Avaya AP-4 Network Router User Manual
Contents
1. Ethernet Speed and Transmission Mode Value 10 Mbits sec half duplex 10halfduplex 10 Mbits sec full duplex 10fullduplex 10 Mbits sec auto duplex 10autoduplex 100 Mbits sec half duplex 100halfduplex 100 Mbits sec full duplex 100fullduplex Auto Speed half duplex autohalfduplex Auto Speed auto duplex autoautoduplex default Avaya Wireless AP 4 5 6 User s Guide A 49 Filtering Commands mua mv Filtering Commands Fthernet Protocol Filtering Parameters Name Type Values Access CLI Parameter Ethernet Filtering Group N A R etherfit Filtering Interface Interface 0 or 2 no interfaces RW etherfitifbitmask Bitmask Bitmask disable 1 or 3 Ethernet 4 or 6 Wireless 5 or 7 all interfaces default is 7 Operation Type passthru RW etherfltoptype block Ethernet Protocol Filtering Table Parameters Identify the different filters by using the table index Name Type Values Access CLI Parameter Ethernet Protocol Table N A R etherflttbl Filtering Table Table Index N A N A R index Protocol Number Octet String N A RW protonumber 1of2 A 50 Avaya Wireless AP 4 5 6 User s Guide Filtering Commands Name Type Values Access CLI Parameter Protocol Name DisplayString RW protoname optional Status optional Intege2. Description lt a ASCII Hex ASCII Hex ASCII Hex ASCII Hex Character Equivalent Character Equivalent Character Equivalent Character Equivalent i 2E F 46 x 5E v 76 2F G 47 _ 5F w 77 0 30 H 48 60 x 78 1 31 l 49 a 61 y 79 2 32 J 4A b 62 z 7A 3 33 K 4B c 63 7B 4 34 L 4C d 64 7C 5 35 M 4D e 65 7D 6 36 N 4E f 66 ad 7E 7 37 O 4F g 67 8 38 P 50 h 68 B 2 Avaya Wireless AP 4 5 6 User s Guide AVAY Specifications C In This Appendix e Software Features e Hardware Specifications e Radio Specifications Software Features The tables below compare the software features available depending on the card type in the Access Point e Number of Stations per BSS e Management Functions e Advanced Bridging Functions e Medium Access Control MAC Functions e Security Functions e Network Functions e Advanced Wireless Functions Avaya Wireless AP 4 5 6 User s Guide C 1 Software Features Number of Stations per BSS AP 6 amp AP 6 amp Feature AP 4 AP 5 11b g Kit 11a b g Kit Without up to up to up to 250 up to 250 encryption 250 250 With WEP up to up to up to 120 up to 120 encryption 120 120 With 802 1x up to 88 upto 88 upto 88 up to 88 Authentication With WPA N A N A up to 27 up to 27 Management Functions Feature 802 11b 802 11a 802 11b g Web User Interface yes yes yes Telnet CLI yes yes yes SNMP Agent yes yes yes
3. c Interfaces Parameter Description Frequency When Auto Channel Select is enabled this field Channel is read only and displays the Access Point s current operating channel When Auto Channel Select is disabled you can specify the Access Poin s operating channel If you decide to manually set the unit s channel ensure that nearby devices do not use the same frequency unless you are setting up a WDS Available Channels vary based on regulatory domain See 802 11g Channel Frequencies Transmit Rate Select a specific transmit rate for the AP The values available depend on the Operational Mode Auto Fallback is the default setting it allows the AP to select the best transmit rate based on the cell size e For 802 11b only Auto Fallback 1 2 5 5 11 Mbits sec e For 802 11g only Auto Fallback 6 9 12 18 24 36 48 54 Mbits sec e For 802 11b g and 802 11g wifi Auto Fallback 1 2 5 5 6 9 11 12 18 24 36 48 54 Mbits sec 4of5 Avaya Wireless AP 4 5 6 User s Guide 4 49 Interfaces pman Parameter Description DTIM Period The Deferred Traffic Indicator Map DTIM is used with clients that have power management enabled DTIM should be left at 1 the default value if any clients have power management enabled This parameter supports a range between 1 and 255 RTS CTS Medium This parameter affects message flow control Reservation and should not
