide for hardware mounting procedure 2 4 Additional Installation Requirements A computer s wi...

Страница 29: ...Prepare your computer computer network to connect to the ZyAIR refer to the Quick Installation Guide Step 3 Launch your web browser Step 4 Type 192 168 1 2 default as the URL Step 5 Type 1234 default...

Страница 30: ...to none The password will be reset to 1234 also 3 2 1 Method of Restoring Factory Defaults You can erase the current configuration and restore factory defaults in three ways 1 Use the RESET button on...

Страница 31: ...atistics Wireless Association List F W firmware UPLOAD CONFIGURATION Backup Restore and Default Click LOGOUT at any time to exit the web configurator Click ADVANCED to configure advanced features such...

Страница 32: ......

Страница 33: ...System and Wireless LAN II Part II SYSTEM AND WIRELESS LAN This part covers the System and Wireless LAN screens...

Страница 34: ......

Страница 35: ...provides information on the System screens 4 1 System Overview This section provides information on general system setup 4 2 Configuring General Setup Click ADVANCED and then SYSTEM to open the Genera...

Страница 36: ...plays the read only DNS server IP address that the ISP assigns If you chose From DHCP but the ZyAIR has a fixed Ethernet IP address From DHCP changes to None after you click Apply If you chose From DH...

Страница 37: ...ng system password 1234 is the default password New Password Type your new system password up to 31 characters Note that as you type a password the screen displays an asterisk for each character you t...

Страница 38: ...t all time servers support all protocols so you may have to check with your ISP network administrator or use trial and error to find a protocol that works The main difference between them is the forma...

Страница 39: ...me with the time server New Date yy mm dd This field displays the last updated date from the time server When you select None in the Time Protocol field enter the new date in this field Time Zone Choo...

Страница 40: ......

Страница 41: ...rvice Set IBSS also called an Ad hoc network is the simplest WLAN configuration An IBSS is defined as two or more computers with wireless adapters within range of each other and can set up an independ...

Страница 42: ...of overlapping BSSs each containing an access point with each access point connected together by a wired network This wired connection between APs is called a Distribution System DS An ESSID ESS IDen...

Страница 43: ...nels 5 2 1 RTS CTS A hidden node occurs when two stations are within range of the same access point but are not within range of each other The following figure illustrates a hidden node Both stations...

Страница 44: ...r their transmission It also reserves and confirms with the requesting station the time frame for the requested transmission Stations can send frames smaller than the specified RTS CTS directly to the...

Страница 45: ...e prone to interference If the Fragmentation Threshold value is smaller than the RTS CTS value see previously you set then the RTS Request To Send CTS Clear to Send handshake will never occur as data...

Страница 46: ...s 2432 Fragmentation Threshold Fragmentation threshold defines the maximum data fragment size that can be sent Enter a value between 256 and 2432 Apply Click Apply to save your changes back to the ZyA...

Страница 47: ...a Figure 5 6 Roaming Example The steps below describe the roaming process Step 1 As wireless station Y moves from the coverage area of access point AP 1 to that of access point AP 2 it scans and uses...

Страница 48: ...e screen appears as shown Figure 5 7 Roaming The following table describes the labels in this screen Table 5 2 Roaming LABEL DESCRIPTION Active Select Yes from the drop down list box to enable roaming...

Страница 49: ...equires interaction with a RADIUS Remote Authentication Dial In User Service server either on the WAN or your LAN to provide authentication service for wireless stations Figure 6 1 ZyAIR Wireless Secu...

Страница 50: ...s an unencrypted two message procedure A wireless station sends an open system authentication request to the AP which will then automatically accept and connect the wireless station to the network In...

Страница 51: ...when it is set to auto authentication the ZyAIR will accept either type of authentication request and the ZyAIR will fall back to use open authentication if the shared key does not match 6 3 Configur...

Страница 52: ...9 A F You must configure all four keys but only one key can be activated at any one time The default key is key 1 Enable Breathing LED Select this check box to enable the Breathing LED also known as...

Страница 53: ...ZyAIR G 1000 Access Point User s Guide Wireless Security 6 5 Figure 6 4 MAC Address Filter The following table describes the fields in this screen...

Страница 54: ...ing this screen afresh 6 5 802 1x Overview The IEEE 802 1x standard outlines enhanced security methods for both the authentication of wireless stations and encryption key management Authentication can...

