- DL manuals
- Proxim
- Wireless Access Point
- ORiNOCO AP-700
- User Manual
Proxim ORiNOCO AP-700 User Manual
Summary of ORiNOCO AP-700
Page 1
Orinoco ap-700 access point user guide.
Page 2
Ap-700 user guide 2 copyright © 2005 proxim corporation. All rights reserved. Covered by one or more of the following u.S. Patents: 5,231,634; 5,875,179; 6,006,090; 5,809,060; 6,075,812; 5,077,753. This user’s guide and the software described in it are copyrighted with all rights reserved. No part o...
Page 3: Contents
Ap-700 user guide 3 contents 1 introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9 document conventions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ....
Page 4
Contents ap-700 user guide 4 ip configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38 dhcp server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ....
Page 5
Contents ap-700 user guide 5 management vlan . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 105 security profile . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ...
Page 6
Contents ap-700 user guide 6 forced reload procedure . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 142 setting ip address using serial port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ...
Page 7
Contents ap-700 user guide 7 cli batch file . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 201 auto configuration and the cli batch file . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ...
Page 8
Ap-700 user guide 8 caution: exposure to radio frequency radiation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 218 modifications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ....
Page 9: Introduction
9 ap-700 user guide 1 introduction this chapter contains information on the following: • document conventions • introduction to wireless networking • guidelines for roaming • ieee 802.11 specifications • management and monitoring capabilities document conventions • ap refers to an ap-700 access poin...
Page 10
Introduction ap-700 user guide guidelines for roaming 10 figure 1-1 typical wireless network access infrastructure guidelines for roaming • typical voice network cell coverages vary based on environment. Proxim recommends having a site survey done professionally to ensure optimal performance. For pr...
Page 11
Introduction ap-700 user guide management and monitoring capabilities 11 802.11 direct sequence devices (that operate at 1 or 2 mbits/sec). Available frequency channels vary by regulatory domain and/or country. See available channels for details. Also in 1999, the ieee modified the 802.11 standard t...
Page 12
Introduction ap-700 user guide management and monitoring capabilities 12 snmp management in addition to the http and the cli interfaces, you can also manage and configure an ap using the simple network management protocol (snmp). Note that this requires an snmp manager program, like hp openview or c...
Page 13
Introduction ap-700 user guide management and monitoring capabilities 13 the ssh server (ap) has host keys - a pair of asymmetric keys - a private key that resides on the ap and a public key that is distributed to clients that need to connect to the ap. As the client has knowledge of the server host...
Page 14
14 ap-700 user guide 2 installation and initialization this chapter contains information on the following: • ap-700 hardware description – overview – antennas – active ethernet – led indicators • prerequisites • product package • system requirements • hardware installation • initialization – using s...
Page 15
Installation and initialization ap-700 user guide ap-700 hardware description 15 figure 2-1 rear panel the ap-700 has been designed to rest horizontally on a flat surface, but can be wall- or ceiling- mounted with the long axis vertical. The unit includes screw slots in the bottom plastic for mounti...
Page 16
Installation and initialization ap-700 user guide ap-700 hardware description 16 vertically polarized internal antenna, and connector 2 corresponds to the horizontally polarized internal antenna. Plugging an external antenna in to the antenna connector disables the corresponding internal antenna. Th...
Page 17
Installation and initialization ap-700 user guide prerequisites 17 the led indicators exhibit the following behavior: prerequisites before installing an ap-700, you need to gather certain network information. The following table identifies the information you need. Indication power wireless interfac...
Page 18
Installation and initialization ap-700 user guide prerequisites 18 client ip address pool allocation scheme the access point can automatically provide ip addresses to clients as they sign on. The network administrator typically provides the ip pool range. Dns server ip address the network administra...
Page 19
Installation and initialization ap-700 user guide product package 19 product package each ap-700 comes with the following: • ap-700 unit (with integrated 802.11a/b/g radio and active ethernet) • power adapter • one ceiling or wall mounting plate • security cover • one installation cd-rom that contai...
Page 20
Installation and initialization ap-700 user guide hardware installation 20 hardware installation required materials • ap-700 unit • mounting bracket with screws • power adapter • security cover • quick start flyer perform the following procedures to install the ap hardware: • cabling the ap-700 • in...
Page 21
Installation and initialization ap-700 user guide hardware installation 21 2. Attach one end of an ethernet cable to the ap's lan port (the center port, labeled “lan”) and the other end to a network hub or switch. 3. Optionally, connect an rs-232 cable to the rs-232 console port (the right port, lab...
Page 22
Installation and initialization ap-700 user guide hardware installation 22 figure 2-5 ap-700 mounting plate mounting the ap-700 to a wall 1. Put the mounting plate up to the wall. 2. Screw through the mounting plate. 3. Place the ap up against the mounting plate. Orient the ap with the long access v...
Page 23
Installation and initialization ap-700 user guide hardware installation 23 figure 2-6 opening the antenna compartment 2. There are two antenna connectors in the ap-700, labeled 1 and 2. Connect the antenna cable to connector 1 (the connector closer to the led panel in the compartment). Figure 2-7 ap...
Page 24
Installation and initialization ap-700 user guide initialization 24 initialization the following sections detail how to initialize the ap using scantool, log in to the http interface, perform an initial configuration of the ap using the setup wizard, and download the required ap software. • using sc...
Page 25
Installation and initialization ap-700 user guide initialization 25 change your adapter setting at any time by clicking the select adapter button on the scan list screen. Note that the scantool network adapter selection screen will not appear if your computer only has one network adapter installed. ...
Page 26
Installation and initialization ap-700 user guide initialization 26 d. Enter a static ip address for the ap in the field provided. You must assign the unit a unique address that is valid on your ip subnet. Contact your network administrator if you need assistance selecting an ip address for the unit...
Page 27
Installation and initialization ap-700 user guide initialization 27 4. Enter the http password in the password field. Leave the user name field blank. For new units, the default http password is public. If you are logging on for the first time the setup wizard will launch automatically. Note: to pre...
Page 28
Installation and initialization ap-700 user guide initialization 28 figure 2-12 setup wizard setup wizard instructions 1. Click setup wizard to begin. The setup wizard supports the following navigation options: • save & next button: each setup wizard screen has a save & next button. Click this butto...
Page 29
Installation and initialization ap-700 user guide initialization 29 — 802.11g-wifi: 802.11g-wifi has been defined for wi-fi testing purporses. It is not recommended for use in your wireless network environment. Note: in countries in which 802.11a (5 ghz) is not available for use, the airspeed ap541 ...
Page 30
Installation and initialization ap-700 user guide initialization 30 download the software 1. In your web browser, go to http://support.Proxim.Com. 2. If prompted, create an account to gain access. Note: the knowledgebase is available to all website visitors. First-time users will be asked to create ...
Page 31
Installation and initialization ap-700 user guide initialization 31 figure 2-14 warning message 5. Click ok to continue with the operation or cancel to abort the operation. 6. If the operation is unsuccessful, you will receive an error message. If this occurs, see the troubleshooting chapter or atte...
