PLANET WNAP-3000PE User Manual

802.11n Enterprise PoE Access Point
WNAP-3000PE
User’s Manual
Copyright
Copyright© 2009 by PLANET Technology Corp. All rights reserved. No part of this publica­tion may be reproduced, transmitted, transcribed, stored in a retrieval system, or translated into any language or computer language, in any form or by any means, electronic, mechanical, magnetic, optical, chemical, manual or otherwise, without the prior written permission of PLANET.
PLANET makes no representations or warranties, either expressed or implied, with respect to the contents hereof and specifically disclaims any warranties, merchantability or fitness for any particular purpose. Any software described in this manual is sold or licensed "as is". Should the programs prove defective following their purchase, the buyer (and not this com­pany, its distributor, or its dealer) assumes the entire cost of all necessary servicing, repair, and any incidental or consequential damages resulting from any defect in the software. Fur­ther, this company reserves the right to revise this publication and to make changes from time to time in the contents hereof without obligation to notify any person of such revision or changes..
All brand and product names mentioned in this manual are trademarks and/or registered trademarks of their respective holders.
Federal Communication Commission Interference Statement
This equipment has been tested and found to comply with the limits for a Class B digital de­vice, pursuant to Part 15 of FCC Rules. These limits are designed to provide reasonable protection against harmful interference in a residential installation. This equipment generates, uses, and can radiate radio frequency energy and, if not installed and used in accordance with the instructions, may cause harmful interference to radio communications. However, there is no guarantee that interference will not occur in a particular installation. If this equip­ment does cause harmful interference to radio or television reception, which can be determined by turning the equipment off and on, the user is encouraged to try to correct the interference by one or more of the following measures:
1. Reorient or relocate the receiving antenna.
2. Increase the separation between the equipment and receiver.
3. Connect the equipment into an outlet on a circuit different from that to which the receiver is connected.
4.
Consult the dealer or an experienced radio technician for help.
FCC Caution:
To assure continued compliance.(example-use only shielded interface cables when connect­ing to computer or peripheral devices). Any changes or modifications not expressly approved by the party responsible for compliance could void the user’s authority to operate the equip­ment.
This device complies with Part 15 of the FCC Rules. Operation is subject to the Following two conditions: (1) This device may not cause harmful interference, and (2 ) this Device must accept any interference received, including interference that may cause undesired operation.
Federal Communication Commission (FCC) Radiation Exposure Statement
This equipment complies with FCC radiation exposure set forth for an uncontrolled environ­ment. In order to avoid the possibility of exceeding the FCC radio frequency exposure limits, human proximity to the antenna shall not be less than 20 cm(8 inches) during normal opera­tion.
R&TTE Compliance Statement
This equipment complies with all the requirements of DIRECTIVE 1999/5/CE OF THE EUROPEAN PARLIAMENT AND THE COUNCIL OF 9 March 1999 on radio equipment and telecommunication terminal Equipment and the mutual recognition of their conformity (R&TTE)
The R&TTE Directive repeals and replaces in the directive 98/13/EEC (Telecommunications Terminal Equipment and Satellite Earth Station Equipment) As of April 8,2000.
Safety
This equipment is designed with the utmost care for the safety of those who install and use it. However, special attention must be paid to the dangers of electric shock and static electricity when working with electrical equipment. All guidelines of this and of the computer manufac­ture must therefore be allowed at all times to ensure the safe use of the equipment.
Revision
User’s Manual for PLANET 802.11n Enterprise PoE Access Point
Model: WNAP-3000PE
Rev: 1.1 (June, 2009)
Part No. EM-WNAP3000PE
T
ABLE OF CONTENTS
CHAPTER 1 INTRODUCTION ..............................................................................................1
1.1 Package Contents ........................................................................................................1
1.2 Physical Details............................................................................................................1
1.3 Feature ......................................................................................................................... 3
1.4 Specification................................................................................................................. 3
CHAPTER 2 INSTALLATION................................................................................................ 5
2.1 General installation ..................................................................................................... 5
2.2 Using PoE (Power over Ethernet).............................................................................. 5
CHAPTER 3 WEB LOGIN ...................................................................................................... 6
Setup Procedure............................................................................................................ 6
CHAPTER 4 STATUS ............................................................................................................. 8
CHAPTER 5 SYSTEM........................................................................................................... 13
5.1 Basic Settings ............................................................................................................. 13
5.2 Advanced Settings ..................................................................................................... 15
CHAPTER 6 WIRELESS ...................................................................................................... 17
6.1 Basic Settings ............................................................................................................. 17
6.2 Virtual AP Settings.................................................................................................... 19
Security Settings......................................................................................................... 20
Security Settings - None ............................................................................................. 22
Security Settings - WEP ............................................................................................. 22
Security Settings - WPA-PSK .................................................................................... 24
Security Settings - WPA2-PSK .................................................................................. 25
