advertisement
![Basic Network Settings. EnGenius ENH500 | Manualzz Basic Network Settings. EnGenius ENH500 | Manualzz](http://s1.manualzz.com/store/data/040011544_1-a8be9d74e429a6c9b03d7da3e131c42d-360x466.png)
Basic Network Settings
Chapter 4
4.1 System Status
S
YSTEM
S
TATUS
View the summary of the current system status including system (hardware/software version, date/time), wired network (LAN) and wireless network (WLAN) information.
4.1.1 Using Save/Reload
Save and apply the settings shown in the Unsaved changes list, or cancel the unsaved changes and revert to the previous settings that were in effect.
4-1
4.1.2 Viewing System Information
Displays status information about the current operating mode.
System Information
shows the general system information such as operating mode, system up time, firmware version, serial number, kernel version, and application version.
LAN Settings
shows Local Area Network settings such as the
LAN IP address, subnet mask, and MAC address.
V
IEWING
S
YSTEM
I
NFORMATION
4-2
WAN Settings
shows Wide Area Network settings such as the
MAC address, connection type, connection status, LAN IP address, subnet mask, primary and secondary DNS.
Current Wireless Settings
shows wireless information such as frequency and channel. Since the
ENH500 supports multiple-
SSIDs, information about each SSID, such as its ESSID and security settings, are displayed.
V
IEWING
S
YSTEM
I
NFORMATION
4-3
4.1.3 Viewing Wireless Client List
V
IEWING
W
IRELESS
C
LIENT
L
IST
Displays a list of clients associated to the
ENH500, along with the MAC addresses and signal strength for each client. To remove an SSID client from the list, click the button that appears in the Kick and Ban column.
Click the Refresh button to update the client list.
4-4
4.1.4 Viewing System Log
V
IEWING
S
YSTEM
L
OG
The E
NH500 automatically logs events to internal memory.
Note:
The oldest events are deleted from the log when memory is full.
Click the Refresh button to update the client list or the Clear button to remove all events.
4-5
V
IEWING
C
ONNECTION
S
TATUS
4.1.5 Viewing Connection Status
Displays the current status of the network.
The WLAN information shown includes network type, SSID, BSSID, connection status, wireless mode, current channel, security, data rate, noise level, and signal strength.
The WAN information shown includes the MAC address, connection type, connection status, IP address, IP subnet mask, primary
DNS and secondary DNS.
Click the Refresh button to update the client list or the Clear button to remove all events.
4-6
4.1.6 Viewing DHCP Client Table
V
IEWING
DHCP C
LIENT
T
ABLE
Displays the clients that are associated to the E
NH500 through DHCP. The MAC addresses and signal strength for each client are also shown.
Click the Refresh button to update the client list.
4-7
4.1.7 Viewing WDS Link List
V
IEWING
WDS L
INK
L
IST
Displays the clients that are associated to the
ENH500 through WDS. The MAC addresses, link status and signal strength for each client are also shown.
Click the Refresh button to update the client list.
4-8
4.2 System Setup
S
YSTEM
S
ETUP
The following sections explain the features and functionality of the E
NH500 in access point mode, client bridge mode, WDS access point mode, WDS bridge mode, WDS station mode and client router mode.
4.2.1 Configuring Operation Mode
Set the primary function of the device. The function that is selected affects which items are available in the main menu.
Device Name
Enter a name for the device. The name you type appears in SNMP management. This name is not the SSID and is not broadcast to other devices.
Operation Mode
Use the radio button to select an operating mode.
Click Save & Apply to save changes or Cancel to abort.
4-9
4.2.2 Configuring IP Settings
Configure the E
NH500 LAN settings for the ENH500 using a static or dynamic IP address.
IP Network Setting
Configure the network connection type using either a static IP or dynamic IP.
IP Address
Enter the LAN IP address of the E
NH500.
Subnet Mask
Enter the subnet mask of the E
NH500.
Default Gateway
Enter the default gateway of the E
NH500.
Primary DNS
Enter the primary DNS address of the
ENH500.
Secondary DNS
Enter the secondary DNS address of the
E
NH500.
Use Link-Local Address
Click to enable a link-local address for the device.
IPv6 IP Address
Enter the IPv6 LAN IP address of the E
NH500
IPv6 Subnet Prefix Length
Enter the IPv6 subnet prefix length of the E
NH500.
IPv6 Default Gateway
Enter the IPv6 default gateway of the E
NH500.
IPv6 Primary DNS
Enter the IPv6 primary DNS of the E
NH500.
IPv6 Secondary DNS
Enter the IPv6 secondary DNS of the E
NH500.
Click Apply to save the settings or Cancel to discard changes.
4-10
C
ONFIGURING
IP S
ETTINGS
C
ONFIGURING
S
PANNING
T
REE
S
ETTINGS
4.2.3 Configuring Spanning Tree Settings
Spanning Tree Status
Enable or disable the E
NH500
Spanning Tree function.
Bridge Hello Time
Specify Bridge Hello Time, in seconds. This value determines how often the E
NH500 sends hello packets to communicate information about the topology throughout the entire Bridged Local Area Network
Bridge Max Age
Specify Bridge Max Age, in seconds. If another bridge in the spanning tree does not send a hello packet for a long period of time, it is assumed to be dead.
Bridge Forward Delay
Specify Bridge Forward Delay, in seconds. Forwarding delay time is the time spent in each of the
Listening and Learning states before the Forwarding state is entered. This delay is provided so that when a new bridge comes onto a busy network, it looks at some traffic before participating.
Priority
Specify the Priority number. Smaller numbers have greater priority.
Click Accept to confirm the changes or Cancel to cancel and return previous settings.
4-11
4.3 Router Setup
4.3.1 Configuring WAN Settings
Configure the WAN settings for the E
NH500 using a static or dynamic IP address, PPPoE or PPTP.