Страница 55: ...cret key which is a password they both know The key is not sent over the network In addition to the shared key password information exchanged is also encrypted to protect the wired network from unauth...

Страница 56: ...d determines whether or not to authenticate the wireless station 6 7 Dynamic WEP Key Exchange The AP maps a unique key that is generated with the RADIUS server This key expires when the wireless conne...

Страница 57: ...wireless users without interacting with a network RADIUS server However there is a limit on the number of users you may authenticate in this way 6 9 Configuring 802 1x To change your ZyAIR s authenti...

Страница 58: ...wired network ReAuthentication Timer in seconds Specify how often wireless stations have to reenter usernames and passwords in order to stay connected This field is activated only when you select Aut...

Страница 59: ...he user name is not found the ZyAIR then checks the user database on the specified RADIUS server Select RADIUS first then Local to have the ZyAIR first check the user database on the specified RADIUS...

Страница 60: ...s Guide 6 12 Wireless Security 6 10 Configuring Local User Database To change your ZyAIR s local user database click ADVANCED WIRELESS and then the Local User Database tab The screen appears as shown...

Страница 61: ...le Password Type a password up to 31 characters for this user profile Note that as you type a password the screen displays a for each character you type Apply Click Apply to save your changes back to...

Страница 62: ...entication through an external authentication server Select No to enable user authentication using the local user profile on the ZyAIR Server IP Address Enter the IP address of the external authentica...

Страница 63: ...erver IP Address Enter the IP address of the external accounting server in dotted decimal notation Port Number Enter the port number of the external accounting server The default port number is 1813 Y...

Страница 64: ......

Страница 65: ...IP and Logs III Part III IP AND LOGS This part provides information and configuration instructions for the IP screen and for the logs...

Страница 66: ......

Страница 67: ...networks are isolated from the Internet for instance only between your two branch offices you can assign any IP addresses to the hosts without problems However the Internet Assigned Numbers Authority...

Страница 68: ...ormation on address assignment please refer to RFC 1597 Address Allocation for Private Internets and RFC 1466 Guidelines for Management of IP Address Space 7 3 Configuring IP Address Click ADVANCED an...

Страница 69: ...IP Address Enter the IP address of your ZyAIR in dotted decimal notation If you change the ZyAIR s IP address you must use the new IP address if you want to access the web configurator again IP Subne...

Страница 70: ......

Страница 71: ...screen see section 8 2 Options include logs about system maintenance system errors and access control You can view logs and alert messages in this page Once the log entries are all used the log will...

Страница 72: ...een to the e mail address specified in the Log Settings page Refresh Click Refresh to renew the log screen Clear Log Click Clear Log to clear all the logs 8 2 Configuring Log Settings To change your Z...

Страница 73: ...ZyAIR G 1000 Access Point User s Guide Logs Screens 8 3 Figure 8 2 Log Settings The following table describes the fields in this screen Table 8 2 Log Settings LABEL DESCRIPTION Address Info...

Страница 74: ...rver that will log the CDR Call Detail Record and system messages Log Facility Select the Local from the drop down list box The log facility allows you to log the messages to different files in the sy...

Страница 75: ...ings LABEL DESCRIPTION Send Immediate Alert Select the categories of alerts for which you want the ZyAIR to send immediately e mail alerts Apply Click Apply to save your customized settings and exit t...

Страница 76: ......

Страница 77: ...Maintenance IV Part IV MAINTENANCE This part describes the Maintenance screens...

Страница 78: ......

Страница 79: ...manage configuration and restart your ZyAIR 9 2 System Status Screen Click MAINTENANCE to open the System Status screen where you can use to monitor your ZyAIR Note that these fields are READ ONLY an...

Страница 80: ...subnet mask DHCP This is the Ethernet port DHCP role Client or None Show Statistics Click Show Statistics to see router performance statistics such as number of packets sent and number of packets rec...

Страница 81: ...his shows the transmission speed in bytes per second on this port Rx B s This shows the reception speed in bytes per second on this port Up Time This is total amount of time the line has been up Syste...

Страница 82: ...s station first associated with the ZyAIR Refresh Click Refresh to reload the screen 9 4 F W Upload Screen Find firmware at www zyxel com in a file that usually uses the system model name with a bin e...

Страница 83: ...d in this field or click Browse to find it Browse Click Browse to find the bin file you want to upload Remember that you must decompress compressed zip files before you can upload them Upload Click Up...