4. lM Recovery Procedures Initializing the IP Address using CLI After installing the serial port cable you may use the CLI to communicate with the AP CLI supports most generic terminal emulation programs such as HyperTerminal which is included with the Windows operating systems In addition many web sites offer shareware or commercial terminal programs you can download Once the IP address has been assigned you can use the HTTP interface or the CLI over Telnet to complete configuration Follow these steps to assign the AP an IP address 1 Open your terminal emulation program like HyperTerminal and set the following connection properties Com Port lt COM1 COM2 etc depending on your computer gt Baud rate 9600 Data Bits 8 Stop bits 1 Flow Control None Parity None 2 Under File gt Properties gt Settings gt ASCII Setup enable the Send line ends with line feeds option Result HyperTerminal sends a line return at the end of each line of code Avaya Wireless AP 4 5 6 User s Guide 7 25 Recovery Procedures ea 3 Press the RESET button on the AP see RELOAD and RESET Buttons to identify the location of the RESET button Result The terminal display shows Power On Self Tests POST activity and then displays a CLI prompt similar to the example below This process may take up to 90 seconds Device Name gt Please enter password 4 Enter the CLI pas
5. Confirm Shared Secret jose 7 4 160 Avaya Wireless AP 4 5 6 User s Guide eee os RADIUS Authentication with 802 1x You must configure a primary EAP 802 1x Authentication server to use 802 1x security A back up server is optional gt NOTE Problems with RADIUS Server configuration or RADIUS Authentication should be referred to the RADIUS Server developer Follow these steps to enable a RADIUS Authentication server for 802 1x security 1 2 3 Click the RADIUS tab Click the EAP 802 1x sub tab Place a check mark in the box labeled Enable Primary EAP 802 1x Authentication Server If you want to configure a back up RADIUS server place a check mark in the box labeled Enable Back up EAP 802 1x Authentication Server Select a Server Addressing Format type IP Address or Name If you want to identify RADIUS servers by name you must configure the AP as a DNS Client See DNS Client for details Enter the server s IP address or name in the field provided 7 Enter the port number which the AP and the server will use to communicate By default RADIUS servers communicate on port 1812 Avaya Wireless AP 4 5 6 User s Guide 4 161 RADIUS 8 10 11 12 13 Enter the Shared Secret in the Shared Secret and Confirm Shared Secret field This is a password shared by the RADIUS server and the AP The same password must also be configured on the RADIUS server
6. Name Type Values Access CLI Parameter Wireless Interface Table N A R wifssidtbl SSID Table Table Index Integer Primary WNIC 3 R index Secondary WNIC 4 Table Index Integer 1 16 SSID index R ssidindex SSID DisplayString O 32 characters RW ssid VLAN ID Vlanld 1 4094 RW vianid Table Row Status RowStatus enable RW status disable 1 of 3 Avaya Wireless AP 4 5 6 User s Guide A 121 Wireless Interface SSID VLAN Security Commands CO Name Type Values Access CLI Parameter Security Mode Integer none RW secmode dot1x mixed wpa wpa psk wep Supported DisplayString none R supsecmode Security Modes dotix mixed wpa wpa psk wep Encryption Key 0 WEPKeyType User Defined WO encryptkeyO Encryption Key 1 WEPKeyType User Defined WO encryptkey1 Encryption Key 2 WEPKeyType User Defined WO encryptkey2 Encryption Key3 WEPKeyType User Defined WO encryptkey3 Encryption Integer32 0 3 RW encryptkeytx Transmit Key Encryption Key Integer 64 RW encryptkeylength Length 128 152 20f3 A 122 Avaya Wireless AP 4 5 6 User s Guide Aa ad Wireless Interface SSID VLAN Security Commands Name Type Values Access CLI Parameter Re keying Interval Integer32 60 65535 RW rekeyint seconds default is 900 sec Pre Shared Key OctetString Size 32 WO pskey PSK Pass DisplayString O to 255 WO passphrase Phrase characters
