ZyXEL ZyAIR G-5100 User Guide

ZyAIR G-5100

Outdoor Dual-802.11g Wireless LAN Access Point &

Bridge

User’s Guide

Version 3.50

5/2005

ZyAIR G-5100 User’s Guide

Copyright

The contents of this publication may not be reproduced in any part or as a whole, transcribed, stored in a retrieval system, translated into any language, or transmitted in any form or by any means, electronic, mechanical, magnetic, optical, chemical, photocopying, manual, or otherwise, without the prior written permission of ZyXEL Communications Corporation.

Disclaimer

ZyXEL does not assume any liability arising out of the application or use of any products, or software described herein. Neither does it convey any license under its patent rights nor the patent rights of others. ZyXEL further reserves the right to make changes in any products described herein without notice. This publication is subject to change without notice.

Trademarks

ZyNOS (ZyXEL Network Operating System) is a registered trademark of ZyXEL Communications, Inc. Other trademarks mentioned in this publication are used for identification purposes only and may be properties of their respective owners.

ZyAIR G-5100 User’s Guide

Federal Communications Commission (FCC) Interference Statement

This device complies with Part 15 of FCC rules. Operation is subject to the following two conditions:

• This device may not cause harmful interference.

• This device must accept any interference received, including interference that may cause undesired operations.

FCC Warning

This equipment has been tested and found to comply with the limits for a Class B digital device pursuant to Part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful interference in a commercial environment. This equipment generates, uses, and can radiate radio frequency energy, and if not installed and used in accordance with the instructions, may cause harmful interference to radio communications.

Certifications

If this equipment does cause harmful interference to radio/television reception, which can be determined by turning the equipment off and on, the user is encouraged to try to correct the interference by one or more of the following measures:

• Reorient or relocate the receiving antenna.

• Increase the separation between the equipment and the receiver.

• Connect the equipment into an outlet on a circuit different from that to which the receiver is connected.

• Consult the dealer or an experienced radio/TV technician for help.

Notice 1

Any changes or modifications not expressly approved by the party responsible for compliance could void the user's authority to operate the equipment.

FCC Caution:

Any changes or modifications not expressly approved by the party responsible for compliance could void the user's authority to operate this equipment.

IMPORTANT NOTE:

FCC Radiation Exposure Statement:

This equipment complies with FCC radiation exposure limits set forth for an uncontrolled environment. This equipment should be installed and operated with minimum distance 20cm between the radiator & your body.

4 Certifications

ZyAIR G-5100 User’s Guide

This transmitter must not be co-located or operating in conjunction with any other antenna or transmitter.

Note: Antenna Warning! This device meets ETSI and FCC certification requirements

when using the included antennas or antenna connector cable. Only use the included antennas or antenna connector cable.

Canadian Note

This Class B digital apparatus complies with Canadian ICES-003.

Cet appareil numérique de la classe B est conforme à la norme NMB-003 du Canada.

Certifications

Go to www.zyxel.com

1 Select your product from the drop-down list box on the ZyXEL home page to go to that

product's page.

2 Select the certification you wish to view from this page.

Certifications 5

ZyAIR G-5100 User’s Guide

For your safety, be sure to read and follow all warning notices and instructions.

• Do NOT open the device or unit. Opening or removing covers can expose you to dangerous high voltage points or other risks. ONLY qualified service personnel can service the device. Please contact your vendor for further information.

• Use ONLY the dedicated power supply for your device. Connect the power cord or power adaptor to the right supply voltage (110V AC in North America or 230V AC in Europe).

• Do NOT use the device if the power supply is damaged as it might cause electrocution.

• If the power supply is damaged, remove it from the power outlet.

• Do NOT attempt to repair the power supply. Contact your local vendor to order a new power supply.

• Place cables carefully so that no one will step on them or stumble over them. Do NOT allow anything to rest on the power cord and do NOT locate the product where anyone can walk on the power cord.

• Do NOT install nor use your device during a thunderstorm. There may be a remote risk of electric shock from lightning.

• Do NOT expose your device to corrosive liquids.

• Do NOT store things on the device.

• Connect ONLY suitable accessories to the device.

Safety Warnings

6 Safety Warnings

ZyAIR G-5100 User’s Guide

ZyXEL Limited Warranty

ZyXEL warrants to the original end user (purchaser) that this product is free from any defects in materials or workmanship for a period of up to two years from the date of purchase. During the warranty period, and upon proof of purchase, should the product have indications of failure due to faulty workmanship and/or materials, ZyXEL will, at its discretion, repair or replace the defective products or components without charge for either parts or labor, and to whatever extent it shall deem necessary to restore the product or components to proper operating condition. Any replacement will consist of a new or re-manufactured functionally equivalent product of equal value, and will be solely at the discretion of ZyXEL. This warranty shall not apply if the product is modified, misused, tampered with, damaged by an act of God, or subjected to abnormal working conditions.

Note

Repair or replacement, as provided under this warranty, is the exclusive remedy of the purchaser. This warranty is in lieu of all other warranties, express or implied, including any implied warranty of merchantability or fitness for a particular use or purpose. ZyXEL shall in no event be held liable for indirect or consequential damages of any kind of character to the purchaser.