Security Settings - WPA-PSK and WPA2-PSK......................................................... 26
Security Settings - WPA with Radius......................................................................... 27
Security Settings - WPA2 with Radius....................................................................... 28
Security Settings - WPA and WPA2 with Radius ...................................................... 29
Security Settings - 802.1x........................................................................................... 30
6.3 Radius Server Settings .............................................................................................. 31
6.4 Access Control ........................................................................................................... 32
6.5 Advanced Setting....................................................................................................... 35
6.6 Wi-Fi Protected Setup............................................................................................... 37
CHAPTER 7 MANAGEMENT .............................................................................................. 38
7.1 Basic Settings ............................................................................................................. 38
7.2 Auto Config/Update ..................................................................................................39
7.3 Config File.................................................................................................................. 41
7.4 SNMP ......................................................................................................................... 43
7.5 Log Settings................................................................................................................45
7.6 Upgrade Firmware.................................................................................................... 47
CHAPTER 8 PC AND SERVER CONFIGURATION........................................................ 48
8.1 Overview ....................................................................................................................48
8.2 Using WEP ................................................................................................................. 48
8.3 Using WPA-PSK........................................................................................................ 48
8.4 Using WPA-802.1x ....................................................................................................49
8.5 802.1x Server Setup (Windows 2000 Server).......................................................... 49
Windows 2000 Domain Controller Setup .................................................................. 50
Services Installation.................................................................................................... 50
DHCP server configuration ........................................................................................ 51
Certificate Authority Setup......................................................................................... 53
Internet Authentication Service (Radius) Setup .........................................................56
Grant Remote Access for Users.................................................................................. 58
i
8.6 802.1x Client Setup on Windows XP ....................................................................... 58
Client Certificate Setup............................................................................................... 58
802.1x Authentication Setup ......................................................................................61
8.7 Using 802.1x Mode (without WPA) .........................................................................64
APPENDIX A TROUBLESHOOTING.................................................................................65
APPENDIX B WINDOWS TCP/IP ....................................................................................... 66
Overview .......................................................................................................................... 66
Checking TCP/IP Settings - Windows 9x/ME: ............................................................. 66
Checking TCP/IP Settings - Windows NT4.0 ...............................................................68
Checking TCP/IP Settings - Windows 2000.................................................................. 70
Checking TCP/IP Settings - Windows XP .................................................................... 72
Checking TCP/IP Settings - Windows Vista ................................................................. 74
APPENDIX C ABOUT WIRELESS LANS ......................................................................... 76
Overview .......................................................................................................................... 76
Wireless LAN Terminology............................................................................................ 76
Modes ......................................................................................................................... 76
SSID/ESSID ............................................................................................................... 76
Channels ..................................................................................................................... 77
WEP............................................................................................................................ 77
WPA-PSK .................................................................................................................. 77
WPA2-PSK ................................................................................................................ 77
WPA-Enterprise ......................................................................................................... 78
802.1x ......................................................................................................................... 78
APPENDIX D COMMAND LINE INTERFACE .................................................................. 79
Overview .......................................................................................................................... 79
Using the CLI - Telnet................................................................................................ 79
Command Reference....................................................................................................... 79
Chapter 1
Introduction
PLANET WNAP-3000PE is an advanced management class, high encryption standard but cost­effectively Enterprise PoE access point. Built-in IEEE802.11n 3 Tx (Transmit chains) / 3 Rx (Receive chains) MIMO technology, the data rate could be up t to 300Mbps, as well as com­plaint with IEEE 802.11b/g device. Full of enterprise advanced network management features, as well as with high data rate for suitable wide bandwidth, high standard security for wireless LAN network management wherever in warehouse, campus or business environment.

