Motorola MOTOMESH Duo 2.1 User Manual

MOTOMESH Duo 2.1

Network Setup and Installation Guide

Motorola
1303 E. Algonquin Rd.
Schaumburg, IL
60196 USA

www.motorola.com/mesh

847-576-5000

Version 1A

September 2008

This page intentionally left blank.

ii

Copyrights

The Motorola products described in this document may include copyrighted Motorola computer programs. Laws in the
United States and other countries reserve for Motorola certain exclusive rights for copyrighted computer programs.
Accordingly, any copyrighted Motorola computer programs contained in the Motorola products described in this
document may not be copied or reproduced in any manner without the express written permission of Motorola.
Furthermore, the purchase of Motorola products shall not be deemed to grant either directly or by implication,
estoppels or otherwise, any license under the copyrights, patents or patent applications of Motorola, except for the
normal nonexclusive, royalty-free license to use that arises by operation of law in the sale of a product.

Disclaimer

Please note that certain features, facilities and capabilities described in this document may not be applicable to or
licensed for use on a particular system, or may be dependent upon the characteristics of a particular mobile
subscriber unit or configuration of certain parameters. Please refer to your Motorola contact for further information.

Trademarks

Motorola, the Motorola logo, and all other trademarks identified as such herein are trademarks of Motorola, Inc. All
other product or service names are the property of their respective owners.

Copyrights

© 2008 Motorola, Inc. All rights reserved. No part of this document may be reproduced, transmitted, stored in a
retrieval system, or translated into any language or computer language, in any form or by any means, without the
prior written permission of Motorola, Inc.

iii

This page intentionally left blank.

iv

Table

Of

Contents

Contents

.............................................

.
.
.
.

Chapter 1: System Overview ...........................................................................................................1-1

MOTOMESH Duo 2.1 Network Components ........................................................................................1-2

Intelligent Access Point.................................................................................................................1-2

Mesh Wireless Router...................................................................................................................1-3

Supporting Networking Equipment ...............................................................................................1-3

Chapter 2: Network Setup................................................................................................................2-5

Small System Reference Design...........................................................................................................2-5

Network Requirements ..........................................................................................................................2-5

Network Servers................................................................................................................................2-5

One Point Wireless Manager Server ............................................................................................2-6

RADIUS - (Optional)......................................................................................................................2-6

EAP-TTLS Secure Mesh ..........................................................................................................2-7

Network Device Ethernet Interconnectivity........................................................................................2-7

IP Addressing Plan............................................................................................................................2-8

Layer 3 Switch ...................................................................................................................................2-9

Overview .......................................................................................................................................2-9

IP Directed Broadcasts .................................................................................................................2-9

VLAN Setup ................................................................................................................................2-10

VLAN Examples..........................................................................................................................2-11

MOTOMESH Duo Device Defaults .................................................................................................2-13

Preparing the One Point Wireless Manager Server........................................................................2-14

Minimum Software Requirements...............................................................................................2-15

Red Hat Linux Installation ...........................................................................................................2-15

Preparing the Windows 2003 Server and Juniper RADIUS............................................................2-22

Installing Windows 2003 Server..................................................................................................2-22

Driver Installation for HP DL360 G5 Server ...........................................................................2-23

Installing Windows 2003 Support Tools .................................................................................2-24

Microsoft Certificate Authority Services ......................................................................................2-24

Configuring Automatic Certificate Issuing ..............................................................................2-26

Requesting a Server Certificate..............................................................................................2-26

Authentication Server Configuration ...........................................................................................2-28

Juniper Steel-Belted RADIUS.................................................................................................2-28

Exporting Certificates..............................................................................................................2-28

Installing Certificates...............................................................................................................2-29

Configuring EAP Settings .......................................................................................................2-30

v

Configuring a Radius Client....................................................................................................2-31

Configure RADIUS User.........................................................................................................2-31

Trusted Root Certificate ..............................................................................................................2-32

Authenticator (R0KH) Configuration ...........................................................................................2-32

Chapter 3: MOTOMESH Duo Hardware ..........................................................................................3-1

MOTOMESH Duo Enclosure.................................................................................................................3-1

Enclosure Side 1 ...............................................................................................................................3-2

Enclosure Side 2 ...............................................................................................................................3-3

Mounting Bracket...............................................................................................................................3-4

Personality Plug.....................................................................................................................................3-5

Standard / Canopy Connect PoE Plug Usage Information ...............................................................3-5

Reset Plug Usage Information ..........................................................................................................3-6

Connecting Power .................................................................................................................................3-6

Flying Lead Power Cable ..................................................................................................................3-7

Power Tap Adapter............................................................................................................................3-8

Power Consumption ..........................................................................................................................3-9

Ethernet Adapter Cable .........................................................................................................................3-9

Antenna ...............................................................................................................................................3-10

BandPass Filter ...............................................................................................................................3-11

Chapter 4: Site Selection and Deployment Guidelines.................................................................4-1

Preparation ............................................................................................................................................4-1

Hardware and Tools ..............................................................................................................................4-2

Device Assembly ...................................................................................................................................4-3

Site Selection Guidelines.....................................................................................................................4-15

Site Surveys ....................................................................................................................................4-15

Device Mounting..............................................................................................................................4-16

Street Lights ................................................................................................................................4-17

Roof Mount..................................................................................................................................4-17

Antenna Height....................................................................................................................................4-18

Mounting Examples .............................................................................................................................4-19

Chapter 5: Customer Information....................................................................................................5-1

Customer Service Information...............................................................................................................5-1

Obtaining Support..............................................................................................................................5-2

System Information .......................................................................................................................5-2

Return Material Request ...............................................................................................................5-2

