Addendum for the AP4800 and AP4500 Technical Reference Manual

Wireless Communications, Inc.
Addendum for the
AP4800 and AP4500
Technical Reference Manual
DOC-780-004242-A0
Aironet Wireless Communications, Inc.
No part of this document may be reproduced or transmitted in any means, electronic or
mechanical, for any purpose, without the written permission of Aironet. Information in this
document is subject to change without notice. Aironet makes no representation or warranties
with respect to the contents of this manual and specifically disclaims any express or implied
warranties of merchantability or fitness for any particular purpose.
 1999 Aironet Wireless Communications, Inc.
All rights reserved.
AP4800™, AP4500™, and Aironet™ are trademarks of Aironet Wireless Communications, Inc.
Other trademarks used are properties of their respective owners.
Printed in USA
DOC-780-004242-A0
2
NOTICE:
This document is intended to be used as a supplement to the Technical Reference Manual. It contains
updates pertaining to Aironet firmware release versions 7.x.
There has been a major change in the firmware operation. Aironet recommends that when using a product
with version 7.x for Access Points, Bridges, Universal Clients or Multi-clients, or version 2.x for PCI, ISA
and PCMCIA clients, that ALL products in the system be upgraded to the latest firmware for maximum
performance. Please see the parameter ‘Modulation’ on page 10 of this addendum. New version of
firmware can be found on the Aironet Web site at: http://www.aironet.com/support/ftp/index.html.
Contents
WEB ACCESS .............................................................................................................................................. 4
USING THE CONFIGURATION CONSOLE MENU ............................................................................. 4
VIEWING THE CONFIGURATION MENU- .......................................................................................... 5
UTILIZING THE MOBILE IP MENU-..................................................................................................... 6
ADVERT MENU .......................................................................................................................................... 7
UTILIZING THE TIME MENU- ............................................................................................................... 8
USING THE CONFIGURATION RADIO IEEE 802.11 MENU............................................................. 9
PRIVACY MENU....................................................................................................................................... 10
USING THE CONFIGURATION RADIO INSTALL MENU............................................................... 10
USING THE LINKTEST MENU.............................................................................................................. 10
USING THE CONFIGURATION RADIO EXTENDED MENU .......................................................... 11
USING THE CONFIGURATION IDENT MENU .................................................................................. 11
USING THE CONFIGURATION SNMP MENU ................................................................................... 12
VIEWING THE STATISTICS MENU.................................................................................................... . 12
USING THE ASSOCIATION MENU ...................................................................................................... 13
USING THE FILTER MENU ................................................................................................................... 13
USING THE LOGS MENU ....................................................................................................................... 14
3
Purpose of this document is to provide information pertaining to changes in the AP4500 and AP4800 firmware and
parameter settings. Each area of the Technical Reference Manual that has menu changes will be listed here.
Web Access
The Web Browser menus have also changed in format. Here is the typical menu screen, replacing the one
shown on page 2-7.
Using the Configuration Console Menu
Aironet Access Point V7.05
Option
1
2
3
4
5
6
7
8
9
01
-
Rpassword
Wpassword
Remote
Display
Add
Delete
Communities
Type
Port
Linemode
Configuration Console Menu
Value
[
on
Description
]
[
menu
]
[ teletype ]
[
menu
]
[
off
]
-
Set readonly privilege password
Set write privilege password
Allow remote operators
Display the remote operator list
Add an operator host
Remove an operator host
SNMP community properties
Terminal type
Serial port set-up
Console expects complete lines
Enter an option number or name, "=" main menu, <ESC> previous menu
>
Remote
4
APXXXX_1419d8
The Remote Access Control Menu is used to restrict remote access to a list of specific hosts. The list
controls access to the Access Point via telnet, HTTP, or FTP or SNMP. If the list is empty, any host in the
infrastructure is allowed to attempt to connect. When the appropriate password is provided, the connection
is allowed. If the list contains entries, any host not on the list will not be allowed access. An entry in the
list may be specified as either an IP address or a MAC address.
Display
Will display a list of any stations MAC or IP addresses permitted to access the Console port remotely.
Add
Use the add option to add a host the remote host list. You will be prompted for the name of the host to add.
Delete
Use the remove option to remove a host from the remote host list. You will be prompted for the name of
the host to remove.
Communities- See Page 7-3 of the Tech Ref. Manual.