Page 32
Installation and initialization ap-700 user guide related topics 32 install updates from your tftp server using the cli 1. Download the latest software to http://support.Proxim.Com (knowledgebase answer id 1686). See download the software for instructions). 1. Copy the latest software updates to you...
Page 33: System Status
33 ap-700 user guide 3 system status the first screen displayed after logging in is the system statusscreen. You can always return to this screen by clicking the status button. Figure 3-1 system status screen the system status screen provides the following information: • system status: this area pro...
Page 34: Advanced Configuration
34 ap-700 user guide 4 advanced configuration this chapter contains information on configuring settings in the following categories: • system : configure specific system information such as system name and contact information. • network: configure ip, dns client, dhcp server, dhcp relay agent, dhcp ...
Page 35
Advanced configuration ap-700 user guide 35 figure 4-1 configure main screen 2. Click the tab that corresponds to the parameter you want to configure. For example, click network to configure the access point’s tcp/ip settings. Each configure tab is described in the remainder of this chapter..
Page 36
Advanced configuration ap-700 user guide system 36 system you can configure and view the following parameters within the system configuration screen: • name: the name assigned to the ap. See the dynamic dns support and access point system naming convention sections for rules on naming the ap. • loca...
Page 37
Advanced configuration ap-700 user guide system 37 access point system naming convention the access point's system name is used as its host name. In order to prevent access points with default configurations from registering similar host names in dns, the default system name of the access point is u...
Page 38
Advanced configuration ap-700 user guide network 38 network the network tab contains the following sub-tabs: • ip configuration • dhcp server • dhcp relay agent • link integrity • sntp (simple network time protocol) ip configuration this tab is used to configure the internet (tcp/ip) settings for th...
Page 39
Advanced configuration ap-700 user guide network 39 basic ip parameters • ip address assignment type: set this parameter to dynamic to configure the access point as a dynamic host configuration protocol (dhcp) client; the access point will obtain ip settings from a network dhcp server automatically ...
Page 40
Advanced configuration ap-700 user guide network 40 figure 4-4 dhcp server configuration screen you can configure and view the following parameters within the dhcp server configuration screen: note: you must reboot the access point before changes to any of these dhcp server parameters take effect. •...
Page 41
Advanced configuration ap-700 user guide network 41 – status: ip pools are enabled upon entry in the table. You can also disable or delete entries by changing this field’s value. Note: you must reboot the access point before changes to any of these dhcp server parameters take effect. Dhcp relay agen...
Page 42
Advanced configuration ap-700 user guide network 42 figure 4-6 dhcp server ip address table - edit entries to add an entry, enter the ip address of the dhcp server and a comment (optional), and click ok. To edit an entry, make changes to the appropriate entry. Enable or disable the entry by choosing...
Page 43
Advanced configuration ap-700 user guide network 43 figure 4-7 link integrity configuration screen sntp (simple network time protocol) sntp allows a network entity to communicate with time servers in the network/internet to retrieve and synchronize time of day information. When this feature is enabl...
Page 44
Advanced configuration ap-700 user guide network 44 figure 4-8 sntp configuration screen you can configure and view the following parameters within the sntp screen: • sntp status: select enable or disable from the drop-down menu. The selected status will determine which of the parameters on the sntp...
Page 45
Advanced configuration ap-700 user guide network 45 – year: enter the current year. – month: enter the month in digits (1-12). – day: enter the day in digits (1-31). – hour: enter the hour in digits (0-23). – minutes: enter the minutes in digits (0-59). – seconds: enter the seconds in digits (0-59)..
Page 46
Advanced configuration ap-700 user guide interfaces 46 interfaces from the interfaces tab, you configure the access point’s operational mode settings, power control settings, wireless interface settings and ethernet settings. You may also configure a wireless distribution system for ap-to-ap communi...
Page 47
Advanced configuration ap-700 user guide interfaces 47 • 802.11g-wifi mode: the 802.11g-wifi mode has been defined for wi-fi testing purporses. It is not recommended for use in your wireless network environment. Note: in countries in which 802.11a (5 ghz) is not available for use, the ap-700 provide...
Page 48
Advanced configuration ap-700 user guide interfaces 48 3. Select the country code from the iso/iec 3166-1 countrycode drop-down menu. 4. Click ok. 5. Configure transmit power control and transmit power level if required. Tx power control/transmit power level transmit power control uses standard 802....
Page 49
Advanced configuration ap-700 user guide interfaces 49 wireless (802.11a/b/g radio) figure 4-10 wireless interface.
Page 50
Advanced configuration ap-700 user guide interfaces 50 you can view and configure the following parameters for the wireless interface: note: you must reboot the access point before any changes to these parameters take effect. • physical interface type: depending on the operational mode, this field r...
Page 51
Advanced configuration ap-700 user guide interfaces 51 note: turbo mode is supported in 802.11a and 802.11g mode. If turbo mode is enabled, then this is displayed in the web ui and the transmit speeds and channels pull-down menus are updated with the valid values. • dtim period: the deferred traffic...
Page 52
Advanced configuration ap-700 user guide interfaces 52 rts/cts medium reservation the 802.11 standard supports optional rts/cts communication based on packet size. Without rts/cts, a sending radio listens to see if another radio is already using the medium before transmitting a data packet. If the m...
Page 53
Advanced configuration ap-700 user guide interfaces 53 traps generated during wireless service shutdown (and resume) the following traps are generated during wireless service shutdown and resume, and are also sent to any configured syslog server. When the wireless service is shut down on a wireless ...
Page 54
Advanced configuration ap-700 user guide interfaces 54 figure 4-12 channel blacklist table - edit screen wireless distribution system (wds) a wireless distribution system (wds) creates a link between two 802.11a, 802.11b, or 802.11b/g aps over their radio interfaces. This link relays traffic from on...
Page 55
Advanced configuration ap-700 user guide interfaces 55 • there are separate security settings for clients and wds links. The same wds link security mode must be configured (currently we only support none or wep) on each access point in the wds and the same wep key must be configured. • the wds link ...
Page 56
Advanced configuration ap-700 user guide interfaces 56 figure 4-15 adding wds links 6. Select whether to use encryption in the wds by checking the enable wds security mode checkbox. 7. If you enabled wds security mode, enter the encryption key 0 used for encryption between the wds links. 8. Enter th...
Page 57
Advanced configuration ap-700 user guide interfaces 57 figure 4-16 ethernet sub-tab for best results, proxim recommends that you configure the ethernet setting to match the speed and transmission mode of the device the access point is connected to (such as a hub or switch). If in doubt, leave this s...
Page 58
Advanced configuration ap-700 user guide management 58 management the management tab contains the following sub-tabs: • passwords • ip access table • services • automatic configuration (autoconfig) • hardware configuration reset (chrd) passwords you can configure the following passwords: • snmp read...
