- DL manuals
- Proxim
- Wireless Access Point
- ORiNOCO AP-700
- User Giude
Proxim ORiNOCO AP-700 User Giude
Summary of ORiNOCO AP-700
Page 1
Orinoco ap-700 access point user guide.
Page 2
Ap-700 user guide 2 copyright © 2006 proxim wireless corporation. All rights reserved. Covered by one or more of the following u.S. Patents: 5,231,634; 5,875,179; 6,006,090; 5,809,060; 6,075,812; 5,077,753. This user guide and the software described in it are copyrighted with all rights reserved. No...
Page 3: Contents
Ap-700 user guide 3 contents 1 introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9 document conventions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ....
Page 4
Contents ap-700 user guide 4 dhcp server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38 dhcp relay agent. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ...
Page 5
Contents ap-700 user guide 5 management vlan . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 103 security profile . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ...
Page 6
Contents ap-700 user guide 6 forced reload procedure . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 141 setting ip address using serial port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ...
Page 7
Contents ap-700 user guide 7 auto configuration and the cli batch file . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 204 cli batch file format and syntax . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ...
Page 8
Ap-700 user guide 8 adjusting tx output power . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 222 antenna types and maximum gain . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ....
Page 9: Introduction
9 ap-700 user guide 1 introduction this chapter contains information on the following: • document conventions • introduction to wireless networking • guidelines for roaming • ieee 802.11 specifications • management and monitoring capabilities document conventions • ap refers to an ap-700 access poin...
Page 10
Introduction ap-700 user guide guidelines for roaming 10 figure 1-1 typical wireless network access infrastructure guidelines for roaming • typical voice network cell coverages vary based on environment. Proxim recommends having a site survey done professionally to ensure optimal performance. For pr...
Page 11
Introduction ap-700 user guide management and monitoring capabilities 11 802.11 direct sequence devices (that operate at 1 or 2 mbits/sec). Available frequency channels vary by regulatory domain and/or country. See available channels for details. Also in 1999, the ieee modified the 802.11 standard t...
Page 12
Introduction ap-700 user guide management and monitoring capabilities 12 snmp management in addition to the http and the cli interfaces, you can also manage and configure an ap using the simple network management protocol (snmp). Note that this requires an snmp manager program, like hp openview or c...
Page 13
Introduction ap-700 user guide management and monitoring capabilities 13 the ssh server (ap) hashost keys - a pair of asymmetric keys - a private key that resides on the ap and a public key that is distributed to clients that need to connect to the ap. As the client has knowledge of the server host ...
Page 14
14 ap-700 user guide 2 installation and initialization this chapter contains information on the following: • ap-700 hardware description – overview – antennas – active ethernet (power over ethernet) – led indicators • prerequisites • product package • system requirements • hardware installation • in...
Page 15
Installation and initialization ap-700 user guide ap-700 hardware description 15 figure 2-1 rear panel the ap-700 has been designed to rest horizontally on a flat surface, but can be wall- or ceiling- mounted with the long axis vertical. The unit includes screw slots in the bottom plastic for mounti...
Page 16
Installation and initialization ap-700 user guide ap-700 hardware description 16 figure 2-2 ap-700 antenna connectors when the ap is mounted on a wall, connector 1 corresponds to the horizontally polarized internal antenna, providing a coverage pattern parallel to the wall; connector 2 corresponds t...
Page 17
Installation and initialization ap-700 user guide prerequisites 17 figure 2-3 led indicators on the top panel the led indicators exhibit the following behavior: prerequisites before installing an ap-700, you need to gather certain network information. The following table identifies the information y...
Page 18
Installation and initialization ap-700 user guide prerequisites 18 snmpv3 authentication password if secure management is enabled, each access point requires a password for sending authenticated snmpv3 messages. The default password is public. The default snmpv3 username is administrator, with sha a...
Page 19
Installation and initialization ap-700 user guide product package 19 product package each ap-700 comes with the following: • ap-700 unit (with integrated 802.11a/b/g radio and active ethernet) • power adapter • one ceiling or wall mounting plate • security cover • one installation cd-rom that contai...
Page 20
Installation and initialization ap-700 user guide hardware installation 20 hardware installation required materials • ap-700 unit • mounting bracket with screws • power adapter • security cover perform the following procedures to install the ap hardware: • cabling the ap-700 • installing the securit...
Page 21
Installation and initialization ap-700 user guide hardware installation 21 cabling the ap-700 connect cables to the ap as follows: 1. Provide power to the ap, as follows: a. Plug the power cord into the power jack (the left port) and connect the unit to an ac power outlet (100~240v, 50~60hz). B. If ...
Page 22
Installation and initialization ap-700 user guide hardware installation 22 mounting the ap-700 to a ceiling 1. Attach the mounting plate to the bottom of the ap-700 by lining up the keyholes and attaching it with two screws. 2. Snap the tabs onto the ceiling t-bar. Rotate the ap-700 until it snaps o...
Page 23
Installation and initialization ap-700 user guide initialization 23 initialization the following sections detail how to initialize the ap using scantool, log in to the http interface, perform an initial configuration of the ap using the setup wizard, and download the required ap software. • using sc...
Page 24
Installation and initialization ap-700 user guide initialization 24 change your adapter setting at any time by clicking the select adapterbutton on the scan list screen. Note that the scantool network adapter selection screen will not appear if your computer only has one network adapter installed. F...
Page 25
Installation and initialization ap-700 user guide initialization 25 d. Enter a static ip address for the ap in the field provided. You must assign the unit a unique address that is valid on your ip subnet. Contact your network administrator if you need assistance selecting an ip address for the unit...
Page 26
Installation and initialization ap-700 user guide initialization 26 4. Enter the http password in the password field. Leave the user name field blank. For new units, the default http password is public. If you are logging on for the first time the setup wizard will launch automatically. Note: to pre...
Page 27
Installation and initialization ap-700 user guide initialization 27 figure 2-10 setup wizard setup wizard instructions 1. Click setup wizard to begin. If you do not wish to use the setup wizard, click exit. The setup wizard supports the following navigation options: • save & next button: each setup ...
Page 28
Installation and initialization ap-700 user guide initialization 28 5. Configure the basic wireless interface configuration settings: • select the operational mode as follows and click save & next: — 802.11a only mode: the radio uses the 802.11a standard only. — 802.11b mode only: the radio uses the...
Page 29
Installation and initialization ap-700 user guide initialization 29 7. When finished, click reboot on the summary screen to restart the ap and apply your changes. Installing the software proxim periodically releases updated software for the ap on its web site, http://support.Proxim.Com (knowledgebas...
Page 30
Installation and initialization ap-700 user guide initialization 30 a warning message advises you that a reboot of the device will be required for changes to take effect. Figure 2-12 warning message 5. Click ok to continue with the operation or cancel to abort the operation. 6. If the operation is u...
Page 31
Installation and initialization ap-700 user guide related topics 31 4. Enter the ip address of your tftp server in the field provided. 5. Enter the file name (including the file extension). If the file is located in the default tftp directory, you need enter only the file name. Otherwise, enter the ...