Note: Telnet and HTTP connections are now handled by the remote parameter (above)
Viewing the Configuration MenuPage 3-2
Aironet Access Point V7.05
Option
1
2
3
4
5
6
7
8
-
Radio
Ethernet
Ident
Console
Mobile-IP
Time
Tip
Dump
Configuration Menu
Value
[
[
[
[
[
[
[
menu
menu
menu
menu
menu
menu
menu
]
]
]
]
]
]
]
Description
-
Radio network parameters
Ethernet configuration
Identification information
Control console access
Mobile IP Protocol Configuration
Network Time Setup
TIP Configuration
Dump configuration to console
Enter an option number or name, "=" main menu, <ESC> previous menu
5
APXXXX_1419d8
Utilizing the Mobile IP MenuMobile-IP is a feature that allows roaming across different IP subnets. It requires a Mobile IP stack to be
set up on the client device as well. This IP stack is available from FTP corporation and other IP stack
vendors. It is not available through Aironet.
Aironet Access Point V7.05
Option
Value
1 - AgentType
2 - Mobile
3 - Visitors
4 - Add
5 - Remove
6 - Display
7 - Setup
8 - Advert
Configuration Mobile-IP Menu
APxxxx_230528
Description
[ off ]
[ menu ]
[ menu ]
- Home / Foreign Agent
- Home Agent Active Mobile Nodes
- Foreign Agent Visitor List
- Add Mobile Nodes
- Remove Mobile Nodes
- Display Home Agent Authorized Addresses
- Agent Configuration
- Advertisement Setup
Agent Type
Determine the type of agent the unit is configured for, Home or Foreign. Setting this to OFF disables the
Mobile IP processing.
Mobile
Displays the IP Address and/or Masks of all Mobile Nodes presently active on this Home Agent.
Visitors
Displays a list of all Mobile Nodes for which this Foreign Agent is providing Mobility services, along with
the Mobile Node’s Home Agent, its current registration state, and its lifetime.
Add
Allows addition of an IP Address to the list of Mobile Nodes authorized to register to this Home Agent.
The IP Addresses of all Mobile Nodes for which this Home Agent is to supply mobility services must be
added to this list before the Home Agent will grant mobility to those Mobile Nodes.
Remove
Allows removal of an IP Address or Mask value from the list of Mobile Nodes authorized to register to this
Home Agent.
Display
Displays the IP Address and/or Masks of all Mobile Nodes authorized to register to this Home Agent.
Setup Menu
Aironet Access Point V7.05 Configuration Mobile-IP Setup Menu
Option
1 - Lifetime
2 - ReplayProt
3 - Broadcasts
4 - RegRequired
5 - HostRedirects
Value
APxxxx_230528
Description
[ 600 ]
[ timestamps ]
[ off ]
[ on ]
[ off ]
- Max Registration Lifetime
- Replay Protection Method
- Broadcast Forwarding
- Registration Required
- Enable ICMP Host Redirects to MN
Enter an option number or name, "=" main menu, <ESC> previous menu
6
Lifetime
This parameter has two functions:
The maximum amount of time the Home Agent will grant a Mobile Node to be registered on a foreign network
before renewing its registration. Note that the lifetime a Mobile Node asks for during the registration process may
be more or less than this value. However the Home Agent will only grant a lifetime up to this value.
The value used by both Home and Foreign Agents for the Registration Lifetime field of the Agent
Advertisements. Mobile Nodes typically use this field from the Foreign Agent advertisements to generate
the Lifetime value for the Registration Request.
ReplayProt
Two replay protection methods are allowed in Mobile IP: timestamps (mandatory) and nonces (optional).
Due to a patent that may apply to nonce-based replay protection, we do not support nonces at this time.
This value must be set to timestamps.
Broadcasts
If the Mobile Node requires broadcasts packets from its home network to maintain proper operation (i.e.
NetBIOS), setting this value to on causes the Home Agent to tunnel all broadcasts from the home network
directly to the Mobile Node while visiting a foreign network. Unless needed, this option should be left at
the default value of off to avoid unnecessary traffic.
RegRequired
Mobile IP allows Mobile Nodes the option of registering to a Home Agent without the use of a Foreign
Agent via a co-located care-of-address dynamically acquired while on the foreign network. This is useful
in cases where Foreign Agents have not yet been deployed on the foreign network, however this scheme
consumes IP addresses on that network. Setting this value to “on” will force Mobile Nodes on this network
to always register using a Foreign Agent.