Returning FREs.............................................................................................................................5-3

Software License Terms and Conditions...............................................................................................5-3

Chapter 6: Certification and Safety Information............................................................................6-1

FCC Regulatory Information..................................................................................................................6-1

Federal Communications Commission (FCC) Statement .................................................................6-1

Safety Information for the MOTOMESH Products.................................................................................6-2

FCC Radiation Exposure Statement .................................................................................................6-2

Safety Certification.................................................................................................................................6-2

Regulatory Requirements and Legal Notices........................................................................................6-3

vi

Regulatory Requirements for CEPT Member States ........................................................................6-3

European Union Notification..............................................................................................................6-4

European Union Notification 5.7GHz Product ..............................................................................6-4

Annex 6 – Instructions for use (regulatory content) MOTOMESH 2.4/5.8 GHz Radio .....................6-5

European Union Notification .........................................................................................................6-5

Equipment Disposal...........................................................................................................................6-6

UK Notification...................................................................................................................................6-6

Belgium Notification...........................................................................................................................6-6

Luxembourg Notification....................................................................................................................6-6

Czech Republic Notification...............................................................................................................6-7

Norway Notification............................................................................................................................6-7

Greece Notification............................................................................................................................6-7

DECLARATION OF CONFORMITY..................................................................................................6-8

EU Declaration of Conformity for RoHS Compliance......................................................................6-10

CMM Labeling and Disclosure Table...................................................................................................6-11

Chapter 7: Index................................................................................................................................7-1

Chapter 8: Glossary..........................................................................................................................8-1

Chapter 9: Appendix A:....................................................................................................................9-1

IP Directed Broadcast Feature ..............................................................................................................9-1

Enabling the IP Directed Broadcast Feature.....................................................................................9-1

Cisco 3750 L3 Switch Core Configuration File..................................................................................9-2

Equipment Specifications ......................................................................................................................9-8

Wiring Instructions ...............................................................................................................................9-10

US Power Connector Wiring Instructions........................................................................................9-10

Part I – Power Connector Parts ..................................................................................................9-10

Part II – Power Cable with Flying Leads.....................................................................................9-11

Part III – Power Connector and Cable Assembly Instructions....................................................9-11

European Power Connector Wiring Instructions .............................................................................9-14

Part I – Power Connector Parts ..................................................................................................9-14

Part II – Power Cable with Flying Leads.....................................................................................9-16

Part III – Power Connector and Cable Assembly Instructions....................................................9-16

Australian Wiring Instructions..........................................................................................................9-20

Part I – Power Connector Parts ..................................................................................................9-20

Part II – Power Cable with Flying Leads.....................................................................................9-23

Part III – Power Connector and Cable Assembly Instructions....................................................9-23

Backdoor Access to a MOTOMESH Duo Device via the Web Interface.............................................9-26

MOTOMESH Duo Infrastructure Device Labels..............................................................................9-31

Dynamic Frequency Selection.............................................................................................................9-32

Auto-Channel Selection...................................................................................................................9-32

Preferred Channel List.....................................................................................................................9-32

Scan Triggers ..................................................................................................................................9-32

The Scan .........................................................................................................................................9-32

vii

List

Of

Figures

List of Figures

.............................................

.
.
.
.

Figure 1-1 2.4 / 5.8 GHz Mesh Network Example .................................................................................1-4

Figure 2-1 HP DL360 G5 server ............................................................................................................2-6

Figure 2-2 Ethernet connectivity between network servers and 3750 L3 Switch..................................2-7

Figure 2-3 Cisco 3750 L3.......................................................................................................................2-9

Figure 2-4 L3 Switch for MOTOMESH Duo 2.1 - VLAN View .............................................................2-11

Figure 2-5 VLAN Example 1 ................................................................................................................2-12

Figure 2-6 VLAN Example 2 ................................................................................................................2-13

Figure 3-1 Enclosure Side 1 ..................................................................................................................3-2

Figure 3-2 Enclosure Side 2 ..................................................................................................................3-3

Figure 3-3 Pivot Bracket ........................................................................................................................3-4

Figure 3-4 Select Port ............................................................................................................................3-5

Figure 3-5 12ft AC Flying Lead Cable (3071331H01) ...........................................................................3-7

Figure 3-6 US Power Plug (5871322H01).............................................................................................3-8

Figure 3-7 FP283 Series Power Tap Adapter (5871325H01) ...............................................................3-8

Figure 3-8 1ft Ethernet adapter cable (3063338B01) ............................................................................3-9

Figure 3-9 Optional Antenna Support Bracket (Part # 0763325A01) ..................................................3-10

Figure 3-10 BandPass Filter (Part # 9163340B01)...........................................................................3-11

Figure 4-1 MOTOMESH Duo device with accessories..........................................................................4-2

Figure 4-2 Required Tools .....................................................................................................................4-3

Figure 4-3 Attaching the mounting bracket............................................................................................4-3

Figure 4-4 Loosing the pivot screw........................................................................................................4-4

Figure 4-5 Remove the antenna caps ...................................................................................................4-4

Figure 4-6 Attaching the right angle antenna connectors......................................................................4-5

Figure 4-7 MOTOMESH Duo device with right angle antenna connectors installed.............................4-5

Figure 4-8 Removing the bracket clamp ................................................................................................4-6

Figure 4-9 Attaching the bracket............................................................................................................4-6

Figure 4-10 Slide the 5.4, 5.8 or 4.9 antenna through the bracket......................................................4-7

Figure 4-11 Tighten the antennas .......................................................................................................4-7

Figure 4-12 Slide the bracket up .........................................................................................................4-8

Figure 4-13 Apply the weatherproof tape............................................................................................4-8