Page 32: System Status
32 ap-700 user guide 3 system status the first screen displayed after logging in is the system status screen. You can always return to this screen by clicking the status button. Figure 3-1 system status screen the system status screen provides the following information: • system status: this area pr...
Page 33: Advanced Configuration
33 ap-700 user guide 4 advanced configuration this chapter contains information on configuring settings in the following categories: • system : configure specific system information such as system name and contact information. • network: configure ip, dns client, dhcp server, dhcp relay agent, dhcp ...
Page 34
Advanced configuration ap-700 user guide 34 figure 4-1 configure main screen 2. Click the tab that corresponds to the parameter you want to configure. For example, click network to configure the access point’s tcp/ip settings. Each configure tab is described in the remainder of this chapter..
Page 35
Advanced configuration ap-700 user guide system 35 system you can configure and view the following parameters within the system configuration screen: • name: the name assigned to the ap. See the dynamic dns support and access point system naming convention sections for rules on naming the ap. • coun...
Page 36
Advanced configuration ap-700 user guide system 36 dynamic dns support dns is a distributed database mapping the user readable names and ip addresses (and more) of every registered system on the internet. Dynamic dns is a lightweight mechanism which allows for modification of the dns data of host sy...
Page 37
Advanced configuration ap-700 user guide network 37 network the network tab contains the following sub-tabs: • ip configuration • dhcp server • dhcp relay agent • link integrity • sntp (simple network time protocol) ip configuration this tab is used to configure the internet (tcp/ip) settings for th...
Page 38
Advanced configuration ap-700 user guide network 38 basic ip parameters • ip address assignment type: set this parameter to dynamic to configure the access point as a dynamic host configuration protocol (dhcp) client; the access point will obtain ip settings from a network dhcp server automatically ...
Page 39
Advanced configuration ap-700 user guide network 39 figure 4-4 dhcp server configuration screen you can configure and view the following parameters within the dhcp server configuration screen: note: you must reboot the access point before changes to any of these dhcp server parameters take effect. •...
Page 40
Advanced configuration ap-700 user guide network 40 note: the default lease time cannot be larger than the maximum lease time. If you set the maximum lease time, you should also set the default lease time to ensure that the default lease time is less than the maximum. – comment (optional) – status: ...
Page 41
Advanced configuration ap-700 user guide network 41 dhcp server ip address table the ap supports the configuration of a maximum of 10 server settings in the dhcp relay agents server table. At least one server must be configured to enable dhcp relay. To add entries to the table of dhcp relay agents, ...
Page 42
Advanced configuration ap-700 user guide network 42 figure 4-7 link integrity configuration screen sntp (simple network time protocol) sntp allows a network entity to communicate with time servers in the network/internet to retrieve and synchronize time of day information. When this feature is enabl...
Page 43
Advanced configuration ap-700 user guide network 43 figure 4-8 sntp configuration screen you can configure and view the following parameters within the sntp screen: • sntp status: select enable or disable from the drop-down menu. The selected status will determine which of the parameters on the sntp...
Page 44
Advanced configuration ap-700 user guide network 44 – year: enter the current year. – month: enter the month in digits (1-12). – day: enter the day in digits (1-31). – hour: enter the hour in digits (0-23). – minutes: enter the minutes in digits (0-59). – seconds: enter the seconds in digits (0-59)..
Page 45
Advanced configuration ap-700 user guide interfaces 45 interfaces from the interfaces tab, you configure the access point’s operational mode settings, power control settings, wireless interface settings and ethernet settings. You may also configure a wireless distribution system for ap-to-ap communi...
Page 46
Advanced configuration ap-700 user guide interfaces 46 • 802.11b/g mode: this is the default mode. Use this mode if you want to support a mix of 802.11b and 802.11g devices. • 802.11g-wifi mode: the 802.11g-wifi mode has been defined for wi-fi testing purposes. It is not recommended for use in your ...
Page 47
Advanced configuration ap-700 user guide interfaces 47 configuring 802.11d support perform the following procedure to enable 802.11d support and select the country code: 1. Click configure > interfaces > operational mode. 2. Select enable 802.11d. 3. Select the country code from the iso/iec 3166-1 c...
Page 48
Advanced configuration ap-700 user guide interfaces 48 wireless (802.11a/b/g radio) figure 4-10 wireless interface.
Page 49
Advanced configuration ap-700 user guide interfaces 49 you can view and configure the following parameters for the wireless interface: note: you must reboot the access point before any changes to these parameters take effect. • physical interface type: depending on the operational mode, this field r...
Page 50
Advanced configuration ap-700 user guide interfaces 50 note: turbo mode is supported in 802.11a mode in the fcc regulatory domain only. If turbo mode is enabled, then this is displayed in the web ui and the transmit speeds and channels pull-down menus are updated with the valid values. • dtim period...
Page 51
Advanced configuration ap-700 user guide interfaces 51 rts/cts medium reservation the 802.11 standard supports optional rts/cts communication based on packet size. Without rts/cts, a sending radio listens to see if another radio is already using the medium before transmitting a data packet. If the m...
Page 52
Advanced configuration ap-700 user guide interfaces 52 after wireless service resumes, the ap resumes beaconing, transmitting and receiving frames to/from the wireless interface and bridging the frames between the ethernet and the wireless interface. Traps generated during wireless service shutdown ...
Page 53
Advanced configuration ap-700 user guide interfaces 53 figure 4-12 channel blacklist table - edit screen wireless distribution system (wds) a wireless distribution system (wds) creates a link between two 802.11a, 802.11b, or 802.11b/g aps over their radio interfaces. This link relays traffic from on...
Page 54
Advanced configuration ap-700 user guide interfaces 54 • there are separate security settings for clients and wds links. The same wds link security mode must be configured (currently we only support none or wep) on each access point in the wds and the same wep key must be configured. • the wds link ...
Page 55
Advanced configuration ap-700 user guide interfaces 55 figure 4-15 adding wds links 6. Select whether to use encryption in the wds by checking the enable wds security mode checkbox. 7. If you enabled wds security mode, enter the encryption key 0 used for encryption between the wds links. 8. Enter th...
Page 56
Advanced configuration ap-700 user guide interfaces 56 figure 4-16 ethernet sub-tab for best results, proxim recommends that you configure the ethernet setting to match the speed and transmission mode of the device the access point is connected to (such as a hub or switch). If in doubt, leave this s...
Page 57
Advanced configuration ap-700 user guide management 57 management the management tab contains the following sub-tabs: • passwords • ip access table • services • automatic configuration (autoconfig) • hardware configuration reset (chrd) passwords you can configure the following passwords: • snmp read...
Page 58
Advanced configuration ap-700 user guide management 58 ip access table the management ip access table limits in-band management access to the ip addresses or range of ip addresses specified in the table. This feature applies to all management services (snmp, http, and cli) except for cli management ...
Page 59
Advanced configuration ap-700 user guide management 59 • secure management status: enables the further configuration of https access, snmpv3, and secure shell (ssh). After enabling secure management, you can choose to configure https (ssl) and secure shell access on the services tab, and to configur...
Page 60
Advanced configuration ap-700 user guide management 60 figure 4-17 management services configuration screen.
