SMC Networks 2.4GHz/5GHz 6-74

System Configuration

6-74

Note: Although a WEP static key is not needed for WEP over 802.1X,

WPA over 802.1X, and WPA PSK modes, you must enable WEP

encryption through the web or CLI in order to enable all types of

encryption in the access point.

Wired Equivalent Privacy (WEP)

WEP provides a basic level of security, preventing unauthorized

access to the network and encrypting data transm itted between

wireless clients and the access point. WEP uses stati c shared

keys (fixed-length hexadecimal or alphanumeric strings) that are

manually distributed to all clients that want to use the network.

WEP is the security protocol initially spec ified in the IEEE 802.11

standard for wireless communications. Unfortunately, WEP has

been found to be seriously flawed and cannot be recommended

for a high level of network security. For more robust wireless

security, the access point provides Wi-Fi Protected Access (WPA)

for improved data encryption and user authentication.

Setting up shared keys enables the basic IEEE 802.11 Wired

Equivalent Privacy (WEP) on the access point to prevent

unauthorized access to the network.

If you choose to use WEP shared keys instead of an open

system, be sure to define at least one static WEP key for user

Contents

Main Copyright i LIMITED WARRANTY L IMITED W ii iii C Federal Communication Commission Interference Statement IMPORTANT NOTE: FCC Radiation Exposure Statement iv Wireless 5 GHz Band Statements: EC Conformance Declaration Countries of Operation & Conditions of Use in the European v vi Operation Using 5 GHz Channels in the European vii Declaration of Conformity in Languages of the European viii Safety Compliance Power Co rd Safet y ix x xi xii T C OF ABLE C xiv 5 Initial Configuration . . . . . . . . . . . . . . . . . . . . . . . 5-1 6 System Configuration . . . . . . . . . . . . . . . . . . . . . 6-1 C xv C xvi C xvii C xviii Page Page 1-1 Chapter 1 Introduction 1-2 Package Checklist Page 1-4 Hardware Description Page 1-6 Power Injector Module Page 1-8 System Configuration Features and Benefits 1-9 Features and Benefits 1-10 System Defaults System Defaults 1-11 1-12 System Defaults 1-13 Page 2-1 Chapter 2 Network Configuration Access Point Topologies Network Configuration 2-2 Ad Hoc Wireless LAN (no Access Point or Bridge) Access Point Topologies 2-3 Infrastructure Wireless LAN Network Configuration 2-4 Infrastructure Wireless LAN for Roaming Wireless PCs Bridge Link Topologies 2-5 Bridge Link Topologies Page Bridge Link Topologies 2-7 Page 3-1 Chapter 3 Bridge Link Planning Radio Path Planning 3-2 3-3 Antenna Height 3-4 AB 3-5 Antenna Position and Orientation 3-6 Radio Interference 3-7 Weather Conditions 3-8 Ethernet Cabling Grounding 4-1 Chapter 4 Hardware Installation Testing Basic Link Operation Mount the Unit Page Page Connect External Antennas 4-5 Connect External Antennas 4-6 Connect Cables to the Unit 4-7 Connect Cables to the Unit Connect the Power Injector 4-8 Align Antennas 4-9 Align Antennas 4-10 Align Antennas 4-11 Page 5-1 Chapter 5 Initial Configuration 5-2 Initial Setup through the CLI Initial Configuration Steps Initial Setup through the CLI 5-3 5-4 Using the Web-based Management Setup Wizard Page Page Page 5-8 Page 5-10 Using the Web-based Management SetupWizard 5-11 Page Page Page 6-3 Advanced Configuration The Advanced Configuration pages include the following options. 6-4 System Identification 6-5 6-6 Page 6-8 6-9 6-10 Radius Page 6-12 6-13 PPPoE Settings 6-14 6-15 6-16 6-17 6-18 6-19 6-20 6-21 6-22 6-23 command. To display the current settings, use the show authentication command from the Exec mode. 6-24 6-25 Page 6-27 6-28 6-29 6-30 SNMP 6-31 6-32 Page 6-34 Page 6-36 6-37 Page 6-39 6-40 6-41 6-42 Page 6-44 6-45 Bridge Page 6-47 Spanning Tree Protocol (STP) 6-48 6-49 6-50 6-51 6-52 6-53 Page 6-55 6-56 Radio Interface Page 6-58 6-59 6-60 Page 6-62 Page 6-64 6-65 Page 6-67 6-68 6-69 6-70 command. To view the current security settings, use the show interface wireless a command. 6-71 6-72 Security (Access Point Mode) 6-73 wireless clients. A summary of wireless security considerations is listed in the following table. 6-74 6-75 6-76 6-77 6-78 show interface wireless a or show interface wireless g command. 