Figure 4-14 Finish wrapping the tape around the antenna base.........................................................4-9

Figure 4-15 Repeat this on the other antenna.....................................................................................4-9

Figure 4-16 Use electrical tape and cover the weatherproof tape ....................................................4-10

Figure 4-17 Tighten the antenna bracket ..........................................................................................4-10

Figure 4-18 Tighten the bracket screws............................................................................................4-11

Figure 4-19 Remove the protective cap ............................................................................................4-11

Figure 4-20 Attach the 8 pin cable Ethernet cable ............................................................................4-12

Figure 4-21 Connecting the power cable ..........................................................................................4-12

Figure 4-22 Apply weatherproof tape to the Ethernet and power connectors...................................4-13

Figure 4-23 Finished MOTOMESH Duo device ................................................................................4-13

Figure 4-24 Mounted MOTOMESH Duo ...........................................................................................4-14

Figure 4-25 Mounting Options...........................................................................................................4-16

Figure 4-26 Standoff bracket.............................................................................................................4-18

viii

Figure 4-27 Antenna Heights.............................................................................................................4-18

Figure 4-28 Antenna Patterns ...........................................................................................................4-19

Figure 4-29 Poor Install Example 1 ...................................................................................................4-19

Figure 4-30 Poor Install Example 2 ...................................................................................................4-20

Figure 4-31 Poor Install Example 3 ...................................................................................................4-20

Figure 9-1 Initial Power Connector Package Contents........................................................................9-10

Figure 9-2 Required Items ...................................................................................................................9-10

Figure 9-3 Feed flying lead cable through components ......................................................................9-11

Figure 9-4 Attach flying lead cable to the plug.....................................................................................9-11

Figure 9-5 Assemble plug....................................................................................................................9-12

Figure 9-6 Arrange the components ....................................................................................................9-12

Figure 9-7 Tighten plug........................................................................................................................9-13

Figure 9-8 Finished Power Connector and Cable Assembly...............................................................9-13

Figure 9-9 European Power Connector Front View.............................................................................9-14

Figure 9-10 European Power Connector Side View .........................................................................9-14

Figure 9-11 Top View of European Power Connector Showing Access Screw................................9-15

Figure 9-12 Side View of Plug Showing Detail of the Stress Relief Bar............................................9-15

Figure 9-13 Side View of Plug Contents and Plug Shell...................................................................9-15

Figure 9-14 Initial Power Cable View ................................................................................................9-16

Figure 9-15 Side View of Plug Showing Detail of the Stress Relief Bar and Screws........................9-16

Figure 9-16 Power cable pulled through the Plug Shell and Under the Stress Relief Bar................9-17

Figure 9-17 Wire Base is Not Visible on the Right Side of the Stress Relief Bar..............................9-17

Figure 9-18 Stress Relief Bar Screws ...............................................................................................9-18

Figure 9-19 Power Cable Designations.............................................................................................9-18

Figure 9-20 Position of the Neutral, Line, and Earth Ground Screws ...............................................9-18

Figure 9-21 Correct Position of the Cable Wires Attached to the Plug. ............................................9-19

Figure 9-22 Finished Plug .................................................................................................................9-19

Figure 9-23 Front View of the Australian Power Connector Plug......................................................9-20

Figure 9-24 Side View of the Australian Power Connector Plug.......................................................9-20

Figure 9-25 Front View of the Australian Power Connector Plug with Opened Sides......................9-21

Figure 9-26 Side View of the Australian Power Connector Plug with Opened Sides .......................9-21

Figure 9-27 Inside View of the Australian Power Connector Plug ....................................................9-21

Figure 9-28 Power Cable with Wire Designation...............................................................................9-23

Figure 9-29 Inside View Pointing out Strain Relief Bar and Screws .................................................9-23

Figure 9-30 Correct Wire Positioning on Either Side of Screw Well .................................................9-24

Figure 9-31 Correct Position of the Cable Below the Strain Relief Bar.............................................9-24

Figure 9-32 Correct Wire Attachment to the Terminal Plug ..............................................................9-25

Figure 9-33 Position of Access Screw When the Plug is folded Half Way........................................9-25

Figure 9-34 Configuring a Wireless Client Adapter with a Static IP Address....................................9-26

Figure 9-35 Creating a Profile ...........................................................................................................9-27

Figure 9-36 Verify Backdoor Access by Performing a Ping ..............................................................9-28

Figure 9-37 Select “Continue to Website” in Internet Explorer..........................................................9-29

Figure 9-38 Login to the MOTOMESH Duo 2.1 Backdoor................................................................9-29

Figure 9-39 General Settings Tab in the Web User Interface...........................................................9-30

Figure 9-40 MOTOMESH DUO 4300 - 49 AC and DC Device Product Labels (Samples)...............9-31

Figure 9-41 MOTOMESH DUO 4300 - 58 AC and DC Device Product Labels (Samples)...............9-31

Figure 9-42 MOTOMESH DUO 4300 - 54 AC and DC Device Product Label..................................9-31

ix

This page intentionally left blank.

x

List

Of

Tables

List of Tables

.............................................

.
.
.
.

Table 2-1 Core IP Network Plan...........................................................................................................2-8

Table 2-2 Wireless VLAN /Subnet IP Network Plan.............................................................................2-8

Table 2-3 Software Requirements for One Point Wireless Manager .................................................2-15

Table 3-1 Approved MOTOMESH Duo Antennas..............................................................................3-10

Table 3-2 MOTOMESH Duo Antenna Brackets .................................................................................3-10

Table 9-1 MOTOMESH Duo 4300-49 Radio Characteristics...............................................................9-9

Table 9-2 MOTOMESH Duo 4300-58 Radio Characteristics...............................................................9-9

Table 9-3 MOTOMESH Duo 4300-54 Radio Characteristics...............................................................9-9

xi

This page intentionally left blank.

xii

List

Of

Procedures

List of Procedures

.............................................