Page 61
Advanced configuration ap-700 user guide management 61 telnet configuration settings • telnet interface bitmask: select the interface (ethernet, wireless, all interfaces) from which you can manage the ap via telnet. This parameter can also be used to disable telnet management. • telnet port number: ...
Page 62
Advanced configuration ap-700 user guide management 62 note: when secure management is enabled on the ap, ssh will be enabled by default and cannot be disabled. Host keys must either be generated externally and uploaded to the ap (see uploading externally generated host keys ), generated manually, o...
Page 63
Advanced configuration ap-700 user guide management 63 serial configuration settings the serial port interface on the ap is enabled at all times. See setting ip address using serial port for information on how to access the cli interface via the serial port. You can configure and view the following ...
Page 64
Advanced configuration ap-700 user guide management 64 • radius profile for management access control: specifies the radius profile to be used for radius based management access. • local user status: enables or disables the local user when radius based management is enabled. The default local user i...
Page 65
Advanced configuration ap-700 user guide management 65 figure 4-19 automatic configuration screen set up automatic configuration for dynamic ip perform the following procedure to enable and set up automatic configuration when you have a dynamic ip address for the tftp server via dhcp. The configurat...
Page 66
Advanced configuration ap-700 user guide management 66 figure 4-20 dhcp options: setting the boot server host name 4. Add the boot server hostname and boot filename parameters to the available options list. 5. Set the value of the boot server hostname parameter to the hostname or ip address of the t...
Page 67
Advanced configuration ap-700 user guide management 67 ap is not protected, an unauthorized person could reset the ap to factory defaults and thus gain control of the ap. The user can disable the hardware configuration reset functionality to prevent unauthorized access. The hardware configuration re...
Page 68
Advanced configuration ap-700 user guide management 68 2. Check (enable) or uncheck (disable) the enable hardware configuration reset checkbox. 3. Change the default configuration reset password in the “configuration reset password” and “confirm” fields. 4. Click ok. 5. Reboot the ap. Note: it is im...
Page 69
Advanced configuration ap-700 user guide filtering 69 filtering the access point’s packet filtering features help control the amount of traffic exchanged between the wired and wireless networks. There are four sub-tabs under the filtering heading: • ethernet protocol • static mac • advanced • tcp/ud...
Page 70
Advanced configuration ap-700 user guide filtering 70 each mac address or mask is comprised of 12 hexadecimal digits (0-9, a-f) that correspond to a 48-bit identifier. (each hexadecimal digit represents 4 bits (0 or 1).) taken together, a mac address/mask pair specifies an address or a range of mac ...
Page 71
Advanced configuration ap-700 user guide filtering 71 • wireless client 2: 00:02:2d:51:32:12 • wireless client 3: 00:20:a6:12:4e:38 prevent two specific devices from communicating configure the following settings to prevent the wired server and wireless client 1 from communicating: • wired mac addre...
Page 72
Advanced configuration ap-700 user guide filtering 72 • wired mac address: 01:00:5e:00:32:4b • wired mask: ff:ff:ff:ff:ff:ff • wireless mac address: 00:00:00:00:00:00 • wireless mask: 00:00:00:00:00:00 result: the access point does not forward any packets that have a destination address of 01:00:5e:...
Page 73
Advanced configuration ap-700 user guide filtering 73 4. Set the destination port number (a value between 1 and 65535) to filter. See the iana web site at http://www.Iana.Org/assignments/port-numbers for a list of assigned port numbers and their descriptions. 5. Set the port type for the protocol: t...
Page 74
Advanced configuration ap-700 user guide alarms 74 alarms the alarms tab has the following sub-tabs: • groups • alarm host table • syslog • rogue scan groups alarm groups can be enabled or disabled via the web interface. Place a check mark in the box provided to enable a specific group. Remove the c...
Page 75
Advanced configuration ap-700 user guide alarms 75 security trap group wireless interface/card trap group operational trap group trap name description severity level oritrapinvalidencryptionkey invalid encryption key has been detected. Critical oritrapauthenticationfailure client authentication fail...
Page 76
Advanced configuration ap-700 user guide alarms 76 flash memory trap group tftp trap group oritrapdhcpfailed response to the dhcp client request not received; device not dynamically assigned an ip address major oritrapdnsclientlookupfailure dns client attempts to resolve a specified hostname (dns lo...
Page 77
Advanced configuration ap-700 user guide alarms 77 image trap group sntp trap group in addition, the ap supports these standard traps, which are always enabled: rfc 1215-trap bridge mib (rfc 1493) alarms all these alarm groups correspond to system alarms that are displayed in the system status scree...
Page 78
Advanced configuration ap-700 user guide alarms 78 syslog the syslog messaging system enables the ap to transmit event messages to a central server for monitoring and troubleshooting. The access point logs “session start (log-in)” and “session stop (log-out)” events for each wireless client as an al...
Page 79
Advanced configuration ap-700 user guide alarms 79 • syslog lowest priority logged: the ap will send event messages to the syslog server that correspond to the selected priority number and any priority numbers below it. For example, if set to 6, the ap will transmit event messages labeled priority 1...
Page 80
Advanced configuration ap-700 user guide alarms 80 client login authentication status 6 informational client logs in/authenticates. Message includes: • client mac address • authentication type = none, acl, radius mac, 802.1x • cipher type = none, wep, tkip, aes • status = allow, deny • ssid to which...
Page 81
Advanced configuration ap-700 user guide alarms 81 rogue scan the rogue scan feature provides an additional security level for wireless lan deployments. Rogue scan uses the selected wireless interface(s) for scanning its coverage area for access points and clients. A centralized network manager rece...
Page 82
Advanced configuration ap-700 user guide alarms 82 the figure above shows client 1 connected to a trusted ap and client 2 connected to a rogue ap. The trusted ap scans the networks, detects client 2, and notifies the network manager. The network manager uses snmp/cli to query the wired switch to fin...
Page 83
Advanced configuration ap-700 user guide alarms 83 • channel: the working channel of the detected station • snr: the snr value of the last frame from the station as received by the ap • bssid: the bssid field stores the: – mac address of the associated access point in the case of a client. – zero ma...
Page 84
Advanced configuration ap-700 user guide alarms 84 figure 4-26 rogue scan screen.
Page 85
Advanced configuration ap-700 user guide bridge 85 bridge the ap is a bridge between your wired and wireless networking devices. As a bridge, the functions performed by the ap include: • mac address learning • forward and filtering decision making • spanning tree protocol used for loop avoidance onc...
Page 86
Advanced configuration ap-700 user guide bridge 86 figure 4-27 spanning tree sub-tab storm threshold storm threshold is an advanced bridge setup option that you can use to protect the network against data overload by: • specifying a maximum number of frames per second as received from a single netwo...
Page 87
Advanced configuration ap-700 user guide bridge 87 • wireless threshold: enter the maximum allowed number of packets per second. Intra bss the wireless clients (or subscribers) that associate with a certain ap form the basic service set (bss) of a network infrastructure. By default, wireless subscri...