1.1 Package Contents

Make sure that you have the following items:
WNAP-3000PE x 1
2dBi Dipole Antenna x 3
Power Adapter x 1
Quick Installation Guide x 2
CD-ROM x 1
Note:
If any of the above items are missing, contact your supplier as soon as possi­ble.

1.2 Physical Details

Front panel
LED definition
Power
WLAN
On - Normal operation.
Off - No power
On - Idle
Off - Wireless connection is not available.
Flashing - Data is being transmitted or received via the Wireless access
point. Data includes "network traffic" as well as user data.
1
Status
LAN
Back Panel
On - Error condition.
Off - Normal operation.
Blinking - During start up, and when the Firmware is being upgraded.
On - The LAN port is active.
Off - No active connection on the LAN port.
Flashing - Data is being transmitted or received via the corresponding
LAN port.
Reset Button
LAN
Power
This button has two (2) functions:
Reboot - When pressed and released, the Wireless Ac- cess Point will reboot (restart).
Reset to Factory Defaults - This button can also be used to clear ALL data and restore ALL settings to the factory default values.
To Clear All Data and restore the factory default values:
1. Hold the Reset Button until the Status (Red) LED blinks TWICE, usually more than 5 seconds.
2. Release the Reset Button. The factory default configuration has now been restored, and the Access Point is ready for use.
Use a standard LAN cable (RJ45 connectors) to connect this port to a 10/100/1000BaseT hub/switch on your LAN.
Connect the supplied power adapter (12V@1A) here.
2 3

1.3 Feature

IEEE802.11n draft 2.0 compliant with IEEE802.11b/g Supports PoE port (IEEE802.3af compliant) Strong network security with WEP, WPA(PSK), 802.1X authentication With 3 detachable RP-SMA connectors for external antenna expanding connec-
tion distance
High data transfer rate up to 300Mbps Five operation modes selectable: AP / AP Client / Wireless Bridge / Multiple
Bridge / Repeater
Adjustable output power level Supports Multiple SSIDs, Multiple SSID isolation, 802.1Q VLAN, RADIUS MAC
authentication, Rogue AP detection, Access Control
Provide Windows-base utility, Web, and CLI (Command Line Interface) Configu-
ration
SNMP v1, v2, v3 supported

1.4 Specification

Standard IEEE 802.11b/g, IEEE 802.11n draft 2.0
Modulation OFDM/ CCK/ DQPSK / DBPSK
Port
Antenna Detachable 3dBi Dipole Antenna * 3
Output Power
10/100/1000Base-T (RJ-45) PoE port, IEEE802.3af compliant
Auto-negotiation, Auto-MDI
For FCC:
11b - 16 dBm@1TX,
19 dBm@2TX,
20.5dbm@3TX;
11g - 13 dBm@1TX,
16 dBm@2TX,
17.5dbm@3TX;
11n - 19 dBm@1TX@MCS0~4/8~12,
17 dBm@1TX@MCS 5/13,
13 dBm@1TX@MCS6/14,
11 dBm@1TX@MCS7/15,
22 dBm@2TX@MCS0~4/8~12,
20 dBm@2TX@MCS 5/13,
16 dBm@2TX@MCS6/14,
14 dBm@2TX@MCS7/15,
23.5 dBm@3TX@MCS0~4/8~12,
21.5 dBm@3TX@MCS 5/13,
17.5 dBm@3TX@MCS6/14,
15.5 dBm@3TX@MCS7/15
For ETSI:
11b/g/n - 13 dBm@1TX,
16 dBm@2TX,
17.5dbm@3TX
11.b: 11Mbps@ - 88dBm
Sensitivity
Operating Mode AP, AP Client, Wireless Bridge, Multiple Bridge, Repeater
Security
Management
11.g: 54Mbps@ - 73dBm
11.n: 300Mbps@ -69dBm
WEP, WPA, and WPA-PSK authentication
802.1x support
EAP-MD5, EAP-TLS, EAP-TTLS, PEAP
RADIUS based MAC authentication
Block inter-wireless station communication (wireless separation)
Block SSID broadcast
Web based configuration
RADIUS Accounting
RADIUS-On feature
RADIUS Accounting update
Telnet/CLI
Syslog/internal Log
Access Control list file support
Configuration file Backup/Restore
Statistics support
LLTD
4 5
Chapter 2
Installation

