System Configuration | 3Com 3CRWEASYA73, WL-575 specification

CHAPTER 5: SYSTEM CONFIGURATION

Session Key Refresh Rate: The interval at which the access point refreshes

unicast session keys for associated clients. (Range: 0-1440 minutes; Default: 0 means disabled)

802.1X Reauthentication Refresh Rate: The time period after which a connected client must be re-authenticated. During the re-authentication process of verifying the client’s credentials on the RADIUS server, the client remains connected the network. Only if re-authentication fails is network access blocked. (Range: 0-65535 seconds; Default: 0 means disabled)

802.1X Supplicant – The access point can also operate in a 802.1X supplicant mode. This enables the access point itself to be authenticated with a RADIUS server using a configured MD5 user name and password. This prevents rogue access points from gaining access to the network.

Local MAC Authentication – Configures the local MAC authentication database. The MAC database provides a mechanism to take certain actions based on a wireless client’s MAC address. The MAC list can be configured to allow or deny network access to specific clients.

System Default: Specifies a default action for all unknown MAC addresses (that is, those not listed in the local MAC database).

•Deny: Blocks access for all MAC addresses except those listed in the local database as “Allow.”

•Allow: Permits access for all MAC addresses except those listed in the local database as “Deny.”

MAC Authentication Settings: Enters specified MAC addresses and permissions into the local MAC database.

•MAC Address: Physical address of a client. Enter six pairs of hexadecimal digits separated by hyphens; for example, 00-90-D1-12-AB-89.

•Permission: Select Allow to permit access or Deny to block access. If Delete is selected, the specified MAC address entry is removed from the database.

•Update: Enters the specified MAC address and permission setting into the local database.

MAC Authentication Table: Displays current entries in the local MAC database.