Static IP
Setting a static IP address allows an administrator to set a specific IP address for the router and guarantees that it can not be assigned a different address.
Account Name
Enter the account name provided by your ISP.
Domain Name
Enter the domain name provided by your ISP.
MTU
The maximum transmission unit (MTU) specifies the largest packet size permitted for an internet transmission. The factory default MTU size for static IP is 1500. The MTU size can be set between 576 and 1500.
IP Address
Enter the router’s WAN IP address.
Subnet Mask
Enter the router’s WAN subnet mask.
Default Gateway
Enter the WAN gateway address.
Primary DNS
Enter the primary DNS server address.
4-12
R
OUTER
S
ETUP
D
YNAMIC
IP
Secondary DNS
Enter the secondary DNS server address.
Discard Ping on WAN
Check to Enable to recognize pings on the E
NH500 WAN interface or Disable to block pings on the
E
NH500 WAN interface. Note: Pinging IP addresses is a common method used by hackers to test whether the IP address is valid.
Blocking pings provides some extra security from hackers.
Click Accept to save the settings or Cancel to discard changes.
Dynamic IP
Dynamic IP addressing assigns a different IP address each time a device connects to an ISP service provider. The service is most commonly used by ISP cable providers.
Account Name
Enter the account name provided by your ISP.
Domain Name
Enter the domain name provided by your ISP.
MTU
The maximum transmission unit (MTU) specifies the largest packet size permitted for an internet transmission. The factory default MTU size for Dynamic IP is 1500. The MTU size can be set between 576 and 1500.
Get Automatically From ISP
Click the radio button to obtain the DNS automatically from the DHCP server.
Use These DNS Servers
Click the radio button to set up the Primary DNS and Secondary DNS servers manually.
Discard Ping on WAN
Check to Enable to recognize pings on the E
NH500 WAN interface or Disable to block pings on the
ENH500 WAN interface. Note: Pinging IP addresses is a common method used by hackers to test whether the IP address is valid.
Blocking pings provides some extra security from hackers.
Click Accept to save the settings or Cancel to discard changes.
4-13
P
OINT
-
TO
-P
OINT
P
ROTOCOL OVER
E
THERNET
(PPP
O
E)
Point-to-Point Protocol over Ethernet (PPPoE)
Point-to-Point Protocol over Ethernet (PPPoE) is used mainly by ISPs that provide DSL modems to connect to the Internet.
MTU
Enter the maximum transmission unit (MTU).
The MTU specifies the largest packet size permitted for an internet transmission (PPPoE default: 1492). The MTU size can be set between
576 and 1492.
Login
Enter the username assigned by an ISP.
Password
Enter the password assigned by an
ISP.
Service Name
Enter the service name of an ISP
(optional).
Connect on Demand
Select the radio button to specify the maximum idle time. Internet connection will disconnect when it reach the maximum idle time, but it will automatically connect when user tries to access the network.
Keep Alive
Select whether to keep the Internet connection always on, or enter a redial period once the internet lose connection.
Get Automatically From ISP
Click the radio button to obtain the DNS automatically from the ISP.
Use These DNS Servers
Click the radio button to set up the Primary DNS and Secondary DNS servers manually.
Discard Ping on WAN
Check to Enable to recognize pings on the
ENH500 WAN interface or Disable to block pings on the ENH500
WAN interface. Note: Pinging IP addresses is a common method used by hackers to test whether the IP address is valid.
Blocking pings provides some extra security from hackers.
Click Accept to save the settings or Cancel to discard changes.
4-14
P
OINT
-
TO
-P
OINT
T
UNNELLING
P
ROTOCOL
(PPTP)
Point-to-Point Tunnelling Protocol (PPTP)
The point-to-point tunnelling protocol (PPTP) is used in association with virtual private networks
(VPNs). There a two parts to a PPTP connection: the WAN interface settings and the PPTP settings.
MTU
Enter the maximum transmission unit (MTU).
The MTU specifies the largest packet size permitted for an internet transmission (PPPoE default: 1400). The MTU size can be set between
1200 and 1400.
IP Address
Enter the router’s WAN IP address.
Subnet Mask
Enter the router’s WAN subnet IP address.
Default Gateway
Enter the router’s WAN gateway
IP address.
PPTP Server
Enter the IP address of the PPTP server.
Username
Enter the username provided by your
ISP.
Password
Enter the password provided by your ISP.
Connect on Demand
If you want the E
NH500 to end the Internet connection after it has been inactive for a period of time, select this option and enter the number of minutes you want that period of inactivity to last.
Keep Alive
If you want the E
NH500 to periodically check your Internet connection, select this option. Then specify how often you want the E
NH500 to check the Internet connection. If the connection is down, the ENH500 automatically re-establishes your connection
Get Automatically From ISP
Obtains the DNS automatically from ISP.
4-15
P
OINT
-
TO
-P
OINT
T
UNNELLING
P
ROTOCOL
(PPTP)
Use These DNS Servers
Click the radio button to set up the Primary DNS and Secondary DNS servers manually.
Discard Ping on WAN
Check to Enable to recognize pings on the E
NH500 WAN interface or Disable to block pings on the
E
NH500 WAN interface. Note: Pinging IP addresses is a common method used by hackers to test whether the IP address is valid.
Blocking pings provides some extra security from hackers.
Click Accept to save the settings or Cancel to discard changes.
4-16
4.3.2 Configuring LAN Settings
IP Address
Enter the LAN port IP address.
IP Subnet Mask
Enter the LAN IP subnet mask.
WINS Server IP
Enter the WINS Server IP.
Use Router As DHCP Server
Check this option to enable the
E
NH500 internal DHCP server.
Starting IP Address
Specify the starting IP address range for the pool of allocated for private IP addresses. The starting IP address must be on the same subnet as the ending IP address; that is the first three octets specified here must be the same as the first three octets in End IP Address.