Page 88
Advanced configuration ap-700 user guide qos 88 qos wireless multimedia extensions (wme)/quality of service (qos) introduction the ap supports wireless multimedia enhancements, also known as wi-fi multimedia (wmm), which defines an intermediate solution for qos functionality until the ieee 802.11e s...
Page 89
Advanced configuration ap-700 user guide qos 89 3. Configure the qos maximum medium threshold for all admission controls. Admission will be granted if the new requested traffic stream and already admitted time is less than the medium maximum threshold. 4. To add a qos policy, click the add button in...
Page 90
Advanced configuration ap-700 user guide qos 90 9. Click ok. Priority mapping use this page to configure qos 802.1p to 802.1d priority mappings (for layer 2 policies) and ip dscp to 802.1d priority mappings (for layer 3 policies). The first entry in each table contains the recommended priority mappi...
Page 91
Advanced configuration ap-700 user guide qos 91 figure 4-31 add priority mapping entry 3. Select the 802.1p priority (from 0-7) for 802.1d priorities 0-7. 4. Click ok. 5. Click add in the ip precedence/dscp ranges and 802.1d priority table. 6. Select the ip dscp range for each 802.1d priority. 7. Cl...
Page 92
Advanced configuration ap-700 user guide qos 92 1. Click configure > qos > edca. Figure 4-32 edca tables 2. Click edit and configure the following parameters in each table: note: changes to edca parameters require a reboot of the ap to take effect. • index: read-only. Indicates the index of the acce...
Page 93
Advanced configuration ap-700 user guide qos 93 • tx op limit: the transmission opportunity limit. The tx op is an interval of time during which a particular qos enhanced client has the right to initiate a frame exchange sequence onto the wireless medium. The tx op limit defines the upper limit plac...
Page 94
Advanced configuration ap-700 user guide radius profiles 94 radius profiles configuring radius profiles on the ap allows the administrator to define a profile for radius servers used by the system or by a vlan. The network administrator can define radius servers per authentication mode and per vlan ...
Page 95
Advanced configuration ap-700 user guide radius profiles 95 figure 4-33 radius servers per vlan this figure shows a network with separate authentication servers for each authentication type and for each vlan. The clients in vlan 1 are authenticated using the authentication servers configured for vla...
Page 96
Advanced configuration ap-700 user guide radius profiles 96 figure 4-34 radius server profiles adding or modifying a radius server profile perform the following procedure to add a radius server profile and to configure its parameters. 1. Click add to create a new profile. To modify an existing profi...
Page 97
Advanced configuration ap-700 user guide radius profiles 97 figure 4-35 add radius server profile • server profile name: the profile name. This is the name used to associated a vlan to the profile. See configuring security profiles . The server profile name is also used in the configure > management...
Page 98
Advanced configuration ap-700 user guide radius profiles 98 • destination port: enter the port number which the ap and the server will use to communicate. By default, radius servers communicate on port 1812. • server vlan id: indicates the vlan that uses this radius server profile. If vlan is disabl...
Page 99
Advanced configuration ap-700 user guide radius profiles 99 note: this feature requires radius authentication using mac access control or 802.1x. Wireless clients configured in the access point’s static mac access control list are not tracked. Authentication and accounting attributes additionally, t...
Page 100
Advanced configuration ap-700 user guide radius profiles 100 – number of octets (bytes) received by subscriber. • acct-output-octets – number of octets (bytes) sent by subscriber. • acct-input-packets – number of packets received by subscriber. • acct-output-packets – number of packets sent by subsc...
Page 101
Advanced configuration ap-700 user guide ssid/vlan/security 101 ssid/vlan/security the ap provides several security features to protect your network from unauthorized access. This section gives an overview of vlans and then discusses the ssid/vlan/security configuration options in the ap: • vlan ove...
Page 102
Advanced configuration ap-700 user guide ssid/vlan/security 102 figure 4-36 components of a typical vlan vlan workgroups and traffic management access points that are not vlan-capable typically transmit broadcast and multicast traffic to all wireless network interface cards (nics). This process wast...
Page 103
Advanced configuration ap-700 user guide ssid/vlan/security 103 typical user vlan configurations vlans segment network traffic into workgroups, which enable you to limit broadcast and multicast traffic. Workgroups enable clients from different vlans to access different resources using the same netwo...
Page 104
Advanced configuration ap-700 user guide ssid/vlan/security 104 3. Place a check mark in the enable vlan tagging box. Provide access to a wireless host in the same workgroup the vlan feature can allow wireless clients to manage the ap. If the vlan management id matches a vlan user id, then those wir...
Page 105
Advanced configuration ap-700 user guide ssid/vlan/security 105 • eap-tunneled transport layer security (ttls): certificate-based authentication (a certificate is required on the server; a client’s username/password is tunneled to the server over a secure connection); supports automatic key distribu...
Page 106
Advanced configuration ap-700 user guide ssid/vlan/security 106 wpa is a replacement for wired equivalent privacy (wep), the encryption technique specified by the original 802.11 standard. Wep has several vulnerabilities that have been widely publicized. Wpa addresses these weaknesses and provides a...
Page 107
Advanced configuration ap-700 user guide ssid/vlan/security 107 for example, assume that the mac access control list contains mac addresses to block, and that wpa-psk is configured to allow access to clients with the appropriate psk passphrase. • if the mac acl status is set to enable, wpa-psk will ...
Page 108
Advanced configuration ap-700 user guide ssid/vlan/security 108 figure 4-39 security profile configuration 2. Click add in the security profile table to create a new entry. To modify an existing profile, select the profile and click edit. To delete an existing profile, select the profile and click d...
Page 109
Advanced configuration ap-700 user guide ssid/vlan/security 109 — for 152-bit encryption, an encryption key is 32 hexadecimal characters or 16 ascii characters. • encryption transmit key: select key 0, key 1, key 2, or key 3 • 802.1x station: • authentication mode: 802.1x • cipher: wep • encryption ...
Page 110
Advanced configuration ap-700 user guide ssid/vlan/security 110 figure 4-40 security profile table - add entries.
Page 111
Advanced configuration ap-700 user guide ssid/vlan/security 111 mac access the mac access sub-tab allows you to build a list of stations, identified by their mac addresses, authorized to access the network through the ap. The list is stored inside each ap within your network. Note that you must rebo...
Page 112
Advanced configuration ap-700 user guide ssid/vlan/security 112 the same system separated per vlan. See the security profile section for more information. Each ssid can support a unique vlan. In order for the ap to support multiple ssid/vlans, vlan tagging must be enabled. These parameters are confi...
Page 113
Advanced configuration ap-700 user guide ssid/vlan/security 113 • strict: radius mac acl settings are enabled. If a higher-priority authentication protocol is also enabled, radius mac acl settings will be applied in addition to the higher priority authentication protocol settings. See authentication...
Page 114
Advanced configuration ap-700 user guide ssid/vlan/security 114 figure 4-43 ssid/vlan edit entries screen (vlan tagging disabled) 9. Enter a unique network name (ssid) between 1 and 32 characters. This parameter is mandatory. Note: do not use quotation marks (single or double) in the network name; t...