5-14

Image 62

3Com 3CRWEASYA73, WL-575 manual System Configuration

Contents

User Guide 3Com Corporation 350 Campus Drive Marlborough, MA Contents Configuring Snmp and Trap Message Parameters Advanced Setup System IdentificationAuthentication Filter Control Configuring Sntp Command Line Interface Straight-Through Wiring Crossover Wiring B-4 Pin DIN to RJ-45 Cable Wiring B-6 Terminology Viii Product Features Introduction Radio Characteristics Approved Channels Package Checklist „ One Quick Start Guide External Antenna Options Hardware DescriptionIntegrated HIGH-GAIN Antenna Power Injector Module Ethernet Port Grounding Point Water Tight Test Point WALL- and POLE-MOUNTING Bracket KIT System ConfigurationOperating Modes POINT-TO-POINT Configuration POINT-TO-MULTIPOINT Configuration Beam Angle Page Bridge Link Planning Data Rates Radio Path Planning Antenna Height Miles 4.8 km 20 m 17 m 12 m Antenna Position and Orientation Radio Interference Weather Conditions Ethernet Cabling Grounding Hardware Installation Mount the Unit Testing Basic Link OperationUsing the POLE-MOUNTING Bracket Fit the edges of the V-shaped Part into the slots Using the WALL-MOUNTING Bracket Page Connect External Antennas Connect the Power Injector Connect Cables to the UnitPage Check the LED Indicators LED Align Antennas High 11a Signal Page Networks with a Dhcp Server Networks Without a Dhcp Server Using the 3COM Installation CD Launching the 3COM Wireless Interface Device Manager Click on the Properties button to see the following screen Using the Setup Wizard First Time only Login Home page displays the Main Menu Setup Wizard Step Setup Wizard Step Setup Wizard Step Click Finish Click the OK button to complete the wizard System Configuration Advanced Setup Advanced Setup Advanced Setup System Identification TCP / IP Settings System Configuration Smart Monitor Radius Radius Authentication Authentication Authentication Authentication Authentication System Configuration Filter Control System Configuration Vlan Filter Control Vlan ID Configuring Snmp and Trap Message Parameters Snmp Snmp Trap Configuration Configuring SNMPV3 Users Configuring SNMPv3 Users Administration Changing the Password Telnet and SSH Settings Upgrading Firmware System Configuration „ IP Address IP address or host name of the Tftp server WDS and Spanning Tree Settings WDS and Spanning Tree Settings Root bridge acting as the master bridges parent WDS and Spanning Tree Settings Range Default System LOG Enabling System Logging Configuring Sntp Error Level Description Rssi Rssi Radio Interface Radio Settings a 802.11A Interface Configuring Common Radio Settings Radio Settings a and B/G System Configuration Normal Mode Turbo Mode System Configuration 802.11B/G Interface Radio Settings B/G Configuring WI-FI Multimedia Category WMM Access CategoriesAccess Voice WMM Backoff Times System Configuration Key Type See Wired Equivalent Privacy WEP Security Wi-Fi Protected Access WPA or WPA2Wireless Security Considerations MAC Radius Combination Authentication b Server Wired Equivalent Privacy WEP Radius Authentication and Encryption WPA Key Management WEP Keys Wi-Fi Protected Access WPA System Configuration Configuration settings for WPA are summarized below WPA Configuration Settings Status Information AP Status Station Status Static The client is using static WEP keys for encryption Security System Configuration Console Connection Using the Command Line InterfaceAccessing the CLI Telnet Connection Entering Commands Keywords and Arguments Showing Commands Negating the Effect of Commands Command Modes Configuration Commands Command Groups Keystroke Commands General Commands General CommandsConfigure Related Commands Default SettingCommand Mode Example Ping Command UsageExit Syntax Reset Syntax Reset board configuration Show history Show line Country System Management CommandsSystem Management Commands Country countrycode Country Codes Prompt Syntax Prompt string no prompt Username System nameSyntax System name name no system name Syntax Username name Password Ip ssh-server enable Ip ssh-server port Default Setting Command ModeIp telnet-server enable Syntax Ip ssh-server port port-number Syntax Ip http port port-numberno ip http port Syntax No ip http server Default SettingIp http port Ip http server Ip https port Syntax Ip https port portnumber no ip https port Syntax No ip https server Default Setting Ip https server Syntax No web-redirect Default Setting Web-redirect APmgmtIP APmgmtIP multiple IPaddress subnetmask single IPaddress any Syntax APmgmtUI Snmp Telnet Web enable disable APmgmtUI Show apmanagement Snmp UI Show system US United States Show config Show version Ssid PRE Shared KEY WPA PSK Enabled Dot11StationRequestFail Nocountryset Show hardware System Logging CommandsSystem Loggign Commands Logging host Syntax No logging on Default SettingLogging on Logging level Syntax No logging console Default SettingLogging console Logging facility-type Syntax Logging facility-type type Logging clear Syntax Logging clear Command ModeSyntax Show logging Command Mode Show logging System Clock Commands System Clock CommandsSyntax Show event-log Command Mode Show event-log Sntp-server ip Sntp-server enableSyntax No sntp-server enable Syntax Sntp-server ip 1 2 ip Sntp-server date-time Sntp-server ip 6-38 show sntp Sntp-server timezone Syntax No sntp-server daylight-saving Default SettingSntp-server daylight-saving Syntax Sntp-server timezone hours Show sntp TAIPEI, Beijing Syntax No dhcp-relay enable Default Setting Dhcp Relay CommandsDhcp-relay enable Dhcp Relay Commands Show dhcp-relay Dhcp-relaySyntax Dhcp-relay primary secondary ipaddress Snmp Commands Snmp Commands Displays the Snmp v3 notification filter assignments Snmp-server community Snmp-server contact Snmp-server location Snmp-server enable server Snmp-server host Hostname Name of the host. Range 1-63 characters Snmp-server trap Command Line Interface Snmp-server engine-id Snmp-server user Syntax Snmp-server user user-name Snmp-server targets Snmp-server filter Default Setting Snmp-server filter-assignments Show snmp groups Show snmp users Syntax Show snmp groups Command ModeSyntax Show snmp users Command Mode Show snmp group-assignments Show snmp target Syntax Show snmp group-assignments Command ModeSyntax Show snmp target Command Mode Show snmp filter Syntax Show snmp filter-assignments