Страница 84: ...porary network disconnect In some operating systems you may see the following icon on your desktop Figure 9 6 Network Temporarily Disconnected After two minutes log in again and check your new firmwar...

Страница 85: ...TFTP commands Click MAINTENANCE and then CONFIGURATION Information related to backup configuration restoring configuration and factory defaults appears as shown next 9 5 1 Backup Configuration Backup...

Страница 86: ...process is complete the ZyAIR will automatically restart Figure 9 9 Restore Configuration The following table describes the fields in this screen Table 9 5 Restore Configuration LABEL DESCRIPTION File...

Страница 87: ...icon on your desktop Figure 9 11 Network Temporarily Disconnected If you uploaded the default configuration file you may need to change the IP address of your computer to be in the same subnet as that...

Страница 88: ...actory Defaults Pressing the Reset button in this section clears all user entered configuration information and returns the ZyAIR to its factory defaults as shown on the screen This will erase all con...

Страница 89: ...e Maintenance 9 11 Figure 9 14 Reset Warning Message You can also press the RESET button on the rear panel to reset the factory defaults of your ZyAIR Refer to the chapter on top panel connections for...

Страница 90: ......

Страница 91: ...part contains SMT System Management Terminal configuration and background information for features only configurable by SMT See the web configurator parts of this guide for background information on...

Страница 92: ......

Страница 93: ...imeout period after you log in your ZyAIR will automatically log you out You will then have to telnet into the ZyAIR again 10 2 Entering Password The login screen appears after you press ENTER prompti...

Страница 94: ...word in the New Password field up to 30 characters and press ENTER Step 5 Re type your new system password in the Retype to confirm field for confirmation and press ENTER Note that as you type a passw...

Страница 95: ...ZyAIR G 1000 Access Point User s Guide Introducing the SMT 10 3 Figure 10 3 SMT Menu Overview...

Страница 96: ...to the next field You can also use the UP DOWN arrow keys to move to the previous and the next field respectively Entering information Type in or press SPACE BAR then press ENTER You need to fill in t...

Страница 97: ...yAIR 22 SNMP Configuration Use this menu to set up SNMP related parameters 23 System Security Use this menu to change your password and enable network user authentication 24 System Maintenance This me...

Страница 98: ......

Страница 99: ...ld is not a required field Leave this field blank or enter the domain name here if you know it 11 1 1 Procedure To Configure Menu 1 Step 1 Enter 1 in the Main Menu to open Menu 1 General Setup as show...

Страница 100: ...00 Domain Name This is not a required field Leave this field blank or enter the domain name here if you know it First Second Third System DNS Server Press SPACE BAR to select From DHCP User Defined or...

Страница 101: ...is given in the next chapter 12 2 TCP IP Ethernet Setup Use menu 3 2 to configure your ZyAIR for TCP IP To edit menu 3 2 enter 3 from the main menu to display Menu 3 LAN Setup When menu 3 appears pres...

Страница 102: ...168 1 2 IP Subnet Mask Your ZyAIR will automatically calculate the subnet mask based on the IP address that you assign Unless you are implementing subnetting use the subnet mask computed by the ZyAIR...

Страница 103: ...SID in the outgoing data frame so a intruder cannot obtain the ESSID through passive scanning No Channel ID Press SPACE BAR to select a channel This allows you to set the operating frequency channel d...

Страница 104: ...he key to denote a hexadecimal key Don t enter 0x before the key to denote an ASCII key 0x12345ab cde Authen Method Press SPACE BAR to select Auto Open System Only or Shared Key Only and press ENTER T...

Страница 105: ...main menu enter 3 to open Menu 3 LAN Setup Step 2 Enter 5 to display Menu 3 5 Wireless LAN Setup Figure 12 4 Menu 3 5 Wireless LAN Setup Step 3 In the Edit MAC Address Filter field press SPACE BAR to...

Страница 106: ...NTER at the prompt Press ENTER to confirm or ESC to cancel to save your configuration or press ESC to cancel and go back to the previous screen 12 3 2 Configuring Roaming Enable the roaming feature if...

Страница 107: ...ribes the fields in this menu Table 12 4 Menu 3 5 2 Roaming Configuration FIELD DESCRIPTION Active Press SPACE BAR and then ENTER to select Yes to enable roaming on the ZyAIR if you have two or more Z...