Page 59
Advanced configuration ap-700 user guide management 59 ip access table the management ip access table limits in-band management access to the ip addresses or range of ip addresses specified in the table. This feature applies to all management services (snmp, http, and cli) except for cli management ...
Page 60
Advanced configuration ap-700 user guide management 60 • secure management status: enables the further configuration of https access, snmpv3, and secure shell (ssh). After enabling secure management, you can choose to configure https (ssl) and secure shell access on the services tab, and to configur...
Page 61
Advanced configuration ap-700 user guide management 61 figure 4-17 management services configuration screen.
Page 62
Advanced configuration ap-700 user guide management 62 telnet configuration settings • telnet interface bitmask: select the interface (ethernet, wireless, all interfaces) from which you can manage the ap via telnet. This parameter can also be used to disable telnet management. • telnet port number: ...
Page 63
Advanced configuration ap-700 user guide management 63 note: when secure management is enabled on the ap, ssh will be enabled by default and cannot be disabled. Host keys must either be generated externally and uploaded to the ap (see uploading externally generated host keys ), generated manually, o...
Page 64
Advanced configuration ap-700 user guide management 64 serial configuration settings the serial port interface on the ap is enabled at all times. See setting ip address using serial port for information on how to access the cli interface via the serial port. You can configure and view the following ...
Page 65
Advanced configuration ap-700 user guide management 65 • radius profile for management access control: specifies the radius profile to be used for radius based management access. • local user status: enables or disables the local user when radius based management is enabled. The default local user i...
Page 66
Advanced configuration ap-700 user guide management 66 figure 4-19 automatic configuration screen set up automatic configuration for dynamic ip perform the following procedure to enable and set up automatic configuration when you have a dynamic ip address for the tftp server via dhcp. The configurat...
Page 67
Advanced configuration ap-700 user guide management 67 figure 4-20 dhcp options: setting the boot server host name 4. Add the boot server hostname and boot filename parameters to the active options list. 5. Set the value of the boot server hostname parameter to the hostname or ip address of the tftp...
Page 68
Advanced configuration ap-700 user guide management 68 ap is not protected, an unauthorized person could reset the ap to factory defaults and thus gain control of the ap. The user can disable the hardware configuration reset functionality to prevent unauthorized access. The hardware configuration re...
Page 69
Advanced configuration ap-700 user guide management 69 2. Check (enable) or uncheck (disable) the enable hardware configuration reset checkbox. 3. Change the default configuration reset password in the “configuration reset password” and “confirm” fields. 4. Click ok. 5. Reboot the ap. Note: it is im...
Page 70
Advanced configuration ap-700 user guide filtering 70 filtering the access point’s packet filtering features help control the amount of traffic exchanged between the wired and wireless networks. There are four sub-tabs under the filtering heading: • ethernet protocol • static mac • advanced • tcp/ud...
Page 71
Advanced configuration ap-700 user guide filtering 71 each mac address or mask is comprised of 12 hexadecimal digits (0-9, a-f) that correspond to a 48-bit identifier. (each hexadecimal digit represents 4 bits (0 or 1).) taken together, a mac address/mask pair specifies an address or a range of mac ...
Page 72
Advanced configuration ap-700 user guide filtering 72 • wireless client 2: 00:02:2d:51:32:12 • wireless client 3: 00:20:a6:12:4e:38 prevent two specific devices from communicating configure the following settings to prevent the wired server and wireless client 1 from communicating: • wired mac addre...
Page 73
Advanced configuration ap-700 user guide filtering 73 • wired mac address: 01:00:5e:00:32:4b • wired mask: ff:ff:ff:ff:ff:ff • wireless mac address: 00:00:00:00:00:00 • wireless mask: 00:00:00:00:00:00 result: the access point does not forward any packets that have a destination address of 01:00:5e:...
Page 74
Advanced configuration ap-700 user guide filtering 74 4. Set the destination port number (a value between 1 and 65535) to filter. See the iana web site at http://www.Iana.Org/assignments/port-numbers for a list of assigned port numbers and their descriptions. 5. Set the port type for the protocol: t...
Page 75
Advanced configuration ap-700 user guide alarms 75 alarms the alarms tab has the following sub-tabs: • groups • alarm host table • syslog • rogue scan groups alarm groups can be enabled or disabled via the web interface. Place a check mark in the box provided to enable a specific group. Remove the c...
Page 76
Advanced configuration ap-700 user guide alarms 76 security trap group wireless interface/card trap group operational trap group trap name description severity level oritrapinvalidencryptionkey invalid encryption key has been detected. Critical oritrapauthenticationfailure client authentication fail...
Page 77
Advanced configuration ap-700 user guide alarms 77 flash memory trap group oritrapdhcpfailed response to the dhcp client request not received; device not dynamically assigned an ip address major oritrapdnsclientlookupfailure dns client attempts to resolve a specified hostname (dns lookup) and a fail...
Page 78
Advanced configuration ap-700 user guide alarms 78 tftp trap group image trap group sntp trap group in addition, the ap supports these standard traps, which are always enabled: rfc 1215-trap bridge mib (rfc 1493) alarms all these alarm groups correspond to system alarms that are displayed in the sys...
Page 79
Advanced configuration ap-700 user guide alarms 79 note: up to 10 entries are possible in the alarm host table. • ip address: enter the trap host ip address. • password: enter the password in the password field and the confirm field. • comment: enter an optional comment, such as the alarm (trap) hos...
Page 80
Advanced configuration ap-700 user guide alarms 80 syslog the syslog messaging system enables the ap to transmit event messages to a central server for monitoring and troubleshooting. The access point logs “session start (log-in)” and “session stop (log-out)” events for each wireless client as an al...
Page 81
Advanced configuration ap-700 user guide alarms 81 • syslog lowest priority logged: the ap will send event messages to the syslog server that correspond to the selected priority number and any priority numbers below it. For example, if set to 6, the ap will transmit event messages labeled priority 0...
Page 82
Advanced configuration ap-700 user guide alarms 82 client login authentication status 6 informational client logs in/authenticates. Message includes: • client mac address • authentication type = none, acl, radius mac, 802.1x • cipher type = none, wep, tkip, aes • status = allow, deny • ssid to which...
Page 83
Advanced configuration ap-700 user guide alarms 83 rogue scan the rogue scan feature provides an additional security level for wireless lan deployments. Rogue scan uses the selected wireless interface(s) for scanning its coverage area for access points and clients. A centralized network manager rece...
Page 84
Advanced configuration ap-700 user guide alarms 84 the figure above shows client 1 connected to a trusted ap and client 2 connected to a rogue ap. The trusted ap scans the networks, detects client 2, and notifies the network manager. The network manager uses snmp/cli to query the wired switch to fin...
Page 85
Advanced configuration ap-700 user guide alarms 85 • channel: the working channel of the detected station • snr: the snr value of the last frame from the station as received by the ap • bssid: the bssid field stores the: – mac address of the associated access point in the case of a client. – zero ma...
Page 86
Advanced configuration ap-700 user guide alarms 86 figure 4-26 rogue scan screen.