.
.
.
.

Procedure 2-1 Red Hat Enterprise Linux ES Installation on HP DL360 G5 Server..........................2-15

Procedure 2-2 DHCP and DNS Install Script ....................................................................................2-19

Procedure 2-3 Windows 2003 Server Installation .............................................................................2-22

Procedure 2-4 Ethernet Driver Installation for the HP DL360 G5 Server..........................................2-23

Procedure 2-5 Windows 2003 Support Tools Installation .................................................................2-24

Procedure 2-6 Installing Certificate Services ....................................................................................2-25

Procedure 2-7 Configuring Automatic Certificate Issuing..................................................................2-26

Procedure 2-8 Installing Certificates on the Authentication Server...................................................2-27

Procedure 2-9 Exporting Certificates.................................................................................................2-28

Procedure 2-10 Installing Certificates..................................................................................................2-29

Procedure 2-11 Configuring EAP Settings ..........................................................................................2-30

Procedure 2-12 Configuring A Radius Client ......................................................................................2-31

Procedure 2-13 Configuring A Radius User ........................................................................................2-31

Procedure 3-1 Personality Plug Usage Information ............................................................................3-5

Procedure 3-2 Reset Plug Usage Information.....................................................................................3-6

Procedure 4-1 Device assembly..........................................................................................................4-3

Procedure 9-1 Enabling IP Directed Broadcast...................................................................................9-1

xiii

This page intentionally left blank.

xiv

Chapter 1: System Overview

Chapter 1: System Overview

.............................................

.
.

Motorola’s MOTOMESH Duo is a high performance, 802.11 a/b/g meshed Wi-Fi solution
designed to meet strict cost per square mile and ROI targets. MOTOMESH Duo is part of the
MOTO wi4™ portfolio of broadband wireless access technologies, and delivers a new level of
economic flexibility and investment protection to municipalities and service providers.
MOTOMESH Duo leverages Motorola’s field proven, MeshConnex™ routing engine and One
Point Wireless Management™ system to meet the challenges of demanding multi-use
networks. Its small size, minimal visual impact and low power consumption increases
mounting location flexibility and enables rapid deployment. MOTOMESH Duo devices are
available in three different radio configurations:

Chapter

1

• 2.4 / 5.4 GHz (single mesh)

• 2.4 / 5.8 GHz (single mesh)

• 2.4 / 4.9 GHz (dual mesh)

MOTOMESH Duo devices can be deployed in a variety of meshing configurations depending
on the radio configuration ordered:

• 2.4 GHz client access / 2.4 GHz meshing – In this configuration the second radio is

disabled and the 2.4 GHz radio is used for client access and for inter-nodal meshing.

• 2.4 GHz client access / 5.4 GHz meshing – In this configuration the 2.4 GHz radio

is used for client access and the 5.4 GHz radio is used for inter-nodal meshing.

• 2.4 GHz client access / 5.8 GHz meshing – In this configuration the 2.4 GHz radio

is used for client access and the 5.8 GHz radio is used for inter-nodal meshing.

• 2.4 GHz client access / 2.4 GHz meshing | 4.9 GHz client access / 4.9 GHz
meshing – In this configuration the 2.4 GHz radio is used for client access and inter-

nodal meshing. The 4.9 GHz radio is also used for 4.9 GHz client access and inter­nodal meshing. This configuration is referred to as Dual Mesh.

MOTOMESH Duo devices can also be ordered in AC and DC versions.

1-1

Chapter 1: System Overview

All MOTOMESH Duo 2.1 Infrastructure Devices require professional
installation to ensure the installation is performed in accordance with
Motorola installation standards and that regulatory requirements are met.

MOTOMESH Duo 2.1 Network Components

.............................................

.
.

A MOTOMESH Duo 2.1 network is comprised of the following components.

• Intelligent Access Points (IAPs)

• Mesh Wireless Routers (MWRs)

• Supporting networking equipment

Intelligent Access Point

A MOTOMESH Duo device can function as an IAP (gateway) or an MWR. All MOTOMESH
Duo devices ship from the factory as IAPs. If an IAP does not detect a wired connection it
will convert to an MWR thus removing itself as a valid gateway to the wired network. This
prevents routing holes from forming in the network. IAPs (functioning as MWRs) will still
participate in the mesh and will forward traffic to an alternative IAPs (gateways). A node can
also be specifically set as an IAP or an MWR using the One Point Wireless Manager™
application or the device webpage.

Intelligent Access Points:

• Support 802.11 a/b/g Wi-Fi client access.

• Support all 802.11 client security methods (open, WEP, WPA/WPA2 RADIUS,

WPA/WPA2 PSK).

• Support 15 Virtual Access Points per radio for client access.

• Support Dynamic Route Selection via the MeshConnex™ routing engine.

• Support Automatic Load Balancing.

• Support 128bit AES encrypted Secure Mesh inter-nodal links.

• Are equipped with two Ethernet interfaces one of which can source standards

based 802.3af Power over Ethernet (PoE) (to power an external IP enabled
device such as a surveillance camera) or Canopy PoE to power Motorola
Canopy subscriber modules.

• Offer fast and easy deployment via a pivot mounting bracket.

• Designed with a rugged NEMA 4 outdoor enclosure.

1-2

Chapter 1: System Overview

With the addition of each IAP additional network capacity is added.

Mesh Wireless Router

When a MOTOMESH Duo device operates as a Mesh Wireless Router (MWR), its primary
function is to seed and extend the range between IAPs and wireless clients while
simultaneously increasing the spectral efficiency of the network.

