Basic Network Settings. EnGenius ENH500

Basic Network Settings

Chapter 4

4.1 System Status

S

YSTEM

S

TATUS

View the summary of the current system status including system (hardware/software version, date/time), wired network (LAN) and wireless network (WLAN) information.

4.1.1 Using Save/Reload

Save and apply the settings shown in the Unsaved changes list, or cancel the unsaved changes and revert to the previous settings that were in effect.

4-1

4.1.2 Viewing System Information

Displays status information about the current operating mode.

System Information

shows the general system information such as operating mode, system up time, firmware version, serial number, kernel version, and application version.

LAN Settings

shows Local Area Network settings such as the

LAN IP address, subnet mask, and MAC address.

V

IEWING

S

YSTEM

I

NFORMATION

4-2

WAN Settings

shows Wide Area Network settings such as the

MAC address, connection type, connection status, LAN IP address, subnet mask, primary and secondary DNS.

Current Wireless Settings

shows wireless information such as frequency and channel. Since the

ENH500 supports multiple-

SSIDs, information about each SSID, such as its ESSID and security settings, are displayed.

V

IEWING

S

YSTEM

I

NFORMATION

4-3

4.1.3 Viewing Wireless Client List

V

IEWING

W

IRELESS

C

LIENT

L

IST

Displays a list of clients associated to the

ENH500, along with the MAC addresses and signal strength for each client. To remove an SSID client from the list, click the button that appears in the Kick and Ban column.

Click the Refresh button to update the client list.

4-4

4.1.4 Viewing System Log

V

IEWING

S

YSTEM

L

OG

The E

NH500 automatically logs events to internal memory.

Note:

The oldest events are deleted from the log when memory is full.

Click the Refresh button to update the client list or the Clear button to remove all events.

4-5

V

IEWING

C

ONNECTION

S

TATUS

4.1.5 Viewing Connection Status

Displays the current status of the network.

The WLAN information shown includes network type, SSID, BSSID, connection status, wireless mode, current channel, security, data rate, noise level, and signal strength.

The WAN information shown includes the MAC address, connection type, connection status, IP address, IP subnet mask, primary

DNS and secondary DNS.

Click the Refresh button to update the client list or the Clear button to remove all events.

4-6

4.1.6 Viewing DHCP Client Table

V

IEWING

DHCP C

LIENT

T

ABLE

Displays the clients that are associated to the E

NH500 through DHCP. The MAC addresses and signal strength for each client are also shown.


4-7

4.1.7 Viewing WDS Link List

V

IEWING

WDS L

INK

L

IST

Displays the clients that are associated to the

ENH500 through WDS. The MAC addresses, link status and signal strength for each client are also shown.


4-8

4.2 System Setup

S

YSTEM

S

ETUP

The following sections explain the features and functionality of the E

NH500 in access point mode, client bridge mode, WDS access point mode, WDS bridge mode, WDS station mode and client router mode.

4.2.1 Configuring Operation Mode

Set the primary function of the device. The function that is selected affects which items are available in the main menu.

Device Name

Enter a name for the device. The name you type appears in SNMP management. This name is not the SSID and is not broadcast to other devices.

Operation Mode

Use the radio button to select an operating mode.

Click Save & Apply to save changes or Cancel to abort.

4-9

4.2.2 Configuring IP Settings

Configure the E

NH500 LAN settings for the ENH500 using a static or dynamic IP address.

IP Network Setting

Configure the network connection type using either a static IP or dynamic IP.

IP Address

Enter the LAN IP address of the E

NH500.

Subnet Mask

Enter the subnet mask of the E

NH500.

Default Gateway

Enter the default gateway of the E

NH500.

Primary DNS

Enter the primary DNS address of the

ENH500.

Secondary DNS

Enter the secondary DNS address of the

E

NH500.

Use Link-Local Address

Click to enable a link-local address for the device.

IPv6 IP Address

Enter the IPv6 LAN IP address of the E

NH500

IPv6 Subnet Prefix Length

Enter the IPv6 subnet prefix length of the E

NH500.

IPv6 Default Gateway

Enter the IPv6 default gateway of the E

NH500.

IPv6 Primary DNS

Enter the IPv6 primary DNS of the E

NH500.

IPv6 Secondary DNS

Enter the IPv6 secondary DNS of the E

NH500.

Click Apply to save the settings or Cancel to discard changes.

4-10

C

ONFIGURING

IP S

ETTINGS

C

ONFIGURING

S

PANNING

T

REE

S

ETTINGS

4.2.3 Configuring Spanning Tree Settings

Spanning Tree Status

Enable or disable the E

NH500

Spanning Tree function.

Bridge Hello Time

Specify Bridge Hello Time, in seconds. This value determines how often the E

NH500 sends hello packets to communicate information about the topology throughout the entire Bridged Local Area Network

Bridge Max Age

Specify Bridge Max Age, in seconds. If another bridge in the spanning tree does not send a hello packet for a long period of time, it is assumed to be dead.