To obtain the services of this warranty, contact ZyXEL's Service Center for your Return Material Authorization number (RMA). Products must be returned Postage Prepaid. It is recommended that the unit be insured when shipped. Any returned products without proof of purchase or those with an out-dated warranty will be repaired or replaced (at the discretion of ZyXEL) and the customer will be billed for parts and labor. All repaired or replaced products will be shipped by ZyXEL to the corresponding return address, Postage Paid. This warranty gives you specific legal rights, and you may also have other rights that vary from country to country.

ZyXEL Limited Warranty 7

ZyAIR G-5100 User’s Guide

Please have the following information ready when you contact customer support.

• Product model and serial number.

• Warranty Information.

• Date that you received your device.

• Brief description of the problem and the steps you took to solve it.

Customer Support

METHOD

LOCATION

CORPORATE HEADQUARTERS (WORLDWIDE)

CZECH REPUBLIC

DENMARK

FINLAND

FRANCE

GERMANY

NORTH AMERICA

NORWAY

SPAIN

SWEDEN

SUPPORT E-MAIL TELEPHONE

SALES E-MAIL FAX FTP SITE

support@zyxel.com.tw +886-3-578-3942 www.zyxel.com

sales@zyxel.com.tw +886-3-578-2439 ftp.zyxel.com

info@cz.zyxel.com +420 241 091 350 www.zyxel.cz ZyXEL Communications

info@cz.zyxel.com +420 241 091 359

support@zyxel.dk +45 39 55 07 00 www.zyxel.dk ZyXEL Communications A/S

sales@zyxel.dk +45 39 55 07 07

support@zyxel.fi +358-9-4780-8411 www.zyxel.fi ZyXEL Communications Oy

sales@zyxel.fi +358-9-4780 8448

i nf o @z y xe l .f r + 33 (0 ) 4 7 2 5 2 9 7 9 7 w ww .z y xe l . fr Z yX E L Fr a nc e

+33 (0)4 72 52 19 20

support@zyxel.de +49-2405-6909-0 www.zyxel.de ZyXEL Deutschland GmbH.

sales@zyxel.de +49-2405-6909-99

support@zyxel.com +1-800-255-4101

+1-714-632-0882

sales@zyxel.com +1-714-632-0858 ftp.us.zyxel.com

support@zyxel.no +47 22 80 61 80 www.zyxel.no ZyXEL Communications A/S

sales@zyxel.no +47 22 80 61 81

support@zyxel.es +34 902 195 420 www.zyxel.es ZyXEL Communications

sales@zyxel.es +34 913 005 345

support@zyxel.se +46 31 744 7700 www.zyxel.se ZyXEL Communications A/S

sales@zyxel.se +46 31 744 7701

WEB SITE

www.europe.zyxel.com

ftp.europe.zyxel.com

www.us.zyxel.com ZyXEL Communications Inc.

REGULAR MAIL

ZyXEL Communications Corp. 6 Innovation Road II

Sc ien ce P ar k Hsinchu 300 Ta iw a n

Czech s.r.o. Modranská 621 143 01 Praha 4 - Modrany Ceská Republika

Col um bu sv ej 5 2860 Soeborg Denmark

Mal mi nk aa ri 10 00700 Helsinki Finland

1 ru e d e s V er ge r s Ba t. 1 / C 69760 Limonest France

Adenauerstr. 20/A2 D-52146 Wuerselen Germany

1130 N. Miller St. Anaheim

CA 92806-2001 U.S.A.

Ni ls H ans en s ve i 13 0667 Oslo Norway

Arte, 21 5ª planta 28033 Madrid Spain

Sjöporten 4, 41764 Göteborg Sweden

8 Customer Support

ZyAIR G-5100 User’s Guide

METHOD

LOCATION

UNITED KINGDOM

SUPPORT E-MAIL TELEPHONE

SALES E-MAIL FAX FTP SITE

support@zyxel.co.uk +44 (0) 1344 303044

08707 555779 (UK only)

sales@zyxel.co.uk +44 (0) 1344 303034 ftp.zyxel.co.uk

WEB SITE

www.zyxel.co.uk ZyXEL Communications UK

a. “+” is the (prefix) number you enter to make an international telephone call.

REGULAR MAIL

Ltd.,11 The Courtyard, Eastern Road, Bracknell, Berkshire, RG12 2XB, United Kingdom (UK)

Customer Support 9

ZyAIR G-5100 User’s Guide

10 Customer Support

ZyAIR G-5100 User’s Guide

Copyright ..................................................................................................................3

Certifications ............................................................................................................4

Safety Warnings ....................................................................................................... 6

ZyXEL Limited Warranty.......................................................................................... 7

Customer Support.................................................................................................... 8

Table of Contents ................................................................................................... 11

List of Figures ........................................................................................................ 19

List of Tables .......................................................................................................... 23

Preface ....................................................................................................................27

Chapter 1

Getting to Know Your ZyAIR ................................................................................. 29

1.1 Introducing the ZyAIR ........................................................................................29

1.2 ZyAIR Features ..................................................................................................29

1.3 Applications for the ZyAIR ..................................................................................33

1.3.1 Access Point .............................................................................................33

1.3.2 AP + Bridge ..............................................................................................34

1.3.3 Bridge / Repeater ......................................................................................35

Chapter 2

Introducing the Web Configurator........................................................................ 37