Ending IP Address
Specify the ending IP address range for the pool of allocated for private IP addresses. The ending IP address must be on the same subnet as the starting IP address; that is the first three octets specified here must be the same as the first three octets in Start IP Address.
WINS Server IP
Enter the IP address of the WINS server.
Click Accept to confirm the changes or Cancel to cancel and return previous settings.
C
ONFIGURING
LAN S
ETTINGS
4-17
C
ONFIGURING
VPN P
ASS
-T
HROUGH
4.3.3 Configuring VPN Pass-Through
VPN Pass-through allows a secure virtual private network (VPN) connection between two computers. Enabling the options on this page opens a VPN port and enables connections to pass through the
ENH500 without interruption.
PPTP Pass-through
Check this option to enable PPTP pass-through mode.
L2TP Pass-through
Check this option to enable L2TP pass-through mode.
IPSec Pass-through
Check this option to enable IPSec pass-through mode.
Click Accept to confirm the changes or Cancel to cancel and return previous settings.
4-18
C
ONFIGURING
P
ORT
F
ORWARDING
4.3.4 Configuring Port Forwarding
Port forwarding enables multiple server applications on a LAN to serve clients on a WAN over a single WAN IP address. The router accepts incoming client packets, filters them based on the destination WAN, or public, port and protocol and forwards the packets to the appropriate LAN, or local, port. Unlike the DMZ feature, port forwarding protects LAN devices behind the firewall.
NO.
Displays the sequence number of the forwarded port.
Name
Displays the name of the forwarded port.
Protocol
Displays the protocol to use for mapping from the following: TCP, UDP or Both.
Start Port
Displays the LAN port number that WAN client packets will be forward to.
End Port
Displays the port number that the WAN client packets are received.
Server IP
Displays the IP address of the server for the forwarded port.
Enable
Click to enable or disable the forwarded port profile.
Modify
Click to modify the forwarded port profile.
Delete
Click to delete the forwarded port profile.
Click Add Entry to add port forwarding rules.
Click Accept to confirm the changes.
4-19
Service Name
Enter a name for the port forwarding rule.
Protocol
Select a protocol for the application: Choices are Both, TCP, and UDP.
Starting Port
Enter a starting port number.
Ending Port
Enter an ending port number. All ports numbers between the starting and ending ports will forward users to the IP address specified in the IP Address field.
IP Address
Enter the IP address of the server computer on the LAN network where users will be redirected.
Click Save to apply the changes or Cancel to return previous settings.
C
ONFIGURING
P
ORT
F
ORWARDING
4-20
C
ONFIGURING
D
EMILITARIZED
Z
ONE
4.3.5 Configuring Demilitarized Zone
Configuring a device on the LAN as a demilitarized zone (DMZ) host allows unrestricted two-way Internet access for Internet applications, such as online video games, to run from behind the NAT firewall. The DMZ function allows the router to redirect all packets going to the WAN port IP address to a particular IP address on the LAN. The difference between the virtual server and the DMZ function is that a virtual server redirects a particular service or Internet application, such as FTP, to a particular LAN client or server, whereas a DMZ redirects all packets, regardless of the service, going to the WAN IP address to a particular LAN client or server.
!
WARNING!
The PC defined as a DMZ host is not protected by the firewall and is vulnerable to malicious network attacks. Do not store or manage sensitive information on the DMZ host.
DMZ Hosting
Select Enable DMZ to activate DMZ functionality.
DMZ Address
Enter an IP address of a device on the LAN.
Click Accept to confirm the changes or Cancel to cancel and return previous settings.
4-21
4.4 Configuring Wireless LAN
C
ONFIGURING
W
IRELESS
LAN
4.4.1 Configuring Wireless Settings
Instructions on how to configure the wireless and security settings for each of the possible operating modes.
!
WARNING!
Incorrectly changing these settings may cause the device to stop functioning. Do not modify the settings in this section without a thorough understanding of the parameters.
Access Point Mode
The E
NH500 supports Access Point Mode. In this mode, users with a wireless client device within range can connect to the
E
NH500 to access the WLAN.
Wireless Mode
Wireless mode supports 802.11a/n mixed modes.
Channel HT Mode
The default channel bandwidth is 20/
40 MHz. The larger the channel, the better the transmission quality and speed.
Extension Channel
Select upper or lower channel. Your selection may affect the Auto channel function.
Channel / Frequency
Select the channel and frequency appropriate.
Auto
Check this option to enable auto-channel selection.
AP Detection
AP Detection can select the best channel to use by scanning nearby areas for Access Points.
4-22
A
CCESS
P
OINT
M
ODE
Current Profile
Configure up to four different SSIDs. If many client devices will be accessing the network, you can arrange the devices into SSID groups. Click Edit to configure the profile and check whether you want to enable extra SSIDs.
Click Accept to confirm the changes or Cancel to cancel and return previous settings.
SSID
Specify the SSID for the current profile.
VLAN ID
Specify the VLAN tag for the current profile.
Suppressed SSID
Check this option to hide the SSID from clients. If checked, the SSID will not appear in the site survey.
Station Separation
Click the appropriate radio button to allow or prevent communication between client devices.
Wireless Security
See the Wireless Security section.
Click Save to accept the changes or Cancel to cancel and return previous settings.
4-23
C
LIENT
B
RIDGE
M
ODE
Client Bridge Mode
Client Bridge Mode lets you connect two LAN segments via a wireless link as though they are on the same physical network. Since the computers are on the same subnet, broadcasts reach all machines. As a result, DHCP information generated by the server reach all client computers as though the clients residing on one physical network.
Wireless Mode
Wireless mode supports 802.11a/n mixed modes.
SSID
Specify the SSID if known. This field is completed automatically if you select an Access Point in the Site
Survey.