6-79 6-80 6-81 6-82 6-83 6-84 6-85 6-86 Status Information 6-88 Status Information 6-89 Page Status Information 6-91 6-92 Event Logs Page Page 7-1 Chapter 7 Command Line Interface Using the Command Line Interface Accessing the CLI Telnet Connection 7-2 Entering Commands 7-4 Getting Help on Commands Entering Commands 7-5 Partial Keyword Lookup Negating the Effect of Commands Using Command History 7-6 Understanding Command Modes Exec Commands Entering Commands 7-7 Configuration Commands 7-8 Command Line Processing Command Groups 7-9 Command Groups The system commands can be broken down into the functional groups shown below. 7-10 General Commands configure General Commands 7-11 end exit 7-12 ping General Commands 7-13 reset 7-14 show history show line 7-15 The console port settings are fixed at the values shown below. System Management Commands 7-16 country 7-17 7-18 prompt 7-19 system name username 7-20 password ip http port 7-21 ip http server 7-22 show system 7-23 show version System Logging Commands 7-24 logging on logging host 7-25 logging console logging level 7-26 logging facility-type 7-27 show logging 7-28 System Clock Commands These commands are used to configure SNTP and system cl ock settings on the wireless bridge. 7-29 sntp-server ip 7-30 sntp-server enable 7-31 sntp-server date-time sntp-server daylight-saving 7-32 sntp-server timezone 7-33 show sntp 7-34 SNMP Commands snmp-server community SNMP Commands 7-35 snmp-server contact 7-36 snmp-server enable server SNMP Commands 7-37 snmp-server host 7-38 snmp-server location 7-39 show snmp Flash/File Commands 7-40 bootfile 7-41 copy 7-42 delete 7-43 dir 7-44 RADIUS Client 7-45 RADIUS Client radius-server address 7-46 radius-server port RADIUS Client 7-47 radius-server key radius-server retransmit 7-48 radius-server timeout show radius 7-49 Authentication 7-50 7-51 802.1x 7-52 802.1x broadcast-key-refresh-rate 7-53 802.1x session-key-refresh-rate 7-54 802.1x session-timeout 7-55 802.1x supplicant 7-56 address filter default 7-57 address filter entry 7-58 address filter delete 7-59 mac-authentication server Page WDS Commands 7-61 WDS Commands 7-62 wds channel wds mac-address WDS Commands 7-63 wds enable 7-64 show wds 7-65 Bridge Commands 7-66 bridge timeout bridge stp-bridge spanning-tree 7-67 bridge stp-bridge forward-time 7-68 bridge stp-bridge hello-time 7-69 bridge stp-bridge max-age 7-70 bridge stp-bridge priority 7-71 bridge stp-port path-cost 7-72 bridge stp-port priority 7-73 bridge stp-port portfast 7-74 bridge stp-port spanning-disabled 7-75 show bridge 7-76 Filtering Commands filter local-bridge Filtering Commands 7-77 filter ap-manage 7-78 filter ethernet-type enable Filtering Commands 7-79 filter ethernet-type protocol 7-80 show filters PPPoE Commands 7-81 ip pppoe 7-82 pppoe ip allocation mode 7-83 pppoe ipcp dns 7-84 pppoe lcp echo-interval 7-85 pppoe lcp echo-failure 7-86 pppoe local ip pppoe remote ip 7-87 pppoe username 7-88 pppoe password 7-89 pppoe service-name pppoe restart 7-90 show pppoe 7-91 Ethernet Interface Commands interface ethernet 7-92 dns server 7-93 ip address 7-94 ip dhcp 7-95 shutdown 7-96 show interface ethernet 7-97 Example Wireless Interface Commands 7-98 7-99 interface wireless description 7-100 ssid 7-101 closed-system speed 7-102 channel 7-103 turbo 7-104 beacon-interval dtim-period 7-105 fragmentation-length 7-106 rts-threshold 7-107 transmit-power 7-108 max-association 7-109 7-110 encryption 7-111 7-112 key 7-113 transmit-key 7-114 multicast-cipher 7-115 7-116 wpa-clients 7-117 wpa-mode 7-118 wpa-preshared-key 7-119 wpa-psk-type Page 7-121 Example show station This command shows the wireless clients associated with the access point. Command Mode Exec 7-122 IAPP Commands iapp VLAN Commands 7-123 VLAN Commands 7-124 vlan VLAN Commands 7-125 native-vlanid Page A-1 Appendix A Troubleshooting Troubleshooting A-2 B-1 Appendix B Specifications General Specifications Specifications B-2 General Specifications B-3 Specifications B-4 Antenna Specifications 17 dBi Integrated Panel Antenna Specifications B-5 Page C-1 Appendix C Cables and Pinouts Twisted-Pair Cable Assignments Cables and Pinouts C-2 10/100BASE-TX Pin Assignments Twisted-Pair Cable Assignments C-3 Straight-Through Wiring Crossover Wiring Cables and Pinouts 8-Pin DIN Connector Pinout S / EIA TIA568B RJ-45 Wiring 8-Pin DIN Connector Pinout C-5 8-Pin DIN to RJ-45 Cable Wiring Page Glossary-1 Glossary Glossary-2 Glossary-3 Glossary-4 Page Page Index Index-1 A B C G H I L M R S T Index-4 U V W