D-Link DSA-5100 User Manual
AirSpot Gateway
DSA-5100
4-Port AirSpot Gateway
With 2 WAN Ports for Double Internet Bandwidth
The DSA-5100 AirSpot Gateway is a cost-effective device for business and public organizations such as schools, hospitals and
conventions to create a wired or wireless hot spot. This Public/Private Hot Spot Gateway is an Ethernet-based gateway
designed to provide free or fee-based broadband connection to the public users while at the same time providing a separate and
secure private network that shares the same Internet connection. If your business relies on public patronage, you have a way to
give customers access to the Internet, or to networked printers and other resources. If you're a private company that wants to
offer wireless Internet access for your employees, you can do so with the confidence that you're still maintaining a secure
private network that a wireless user will never see. Connect a D-Link wireless access point to the DSA-5100 and you've got a
wireless hot spot. Connect a D-Link switch and your back office computers and printers can share the same broadband
connection.
Double Internet Bandwidth
The DSA-5100 provides 2 WAN ports to double the Internet
connection bandwidth. The WAN ports supports 802.3ad
Link Aggregation industry standard and can be bonded
together into a load-sharing port trunk to eliminate
bottlenecks in heavy Internet access environments. The DSA5100 provides bandwidth management tools for you to assign
rational bandwidth usage of the 2 WAN ports.
Total Wireless Management Solution
The DSA-5100 Network Access Control System (NACS)
provides functions beyond the AAA standard. Its 4A
management solution supports not only Authentication,
Authorization and Accounting (AAA), but also
Administration for all wireless (and wired) network users.
The gateway has a built-in database of up to 60 customized
access management rules and up to 2,000 user accounts. The
DSA-5100 can support up to 400 users on-line at any single
moment. The gateway also supports POP3, RADIUS, and
LDAP external authentication for larger-scale hot spot
networks. Other features IP plug and play, user bandwidth
control, network policy enforcement, customizable user
timer, login/logout web-page, online traffic monitoring, and
URL redirection provide a number of different ways for your
organization to configure and manage your hot spot as either
as a free or revenue-generating service.
Comprehensive Network Protection
The DSA-5100 includes a built-in DHCP server and a
built-in high-speed routing engine, an easy-to-use webbased graphical user interface (GUI) with SSL protection
to securely and quickly configure the device.
Configuration is also capable through the device's RS-232
console port. To prevent unwanted Internet intruders from
accessing your network, the DSA-5100 has a built-in
Security Firewall with Denial of Service (DoS) prevention.
With IP PnP (Plug and Play) and IP/port redirection
provided by the DSA-5100, users connecting to the hot
spot don't need to re-configure their computer's settings to
send or retrieve e-mail or access the Internet.
Ideal Hot Spot Solution
Capable of serving hundreds of simultaneous, discrete
users, the DSA-5100 gateway is the perfect system for a
mid-size enterprise and organization to provide a wireless
hot spot. In a matter of just a few minutes, your business
or organization can provide a wired or wireless hot spot
while still maintaining a private network that the public
will never see. Whether you're an enterprise, merchants
association, factory, hospital, school, or public library, the
DSA-5100 is your instant hot spot solution.
AirSpot Gateway
Functions & Features
Simplified wireless connection for end users
No extra software required at end-user side
No IP setting change on end-user computers
Friendly end-user connection to login page from web browser
Minimized training cost for hot spot service providers
Beyond the AAA, total wireless management
Satisfies 4 requirements of WLAN management: Authentication, Authorization, Accounting, Administration (4A)
Built-in end-user database with maximum 60 customizable access management rules for different groups
Multiple external authentication systems support: RADIUS, POP3, POP3S, LDAP/AD
Simultaneous support of multiple external authentication hosts
Rational assignment of bandwidth usage through a bandwidth management tools
Wireless Access Point on-line status monitoring through Monitor IP function
Remote system maintenance in safe mode through SSL encryption
Complete security features
Multi-layer traffic control from L2 to L4 with 802.1x standard integration
End-user account information protection through SSL encryption at login
Customizable packet filtering rules through group policies to manage end-users' access
End-user access time control through login schedules management
Multiple protection mechanisms against DoS attacks
Integrated accounting engine
Multiple accounting mechanisms
RADIUS and local-based account records support
Technical Specifications
Hardware
Device Ports
- 2 WAN ports (10/100BASE-TX Ethernet) with 802.3ad
LACP Link Aggregation support
- 1 private LAN port (10/100BASE-TX Ethernet) with 802.1q
VLAN tag support
- 1 public LAN port (10/100BASE-TX Ethernet)
with 802.1x authentication support
- 1 RS-232 console port
- 1 RS-232 auxiliary port (reserved for thermal printer connection)
System Performance
- Maximum concurrent users supported: 400 users
- Maximum network throughput: 90Mbps
Dynamic Memory (RAM Buffer)
128MB
Flash Memory (Firmware)
64MB
LED Indicators
- Power (per device)
- Status (per device)
- Link/Activity (per WAN/LAN port)
Software Features
Networking
- NAT, router and bridge modes
- NAT Plug and-Play
- Static IP, DHCP client and PPPoE client on WAN1 interface
- Static IP, DHCP client and 802.3ad (under static IP) on WAN2 interface
- Built-in DHCP server
- DHCP relay
- Built-in NTP client
- HTTP proxy
- Destination IP/port redirect
- Inter-IP-segment roaming
- IPSec (ESP), PPTP and H.323 pass-through (under NAT)
- Virtual Server Mapping
- DMZ Server Mapping
- Static Route Mapping
User Management
- Maximum local user accounts in built-in database: 2,000 accounts
- Optional MAC address locking with local user database
- Maximum guest accounts: 10 accounts
- MAC ACL
- Maximum number of on-line users: 400 users
- Maximum number of authentication/authorization policies: 5 policies
- External authentication database support: POP3, POP3S, RADIUS, LDAP,
Windows domain
- Allow/disallow multiple login
- User login schedule control
- Customizable logout timer
- Customizable guest session time control
- MAC/ IP address pass-through
- GRIC roaming in
- Customizable Black List
- Local/RADIUS accounting
Security Policy
- Secure HTML login page (SSL)
- 64-bit, 128-bit WEP encryption
- 802.1x user authentication (EAP, MD-5, EAP-TLS)
- Maximum 802.1q VLAN (for LAN ports): 32 VLANs
- VLAN tag range from 2 to 4094
- Machine/Subnet DoS protection
- Customizable packet filter rules by group
- Customizable Walled Garden (free surfing area)
Loading...