HostRedirects
This value indicates whether or not the Foreign Agent will send an ICMP message to Mobile Nodes
registered through it specifying the Address of an IP Router for the Mobile Node to use. If set to “off”
(default), the Mobile Node will always use the Foreign Agent as its default gateway (router). Setting this
value to “on” may improve performance while visiting a foreign network, however there may be
connectivity problems which result due to ARP broadcasts from the Mobile Node
Advert Menu
Aironet Access Point V7.05 Configuration Mobile-IP Advert Menu
Option
1 - AdvertType
2 - AdvertInterval
3 - PrefixLen
4 - AdvertRtrs
Value
Description
[ multicast
[
5
[ off
[
on
]
]
]
]
- Advertisment type
- Advertisement interval
- Advertise prefix length extension
- Advertise routers
Enter an option number or name, "=" main menu, <ESC> previous menu
7
APxxxx_230528
AdvertType
This value specifies the type of datagram the Mobile Agent will use when sending out ICMP Agent
Advertisements. The RFC 1256 recommendation and the default for the Access Point is to use the All
Hosts Multicast address (224.0.0.1). In testing, it was discovered that some mobile nodes were not
automatically joining this multicast group and thus were ignoring the agent advertisements. For these
mobile nodes this value should be changed to ‘broadcast’ which will use the limited broadcast address
(255.255.255.255) for all unsolicited agent advertisements.
AdvertInterval
This value specifies how frequently (in seconds) the Mobile Agent will send out an ICMP Router
Advertisement multicast. These advertisements are used by the Mobile Nodes to locate the Mobile Agents,
and to determine to which network they are currently attached. The more frequent the advertisement, the
sooner the Mobile Node will be aware that it has attached to a new network and start the registration/deregistration process (if necessary). Since these are either multicast or broadcast datagrams (see below), the
Access Point must be configured to forward these types of frames onto the RF network. We are currently
working on a scheme to allow link layer notification of re-attachment resulting in a Router Solicitation
from the Mobile Node. This will prompt a unicasted Router Advertisement from the Mobile Agent to the
Mobile Node and allow multicast/broadcast forwarding on the Access Point to be turned off.
PrefixLen
This option allows the Prefix Length extension to the Mobility Agent (router) advertisement to be enabled
or disabled. This extension is used to indicate the number of bits in the subnet mask for the Mobility Agent
generating the advertisement. The presence of the Prefix Length extension may be helpful to some Mobile
Nodes in determining if they have attached to a foreign network. The default value is off. (note: should be
on for FTP TSR stacks, off for VxD stacks)
AdvertRtrs
RFC 2002 (Mobile IP) states that IP Routers MAY be included in the Router Advertisement (RFC 1256)
portion of the Agent Advertisement. However, since the IP Address of the Agent itself is included in the
router list, doing so may cause some hosts to select the Mobility Agent as its default router. In an attempt
to minimize this situation, the Mobile Agent also includes the IP Address of its default router in the list of
advertised routers with a higher “preference” value. If a host continues to select a Mobility Agent as it
default router, the Agent can be configure to advertise zero routes by setting this value to off. The default
value is on.
Utilizing the Time MenuAironet Access Point V7.05
Option
1
2
3
4
-
Time_server
Sntp_server
Offset
Dst
Configuration Time Menu
Value
[ 000.000.000.000 ]
[ 000.000.000.000 ]
[
0
]
[
off
]
APXXXX_1419d8
Description
-
Time protocol server
Network time server
GMT offset in minutes
Use daylight savings time
Enter an option number or name, "=" main menu, <ESC> previous menu
8
Time_Server
When entering an address of a Time protocol server into this parameter the Client will send a request to
that server to acquire the time from that server.
Sntp_Server
When entering an address of an Sntp protocol server into this parameter the Client will send a request to
that server to acquire the time from that server.
Offset
Number minutes from Greenwich Mean Time. This must be set properly.
Dst
When set to on, accounts for Daylight Savings time changes in Spring and Fall.
TIP- Proprietary setting for OEM usage. These settings should be left at the default state.
Using the Configuration Radio IEEE 802.11 Menu
Page 4-5
Aironet Access Point V7.05
Option
1
2
3
4
5
6
7
-
Beacon
Dtim
Extend
Bcst_ssid
Rts
Privacy
Encapsulation
Configuration Radio I80211 Menu
Value
[
[
[
[
[
[
[
100
2
on
on
2048
menu
menu
]
]
]
]
]
]
]
APXXXX_1419d8
Description
-
Beacon period in Kusec
DTIM interval
Allow proprietary extensions
Allow broadcast SSID
RTS/CTS packet size threshold
Privacy configuration
Configure packet encapsulation
Bcst_SSID
Setting this parameter will allow the Access Point to accept packets with the SSID set to a NULL character.