2.1 Web Configurator Overview ...............................................................................37

2.2 Accessing the ZyAIR Web Configurator .............................................................37

2.3 Resetting the ZyAIR ...........................................................................................38

2.4 Navigating the ZyAIR Web Configurator ............................................................39

Chapter 3

Wizard Setup .......................................................................................................... 43

3.1 Wizard Setup Overview ......................................................................................43

3.2 Wizard Setup: General Setup ............................................................................43

3.3 Wizard Setup: Wireless LAN ..............................................................................44

3.4 Wizard Setup: IP Address Assignment ..............................................................46

3.5 Basic Setup Complete ........................................................................................47

Table of Contents 11

ZyAIR G-5100 User’s Guide

Chapter 4

System Screens ..................................................................................................... 49

4.1 System Overview ...............................................................................................49

4.2 General Screen ..................................................................................................49

4.2.1 Domain Name ...........................................................................................49

4.2.2 DNS Server Address Assignment .............................................................49

4.3 Configuring General Setup .................................................................................50

4.4 Configuring Password ........................................................................................51

4.5 Configuring Time Setting ...................................................................................52

Chapter 5

Wireless LAN ......................................................................................................... 55

5.1 Introduction ........................................................................................................55

5.2 Wireless Security Overview ...............................................................................55

5.2.1 Encryption .................................................................................................55

5.2.2 Authentication ...........................................................................................55

5.2.3 Restricted Access .....................................................................................56

5.2.4 Hide ZyAIR Identity ...................................................................................56

5.2.5 Configuring Wireless LAN on the ZyAIR ...................................................56

5.3 Spanning Tree Protocol (STP) ...........................................................................57

5.3.1 Rapid STP ................................................................................................57

5.3.2 STP Terminology ......................................................................................57

5.3.3 How STP Works .......................................................................................58

5.3.4 STP Port States ........................................................................................58

5.4 WEP Encryption .................................................................................................58

5.5 Configuring the Wireless Screen ........................................................................58

5.5.1 Access Point Mode ...................................................................................59

5.5.2 Bridge/Repeater Mode ..............................................................................62

5.5.3 AP+Bridge Mode ......................................................................................65

5.6 Configuring MAC Filters .....................................................................................67

5.7 Configuring Roaming .........................................................................................69

5.7.1 Requirements for Roaming .......................................................................70

5.8 Introduction to WPA ...........................................................................................71

5.9 WPA-PSK Application Example .........................................................................71

5.10 WPA with RADIUS Application Example ..........................................................72

5.11 Wireless Client WPA Supplicants .....................................................................73

5.12 Configuring 802.1x and WPA ...........................................................................73

5.13 Authentication Required: 802.1x ......................................................................74

5.14 Authentication Required: WPA .........................................................................78

5.15 Authentication Required: WPA-PSK ................................................................79

12 Table of Contents

ZyAIR G-5100 User’s Guide

Chapter 6

Internal RADIUS Server ......................................................................................... 81

6.1 Internal RADIUS Overview .................................................................................81

6.2 Internal RADIUS Server Setting .........................................................................82

6.3 Trusted AP Overview .........................................................................................84

6.4 Configuring Trusted AP ......................................................................................85

6.5 Trusted Users Overview .....................................................................................86

6.6 Configuring Trusted Users .................................................................................86

Chapter 7

VLAN ....................................................................................................................... 89

7.1 VLAN ..................................................................................................................89

7.1.1 Management VLAN ID ..............................................................................89

7.2 Configuring VLAN ..............................................................................................89

Chapter 8

IP Screen................................................................................................................. 91

8.1 Factory Ethernet Defaults ..................................................................................91

8.2 IP Address and Subnet Mask .............................................................................91

8.2.1 IP Address Assignment ............................................................................92

8.3 Configuring IP ....................................................................................................92

Chapter 9

Certificates.............................................................................................................. 95

9.1 Certificates Overview .........................................................................................95

9.1.1 Advantages of Certificates ........................................................................96

9.2 Self-signed Certificates ......................................................................................96

9.3 Configuration Summary .....................................................................................96

9.4 My Certificates ...................................................................................................96

9.5 Certificate File Formats ......................................................................................98

9.6 Importing a Certificate ........................................................................................99

9.7 Creating a Certificate .......................................................................................100

9.8 My Certificate Details .......................................................................................103

9.9 Trusted CAs .....................................................................................................106

9.10 Importing a Trusted CA’s Certificate ...............................................................108

9.11 Trusted CA Certificate Details ........................................................................109

Chapter 10

Log Screens.......................................................................................................... 113

10.1 Configuring View Log .....................................................................................113

10.2 Configuring Log Settings ................................................................................ 115

Table of Contents 13

ZyAIR G-5100 User’s Guide

Chapter 11

Maintenance ......................................................................................................... 119

11.1 Maintenance Overview ................................................................................... 119

11.2 System Status Screen ....................................................................................119

11.2.1 System Statistics ...................................................................................120

11.3 Association List ..............................................................................................121

11.4 Channel Usage ...............................................................................................122

11.5 F/W Upload Screen ........................................................................................123

11.6 Configuration Screen ......................................................................................126

11.6.1 Backup Configuration ............................................................................127

11.6.2 Restore Configuration ..........................................................................128

11.6.3 Back to Factory Defaults .......................................................................129

11.7 Restart Screen ................................................................................................129

Chapter 12

Introducing the SMT ............................................................................................131

