SMC Networks 2.4GHz/5GHz 6-16

System Configuration

6-16

Authentication

Wireless clients can be authenticated for network access by

checking their MAC address against the local database

configured on the access point, or by using a database

configured on a central RADIUS server. Alternatively,

authentication can be implemented using the IEEE 802.1X

network access control protocol.

The access point can also operate in a 802.1X supplicant m ode.

This enables the access point itself and any bridge-connected

units to be authenticated with a RADIUS server using a

configured MD5 user name and password. This mechanism can

prevent rogue access points from gaining access to the network.

AP(config)#interface ethernet 7-91

Enter Ethernet configuration commands, o ne per line.

AP(if-ethernet)#ip pppoe 7-81

AP(if-ethernet)#pppoe username mike 7-87

AP(if-ethernet)#pppoe password 12345 7-88

AP(if-ethernet)#pppoe service-name class A 7-89

AP(if-ethernet)#pppoe ip allocation mode static 7-82

AP(if-ethernet)#pppoe local ip 10.7.1.20 0 7-86

AP(if-ethernet)#pppoe remote ip 192.168. 1.20 7-86

AP(if-ethernet)#pppoe ipcp dns 7-83

AP(if-ethernet)#pppoe lcp echo-interval 30 7-84

AP(if-ethernet)#pppoe lcp echo-failure 5 7-85

AP(if-ethernet)#pppoe restart 7-89

AP(if-ethernet)#end

AP#show pppoe 7-90

PPPoE Information

======================================== ==============

State : Link up

Username : mike

Service Name : classA

IP Allocation Mode : Static

DNS Negotiation : Enabled

Local IP : 10.7.1.200

Echo Interval : 30

Echo Failure : 5

======================================== ==============

AP#

Contents

Main Copyright i LIMITED WARRANTY L IMITED W ii iii C Federal Communication Commission Interference Statement IMPORTANT NOTE: FCC Radiation Exposure Statement iv Wireless 5 GHz Band Statements: EC Conformance Declaration Countries of Operation & Conditions of Use in the European v vi Operation Using 5 GHz Channels in the European vii Declaration of Conformity in Languages of the European viii Safety Compliance Power Co rd Safet y ix x xi xii T C OF ABLE C xiv 5 Initial Configuration . . . . . . . . . . . . . . . . . . . . . . . 5-1 6 System Configuration . . . . . . . . . . . . . . . . . . . . . 6-1 C xv C xvi C xvii C xviii Page Page 1-1 Chapter 1 Introduction 1-2 Package Checklist Page 1-4 Hardware Description Page 1-6 Power Injector Module Page 1-8 System Configuration Features and Benefits 1-9 Features and Benefits 1-10 System Defaults System Defaults 1-11 1-12 System Defaults 1-13 Page 2-1 Chapter 2 Network Configuration Access Point Topologies Network Configuration 2-2 Ad Hoc Wireless LAN (no Access Point or Bridge) Access Point Topologies 2-3 Infrastructure Wireless LAN Network Configuration 2-4 Infrastructure Wireless LAN for Roaming Wireless PCs Bridge Link Topologies 2-5 Bridge Link Topologies Page Bridge Link Topologies 2-7 Page 3-1 Chapter 3 Bridge Link Planning Radio Path Planning 3-2 3-3 Antenna Height 3-4 AB 3-5 Antenna Position and Orientation 3-6 Radio Interference 3-7 Weather Conditions 3-8 Ethernet Cabling Grounding 4-1 Chapter 4 Hardware Installation Testing Basic Link Operation Mount the Unit Page Page Connect External Antennas 4-5 Connect External Antennas 4-6 Connect Cables to the Unit 4-7 Connect Cables to the Unit Connect the Power Injector 4-8 Align Antennas 4-9 Align Antennas 4-10 Align Antennas 4-11 Page 5-1 Chapter 5 Initial Configuration 5-2 Initial Setup through the CLI Initial Configuration Steps Initial Setup through the CLI 5-3 5-4 Using the Web-based Management Setup Wizard Page Page Page 5-8 Page 5-10 Using the Web-based Management SetupWizard 5-11 Page Page Page 6-3 Advanced Configuration The Advanced Configuration pages include the following options. 6-4 System Identification 6-5 6-6 Page 6-8 6-9 6-10 Radius Page 6-12 6-13 PPPoE Settings 6-14 6-15 6-16 6-17 6-18 6-19 6-20 6-21 6-22 6-23 command. To display the current settings, use the show authentication command from the Exec mode. 6-24 6-25 Page 6-27 6-28 6-29 6-30 SNMP 6-31 6-32 Page 6-34 Page 6-36 6-37 Page 6-39 6-40 6-41 6-42 Page 6-44 6-45 Bridge Page 6-47 Spanning Tree Protocol (STP) 6-48 6-49 6-50 6-51 6-52 6-53 Page 6-55 6-56 Radio Interface Page 6-58 6-59 6-60 Page 6-62 Page 6-64 6-65 Page 6-67 6-68 6-69 6-70 command. To view the current security settings, use the show interface wireless a command. 6-71 6-72 Security (Access Point Mode) 6-73 wireless clients. A summary of wireless security considerations is listed in the following table. 