Page 115
Advanced configuration ap-700 user guide ssid/vlan/security 115 note: enabling broadcast ssid will lower the total throughput of the ap by 2-4%. Note: enabling broadcast ssid simultaneously with rogue scan will cause a drift in the beacon interval and the occasional missing of beacons. 14.Set the 80...
Page 116
Advanced configuration ap-700 user guide ssid/vlan/security 116 figure 4-45 ssid/vlan edit entries screen (vlan tagging enabled) 4. Enter a unique network name (ssid) between 1 and 32 characters. This parameter is mandatory. Note: do not use quotation marks (single or double) in the network name; th...
Page 117
Advanced configuration ap-700 user guide ssid/vlan/security 117 • enable: the ssid is not advertised in the beacon, and the ap will respond to probe requests with an ssid only if the client has specified the ssid in the probe request. If the client sends a probe request with a null or “any” ssid, th...
Page 118: Monitoring
118 ap-700 user guide 5 monitoring this chapter discusses the following monitoring options: • version: provides version information for the access point’s system components. • icmp: displays statistics for internet control message protocol packets sent and received by the ap. • ip/arp table: display...
Page 119
Monitoring ap-700 user guide version 119 version from the http interface, click the monitor button and select the version tab. The list displayed provides you with information that may be pertinent when calling technical support. With this information, your technical support representative can verif...
Page 120
Monitoring ap-700 user guide icmp 120 icmp this tab provides statistical information for both received and transmitted messages directed to the ap. Not all icmp traffic on the network is counted in the icmp (internet control message protocol) statistics. Figure 5-3 icmp monitoring tab ip/arp table t...
Page 121
Monitoring ap-700 user guide learn table 121 learn table this tab displays information relating to network bridging. It reports the mac address for each node that the device has learned is on the network and the interface on which the node was detected. There can be up 10,000 entries in the learn ta...
Page 122
Monitoring ap-700 user guide radius 122 radius this tab provides radius authentication, eap/802.1x authentication, and accounting information for both the primary and backup radius servers for each radius server profile. Note: separate radius servers can be configured for each radius server profile....
Page 123
Monitoring ap-700 user guide interfaces 123 interfaces this tab displays statistics for the ethernet and wireless interfaces. Figure 5-8 interface monitoring tab (ethernet) description of interface statistics the following statistics are displayed for the ethernet interface only, the wireless interf...
Page 124
Monitoring ap-700 user guide interfaces 124 • duplicate frame count (wireless): the number of duplicate frames received. • ethernet chipset (ethernet): identifies the chipset used to realize the interface. • excessive collisions (ethernet): the number of frames for which transmission fails due to ex...
Page 125
Monitoring ap-700 user guide interfaces 125 • out discards (ethernet/wireless): the number of error-free outbound packets chosen to be discarded to prevent their being transmitted. One possible reason for discarding such a packet could be to free up buffer space. • out errors (ethernet/wireless): th...
Page 126
Monitoring ap-700 user guide station statistics 126 station statistics this tab displays information on wireless clients attached to the ap and on wireless distribution system links. Enable the monitoring station statistics feature (station statistics are disabled by default) by checking enable moni...
Page 127
Monitoring ap-700 user guide station statistics 127 • number of clients: the number of stations and wds links monitored. The following stations statistics are available through snmp: • octets received: the number of octets received from the associated wireless station (or wds link partner) by the ap...
Page 128: Commands
128 ap-700 user guide 6 commands this chapter contains information on the following command functions: • introduction to file transfer via tftp or http : describes the available file transfer methods. • update ap: download files via tftp or http to the ap. • retrieve file: upload configuration files...
Page 129
Commands ap-700 user guide introduction to file transfer via tftp or http 129 tftp file transfer guidelines a tftp server must be running and configured to point to the directory containing the file. If you do not have a tftp server installed on your system, install the tftp server from the orinoco ...
Page 130
Commands ap-700 user guide update ap 130 update ap update ap via tftp use the update ap via tftp tab to download configuration, ap image, license file, bootloader files, certificate and private key files, and cli batch file to the ap. A tftp server must be running and configured to point to the dire...
Page 131
Commands ap-700 user guide update ap 131 – cli batch file: a cli batch file that contains cli commands to configure the ap. This file will be executed by the ap immediately after being uploaded. See cli batch file for more information. • file operation: select either update ap or update ap & reboot....
Page 132
Commands ap-700 user guide retrieve file 132 a warning message gets displayed that advises the user that a reboot of the device will be required for changes to take effect. Figure 6-4 warning message 4. Click ok to continue with the operation or cancel to abort the operation. Note: an http file tran...
Page 133
Commands ap-700 user guide retrieve file 133 – double-click the tftp server icon on your desktop and locate the ip address assigned to the tftp server. • file name: enter the name of the file to be uploaded. • file type: select the type of file to be uploaded: config file, cli batch file, or cli bat...
Page 134
Commands ap-700 user guide retrieve file 134 click on the retrieve file button to initiate the operation. Figure 6-8 retrieve file via http command screen a confirmation message is displayed, asking if the user wants to proceed with retrieving the file. Figure 6-9 retrieve file confirmation dialog c...
Page 135
Commands ap-700 user guide reboot 135 on clicking the save button the save aswindow displays, where the user is prompted to choose the filename and location where the file is to be downloaded. Select an appropriate filename and location and click ok. Reboot use the reboot tab to save configuration c...
Page 136
Commands ap-700 user guide help link 136 help link use the help tab to configure the location of the ap help files. During initialization, the ap on-line help files are downloaded to the default location: c:/program files/orinoco/ap700/html/index.Htm. To enable the help button on each page of the we...
Page 137: Troubleshooting
137 ap-700 user guide 7 troubleshooting this chapter provides information on the following: • troubleshooting concepts • symptoms and solutions • recovery procedures • related applications note: this section helps you locate problems related to the ap device setup. For details about radius, tftp, se...
Page 138
Troubleshooting ap-700 user guide symptoms and solutions 138 serial link does not work 1. Make sure you are using a standard, straight-through, 9-pin serial cable. 2. Double-check the physical network connections. 3. Make sure your pc terminal program (such as hyperterminal) is active and configured...
Page 139
Troubleshooting ap-700 user guide symptoms and solutions 139 6. Perform the reset to factory default procedure in this guide. This will reset the unit to “dhcp” mode. If there is a dhcp server on the network, the dhcp server will assign an ip address to the ap. Http interface or telnet interface doe...
Page 140
Troubleshooting ap-700 user guide symptoms and solutions 140 client pc card does not work 1. Make sure you are using the latest pc card driver software. 2. Download and install the latest orinoco client software from http://support.Proxim.Com . Intermittent loss of connection 1. Make sure you are wi...
Page 141
Troubleshooting ap-700 user guide recovery procedures 141 4. Try using a different ethernet cable – if it works, there is probably a faulty connection over the long cable, or a bad rj-45 connection. 5. Check power plug and hub. 6. If the ethernet link goes down, check the cable, cable type, switch, ...
Page 142
Troubleshooting ap-700 user guide recovery procedures 142 1. While the unit is running, press the reset button. Note: you need to use a pin or the end of a paperclip to press a button. The ap reboots and the indicators begin to flash. Caution: by completing step 2, the firmware in the ap will be era...