Page 87
Advanced configuration ap-700 user guide bridge 87 bridge the ap is a bridge between your wired and wireless networking devices. As a bridge, the functions performed by the ap include: • mac address learning • forward and filtering decision making • spanning tree protocol used for loop avoidance onc...
Page 88
Advanced configuration ap-700 user guide bridge 88 figure 4-27 spanning tree sub-tab storm threshold storm threshold is an advanced bridge setup option that you can use to protect the network against data overload by: • specifying a maximum number of frames per second as received from a single netwo...
Page 89
Advanced configuration ap-700 user guide bridge 89 • wireless threshold: enter the maximum allowed number of packets per second. Intra bss the wireless clients (or subscribers) that associate with a certain ap form the basic service set (bss) of a network infrastructure. By default, wireless subscri...
Page 90
Advanced configuration ap-700 user guide qos 90 qos wireless multimedia extensions (wme)/quality of service (qos) the ap supports wireless multimedia enhancements which defines an intermediate solution for qos functionality until the ieee 802.11e specification is formally approved. Wme is based on a...
Page 91
Advanced configuration ap-700 user guide qos 91 4. To add a qos policy, click the add button in the “qos policies table” box. The add entries box appears. Figure 4-29 add qos policy 5. Enter the policy name. 6. Select the policy type: • inlayer2: inbound traffic direction, layer 2 traffic type • inl...
Page 92
Advanced configuration ap-700 user guide qos 92 priority mapping use this page to configure qos 802.1p to 802.1d priority mappings (for layer 2 policies) and ip dscp to 802.1d priority mappings (for layer 3 policies). The first entry in each table contains the recommended priority mappings. Custom e...
Page 93
Advanced configuration ap-700 user guide qos 93 figure 4-31 add priority mapping entry 3. Select the 802.1p priority (from 0-7) for 802.1d priorities 0-7. 4. Click ok. 5. Click add in the ip precedence/dscp ranges and 802.1d priority table. 6. Select the ip dscp range for each 802.1d priority. 7. Cl...
Page 94
Advanced configuration ap-700 user guide qos 94 1. Click configure > qos > edca. Figure 4-32 edca tables 2. Click edit and configure the following parameters in each table: note: changes to edca parameters require a reboot of the ap to take effect. • index: read-only. Indicates the index of the acce...
Page 95
Advanced configuration ap-700 user guide qos 95 • tx op limit: the transmission opportunity limit. The tx op is an interval of time during which a particular qos enhanced client has the right to initiate a frame exchange sequence onto the wireless medium. The tx op limit defines the upper limit plac...
Page 96
Advanced configuration ap-700 user guide radius profiles 96 radius profiles configuring radius profiles on the ap allows the administrator to define a profile for radius servers used by the system or by a vlan. The network administrator can define radius servers per authentication mode and per vlan ...
Page 97
Advanced configuration ap-700 user guide radius profiles 97 figure 4-33 radius servers per vlan this figure shows a network with separate authentication servers for each authentication type and for each vlan. The clients in vlan 1 are authenticated using the authentication servers configured for vla...
Page 98
Advanced configuration ap-700 user guide radius profiles 98 figure 4-34 radius server profiles adding or modifying a radius server profile perform the following procedure to add a radius server profile and to configure its parameters. 1. Click add to create a new profile. To modify an existing profi...
Page 99
Advanced configuration ap-700 user guide radius profiles 99 figure 4-35 add radius server profile • server profile name: the profile name. This is the name used to associated a vlan to the profile. See configuring security profiles . The server profile name is also used in the configure > management...
Page 100
Advanced configuration ap-700 user guide radius profiles 100 • destination port: enter the port number which the ap and the server will use to communicate. By default, radius servers communicate on port 1812. • server vlan id: indicates the vlan that uses this radius server profile. If vlan is disab...
Page 101
Advanced configuration ap-700 user guide radius profiles 101 note: this feature requires radius authentication using mac access control or 802.1x. Wireless clients configured in the access point’s static mac access control list are not tracked. Authentication and accounting attributes additionally, ...
Page 102
Advanced configuration ap-700 user guide radius profiles 102 – number of octets (bytes) received by subscriber. • acct-output-octets – number of octets (bytes) sent by subscriber. • acct-input-packets – number of packets received by subscriber. • acct-output-packets – number of packets sent by subsc...
Page 103
Advanced configuration ap-700 user guide ssid/vlan/security 103 ssid/vlan/security the ap provides several security features to protect your network from unauthorized access. This section gives an overview of vlans and then discusses the ssid/vlan/security configuration options in the ap: • vlan ove...
Page 104
Advanced configuration ap-700 user guide ssid/vlan/security 104 figure 4-36 components of a typical vlan vlan workgroups and traffic management access points that are not vlan-capable typically transmit broadcast and multicast traffic to all wireless network interface cards (nics). This process wast...
Page 105
Advanced configuration ap-700 user guide ssid/vlan/security 105 typical user vlan configurations vlans segment network traffic into workgroups, which enable you to limit broadcast and multicast traffic. Workgroups enable clients from different vlans to access different resources using the same netwo...
Page 106
Advanced configuration ap-700 user guide ssid/vlan/security 106 3. Place a check mark in the enable vlan tagging box. Provide access to a wireless host in the same workgroup the vlan feature can allow wireless clients to manage the ap. If the vlan management id matches a vlan user id, then those wir...
Page 107
Advanced configuration ap-700 user guide ssid/vlan/security 107 • eap-tunneled transport layer security (ttls): certificate-based authentication (a certificate is required on the server; a client’s username/password is tunneled to the server over a secure connection); supports automatic key distribu...
Page 108
Advanced configuration ap-700 user guide ssid/vlan/security 108 wpa is a replacement for wired equivalent privacy (wep), the encryption technique specified by the original 802.11 standard. Wep has several vulnerabilities that have been widely publicized. Wpa addresses these weaknesses and provides a...
Page 109
Advanced configuration ap-700 user guide ssid/vlan/security 109 vlans and security profiles the ap-700 allows you to segment wireless networks into multiple sub-networks based on network name (ssid) and vlan membership. A network name (ssid) identifies a wireless network. Clients associate with acce...
Page 110
Advanced configuration ap-700 user guide ssid/vlan/security 110 3. Configure one or more types of wireless stations (security modes) that are allowed access to the ap under the security profile. The wep/psk parameters are separately configurable for each security mode. To enable a security mode in t...
Page 111
Advanced configuration ap-700 user guide ssid/vlan/security 111 • cipher: ccmp based on aes • psk passphrase: an 8-63 character user-defined phrase. It is recommended a passphrase of at least 13 characters, including both letters and numbers, and upper and lower case characters, to ensure that the g...
Page 112
Advanced configuration ap-700 user guide ssid/vlan/security 112 figure 4-40 security profile table - add entries.