12.1 Introduction to the SMT ..................................................................................131

12.2 Accessing the SMT via the Console Port .......................................................131

12.2.1 Initial Screen .........................................................................................131

12.2.2 Entering the Password ..........................................................................132

12.3 Accessing the SMT via Telnet ........................................................................133

12.4 Navigating the SMT Interface .........................................................................133

12.4.1 System Management Terminal Interface Summary ..............................134

12.4.2 SMT Menus Overview ..........................................................................135

12.5 Changing the System Password ....................................................................136

Chapter 13

General Setup....................................................................................................... 137

13.1 General Setup ................................................................................................137

13.1.1 Procedure To Configure Menu 1 ...........................................................137

Chapter 14

LAN Setup............................................................................................................. 139

14.1 LAN Setup ......................................................................................................139

14.2 TCP/IP Ethernet Setup ...................................................................................139

14.3 Wireless LAN Setup .......................................................................................140

14.3.1 Configuring MAC Address Filter ...........................................................143

14.3.2 Configuring Roaming ............................................................................144

14.3.3 Configuring Bridge Link ........................................................................146

Chapter 15

Dial-in User Setup ................................................................................................ 149

15.1 Dial-in User Setup ..........................................................................................149

14 Table of Contents

ZyAIR G-5100 User’s Guide

Chapter 16

VLAN Setup .......................................................................................................... 151

16.1 VLAN Setup ...................................................................................................151

Chapter 17

SNMP Configuration ............................................................................................ 153

17.1 About SNMP ..................................................................................................153

17.2 Supported MIBs ............................................................................................154

17.3 SNMP Configuration ......................................................................................154

17.4 SNMP Traps ...................................................................................................155

Chapter 18

System Security ................................................................................................... 157

18.1 System Security .............................................................................................157

18.1.1 System Password .................................................................................157

18.1.2 Configuring External RADIUS Server ...................................................157

18.1.3 802.1x ...................................................................................................159

Chapter 19

System Information and Diagnosis .................................................................... 163

19.1 System Status ................................................................................................163

19.2 System Information ........................................................................................165

19.2.1 System Information ...............................................................................165

19.2.2 Console Port Speed ..............................................................................166

19.3 Log and Trace ................................................................................................166

19.3.1 Viewing Error Log .................................................................................167

19.4 Diagnostic ......................................................................................................167

Chapter 20

Firmware and Configuration File Maintenance ................................................. 169

20.1 Filename Conventions ...................................................................................169

20.2 Backup Configuration .....................................................................................170

20.2.1 Backup Configuration Using FTP .........................................................170

20.2.2 Using the FTP command from the DOS Prompt ..................................171

20.2.3 Backup Configuration Using TFTP .......................................................172

20.2.4 Example: TFTP Command ...................................................................172

20.2.5 Backup Via Console Port ......................................................................173

20.3 Restore Configuration ...................................................................................174

20.3.1 Restore Using FTP ...............................................................................174

20.4 Uploading Firmware and Configuration Files .................................................174

20.4.1 Firmware Upload ..................................................................................175

20.4.2 Configuration File Upload .....................................................................175

20.4.3 Using the FTP command from the DOS Prompt Example ...................176

Table of Contents 15

ZyAIR G-5100 User’s Guide

20.4.4 TFTP File Upload ..................................................................................177

20.4.5 Example: TFTP Command ...................................................................177

20.4.6 Uploading Via Console Port ..................................................................178

20.4.7 Uploading Firmware File Via Console Port ...........................................178

20.4.8 Example Xmodem Firmware Upload Using HyperTerminal ..................178

20.4.9 Uploading Configuration File Via Console Port ....................................179

20.4.10 Example Xmodem Configuration Upload Using HyperTerminal .........180

Chapter 21

System Maintenance and Information ...............................................................181

21.1 Command Interpreter Mode ...........................................................................181

21.2 Time and Date Setting ....................................................................................182

21.2.1 Resetting the Time ................................................................................183

Chapter 22

Troubleshooting ................................................................................................... 185

22.1 Problems Starting Up the ZyAIR ....................................................................185

22.2 Problems with Console Port Access ..............................................................185

22.3 Problems with the Ethernet Interface .............................................................186

22.4 Problems with the Password ..........................................................................187

22.5 Problems with Telnet ......................................................................................187

22.6 Problems with the WLAN Interface ................................................................187

Appendix A

Specifications...................................................................................................... 189

Appendix B

Packaging Specifications.................................................................................... 197

Appendix C

Power over Ethernet Specifications................................................................... 199

Appendix D

Setting up Your Computer’s IP Address............................................................ 201

Appendix E

IP Subnetting ........................................................................................................ 213

Appendix F

Wireless LAN ........................................................................................................ 221

Appendix G

Outdoor Site Planning ......................................................................................... 235

Appendix H

Outdoor Installation Recommendations............................................................ 241

16 Table of Contents

ZyAIR G-5100 User’s Guide

Appendix I

Command Interpreter........................................................................................... 245