Page 143
Troubleshooting ap-700 user guide recovery procedures 143 11.Click ok when prompted that the device has been updated successfully to return to the scan list screen. 12.Click cancel to close the scantool. 13.When the download process is complete, configure the ap as described in installation and init...
Page 144
Troubleshooting ap-700 user guide recovery procedures 144 [device name]> show [device name]> set ipaddrtype static [device name]> set ipaddr 10.0.0.12 [device name]> set ipsubmask 255.255.255.0 [device name]> set tftpipaddr 10.0.0.20 [device name]> set tftpfilename myimage.Bin [device name]> set ipg...
Page 145
Troubleshooting ap-700 user guide related applications 145 [device name]> please enter password: 4. Enter the cli password (default is public). The terminal displays a welcome message and then the cli prompt: [device name]> 5. Enter show ip. Network parameters appear: figure 7-1 result of “show ip” ...
Page 146
Troubleshooting ap-700 user guide related applications 146 if a tftp server is not configured and running, you will not be able to download and upload images and configuration files to/from the ap. Remember that the tftp server does not have to be local, so long as you have a valid tftp ip address. ...
Page 147: Command Line Interface (Cli)
147 ap-700 user guide a command line interface (cli) this section discusses the following: • general notes • command line interface (cli) variations • cli command types • using tables and strings • configuring the ap using cli commands • set basic configuration parameters using cli commands • other ...
Page 148
Command line interface (cli) ap-700 user guide general notes 148 • download vs. Upload - downloads transfer files to the access point. Uploads transfer files from the access point. The tftp server performs file transfers in both directions. • group - a logical collection of network parameter informa...
Page 149
Command line interface (cli) ap-700 user guide command line interface (cli) variations 149 command line interface (cli) variations administrators use the cli to control access point operation and monitor network statistics. The ap supports two types of cli: the bootloader cli and the normal cli. The...
Page 150
Command line interface (cli) ap-700 user guide cli command types 150 figure a-2 results of “show” bootloader cli command cli command types this guide divides cli commands into two categories: operational and parameter controls. Operational cli commands these commands affect access point behavior, su...
Page 151
Command line interface (cli) ap-700 user guide cli command types 151 [device-name]>? Figure a-3 result of “?” cli command example 2. Display specific commands to show all commands that start with specified letters, enter one or more letters, then ? With no space between letters and ?. [device-name]>...
Page 152
Command line interface (cli) ap-700 user guide cli command types 152 example 3b. Display parameters based on letter sequence this example shows entries for parameters that start with the letter “i”. The more letters you enter, the fewer the results returned. Notice that there is no space between the...
Page 153
Command line interface (cli) ap-700 user guide cli command types 153 example: [device-name]>download 192.168.1.100 apimage2 img 2. Syntax to display help and usage information: [device-name]>download 3. Syntax to execute the download command using previously set (stored) tftp parameters: [device-nam...
Page 154
Command line interface (cli) ap-700 user guide cli command types 154 reboot reboots access point after specified number of seconds. Specify a value of 0 (zero) for immediate reboot. [device-name]> reboot 0 [device-name]> reboot 30 search lists the parameters supported by the specified table. This li...
Page 155
Command line interface (cli) ap-700 user guide cli command types 155 syntax: [device-name]>show [device-name]>show [device-name]>show examples: [device-name]>show ipaddr [device-name]>show network [device-name]>show mgmtipaccesstbl “set” cli command sets (modifies) the value of the specified paramet...
Page 156
Command line interface (cli) ap-700 user guide cli command types 156 example 1 - set the access point ip address parameter syntax: [device-name]>set example: [device-name]> set ipaddr 10.0.0.12 ip address will be changed when you reboot the access point. The cli reminds you when rebooting is require...
Page 157
Command line interface (cli) ap-700 user guide cli command types 157 example 5 - show the group parameters this example illustrates how to view all elements of a group or table. Syntax: [device-name]> show example: [device-name]>show network the cli displays network group parameters. Note show netwo...
Page 158
Command line interface (cli) ap-700 user guide using tables and strings 158 using tables and strings working with tables each table element (or parameter) must be specified, as in the example below. [device-name]>set mgmtipaccesstbl 0 ipaddr 10.0.0.10 ipmask 255.255.0.0 below are the rules for creat...
Page 159
Command line interface (cli) ap-700 user guide configuring the ap using cli commands 159 the string delimiter does not have to be used for every string object. The single quote or double quote only has to be used for string objects that contain blank space characters. If the string object being used...
Page 160
Command line interface (cli) ap-700 user guide set basic configuration parameters using cli commands 160 • download an ap configuration file from your tftp server • backup your ap configuration file set system name, location and contact information note: system name must: • contain only letters, num...
Page 161
Command line interface (cli) ap-700 user guide set basic configuration parameters using cli commands 161 figure a-13 results of “show wif” cli command for an ap enable 802.11d support and set the country code perform the following command to enable 802.11d ieee 802.11d support for additional regulat...
Page 162
Command line interface (cli) ap-700 user guide set basic configuration parameters using cli commands 162 e nable and configure tx power control for the wireless interface the tx power control feature lets the user configure the transmit power level of the card in the ap. Perform the following comman...
Page 163
Command line interface (cli) ap-700 user guide other network settings 163 download an ap configuration file from your tftp server begin by starting your tftp program. It must be running and configured to transmit and receive. [device-name]>set tftpfilename tftpfiletype config tftpipaddr [device-name...
Page 164
Command line interface (cli) ap-700 user guide other network settings 164 • set ethernet speed and transmission mode • set interface management services • configure wireless distribution system • configure mac access control • set radius parameters • set rogue scan parameters • set hardware configur...
Page 165
Command line interface (cli) ap-700 user guide other network settings 165 configure dhcp relay servers perform the following command to configure and enable a dhcp relay server. The ap allows the configuration of a maximum of 10 server settings in the dhcp relay agents server table. [device-name]>se...
Page 166
Command line interface (cli) ap-700 user guide other network settings 166 set load balancing maximum number of clients [device-name]>set wif lbmaxclients set the multicast rate (802.11a) [device-name]>set wif 3 multrate (mbits/sec) > set the multicast rate (802.11b/g) [device-name]>set wif 3 multrat...
Page 167
Command line interface (cli) ap-700 user guide other network settings 167 set ethernet speed and transmission mode [device-name]>set etherspeed (see below) [device-name]>reboot 0 set interface management services edit management ip access table [device-name]>set mgmtipaccesstbl ipaddr ipmask configu...
Page 168
Command line interface (cli) ap-700 user guide other network settings 168 [device-name]>set sslstatus the user must change the ssl passphrase when uploading a new certificate/private key pair, which will have a corresponding passphrase. [device-name]>set sslpassphrase [device-name]>show http (to vie...
Page 169
Command line interface (cli) ap-700 user guide other network settings 169 configure wireless distribution system create/enable wds [device-name]>set wdstbl partnermacaddr status enable enable/disable wds [device-name]>set wdstbl status note: is 3.1–3.6. To determine the index, type show wdstbl at th...