Страница 108: ...te roaming information between access points The port number must be the same on all access points The default is 16290 Make sure this port is not used by other services When you have completed this m...

Страница 109: ...ep 2 Type a number and press ENTER to edit the user profile Figure 13 2 Menu 14 1 Edit Dial in User The following table describes the fields in this screen Menu 14 Dial in User Setup 1 ________ 9 ____...

Страница 110: ...r this user profile This field is case sensitive Active Press SPACE BAR to select Yes and press ENTER to enable the user profile Password Enter a password up to 31 characters long for this user profil...

Страница 111: ...k devices SNMP is a member of the TCP IP protocol suite Your ZyAIR supports SNMP agent functionality which allows a manager station to manage and monitor the ZyAIR through the network The ZyAIR suppor...

Страница 112: ...simple request response protocol based on the manager agent model The manager issues a request and the agent returns responses using the following protocol operations Get Allows the manager to retriev...

Страница 113: ...this address A blank default field means your ZyAIR will respond to all SNMP messages it receives regardless of source 0 0 0 0 Trap Community Type the trap community which is the password sent with e...

Страница 114: ...rap is sent with the port number 4 authenticationFailure defined in RFC 1215 A trap is sent to the manager when receiving any SNMP get or set requirements with wrong community password 6 linkDown defi...

Страница 115: ...e to restore the default configuration file Refer to the section on changing the system password in the Introducing the SMT chapter and the section on resetting the ZyAIR in the Introducing the Web Co...

Страница 116: ...dministrator instructs you to do so with additional information 1812 Shared Secret Specify a password up to 31 alphanumeric characters as the key to be shared between the external authentication serve...

Страница 117: ...s key must be the same on the external accounting server and ZyAIR When you have completed this menu press ENTER at the prompt Press ENTER to confirm or ESC to cancel to save your configuration or pre...

Страница 118: ...en a wireless station has to re enter username and password to stay connected to the wired network This field is activated only when you select Authentication Required in the Wireless Port Control fie...

Страница 119: ...R then checks the user database on the specified RADIUS server Select RADIUS first then Local to have the ZyAIR first check the user database on the specified RADIUS server for a wireless station s us...

Страница 120: ......

Страница 121: ...t System Status is a tool that can be used to monitor your ZyAIR Specifically it gives you information on your Ethernet and Wireless LAN status number of packets sent and received To get to System Sta...

Страница 122: ...bytes per second Up Time This is the time this channel has been connected to the current remote node Ethernet Address This shows the MAC address of the port IP Address This shows the IP address of th...

Страница 123: ...yAIR has an internal console port for support personnel only Do not open the ZyAIR as it will void your warranty 16 2 1 System Maintenance Information Enter 1 in menu 24 2 to display the screen shown...

Страница 124: ...ZyAIR DHCP This field shows the DHCP setting of the ZyAIR DHCP is not available for the ZyAIR When you have completed this menu press ENTER at the prompt Press ENTER to confirm or ESC to cancel to sav...

Страница 125: ...ples of typical error and information messages are presented in the next figure Figure 16 7 Sample Error and Information Messages 16 4 Diagnostic The diagnostic facility allows you to test the differe...

Страница 126: ...u 24 4 for your ZyAIR and the connections Table 16 3 System Maintenance Menu Diagnostic FIELD DESCRIPTION Ping Host Ping the host to see if the links and TCP IP protocol on both systems are working DH...

Страница 127: ...TP and TFTP clients the filenames are similar to those seen next ftp put firmware bin ras This is a sample FTP session showing the transfer of the computer file firmware bin to the ZyAIR ftp get rom 0...

Страница 128: ...ough TFTP can also be used Please note that the terms download and upload are relative to the computer Download means to transfer from the ZyAIR to the computer while upload means from your computer t...

Страница 129: ...it to exit the FTP prompt Figure 17 2 FTP Session Example The following table describes some of the commands that you may see in third party FTP clients Table 17 2 General Commands for Third Party FTP...

Страница 130: ...telnet client and accepts TFTP requests only from this address Step 2 Put the SMT in command interpreter CI mode by entering 8 in Menu 24 System Maintenance Step 3 Enter command sys stdio 0 to disabl...

Страница 131: ...e firmware file bin extension or configuration file rom extension on your computer Remote File This is the filename on the ZyAIR The filename for the firmware is ras and for the configuration file is...