Site Survey
Scans nearby locations for Access Points.
You can select a discovered Access Point to establish a connection.
Prefer BSSID
Enter the MAC address if known. If you select an Access Point in the Site Survey, this field is completed automatically.
Wireless Security
For details on wireless security settings, see Configuring Wireless Security.
Click Accept to confirm the changes or Cancel to cancel and return previous settings.
Profile
If you used the Site Survey, the Web
Configurator shows nearby Access Points. To connect to an Access Point, click the Access
Point’s BSSID.
Wireless Security
Click Refresh to scan again.
4-24
WDS B
RIDGE
M
ODE
WDS Bridge Mode
Unlike traditional bridging. WDS Bridge Mode allows you to create large wireless networks by linking several wireless access points with WDS links. WDS is normally used in large, open areas, where pulling wires is cost prohibitive, restricted or physically impossible.
Wireless Mode
Wireless mode supports 802.11a/n mixed modes.
Channel HT Mode
The default channel bandwidth is 40 MHz.
The larger the channel, the better the transmission quality and speed.
Extension Channel
Select upper or lower channel. Your selection may affect the Auto channel function.
Channel / Frequency
Select the channel and frequency appropriate.
Click Accept to confirm the changes or Cancel to cancel and return previous settings.
4-25
Security
Select the type of WDS security: None,
WEP, or AES.
WEP Key
Enter the WEP key.
AES Pass phrase
Enter the AES pass phrase.
MAC Address
Enter the MAC address of the
Access Point to which you want to extend wireless connectivity.
Mode
Select Disable or Enable to disable or enable WDS.
Click Accept to confirm the changes or Cancel to cancel and return previous settings.
4-26
WDS B
RIDGE
M
ODE
C
LIENT
R
OUTER
M
ODE
Client Router Mode
In Client Router Mode, you can access the Internet wirelessly with the support of a WISP. In AP Router Mode, the E
NH500 can access the Internet via a cable or DSL modem. In this mode, the E
NH500 can be configured to turn off the wireless network name
(SSID) broadcast, so that only stations that have the SSID can be connected. The E
NH500 also provides wireless LAN 64/128/
15
2-bit WEP encryption security, WPA/WPA2, and WPA-PSK/WPA2-PSK authentication, as well as TKIP/AES encryption security. It also supports VPN pass-through for sensitive data secure transmission.
Wireless Mode
Wireless mode supports 802.11a/n mixed modes.
SSID
Specify the SSID if known. This field is completed automatically if you select an Access Point in the Site
Survey.
Site Survey
Scans nearby locations for Access Points.
You can select a discovered Access Point to establish a connection.
Prefer BSSID
Enter the MAC address if known. If you select an Access Point in the Site Survey, this field is completed automatically.
Wireless Security
See Configuring Wireless Security.
Click Accept to confirm the changes or Cancel to cancel and return previous settings.
Profile
If you used the Site Survey, the Web
Configurator shows nearby Access Points. To connect to an Access Point, click the Access
Point’s BSSID.
Wireless Security
Click Refresh to scan again.
4-27
C
ONFIGURING
W
IRELESS
S
ECURITY
4.4.2 Configuring Wireless Security
The Wireless Security Settings section lets you configure the E
NH500’s security modes: WEP, WPA-PSK, WPA2-PSK, WPA-PSK
Mixed, WPA, WPA2, and WPA Mixed. We strongly recommend you use WPA2-PSK.
Wired Equivalent Privacy (WEP)
Security Mode
Select WEP from the drop-down list to begin the configuration.
Auth Type
Select Open System or Shared.
Input Type
Select an input type of Hex or ASCII.
Key Length
Level of WEP encryption applied to all WEP keys.
Select a 64/128/152-bit password lengths.
Default Key
Specify which of the four WEP keys the E
NH500 uses as its default.
Key1 - Key4
Specify a password for the security key index. For security, each typed character is masked by a dot.
Click Save to save the changes or Cancel to cancel and return previous settings.
Note:
802.11n does not allow WEP/WPA-PSK TKIP/WPA2-PSK TKIP security mode. The connection mode will change from 802.11n to
802.11a.
4-28
W
I
-F
I
P
ROTECTED
A
CCESS
P
RE
-S
HARED
K
EY
(WPA-PSK)
Wi-Fi Protected Access Pre-Shared Key (WPA-PSK)
Security Mode
Select WPA-PSK from the drop-down list to begin the configuration.
Encryption
Select Both, TKIP, or AES as the encryption type.
Both = uses TKIP and AES.
TKIP = automatic encryption with WPA-PSK; requires passphrase.
AES = automatic encryption with WPA2-PSK; requires passphrase.
Passphrase
Specify the security password. For security, each typed character is masked by a dot.
Group Key Update Interval
Specify how often, in seconds, the group key changes.
Click Save to save the changes or Cancel to cancel and return previous settings.
Note:
802.11n does not allow WEP/WPA-PSK TKIP/WPA2-PSK TKIP security mode. The connection mode will change from 802.11n to
802.11a.
4-29
W
I
-F
I
P
ROTECTED
A
CCESS
2 P
RE
-S
HARED
K
EY
(WPA2-PSK)
Wi-Fi Protected Access 2 Pre-Shared Key (WPA2-PSK)
Security Mode
Select WPA2-PSK from the drop-down list to begin the configuration.
Encryption
Select Both, TKIP, or AES as the encryption type.
Both = uses TKIP and AES.
TKIP = automatic encryption with WPA-PSK; requires passphrase.
AES = automatic encryption with WPA2-PSK; requires passphrase.
Passphrase
Specify the security password. For security, each typed character is masked by a dot.
Group Key Update Interval
Specify how often, in seconds, the group key changes.
Click Save to save the changes or Cancel to cancel and return previous settings.
