RBT-4102 Wireless Access Point Configuration Guide
Wireless Networking
Enterasys RoamAbout
Page
Enterasys Networks, Inc 50 Minuteman Road Andover, MA
CAREFULLY READ THIS LICENSE AGREEMENT
Enterasys Networks, Inc. Firmware License Agreement
BEFORE OPENING OR UTILIZING THE ENCLOSED PRODUCT
You and Enterasys agree as follows
5. UNITED STATES GOVERNMENT RESTRICTED RIGHTS. The enclosed Program i was developed solely at private expense ii contains “restricted computer software” submitted with restricted rights in accordance with section 52.227‐19 a through d of the Commercial Computer Software‐Restricted Rights Clause and its successors, and iii in all respects is proprietary data belonging to Enterasys and/or its suppliers. For Department of Defense units, the Program is considered commercial computer software in accordance with DFARS section 227.7202‐3 and its successors, and use, duplication, or disclosure by the U.S. Government is subject to restrictions set forth herein
11. ASSIGNMENT. You may not assign, transfer or sublicense this Agreement or any of Your rights or obligations under this Agreement, except that You may assign this Agreement to any person or entity which acquires substantially all of Your stock assets. Enterasys may assign this Agreement in its sole discretion. This Agreement shall be binding upon and inure to the benefit of the parties, their legal representatives, permitted transferees, successors and assigns as permitted by this Agreement. Any attempted assignment, transfer or sublicense in violation of the terms of this Agreement shall be void and a breach of this Agreement
Enterasys Networks, Inc. Software License Agreement
4. TITLE AND PROPRIETARY RIGHTS
to Enterasys
12. GENERAL
viii
Chapter 3 Initial Configuration
Contents
Chapter 2 Network Configuration
Chapter 4 Advanced Configuration
Filter Control and VLANs
Appendix A Default Settings
Appendix B Troubleshooting
Index
Page
Intended Audience
Preface
Purpose of This Manual
Firmware Version Support
Getting Help
Convention
Description
Introduction
Overview
Features
Policy
Applications
Applications
1-4 Introduction
Network Configuration
Overview
Figure 2-1 Ad Hoc Wireless LAN
Network Topologies
Ad Hoc Wireless LAN no Access Point or Bridge
Infrastructure Wireless LAN
Figure 2-2 Infrastructure Wireless LAN
Infrastructure Wireless LAN for Roaming Wireless PCs
Figure 2-3 Infrastructure Wireless LAN for Roaming
Infrastructure Wireless Bridge
Figure 2-4 Infrastructure Wireless Bridge
2-6 Network Configuration
Network Topologies
Required Connections
Initial Configuration
Initial Setup Using the CLI
Overview
Logging In
c. Reboot the RoamAbout RBT‐4102
Using Web Management
If applicable, the County Code page appears, go to step
d. Click OK The access point reboots, and the Login window appears
4. Enter the following information, and click Apply
d. Click Apply at the bottom of the page
h. Click OK The access point reboots
c. Specify a new password in the Password field
Using the Command Line Interface CLI
Advanced Configuration
Using the Web Interface
Table 4-1 Advanced Configuration
Description
Table 4-1 Advanced Configuration continued
Menu
Page
Using Web Management to Configure System Information
Identification
Using the CLI to Configure System Information
TCP / IP Settings
Using Web Management to Configure TCP/IP
The access point only supports SSH version
Using the CLI to Configure TCP/IP
TCP/IP Configuration
Example
Example
SSH Configuration
Ethernet Settings Configuration
Example
4-10 Advanced Configuration
Auto Negotiate Disable Speed-duplexAdmin 100Base-TX Full Duplex
TCP / IP Settings
Speed-duplexOper 100Base-TX Full Duplex
RADIUS
Using Web Management to Configure RADIUS
RADIUS Accounting enables or disables the AP to send RADIUS accounting information for clients to the RADIUS accounting server. Default Disable
Table 4-2 RADIUS Attributes
RADIUS Accounting Attribute
Description
Example
Using the CLI to Configure RADIUS