Appendix J

Brute-Force Password Guessing Protection..................................................... 247

Appendix K

Log Descriptions.................................................................................................. 249

Index...................................................................................................................... 253

Table of Contents 17

ZyAIR G-5100 User’s Guide

18 Table of Contents

ZyAIR G-5100 User’s Guide

List of Figures

Figure 1 PoE Installation Example ......................................................................... 30

Figure 2 WDS Functionality Example .................................................................... 30

Figure 3 Access Point Application .......................................................................... 34

Figure 4 AP+Bridge Application ........................................................................... 34

Figure 5 Bridge Application .................................................................................... 35

Figure 6 Repeater Application ................................................................................ 36

Figure 7 Change Password Screen ....................................................................... 38

Figure 8 Replace Certificate Screen. ..................................................................... 38

Figure 9 Example Xmodem Upload ....................................................................... 39

Figure 10 The MAIN MENU Screen of the Web Configurator ................................ 40

Figure 11 Wizard: General Setup ........................................................................... 43

Figure 12 Wizard: Wireless LAN Setup .................................................................. 45

Figure 13 Wizard: IP Address Assignment ............................................................ 46

Figure 14 TCP/IP Warning Screen ......................................................................... 47

Figure 15 Close Browser Screen ........................................................................... 47

Figure 16 Wizard: Setup Complete ........................................................................ 48

Figure 17 System General ..................................................................................... 50

Figure 18 Password. .............................................................................................. 51

Figure 19 Time Setting ........................................................................................... 52

Figure 20 Wireless: Access Point .......................................................................... 59

Figure 21 Bridging Example ................................................................................... 62

Figure 22 Bridge Loop: Two Bridges Connected to Hub ........................................ 63

Figure 23 Bridge Loop: Bridge Connected to Wired LAN ...................................... 63

Figure 24 Wireless: Bridge/Repeater ..................................................................... 64

Figure 25 Wireless: AP+Bridge .............................................................................. 66

Figure 26 MAC Address Filter ................................................................................ 68

Figure 27 Roaming Example .................................................................................. 70

Figure 28 Roaming ................................................................................................. 71

Figure 29 WPA - PSK Authentication ..................................................................... 72

Figure 30 WPA with RADIUS Application Example ................................................ 73

Figure 31 Wireless LAN: 802.1x/WPA ................................................................... 74

Figure 32 Wireless LAN: 802.1x/WPA for 802.1x Protocol .................................... 75

Figure 33 Wireless LAN: 802.1x/WPA for WPA Protocol ....................................... 78

Figure 34 Wireless LAN: 802.1x/WPA for WPA-PSK Protocol ............................... 79

Figure 35 ZyAIR Authenticates Wireless Stations .................................................. 81

Figure 36 ZyAIR Authenticates Trusted APs .......................................................... 82

Figure 37 Internal RADIUS Server Setting Screen ............................................... 83

Figure 38 Trusted AP Overview ............................................................................. 84

List of Figures 19

ZyAIR G-5100 User’s Guide

Figure 39 Trusted AP Screen ................................................................................. 85

Figure 40 Trusted Users Screen ............................................................................ 87

Figure 41 VLAN ...................................................................................................... 90

Figure 42 IP Setup ................................................................................................ 93

Figure 43 Certificate Configuration Overview ........................................................ 96

Figure 44 My Certificates ....................................................................................... 97

Figure 45 My Certificate Import .............................................................................. 99

Figure 46 My Certificate Create ............................................................................. 101

Figure 47 My Certificate Details ............................................................................. 104

Figure 48 Trusted CAs ........................................................................................... 107

Figure 49 Trusted CA Import .................................................................................. 109

Figure 50 Trusted CA Details ................................................................................. 110

Figure 51 View Log ................................................................................................ 114

Figure 52 Log Settings ........................................................................................... 116

Figure 53 System Status ........................................................................................ 119

Figure 54 System Status: Show Statistics .............................................................. 120

Figure 55 Association List ...................................................................................... 121

Figure 56 Channel Usage ...................................................................................... 122

Figure 57 Firmware Upload .................................................................................... 124

Figure 58 Firmware Upload In Process .................................................................. 125

Figure 59 Network Temporarily Disconnected ....................................................... 125

Figure 60 Firmware Upload Error ........................................................................... 126

Figure 61 Configuration .......................................................................................... 127

Figure 62 Configuration Upload Successful ........................................................... 128

Figure 63 Network Temporarily Disconnected ....................................................... 128

Figure 64 Configuration Upload Error .................................................................... 129

Figure 65 Reset Warning Message ........................................................................ 129

Figure 66 Restart Screen ....................................................................................... 130

Figure 67 Initial Screen .......................................................................................... 132

Figure 68 Password Screen .................................................................................. 132

Figure 69 Login Screen .......................................................................................... 133

Figure 70 SMT Main Menu .................................................................................... 134

Figure 71 Menu 23.1 System Security: Change Password .................................... 136

Figure 72 Menu 1 General Setup ........................................................................... 137

Figure 73 Menu 3 LAN Setup ................................................................................ 139

Figure 74 Menu 3.2 TCP/IP Setup ......................................................................... 140

Figure 75 Menu 3.5 Wireless LAN Setup ............................................................... 141