Страница 132: ...ined within Menu 24 6 Restore Configuration To transfer the firmware and the configuration file follow the procedure below 1 Launch the FTP client on your workstation 2 Type open and the IP address of...

Страница 133: ...24 7 1 System Maintenance Upload System Firmware To upload the system firmware follow the procedure below 1 Launch the FTP client on your workstation 2 Type open and the IP address of your system The...

Страница 134: ...rom 0 Likewise get rom 0 config rom transfers the configuration file on the ZyAIR to your computer and renames it config rom See earlier in this chapter for more information on filename conventions S...

Страница 135: ...ng 8 in Menu 24 System Maintenance Step 3 Enter the command sys stdio 0 to disable the SMT timeout so the TFTP transfer will not be interrupted Enter command sys stdio 5 to restore the five minute SMT...

Страница 136: ...e this mode when transferring binary files host is the ZyAIR s IP address put transfers the file source on the computer firmware bin name of the firmware on the computer to the file destination on the...

Страница 137: ...information on CI commands Enter 8 from Menu 24 System Maintenance A list of valid commands can be found by typing help or at the command prompt Type exit to return to the SMT main menu when finished...

Страница 138: ...Maintenance Time and Date Setting FIELD DESCRIPTION Use Time Server when Bootup Enter the time service protocol that your time server sends when you turn on the ZyAIR Not all time servers support all...

Страница 139: ...ate in year month and day format Time Zone Press SPACE BAR and then ENTER to set the time difference between your time zone and Greenwich Mean Time GMT Daylight Saving If you use daylight savings time...

Страница 140: ......

Страница 141: ...etwork 19 2 FTP You can upload and download ZyAIR firmware and configuration files using FTP To use this feature your computer must have an FTP client 19 3 Web You can use the ZyAIR s embedded web con...

Страница 142: ...e following table describes the fields in this menu Table 19 1 Menu 24 11 Remote Management Control FIELD DESCRIPTION EXAMPLE Telnet Server FTP Server Web Server SNMP Service Each of these read only l...

Страница 143: ...1 You have disabled that service in menu 24 11 2 The IP address in the Secured Client IP field menu 24 11 does not match the client IP address If it does not match the ZyAIR will disconnect the sessio...

Страница 144: ......

Страница 145: ...ES This part provides background information about setting up your computer s IP address wireless LAN 802 1x PPPoE PPTP and IP subnetting It also provides information on the command interpreter interf...

Страница 146: ......

Страница 147: ...ersists you may have a hardware problem In this case you should contact your local vendor The ZyAIR reboots automatically sometimes The supplied power to the ZyAIR is too low Check that the ZyAIR is r...

Страница 148: ...me subnet Problems with the Password Chart A 3 Troubleshooting the Password PROBLEM CORRECTIVE ACTION I cannot access the ZyAIR The Password and Username fields are case sensitive Make sure that you e...

Страница 149: ...s adapter on the wireless station is working properly Check that both the ZyAIR and your wireless station are using the same ESSID channel and WEP keys if WEP encryption is activated I cannot ping any...

Страница 150: ......

Страница 151: ...d already be installed on computers using Windows NT 2000 XP Macintosh OS 7 and later operating systems After the appropriate TCP IP components are installed configure the TCP IP settings in order to...

Страница 152: ...then click Add c Select Microsoft from the list of manufacturers d Select TCP IP from the list of network protocols and then click OK If you need Client for Microsoft Networks a Click Add b Select Cl...

Страница 153: ...tomatically If you have a static IP address select Specify an IP address and type your information into the IP Address and Subnet Mask fields 2 Click the DNS Configuration tab If you do not know your...

Страница 154: ...4 Click OK to save and close the TCP IP Properties window 5 Click OK to close the Network window Insert the Windows CD if prompted 6 Turn on your ZyAIR and restart your computer when prompted Verifyin...

Страница 155: ...ddress B 5 1 For Windows XP click start Control Panel In Windows 2000 NT click Start Settings Control Panel 2 For Windows XP click Network Connections For Windows 2000 NT click Network and Dial up Con...

Страница 156: ...in Win XP and click Properties 5 The Internet Protocol TCP IP Properties window opens the General tab in Windows XP If you have a dynamic IP address click Obtain an IP address automatically If you hav...