Bridge Forward Delay

Specify Bridge Forward Delay, in seconds. Forwarding delay time is the time spent in each of the

Listening and Learning states before the Forwarding state is entered. This delay is provided so that when a new bridge comes onto a busy network, it looks at some traffic before participating.

Priority

Specify the Priority number. Smaller numbers have greater priority.

Click Accept to confirm the changes or Cancel to cancel and return previous settings.

4-11

4.3 Router Setup

4.3.1 Configuring WAN Settings

Configure the WAN settings for the E

NH500 using a static or dynamic IP address, PPPoE or PPTP.

Static IP

Setting a static IP address allows an administrator to set a specific IP address for the router and guarantees that it can not be assigned a different address.

Account Name

Enter the account name provided by your ISP.

Domain Name

Enter the domain name provided by your ISP.

MTU

The maximum transmission unit (MTU) specifies the largest packet size permitted for an internet transmission. The factory default MTU size for static IP is 1500. The MTU size can be set between 576 and 1500.

IP Address

Enter the router’s WAN IP address.

Subnet Mask

Enter the router’s WAN subnet mask.

Default Gateway

Enter the WAN gateway address.

Primary DNS

Enter the primary DNS server address.

4-12

R

OUTER

S

ETUP

D

YNAMIC

IP

Secondary DNS

Enter the secondary DNS server address.

Discard Ping on WAN

Check to Enable to recognize pings on the E

NH500 WAN interface or Disable to block pings on the

E

NH500 WAN interface. Note: Pinging IP addresses is a common method used by hackers to test whether the IP address is valid.

Blocking pings provides some extra security from hackers.

Click Accept to save the settings or Cancel to discard changes.

Dynamic IP

Dynamic IP addressing assigns a different IP address each time a device connects to an ISP service provider. The service is most commonly used by ISP cable providers.

Account Name

Enter the account name provided by your ISP.

Domain Name

Enter the domain name provided by your ISP.

MTU

The maximum transmission unit (MTU) specifies the largest packet size permitted for an internet transmission. The factory default MTU size for Dynamic IP is 1500. The MTU size can be set between 576 and 1500.

Get Automatically From ISP

Click the radio button to obtain the DNS automatically from the DHCP server.

Use These DNS Servers

Click the radio button to set up the Primary DNS and Secondary DNS servers manually.




ENH500 WAN interface. Note: Pinging IP addresses is a common method used by hackers to test whether the IP address is valid.



4-13

P

OINT

-

TO

-P

OINT

P

ROTOCOL OVER

E

THERNET

(PPP

O

E)

Point-to-Point Protocol over Ethernet (PPPoE)

Point-to-Point Protocol over Ethernet (PPPoE) is used mainly by ISPs that provide DSL modems to connect to the Internet.

MTU

Enter the maximum transmission unit (MTU).

The MTU specifies the largest packet size permitted for an internet transmission (PPPoE default: 1492). The MTU size can be set between

576 and 1492.

Login

Enter the username assigned by an ISP.

Password

Enter the password assigned by an

ISP.

Service Name

Enter the service name of an ISP

(optional).

Connect on Demand

Select the radio button to specify the maximum idle time. Internet connection will disconnect when it reach the maximum idle time, but it will automatically connect when user tries to access the network.

Keep Alive

Select whether to keep the Internet connection always on, or enter a redial period once the internet lose connection.


Click the radio button to obtain the DNS automatically from the ISP.




Check to Enable to recognize pings on the

ENH500 WAN interface or Disable to block pings on the ENH500

WAN interface. Note: Pinging IP addresses is a common method used by hackers to test whether the IP address is valid.



4-14

P

OINT

-

TO

-P

OINT

T

UNNELLING

P

ROTOCOL

(PPTP)

Point-to-Point Tunnelling Protocol (PPTP)

The point-to-point tunnelling protocol (PPTP) is used in association with virtual private networks

(VPNs). There a two parts to a PPTP connection: the WAN interface settings and the PPTP settings.

MTU

Enter the maximum transmission unit (MTU).

The MTU specifies the largest packet size permitted for an internet transmission (PPPoE default: 1400). The MTU size can be set between

1200 and 1400.

IP Address

Enter the router’s WAN IP address.

Subnet Mask

Enter the router’s WAN subnet IP address.

Default Gateway

Enter the router’s WAN gateway

IP address.

PPTP Server

Enter the IP address of the PPTP server.

Username

Enter the username provided by your

ISP.

Password

Enter the password provided by your ISP.

Connect on Demand

If you want the E

NH500 to end the Internet connection after it has been inactive for a period of time, select this option and enter the number of minutes you want that period of inactivity to last.

Keep Alive

If you want the E

NH500 to periodically check your Internet connection, select this option. Then specify how often you want the E

NH500 to check the Internet connection. If the connection is down, the ENH500 automatically re-establishes your connection


Obtains the DNS automatically from ISP.