Page 113
Advanced configuration ap-700 user guide ssid/vlan/security 113 mac access the mac access sub-tab allows you to build a list of stations, identified by their mac addresses, authorized to access the network through the ap. The list is stored inside each ap within your network. Note that you must rebo...
Page 114
Advanced configuration ap-700 user guide ssid/vlan/security 114 the same system separated per vlan. See the security profile section for more information. Each ssid can support a unique vlans. In order for the ap to support multiple ssid/vlans, vlan tagging must be enabled. These parameters are conf...
Page 115
Advanced configuration ap-700 user guide ssid/vlan/security 115 6. Enter the security profile used by the vlan in the security profile field. See the security profile section for more information. 7. Define the radius server profile configuration for the vlan/ssid: • radius mac authentication profil...
Page 116
Advanced configuration ap-700 user guide ssid/vlan/security 116 11.Specify a qos profile. See the enabling qos and adding qos policies section for more information. 12.If editing an entry, enable or disable the parameters on this page by electing enable or disable from the status drop-down menu. If ...
Page 117
Advanced configuration ap-700 user guide ssid/vlan/security 117 figure 4-45 ssid/vlan edit entries screen (vlan tagging enabled) 4. Enter a unique network name (ssid) between 1 and 32 characters. This parameter is mandatory. Note: do not use quotation marks (single or double) in the network name; th...
Page 118
Advanced configuration ap-700 user guide ssid/vlan/security 118 7. Enable or disable radius accounting on the vlan/ssid under the accounting status drop-down menu. 8. Enable or disable radius mac authentication status on the vlan/ssid under the radius authentication status drop-down menu. 9. Enable ...
Page 119: Monitoring
119 ap-700 user guide 5 monitoring this chapter discusses the following monitoring options: • version: provides version information for the access point’s system components. • icmp: displays statistics for internet control message protocol packets sent and received by the ap. • ip/arp table: display...
Page 120
Monitoring ap-700 user guide version 120 version from the http interface, click the monitor button and select the version tab. The list displayed provides you with information that may be pertinent when calling technical support. With this information, your technical support representative can verif...
Page 121
Monitoring ap-700 user guide icmp 121 icmp this tab provides statistical information for both received and transmitted messages directed to the ap. Not all icmp traffic on the network is counted in the icmp (internet control message protocol) statistics. Figure 5-3 icmp monitoring tab ip/arp table t...
Page 122
Monitoring ap-700 user guide learn table 122 learn table this tab displays information relating to network bridging. It reports the mac address for each node that the device has learned is on the network and the interface on which the node was detected. There can be up 10,000 entries in the learn ta...
Page 123
Monitoring ap-700 user guide radius 123 radius this tab provides radius authentication, eap/802.1x authentication, and accounting information for both the primary and backup radius servers for each radius server profile. Note: separate radius servers can be configured for each radius server profile....
Page 124
Monitoring ap-700 user guide interfaces 124 interfaces this tab displays statistics for the ethernet and wireless interfaces. Figure 5-8 interface monitoring tab (ethernet) description of interface statistics the following statistics are displayed for the ethernet interface only, the wireless interf...
Page 125
Monitoring ap-700 user guide interfaces 125 • duplicate frame count (wireless): the number of duplicate frames received. • ethernet chipset (ethernet): identifies the chipset used to realize the interface. • excessive collisions (ethernet): the number of frames for which transmission fails due to ex...
Page 126
Monitoring ap-700 user guide interfaces 126 • out discards (ethernet/wireless): the number of error-free outbound packets chosen to be discarded to prevent their being transmitted. One possible reason for discarding such a packet could be to free up buffer space. • out errors (ethernet/wireless): th...
Page 127
Monitoring ap-700 user guide station statistics 127 station statistics this tab displays information on wireless clients attached to the ap and on wireless distribution system links. Enable the monitoring station statistics feature (station statistics are disabled by default) by checking enable moni...
Page 128
Monitoring ap-700 user guide station statistics 128 • number of clients: the number of stations and wds links monitored. The following stations statistics are available through snmp: • octets received: the number of octets received from the associated wireless station (or wds link partner) by the ap...
Page 129: Commands
129 ap-700 user guide 6 commands this chapter contains information on the following command functions: • introduction to file transfer via tftp or http : describes the available file transfer methods. • update ap via tftp: download files from a tftp server to the ap. • update ap via http: download f...
Page 130
Commands ap-700 user guide introduction to file transfer via tftp or http 130 • uploading files (configuration, cli batch file) from the ap is called “retrieving files.” tftp file transfer guidelines a tftp server must be running and configured to point to the directory containing the file. If you d...
Page 131
Commands ap-700 user guide update ap 131 update ap update ap via tftp use the update ap via tftp tab to download configuration, ap image, bootloader files, certificate and private key files, and cli batch file to the ap. A tftp server must be running and configured to point to the directory containi...
Page 132
Commands ap-700 user guide update ap via http 132 – cli batch file: a cli batch file that contains cli commands to configure the ap. This file will be executed by the ap immediately after being uploaded. See cli batch file for more information. • file operation: select either update ap or update ap ...
Page 133
Commands ap-700 user guide retrieve file 133 a warning message gets displayed that advises the user that a reboot of the device will be required for changes to take effect. Figure 6-4 warning message 4. Click ok to continue with the operation or cancel to abort the operation. Note: an http file tran...
Page 134
Commands ap-700 user guide retrieve file 134 – double-click the tftp server icon on your desktop and locate the ip address assigned to the tftp server. • file name: enter the name of the file to be uploaded. • file type: select the type of file to be uploaded: config file, cli batch file, or cli bat...
Page 135
Commands ap-700 user guide retrieve file 135 click on the retrieve file button to initiate the operation. Figure 6-8 retrieve file via http command screen a confirmation message is displayed, asking if the user wants to proceed with retrieving the file. Figure 6-9 retrieve file confirmation dialog c...
Page 136
Commands ap-700 user guide reboot 136 on clicking the save button the save aswindow displays, where the user is prompted to choose the filename and location where the file is to be downloaded. Select an appropriate filename and location and click ok. Reboot use the reboot tab to save configuration c...
Page 137
Commands ap-700 user guide help link 137 help link use the help tab to configure the location of the ap help files. During initialization, the ap on-line help files are downloaded to the default location: c:/program files/orinoco/ap700/html/index.Htm. To enable the help button on each page of the we...
Page 138: Troubleshooting
138 ap-700 user guide 7 troubleshooting this chapter provides information on the following: • troubleshooting concepts • symptoms and solutions • recovery procedures • related applications note: this section helps you locate problems related to the ap device setup. For details about radius, tftp, se...
Page 139
Troubleshooting ap-700 user guide symptoms and solutions 139 serial link does not work 1. Make sure you are using a standard, straight-through, 9-pin serial cable. 2. Double-check the physical network connections. 3. Make sure your pc terminal program (such as hyperterminal) is active and configured...
Page 140
Troubleshooting ap-700 user guide symptoms and solutions 140 6. Perform the reset to factory default procedure in this guide. This will reset the unit to “dhcp” mode. If there is a dhcp server on the network, the dhcp server will assign an ip address to the ap. Http interface or telnet interface doe...