Страница 157: ...IP address in IP address and a subnet mask in Subnet mask and then click Add Repeat the above two steps for each IP address you want to add Configure additional default gateways in the IP Settings ta...

Страница 158: ...NS server fields If you have previously configured DNS servers click Advanced and then the DNS tab to order them 8 Click OK to close the Internet Protocol TCP IP Properties window 9 Click OK to close...

Страница 159: ...omputer s IP Address B 9 1 Click the Apple menu Control Panel and double click TCP IP to open the TCP IP Control Panel 2 Select Ethernet built in from the Connect via list 3 For dynamically assigned s...

Страница 160: ...the Subnet mask box Type the IP address of your ZyAIR in the Router address box 5 Close the TCP IP Control Panel 6 Click Save if prompted to save changes to your configuration 7 Turn on your ZyAIR and...

Страница 161: ...Using DHCP from the Configure list 4 For statically assigned settings do the following From the Configure box select Manually Type your IP address in the IP Address box Type your subnet mask in the S...

Страница 162: ......

Страница 163: ...oups a lower total cost of ownership for workspaces that are frequently reconfigured 4 It allows conference room users access to the network as they move from meeting to meeting getting up to date acc...

Страница 164: ...on The simplest WLAN configuration is an independent Ad hoc WLAN that connects a set of computers with wireless nodes or stations STA which is called a Basic Service Set BSS In the most basic form a w...

Страница 165: ...mmediate neighborhood Multiple access points can provide wireless coverage for an entire building or campus All communications between stations or between a station and a wired network client go throu...

Страница 166: ...ZyAIR G 1000 Access Point User s Guide C 4 Wireless LAN and IEEE 802 11 Diagram 2 ESS Provides Campus Wide Coverage...

Страница 167: ...11b standard does not provide any central user account management User access control is done through manual modification of the MAC address table on the access point Although WEP data encryption off...

Страница 168: ...Authentication Sequence The following figure depicts a typical wireless network with a remote RADIUS server for user authentication using EAPOL EAP Over LAN Diagram 3 Sequences for EAP MD5 Challenge...

Страница 169: ...ion keys for data encryption EAP TLS Transport Layer Security With EAP TLS digital certifications are needed by both the server and the wireless stations for mutual authentication The server presents...

Страница 170: ...s but for public deployment simple user name and password pair is more practical The following table is a comparison of the features of four authentication types Comparison of EAP Authentication Types...

Страница 171: ...easured in dB decibel is the increase in coverage within the RF beam width Higher antenna gain improves the range of the signal for better communications For an indoor site each 1 dB increase in anten...

Страница 172: ...nas should be mounted as high as practically possible and free of obstructions In point to point application position both transmitting and receiving antenna at the same height and in a direct line of...

Страница 173: ...0 in the next left most bit In a class B address the first two octets make up the network number and the two remaining octets make up the host ID Class C addresses begin starting from the left with 1...

Страница 174: ...ks A subnet mask is used to determine which bits are part of the network number and which bits are part of the host ID using a logical AND operation A subnet mask has 32 bits each bit of the mask corr...

Страница 175: ...lass C address using both notations Chart 9 Alternative Subnet Mask Notation SUBNET MASK IP ADDRESS SUBNET MASK 1 BITS LAST OCTET BIT VALUE 255 255 255 0 24 0000 0000 255 255 255 128 25 1000 0000 255...

Страница 176: ...net Mask Binary 11111111 11111111 11111111 10000000 Subnet Address 192 168 1 0 Lowest Host ID 192 168 1 1 Broadcast Address 192 168 1 127 Highest Host ID 192 168 1 126 Chart 11 Subnet 2 NETWORK NUMBER...

Страница 177: ...2 hosts for each subnet all 0 s is the subnet itself all 1 s is the broadcast address on the subnet Chart 12 Subnet 1 NETWORK NUMBER LAST OCTET BIT VALUE IP Address 192 168 1 0 IP Address Binary 11000...

Страница 178: ...10101000 00000001 11000000 Subnet Mask Binary 11111111 11111111 11111111 11000000 Subnet Address 192 168 1 192 Lowest Host ID 192 168 1 193 Broadcast Address 192 168 1 255 Highest Host ID 192 168 1 25...

Страница 179: ...A and class B addresses the subnet mask also determines which bits are part of the network number and which are part of the host ID A class B address has two host ID octets available for subnetting an...