Figure 76 Menu 3.5 Wireless LAN Setup ............................................................... 143

Figure 77 Menu 3.5.1 WLAN MAC Address Filter ................................................. 144

Figure 78 Menu 3.5 Wireless LAN Setup ............................................................... 145

Figure 79 Menu 3.5.2 - Roaming Configuration ..................................................... 145

Figure 80 Menu 3.5 Wireless LAN Setup ............................................................... 146

Figure 81 Menu 3.5.4 - Bridge Link Configuration ................................................. 147

20 List of Figures

ZyAIR G-5100 User’s Guide

Figure 82 Menu 14- Dial-in User Setup .................................................................. 149

Figure 83 Menu 14.1- Edit Dial-in User .................................................................. 149

Figure 84 Menu 16 VLAN Setup ............................................................................ 151

Figure 85 SNMP Management Model .................................................................... 153

Figure 86 Menu 22 SNMP Configuration .............................................................. 154

Figure 87 Menu 23 System Security ...................................................................... 157

Figure 88 Menu 23 System Security ...................................................................... 157

Figure 89 Menu 23.2 System Security: RADIUS Server ........................................ 158

Figure 90 Menu 23 System Security ...................................................................... 159

Figure 91 Menu 23.4 System Security: IEEE802.1x .............................................. 160

Figure 92 Menu 24 System Maintenance .............................................................. 163

Figure 93 Menu 24.1 System Maintenance: Status ............................................... 164

Figure 94 Menu 24.2 System Information and Console Port Speed ...................... 165

Figure 95 Menu 24.2.1 System Information: Information ....................................... 165

Figure 96 Menu 24.2.2 System Maintenance: Change Console Port Speed ......... 166

Figure 97 Menu 24.3 System Maintenance: Log and Trace .................................. 167

Figure 98 Sample Error and Information Messages .............................................. 167

Figure 99 Menu 24.4 System Maintenance: Diagnostic ......................................... 168

Figure 100 Menu 24.5 Backup Configuration ......................................................... 170

Figure 101 FTP Session Example ......................................................................... 171

Figure 102 System Maintenance: Backup Configuration ....................................... 173

Figure 103 System Maintenance: Starting Xmodem Download Screen ................ 173

Figure 104 Backup Configuration Example ............................................................ 173

Figure 105 Successful Backup Confirmation Screen ............................................. 174

Figure 106 Menu 24.6 Restore Configuration ........................................................ 174

Figure 107 Menu 24.7 System Maintenance: Upload Firmware ............................ 175

Figure 108 Menu 24.7.1 System Maintenance: Upload System Firmware ............ 175

Figure 109 Menu 24.7.2 System Maintenance: Upload System Configuration File 176

Figure 110 FTP Session Example .......................................................................... 177

Figure 111 Menu 24.7.1 as Seen Using the Console Port ..................................... 178

Figure 112 Example Xmodem Upload ................................................................... 179

Figure 113 Menu 24.7.2 as Seen Using the Console Port .................................... 179

Figure 114 Example Xmodem Upload ................................................................... 180

Figure 115 Menu 24 System Maintenance ............................................................. 181

Figure 116 Valid CI Commands .............................................................................. 182

Figure 117 Menu 24.10 System Maintenance: Time and Date Setting .................. 182

Figure 118 Inspection Cosmetic and Function ....................................................... 194

Figure 119 WIndows 95/98/Me: Network: Configuration ........................................ 202

Figure 120 Windows 95/98/Me: TCP/IP Properties: IP Address ............................ 203

Figure 121 Windows 95/98/Me: TCP/IP Properties: DNS Configuration ............... 204

Figure 122 Windows XP: Start Menu ..................................................................... 205

Figure 123 Windows XP: Control Panel ................................................................. 205

Figure 124 Windows XP: Control Panel: Network Connections: Properties .......... 206

List of Figures 21

ZyAIR G-5100 User’s Guide

Figure 125 Windows XP: Local Area Connection Properties ................................. 206

Figure 126 Windows XP: Internet Protocol (TCP/IP) Properties ............................ 207

Figure 127 Windows XP: Advanced TCP/IP Properties ......................................... 208

Figure 128 Windows XP: Internet Protocol (TCP/IP) Properties ............................ 209

Figure 129 Macintosh OS 8/9: Apple Menu ........................................................... 210

Figure 130 Macintosh OS 8/9: TCP/IP ................................................................... 210

Figure 131 Macintosh OS X: Apple Menu .............................................................. 211

Figure 132 Macintosh OS X: Network .................................................................... 212

Figure 133 Peer-to-Peer Communication in an Ad-hoc Network ........................... 221

Figure 134 Basic Service Set ................................................................................. 222

Figure 135 Infrastructure WLAN ............................................................................ 223

Figure 136 RTS/CTS ............................................................................................ 224

Figure 137 EAP Authentication .............................................................................. 227

Figure 138 WEP Authentication Steps ................................................................... 230

Figure 139 Roaming Example ................................................................................ 233

22 List of Figures

ZyAIR G-5100 User’s Guide

List of Tables

Table 1 IEEE 802.11g ............................................................................................ 31

Table 2 IEEE 802.11b ............................................................................................ 31

Table 3 Screens Summary .................................................................................... 40

