Wep | SMC Networks 2.4GHz/5GHz guide

Radio Interface

wireless clients. A summary of wireless security considerations is listed in the following table.

Security	Client Support	Implementation Considerations
Mechanism

WEP	Built-in support on all	• Provides only weak security
	802.11a and 802.11g	• Requires manual key
	devices	management

WEP over	Requires 802.1X client	• Provides dynamic key rotation
802.1X	support in system or	for improved WEP security
	by add-in software	• Requires configured RADIUS
	(support provided in	server
	(support provided in	• 802.1X EAP type may require
	Windows 2000 SP3 or	• 802.1X EAP type may require
	later and Windows XP)	management of digital
	later and Windows XP)	certificates for clients and server
		certificates for clients and server

MAC	Uses the MAC	• Provides only weak user
Address	address of client	authentication
Filtering	network card	• Management of authorized
		MAC addresses
		• Can be combined with other
		methods for improved security
		• Optionally configured RADIUS
		server

WPA over	Requires	• Provides robust security in
802.1X	WPA-enabled system	WPA-only mode (i.e., WPA
Mode	and network card	clients only)
	driver	• Offers support for legacy WEP
	(native support	clients, but with increased
	(native support	security risk (i.e., WEP
	provided in Windows	authentication keys disabled)
	XP)	• Requires configured RADIUS
		server
		• 802.1X EAP type may require
		management of digital
		certificates for clients and server

WPA PSK	Requires	• Provides good security in small
Mode	WPA-enabled system	networks
	and network card	• Requires manual management
	driver	of pre-shared key
	(native support
	provided in Windows
	XP)