Mesh Wireless Routers:

• Range extension for all other network devices.

• Support 802.11 a/b/g Wi-Fi client access.

• Support all 802.11 client security methods (open, WEP, WPA/WPA2 RADIUS,

WPA/WPA2 PSK).

• Support 15 Virtual Access Points per radio for client access.

• Support Dynamic Route Selection via the MeshConnex™ routing engine.

• Support Automatic Load Balancing.

• Support 128bit AES encrypted Secure Mesh inter-nodal links.

• Are equipped with two Ethernet interfaces one of which can source standards

based 802.3af Power over Ethernet (PoE) to power external IP enabled devices
such a surveillance camera. This allows a network of IP-enabled devices to be
directly addressed, accessed and managed over the network.

• Offer fast and easy deployment via a pivot mounting bracket.

• Designed with a rugged NEMA 4 outdoor enclosure.

Supporting Networking Equipment

Additional networking infrastructure is required to support a MotoMesh Duo network. This
includes an enterprise grade server to provide network services such as DHCP and DNS, as
well as host the MotoMesh Duo management software (One Point Wireless Manager™. A
RADIUS server may also be present. Switching and routing network equipment is also
required. Our small system reference design utilizes a single Layer 3 switch which provides
switching and routing within the same device.

1-3

Chapter 1: System Overview

Figure 1-1 2.4 / 5.8 GHz Mesh Network Example

Internet

Internet

RADIUS

Wireless Manager

Wireless Manager

RADIUS

Layer 3 Switch

Layer 3 Switch

Backend Network

Backend Network

2.4 GHz

2.4 GHz
Client

Client

Access

Access

5.8 GHz

5.8 GHz
Mesh

Mesh

MWR

MWR

IAP

IAP

2.4 GHz

2.4 GHz
Client

Client

Access

Access

5.8 GHz

5.8 GHz
Mesh

Mesh

MWR

MWR

5.8 GHz

5.8 GHz
Mesh

Mesh

MWR

MWR

2.4 GHz

2.4 GHz
Client

Client

Access

Access

1-4

Chapter 2: Network Setup

Chapter 2: Network Setup

.............................................

.
.

Small System Reference Design

This section details a small system reference design. By understanding the small reference
design one can apply these details to larger networks. A small system reference design is
defined as a network in which the network servers and associated networking hardware are
located at a central location. Wireless or wired bridging may be used to provide connectivity
between the Intelligent Access Points and the switch / router backend.

Chapter

2

Our small system reference design has the following attributes:

• Support for at least 20 IAPs (gateways).

• All IAPs and MWRs will utilize DHCP for network addressing.

• The Network will be configured and managed with the One Point Wireless

Manager™ application residing on a RedHat ES 4 Linux server.

• A Windows 2003 RADIUS server will provide authentication for Secure Mesh.

• The standard small network design does not include server or network hardware

redundancy.

Network Requirements

.............................................

.

Network Servers

There are two network servers used in the small system reference design. The following is
the recommended hardware configuration for these two servers. Variations from the
recommended hardware configuration may result in inadequate system performance.

• Enterprise grade server (e.g. Hewlett-Packard ProLiant DL360-G5 3.00GHz
Server)

• Minimum 2 GB of RAM

• (2) 36.4 GB 15K RPM SCSI Hard Disk Drives

2-5

Chapter 2: Network Setup

Figure 2-1 HP DL360 G5 server

• Monitor

• Keyboard

• Mouse

These requirements are an approximate estimate intended to allow for
maximum scalability while supporting rapid system response time. As a
minimum, we recommend 2 GB of system memory and redundant hard
drives with a hardware RAID controller of server quality.

One Point Wireless Manager Server

• The One Point Wireless Manager™ server in our reference design server hosts

the One Point Wireless Manager™
configuration and network management. DHCP and DNS will also be configured
on this server and are part of the Linux operating system.

RADIUS - (Optional)

• The Windows 2003 server is optional and is used to support EAP-TTLS Secure
Mesh. Juniper’s Steel Belted Radius application will be configured on the
Windows 2003 server since it supports EAP-TTLS based authentication. The
Windows 2003 Server also provides certificate services which will be used to
generate certificates to support EAP-TTLS. Our RADIUS server could also be
used for certificate based 802.11 client authentication and or store 802.11 client
usernames and passwords. A RADIUS server for Secure Mesh is not required if
PSK Secure Mesh is used instead.

application. This application provides device

2-6

Chapter 2: Network Setup

EAP-TTLS Secure Mesh

The MotoMesh 2.1 architecture provides a set of features designed to help network operators
secure the mesh network. These security features can help to protect the mesh network from
intruders and attackers.

It is important to distinguish between the security provided by the MotoMesh architecture
(Secure Mesh) and the security features provided for standard 802.11 clients (e.g. laptops,
mobile Wi-Fi devices, etc.). Mesh Security applies between all of the mesh-enabled devices
that form the mesh network. 802.11 client security (e.g. WEP, WPA-PSK, etc.) is completely
independent of mesh security and is detailed in the WMS Administrator’s Guide.

EAP-TTLS Secure Mesh uses Public Key Infrastructure (PKI) certificates to authenticate the
network infrastructure, a RADIUS server, and a unique user ID and password to uniquely
authenticate each mesh device. EAP mode supports MIC codes and encryption, where
available. EAP mode supports centralized control of per-device authentication credentials by
the RADIUS server, so a compromised device's credentials can be individually revoked
without having to change keys on other devices. Session keys are automatically derived
based on the EAP authentication and rolled periodically at a rate controlled by the RADIUS
server. EAP mode is recommended for medium- or large-sized networks or any network that
requires per-device authentication or centralized control over credentials. EAP mode
requires the "R0 Key Holder" (R0KH) service. The R0 Key Holder service acts as a key
cache, speeding up key generation for devices that already have a valid session key from the
RADIUS server, similar to the R0 Key Holder defined for 802.11r. The R0KH service is
included as part of the Linux environment setup.