Table 4 Wizard: General Setup ............................................................................. 44

Table 5 Wizard: Wireless LAN Setup .................................................................... 45

Table 6 Wizard: IP Address Assignment ............................................................... 46

Table 7 System General Setup ............................................................................. 50

Table 8 Password .................................................................................................. 52

Table 9 Time Setting .............................................................................................. 53

Table 10 ZyAIR Wireless Security Levels ............................................................. 56

Table 11 STP Path Costs ...................................................................................... 57

Table 12 STP Port States ...................................................................................... 58

Table 13 Wireless: Access Point ........................................................................... 60

Table 14 Wireless: Bridge/Repeater ...................................................................... 64

Table 15 MAC Address Filter ................................................................................ 68

Table 16 Roaming ................................................................................................. 71

Table 17 Wireless LAN: 802.1x/WPA .................................................................... 74

Table 18 Wireless LAN: 802.1x/WPA for 802.1x Protocol ..................................... 76

Table 19 Wireless LAN: 802.1x/WPA for WPA Protocol ........................................ 79

Table 20 Wireless LAN: 802.1x/WPA for WPA-PSK Protocol ............................... 80

Table 21 Internal RADIUS Server Screens Overview ........................................... 82

Table 22 My Certificates ........................................................................................ 83

Table 23 Trusted AP .............................................................................................. 85

Table 24 Trusted Users ......................................................................................... 87

Table 25 VLAN ...................................................................................................... 90

Table 26 Private IP Address Ranges .................................................................... 92

Table 27 IP Setup .................................................................................................. 93

Table 28 My Certificates ........................................................................................ 97

Table 29 My Certificate Import .............................................................................. 100

Table 30 My Certificate Create .............................................................................. 101

Table 31 My Certificate Details .............................................................................. 105

Table 32 Trusted CAs ............................................................................................ 107

Table 33 Trusted CA Import .................................................................................. 109

Table 34 Trusted CA Details .................................................................................. 111

Table 35 View Log ................................................................................................. 114

Table 36 Log Settings ............................................................................................ 116

Table 37 System Status ......................................................................................... 119

Table 38 System Status: Show Statistics .............................................................. 120

List of Tables 23

ZyAIR G-5100 User’s Guide

Table 39 Association List ....................................................................................... 122

Table 40 Channel Usage ....................................................................................... 123

Table 41 Firmware Upload .................................................................................... 124

Table 42 Restore Configuration ............................................................................. 128

Table 43 Main Menu Commands .......................................................................... 133

Table 44 Main Menu Summary ............................................................................. 134

Table 45 SMT Menus Overview ............................................................................ 135

Table 46 Menu 1 General Setup ........................................................................... 138

Table 47 Menu 3.2 TCP/IP Setup .......................................................................... 140

Table 48 Menu 3.5 Wireless LAN Setup ............................................................... 141

Table 49 Menu 3.5.1 WLAN MAC Address Filter .................................................. 144

Table 50 Menu 3.5.2 - Roaming Configuration ..................................................... 146

Table 51 Menu 3.5.4 Bridge Link Configuration .................................................... 147

Table 52 Menu 14.1- Edit Dial-in User .................................................................. 150

Table 53 Menu 16 VLAN Setup ............................................................................. 151

Table 54 Menu 22 SNMP Configuration ................................................................ 155

Table 55 SNMP Traps ........................................................................................... 155

Table 56 Ports and Interface Types ....................................................................... 155

Table 57 Menu 23.2 System Security: RADIUS Server ........................................ 158

Table 58 Menu 23.4 System Security: IEEE802.1x ............................................... 160

Table 59 Menu 24.1 System Maintenance: Status ................................................ 164

Table 60 Menu 24.2.1 System Maintenance: Information ..................................... 166

Table 61 Menu 24.4 System Maintenance Menu: Diagnostic ............................... 168

Table 62 Filename Conventions ............................................................................ 170

Table 63 General Commands for Third Party FTP Clients .................................... 171

Table 64 General Commands for Third Party TFTP Clients ................................. 172

Table 65 System Maintenance: Time and Date Setting ........................................ 183

Table 66 Troubleshooting the Start-Up of Your ZyAIR ........................................... 185

Table 67 Troubleshooting Console Port Access .................................................... 185

Table 68 Troubleshooting the Ethernet Interface .................................................. 186

Table 69 Troubleshooting the Password ............................................................... 187

Table 70 Troubleshooting Telnet ........................................................................... 187

Table 71 Troubleshooting the WLAN Interface ...................................................... 187

Table 72 Device Specifications .............................................................................. 189

Table 73 Performance ........................................................................................... 189

Table 74 Firmware Features ................................................................................. 190

Table 75 Environmental Conditions ....................................................................... 191

Table 76 Inspection Channel (CH1, CH7, CH13) .................................................. 191

Table 77 Hardware Specifications ......................................................................... 191

Table 78 Radio Specifications ............................................................................... 192

Table 79 Rx Sensitivity (@ FER = 0.08) ................................................................ 192

Table 80 Transmitting System ............................................................................... 193

Table 81 Receiving System ................................................................................... 193

24 List of Tables

ZyAIR G-5100 User’s Guide

Table 82 Current Consumption ............................................................................. 193

Table 83 Approvals ................................................................................................ 194