7. block Name Type Values Access CLI Parameter MAC Address Group N A R macacl Control Status Integer enable RW macaclstatus disable default Operation Type Integer passthru default RW macacloptype MAC Access Control Table Parameters Name Type Values Access CLI Parameter MAC Address Table N A R macacitbl Control Table Table Index N A N A R index MAC Address PhysAddress User Defined RW macaddr 1of2 A 68 Avaya Wireless AP 4 5 6 User s Guide SSS a MAC Access Control Commands Name Type Values Access CLI Parameter Comment DisplayString User Defined RW cmt optional max 254 characters Status optional Integer enable default RW status disable delete 2of2 Syntax Examples Setup MAC Address Access Control Device Name gt set macaclstatus enable Device Name gt set macacloptype lt passthru block gt Device Name gt reboot 0 Add an Entry to the MAC Access Control Table Device Name gt set macacltbl lt index gt macaddr lt MAC Address gt status enable Device Name gt show macacltbl Disable or Delete an Entry in the MAC Access Control Table Device Name gt set macacltbl lt index gt status lt disable delete gt Device Name gt show macacltbl Avaya Wireless AP 4 5 6 User s Guide A 69 Monitoring Parameters CC gt NOTE For larger networks that include multi
8. 124 5 620 128 5 640 132 5 660 136 5 680 140 5 700 Upper Band 149 5 745 5 745 5 745 5 745 149 default 153 5 675 5 675 5 675 5 675 157 5 785 5 785 5 785 5 785 161 5 805 5 805 5 805 5 805 ISM Band 165 5 825 5 825 5 825 Note 1 Channel 34 is the default channel for Japan Avaya Wireless AP 4 5 6 User s Guide C 13 Radio Specifications 802 11b Channel Frequencies The available 802 11b channels vary by regulatory domain and or country 802 11b radio certification is available in the following regions e FCC U S Canada Mexico South America India Korea Australia and South Africa e ETSI Most of Europe including the United Kingdom Ireland Singapore and Hong Kong e MKK Japan e IL Israel Some countries restrict 802 11b operation to specific frequency bands The web interface will always display the available channels depending in the cards regulatory domain In the CLI any channels that are not available are labeled Not Supported Channel ID FCC ETSI MKK IL GHz GHz GHz GHz 1 2 412 2 412 2 412 2 2 417 2 417 2 417 3 2 422 2 422 2 422 4 2 427 2 427 2 427 2 427 5 2 432 2 432 2 432 2 432 1 of 2 C 14 Avaya Wireless AP 4 5 6 User s Guide Radio Specifications Channel ID FCC ETSI MKK IL GHz GHz GHz GHz
9. 802 11b g Parameters Name Type Values Access CLI Parameter Wireless Interfaces Group N A R wif Table Index Integer 3 or 4 Dual radio R index APs Network Name DisplayStrin 2 31 characters RW netname SSID g My Wireless Network default Auto Channel Select Integer enable default RW autochannel Acs disable DTIM Period Integer 1 255 RW dtimperiod 1 default RTS CTS Medium Integer 0 2347 RW medres Reservation Default is 2347 off MAC Address PhyAddress 12 hex digits R macaddr Closed System Integer enable RW closedsys disable default 1of4 Avaya Wireless AP 4 5 6 User s Guide A 115 802 11b g Wireless Interface Commands Name Type Values Access CLI Parameter Supported Frequency Octet String Depends on R suppchannels Channels Regulatory Domain Load Balancing Integer enable default RW Idbalance disable Wireless Operational Integer dot11b only RW mode Mode dot11g only dot11bg default dot1 1g wifi Operating Frequency Integer 1 14 available RW channel Channel channels vary by regulatory domain country see 802 11g Channel Frequencies Supported Data Octet String See Transmit Rate R suppdatarates Rates next 20f4 A 116 Avaya Wireless AP 4 5 6 User s Guide 802 11b g Wireless Interface Commands Name Type Values Access CLI Parameter Transmit Rate Integer32 For 802 11b only mode 0