Secure Mesh can also be configured to use PSK thus eliminating the RADIUS requirement. Please
see the WMS Administrator’s Guide for detailed steps.

Network Device Ethernet Interconnectivity

This section describes the Ethernet connectivity of the small system reference design. Please
note the specific ports used as the software configuration of the equipment assumes the
stated interconnectivity.

Figure 2-2 Ethernet connectivity between network servers and 3750 L3 Switch

Port 1
Port 2

Ports

3-4

The One Point Wireless Manager server is connected to Port 1 of the L3 Switch.

The RADIUS server is connected to Port 2 of the L3 switch.

Ports 3 and 4 on the L3 switch can be used to connect to other network devices e.g. gateway
router

Ports

5-24

Ports 5-24 will be used for connections to IAPs.

2-7

Chapter 2: Network Setup

IP Addressing Plan

Table 2-2 shows the network IP plan for our small system reference design. Four VLANs will
be utilized in our network design (VLAN 1, 24, 31, and 49) each representing a different IP
subnet:

These VLANs are configured in the Cisco Layer 3 switch. A detailed switch configuration is
included in Appendix A.

IP Address Host

• VLAN 1 (10.1.0.0/16 network)

• VLAN 24 (10.24.0.0/16 network)

• VLAN 31 (172.31.0.0/16 network)

• VLAN 49 (10.49.0.0/16 network)

Table 2-1 Core IP Network Plan

172.31.0.2/16

10.1.0.1/16

10.24.0.1/16

10.49.0.1/16

172.31.0.20 One Point Wireless Manager Server

172.31.0.30 to 172.31.255.254 Reserved for other network services servers (VLAN 31)

The table 2-3 lists the address pools that will be configured to support our network. These
address pools are configured on One Point Wireless™ Manager
is available from Motorola that will configure the Linux server with these defaults.

Table 2-2 Wireless VLAN /Subnet IP Network Plan

L3 Switch VLAN 31
L3 Switch VLAN 1
L3 Switch VLAN 24
L3 Switch VLAN 49

DNS server
DHCP server
TFTP Server

server. A Linux setup script

IP Address Host

DHCP Pool 10.1.0.30 – 10.1.255.254

VLAN 1 (Native)
VLAN 1 Address Pool / Untagged devices

DHCP Pool 10.24.0.30 – 10.24.255.254

VLAN 24 (IAP and MWR device addresses)
VLAN 24 Address Pool

2-8

Chapter 2: Network Setup

IP Address Host

DHCP Pool 10.49.0.30 – 10.49.255.254

Layer 3 Switch

Overview

The standard small system reference design includes a Cisco 3750 L3 Switch which supports
20 Intelligent Access Points (IAPs). Four switch ports (ports 1-4) are also available for
network servers such as the One Point Wireless Manager™ server and RADIUS. IAPs are
connected to L3 switch (ports 5-24) via one of three methods:

• Direct Ethernet

• Connection via a wireless bridge (Motorola Canopy™ System)

• Connection via a wireline media converter (e.g. Ethernet over Fiber media

converter)

VLAN 49 (802.11 clients)
VLAN 49 Address Pool

Figure 2-3 Cisco 3750 L3

SYST
RPS
MASTR
STAT
DUPLX
SPEED
STACK

MODE

The Cisco 3750 router provides the following services:

• Routing between the wireless subnets 10.1.0.0 /16, 10.24.0.0/16, 10.49.0.0/16,
and the server network 172.31.0.0/16 (e.g. inter VLAN routing between VLANs
1, 24, 31, and 49).

• DHCP relay from the wireless subnets to the DHCP server running on the One
Point Wireless server 172.31.0.20.

• 802.1Q VLAN tag recognition enabling the support of a trunked set of VLANs
terminating on a single physical interface

IP Directed Broadcasts

1234567891011

1X

2X

Catalyst 3750

12

11X

12X

1314151617181920212223

13X

14X

24

23X

24X

SERIES

1 2

By default, the 3750 Switch drops IP directed broadcasts; thus preventing them from being
forwarded. The One Point Wireless Manager™ application utilizes SNMP broadcasts for
automatic network discovery. We have enabled IP directed broadcasts in the 3750 L3 switch

2-9

Chapter 2: Network Setup

in order to prevent the switch from dropping these discovery packets. See Appendix A for
detailed steps on how to configure the IP directed broadcast feature on the 3750 L3 switch.

VLAN Setup

The L3 network switch provides the ability to segment management and user traffic using a
combination of VLAN tagging and firewall access control rules, see Figure 2-4. In the small
system reference design the L3 switch has been configured with the following 4 VLANs each
representing a different IP subnet per our IP plan:

• VLAN 31 is configured on Ports 1-4. Ports 1-4 are access ports only (non-tagged)

• VLAN 1 is the native VLAN of the L3 switch by default. Ports 5-24 have been

and are used by network servers such as the One Point Wireless Manager™
(172.31.0.20/16) and RADIUS. VLAN 31 has the address of 172.31.0.2/16. Note
how the second octet of the IP address (31) is aligned with the VLAN number. This
has been done to simplify the IP design.

configured as trunked ports and have VLAN 1 in their allowed VLAN list. VLAN 1 has
the IP address of 10.1.0.1/24. It has been configured to support non VLAN capable
devices such as cameras and other IP devices. This VLAN is also configured with an
IP helper address of 172.31.0.20 (The address of the Wireless One Point Manager™
server) to service any DHCP requests received on this VLAN.

server

• VLAN 24 is also included in the allowed VLAN list on ports 5-24. VLAN 24 has the
address of 10.24.0.1/16. VLAN 24 has been configured to be used as a
management VLAN. The management VLAN is used to communicate management
data from the One Point Wireless Manager™
VLAN is also configured with an IP helper address of 172.31.0.20 (The address of
the Wireless One Point Manager™ server) to service any DHCP requests received
on this VLAN.