6-73

Image 149

SMC Networks 2.4GHz/5GHz manual Wep

Contents

Easy way to make all your network connections Trademarks Copyright Limited Warranty Limited Warranty FCC Radiation Exposure Statement Federal Communication Commission Interference Statement EC Conformance Declaration Wireless 5 GHz Band Statements Compliances Countries Operation Using 5 GHz Channels in the European Community Vii Power Cord Safety Safety Compliance Cord set must be UL-approved and CSA certified France et Pérou uniquement De type HO3VVF3GO.75 minimum Xii Table of Contents Command Line Interface Initial ConfigurationSystem Configuration Table of Contents Xvi Xvii Xviii Glossary Index Table of Contents Chapter Introduction Introduction Package Checklist Package Checklist Hardware Description Integrated High-Gain Antenna Hardware DescriptionExternal Antenna Options Ethernet Port Power Injector Module Wall- and Pole-Mounting Bracket Kits Receive Signal Strength Indicator Rssi BNC ConnectorGrounding Point Indoor Outdoor System Configuration Features and Benefits Features and Benefits Feature Parameter Default System Defaults Null System Defaults Ssid SMC System Defaults Introduction Access Point Topologies Network Configuration Ad Hoc Wireless LAN no Access Point or Bridge Network Configuration Infrastructure Wireless LAN Access Point Topologies Infrastructure Wireless LAN for Roaming Wireless PCs Bridge Link Topologies Bridge Link Topologies Point-to-Multipoint Configuration Point-to-Point Configuration Bridge Link Topologies Network Configuration Radio Path Planning Bridge Link Planning Bridge Link Planning Antenna Height Radio Path Planning 31 ft 9.5 m 29 ft 8.8 m 60 ft 18.3 m Antenna Position and Orientation Radio Interference Weather Conditions Grounding Ethernet Cabling Hardware Installation Hardware Installation Testing Basic Link OperationUsing the Pole-Mounting Bracket Mount the Unit Mount the Unit Mounting on Larger Diameter Poles Using the Wall-Mounting Bracket Connect External Antennas Connect External Antennas SMC2888W-M Connect Cables to the Unit Connect the Power InjectorConnect Cables to the Unit Hardware Installation Align Antennas Align Antennas Rssi Rssi BNC Hardware Installation Initial Configuration Initial Configuration Steps Initial Setup through the CLIInitial Configuration Initial Setup through the CLI Using the Web-based Management Setup Wizard Using the Web-based Management Setup Wizard Initial Configuration Using the Web-based Management Setup Wizard Initial Configuration Using the Web-based Management Setup Wizard Initial Configuration Using the Web-based Management Setup Wizard Initial Configuration System Configuration System Configuration Advanced Configuration Advanced Configuration Rssi System Identification Advanced Configuration Disabled TCP / IP Settings System Configuration Advanced Configuration Radius Advanced Configuration System Configuration PPPoE Settings System Configuration Advanced Configuration Authentication Advanced Configuration System Configuration Advanced Configuration System Configuration Advanced Configuration System Configuration Local Remote Supported Filter Control Number Radius Attribute Value System Configuration Advanced Configuration Snmp Advanced Configuration System Configuration Changing the Password Administration Upgrading Firmware Advanced Configuration System Configuration Advanced Configuration Enabling System Logging System Log Error Level Description Configuring Sntp Advanced Configuration +8 TAIPEI, Beijing Wireless Distribution System WDS System Configuration Bridge System Configuration Wlana Spanning Tree Protocol STP System Configuration Advanced Configuration System Configuration Advanced Configuration System Configuration Wlana Rssi Advanced Configuration Radio Interface Radio Interface Radio Settings a 802.11a Mode Radio Interface System Configuration Radio Interface 100 Radio Settings G 802.11g System Configuration Tkip Wired Equivalent Privacy WEP Security Bridge Mode Radio Interface Advanced Encryption Standard AES Radio Interface BIT WEP Encryption Interface wireless a command BIT AES Encryption Security Access Point Mode WEP Wired Equivalent Privacy WEP Radio Interface System Configuration WEP only WEP over Command Show interface wireless a or show interface wireless g Radio Interface Wi-Fi Protected Access WPA Radio Interface System Configuration Radio Interface System Configuration Configuration settings for WPA are summarized below Command not shown in example AP Status Status InformationStatus Information System Configuration Native Vlan Iapp State Station Status 121 Event Logs Status Information System Configuration Telnet Connection Using the Command Line InterfaceAccessing the CLI Command Line Interface Entering Commands Entering CommandsCommand Completion Keywords and Arguments Showing Commands Getting Help on Commands Partial Keyword Lookup Negating the Effect of CommandsUsing Command History Exec Commands Understanding Command Modes Configuration Commands Keystroke Function Command Line Processing Command Groups Command Groups Default Setting General CommandsConfigure Exit General CommandsEnd Syntax Command UsagePing Syntax Reset board configuration Reset Show line Show history System Management Commands System Management Commands Country countrycode Country Default Setting Syntax Prompt string no prompt Prompt Username System nameSyntax System name name no system name Syntax Username name Syntax Password password no password PasswordIp http port Syntax Ip http port port-numberno ip http port Ip http server Default Setting Command ModeSyntax Ip http server no ip http server Default Setting Show system Show version System Logging CommandsSystem Logging Commands Logging host Syntax Logging on no logging on Default SettingLogging on