Page 170
Command line interface (cli) ap-700 user guide other network settings 170 [device-name]>set radiustbl 1.2 profname "mac authentication" seraddrfmt 1 sernameorip 20.0.0.30 port 1812 ssecret public responsetm 3 maxretx 3 acctupdtintrvl 0 macaddrfmt 1 authlifetm 900 radaccinactivetmr 5 vlanid 33 status...
Page 171
Command line interface (cli) ap-700 user guide other network settings 171 set rogue scan parameters perform the following command to enable or disable rogue scan on a wireless interface and configure the scanning parameters. The cycletime parameter is only configured for background scanning mode. [d...
Page 172
Command line interface (cli) ap-700 user guide cli monitoring parameters 172 set security profile parameters configure a security profile with non secure security mode [device-name]>set secprofiletbl secmode nonsecure status enable example: [device-name]>set secprofiletbl 2 secmode nonsecure status ...
Page 173
Command line interface (cli) ap-700 user guide parameter tables 173 • statbridgetbl: displays the learn table. • statiapp: displays the iapp statistics. • statradius: displays the radius authentication statistics. • statif: displays information and statistics about the ethernet and wireless interfac...
Page 174
Command line interface (cli) ap-700 user guide parameter tables 174 – tftp server parameters - set up for file transfers; specify ip address, file name, and file type – ip access table parameters - configure range of ip addresses that can access the ap – auto configuration parameters - configure the...
Page 175
Command line interface (cli) ap-700 user guide parameter tables 175 system parameters * available only on aps with model numbers ending with -wd, -eu, or -uk . When available, this object must be configured before any inter- face parameters can be set. Name type value access cli parameter system gro...
Page 176
Command line interface (cli) ap-700 user guide parameter tables 176 country identifiers note: all countries may not be available on your ap. Country indoor/outdoor identifier argentina indoor ar1 australia indoor au1 outdoor au2 austria indoor at1 outdoor at2 belgium indoor be1 outdoor be2 bolivia i...
Page 177
Command line interface (cli) ap-700 user guide parameter tables 177 hungary indoor hu1 outdoor hu2 iceland indoor is1 outdoor is2 india indoor in1 ireland indoor ie1 outdoor ie2 italy indoor it1 outdoor it2 jamaica indoor jm1 outdoor jm2 latvia indoor lv1 outdoor lv2 liechtenstein indoor li1 outdoor...
Page 178
Command line interface (cli) ap-700 user guide parameter tables 178 inventory management information the inventory management commands display advanced information about the ap’s installed components. You may be asked to report this information to a representative if you contact customer support. Ne...
Page 179
Command line interface (cli) ap-700 user guide parameter tables 179 dns client for radius name resolution dhcp server parameters note: the dhcp server (dhcpstatus) can only be enabled after a dhcp ip pool table entry has been created. Dhcp server table for ip pools note: set either end ip address or...
Page 180
Command line interface (cli) ap-700 user guide parameter tables 180 dhcp relay group the dhcp relay group allows you to enable or disable dhcp relay agent status. Dhcp relay server table the dhcp relay server table contains the commands to set the table entries. The ap supports the configuration of ...
Page 181
Command line interface (cli) ap-700 user guide parameter tables 181 sntp parameters link integrity parameters link integrity ip target table name type value access cli parameter sntp group group n/a r sntp sntp status integer enable disable rw sntpstatus primary server name or ip address displaystri...
Page 182
Command line interface (cli) ap-700 user guide parameter tables 182 interface parameters wireless interface parameters the wireless interface group parameter is wif. The wireless interface uses table index 3. Common parameters to 802.11a, and 802.11/b/g * for 802.11a aps certified in the etsi and te...
Page 183
Command line interface (cli) ap-700 user guide parameter tables 183 802.11a only parameters * available for the 5 ghz frequency band in the fcc regulatory domain only. † super mode must be enabled on the wireless interface before turbo mode can be enabled. Distance between aps receive sensitivity th...
Page 184
Command line interface (cli) ap-700 user guide parameter tables 184 802.11b only parameters 802.11b/g only parameters name type value access cli parameter operating frequency channel integer 1 - 14; available channels vary by regulatory domain/country; see available channels rw channel multicast rat...
Page 185
Command line interface (cli) ap-700 user guide parameter tables 185 * also for 802.11g-wifi mode. 802.11g-wifi has been defined for wi-fi testing purposes; it is not recommended for use in your wireless network environment. † available in 802.11b/g or 802.11g modes only. Transmit rate integer32 for ...
Page 186
Command line interface (cli) ap-700 user guide parameter tables 186 channel blacklist parameters wireless distribution system (wds) parameters wireless interface ssid/vlan/profile parameters the wireless interface ssid table manages the ssids, vlans, security profiles, and radius profiles associated...
Page 187
Command line interface (cli) ap-700 user guide parameter tables 187 wireless distribution system (wds) security table parameters the wds security table manages wds related security objects. Ethernet interface parameters security profile integer32 user defined rw secprofile radius mac profile display...
Page 188
Command line interface (cli) ap-700 user guide parameter tables 188 management parameters secure management parameters snmp parameters http parameters * the help link must be set to an http address. Use the forward slash character ("/") rather than the backslash character ("\") when configur- ing th...
Page 189
Command line interface (cli) ap-700 user guide parameter tables 189 telnet parameters serial port parameters radius based management access parameters the radius based management access parameters allow you to enable http or telnet radius management access, enable or disable local user access, and c...
Page 190
Command line interface (cli) ap-700 user guide parameter tables 190 ssh parameters the following commands enable or disable ssh and set the ssh host key. The ap ssh feature, open-ssh, confirms to the ssh protocol, and supports ssh version 2. The following ssh clients have been verified to interopera...
Page 191
Command line interface (cli) ap-700 user guide parameter tables 191 ip access table parameters when creating table entries, you may either specify the argument name followed by argument value or simply enter the argument value. When only the argument value is specified, then enter the values in the ...
Page 192
Command line interface (cli) ap-700 user guide parameter tables 192 note: the filter operation type (passthru or block) applies only to the protocol filters that are enabled in this table. Static mac address filter table protocol name (optional) displaystring rw protoname status (optional) integer e...
Page 193
Command line interface (cli) ap-700 user guide parameter tables 193 proxy arp parameters ip arp filtering parameters broadcast filtering table tcp/udp port filtering the following parameters are used to enable/disable the port filter feature. Tcp/udp port filtering table the following parameters are...
Page 194
Command line interface (cli) ap-700 user guide parameter tables 194 alarms parameters snmp table host table parameters when creating table entries, you may either specifying the argument name followed by argument value. Cli applies default values to the omitted arguments. Due to the nature of the in...
Page 195
Command line interface (cli) ap-700 user guide parameter tables 195 note: when heartbeat is enabled, the ap periodically sends a message to the syslog server to indicate that it is active. The frequency with which the heartbeat message is sent depends upon the setting of the heartbeat interval. Sysl...
Page 196
Command line interface (cli) ap-700 user guide parameter tables 196 bridge parameters spanning tree parameters spanning tree priority and path cost table storm threshold parameters name type value access cli parameter spanning tree group n/a r stp spanning tree status integer enable disable (default...