2.1 General installation

1. Locate an optimum location for the WNAP-3000PE. The best place for your
WNAP-3000PE is usually at the center of your wireless network, with line of sight to all of your mobile stations.
2. Assemble the antennas to WNAP-3000PE. Try to place them to a position that can best cover your wireless network. The antenna’s position will enhance the receiving sensitivity.
3. Connect RJ-45 cable to WNAP-3000PE. Connect the “LAN” port of WNAP­3000PE to your LAN switch/hub or a single PC.
4. Plug in power adapter and connect to power source. After power on, WNAP­3000PE will start to operate.
5. Check the LEDs:
z The Status LED should flash, then turn OFF. zThe Power, Ethernet and WLAN LEDs should be ON.
For more information, please refer to LED deification.
NOTE:
ONLY use the power adapter supplied with the WNAP-3000PE. Otherwise, the product
may be damaged.

2.2 Using PoE (Power over Ethernet)

1. Do not connect the supplied power adapter to the WNAP-3000PE.
2. Connect one end of a standard (category 5) LAN cable to the Ethernet port on
the WNAP-3000PE.
3. Connect the other end of the LAN cable to the powered Ethernet port on a suitable PoE Adapter or switch. (IEEE 802.3af compliant)
4. Connect the unpowered Ethernet port on the PoE adapter to your Hub or switch.
5. Connect the power supply to the PoE adapter and power up.
6. Check the LEDs on the WNAP-3000PE to see it is drawing power via the
Ethernet connection.
Chapter 3
Web Login
Your Browser must support JavaScript. The configuration program has been tested on the following browsers:
z Netscape V4.08 or later z Internet Explorer V4 or later

Setup Procedure

Before proceeding, please install the WNAP-3000PE in your LAN, as described previ­ously.
3. Use a PC which is already connected to your LAN, and start the Web browser.
4. In the Address box, enter the IP address of the WNAP-3000PE you want to con- figure.
Default IP address http://19
5. You should then see a login prompt, which will ask for a User Name and Pass- word. Enter User Name, and Password.
User Name: admin
Password: password
6. You will then see the Status screen, which displays the current settings and status. No data input is possible on this screen.
2.168.0.228
6
If you can't connect:
It is likely that your PC’s IP address is incompatible with the WNAP­3000PE’s IP address. This can happen if your LAN does not have a DHCP Server. The default IP address of the Wireless Access Point is 192.168.0.228, with a Network Mask of 255.255.255.0.
If your PC’s IP address is not compatible with this, you must change your PC’s IP address to an unused value in the range 192.168.0.1 ~
192.168.0.254, with a Network Mask of 255.255.255.0.
7
Chapter 4
Status
This page show the relative information of WNAP-3000PE.Please see the below tables shown.
Data - Status Screen
Access Point
Access Point Name
MAC Address
Country/Domain
Hardware Version
Firmware Version
TCP/IP
IP Address
Subnet Mask
Gateway
DHCP Client
The current name will be displayed.
The MAC (physical) address of the WNAP-3000PE.
The region or domain, as selected on the System screen.
The version of the hardware currently used.
The version of the firmware currently installed.
The IP Address of the WNAP-3000PE.
The Network Mask (Subnet Mask) for the IP Address above.
Enter the Gateway for the LAN segment to which the WNAP-3000PE is attached (the same value as the PCs on that LAN segment).
This indicates whether the current IP address was obtained from a DHCP Server on your network.
It will display "Enabled" or "Disabled".
8
DHCP Server
Ethernet
Ethernet Status
Wireless
Channel/Frequency
Wireless Mode
AP Mode
Bridge Mode
Security Profiles
Name
SSID
Status
Buttons
Virtual AP Status
"Enabled" or "Disabled" is displayed for the DHCP server status.
The current Ethernet status is displayed.
The Channel currently in use is displayed.
The current mode (e.g. 802.11g) is displayed.
The current Access Point mode is displayed.
The current Bridge mode is displayed.
This displays the current name of each security profile.
This displays the SSID associated with the profile.
This indicates whether or not the profile is enabled.
Click this to open a sub-window displaying Virtual AP Status about the information of Name, SSID, Broadcast SSID, Security, Status and Clients.
Statistics
Log
Stations
Click this to open a sub-window where you can view Statis­tics on data transmitted or received by the WNAP-3000PE.
Click this to open a sub-window where you can view the activity log.
Click this to open a sub-window where you can view the list of all current Wireless Stations using the WNAP-3000PE.
Virtual AP Status
This screen is displayed when the Virtual AP Status button on the Status screen is clicked.
9
For each profile, the following data is displayed:
Name
BSSIS
SSID
Broadcast SSID
Security
Status
Clients
The name you gave to this profile; if you didn't change the name, the default name is used.
The MAC address of the VAP.
The SSID assigned to this profile.
Indicates whether or not the SSID is broadcast.
The security method used by this VAP.
Indicates whether or not this profile is enabled.
The number of wireless stations currently using accessing this WNAP-3000PE using this profile. If the profile is disabled, this will always be zero.
Statistics Screen
This screen is displayed when the Statistics button on the Status screen is clicked. It shows details of the traffic flowing through the WNAP-3000PE.
10
Data - Statistics Screen
System Up Time
Up Time
2.4GHz Wireless
Authentication
Deauthentication
Association
Disassociation
Reassociation
Wireless
Data
This indicates the time period which the system has been running since the last restart or reboot.
The number of "Authentication" packets received. Authenti­cation is the process of identification between the AP and the client.
The number of "Deauthentication" packets received. Deau­thentication is the process of ending an existing authentication relationship.
The number of "Association" packets received. Association creates a connection between the AP and the client. Usually, clients associate with only one AP at any time.
The number of "Disassociation" packets received. Disasso­ciation breaks the existing connection between the AP and the client.
The number of "Reassociation" packets received. Reassocia­tion is the service that enables an established association (between AP and client) to be transferred from one AP to another (or the same) AP.
Number of valid Data packets transmitted to or received from Wireless Stations, at driver level.
Multicast Packets
Management
Control
Number of Broadcast packets transmitted to or received from Wireless Stations, using Multicast transmission.
Number of Management packets transmitted to or received from Wireless Stations.
Number of Control packets transmitted to or received from Wireless Stations.
Activity Log
This screen is displayed when the Log button on the Status screen is clicked.
Data - Activity Log
Data
Current Time
Log
The system date and time is displayed.
The Log shows details of the connections to the WNAP­3000PE.
11
Buttons
Refresh
Save to file
Clear Log
Update the data on screen.
Save the log to a file on your pc.
This will delete all data currently in the Log. This will make it easier to read new messages.
Station List
This screen is displayed when the Stations button on the Status screen is clicked.
Data - Station List Screen
Station List
MAC Address
The MAC (physical) address of each Wireless Station is dis­played.
Mode
SSID
Refresh Button
The mode of each Wireless Station.
This displays the SSID used the Wireless station. Because the WNAP-3000PE supports multiple SSIDs, different PCs could connect using different SSIDs.
Update the data on screen.
12
Chapter 5
System