Table 4-2 RADIUS Attributes continued
RADIUS Accounting Attribute
Authentication
Using Web Management to Configure Authentication
Using the CLI to Configure Authentication
Example
Using Web Management to Configure Filter Control and VLANs
Filter Control and VLANs
IBSS Relay Control, in conjunction with radio interface and Virtual AP VAP IBSS settings, controls whether clients associated with an interface or VAP can establish wireless communications with clients associated with other interfaces or VAPs. Default All VAP mode
Using the CLI to Configure Filter Control and VLANs
CLI Commands for VLAN Support
Example
Page
CLI Commands for Filtering
Example
SVP Commands
Example
CDP Settings
Using Web Management to Configure CDP
Global Status
Port Status Disable ‐ disables this AP from using CDP
Using the CLI to Configure CDP
Example
Using Web Management to Configure Rogue AP Detection
Rogue AP Detection
Using the CLI to Configure Rogue AP Detection
Example
802.11a Rogue AP Status
Using Web Management to Configure SNMP
SNMP
SNMP allows you to enable or disable SNMP management access and also enables the access point to send SNMP traps notifications. SNMP management is enabled by default
Table 4-3 SNMP Notifications
Notification
Description
Table 4-3 SNMP Notifications continued
Security Level
User specifies string to identify an SNMP user. 32 characters maximum
SNMP Targets
SNMP Filter
IP Address is the IP address of the user
Using the CLI to Configure SNMP
CLI Commands for SNMP
Examples
CLI Commands for Configuring SNMPv3 Users and Groups
Examples
=============================================
RoamAbout RBT-4102 Wireless Access Point Configuration Guide
Passphrase PrivType DES Passphrase
RoamAbout 4102#show snmp group-assignments GroupName TPS
Example
CLI Commands for Configuring SNMPv3 Targets
CLI Commands for Configuring SNMPv3 Trap Filters
Example
Administration
Changing the Password
Using Web Management to Change the Password
Using the CLI to Enable and Disable Com Port
Using the CLI to Change the Password
Using Web Management to Enable and Disable Com Port
Enabling and Disabling Com Port
Upgrading Firmware
Using Web Management to Upgrade Firmware
Using the CLI to Upgrade Firmware
Example
Using Web Management to Configure System Log
System Log
Logging Level sets the severity level for event logging
Error Level
Table 4-4 Logging Level Descriptions
Description
Using the CLI to Configure System Log
Examples
Using Web Management to Configure SNTP
Using the CLI to Configure SNTP
Examples
WDS and STP
4-50 Advanced Configuration
WDS and STP
Select WDS & STP from the menu
Using Web Management to Configure WDS and STP
RoamAbout RBT-4102 Wireless Access Point Configuration Guide
WDS and STP
Bridge enables/disables STP on the wireless bridge. Default Disabled
‐ Range 0‐65535 ‐ Default
Using the CLI to Configure WDS
Examples
Example
Using the CLI to Configure STP
Example
Radio Signal Characteristics
Radio Interface
Radio Settings
Using Web Management to Configure Interface Radio Settings
RADIUS Attribute
Table 4-5 VLAN ID RADIUS Attributes
Number
Value
Note The Antenna ID must be selected in conjunction with the Antenna Control Method to configure proper use of any of the antenna options
Default 802.11b and 802.11g
faster. Using higher DTIM values reduces the power used by stations in Power Save mode, but delays the transmission of broadcast/multicast frames. Range 1‐255 beacons Default 2 beacons
Using the CLI to Configure the 802.11a Interface Radio Settings
Example
Set any other parameters as required
Example
Authentication Parameters
Quality of Service
802.11 Parameters
Admission Control No
Using the CLI to Configure the 802.11b/g Interface Radio Settings
Example
Authentication Parameters
Quality of Service
Example
Radio Interface
Access
Wi-Fi Multimedia WMM Configuration
Table 4-6 WMM Access Categories
WMM Operation
Using Web Management to Configure WMM
Figure 4-1 WMM Backoff Wait times