10. lt _ Update AP by Using TFTP Figure 6 3 Update AP via TFTP Command Screen UpdateAP W RetrieveFile Reboot MW NO Hemwlink Status SS varte A wane A Configure This page is used to update software images and configuration file in the Access Point using TFTP Monitor s System Information commands Boot Loader Version Help TFTP Information Exit Server IP Address 10 1 5 28 File Name BLD6_7AUGO3_AP2000 File Type Img X File Operation Update AP update AP 3 El 2 In the Server IP Address field enter the TFTP server IP Address To locate the IP address assigned to the TFTP server double click the TFTP server icon on your desktop gt NOTE This is the IP address that will be used to point the Access Point to the AP Image file 3 Inthe File Name field enter the name of the file to be downloaded including the file extension Avaya Wireless AP 4 5 6 User s Guide 6 9 Update AP by Using TFTP EI Copy the updated AP Image file to the TFTP server s root folder The default AP Image is located at C Program Files Avaya Wireless AP600 4 In the File Type field select the proper file type Choices include Config for configuration information such as System Name Contact Name and so on Image for the AP Image executable program BspBI for the Bootloader software Certificate the digital certificate for authentication in SSL communications Priv
11. 1of5 2 40 Avaya Wireless AP 4 5 6 User s Guide Initialization Option Description Auto Channel Select By default the AP scans the area for other Access Points and selects the best available communication channel either a free channel if available or the channel with the least amount of interference Remove the check mark to disable this option Frequency Channel When Auto Channel Select is enabled this field is read only and displays the Access Point s current operating channel When Auto Channel Select is disabled you can specify the Access Point s channel If you decide to manually set the unit s channel ensure that nearby devices do not use the same frequency Available Channels vary based on regulatory domain See 802 11g Channel Frequencies 2of5 Avaya Wireless AP 4 5 6 User s Guide 2 41 Initialization Option Description Transmit Rate Select a specific transmit rate for the AP The values available depend on the Operational Mode Auto Fallback is the default setting it allows the AP to select the best transmit rate based on the cell size e For 802 11b only Auto Fallback 1 2 5 5 11 Mbits sec e For 802 119 only Auto Fallback 6 9 12 18 24 36 48 54 Mbits sec e For 802 11b g and 802 11g wifi Auto Fallback 1 2 5 5 6 9 11 12 18 24 36 48 54 Mbits sec WEP Encryption Place a
12. Frequency Channel When Auto Channel Select is enabled this field is read only and displays the Access Point s current operating channel When Auto Channel Select is disabled you can specify the Access Point s channel If you decide to manually set the unit s channel ensure that nearby devices do not use the same frequency Available Channels vary based on regulatory domain See 802 11a Channel Frequencies Note that you cannot manually set the channel for 802 11a products in Europe see Dynamic Frequency Selection DFS for details Transmit Rate Use the drop down menu to select a specific transmit rate for the AP Choose between 6 9 12 18 24 36 48 54 Mbits s and Auto Fallback The Auto Fallback feature allows the AP to select the best transmit rate based on the cell size 3 of 4 2 34 Avaya Wireless AP 4 5 6 User s Guide Initialization Option Description WEP Encryption Place a check mark in the box provided to enable WEP encryption See WEP Encryption for more information Set Encryption Key 1 If you enabled Encryption configure an Encryption Key This key is used to encrypt and decrypt data between the AP and its wireless clients Enter the number of characters that correspond to the desired key size as described below e Enter 10 hexadecimal characters 0 9 and A F or 5 ASCII characters see ASCII Character Chart to use 64 bit