5.1 Basic Settings

Click Basic Settings on the System menu to view a screen like the following.
Figure 1: System Basic Settings Screen
Data - System Basic Settings Screen
Identification
Access Point Name
Enter a suitable name for this Access Point.
13
Description
Country Domain
MAC Address
IP Settings
DHCP Client
Fixed IP Address
DHCP Server
If desired, you can enter a description for the Access Point.
The country or domain which is matching your current loca­tion.
The MAC address is displayed.
Select this option if you have a DHCP Server on your LAN, and you wish the Access Point to obtain an IP address auto­matically.
If selected, the following data must be entered.
IP Address - The IP Address of this device. Enter an unused IP address from the address range on your LAN.
Subnet Mask - The Network Mask associated with the IP Address above. Enter the value used by other devices on your LAN.
Gateway - The IP Address of your Gateway or Router. Enter the value used by other devices on your LAN.
DNS - Enter the DNS (Domain Name Server) used by PCs on your LAN.
If Enabled, the Access Point will allocate IP Addresses to PCs (DHCP clients) on your LAN when they start up. The default (and recommended) value is Enabled.
The Start IP Address and Finish IP Address fields set the values used by the DHCP server when allocating IP Addresses to DHCP clients. This range also determines the number of DHCP clients supported.
Wins Server Name/IP Address
TimeZone
TimeZone
NTP Server Name/IP Address
Enter the server name or IP address of the Wins Server.
Choose the Time Zone for your location from the drop-down list. If your location is currently using Daylight Saving, enable the Adjust for
Daylight Saving Time checkbox.
You must UNCHECK this checkbox when Daylight Saving Time finishes.
Enter the server name or IP address of the NTP.
14