Page 141
Troubleshooting ap-700 user guide symptoms and solutions 141 client pc card does not work 1. Make sure you are using the latest pc card driver software. 2. Download and install the latest orinoco client software from http://support.Proxim.Com . Intermittent loss of connection 1. Make sure you are wi...
Page 142
Troubleshooting ap-700 user guide recovery procedures 142 4. Try using a different ethernet cable – if it works, there is probably a faulty connection over the long cable, or a bad rj-45 connection. 5. Check power plug and hub. 6. If the ethernet link goes down, check the cable, cable type, switch, ...
Page 143
Troubleshooting ap-700 user guide recovery procedures 143 1. While the unit is running, press the reset button. Note: you need to use a pin or the end of a paperclip to press a button. The ap reboots and the indicators begin to flash. Caution: by completing step 2, the firmware in the ap will be era...
Page 144
Troubleshooting ap-700 user guide recovery procedures 144 11.Click ok when prompted that the device has been updated successfully to return to the scan list screen. 12.Click cancel to close the scantool. 13.When the download process is complete, configure the ap as described in installation and init...
Page 145
Troubleshooting ap-700 user guide recovery procedures 145 [device name]> show [device name]> set ipaddrtype static [device name]> set ipaddr 10.0.0.12 [device name]> set ipsubmask 255.255.255.0 [device name]> set tftpipaddr 10.0.0.20 [device name]> set tftpfilename myimage.Bin [device name]> set ipg...
Page 146
Troubleshooting ap-700 user guide related applications 146 [device name]> please enter password: 4. Enter the cli password (default is public). The terminal displays a welcome message and then the cli prompt: [device name]> 5. Enter show ip. Network parameters appear: figure 7-1 result of “show ip” ...
Page 147
Troubleshooting ap-700 user guide related applications 147 if a tftp server is not configured and running, you will not be able to download and upload images and configuration files to/from the ap. Remember that the tftp server does not have to be local, so long as you have a valid tftp ip address. ...
Page 148: Command Line Interface (Cli)
148 ap-700 user guide a command line interface (cli) this section discusses the following: • general notes • command line interface (cli) variations • cli command types • using tables and strings • configuring the ap using cli commands • set basic configuration parameters using cli commands • other ...
Page 149
Command line interface (cli) ap-700 user guide general notes 149 • download vs. Upload - downloads transfer files to the access point. Uploads transfer files from the access point. The tftp server performs file transfers in both directions. • group - a logical collection of network parameter informa...
Page 150
Command line interface (cli) ap-700 user guide command line interface (cli) variations 150 command line interface (cli) variations administrators use the cli to control access point operation and monitor network statistics. The ap supports two types of cli: the bootloader cli and the normal cli. The...
Page 151
Command line interface (cli) ap-700 user guide cli command types 151 figure a-2 results of “show” bootloader cli command cli command types this guide divides cli commands into two categories: operational and parameter controls. Operational cli commands these commands affect access point behavior, su...
Page 152
Command line interface (cli) ap-700 user guide cli command types 152 [device-name]>? Figure a-3 result of “?” cli command example 2. Display specific commands to show all commands that start with specified letters, enter one or more letters, then ? With no space between letters and ?. [device-name]>...
Page 153
Command line interface (cli) ap-700 user guide cli command types 153 example 3b. Display parameters based on letter sequence this example shows entries for parameters that start with the letter “i”. The more letters you enter, the fewer the results returned. Notice that there is no space between the...
Page 154
Command line interface (cli) ap-700 user guide cli command types 154 example: [device-name]>download 192.168.1.100 apimage2 img 2. Syntax to display help and usage information: [device-name]>download 3. Syntax to execute the download command using previously set (stored) tftp parameters: [device-nam...
Page 155
Command line interface (cli) ap-700 user guide cli command types 155 reboot reboots access point after specified number of seconds. Specify a value of 0 (zero) for immediate reboot. [device-name]> reboot 0 [device-name]> reboot 30 search lists the parameters supported by the specified table. This li...
Page 156
Command line interface (cli) ap-700 user guide cli command types 156 syntax: [device-name]>show [device-name]>show [device-name]>show examples: [device-name]>show ipaddr [device-name]>show network [device-name]>show mgmtipaccesstbl “set” cli command sets (modifies) the value of the specified paramet...
Page 157
Command line interface (cli) ap-700 user guide cli command types 157 example 1 - set the access point ip address parameter syntax: [device-name]>set example: [device-name]> set ipaddr 10.0.0.12 ip address will be changed when you reboot the access point. The cli reminds you when rebooting is require...
Page 158
Command line interface (cli) ap-700 user guide cli command types 158 example 5 - show the group parameters this example illustrates how to view all elements of a group or table. Syntax: [device-name]> show example: [device-name]>show network the cli displays network group parameters. Note show netwo...
Page 159
Command line interface (cli) ap-700 user guide using tables and strings 159 using tables and strings working with tables each table element (or parameter) must be specified, as in the example below. [device-name]>set mgmtipaccesstbl 0 ipaddr 10.0.0.10 ipmask 255.255.0.0 below are the rules for creat...
Page 160
Command line interface (cli) ap-700 user guide configuring the ap using cli commands 160 the string delimiter does not have to be used for every string object. The single quote or double quote only has to be used for string objects that contain blank space characters. If the string object being used...
Page 161
Command line interface (cli) ap-700 user guide set basic configuration parameters using cli commands 161 • download an ap configuration file from your tftp server • backup your ap configuration file set system name, location and contact information [device-name]>set sysname sysloc [device-name]>set ...
Page 162
Command line interface (cli) ap-700 user guide set basic configuration parameters using cli commands 162 figure a-13 results of “show wif” cli command for an ap enable 802.11d support and set the country code perform the following command to enable 802.11d ieee 802.11d support for additional regulat...
Page 163
Command line interface (cli) ap-700 user guide set basic configuration parameters using cli commands 163 enable and configure tx power control for the wireless interface(s) the tx power control feature lets the user configure the transmit power level of the card in the ap at one of four levels: • 10...
Page 164
Command line interface (cli) ap-700 user guide other network settings 164 example: [device-name]>set wifssidtbl 3.1 ssid accesspt1 vlanid 22 ssidauth enable acctstatus enable secprofile 1 radmacprofile "mac authentication" radeapprofile "eap authentication" radacctprofile "accounting" radmacauthstat...
Page 165
Command line interface (cli) ap-700 user guide other network settings 165 • configure the ap as a dhcp server • configure the dns client • configure dhcp relay and configure dhcp relay servers • maintain client connections using link integrity • change your wireless interface settings • set ethernet...
Page 166
Command line interface (cli) ap-700 user guide other network settings 166 configure dhcp relay perform the following command to enable or disable dhcp relay agent status. Note: you must have at least one entry in the dhcp relay server table before you can set the dhcp relay status to enable. [device...