Table 84 Packaging Specifications ........................................................................ 197

Table 85 Mounting Hardware Specifications ......................................................... 197

Table 86 Power over Ethernet Injector Specifications .......................................... 199

Table 87 Power over Ethernet Injector RJ-45 Port Pin Assignments .................... 199

Table 88 Classes of IP Addresses ........................................................................ 213

Table 89 Allowed IP Address Range By Class ...................................................... 214

Table 90 “Natural” Masks ..................................................................................... 214

Table 91 Alternative Subnet Mask Notation .......................................................... 215

Table 92 Two Subnets Example ............................................................................ 215

Table 93 Subnet 1 ................................................................................................. 216

Table 94 Subnet 2 ................................................................................................. 216

Table 95 Subnet 1 ................................................................................................. 217

Table 96 Subnet 2 ................................................................................................. 217

Table 97 Subnet 3 ................................................................................................. 217

Table 98 Subnet 4 ................................................................................................. 218

Table 99 Eight Subnets ......................................................................................... 218

Table 100 Class C Subnet Planning ...................................................................... 218

Table 101 Class B Subnet Planning ...................................................................... 219

Table 102 IEEE802.11g ......................................................................................... 225

Table 103 Comparison of EAP Authentication Types ............................................ 231

Table 104 Wireless Security Relational Matrix ...................................................... 232

Table 105 Brute-Force Password Guessing Protection Commands ..................... 247

Table 106 System Maintenance Logs ................................................................... 249

Table 107 ICMP Notes .......................................................................................... 249

Table 108 Sys log .................................................................................................. 250

Table 109 Log Categories and Available Settings ................................................. 251

List of Tables 25

ZyAIR G-5100 User’s Guide

26 List of Tables

ZyAIR G-5100 User’s Guide

Preface

Congratulations on your purchase of the ZyAIR G-5100 Outdoor 802.11g Business Access Point/Bridge/Repeater.

The ZyAIR is an Access Point (AP) through which wireless stations can communicate and/or access a wired network. The ZyAIR can also function as a wireless network bridge/repeater and establish wireless links with other APs.

The ZyAIR also supports both AP and bridge connections at the same time.

Your ZyAIR is easy to install and configure.

Note: Register your product online to receive e-mail notices of firmware upgrades and information at www.zyxel.com American products.

About This User's Guide

for global products, or at www.us.zyxel.com for North

This User’s Guide is designed to guide you through the configuration of your ZyAIR using the web configurator or the System Management Terminal (SMT). The web configurator parts of this guide contain background information on features configurable by web configurator. The SMT parts of this guide contain background information solely on features not configurable by web configurator

Note: Use the web configurator, System Management Terminal (SMT) or command interpreter interface to configure your ZyAIR. Not all features can be configured through all interfaces.

Getting to Know Your ZyAIR

This chapter introduces the main features and applications of the ZyAIR.

1.1 Introducing the ZyAIR

The ZyAIR G-5100 is an enterprise level, outdoor IEEE 802.11g compliant business access point, bridge and repeater with excellent wireless performance. Wireless Distribution System (WDS) support provides flexibility in building an extended wireless network with bridge and repeater applications. IEEE 802.1x, Wi-Fi Protected Access, WEP data encryption and MAC address filtering offer highly secured wireless connectivity.

Rugged die-cast, watertight construction, built-in lightening protection, and grounding make the ZyAIR perfect for outdoors applications.

ZyAIR G-5100 User’s Guide

CHAPTER 1

It is easy to install and configure the ZyAIR. The web-based configurator allows remote configuration and management of your ZyAIR. The Power over Ethernet (PoE) feature means that power can be delivered to the ZyAIR over an Ethernet line. This allows you to mount the ZyAIR in areas where there are no nearby power sources.

1.2 ZyAIR Features

The following sections describe the features of the ZyAIR

10/100M Auto-negotiating Ethernet/Fast Ethernet Interface

This auto-negotiating feature allows the ZyAIR to detect the speed of incoming transmissions and adjust appropriately without manual intervention. It allows data transfer of either 10 Mbps or 100 Mbps in either half-duplex or full-duplex mode depending on your Ethernet network.

Power over Ethernet (PoE)

Power over Ethernet (PoE) is the ability to provide power to your ZyAIR via an 8-pin CAT 5 Ethernet cable, eliminating the need for a nearby power source. The ZyAIR G-5100 includes a special high current power injector that allows the ZyAIR to be located farther away. This feature allows increased flexibility in the locating of your ZyAIR.

Chapter 1 Getting to Know Your ZyAIR 29

ZyAIR G-5100 User’s Guide

Figure 1 PoE Installation Example

Wi-Fi Protected Access

Wi-Fi Protected Access (WPA) is a subset of the IEEE 802.11i standard. Key differences between WPA and WEP are user authentication and improved data encryption.

WDS Functionality

A Distribution System (DS) is a wired connection between two or more APs, while a Wireless Distribution System (WDS) is a wireless connection. Your ZyAIR supports WDS, providing a cost-effective solution for wireless network expansion. The ZyAIR supports up to five wireless links with other APs.

Figure 2 WDS Functionality Example

30 Chapter 1 Getting to Know Your ZyAIR

+ 230 hidden pages