• VLAN 49 is also included in the allowed VLAN list on ports 5-24. VLAN 49 has the
address of 10.49.0.1/16. VLAN 49 has been configured to be used by wireless
clients. As mentioned previously a MOTOMESH Duo device supports up to 15
Virtual Access Points (VAPs) per radio. Each VAP can be configured to have a
unique VLAN. Thus, in this example, VLAN 49 has been created to support a client
VAP. Note that this VLAN tag will be stripped off prior to data being sent to client
devices (VLAN tag stripping is on by default on client VAPs). Traffic that originates
from a client would be tagged with VLAN 49. This VLAN is also configured with an IP
helper address of 172.31.0.20 (The address of the Wireless One Point Manager™
server) to service any DHCP requests received on this VLAN.

application to IAPs and MWRs. This

2-10

Chapter 2: Network Setup

Figure 2-4 L3 Switch for MOTOMESH Duo 2.1 - VLAN View

Catalyst 3750

1234567891011

SYST
RPS
MASTR
STAT
DUPLX
SPEED
STACK

MODE

1X

2X

12

11X

12X

1314151617181920212223

13X

14X

24

23X

24X

SERIES

1 2

VLAN Examples

In order to better understand how VLANs are used in our small system reference design let’s examine
how traffic traverses these VLANs. In the example below the One Point Wireless Manager

connected to port 1 and our IAP is connected to port 18. Management VLAN 24 has been configured on
our IAP as well as DHCP. When the IAP is powered on it obtains an IP address in the follow steps:

1. The IAP requests an IP address via DHCP. This request is sent over VLAN 24.

2. The 3750 switch receives the DHCP request on Port 18 which is configured to accept packets on
VLAN 24. VLAN 24 is configured on the L3 switch to forward DHCP requests to the One Point

Wireless Manager
Point Wireless Manager server

™ server via the configured IP helper address 172.31.0.20. Since the One

™ is connected to port 1, and ports 1-4 are a part of untagged

VLAN 31, the tag is removed and the DHCP request is forwarded out port 1 to the One Point
Wireless Manager

™ server.

™ server is

2-11

Chapter 2: Network Setup

3. The DHCP server observes that the request originates from the 10.24.0.0/16 network. It answers
this request with a 10.24.X.X/16 IP address. Please recall that this DHCP pool has been

configured on the DHCP server running on the One Point Wireless Manager

™ server.

4. The 3750 switch receives this reply and forwards it out back on VLAN 24 to the IAP.

Figure 2-5 VLAN Example 1

Wireless Manager

Wireless Manager

172.31.0.20

172.31.0.20

3

3

Layer 3 Switch

Layer 3 Switch

2

2

VLAN 24 10.24.0.1

VLAN 24 10.24.0.1
IP helper address 172.31.0.20

IP helper address 172.31.0.20

Catalyst 3750

SERIES

Catalyst 3750

12

1234567891011

1234567891011

1X

SYST

SYST
RPS

RPS
MASTR

MASTR
STAT

STAT
DUPLX

DUPLX
SPEED

SPEED
STACK

STACK

MODE

MODE

1X

2X

2X

12

11X

11X

12X

12X

1314151617181920212223

1314151617181920212223

13X

13X

14X

14X

24

24

23X

23X

24X

24X

SERIES

1 2

1 2

4

4

In our next example

1

1

IAP

IAP

Management

Management

VLAN 24

VLAN 24

In the next example an 802.11 client has associated to a virtual access point on our IAP. The DHCP
exchange is as follows:

1. The client sends a DHCP request.

2. The IAP tags this request with VLAN 49 and forwards it to the 3750 switch.

3. The 3750 switch receives the DHCP request on Port 18 which is also configured to accept
packets on VLAN 49. VLAN 49 is configured on the switch to forward DHCP requests to the One

Point Wireless Manager
One Point Wireless Manager

untagged VLAN 31, the tag is removed and the DHCP request is forwarded out port 1 to the One
Point Wireless Manager

™ server via the configured IP helper address 172.31.0.20. Since the

™ server is connected to port 1, and ports 1-4 are a part of

™ server.

2-12

Chapter 2: Network Setup

4. The DHCP server observes that the request originates from the 10.49.0.0/16 network. It answers
the request with a 10.49.X.X/16 IP address. Please recall that this DHCP pool has been

configured on the DHCP server running on the One Point Wireless Manager

™ server.