9
Privacy Menu
WEP (Wired Equivalent Privacy) is an optional IEEE 802.11 feature used to provide data confidentiality
that is equivalent to the confidentiality of a wired LAN that does not employ crypto techniques to enhance
privacy. WEP will only make the wireless LAN link in a system as secure as the wired link. This option is
only available at 1 and 2Mb datarates. It will not operate at 5.5 or 11Mb (4800 series only).
Aironet Access Point V7.05 Configuration Radio I80211 Privacy Menu APXXXX_1419d8
Option
Value
Description
1 - Encryption [ off ] - Encrypt radio packets
2 - Client
[ open ] - Client authentication modes allowed
3 - Key
Encryption
This parameter will invoke encryption on all datapackets except association and some control packets.
Setting this to off will turn off all encryption. Setting this to on, will require all data transfers to be
encrypted. All clients wishing to use the Access Point will be required to have encryption active, and a key
set properly.
Client
This parameter determines which method of authentication the client and Access Point will use. Aironet
recommends the use of the OPEN parameter. The IEEE 802.11 specification allows also the Shared Key
authentication. For more information on Shared Key, see the IEEE 802.11 specification
Key
The value here must match all authorized users on the system. This is the key to the encryption algorithm.
Enter in up to 10 hex characters.
Using the Configuration Radio Install Menu
Page 4-9
The items in this menu have been moved to various other listings, mainly the Linktest menu.
Using the Linktest Menu
Page 4-10
Aironet Access Point V7.05
Option
1
2
3
4
5
6
7
8
9
01
02
-
Strength
Carrier
Multicast
Unicast
Remote
Destination
Size
Count
Errors
Autotest
Continuous
Configuration Radio Linktests Menu APXXXX_1419d8
Value
[ any
[ 512
[ 100
]
]
]
[ once ]
[
0
]
Description
-
Run a signal strength test
Carrier busy statistics
Run a multicast echo test
Run a unicast echo test
Run a remote echo test
Target address
Packet size
Number of packets to send
Radio error statistics
Auto echo test
Repeat echo test once started
10
Running a Signal Strength Test (Strength)
See Page 4-9
Running a Carrier Test
This test will scan the frequencies for other RF signals. It will enable you to determine if there are other
radio signals in the band and assist in determining the best channel to use.
Using the Configuration Radio Extended Menu
Page 4-14
Aironet Access Point V7.05
Option
1
2
3
4
5
6
7
-
Time_retry
Count_retry
Balance
Diversity
Modulation
Power
Fragment
Configuration Radio Extended Menu
Value
APXXXX_1419d8
Description
[ 8
[ 0
[ off
[ off
[ cck
]
]
]
]
]
[ 2048
]
-
Number of seconds to retry transmit
Maximum number transmit retries
Load balancing
Enable the diversity antennas
- Transmit power level
- Maximum fragment size
Balance
This setting determines if Load Balancing between Access Points is enabled.
Modulation
This selects the type of modulation for the 5.5 and 11Mb rates. All units in the system must be set to the
same modulation type to operate at the higher datarates. CCK is the modulation that is specified under the
proposed IEEE 802.11 specification draft for high speed LANS (5.5 and 11Mb).
Using the Configuration Ident Menu
Page 6-2
Aironet Access Point V7.05
Option
1
2
3
4
5
6
7
8
9
01
02
03
04
-
Inaddr
Inmask
Gateway
Routing
Dns1
Dns2
Domain
Nid
Name
Location
Contact
Bootp_DHCP
Class
Configuration Ident Menu
Value
[
[
[
[
[
[
[
[
[
[
[
[
[
149.023.130.100 ]
255.255.000.000 ]
000.000.000.000 ]
menu
]
000.000.000.000 ]
000.000.000.000 ]
""
]
0040961419d8
]
"APXXXX_1419d8" ]
""
]
""
]
off
]
"AP4800E"
]
APXXXX_1419d8
Description
- Internet address
- Internet subnet mask
- Internet default gateway
- IP routing table configuration
- DNS server 1
- DNS server 2
- Domain name
- Network address
- Node name
- System location
- System contact name
- Use BOOTP/DHCP on startup
- DHCP class id
11
DNS1
This allows the use of DNS names instead of using numerical IP address for management packet routing.