6-74 6-75 6-76 6-77 6-78 show interface wireless a or show interface wireless g command. 6-79 6-80 6-81 6-82 6-83 6-84 6-85 6-86 Status Information 6-88 Status Information 6-89 Page Status Information 6-91 6-92 Event Logs Page Page 7-1 Chapter 7 Command Line Interface Using the Command Line Interface Accessing the CLI Telnet Connection 7-2 Entering Commands 7-4 Getting Help on Commands Entering Commands 7-5 Partial Keyword Lookup Negating the Effect of Commands Using Command History 7-6 Understanding Command Modes Exec Commands Entering Commands 7-7 Configuration Commands 7-8 Command Line Processing Command Groups 7-9 Command Groups The system commands can be broken down into the functional groups shown below. 7-10 General Commands configure General Commands 7-11 end exit 7-12 ping General Commands 7-13 reset 7-14 show history show line 7-15 The console port settings are fixed at the values shown below. System Management Commands 7-16 country 7-17 7-18 prompt 7-19 system name username 7-20 password ip http port 7-21 ip http server 7-22 show system 7-23 show version System Logging Commands 7-24 logging on logging host 7-25 logging console logging level 7-26 logging facility-type 7-27 show logging 7-28 System Clock Commands These commands are used to configure SNTP and system cl ock settings on the wireless bridge. 7-29 sntp-server ip 7-30 sntp-server enable 7-31 sntp-server date-time sntp-server daylight-saving 7-32 sntp-server timezone 7-33 show sntp 7-34 SNMP Commands snmp-server community SNMP Commands 7-35 snmp-server contact 7-36 snmp-server enable server SNMP Commands 7-37 snmp-server host 7-38 snmp-server location 7-39 show snmp Flash/File Commands 7-40 bootfile 7-41 copy 7-42 delete 7-43 dir 7-44 RADIUS Client 7-45 RADIUS Client radius-server address 7-46 radius-server port RADIUS Client 7-47 radius-server key radius-server retransmit 7-48 radius-server timeout show radius 7-49 Authentication 7-50 7-51 802.1x 7-52 802.1x broadcast-key-refresh-rate 7-53 802.1x session-key-refresh-rate 7-54 802.1x session-timeout 7-55 802.1x supplicant 7-56 address filter default 7-57 address filter entry 7-58 address filter delete 7-59 mac-authentication server Page WDS Commands 7-61 WDS Commands 7-62 wds channel wds mac-address WDS Commands 7-63 wds enable 7-64 show wds 7-65 Bridge Commands 7-66 bridge timeout bridge stp-bridge spanning-tree 7-67 bridge stp-bridge forward-time 7-68 bridge stp-bridge hello-time 7-69 bridge stp-bridge max-age 7-70 bridge stp-bridge priority 7-71 bridge stp-port path-cost 7-72 bridge stp-port priority 7-73 bridge stp-port portfast 7-74 bridge stp-port spanning-disabled 7-75 show bridge 7-76 Filtering Commands filter local-bridge Filtering Commands 7-77 filter ap-manage 7-78 filter ethernet-type enable Filtering Commands 7-79 filter ethernet-type protocol 7-80 show filters PPPoE Commands 7-81 ip pppoe 7-82 pppoe ip allocation mode 7-83 pppoe ipcp dns 7-84 pppoe lcp echo-interval 7-85 pppoe lcp echo-failure 7-86 pppoe local ip pppoe remote ip 7-87 pppoe username 7-88 pppoe password 7-89 pppoe service-name pppoe restart 7-90 show pppoe 7-91 Ethernet Interface Commands interface ethernet 7-92 dns server 7-93 ip address 7-94 ip dhcp 7-95 shutdown 7-96 show interface ethernet 7-97 Example Wireless Interface Commands 7-98 7-99 interface wireless description 7-100 ssid 7-101 closed-system speed 7-102 channel 7-103 turbo 7-104 beacon-interval dtim-period 7-105 fragmentation-length 7-106 rts-threshold 7-107 transmit-power 7-108 max-association 7-109 7-110 encryption 7-111 7-112 key 7-113 transmit-key 7-114 multicast-cipher 7-115 7-116 wpa-clients 7-117 wpa-mode 7-118 wpa-preshared-key 7-119 wpa-psk-type Page 7-121 Example show station This command shows the wireless clients associated with the access point. Command Mode Exec 7-122 IAPP Commands iapp VLAN Commands 7-123 VLAN Commands 7-124 vlan VLAN Commands 7-125 native-vlanid Page A-1 Appendix A Troubleshooting Troubleshooting A-2 B-1 Appendix B Specifications General Specifications Specifications B-2 General Specifications B-3 Specifications B-4 Antenna Specifications 17 dBi Integrated Panel Antenna Specifications B-5 Page C-1 Appendix C Cables and Pinouts Twisted-Pair Cable Assignments Cables and Pinouts C-2 10/100BASE-TX Pin Assignments Twisted-Pair Cable Assignments C-3 Straight-Through Wiring Crossover Wiring Cables and Pinouts 8-Pin DIN Connector Pinout S / EIA TIA568B RJ-45 Wiring 8-Pin DIN Connector Pinout C-5 8-Pin DIN to RJ-45 Cable Wiring Page Glossary-1 Glossary Glossary-2 Glossary-3 Glossary-4 Page Page Index Index-1 A B C G H I L M R S T Index-4 U V W