13. Note 1 Includes Fallback to Primary RADIUS Server RADIUS Session Timeout RADIUS Multiple MAC Address Formats RADIUS DNS Host Name Support RADIUS Start Stop Accounting Avaya Wireless AP 4 5 6 User s Guide C 7 Software Features E Advanced Wireless Functions Feature 802 11b 802 11a 802 11b g WEP Plus yes Weak Key Avoidance Remote Link Test yes Link Test Responder yes yes Load Balancing yes yes AP List yes Medium Density Distribution yes Distance between APs yes Interference Robustness yes SpectraLink VolP Support yes Note 1 Available only one way AP to client if using an Avaya 802 11a b Card or a non Avaya Wireless client Note 2 No client support in 802 11a or 802 11b g Note 3 This feature is not available if you are using an Avaya 802 11a b Card or a non Avaya Wireless client with an 802 11b AP C 8 Avaya Wireless AP 4 5 6 User s Guide Hardware Specifications Hardware Specifications Physical Specifications AP without metal base Dimensions H x W x L 3 5 x 17 x 21 5 cm 1 5 x 6 75 x 8 5 in Weight 0 68 kg 1 50 Ib Electrical Specifications Using the Power Adapter Voltage Input 100 to 240 VAC 50 60 Hz 0 4A Voltage Output 12 VDC Power Consumption 10 Watts Using Power over Ethernet Input Voltage 42 to 60 VDC Output Current 200mA at
14. Port Type Octet String tcp udp tcp udp RW porttype Port Number Octet String User Defined there are also 4 pre defined protocols Index 1 NetBios Name Service 137 Index 2 NetBios Datagram Service 138 Index 3 NetBios Session Service 139 Index 4 SNMP Service 161 RW portnum Protocol Name DisplayString User Defined there are also 4 pre defined protocols see Port Number above RW protoname 2 of 3 Avaya Wireless AP 4 5 6 User s Guide A 55 Filtering Commands Name Type Values Access CLI Parameter Interface Bitmask Integer32 Oor 2 no interfaces disable 1 or 3 Ethernet 4 or 6 Wireless 5 or 7 all interfaces default is 7 RW ifbitmask Status optional Integer enable default for new entries disable default for pre defined entries delete RW status 3 of 3 A 56 Avaya Wireless AP 4 5 6 User s Guide Ea HTTP and HTTPS Commands HTTP and HTTPS Commands HTTP Web browser Parameters A CAUTION Avaya strongly urges you to change the default passwords to restrict access to your network devices to authorized personnel If you lose or for get your password settings you can always perform the Reset to Factory Default Procedure Name Type Values Access CLI Parameter HTTP Group N A R http HT
15. e All Access Points must have the same Network Name to support client roaming e All workstations with an 802 11 client adapter installed must use either a Network Name of any or the same Network Name as the Access Points that they will roam between If an AP has Closed System enabled a client must have the same Network Name as the Access Point to communicate see Interfaces Security Settings All Access Points and clients must have the same security settings to communicate Cell Coverage e The Access Points cells must overlap to ensure that there are no gaps in coverage and to ensure that the roaming client will always have a connection available e The coverage area of an 802 11b or 802 11b g AP is larger than the coverage area of an 802 11a AP The 802 11b and 802 11b g APs operate in the 2 4 GHz frequency band the 802 11a AP operates in the 5 GHz band Products that operate in the 2 4 GHz band offer greater range than products that operate in the 5 GHz band Avaya Wireless AP 4 5 6 User s Guide 1 5 IEEE 802 11 Specifications EC Data Rates An 802 11a or 802 11b g AP operates at faster data rates than the 802 11b AP 802 11a and 802 119 products operate at speeds of up to 54 Mbits sec 802 11b products operate at speeds of up to 11 Mbits sec Channels e All Access Points in the same vicinity should use a unique independent Channel By default the AP automatically scans for available Channels during bo