Page 167
Command line interface (cli) ap-700 user guide other network settings 167 shutdown/resume wireless service [device-name]>set wif wssstatus set load balancing maximum number of clients [device-name]>set wif lbmaxclients set the multicast rate (802.11a) [device-name]>set wif 3 multrate (mbits/sec) > s...
Page 168
Command line interface (cli) ap-700 user guide other network settings 168 set ethernet speed and transmission mode [device-name]>set etherspeed (see below) [device-name]>reboot 0 set interface management services edit management ip access table [device-name]>set mgmtipaccesstbl ipaddr ipmask configu...
Page 169
Command line interface (cli) ap-700 user guide other network settings 169 configure secure socket layer (https) enabling ssl and configuring a passphrase allows encrypted secure socket layer communications to the ap through the https interface. [device-name]>set sslstatus the user must change the ss...
Page 170
Command line interface (cli) ap-700 user guide other network settings 170 configure intra bss [device-name]>set intrabssoptype configure wireless distribution system create/enable wds [device-name]>set wdstbl partnermacaddr status enable enable/disable wds [device-name]>set wdstbl status note: is 3....
Page 171
Command line interface (cli) ap-700 user guide other network settings 171 [device-name]set radiustbl 1.2 profname "mac authentication" seraddrfmt 1 sernameorip 20.0.0.30 port 1812 ssecret public responsetm 3 maxretx 3 acctupdtintrvl 0 macaddrfmt 1 authlifetm 900 radaccinactivetmr 5 vlanid 33 status ...
Page 172
Command line interface (cli) ap-700 user guide other network settings 172 set rogue scan parameters perform the following command to enable or disable rogue scan on a wireless interface and configure the scanning parameters. The cycletime parameter is only configured for background scanning mode. [d...
Page 173
Command line interface (cli) ap-700 user guide cli monitoring parameters 173 set security profile parameters configure a security profile with non secure security mode [device-name]>set secprofiletbl secmode nonsecure status enable example: [device-name]>set secprofiletbl 2 secmode nonsecure status ...
Page 174
Command line interface (cli) ap-700 user guide parameter tables 174 • statiapp: displays the iapp statistics. • statradius: displays the radius authentication statistics. • statif: displays information and statistics about the ethernet and wireless interfaces. • stat802.11: displays additional stati...
Page 175
Command line interface (cli) ap-700 user guide parameter tables 175 – ip access table parameters - configure range of ip addresses that can access the ap – auto configuration parameters - configure the auto configuration feature which allows an ap to be automatically configured by downloading a conf...
Page 176
Command line interface (cli) ap-700 user guide parameter tables 176 system parameters inventory management information note: the inventory management commands display advanced information about the ap’s installed components. You may be asked to report this information to a representative if you cont...
Page 177
Command line interface (cli) ap-700 user guide parameter tables 177 network parameters ip configuration parameters note: the ip address assignment type (ipaddrtype) must be set to static before the ip address (ipaddr), ip mask (ipmask) or default gateway ip address (ipgw) values can be entered. Dns ...
Page 178
Command line interface (cli) ap-700 user guide parameter tables 178 dhcp server table for ip pools note: set either end ip address or width (but not both) when creating an ip address pool. Dhcp relay group the dhcp relay group allows you to enable or disable dhcp relay agent status. Dhcp relay serve...
Page 179
Command line interface (cli) ap-700 user guide parameter tables 179 sntp parameters link integrity parameters link integrity ip target table name type value access cli parameter sntp group group n/a r sntp sntp status integer enable disable rw sntpstatus primary server name or ip address displaystri...
Page 180
Command line interface (cli) ap-700 user guide parameter tables 180 interface parameters wireless interface parameters the wireless interface group parameter is wif. For single-radio aps, the wireless interface uses table index 3. Common parameters to 802.11a/b/g * for 802.11a aps certified in the e...
Page 181
Command line interface (cli) ap-700 user guide parameter tables 181 802.11a only parameters * super mode must be enabled on the wireless interface before turbo mode can be enabled. Name type value access cli parameter operating frequency channel integer varies by regulatory domain and country. See a...
Page 182
Command line interface (cli) ap-700 user guide parameter tables 182 802.11b only parameters 802.11b/g only parameters name type value access cli parameter operating frequency channel integer 1 - 14; available channels vary by regulatory domain/country; see available channels rw channel multicast rat...
Page 183
Command line interface (cli) ap-700 user guide parameter tables 183 * also for 802.11g-wifi mode. 802.11g-wifi has been defined for wi-fi testing purposes; it is not recommended for use in your wireless network environment. † super mode must be enabled on the wireless interface before turbo mode can...
Page 184
Command line interface (cli) ap-700 user guide parameter tables 184 channel blacklist parameters wireless distribution system (wds) parameters wireless interface ssid/vlan/profile parameters the wireless interface ssid table manages the ssids, vlans, security profiles, and radius profiles associated...
Page 185
Command line interface (cli) ap-700 user guide parameter tables 185 wireless distribution system (wds) security table parameters the wds security table manages wds related security objects. Ethernet interface parameters management parameters secure management parameters snmp parameters radius mac pr...
Page 186
Command line interface (cli) ap-700 user guide parameter tables 186 read/write password displaystring user defined public (default) 6 - 32 characters w snmprwpasswd snmpv3 authentication password displaystring user defined public (default) 6 - 32 characters w snmpv3authpasswd snmpv3 privacy password...
Page 187
Command line interface (cli) ap-700 user guide parameter tables 187 http parameters * the help link must be set to an http address. Use the forward slash character ("/") rather than the backslash character ("\") when configur- ing the help link location. Telnet parameters name type value access cli ...
Page 188
Command line interface (cli) ap-700 user guide parameter tables 188 serial port parameters radius based management access parameters the radius based management access parameters allow you to enable http or telnet radius management access, enable or disable local user access, and configure the local...
Page 189
Command line interface (cli) ap-700 user guide parameter tables 189 auto configuration parameters these parameters relate to the auto configuration feature which allows an ap to be automatically configured by downloading a specific configuration file from a tftp server during the boot up process. Tf...
Page 190
Command line interface (cli) ap-700 user guide parameter tables 190 filtering parameters ethernet protocol filtering parameters ethernet filtering table identify the different filters by using the table index. Note: the filter operation type (passthru or block) applies only to the protocol filters t...
Page 191
Command line interface (cli) ap-700 user guide parameter tables 191 proxy arp parameters ip arp filtering parameters broadcast filtering table tcp/udp port filtering the following parameters are used to enable/disable the port filter feature. Tcp/udp port filtering table the following parameters are...
Page 192
Command line interface (cli) ap-700 user guide parameter tables 192 alarms parameters snmp table host table parameters when creating table entries, you may either specifying the argument name followed by argument value. Cli applies default values to the omitted arguments. Due to the nature of the in...