4-15

P

OINT

-

TO

-P

OINT

T

UNNELLING

P

ROTOCOL

(PPTP)






E

NH500 WAN interface. Note: Pinging IP addresses is a common method used by hackers to test whether the IP address is valid.



4-16

4.3.2 Configuring LAN Settings

IP Address

Enter the LAN port IP address.

IP Subnet Mask

Enter the LAN IP subnet mask.

WINS Server IP

Enter the WINS Server IP.

Use Router As DHCP Server

Check this option to enable the

E

NH500 internal DHCP server.

Starting IP Address

Specify the starting IP address range for the pool of allocated for private IP addresses. The starting IP address must be on the same subnet as the ending IP address; that is the first three octets specified here must be the same as the first three octets in End IP Address.

Ending IP Address

Specify the ending IP address range for the pool of allocated for private IP addresses. The ending IP address must be on the same subnet as the starting IP address; that is the first three octets specified here must be the same as the first three octets in Start IP Address.

WINS Server IP

Enter the IP address of the WINS server.


C

ONFIGURING

LAN S

ETTINGS

4-17

C

ONFIGURING

VPN P

ASS

-T

HROUGH

4.3.3 Configuring VPN Pass-Through

VPN Pass-through allows a secure virtual private network (VPN) connection between two computers. Enabling the options on this page opens a VPN port and enables connections to pass through the

ENH500 without interruption.

PPTP Pass-through

Check this option to enable PPTP pass-through mode.

L2TP Pass-through

Check this option to enable L2TP pass-through mode.

IPSec Pass-through

Check this option to enable IPSec pass-through mode.


4-18

C

ONFIGURING

P

ORT

F

ORWARDING

4.3.4 Configuring Port Forwarding

Port forwarding enables multiple server applications on a LAN to serve clients on a WAN over a single WAN IP address. The router accepts incoming client packets, filters them based on the destination WAN, or public, port and protocol and forwards the packets to the appropriate LAN, or local, port. Unlike the DMZ feature, port forwarding protects LAN devices behind the firewall.

NO.

Displays the sequence number of the forwarded port.

Name

Displays the name of the forwarded port.

Protocol

Displays the protocol to use for mapping from the following: TCP, UDP or Both.

Start Port

Displays the LAN port number that WAN client packets will be forward to.

End Port

Displays the port number that the WAN client packets are received.

Server IP

Displays the IP address of the server for the forwarded port.

Enable

Click to enable or disable the forwarded port profile.

Modify

Click to modify the forwarded port profile.

Delete

Click to delete the forwarded port profile.

Click Add Entry to add port forwarding rules.

Click Accept to confirm the changes.

4-19

Service Name

Enter a name for the port forwarding rule.

Protocol

Select a protocol for the application: Choices are Both, TCP, and UDP.

Starting Port

Enter a starting port number.

Ending Port

Enter an ending port number. All ports numbers between the starting and ending ports will forward users to the IP address specified in the IP Address field.

IP Address

Enter the IP address of the server computer on the LAN network where users will be redirected.

Click Save to apply the changes or Cancel to return previous settings.

C

ONFIGURING

P

ORT

F

ORWARDING

4-20

C

ONFIGURING

D

EMILITARIZED

Z

ONE

4.3.5 Configuring Demilitarized Zone

Configuring a device on the LAN as a demilitarized zone (DMZ) host allows unrestricted two-way Internet access for Internet applications, such as online video games, to run from behind the NAT firewall. The DMZ function allows the router to redirect all packets going to the WAN port IP address to a particular IP address on the LAN. The difference between the virtual server and the DMZ function is that a virtual server redirects a particular service or Internet application, such as FTP, to a particular LAN client or server, whereas a DMZ redirects all packets, regardless of the service, going to the WAN IP address to a particular LAN client or server.

!

WARNING!

The PC defined as a DMZ host is not protected by the firewall and is vulnerable to malicious network attacks. Do not store or manage sensitive information on the DMZ host.

DMZ Hosting

Select Enable DMZ to activate DMZ functionality.

DMZ Address

Enter an IP address of a device on the LAN.


4-21

4.4 Configuring Wireless LAN

C

ONFIGURING

W

IRELESS

LAN

4.4.1 Configuring Wireless Settings

Instructions on how to configure the wireless and security settings for each of the possible operating modes.

!

WARNING!

Incorrectly changing these settings may cause the device to stop functioning. Do not modify the settings in this section without a thorough understanding of the parameters.

Access Point Mode

The E

NH500 supports Access Point Mode. In this mode, users with a wireless client device within range can connect to the

E

NH500 to access the WLAN.

Wireless Mode

Wireless mode supports 802.11a/n mixed modes.

Channel HT Mode

The default channel bandwidth is 20/

40 MHz. The larger the channel, the better the transmission quality and speed.

Extension Channel

Select upper or lower channel. Your selection may affect the Auto channel function.

Channel / Frequency

Select the channel and frequency appropriate.