Note:
802.11n does not allow WEP/WPA-PSK TKIP/WPA2-PSK TKIP security mode. The connection mode will change from 802.11n to
802.11a.
4-30
W
I
-F
I
P
ROTECTED
A
CCESS
P
RE
-S
HARED
K
EY
(WPA-PSK) M
IXED
Wi-Fi Protected Access Pre-Shared Key (WPA-PSK) Mixed
Security Mode
Select WPA2-PSK Mixed from the drop-down list to begin the configuration.
Encryption
Select Both, TKIP, or AES as the encryption type.
Both = uses TKIP and AES.
TKIP = automatic encryption with WPA-PSK; requires passphrase.
AES = automatic encryption with WPA2-PSK; requires passphrase.
Passphrase
Specify the security password. For security, each typed character is masked by a dot.
Group Key Update Interval
Specify how often, in seconds, the group key changes.
Click Save to save the changes or Cancel to cancel and return previous settings.
Note:
WPA-PSK Mixed can allow multiple security modes at the same time. 802.11n does not allow WEP/WPA-PSK TKIP/WPA2-PSK TKIP security mode. The connection mode will change from 802.11n to 802.11a.
4-31
W
I
-F
I
P
ROTECTED
A
CCESS
(WPA)
Wi-Fi Protected Access (WPA)
Security Mode
Select WPA from the drop-down list to begin the configuration.
Encryption
Select Both, TKIP, or AES as the encryption type.
Both = uses TKIP and AES.
TKIP = automatic encryption with WPA-PSK; requires passphrase.
AES = automatic encryption with WPA2-PSK; requires passphrase.
Radius Server
Specify the IP address of the RADIUS server.
Radius Port
Specify the port number that your RADIUS server uses for authentication. Default port is 1812.
Radius Secret
Specify RADIUS secret furnished by the
RADIUS server.
Group Key Update Interval
Specify how often, in seconds, the group key changes.
Radius Accounting
Select to enable or disable RADIUS accounting.
Radius Accounting Server
Specify the IP address of the RADIUS accounting server.
Radius Accounting Port
Specify the port number that your RADIUS accounting server uses for authentication. Default port is 1813.
Radius Accounting Secret
Specify RADIUS accounting secret furnished by the RADIUS server.
Interem Accounting Interval
Specify the interem accounting interval (60 - 600 seconds).
Click Save to save the changes or Cancel to cancel and return previous settings.
Note:
802.11n does not allow WEP/WPA-PSK TKIP/WPA2-PSK TKIP security mode. The connection mode will change from 802.11n to
802.11a.
4-32
W
I
-F
I
P
ROTECTED
A
CCESS
2 (WPA2)
Wi-Fi Protected Access 2 (WPA2)
Security Mode
Select WPA2 from the drop-down list to begin the configuration.
Encryption
Select Both, TKIP, or AES as the encryption type.
Both = uses TKIP and AES.
TKIP = automatic encryption with WPA-PSK; requires passphrase.
AES = automatic encryption with WPA2-PSK; requires passphrase.
Radius Server
Specify the IP address of the RADIUS server.
Radius Port
Specify the port number that your RADIUS server uses for authentication. Default port is 1812.
Radius Secret
Specify RADIUS secret furnished by the
RADIUS server.
Group Key Update Interval
Specify how often, in seconds, the group key changes.
Radius Accounting
Select to enable or disable RADIUS accounting.
Radius Accounting Server
Specify the IP address of the RADIUS accounting server.
Radius Accounting Port
Specify the port number that your RADIUS accounting server uses for authentication. Default port is 1813.
Radius Accounting Secret
Specify RADIUS accounting secret furnished by the RADIUS server.
Interem Accounting Interval
Specify the interem accounting interval (60 - 600 seconds).
Click Save to save the changes or Cancel to cancel and return previous settings.
Note:
802.11n does not allow WEP/WPA-PSK TKIP/WPA2-PSK TKIP security mode. The connection mode will change from 802.11n to
802.11a.
4-33
W
I
-F
I
P
ROTECTED
A
CCESS
(WPA) M
IXED
Wi-Fi Protected Access (WPA) Mixed
Security Mode
Select WPA Mixed from the drop-down list to begin the configuration.
Encryption
Select Both, TKIP, or AES as the encryption type.
Both = uses TKIP and AES.
TKIP = automatic encryption with WPA-PSK; requires passphrase.
AES = automatic encryption with WPA2-PSK; requires passphrase.
Radius Server
Specify the IP address of the RADIUS server.
Radius Port
Specify the port number that your RADIUS server uses for authentication. Default port is 1812.
Radius Secret
Specify RADIUS secret furnished by the
RADIUS server.
Group Key Update Interval
Specify how often, in seconds, the group key changes.
Radius Accounting
Select to enable or disable RADIUS accounting.
Radius Accounting Server
Specify the IP address of the RADIUS accounting server.
Radius Accounting Port
Specify the port number that your RADIUS accounting server uses for authentication. Default port is 1813.
Radius Accounting Secret
Specify RADIUS accounting secret furnished by the RADIUS server.
Interem Accounting Interval
Specify the interem accounting interval (60 - 600 seconds).
Click Save to save the changes or Cancel to cancel and return previous settings.
Note:
WPA-PSK Mixed can allow multiple security modes at the same time. 802.11n does not allow WEP/WPA-PSK TKIP/WPA2-PSK TKIP security mode. The connection mode will change from 802.11n to 802.11a.
4-34
4.4.3 Configuring Wireless MAC Filter
Note:
This section applies to Access Point and WDS Access point mode.
C
ONFIGURING
W
IRELESS
MAC F
ILTER
Wireless MAC Filters are used to allow or deny network access to wireless clients according to their MAC addresses. You can manually add a MAC address to restrict the permission to access
ENH500. The default setting is Disable Wireless MAC Filters.