16. Copyrights e Avaya is a registered trademark of Avaya Inc e Microsoft Windows is a registered trademark of the Microsoft Corporation e All trademarks mentioned herein belong to their respective owners Publication Information Copyright 2004 Avaya Inc All rights reserved Part Number 66221 B Document Number 555 301 708 Release 2 4 11 Date April 2004 Regulatory Information See the Regulatory Flyer that came with your AP 3 unit or go to the CD ROM to view the information Warranty Avaya Inc provides a limited warranty on this product Refer to your sales agreement to establish the terms of the limited warranty In addition Avaya s standard warranty language as well as information regarding support for this product while under warranty is available through the following Web site www avaya com support Notice While reasonable efforts were made to ensure that the information in this book was complete and accurate at the time of printing Avaya can assume no responsibility for any errors Changes and corrections to the information contained in this document may be incorporated into future reissues How to Get Help For additional support telephone numbers go to the Avaya support Web site http www avaya com support If you are e Within the United States click the Escalation Management link Then click the appropriate link for the type of support you need e Outside the United States click t
17. Note 1 Configure either the Pre Shared Key or the PSK Pass Phrase but not both to create a pre shared key for WPA PSK mode Setting Pre Shared Key will override a previous PSK Pass Phrase setting Similarly setting PSK Pass Phrase will override a previous Pre Shared Key setting Note 2 Avaya recommends using a PSK Pass Phrase of at least 13 characters to ensure that the generated key cannot be easily deciphered by network infiltrators 3 of 3 Syntax Examples To display the supported security modes on the wireless interfaces use the following command Device Name gt show wifssidtbl Avaya Wireless AP 4 5 6 User s Guide A 123 Wireless Interface SSID VLAN Security Commands To configure an SSID and VLAN pair and the security mode associated with the pair use the following command Syntax lt rekeyint gt lt pskey gt lt passphrase gt Device Name gt set wifssidtbl lt index gt lt ssidindex gt lt ssid gt lt vlanid gt lt status gt lt secmode gt lt encryptkey0 gt lt encryptkeyl gt lt encryptkey2 gt lt encryptkey3 gt lt encryptkeytx gt lt encryptkeylength gt Example Device Name gt set wifssidtbl 3 2 Engineering 1050 enable WPA Depending on the configured security mode the following parameters must be configured Security Key Rekeying PSK PSK Pass Mode Key 0 Key 1 Key 2 Key 3 Tx Key
18. gt NOTE Authorization Lifetime is used for MAC authenticated clients and 802 1x clients Setting Authorization Lifetime in the RADIUS Auth tab will also effect EAP 802 1x Authorization clients Avaya Wireless AP 4 5 6 User s Guide 4 157 RADIUS 5 Select a MAC Address Format Type This should correspond to the format in which the clients 12 digit MAC addresses are listed within the RADIUS server Available options include Dash delimited dash between each pair of digits XX yy ZZ aa bb cc Colon delimited colon between each pair of digits xXx yy zz aa bb cc Single dash delimited dash between the sixth and seventh digits xxyyzz aabbcc No delimiters No characters or spaces between pairs of