Auto

Check this option to enable auto-channel selection.

AP Detection

AP Detection can select the best channel to use by scanning nearby areas for Access Points.

4-22

A

CCESS

P

OINT

M

ODE

Current Profile

Configure up to four different SSIDs. If many client devices will be accessing the network, you can arrange the devices into SSID groups. Click Edit to configure the profile and check whether you want to enable extra SSIDs.


SSID

Specify the SSID for the current profile.

VLAN ID

Specify the VLAN tag for the current profile.

Suppressed SSID

Check this option to hide the SSID from clients. If checked, the SSID will not appear in the site survey.

Station Separation

Click the appropriate radio button to allow or prevent communication between client devices.

Wireless Security

See the Wireless Security section.

Click Save to accept the changes or Cancel to cancel and return previous settings.

4-23

C

LIENT

B

RIDGE

M

ODE

Client Bridge Mode

Client Bridge Mode lets you connect two LAN segments via a wireless link as though they are on the same physical network. Since the computers are on the same subnet, broadcasts reach all machines. As a result, DHCP information generated by the server reach all client computers as though the clients residing on one physical network.

Wireless Mode


SSID

Specify the SSID if known. This field is completed automatically if you select an Access Point in the Site

Survey.

Site Survey

Scans nearby locations for Access Points.

You can select a discovered Access Point to establish a connection.

Prefer BSSID

Enter the MAC address if known. If you select an Access Point in the Site Survey, this field is completed automatically.


For details on wireless security settings, see Configuring Wireless Security.


Profile

If you used the Site Survey, the Web

Configurator shows nearby Access Points. To connect to an Access Point, click the Access

Point’s BSSID.


See Configuring Wireless

Security.

Click Refresh to scan again.

4-24

WDS B

RIDGE

M

ODE

WDS Bridge Mode

Unlike traditional bridging. WDS Bridge Mode allows you to create large wireless networks by linking several wireless access points with WDS links. WDS is normally used in large, open areas, where pulling wires is cost prohibitive, restricted or physically impossible.

Wireless Mode


Channel HT Mode

The default channel bandwidth is 40 MHz.

The larger the channel, the better the transmission quality and speed.

Extension Channel

Select upper or lower channel. Your selection may affect the Auto channel function.

Channel / Frequency

Select the channel and frequency appropriate.


4-25

Security

Select the type of WDS security: None,

WEP, or AES.

WEP Key

Enter the WEP key.

AES Pass phrase

Enter the AES pass phrase.

MAC Address

Enter the MAC address of the

Access Point to which you want to extend wireless connectivity.

Mode

Select Disable or Enable to disable or enable WDS.


4-26

WDS B

RIDGE

M

ODE

C

LIENT

R

OUTER

M

ODE

Client Router Mode

In Client Router Mode, you can access the Internet wirelessly with the support of a WISP. In AP Router Mode, the E

NH500 can access the Internet via a cable or DSL modem. In this mode, the E

NH500 can be configured to turn off the wireless network name

(SSID) broadcast, so that only stations that have the SSID can be connected. The E

NH500 also provides wireless LAN 64/128/

15

2-bit WEP encryption security, WPA/WPA2, and WPA-PSK/WPA2-PSK authentication, as well as TKIP/AES encryption security. It also supports VPN pass-through for sensitive data secure transmission.

Wireless Mode


SSID

Specify the SSID if known. This field is completed automatically if you select an Access Point in the Site

Survey.

Site Survey

Scans nearby locations for Access Points.

You can select a discovered Access Point to establish a connection.

Prefer BSSID

Enter the MAC address if known. If you select an Access Point in the Site Survey, this field is completed automatically.


See Configuring Wireless Security.


Profile

If you used the Site Survey, the Web

Configurator shows nearby Access Points. To connect to an Access Point, click the Access

Point’s BSSID.


See Configuring Wireless

Security.

Click Refresh to scan again.

4-27

C

ONFIGURING

W

IRELESS

S

ECURITY

4.4.2 Configuring Wireless Security

The Wireless Security Settings section lets you configure the E

NH500’s security modes: WEP, WPA-PSK, WPA2-PSK, WPA-PSK

Mixed, WPA, WPA2, and WPA Mixed. We strongly recommend you use WPA2-PSK.

Wired Equivalent Privacy (WEP)

Security Mode

Select WEP from the drop-down list to begin the configuration.

Auth Type

Select Open System or Shared.

Input Type

Select an input type of Hex or ASCII.

Key Length

Level of WEP encryption applied to all WEP keys.

Select a 64/128/152-bit password lengths.

Default Key

Specify which of the four WEP keys the E

NH500 uses as its default.

Key1 - Key4

Specify a password for the security key index. For security, each typed character is masked by a dot.

Click Save to save the changes or Cancel to cancel and return previous settings.

Note:

802.11n does not allow WEP/WPA-PSK TKIP/WPA2-PSK TKIP security mode. The connection mode will change from 802.11n to

802.11a.