ACL Mode
Determines whether network access is granted or denied to clients whose MAC addresses appear in the MAC Address table on this page. Choices are Disable, Deny MAC in the list, or Allow MAC in the list.
MAC Address Filter
Enter the MAC address of the device.
Click Add to add the MAC address to the MAC Address table.
Click Apply to apply the changes.
4-35
C
ONFIGURING
WDS L
INK
S
ETTINGS
4.4.4 Configuring WDS Link Settings
Using WDS Link Settings, you can create a wireless backbone link between multiple access points that are part of the same wireless network. This allows a wireless network to be expanded using multiple Access Points without the need for a wired backbone to link them, as is traditionally required.
Security
Select the type of WDS security: None, WEP, or AES.
WEP Key
Enter the WEP key.
AES Passphrase
Enter the AES passphrase.
MAC Address
Enter the MAC address of the Access Point to which you want to extend wireless connectivity.
Mode
Select Disable or Enable to disable or enable WDS.
Click Accept to confirm the changes or
Cancel
to cancel and return previous settings.
Note:
The Access Point to which you want to extend wireless connectivity must enter the
ENH500’s MAC address into its configuration.
For more information, refer to the documentation for the Access Point. Not all Access Point supports this feature.
4-36
C
ONFIGURING
A
DVANCED
N
ETWORK
S
ETTINGS
4.4.5 Configuring Advanced Network Settings
Configure the advanced wireless settings for your access point using the screens in this section. Leave these settings to their default values if you are not sure what values to enter.
Data Rate
Select a data rate from the drop-down list. The data rate affects throughput. If you select a low data rate value, for example, the throughput is reduced but the transmission distance increases.
Transmit Power
Lets you increase or decrease transmit power. Higher transmit power may prevent connections to the network, while the lower transmit power can prevent clients from connecting to the device.
RTS/CTS Threshold
Specify the threshold package size for
RTC/CTS. A small number causes RTS/CTS packets to be sent more often and consumes more bandwidth.
Distance
Specify the distance between Access Points and clients. Longer distances may drop high-speed connections.
Aggregation
Merges data packets into one packet. This option reduces the number of packets, but increases packet sizes.
Wireless Traffic Shaping
Enable Traffic Shaping
Enable or disable the regulation of packet flow leaving an interface for improved QoS.
Incoming Traffic Limit
Specify the wireless transmission speed used for downloading.
Outgoing Traffic Limit
Specify the wireless transmission speed used for uploading.
Total Percentage
Specify the total percentage of the wireless traffic that is shaped.
SSID1 to SSID4
Specify the percentage of the wireless traffic that is shaped for a specific SSID.
4-37
4.5 Management Setup
M
ANAGEMENT
S
ETUP
The Management section lets you configure administration, management VLAN, SNMP settings, backup/restore settings, firmware upgrade, time settings, and log settings. This chapter describes these settings.
4.5.1 Configuring Administrator Account
Click the Administration link under the Management menu to change the user name and password used to log on to the E
NH500
Web Configurator. The default user name is admin and the default password is admin. Changing these settings protects the EnStaconfiguration settings from being accessed by unauthorized users.
New Name
Enter a new username for logging in to the Web
Configurator.
New Password
Enter a new password for logging in to the Web
Configurator
Confirm Password
Re-enter the new password for confirmation.
Click Save/Apply to apply the changes or Cancel to return previous settings.
Remote Management
Enable or disable remote management.
Remote Upgrade
Specify whether the E
NH500 firmware can be upgraded remotely.
Remote Management Port
If remote management is enabled, enter the port number to be used for remote management. For example: If you specify the port number 8080, enter http://<IP
address>:8080
to access the
ENH500 Web Configurator.
Click Accept to apply the changes or Cancel to return previous settings.
4-38
C
ONFIGURING
M
ANAGEMENT
VLAN
4.5.2 Configuring Management VLAN
Click the Management VLAN link under the Management menu to assign a VLAN tag to the packets. A VLAN is a group of computers on a network whose software has been configured so that they behave as if they were on a separate Local Area Network (LAN).
Computers on VLAN do not have to be physically located next to one another on the LAN
Management VLAN ID
If your network includes VLANs and if tagged packets need to pass through the Access Point, enter the
VLAN ID. Otherwise, click No VLAN tag.
Click Accept to confirm the changes or Cancel to cancel and return previous settings.
Note:
If you reconfigure the Management VLAN ID, you may lose your connection to the E
NH500. Verify that the DHCP server supports the reconfigured VLAN ID and then reconnect to the E
NH500 using the new IP address.
4-39
C
ONFIGURING
SNMP
4.5.3 Configuring SNMP
SNMP is used in network management systems to monitor network-attached devices for conditions that warrant administrative attention.
SNMP
Enable or disable the E
NH500 SNMP function.
Contact
Enter the contact details of the device.
Location
Enter the location of the device.
Community Name (Read Only)
Enter the password for accessing the SNMP community for read-only access.
Community Name (Read/Write)
Enter the password for accessing the SNMP community for read and write access.
Trap Destination Address
Enter the IP address where SNMP traps are to be sent.
Trap Destination Community Name
Enter the password of the SNMP trap community.
SNMPv3
Enable or Disable the SNMPv3 feature.
User Name
Specify the username for SNMPv3.
Auth Protocol
Select the authentication protocol type: MD5 or SHA.
Auth Key (8-32 Characters)
Specify the authentication key for authentication.
Priv Protocol
Select the privacy protocol type: DES.
Priv Key (8-32 Characters)
Specify the privacy key for privacy.
4-40
Engine ID
Specify the engine ID for SNMPv3.
Click Save/Apply to apply the changes or Cancel to return previous settings.