Using the CLI to Configure WMM
Examples
Antenna
Security
Admission Control No
Virtual APs VAPs Configuration
Using Web Management to Configure Virtual APs
4-74 Advanced Configuration
Radio Interface
Using the CLI to Configure Virtual APs
Examples
To view VAP settings, use the show interface wireless ag vap# command
802.11 Parameters
Admission Control No
Security
Security
Table 4-7 Security Mechanisms
Mechanism
Wired Equivalent Privacy WEP
Using Web Management to Configure Security Settings
Key Len specifies whether to use 64, 128 or 152 bit keys
RoamAbout RBT-4102 Wireless Access Point Configuration Guide
Security
Authentication
To use Pre‐Authentication, you must have the following
802.1x Authentication
Hexadecimal uses a key made up of a string of 64 hexadecimal numbers
The 802.1x EAP packets are also used to pass dynamic unicast session keys and static broadcast keys to wireless clients. Session keys are unique to each client and are used to encrypt and correlate traffic passing between a specific client and the access point. You can also enable broadcast key rotation, so the access point provides a dynamic broadcast key and changes it at a specified interval
If you specify RADIUS MAC for this default interface or VAP, you must specify the following parameters
Example
Using the CLI to Configure WPA Pre-Shared Key
Using the CLI to Configure WPA over 802.1X Security
Example
Quality of Service
g command
Authentication Parameters
Example
AC1Background
Using the CLI to Configure Local MAC Authentication
Examples
Status
4-90 Advanced Configuration
Index MAC Address
802.11a
Using the CLI to Configure RADIUS MAC Authentication
Examples
Example
Using the CLI to Configure WEP Shared Key Security
Examples
Page
Using the CLI to Configure WEP over 802.1x Security
Examples
WPA Key Mgmt Mode
Using the CLI to Configure WPA2 Security
Examples
WPA PSK Key Type
Using the CLI to Configure WPA2 Pre-Shared Key Security
Examples
Examples
Multicast cipher
Status information is described in Table 4‐8
Status Information
Table 4-8 Status
Menu
Select AP Status from the menu
Using Web Management to View AP Status
4-102 Advanced Configuration
Status Information
System Up Time is the length of time the management agent has been up
Using the CLI to Display AP Status
Examples
Using Web Management to View CDP Status
Using the CLI to Display CDP Status
Example
Using Web Management to View Station Status
RoamAbout RBT-4102 Wireless Access Point Configuration Guide
Status Information
Station Address is the MAC address of the wireless client
Using Web Management to View Neighbor AP Detection Status
Using the CLI to View Neighbor AP Detection Status
Example
Using Web Management to View WDS-STP Status
Forward Transitions
Using the CLI to View WDS-STP Status
show bridge
Example
show bridge link
Child Status
Example
Root Bridge Status
Example
Using Web Management to View Event Logs
command from the Executive mode. clear command from the Global
Using the CLI to View Event Logs
From the global configuration mode, use the show logging command
Examples
RoamAbout RBT-4102 Wireless Access Point Configuration Guide
Status Information
4-118 Advanced Configuration
Status Information
Default
Default Settings
Feature
Parameter
A-2 Default Settings
Feature
Default
Parameter
RoamAbout RBT-4102 Wireless Access Point Configuration Guide A-3
Feature
Default
Parameter
A-4 Default Settings
Feature
Default
Parameter
RoamAbout RBT-4102 Wireless Access Point Configuration Guide A-5
Feature
Default
Parameter
A-6 Default Settings
Feature
Default
Parameter
Troubleshooting
Troubleshooting Steps
4. If you forgot or lost the password
Table B-3 802.11g Wireless Distance Table Speed and Distance Ranges1
Table B-1 802.11a Wireless Distance Speed and Distance Ranges1
Table B-2 802.11b Wireless Distance Speed and Distance Ranges1
Maximum Distance Tables
B-4 Troubleshooting
Maximum Distance Tables
Index
Numerics
CLI 4-28 detection
WDS 4-50 bridge 4-52 CLI
Index-4