hexadecimal digits xxyyzzaabbcc 6 Select a Server Addressing Format type IP Address or Name If you want to identify RADIUS servers by name you must configure the AP as a DNS Client See DNS Client for details 7 Enter the server s IP address or name in the field provided 8 Enter the port number which the AP and the server will use to communicate By default RADIUS servers communicate on port 1812 9 Enter the Shared Secret in the Shared Secret and Confirm Shared Secret field This is a password shared by the RADIUS server and the AP The same password must also be configured on the RADIUS server 10 Enter the maximum time in seconds that the AP should wait for the RADIUS server to res
19. 4 Try using a different Ethernet cable if it works there is probably a faulty connection over the long cable or a bad RJ 45 connection 5 Check power plug and hub 6 If the Ethernet link goes down check the cable cable type switch and hub There Is No Data Link 1 Verify that the indicator for the port is on 2 Verify that the PoE hub is connected to the Ethernet network with a good connection 3 Verify that the Ethernet cable is Category 5 or better and is less than 100 meters approximately 325 feet in length from the Ethernet source to the AP Avaya Wireless AP 4 5 6 User s Guide 7 13 Recovery Procedures mae 4 Try to connect a different device to the same port on the PoE hub if it works and a link is established there is probably a faulty data link in the AP Try to re connect the AP to a different output port remember to move the input port accordingly if it works there is probably a faulty output or input port in the PoE hub or a bad RJ 45 connection Overload Indications 1 Verify that you are not using a cross over cable between the PoE output port and the AP Verify that there is no short over any of the twisted pair cables Move the device into a different output port if it works there is probably a faulty port or bad RJ 45 connection Recovery Procedures The most common installation problems relate to IP addressing For example without th
20. 4 1 The ANI nA coc egan ceed eeabecced aos ee NEIER RAGE REA 4 1 Configuring the AP Using the HTTP HTTPS Interface 4 2 Vil Ce ee a NETAS ee ee eer ee ee ee 4 5 Dynamic DNS Support 7 NG seco LABAG be e444 eee Seoaooe 4 6 MOWO cc ccage paced pie Rhee eee ks a AUNG eh REGRET ORE WEA 4 9 IP COPRONO 5 6226 45 Waid oe SRR SORES ARERR ees we 4 9 De Sele APP AY 4 13 Link IBONG 5 0 5 09 KA oo SHR EGS ERRIRER EEE ER REG ERI 4 18 WOU CSS x crag EEA EEA AI S RoR RRR EAEE TTE ORR 4 21 Operational MOJE 20055445 6e hs da trn dai hri initio 4 22 Wireless CUZ Gl 25 4625 See be etre teiepeehetenienaadie 4 24 Wireless 802 TID cua bhang ap dis eceterdedodaiasoe das 4 31 Wireless O02 IMO ied GG eRe eA deh RAISE Ree Rae E RS 4 45 Wireless 202 TVG acc Pale so Rho oe Oh AA 4 51 2 Avaya Wireless AP 4 5 6 User s Guide Wireless Distribution System WDS 0000 4 59 Bee ga ho4 54 8 AA 4 64 MANAGING ss cteteep cde teadeog ete R ANTAA 4 64 POSSWINUS 15 Sadsedediaeds sey T E TET 4 65 ghana TAGS Er Reet Lene Reha Ae 4 67 iit ae eee ee ee er EE ee re ee ees ere ee 4 68 FIT inci ateeRedea aia teow aot ren eee Gwe NANANG 4 82 Ethernet Protocol 5 0 55 5404 445 544 NARRA hahahah ABA 4 82 Cl a kG ROE E EERE ARERR SHEARER EH ERA EGE 4 84 FUTON 6 55 6 ON 2 d S ORG LARISA ERS SRR OLS RARE ARA LEA REDS 4 93 TOF UDP POiisedipiceatesiendeea tenn atenuaedas 4 94 PUNE 6 8A GO DAA PG BAG HEED BN PG SEH PG EMERSON PA BLAH ENG