Page 197
Command line interface (cli) ap-700 user guide parameter tables 197 storm threshold table intra bss subscriber blocking the following parameters control the intra bss traffic feature, which prevent wireless clients that are associated with the same ap from communicating with each other: packet forwa...
Page 198
Command line interface (cli) ap-700 user guide parameter tables 198 radius parameters general radius parameters radius server configuration parameters note: use a server name only if you have enabled the dns client functionality. See dns client for radius name resolution . Name type value access cli...
Page 199
Command line interface (cli) ap-700 user guide parameter tables 199 security parameters mac access control parameters mac access control table rogue scan configuration table the rogue scan configuration table allows you to enable or disable rogue scan and configure the scanning parameters. 802.1x pa...
Page 200
Command line interface (cli) ap-700 user guide parameter tables 200 security profile table the security profile table allows you to configure security profiles. A maximum of 16 security profiles are supported. Each security profile can contain one or more enabled security modes (non-secure station, ...
Page 201
Command line interface (cli) ap-700 user guide parameter tables 201 each ascii character corresponds to two hexadecimal digits. See ascii character chart for ascii/hexadecimal correspondence. Vlan/ssid parameters other parameters iapp parameters note: these parameters configure the inter access poin...
Page 202
Command line interface (cli) ap-700 user guide parameter tables 202 enabling qos configuring qos policies the qos group manages the qos policies: * qos must be enabled on the wireless interface before spectralink can be enabled. † a priority mapping needs to be specified for a qos policy. The priori...
Page 203
Command line interface (cli) ap-700 user guide parameter tables 203 specifying the mapping between ip precedence/dscp ranges and 802.1d priorities the qos ip dscp to 802.1d mapping table specifies the mapping between ip precedence/dscp ranges and 802.1d priorities. Qos enhanced distributed channel a...
Page 204
Command line interface (cli) ap-700 user guide cli batch file 204 defining the qos policy used for a wireless interface ssid the qos policy object configures the qos policy to be used per wireless interface ssid. This object is part of the wireless interface ssid table; the cli command for this tabl...
Page 205
Command line interface (cli) ap-700 user guide cli batch file 205 set ipaddr 11.0.0.66 set ipaddrtype static set ipsubmask 255.255.255.0 set ipgw 11.0.0.1 set wif 4 autochannel disable set wif 4 mode 1 set syslogstatus enable set sysloghbstatus enable set sysloghbinterval 5 set wif 4 netname london ...
Page 206
Command line interface (cli) ap-700 user guide cli batch file 206.
Page 207: Ascii Character Chart
207 ap-700 user guide b ascii character chart you can configure wep encryption keys in either hexadecimal or ascii format. Hexadecimal digits are 0-9 and a-f (not case sensitive). Ascii characters are 0-9, a-f, a-f (case sensitive), and punctuation marks. Each ascii character corresponds to two hexa...
Page 208: Specifications
208 ap-700 user guide c specifications • software features • hardware specifications • available channels software features the tables below list the software features available on the ap-700. • number of stations per bss • management functions • advanced bridging functions • medium access control (...
Page 209
Specifications ap-700 user guide software features 209 advanced bridging functions medium access control (mac) functions * dfs is required for 802.11a aps certified in the etsi and telec regulatory domain and operating in the middle frequency band. When acs is disabled, available channels are limite...
Page 210
Specifications ap-700 user guide software features 210 security functions * key lengths supported by 802.11a: 64-bit, 128-bit, and 152-bit. Key lengths supported by 802.11b: 64-bit and 128-bit. Key lengths supported by 802.11b/g: 64-bit, 128-bit, and 152-bit. † eap-md5, eap-tls, eap-ttls, and peap c...
Page 211
Specifications ap-700 user guide hardware specifications 211 hardware specifications physical specifications dimensions (h x w x l) = 1.1 x 4.8 x 7.1 in (28 x 122 x 180 mm) weight = .65 lb (.295 kg) electrical specifications voltage = 100 to 240 vac (50-60 hz) current = 0.2 amp power consumption = e...
Page 212
Specifications ap-700 user guide available channels 212 available channels available channels vary based on operational mode and country. To verify which channels are available for your product: 1. Locate the product model number on the underside of your ap unit or on the unit’s box. 2. Note the alp...
Page 213
Specifications ap-700 user guide available channels 213 channel allocation by country available channel bands in product models ending with -wd, -eu, and -uk depend on the selected country and mode of use (indoor/outdoor). See frequency bands for a list of channels in each band, and frequency bands ...
Page 214
Specifications ap-700 user guide available channels 214 germany indoor l, m, h 1 - 13 de1 de outdoor h 1 - 13 de2 de greece indoor l, m, h 1 - 13 gr1 gr outdoor h 1 - 13 gr2 gr guam indoor l, m, u, ism 1 - 11 gu1 gu outdoor m, u, ism 1 - 11 gu2 gu guatemala indoor l, m, u, ism 1 - 11 gt1 gt outdoor ...
Page 215
Specifications ap-700 user guide available channels 215 papua new guinea indoor l, m, u, ism 1 - 11 pg1 pg outdoor m, u, ism 1 - 11 pg2 pg poland indoor l, m, h 1 - 13 pl1 pl outdoor h 1 - 13 pl2 pl portugal indoor l, m, h 1 - 13 pt1 pt outdoor h 1 - 13 pt2 pt puerto rico indoor l, m, u, ism 1 - 11 ...
Page 216
216 ap-700 user guide d technical services and support see the following sections: • obtaining technical services and support • support options – proxim eservice web site support – telephone support – servpak support obtaining technical services and support if you are having trouble utilizing your p...
Page 217
Technical services and support ap-700 user guide support options 217 support options proxim eservice web site support the proxim eservice web site is available 7x24x365 at http://support.Proxim.Com . On the proxim eservice web site, you can access the following services: • new product registration: ...
Page 218: Statement of Warranty
218 ap-700 user guide e statement of warranty warranty coverage proxim wireless corporation warrants that its products are manufactured solely from new parts, conform substantially to specifications, and will be free of defects in material and workmanship for a warranty period of 1 year from the dat...
Page 219
Statement of warranty ap-700 user guide other information 219 calls to the customer service center for reasons other than product failure will not be accepted unless buyer has purchased a proxim wireless service contract or the call is made within the first thirty (30) days of the product’s invoice ...
Page 220: Professional Installation
220 ap-700 user guide f professional installation all products using external antennas must be professionally installed, and the transmit power of the system must be adjusted by the professional installers to ensure that the system eirp is in compliance with the limit specified by the regulatory aut...
Page 221
Professional installation ap-700 user guide installing external antennas 221 figure f-2 ap-700 antenna connectors 3. If installing a second external antenna (not recommended), connect the antenna cable to connector 2. 4. Close the external antenna access compartment. 5. If desired, manually select w...
Page 222
Professional installation ap-700 user guide adjusting tx output power 222 adjusting tx output power use the following formula in combination with the table of eirp limits in us and eu countries to calculate system transmit power (based on eirp limits) of these countries: tx power (dbm) = eirp limit ...