5. The 3750 switch receives this reply and forwards it out back on VLAN 49 to the IAP.

6. The IAP strips off the VLAN tagged and sends the reply to the client.

Figure 2-6 VLAN Example 2

4

Wireless Manager

Wireless Manager

172.31.0.20

172.31.0.20

4

3

3

Layer 3 Switch

Layer 3 Switch

VLAN 49 10.49.0.1

VLAN 49 10.49.0.1
IP helper address 172.31.0.20

IP helper address 172.31.0.20

12

1234567891011

1234567891011

1X

SYST

SYST
RPS

RPS
MASTR

MASTR
STAT

STAT
DUPLX

DUPLX
SPEED

SPEED
STACK

STACK

MODE

MODE

1X

2X

2X

12

11X

11X

12X

12X

1314151617181920212223

1314151617181920212223

13X

13X

14X

14X

Catalyst 3750

SERIES

Catalyst 3750

24

24

SERIES

23X

23X

1 2

1 2

24X

24X

5

5

2

802.11

802.11
Client

Client

1

1

Virtual Access Point configured

Virtual Access Point configured

2.4 GHz

2.4 GHz

To use VLAN 49

To use VLAN 49

2

IAP

IAP

6

6

MOTOMESH Duo Device Defaults

MOTOMESH Duo devices come from the factory with the following default settings:

2-13

Chapter 2: Network Setup

• All devices are IAPs

• DHCP enabled

• VLAN support enabled

• Management configured as VLAN 4095. A management VLAN of 4095 means

• Backhaul detection on – If a MOTOMESH Duo device does not detect a wired

untagged. Thus when a MOTOMESH device requests an IP address for the first time
the DHCP request will come in as untagged and will be serviced by VLAN 1. Thus
the device will receive a 10.1.X.X/16 address (e.g. if the small system reference
design defaults are used). The management VLAN can then be changed to another
VLAN e.g. VLAN 24 used in the reference design. (The management VLAN would
be changed to VLAN 24 and the device rebooted. The device would then get a

10.24.x.x address).

backhaul connection it will convert itself from an IAP to an MWR. The Backhaul
detection feature is comprised of active ping and link layer detection. By default, the
IAP will ping the gateway address received in the DHCP reply. If an IAP is statically
configured then an IP address will need to be entered into the backhaul detection
settings (in the One Point Wireless Manager™ application or via the webpage
interface) for the Backhaul Detection feature to operate correctly. Improper
configuration will lead to the IAPs configuring themselves to operate in degraded
mode which is an IAP acting as an MWR.

If an IAP is addressed via DHCP, the gateway address received in the DHCP reply
will be used as the logical address the IAP will ping for logical backhaul detection.
If the IAP is statically configured a valid “pingable” IP address must be configured
in the backhaul detection settings or the IAP will enter degraded status and
operate as an MWR.

Preparing the One Point Wireless Manager Server

This section describes the procedure for the installation of Red Hat Enterprise Linux ES
Version 4, Update 5 (retail box) in a configuration suitable for use with the One Point Wireless
Manager™ application in our small system reference design. While other versions of Red Hat
Linux or another Linux distribution may be suitable to use, discussion of support for other
versions is outside the scope of this section.

2-14

Chapter 2: Network Setup

If you choose another version of Red Hat Linux or an alternate distribution, the
content of this manual should only be used as general guidelines for the
installation process.

Minimum Software Requirements

The following table lists the software versions required to support the One Point Wireless
Manager™ application on the Linux platform.

Table 2-3 Software Requirements for One Point Wireless Manager

Device Software Revision

Red Hat Enterprise Linux ES 4.0 Update 5

Java Runtime Environment 1.6 or higher (included with Wireless Manager application)

MySQL 5.0.40 (included with Wireless Manager application)

Red Hat Linux Installation

Starting the Red Hat Enterprise Linux ES Installation

The MOTOMESH 2.0 One Point Wireless Manager™ application is designed to run on a 32­bit version of the Red Hat operating system. If supported by the BIOS settings, booting with
the Red Hat Enterprise Linux ES CD inserted will initialize the installer. If this is not the case,
you may have to configure your server BIOS to boot from removable media first. Refer to
your server documentation for information on changing BIOS settings. The following section
describes how to install RedHat Linux using our reference design defaults.

You must install the 32-bit version of the Red Hat OS.

Installation of Red Hat Enterprise Linux ES

Complete Procedure 2-1 to install the Red Hat Linux ES software.

Procedure 2-1 Red Hat Enterprise Linux ES Installation on HP DL360 G5 Server

Insert the first Red Hat Enterprise Linux ES install CD and reboot the server. The system

1

should boot up to the following screen:
[F1-Main] [F2-Options] [F3-General] [F4-Kernel] [F5-Rescue ]
boot:

2-15

Chapter 2: Network Setup

A Press the Enter key to begin the installation in graphical mode. If no key is pressed, the

2

system will auto launch in 60 seconds.

The following prompt will appear:

3

To begin testing the CD media before installation press OK. Choose Skip to skip the media test
and start the installation.

Choose Skip.
The Welcome to Red Hat Enterprise Linux screen will be displayed. Click on the Next

4

button.
Select the appropriate Language Selection setting and click on the Next button.

5

Select the appropriate Keyboard Configuration setting and click on the Next button.

6

If you are installing from other than the retail boxed set, you may be prompted to
perform a media check. While this step is time consuming, it ensures a successful
installation.

7
8

9

10

11

Select Automatically Partition and click on the Next button.
Select Remove all partitions on this system.

This setting will erase any and all existing operating systems and
data.

Use the default drive that is highlighted under Select the drive(s) to use for this installation.
Make sure that Review is checked at the bottom of the page. This allows you to view and
change the automatic partitioning results. Click on the Next button. Click Yes in the Warning
dialog box that appears.

It is recommended that the user create a separate /var partition for storing log files and
databases. This ensures that the files to be created will not fill up all available space on the
system partitions and will also help prevent fragmentation in the file system.

Click on the New button. A dialog box will pop up to create a new partition. Enter or verify the
following parameters:

Mount Point: /var
File System Type: use the default setting
Allowable Drives: use the default setting
Size (MB): 10000
Additional Options: Fixed Size

12

13

Click on the OK button. Check the partitions display to ensure that the new /var partition was
created. Click on the Next button.

The default Boot Loader Configuration will already be correct. Click on the Next button.

2-16