C
ONFIGURING
SNMP
4-41
C
ONFIGURING
B
ACKUP
/R
ESTORE
S
ETTINGS
4.5.4 Configuring Backup/Restore Settings
Click the Backup/Restore Setting link under the Management menu to save the E
NH500’s current settings in a file on your local disk or load settings onto the device from a local disk. This feature is particularly convenient administrators who have several
E
NH500 devices that need to be configured with the same settings.
This page also lets you return the E
NH500 to its factory default settings. If you perform this procedure, any changes made to the
E
NH500 default settings will be lost.
Save A Copy of Current Settings
Click Backup to save the current configured settings.
Restore Saved Settings from A File
To restore settings that have been previously backed up, click Browse, select the file, and click Restore.
Revert to Factory Default Settings
Click Factory Default to restore the E
NH500 to its factory default settings.
4-42
C
ONFIGURING
A
UTO
R
EBOOT
S
ETTINGS
4.5.5 Configuring Auto Reboot Settings
Click the Auto Reboot Settings link under the Management menu to enable or disable the Auto Reboot function. This feature is particularly convenient to administrators for the scheduling of auto rebooting on the device.
This page also allows you to set the frequency of this function.
Auto Reboot Setting
Select Enable from the drop-down menu to setup this function.
Frequency of Auto Reboot
Select the frequency interval using the drop-down menus.
Save/Apply
Click Save/Apply to set the new configuration.
Cancel
Click Cancel to delete the settings.
4-43
C
ONFIGURING
F
IRMWARE
U
PGRADE
4.5.6 Configuring Firmware Upgrade
Firmware is system software that operates and allows the administrator to interact with the router.
!
WARNING!
Upgrading firmware through a wireless connection is not recommended. Firmware upgrading must be performed while connected to an Ethernet (LAN port) with all other clients disconnected.
The firmware upgrade procedure can take several minutes. Do not power off the E
NH500 during the firmware upgrade, as it can cause the device to crash or become unusable.
To update the firmware version, follow these steps:
1. Download the appropriate firmware approved by EnGenius Networks from an approved web site.
Note:
Save the firmware file to a local hard drive.
2. Click Choose File.
3. Browse the file system and select the firmware file.
4. Click Upload.
5. The E
NH500 restarts automatically after the upgrade completes.
4-44
C
ONFIGURING
S
YSTEM
T
IME
4.5.7 Configuring System Time
Change the system time of the E
NH500 by manually entering the information, synchronizing the device with a PC, or setup automatic updates through a network time (NTP) protocol server.
Manually Set Date and Time
Enter the date and time values in the date and time fields or click the Synchronize with PC button to get the date and time values from the administrator’s
PC.
Automatically Get Date and Time
Select a time zone from the drop-down list and check whether you want to enter the IP address of an NTP server or use the default NTP server.
Enable Daylight Saving
Click to enable or disable daylight savings time. Select the start and stop times from the Start
Time
and Stop Time dropdown lists.
Click Save/Apply to apply the changes or Cancel to return previous settings.
4-45
C
ONFIGURING
W
I
-F
I
S
CHEDULE
4.5.8 Configuring Wi-Fi Schedule
Use the Wi-Fi schedule function to control the wireless power ON/OFF service that operates on a routine basis.
Add a Schedule Service
Create a schedule service type and date/time parameters for a specific service.
Schedule Name
Enter the description of the schedule service.
Service
Select the type of schedule service, either
Wireless Power ON
or Wireless Power OFF.
Day
Select the days of the week to enable the schedule service.
Time of Day
Set the start time that the service is active.
Click Add to append the schedule service to the schedule service table, or Cancel to discard changes.
4-46
S
CHEDULE
S
ERVICES
T
ABLE
Schedule Services Table
The Schedule function relies on the GMT time setting acquired from a network time protocol (NTP) server. For details on how to connect the E
NH500 to an NTP server, see Configuring System Time.
Schedule Table
Displays a list of scheduled services for the E
NH500. The properties of each service displayed are:
#
Displays the ID number of the service in the table.
Name
Displays the description of the service.
Service
Displays the type of service, either Wireless Power ON or Wireless Power OFF.
Schedule
Displays the schedule information of when the service is active.
Select
Select one or more services to edit or delete.
Click Delete Selected to delete the selected services or Delete All to delete all services.
Click Apply to save the settings or Cancel to discard changes.
4-47
C
ONFIGURING
C
OMMAND
L
INE
I
NTERFACE
4.5.9 Configuring Command Line Interface
Most users will configure the E
NH500 through the graphical user interface (GUI). However, for those who prefer an alternative method there is the command line interface (CLI). The CLI can be access through a command console, modem or Telnet connection.
CLI
Select to enable or disable the ability to modify the E
NH500 via a command line interface (CLI).
Click Save/Apply to apply the changes or Cancel to return previous settings.
4-48
C
ONFIGURING
L
OGGING
4.5.10 Configuring Logging
Display a list of events that are triggered on the E
NH500 Ethernet and wireless interfaces. You can consult this log if an unknown error occurs on the system or when a report needs to be sent to the technical support department for debugging purposes.
Syslog
Enable or disable the E
NH500 syslog function.
Log Server IP Address
Enter the IP address of the log server.
Local Log
Enable or disable the local log service.
Click Save/Apply to apply the changes or Cancel to return previous settings.
4-49
C
ONFIGURING
D
IAGNOSTICS
4.5.11 Configuring Diagnostics
The diagnosis feature allow the administrator to verify that another device is available on the network and is accepting request packets. If the ping result returns alive, it means a device is on line. This feature does not work if the target device is behind a firewall or has security software installed.
Target IP / Domain Name
Enter the IP address you would like to search.
Ping Packet Size
Enter the packet size of each ping.
Number of Pings
Enter the number of times you want to ping.
Start Ping
Click Start Ping to begin pinging.