5.2 Advanced Settings

Click Advanced Settings on the System menu to view a screen like the following.
Data - System Advanced Settings Screen
VLAN
Enable 802.1Q VLAN
Native VLAN
AP Manage­ment VLAN
This option is only useful if the hubs/switches on your LAN support the VLAN standard.
Enter the desired value for the Native VLAN. Default value is 1.
Define the VLAN ID used for management.
15
VLAN List
Define the unique ID value (1 - 4094) for each VAP.
Network Integrality Check
Enable Net­work Integrality
If enabled, the AP will disable the wireless connection if the wired connect of AP is invalid.
Check
LLTD
Enable Link Layer Topology
Enable this if you want to use Link Layer Topology Discovery protocol (LLTD) feature.
Discovery
STP
Enable Span-
Enable this if you want to use this feature.
ning tree Protocol
802.1x Supplicant
Enable 802.1x Supplicant
Authentication
Enable this if your network requires this AP to use 802.X authen­tication in order to operate.
Authentication via MAC Address Select this if you want to Use MAC Address for Authentica­tion.
Authentication via Name and Password Select this if you want to Use name and password for Au­thentication.
16
Chapter 6
Wireless

6.1 Basic Settings

The settings on this screen must match the settings used by Wireless Stations.
Click Basic Settings on the Wireless menu to view a screen like the following.
Data - Wireless Basic Settings Screen
Operation
Turn Radio On
Wireless Mode
Enable this to use the wireless feature.
Select the desired option:
Disable - select this if for some reason you do not this AP to transmit or receive at all.
802.11b - if selected, only 802.11b connections are allowed.
802.11g wireless stations will only be able to connect if they are fully backward-compatible with the 802.11b standard.
802.11g - only 802.11g connections are allowed. If you only have 802.11g, selecting this option may provide a perform­ance improvement over using the default setting.
802.11n - only 802.11n connections are allowed. If you only have 802.11n, selecting this option may provide a perform­ance improvement over using the default setting.
802.11b and 802.11g - this will allow connections by both
802.11b and 802.11g wireless stations.
802.11n and 802.11g - this will allow connections by both
802.11n and 802.11g wireless stations.
Mixed 802.11n/802.11g/802.11b - this is the default, and will allow connections by 802.11n, 802.11b and 802.11g wireless stations.
17
Auto Channel Scan
Channel /Frequency
Channel Bandwidth
Extension Sub-Channel
Operation Mode
If "Enable" is selected, the Access Point will select the best available Channel.
If you experience interference (shown by lost connections and/or slow data transfers) you may need to experiment with manually setting different channels to see which is the best.
Select the desired bandwidth from the list.
Select Above or Below Primary Channel from the list.
Select the desired mode:
Access Point - operate as a normal Access Point
Bridge (Point-to-Point) - Bridge to a single AP. You must
provide the MAC address of the other AP in the PTP Bridge AP MAC Address field.
Bridge (Multi-Point) - Select this only if this AP is the "Master" for a group of Bridge-mode APs. The other Bridge­mode APs must be set to Point-to-Point Bridge mode, using this AP's MAC address. They then send all traffic to this "Master".
Wireless Client/Repeater - Act as a client or repeater for another Access Point. If selected, you must provide Remote
SSID and the address (MAC address) of the other AP in the Remote AP MAC Address field. In this mode, all traffic is
sent to the specified AP.
Wireless Detection - This mode will turn the access point into a wireless Monitor. A "Rouge AP" is an Access Point which should not be in use, and so can be considered to be providing unauthorized access to your LAN.
No Security - If checked, then any AP operating with se-
curity disabled is considered to be a Rogue AP.
Not in Legal AP List - If checked, then any AP not listed
in the "Legal AP List" is considered to be a Rogue AP. If checked, you must maintain the Legal AP List.
Define Legal AP - Click this to open a sub-screen
where you can modify the "Legal AP List". This list must contain all known APs, so must be kept up to date.
Remote MAC Address
Select Remote AP
You must enter the MAC address(es) of other AP(s) in the fields.
If the other AP is on-line, you can click the "Select Remote AP" button and select from a list of available APs.
18