4-28

W

I

-F

I

P

ROTECTED

A

CCESS

P

RE

-S

HARED

K

EY

(WPA-PSK)

Wi-Fi Protected Access Pre-Shared Key (WPA-PSK)

Security Mode

Select WPA-PSK from the drop-down list to begin the configuration.

Encryption

Select Both, TKIP, or AES as the encryption type.



Both = uses TKIP and AES.





TKIP = automatic encryption with WPA-PSK; requires passphrase.

AES = automatic encryption with WPA2-PSK; requires passphrase.

Passphrase

Specify the security password. For security, each typed character is masked by a dot.

Group Key Update Interval

Specify how often, in seconds, the group key changes.


Note:


802.11a.

4-29

W

I

-F

I

P

ROTECTED

A

CCESS

2 P

RE

-S

HARED

K

EY

(WPA2-PSK)

Wi-Fi Protected Access 2 Pre-Shared Key (WPA2-PSK)

Security Mode

Select WPA2-PSK from the drop-down list to begin the configuration.

Encryption











Passphrase





Note:


802.11a.

4-30

W

I

-F

I

P

ROTECTED

A

CCESS

P

RE

-S

HARED

K

EY

(WPA-PSK) M

IXED

Wi-Fi Protected Access Pre-Shared Key (WPA-PSK) Mixed

Security Mode

Select WPA2-PSK Mixed from the drop-down list to begin the configuration.

Encryption











Passphrase





Note:

WPA-PSK Mixed can allow multiple security modes at the same time. 802.11n does not allow WEP/WPA-PSK TKIP/WPA2-PSK TKIP security mode. The connection mode will change from 802.11n to 802.11a.

4-31

W

I

-F

I

P

ROTECTED

A

CCESS

(WPA)

Wi-Fi Protected Access (WPA)

Security Mode

Select WPA from the drop-down list to begin the configuration.

Encryption











Radius Server

Specify the IP address of the RADIUS server.

Radius Port

Specify the port number that your RADIUS server uses for authentication. Default port is 1812.

Radius Secret

Specify RADIUS secret furnished by the

RADIUS server.



Radius Accounting

Select to enable or disable RADIUS accounting.

Radius Accounting Server

Specify the IP address of the RADIUS accounting server.

Radius Accounting Port

Specify the port number that your RADIUS accounting server uses for authentication. Default port is 1813.

Radius Accounting Secret

Specify RADIUS accounting secret furnished by the RADIUS server.

Interem Accounting Interval

Specify the interem accounting interval (60 - 600 seconds).


Note:


802.11a.

4-32

W

I

-F

I

P

ROTECTED

A

CCESS

2 (WPA2)

Wi-Fi Protected Access 2 (WPA2)

Security Mode

Select WPA2 from the drop-down list to begin the configuration.

Encryption











Radius Server


Radius Port


Radius Secret


RADIUS server.














Note:


802.11a.

4-33

W

I

-F

I

P

ROTECTED

A

CCESS

(WPA) M

IXED

Wi-Fi Protected Access (WPA) Mixed

Security Mode

Select WPA Mixed from the drop-down list to begin the configuration.

Encryption











Radius Server


Radius Port


Radius Secret


RADIUS server.














Note:

WPA-PSK Mixed can allow multiple security modes at the same time. 802.11n does not allow WEP/WPA-PSK TKIP/WPA2-PSK TKIP security mode. The connection mode will change from 802.11n to 802.11a.

4-34

4.4.3 Configuring Wireless MAC Filter

Note:

This section applies to Access Point and WDS Access point mode.

C

ONFIGURING

W

IRELESS

MAC F

ILTER

Wireless MAC Filters are used to allow or deny network access to wireless clients according to their MAC addresses. You can manually add a MAC address to restrict the permission to access

ENH500. The default setting is Disable Wireless MAC Filters.

ACL Mode

Determines whether network access is granted or denied to clients whose MAC addresses appear in the MAC Address table on this page. Choices are Disable, Deny MAC in the list, or Allow MAC in the list.

MAC Address Filter

Enter the MAC address of the device.

Click Add to add the MAC address to the MAC Address table.

Click Apply to apply the changes.

4-35

C

ONFIGURING

WDS L

INK

S

ETTINGS

4.4.4 Configuring WDS Link Settings

Using WDS Link Settings, you can create a wireless backbone link between multiple access points that are part of the same wireless network. This allows a wireless network to be expanded using multiple Access Points without the need for a wired backbone to link them, as is traditionally required.

Security

Select the type of WDS security: None, WEP, or AES.

WEP Key

Enter the WEP key.

AES Passphrase

Enter the AES passphrase.

MAC Address

Enter the MAC address of the Access Point to which you want to extend wireless connectivity.

Mode

Select Disable or Enable to disable or enable WDS.

Click Accept to confirm the changes or

Cancel

to cancel and return previous settings.