Enter the IP address of the DNS server on the system.
DNS2
Provides a secondary DNS name server
Domain
Provides the ability to offer a Domain name, allowing shortened entries for DNS names.
BootP/DHCP
See Page 12-14
Class
See Page 12-15
Using the Configuration SNMP Menu
Page 7-2
The community parameters have been moved to the Console Menu. The Trap parameters have been moved
to the logs menu (see page 18 of this document).
Viewing the Statistics Menu
Page 8-2
Aironet Access Point V7.05
Option
1
2
3
4
5
6
7
8
9
01
02
-
Statistics Menu
Value
Throughput
Radio
Ethernet/Token Ring
Status
Map
Watch
History
Nodes
ARP
Display_time
[ 10 ]
IpAdr
[ off ]
APXXXX_1419d8
Description
-
Throughput statistics
Radio error statistics
Ethernet/Token Ring error statistics
Display general status
Show network map
Record history of a statistic
Display statistic history
Node statistics
ARP table
Time to re-display screens
Determine client IP addresses
Ethernet/ Token Ring Error Statistics
The Ethernet/Token Ring Error Statistics Display provides a detailed summary of the Ethernet or Token
Ring receive and transmit errors that have occurred on the unit. To access this display, select Statistics
from the Main Menu then select Ethernet/Token Ring from the Statistics Menu.
Displaying the Network Map (Map)
See Page 9-6
12
IpAdr
This parameter allows the Map Function to display the IP addresses of all clients. However, setting this
parameter to on will create traffic used for only identifying the IP addresses. Unless necessary, this
parameter should be set to OFF, unless actively viewing the MAP function.
Using the Association Menu
Page 9-3
Aironet Access Point V7.05
Option
1
2
3
4
5
6
7
-
Display
Summary
Maximum
Autoreg
Add
Remove
Niddisp
Association Menu
Value
[
[
1024
on
APXXXX_1419d8
Description
]
]
[ numeric ]
-
Display the table
Display the table summary
Maximum allowed child nodes
Allow automatic table additions
Control node access
Remove access control
Node Ids display mode
Enter an option number or name, "=" main menu, <ESC> previous menu
Association Monitor Menu (Monitor)- Map function moved to Statistics Menu (see above)
Using the Filter Menu
Page 10-2
Aironet Access Point V7.05
APXXXX_1419d8
Option
1
2
3
4
5
-
Multicast
Node
Protocols
Proxy_arp
Direction
Filter Menu
Value
[
menu
[
menu
[
menu
[
off
[ to_radio
Description
]
]
]
]
]
-
Multicast address filtering
Node address filtering
Protocol filters
Activate proxy ARP function
Packet direction affected by filters
Enter an option number or name, "=" main menu, <ESC> previous menu
Proxy_Arp
This provides the ability of the Access Point to learn IP address of all clients and the AP will provide
response to an ARP to a client rather then sending the ARP over the RF, and having the client generate a
response, to again be transmitted over the RF. This can greatly reduce RF traffic.
13
Using the Logs Menu
Page 11- 8
Aironet Access Point V7.05
Option
1
2
3
4
5
6
7
8
9
-
History
Clear
Printlevel
Loglevel
Ledlevel
Statistics
Network
Syslog
Snmp
Logs Menu
Value
[
[
[
APXXXX_1419d8
Description
all
all
error/severe
]
]
]
[
off
]
[ 000.000.000.000 ]
[
menu
]
-
Log and alarm history
Clear the history buffer
Type of logs to print
Type of logs to save
Type of logs to light status led
Set alarms on statistics
Log network roaming
Unix syslogd address
Set-up SNMP traps
Enter an option number or name, "=" main menu, <ESC> previous menu
Network
This parameter will allow logging of clients that have roamed across to different Access Points, and define
where they roamed to.
SNMP Traps
Aironet Access Point V7.05
Option
1
2
3
4
-
Trapdest
Trapcomm
Loglevel
Authtrap
Logs Snmp Menu
Value
[
none
]
[ "public" ]
[
off
]
[
off
]
APXXXX_1419d8
Description
-
IP destination for SNMP traps
Community for SNMP traps
Type of logs to cause a trap
Enable authentication failure trap
Enter an option number or name, "=" main menu, <ESC> previous menu
Trapdest
See Page 7-6
Trapcom
See Page 7-7
Loglevel
See Page 7-7
Authtrap
See Page 7-7
14