6.2 Virtual AP Settings

Clicking the Virtual APs link on the Wireless menu will result in a screen like the following.
Data - Virtual AP Settings Screen
VAPs
VAP List
Enable Button
Configure Button
Disable Button
Isolation
All available VAPs are listed. For each VAP, the following data is displayed:
* If displayed before the name of the VAP, this indi­cates the VAP is currently enabled. If not displayed, the VAP is currently disabled.
VAP Name The current VAP name is displayed.
[SSID] The current SSID associated with this VAP.
Security System The current security system (e.g. WPA-PSK ) is displayed.
Enable the selected VAP.
Change the settings for the selected VAP.
Disable the selected VAP.
Isolate all Virtual APs from each other
If this option is enabled, wireless clients using different VAPs (different SSIDs) are isolated from each other, so they will NOT be able to communicate with each other. They will still be able to communicate with other clients using the same profile, unless the "Wireless Separation" setting on the "Advanced" screen has been enabled.
19
Virtual AP Settings Screen
This screen is displayed when you select a VAP on the Virtual AP Settings screen, and click the Configure button.
Enter the desired settings for each of the following:
VAP Name
SSID
Broadcast SSID
Isolation within VAP
Enter a suitable name for this VAP.
Enter the desired SSID. Each VAP must have a unique SSID.
If Disabled, no SSID is broadcast.
If enabled, the SSID will then be broadcast to all Wireless Stations. Stations which have no SSID (or a "null" value) can then adopt the correct SSID for connections to this Access Point.
If enabled, then each Wireless station using the Access Point is invisible to other Wireless stations. In most business stations, this setting should be Disabled.

Security Settings

Select the desired option, and then enter the settings for the selected method.
The available options are:
None - No security is used. Anyone using the correct SSID can connect to your network.
WEP - The 802.11b standard. Data is encrypted before transmission, but the encryption system is not very strong.
WPA-PSK - Like WEP, data is encrypted before transmission. WPA is more secure than WEP, and should be used if possible. The PSK (Pre-shared Key) must be entered on each Wireless station. The 256Bit encryption key is derived from the PSK, and changes frequently.
20
WPA2-PSK - This is a further development of WPA-PSK, and offers even greater security, using the AES (Advanced Encryption Standard) method of encryption.
WPA-PSK and WPA2-PSK - This method, sometimes called "Mixed Mode", allows clients to use EITHER WPA-PSK (with TKIP) OR WPA2-PSK (with AES).
WPA with Radius - This version of WPA requires a Radius Server on your LAN to provide the client authentication according to the 802.1x standard. Data trans­missions are encrypted using the WPA standard.
If this option is selected:
This Access Point must have a "client login" on the Radius Server.
Each user must have a "user login" on the Radius Server.
Each user's wireless client must support 802.1x and provide the login data
when required.
All data transmission is encrypted using the WPA standard. Keys are auto-
matically generated, so no key input is required.
WPA2 with Radius - This version of WPA2 requires a Radius Server on your LAN to provide the client authentication according to the 802.1x standard. Data transmissions are encrypted using the WPA2 standard.
If this option is selected:
This Access Point must have a "client login" on the Radius Server.
Each user must authenticate on the Radius Server. This is usually done using
digital certificates.
Each user's wireless client must support 802.1x and provide the Radius au-
thentication data when required.
All data transmission is encrypted using the WPA2 standard. Keys are auto-
matically generated, so no key input is required.
WPA and WPA2 with Radius - EITHER WPA or WPA2 require a Radius Server on your LAN to provide the client authentication according to the 802.1x standard. Data transmissions are encrypted using EITHER WPA or WPA2 standard.
If this option is selected:
This Access Point must have a "client login" on the Radius Server.
Each user must authenticate on the Radius Server. This is usually done using
digital certificates.
Each user's wireless client must support 802.1x and provide the Radius au-
thentication data when required.
All data transmission is encrypted using EITHER WPA or WPA2 standard.
Keys are automatically generated, so no key input is required.
802.1x - This uses the 802.1x standard for client authentication, and WEP for data encryption.
If this option is selected:
This Access Point must have a "client login" on the Radius Server.
Each user must have a "user login" on the Radius Server.
Each user's wireless client must support 802.1x and provide the login data
when required.
All data transmission is encrypted using the WEP standard. You only have to
select the WEP key size; the WEP key is automatically generated.
21

Security Settings - None

No security is used. Anyone using the correct SSID can connect to your network.

Security Settings - WEP

This is the 802.11b standard. Data is encrypted before transmission, but the encryp­tion system is not very strong.
22
Loading...
+ 63 hidden pages