Command Mode Show snmp filter-assignments Show snmp Syntax Bootfile filename Flash/File CommandsBootfile Flash/File Commands Syntax Copy ftp tftp file copy config ftp tftp Copy Delete Dir File information is shown below Show bootfile Radius Client Syntax Radius-server secondary port portnumber Radius-server addressRadius-server port Radius-server retransmit Radius-server keySyntax Radius-server secondary key keystring Syntax Radius-server secondary retransmit numberofretries Radius-server port-accounting Radius-server timeoutSyntax Radius-server secondary timeout numberofseconds Syntax Radius-server secondary port-accounting portnumber Radius-server timeout-interim Radius-server radius-mac-format Show radius Radius-server vlan-formatSyntax Radius-server vlan-format hex ascii 802.1X Authentication Syntax 802.1x supported required no 802.1X Authentication802.1x Using the Command Line Interface 802.1x broadcast-key-refresh-rate Syntax 802.1x broadcast-key-refresh-rate rate Syntax 802.1x session-key-refresh-rate rate 802.1x session-timeout802.1x session-key-refresh-rate 802.1x-supplicant user Default802.1x-supplicant enable Show authentication MAC Address Authentication Address filter entry Address filter defaultSyntax Address filter default allowed denied Syntax Address filter entry mac-addressallowed denied Address filter default 6-79 802.1x-supplicant user Address filter delete Mac-authentication serverSyntax Mac-authentication server local remote Syntax Address filter delete mac-address Syntax Mac-authentication session-timeout minutes Filtering CommandsMac-authentication session-timeout Filtering Commands Filter local-bridge Outdoor 11a Building to Building config#filter local-bridge Syntax No filter uplink enable Default Syntax No filter ap-manage DefaultFilter uplink enable Filter ap-manage Filter ethernet-type enable Syntax No filter ethernet-type enable Default Filter ethernet-type protocol Show filters WDS Bridge Commands WDS Bridge Commands Bridge role WDS Bridge modeSyntax Bridge mode master slave Syntax Bridge role ap repeater bridge root-bridge Syntax Bridge channel-auto-sync enable disable Bridge channel-auto-sync Bridge-link child Bridge-link parentSyntax Bridge-link parent mac-address Syntax Bridge-link child index mac-address Bridge dynamic-entry age-time Syntax Bridge dynamic-entry age-time seconds Seconds Show bridge aging-time Show bridge filter-entry MAC Syntax Show bridge link ethernet wireless a g index Show bridge link Parent 00-12-34-56-78-9a Child Bridge Commands Spanning Tree CommandsBridge stp enable Syntax No bridge stp enable Default Setting Bridge stp forwarding-delay Bridge stp max-age Bridge stp hello-timeSyntax Bridge stp hello-time time No bridge stp hello-time Syntax Bridge stp prioritypriority no bridge stp priority Syntax Bridge stp max-age seconds No bridge stp max-ageBridge stp priority Bridge-link path-cost Syntax Bridge-link path-cost index cost Show bridge stp Bridge-link port-prioritySyntax Bridge-link port-priority index priority Ehternet Interface Commands Ethernet Interface CommandsSyntax Show bridge stp Command Mode Interface ethernet Dns server Ip address Ip address ip-address netmask gateway no ip address Syntax No ip dhcp Default Setting Ip dhcp Syntax Speed-duplex auto 10MH 10MF 100MF 100MH Syntax No shutdown Default SettingSpeed-duplex Shutdown Syntax Show interface ethernet Default Setting Show interface ethernet Wireless Interface Commands Wireless Interface Commands Interface wireless Syntax Interface wireless a g Syntax Speed speed VapSpeed Turbo Syntax Turbo static dynamic no turbo Multicast-data-rate Syntax Multicast-data-rate speed Channel Syntax Channel channel auto Syntax Radio-mode b g b+g Transmit-powerRadio-mode Syntax Preamble long short-or-long Default Setting +g mode Command ModePreamble Antenna control Syntax Antenna control diversity left right Antenna location Antenna idSyntax Antenna id antenna-id Syntax Antenna location indoor outdoor Beacon-interval Syntax Beacon-interval interval Dtim-period Syntax Dtim-period interval Rts-threshold Fragmentation-lengthSyntax Fragmentation-length length Syntax Rts-threshold threshold Syntax No super-a Default Setting Super-a Description Syntax No super-g Default SettingSuper-g Closed-system Syntax No closed-system Default SettingSsid Max-association Assoc-timeout-intervalSyntax Assoc-timeout-interval minutes Syntax Max-association count Auth-timeout-value Syntax Auth-timeout-value minutes Show interface wireless Syntax Show interface wireless a g vap-id 130 131 132 Rogue AP Detection Commands Show station Rogue-ap enable Rogue AP Commands Rogue-ap authenticate Syntax No rogue-ap authenticate Default Setting Rogue-ap interval Rogue-ap durationSyntax Rogue-ap duration milliseconds Syntax Rogue-ap interval minutes Rogue-ap scan 138 Show rogue-ap Wireless Security CommandsWireless Security Commands Auth 141 Syntax No encryption Default Setting Encryption Key Key index size type value no key index Key 6-143 encryption 6-142 transmit-key Transmit-keySyntax Transmit-key index Cipher-suite Syntax Cipher-suite aes-ccmp tkip wep Micmode Syntax Micmode hardware software Wpa-pre-shared-key Syntax Wpa-pre-shared-key hex passphrase-keyvalue Pmksa-lifetime Syntax Pmksa-lifetime minutes Pre-authentication Link Integrity Commands Link Integrity CommandsSyntax No link-integrity ping-detect Default Setting Link-integrity ping-detect Syntax Link-integrity ping-interval interval Link-integrity ping-hostLink-integrity ping-interval Link-integrity ethernet-detect Link-integrity ping-fail-retrySyntax Link-integrity ping-fail-retry counts Show link-integrity Iapp CommandsSyntax No link-integrity ethernet-detect Default Setting Iapp Vlan CommandsSyntax No iapp Default Vlan Commands Vlan Syntax No vlan enable DefaultCommand Description Management-vlanid Vlan-id Syntax Vlan-id vlan-id Wmm WMM CommandsWMM Commands Syntax No wmm supported required Wmm-acknowledge-policy Syntax Wmm-acknowledge-policy acnumber ack noack AP Access Point BSS Wireless client Wmmparam 161 162 Troubleshooting Page Page Page Cables and Pinouts TWISTED-PAIR Cable Assignments 10/100BASE-TX PIN Assignments STRAIGHT-THROUGH Wiring Crossover Wiring PIN DIN Connector Pinout Pin DIN Ethernet Port Pinout PIN DIN to RJ-45 Cable Wiring Glossary CSMA/CA Infrastructure Radius Virtual LAN Vlan Glossary-6 Index RTS STA