Trace route target
Enter an IP address or domain name you want to trace.
Start Traceroute
Click Start Traceroute to begin the traceroute operation.
Target Address
Enter the IP address of the target PC.
Time period
Enter time period for the speed test.
Check Interval
Enter the interval for the speed test.
Start Speed Test
Click Start Speed Test to begin the speed test operation.
IPv4 Port
Displays the IPv4 port number of the E
NH500.
IPv6 Port
Displays the IPv6 port number of the E
NH500.
4-50
4.5.12 Viewing Device Discovery
Device Name
Displays the name of the devices connected to the network.
Operation Mode
Displays the operation mode of the devices connected to the network.
IP Address
Displays the IP address of the devices connected to the network.
System MAC Address
Displays the system MAC address of the devices connected to the network.
Firmware Version
Displays the firmware version of the devices connected to the network.
V
IEWING
D
EVICE
D
ISCOVERY
4-51
C
ONFIGURE
D
ENIAL OF
S
ERVICE
P
ROTECTION
4.5.13 Configure Denial of Service Protection
Use TCP SYN Cookies Protection
Click to enable TCP SYN cookies protection.
SYN Flood Attack Protection
Click to enable or disable SYN
Flood Attack Protection.
Match Interval Per Second
Enter the allowed number of packets per second.
Limit Packets
Enter the maximum number of packets allowed per request.
UDP Flood Attack Protection
Click to enable or disable UDP Flood Attack Protection.
Match Interval Per Second
Enter the allowed number of packets per second.
Limit Packets
Enter the maximum number of packets allowed per request.
Ping Attack Protection
Click to enable or disable ping attack protection.
Click Save/Apply to apply the changes or Cancel to return previous settings.
4-52
4.5.14 Logging Out
Click Logout to logout from the E
ENH500.
L
OGGING
O
UT
4-53
advertisement
Key Features
- 5 GHz
- Maximum data transfer rate: 300 Mbit/s
- IEEE 802.11b, IEEE 802.11g, IEEE 802.11n
- 128-bit WEP, 64-bit WEP, WPA-AES, WPA-PSK, WPA-TKIP, 802.1x RADIUS
- Power over Ethernet (PoE)
- Integrated antenna
Related manuals
advertisement
Table of contents
- 2 Conventions
- 4 Table of Contents
- 10 Copyright
- 12 1.1 Package Contents
- 13 1.2 Product Overview
- 13 Key Features
- 14 Benefits
- 15 Technical Specification
- 15 Wireless Specification
- 15 Hardware Specification
- 15 Software Specification
- 19 2.1 System Requirements
- 20 2.2 Installing the Device
- 20 Pre-Installation Guidelines
- 20 Installing the Device
- 23 3.1 Logging In
- 24 Best Practices
- 25 Basic Network Settings
- 26 4.1 System Status
- 26 4.1.1 Using Save/Reload
- 27 4.1.2 Viewing System Information
- 29 4.1.3 Viewing Wireless Client List
- 30 4.1.4 Viewing System Log
- 31 4.1.5 Viewing Connection Status
- 32 4.1.6 Viewing DHCP Client Table
- 33 4.1.7 Viewing WDS Link List
- 34 4.2 System Setup
- 34 4.2.1 Configuring Operation Mode
- 35 4.2.2 Configuring IP Settings
- 36 4.2.3 Configuring Spanning Tree Settings
- 37 4.3 Router Setup
- 37 4.3.1 Configuring WAN Settings
- 37 Static IP
- 38 Dynamic IP
- 39 Point-to-Point Protocol over Ethernet (PPPoE)
- 40 Point-to-Point Tunnelling Protocol (PPTP)
- 42 4.3.2 Configuring LAN Settings
- 43 4.3.3 Configuring VPN Pass-Through
- 44 4.3.4 Configuring Port Forwarding
- 46 4.3.5 Configuring Demilitarized Zone
- 47 4.4 Configuring Wireless LAN
- 47 4.4.1 Configuring Wireless Settings
- 47 Access Point Mode
- 49 Client Bridge Mode
- 50 WDS Bridge Mode
- 52 Client Router Mode
- 53 4.4.2 Configuring Wireless Security
- 53 Wired Equivalent Privacy (WEP)
- 54 Wi-Fi Protected Access Pre-Shared Key (WPA-PSK)
- 55 Wi-Fi Protected Access 2 Pre-Shared Key (WPA2-PSK)
- 56 Wi-Fi Protected Access Pre-Shared Key (WPA-PSK) Mixed
- 57 Wi-Fi Protected Access (WPA)
- 58 Wi-Fi Protected Access 2 (WPA2)
- 59 Wi-Fi Protected Access (WPA) Mixed
- 60 4.4.3 Configuring Wireless MAC Filter
- 61 4.4.4 Configuring WDS Link Settings
- 62 4.4.5 Configuring Advanced Network Settings
- 62 Wireless Traffic Shaping
- 63 4.5 Management Setup
- 63 4.5.1 Configuring Administrator Account
- 64 4.5.2 Configuring Management VLAN
- 65 4.5.3 Configuring SNMP
- 67 4.5.4 Configuring Backup/Restore Settings
- 68 4.5.5 Configuring Auto Reboot Settings
- 69 4.5.6 Configuring Firmware Upgrade
- 70 4.5.7 Configuring System Time
- 71 4.5.8 Configuring Wi-Fi Schedule
- 71 Add a Schedule Service
- 72 Schedule Services Table
- 73 4.5.9 Configuring Command Line Interface
- 74 4.5.10 Configuring Logging
- 75 4.5.11 Configuring Diagnostics
- 76 4.5.12 Viewing Device Discovery
- 77 4.5.13 Configure Denial of Service Protection
- 78 4.5.14 Logging Out
- 79 Appendix
- 80 Appendix A
- 81 Appendix B