Logging level Syntax Logging console no logging console Default SettingLogging console Syntax Logging facility-type type Logging facility-type Show logging System Clock Commands Syntax Sntp-server ip 1 2 ip System Clock CommandsSntp-server ip Sntp-server enable Sntp-server daylight-saving Sntp-server date-time Syntax Sntp-server timezone hours Sntp-server timezone TAIPEI, Beijing Show sntp Snmp-server community Snmp Commands Syntax Snmp-server contact string no snmp-server contact Snmp CommandsSnmp-server contact Snmp-server enable server No snmp-server host Snmp-server host Syntax Snmp-server location text no snmp-server location Snmp-server location Show snmp Flash/File CommandsFlash/File Commands Syntax Bootfile filename Bootfile Copy Syntax Copy ftp tftp file copy config ftp tftp Delete Dir File information is shown below Radius-server address Radius ClientRadius Client Syntax Radius-server secondary port portnumber Radius-server port Radius-server retransmit Radius-server keySyntax Radius-server secondary key keystring Syntax Radius-server secondary retransmit numberofretries Show radius Radius-server timeoutSyntax Radius-server secondary timeout numberofseconds Authentication Authentication Enables the feature Syntax 802.1x supported required no 802.1x Syntax 802.1x broadcast-key-refresh-rate rate 802.1x broadcast-key-refresh-rate Syntax 802.1x session-key-refresh-rate rate 802.1x session-key-refresh-rate Default 802.1x session-timeout 802.1x supplicant Syntax Address filter default allowed denied Address filter default Syntax Address filter entry mac-addressallowed denied Address filter entry Syntax Address filter delete mac-address Address filter delete Syntax Mac-authentication server local remote Mac-authentication server Syntax Mac-authentication session-timeout seconds Mac-authentication session-timeoutShow authentication WDS Commands WDS Commands Syntax Wds channel a g none Wds channelWds mac-address Syntax No wds enable port-id Wds enable Show wds Bridge Commands Bridge Commands Bridge stp-bridge spanning-tree Bridge timeout Bridge stp-bridge forward-time Bridge stp-bridge hello-time Seconds Time in seconds. Range 6-40 seconds Bridge stp-bridge max-age Bridge stp-bridge priority Bridge stp-port path-cost Bridge stp-port priority Bridge stp-port portfast Bridge stp-port spanning-disabled Show bridge Syntax Show bridge Command Mode Filter local-bridge Filtering CommandsSyntax Filter local-bridge no filter local-bridge Default Filter ap-manage Filtering CommandsSyntax Filter ap-manage no filter ap-manage Default Filter ethernet-type enable Filter ethernet-type protocol Show filters PPPoE Commands Ip pppoe PPPoE CommandsSyntax Ip pppoe no ip pppoe Default Setting Syntax Pppoe ip allocation mode automatic static Pppoe ip allocation mode Pppoe ipcp dns Syntax Pppoe ipcp dns no pppoe ipcp dns Default Setting Syntax Pppoe lcp echo-interval interval Pppoe lcp echo-interval Pppoe lcp echo-failure Syntax Pppoe lcp echo-failure timeout Pppoe remote ip Pppoe local ipSyntax Pppoe local ip ip-address Syntax Pppoe remote ip ip-address Syntax Pppoe username username Pppoe username Syntax Pppoe password string Pppoe password Pppoe restart Pppoe service-nameSyntax Pppoe service-name string Show pppoe Ethernet Interface Commands Ethernet Interface CommandsSyntax Interface ethernet Default Setting Interface ethernet Dns server Ip address ip-address netmask gateway no ip address Ip address Ip dhcp Syntax Ip dhcp no ip dhcp Default Setting Shutdown Syntax Shutdown no shutdown Default Setting Show interface ethernet Syntax Show interface ethernet Default Setting Wireless Interface Commands Wireless Interface Commands Dtim-period Configures the rate at which stations Syntax Interface wireless a Interface wirelessDescription Syntax Description string no description Ssid string Ssid Closed-system Syntax Closed-system no closed-system Default SettingSpeed Syntax Speed speed Syntax Channel channel auto Channel Turbo Dtim-period Beacon-intervalSyntax Beacon-interval interval Syntax Dtim-period interval Syntax Fragmentation-length length Fragmentation-length Syntax Rts-threshold threshold Rts-threshold Transmit-powersignal-strength Transmit-power Syntax Max-association count Max-association Syntax Authentication open shared Encryption 111 No key wep index wdsaes Key Syntax Transmit-key index Transmit-key Syntax Multicast-cipher AES Tkip WEP Multicast-cipher 115 Syntax Wpa-clients required supported Wpa-clients Syntax Wpa-mode dynamic pre-shared-key Wpa-mode Syntax Wpa-preshared-key type value Wpa-preshared-key Syntax Wpa-psk-type type Wpa-psk-type Syntax Show interface wireless a g Show interface wireless OFF Show station Syntax Iapp no iapp Iapp CommandsIapp Vlan Commands Vlan Commands Vlan Syntax Vlan enable no vlan DefaultCommand Description Syntax Native-vlanid vlan-id Native-vlanid 126 Appendix a Troubleshooting Troubleshooting Maximum Channels Outdoor General SpecificationsData Rates Maximum Clients Specifications General Specifications DBi Integrated Panel Antenna Specifications Antenna Specifications Specifications Twisted-Pair Cable Assignments Appendix C Cables and Pinouts 10/100BASE-TX Pin Assignments Cables and Pinouts Twisted-Pair Cable Assignments Straight-Through WiringCrossover Wiring Pin DIN Ethernet Port Pinout Pin DIN Connector Pinout Pin DIN to RJ-45 Cable Wiring Pin DIN Connector Pinout Cables and Pinouts Backbone Access PointAuthentication Glossary Hypertext Transfer Protocol Http File Transfer Protocol FTPInternet Control Message Protocol Icmp Ieee 802.11a Open System Service Set Identifier SsidOrthogonal Frequency Division Multiplexing Odfm RTS Threshold Trivial File Transfer Protocol Tftp Simple Network Time Protocol Sntp Glossary-6 Index Index Index-3 Index-4 Page SMC2888W-S SMC2888W-M