Note:

The Access Point to which you want to extend wireless connectivity must enter the

ENH500’s MAC address into its configuration.

For more information, refer to the documentation for the Access Point. Not all Access Point supports this feature.

4-36

C

ONFIGURING

A

DVANCED

N

ETWORK

S

ETTINGS

4.4.5 Configuring Advanced Network Settings

Configure the advanced wireless settings for your access point using the screens in this section. Leave these settings to their default values if you are not sure what values to enter.

Data Rate

Select a data rate from the drop-down list. The data rate affects throughput. If you select a low data rate value, for example, the throughput is reduced but the transmission distance increases.

Transmit Power

Lets you increase or decrease transmit power. Higher transmit power may prevent connections to the network, while the lower transmit power can prevent clients from connecting to the device.

RTS/CTS Threshold

Specify the threshold package size for

RTC/CTS. A small number causes RTS/CTS packets to be sent more often and consumes more bandwidth.

Distance

Specify the distance between Access Points and clients. Longer distances may drop high-speed connections.

Aggregation

Merges data packets into one packet. This option reduces the number of packets, but increases packet sizes.

Wireless Traffic Shaping

Enable Traffic Shaping

Enable or disable the regulation of packet flow leaving an interface for improved QoS.

Incoming Traffic Limit

Specify the wireless transmission speed used for downloading.

Outgoing Traffic Limit

Specify the wireless transmission speed used for uploading.

Total Percentage

Specify the total percentage of the wireless traffic that is shaped.

SSID1 to SSID4

Specify the percentage of the wireless traffic that is shaped for a specific SSID.

4-37

4.5 Management Setup

M

ANAGEMENT

S

ETUP

The Management section lets you configure administration, management VLAN, SNMP settings, backup/restore settings, firmware upgrade, time settings, and log settings. This chapter describes these settings.

4.5.1 Configuring Administrator Account

Click the Administration link under the Management menu to change the user name and password used to log on to the E

NH500

Web Configurator. The default user name is admin and the default password is admin. Changing these settings protects the EnStaconfiguration settings from being accessed by unauthorized users.

New Name

Enter a new username for logging in to the Web

Configurator.

New Password

Enter a new password for logging in to the Web

Configurator

Confirm Password

Re-enter the new password for confirmation.

Click Save/Apply to apply the changes or Cancel to return previous settings.

Remote Management

Enable or disable remote management.

Remote Upgrade

Specify whether the E

NH500 firmware can be upgraded remotely.

Remote Management Port

If remote management is enabled, enter the port number to be used for remote management. For example: If you specify the port number 8080, enter http://<IP

address>:8080

to access the

ENH500 Web Configurator.

Click Accept to apply the changes or Cancel to return previous settings.

4-38

C

ONFIGURING

M

ANAGEMENT

VLAN

4.5.2 Configuring Management VLAN

Click the Management VLAN link under the Management menu to assign a VLAN tag to the packets. A VLAN is a group of computers on a network whose software has been configured so that they behave as if they were on a separate Local Area Network (LAN).

Computers on VLAN do not have to be physically located next to one another on the LAN

Management VLAN ID

If your network includes VLANs and if tagged packets need to pass through the Access Point, enter the

VLAN ID. Otherwise, click No VLAN tag.


Note:

If you reconfigure the Management VLAN ID, you may lose your connection to the E

NH500. Verify that the DHCP server supports the reconfigured VLAN ID and then reconnect to the E

NH500 using the new IP address.

4-39

C

ONFIGURING

SNMP

4.5.3 Configuring SNMP

SNMP is used in network management systems to monitor network-attached devices for conditions that warrant administrative attention.

SNMP


NH500 SNMP function.

Contact

Enter the contact details of the device.

Location

Enter the location of the device.

Community Name (Read Only)

Enter the password for accessing the SNMP community for read-only access.

Community Name (Read/Write)

Enter the password for accessing the SNMP community for read and write access.

Trap Destination Address

Enter the IP address where SNMP traps are to be sent.

Trap Destination Community Name

Enter the password of the SNMP trap community.

SNMPv3

Enable or Disable the SNMPv3 feature.

User Name

Specify the username for SNMPv3.

Auth Protocol

Select the authentication protocol type: MD5 or SHA.

Auth Key (8-32 Characters)

Specify the authentication key for authentication.

Priv Protocol

Select the privacy protocol type: DES.

Priv Key (8-32 Characters)

Specify the privacy key for privacy.

4-40

Engine ID

Specify the engine ID for SNMPv3.


C

ONFIGURING

SNMP

4-41

C

ONFIGURING

B

ACKUP

/R

ESTORE

S

ETTINGS

4.5.4 Configuring Backup/Restore Settings

Click the Backup/Restore Setting link under the Management menu to save the E

NH500’s current settings in a file on your local disk or load settings onto the device from a local disk. This feature is particularly convenient administrators who have several

E

NH500 devices that need to be configured with the same settings.