Страница 180: ...Planning NO BORROWED HOST BITS SUBNET MASK NO SUBNETS NO HOSTS PER SUBNET 9 255 255 255 128 25 512 126 10 255 255 255 192 26 1024 62 11 255 255 255 224 27 2048 30 12 255 255 255 240 28 4096 14 13 255...

Страница 181: ...it and possibly render it unusable Command Syntax The command keywords are in courier new font Enter the command keywords exactly as shown do not abbreviate The required fields in a command are enclos...

Страница 182: ......

Страница 183: ...low the sending of NetBIOS packets between the LAN and WAN Allow or disallow the sending of NetBIOS packets from the WAN to the LAN Allow or disallow NetBIOS packets to initiate calls Display NetBIOS...

Страница 184: ...itiate calls Disabled means that NetBIOS packets are blocked from initiating calls Disabled NetBIOS Filter Configuration Syntax sys filter netbios config type Usage config 0 between LAN and WAN 3 IPSe...

Страница 185: ...D DESCRIPTION sys pwderrtm This command displays the brute force guessing password protection settings sys pwderrtm 0 This command turns off the password s protection from brute force guessing sys pwd...

Страница 186: ......

Страница 187: ...sed on information from the time server Time calibration failed The router failed to get information from the time server DHCP client gets s A DHCP client got a new IP address from the DHCP server DHC...

Страница 188: ...ssion Table is Full The maximum number of NAT session table entries has been exceeded and the table is full Chart 22 UPnP Logs LOG MESSAGE DESCRIPTION UPnP pass through Firewall UPnP packets can pass...

Страница 189: ...s for the Network 1 Redirect datagrams for the Host 2 Redirect datagrams for the Type of Service and Network 3 Redirect datagrams for the Type of Service and Host 8 Echo 0 Echo message 11 Time Exceede...

Страница 190: ...is to record Use sys logs category followed by a log category and a parameter to decide what to record Chart 25 Log Categories and Available Settings LOG CATEGORIES AVAILABLE PARAMETERS error 0 1 2 3...

Страница 191: ...11 11 2002 15 10 12 172 22 3 80 137 172 22 255 255 137 ACCESS BLOCK Firewall default policy UDP set 8 1 11 11 2002 15 10 12 172 21 4 17 138 172 21 255 255 138 ACCESS BLOCK Firewall default policy UDP...

Страница 192: ......

Страница 193: ...RDS AC Power Adaptor Model DV 121A2 5720 Input Power AC120Volts 60Hz 27VA Output Power DC12Volts 1 2A Power Consumption 10 W Safety Standards UL CUL UL 1310 CSA C22 2 No 223 M91 EUROPEAN PLUG STANDARD...

Страница 194: ...nput Power AC100Volts 50 60Hz 27VA Output Power DC12Volts 1 2A Power Consumption 10 W Safety Standards T Mark Japan Dentori AUSTRALIA AND NEW ZEALAND PLUG STANDARDS AC Power Adaptor Model AD 1201200DS...

Страница 195: ...ons Additional Requirements 2 4 Power Adapter 2 3 Top Panel 2 2 Copyright ii Coverage 2 4 CPU Load 16 2 Customer Support v D Default 9 10 DHCP 16 4 Diagnostic 16 6 Diagnostic Tools 16 1 Direct Sequenc...

Страница 196: ...5 Log Descriptions K 1 Logs 8 1 M MAC Address Filter Action 6 6 12 6 MAC Address Filtering 12 5 Main Menu 10 4 Management Information Base MIB 14 2 MD5 E 1 Message Digest Algorithm 5 See MD5 Mounting...

Страница 197: ...1 18 2 System Management Terminal 10 4 System Name 4 2 System Timeout 19 3 T TCP IP 16 6 19 1 Telnet 19 1 Telnet Configuration 19 1 Telnet Under NAT 19 1 TFTP And FTP Over WAN 19 3 Restrictions 19 3 T...

Результаты поиска

Содержание ZYAIR G-1000

Отзывы:

Похожие инструкции для ZYAIR G-1000

Бренды по названию

Популярные бренды

ZyXEL Communications ZYAIR G-1000, Руководство пользователя

Результаты поиска

Содержание ZYAIR G-1000

Отзывы:

Похожие инструкции для ZYAIR G-1000

Бренды по названию

Популярные бренды