Page 193
Command line interface (cli) ap-700 user guide parameter tables 193 note: when heartbeat is enabled, the ap periodically sends a message to the syslog server to indicate that it is active. The frequency with which the heartbeat message is sent depends upon the setting of the heartbeat interval. Sysl...
Page 194
Command line interface (cli) ap-700 user guide parameter tables 194 bridge parameters spanning tree parameters spanning tree priority and path cost table storm threshold parameters name type value access cli parameter spanning tree group n/a r stp spanning tree status integer enable (default) disabl...
Page 195
Command line interface (cli) ap-700 user guide parameter tables 195 storm threshold table intra bss subscriber blocking the following parameters control the intra bss traffic feature, which prevent wireless clients that are associated with the same ap from communicating with each other: packet forwa...
Page 196
Command line interface (cli) ap-700 user guide parameter tables 196 radius parameters general radius parameters radius server configuration parameters note: use a server name only if you have enabled the dns client functionality. See dns client for radius name resolution . Name type value access cli...
Page 197
Command line interface (cli) ap-700 user guide parameter tables 197 security parameters mac access control parameters mac access control table rogue scan configuration table the rogue scan configuration table allows you to enable or disable rogue scan and configure the scanning parameters. Hardware ...
Page 198
Command line interface (cli) ap-700 user guide parameter tables 198 vlan/ssid parameters security profile table the security profile table allows you to configure security profiles. A maximum of 16 security profiles are supported per wireless interface. Each security profile can be enable and config...
Page 199
Command line interface (cli) ap-700 user guide parameter tables 199 other parameters iapp parameters note: these parameters configure the inter access point protocol (iapp) for roaming. Leave these settings at their default value unless a technical representative asks you to change them. Wireless mu...
Page 200
Command line interface (cli) ap-700 user guide parameter tables 200 * qos must be enabled on the wireless interface before spectralink can be enabled. † a priority mapping needs to be specified for a qos policy. The priority mapping depends on the type of policy configured. For layer 2 policy types ...
Page 201
Command line interface (cli) ap-700 user guide cli batch file 201 qos enhanced distributed channel access (edca) parameters the following commands configure the client (sta) and ap enhanced distributed channel access (edca) parameters. The edca parameter set provides information needed by the client...
Page 202
Command line interface (cli) ap-700 user guide cli batch file 202 executes the cli commands. Commands that do not require a reboot take effect immediately, while commands that require a reboot (typically commands affecting a wireless interface) will take effect after reboot. Auto configuration and t...
Page 203
Command line interface (cli) ap-700 user guide cli batch file 203 • upload and reboot (this option is to be used for a cli batch file containing the configuration parameters that require a reboot) cli batch file error log if there is any error during the execution of the cli batch file, the ap will ...
Page 204: Ascii Character Chart
204 ap-700 user guide b ascii character chart you can configure wep encryption keys in either hexadecimal or ascii format. Hexadecimal digits are 0-9 and a-f (not case sensitive). Ascii characters are 0-9, a-f, a-f (case sensitive), and punctuation marks. Each ascii character corresponds to two hexa...
Page 205: Specifications
205 ap-700 user guide c specifications • software features • hardware specifications • available channels • rf performance software features the tables below list the software features available on the ap-700. • number of stations per bss • management functions • advanced bridging functions • medium...
Page 206
Specifications ap-700 user guide software features 206 advanced bridging functions medium access control (mac) functions * dfs is required for 802.11a aps certified in the etsi regulatory domain and operating in the middle frequency band. When acs is disabled, available channels are limited to those...
Page 207
Specifications ap-700 user guide software features 207 ‡ support is provided for a primary and backup radius authentication server for both mac-based authentication and 802.1x authentication per vlan. § use in conjunction with wpa or 802.1x authentication. Network functions * includes fallback to pr...
Page 208
Specifications ap-700 user guide hardware specifications 208 hardware specifications physical specifications dimensions (h x w x l) = 6.5 x 18.5 x 26 cm (2.5 x 7.25 x 10.25 in.) weight = 1.75 kg (3.5 lb.) electrical specifications voltage = 100 to 240 vac (50-60 hz) current = 0.2 amp power consumpti...
Page 209
Specifications ap-700 user guide available channels 209 available channels available channels vary based on operational mode and country. To verify which channels are available for your product: 1. Locate the product sku on the underside of your ap unit or on the unit’s box. 2. Note the alphanumeric...
Page 210
Specifications ap-700 user guide rf performance 210 rf performance the following tables show typical ap-700 rf performance values. 802.11a rf performance * values are for fcc-certified products. They may differ for products certified in other regulatory domains. 802.11b/g rf performance * values are...
Page 211: Technical Support
211 ap-700 user guide d technical support if you are having a problem using an ap and cannot resolve it with the information in troubleshooting , gather the following information and contact your local reseller: • list of orinoco products installed on your network; include the following: – product n...
Page 212
Technical support ap-700 user guide telephone support 212 submit a knowledgebase question or open an issue at: . Our technical support staff will reply to you by email. Note: the knowledgebase is available to all website visitors. First-time users will be asked to create an account to gain access. T...
Page 213: Statement of Warranty
213 ap-700 user guide e statement of warranty warranty coverage proxim corporation warrants that its products are manufactured solely from new parts, conform substantially to specifications, and will be free of defects in material and workmanship for a warranty period of 1 year from the date of purc...
Page 214
Statement of warranty ap-700 user guide other information 214 calls to the customer service center for reasons other than product failure will not be accepted unless buyer has purchased a proxim service contract or the call is made within the first thirty (30) days of the product’s invoice date. Cal...
Page 215: Regulatory Compliance
215 ap-700 user guide f regulatory compliance note: please read this section before installing and using your product, and save these instructions. Visit http://support.Proxim.Com for the latest regulatory compliance information. This section contains important regulatory compliance information and ...
Page 216
Regulatory compliance ap-700 user guide safety information (usa, canada, & european union) 216 safety information (usa, canada, & european union) this product has been evaluated to, and complies with, the safety requirements of ul60950:2000, and iec60950:1999; the standards for the safety of informa...
Page 217
Regulatory compliance ap-700 user guide federal communications commission (fcc) 217 federal communications commission (fcc).
Page 218
Regulatory compliance ap-700 user guide federal communications commission (fcc) 218 warnings this equipment generates, uses, and can radiate radio frequency energy; and, if not installed and used in accordance with the instructions, may cause harmful interference to radio communications. However, th...
Page 219
Regulatory compliance ap-700 user guide industry canada (ic) 219 industry canada (ic).
Page 220
Regulatory compliance ap-700 user guide european union 220 european union note: european union includes the following countries: austria, belgium, cyprus, czech republic, denmark, estonia, finland, france, germany, greece, hungary, ireland, italy, latvia, lithuania, luxembourg, malta, netherlands, p...
Page 221
Regulatory compliance ap-700 user guide regulatory compliance certifications summary 221 regulatory compliance certifications summary * european union includes the following countries: austria, belgium, cyprus, czech republic, denmark, estonia, finland, france, germany, greece, hungary, ireland, ita...