This page also lets you return the E

NH500 to its factory default settings. If you perform this procedure, any changes made to the

E

NH500 default settings will be lost.

Save A Copy of Current Settings

Click Backup to save the current configured settings.

Restore Saved Settings from A File

To restore settings that have been previously backed up, click Browse, select the file, and click Restore.

Revert to Factory Default Settings

Click Factory Default to restore the E

NH500 to its factory default settings.

4-42

C

ONFIGURING

A

UTO

R

EBOOT

S

ETTINGS

4.5.5 Configuring Auto Reboot Settings

Click the Auto Reboot Settings link under the Management menu to enable or disable the Auto Reboot function. This feature is particularly convenient to administrators for the scheduling of auto rebooting on the device.

This page also allows you to set the frequency of this function.

Auto Reboot Setting

Select Enable from the drop-down menu to setup this function.

Frequency of Auto Reboot

Select the frequency interval using the drop-down menus.

Save/Apply

Click Save/Apply to set the new configuration.

Cancel

Click Cancel to delete the settings.

4-43

C

ONFIGURING

F

IRMWARE

U

PGRADE

4.5.6 Configuring Firmware Upgrade

Firmware is system software that operates and allows the administrator to interact with the router.

!

WARNING!

Upgrading firmware through a wireless connection is not recommended. Firmware upgrading must be performed while connected to an Ethernet (LAN port) with all other clients disconnected.

The firmware upgrade procedure can take several minutes. Do not power off the E

NH500 during the firmware upgrade, as it can cause the device to crash or become unusable.

To update the firmware version, follow these steps:

1. Download the appropriate firmware approved by EnGenius Networks from an approved web site.

Note:

Save the firmware file to a local hard drive.

2. Click Choose File.

3. Browse the file system and select the firmware file.

4. Click Upload.

5. The E

NH500 restarts automatically after the upgrade completes.

4-44

C

ONFIGURING

S

YSTEM

T

IME

4.5.7 Configuring System Time

Change the system time of the E

NH500 by manually entering the information, synchronizing the device with a PC, or setup automatic updates through a network time (NTP) protocol server.

Manually Set Date and Time

Enter the date and time values in the date and time fields or click the Synchronize with PC button to get the date and time values from the administrator’s

PC.

Automatically Get Date and Time

Select a time zone from the drop-down list and check whether you want to enter the IP address of an NTP server or use the default NTP server.

Enable Daylight Saving

Click to enable or disable daylight savings time. Select the start and stop times from the Start

Time

and Stop Time dropdown lists.


4-45

C

ONFIGURING

W

I

-F

I

S

CHEDULE

4.5.8 Configuring Wi-Fi Schedule

Use the Wi-Fi schedule function to control the wireless power ON/OFF service that operates on a routine basis.

Add a Schedule Service

Create a schedule service type and date/time parameters for a specific service.

Schedule Name

Enter the description of the schedule service.

Service

Select the type of schedule service, either

Wireless Power ON

or Wireless Power OFF.

Day

Select the days of the week to enable the schedule service.

Time of Day

Set the start time that the service is active.

Click Add to append the schedule service to the schedule service table, or Cancel to discard changes.

4-46

S

CHEDULE

S

ERVICES

T

ABLE

Schedule Services Table

The Schedule function relies on the GMT time setting acquired from a network time protocol (NTP) server. For details on how to connect the E

NH500 to an NTP server, see Configuring System Time.

Schedule Table

Displays a list of scheduled services for the E

NH500. The properties of each service displayed are:

#

Displays the ID number of the service in the table.

Name

Displays the description of the service.

Service

Displays the type of service, either Wireless Power ON or Wireless Power OFF.

Schedule

Displays the schedule information of when the service is active.

Select

Select one or more services to edit or delete.

Click Delete Selected to delete the selected services or Delete All to delete all services.

Click Apply to save the settings or Cancel to discard changes.

4-47

C

ONFIGURING

C

OMMAND

L

INE

I

NTERFACE

4.5.9 Configuring Command Line Interface

Most users will configure the E

NH500 through the graphical user interface (GUI). However, for those who prefer an alternative method there is the command line interface (CLI). The CLI can be access through a command console, modem or Telnet connection.

CLI

Select to enable or disable the ability to modify the E

NH500 via a command line interface (CLI).


4-48

C

ONFIGURING

L

OGGING

4.5.10 Configuring Logging

Display a list of events that are triggered on the E

NH500 Ethernet and wireless interfaces. You can consult this log if an unknown error occurs on the system or when a report needs to be sent to the technical support department for debugging purposes.

Syslog


NH500 syslog function.

Log Server IP Address

Enter the IP address of the log server.

Local Log

Enable or disable the local log service.


4-49

C

ONFIGURING

D

IAGNOSTICS

4.5.11 Configuring Diagnostics

The diagnosis feature allow the administrator to verify that another device is available on the network and is accepting request packets. If the ping result returns alive, it means a device is on line. This feature does not work if the target device is behind a firewall or has security software installed.

Target IP / Domain Name

Enter the IP address you would like to search.

Ping Packet Size

Enter the packet size of each ping.

Number of Pings

Enter the number of times you want to ping.

Start Ping

Click Start Ping to begin pinging.

Trace route target

Enter an IP address or domain name you want to trace.

Start Traceroute

Click Start Traceroute to begin the traceroute operation.

Target Address

Enter the IP address of the target PC.

Time period

Enter time period for the speed test.

Check Interval

Enter the interval for the speed test.

Start Speed Test

Click Start Speed Test to begin the speed test operation.

IPv4 Port

Displays the IPv4 port number of the E

NH500.

IPv6 Port

Displays the IPv6 port number of the E

NH500.

4-50

4.5.12 Viewing Device Discovery

Device Name

Displays the name of the devices connected to the network.

Operation Mode

Displays the operation mode of the devices connected to the network.

IP Address

Displays the IP address of the devices connected to the network.

System MAC Address

Displays the system MAC address of the devices connected to the network.

Firmware Version

Displays the firmware version of the devices connected to the network.

V

IEWING

D

EVICE

D

ISCOVERY

4-51

C

ONFIGURE

D

ENIAL OF

S

ERVICE

P

ROTECTION

4.5.13 Configure Denial of Service Protection

Use TCP SYN Cookies Protection

Click to enable TCP SYN cookies protection.

SYN Flood Attack Protection

Click to enable or disable SYN

Flood Attack Protection.

Match Interval Per Second

Enter the allowed number of packets per second.

Limit Packets

Enter the maximum number of packets allowed per request.

UDP Flood Attack Protection

Click to enable or disable UDP Flood Attack Protection.

Match Interval Per Second

Enter the allowed number of packets per second.

Limit Packets

Enter the maximum number of packets allowed per request.

Ping Attack Protection

Click to enable or disable ping attack protection.


4-52

4.5.14 Logging Out

Click Logout to logout from the E

ENH500.

L

OGGING

O

UT

4-53

Basic Network Settings. EnGenius ENH500

Basic Network Settings

Chapter 4

4.1 System Status

4.1.1 Using Save/Reload

4.1.2 Viewing System Information

4.1.3 Viewing Wireless Client List

4.1.4 Viewing System Log

4.1.5 Viewing Connection Status

4.1.6 Viewing DHCP Client Table

4.1.7 Viewing WDS Link List

4.2 System Setup

4.2.1 Configuring Operation Mode

4.2.2 Configuring IP Settings

4.2.3 Configuring Spanning Tree Settings

4.3 Router Setup

4.3.1 Configuring WAN Settings

Static IP

Dynamic IP

Point-to-Point Protocol over Ethernet (PPPoE)

Point-to-Point Tunnelling Protocol (PPTP)

4.3.2 Configuring LAN Settings

4.3.3 Configuring VPN Pass-Through

4.3.4 Configuring Port Forwarding

4.3.5 Configuring Demilitarized Zone

4.4 Configuring Wireless LAN

4.4.1 Configuring Wireless Settings

Access Point Mode

Client Bridge Mode

WDS Bridge Mode

Client Router Mode

4.4.2 Configuring Wireless Security

Wired Equivalent Privacy (WEP)

Wi-Fi Protected Access Pre-Shared Key (WPA-PSK)

Wi-Fi Protected Access 2 Pre-Shared Key (WPA2-PSK)

Wi-Fi Protected Access Pre-Shared Key (WPA-PSK) Mixed

Wi-Fi Protected Access (WPA)

Wi-Fi Protected Access 2 (WPA2)

Wi-Fi Protected Access (WPA) Mixed

4.4.3 Configuring Wireless MAC Filter

4.4.4 Configuring WDS Link Settings

4.4.5 Configuring Advanced Network Settings

Wireless Traffic Shaping

4.5 Management Setup

4.5.1 Configuring Administrator Account

4.5.2 Configuring Management VLAN

4.5.3 Configuring SNMP

4.5.4 Configuring Backup/Restore Settings

4.5.5 Configuring Auto Reboot Settings

4.5.6 Configuring Firmware Upgrade

4.5.7 Configuring System Time

4.5.8 Configuring Wi-Fi Schedule

Add a Schedule Service

Schedule Services Table

4.5.9 Configuring Command Line Interface

4.5.10 Configuring Logging

4.5.11 Configuring Diagnostics

4.5.12 Viewing Device Discovery

4.5.13 Configure Denial of Service Protection

4.5.14 Logging Out

Key Features

Related manuals

EnGenius

ENH500

Senao Networks

U2M-ENH500

Wistron NeWeb

NKRCRP-1

EnGenius

ENH500

LanReady Technologies

SCDOW161000001

EnGenius Technologies

A8J-ENS202

EnGenius

ESR-1220

EnGenius

EGS7252FP

EnGenius Technologies

A8J-ENS200