21. lt file type config img bootloader gt Device Name gt download 192 168 0 101 apimage img lt CR gt The Help Command The help command displays instructions on using control key sequences for navigating a command line and displays command information and examples e Using help as the only argument Device Name gt help Avaya Wireless AP 4 5 6 User s Guide A 19 CLI Help AG Figure A 8 Results of help CLI command Device Name gt help Type at the command prompt for a command list Complete command description and command usage can be provided by help lt command name gt CR lt command name gt help lt CR gt Special keys supported Arrow Keys DEL BS delete previous character Ctrl A go to beginning of line Ctrl E go to end of line Ctrl F go forward one character Ctr1 B go backward one character Ctrl D delete current character Ctrl U X delete to beginning of line Ctr1 K delete to end of line Ctrl W delete previous word Ctr1 T transpose previous character Ctr1 P go to previous line in history buffer Ctr1 N go to next line in history buffer Tab Will attempt command completion Comment Character Will provide command listing Examples np list all the supported commands sh list all commands that start with sh show list all arguments to the show command sh lt TAB gt complete the show command
22. 69 73 77 81 84 86 87 88 Sensitivity dBm Antenna 4 dBi integrated diversity antenna module 5 15 5 85 GHz Gain C 20 Avaya Wireless AP 4 5 6 User s Guide Radio Specifications AP 6 802 11 b g Wireless Communication Ranges 54 48 36 24 18 12 Range Mbits s Mbits s Mbits s Mbits s Mbits s Mbits s Open Office 60 m 75m 123 m 164m 204 m 253 m 197 ft 246 ft 404 ft 538 ft 669 ft 830 ft Semi Open 41m 51m 85m 113m 140m 174m Office 135 ft 167 ft 279 ft 371 ft 459 ft 571 ft Closed 28m 35m 58 m 78m 97m 120m Office 92 ft 115 ft 190 ft 256 ft 318 ft 394 ft Tx Power 12 13 14 15 15 15 dBm Receiver 70 72 78 81 84 87 Sensitivity dBm Antenna 3 dBi integrated diversity antenna module 2 4 2 5 GHz Gain SSS ga ee eee 9 6 11 5 5 2 1 Range Mbits s Mbits s Mbits s Mbits s Mbits s Mbits s Open Office 272m 292 m 190m 219 m 236 m 314 m 892 ft 258 ft 623 ft 718 ft 774 ft 1030 ft Semi Open 187 m 201m 131m 151m 162m 216 m Office 614 ft 659 ft 430 ft 495 ft 531 ft 709 ft Closed 129 m 138 m 90 m 104 m 111m 149 m Office 423 ft 453 ft 295 ft 341 ft 364 ft 489 ft Avaya Wireless AP 4 5 6 User s Guide C 21 Radio Specifications lf Tx Power 15 15 15 15 15 15 dBm Receiver 88 89 83 85 8
23. es Network Parameter Description Subnet Mask The Access Point s subnet mask When IP Address Assignment Type is set to Dynamic this field is read only and reports the unit s current subnet mask The subnet mask will default to 255 255 0 0 if the unit cannot obtain one from a DHCP server Gateway IP The IP address of the Access Point s Address gateway When IP Address Assignment Type is set to Dynamic this field is read only and reports the IP address of the unit s gateway The gateway IP address will default to 169 254 128 133 if the unit cannot obtain an address from a DHCP server 2of2 DNS Client If you prefer to use host names to identify network servers rather than IP addresses you can configure the AP to act as a Domain Name Service DNS client When this feature is enabled the Access Point contacts the network s DNS server to translate a host name to the appropriate network IP address You can use this DNS Client functionality to identify RADIUS servers by host name See RADIUS for details Avaya Wireless AP 4 5 6 User s Guide 4 11 Network Plas Parameter Description Enable DNS Client Place a check mark in the box provided to enable DNS client functionality Note that this option must be enabled before you can configure the other DNS Client parameters DNS Primary The IP address of the network s primary DNS Server IP Address server DNS Secondary
24. ie list all the supported commands sh list all commands that start with sh show list all arguments to the show command sh lt TAB gt complete the show command Device Name 1 gt A 28 Avaya Wireless AP 4 5 6 User s Guide Ha CLI Commands history Shows contents of Command History Buffer The Command History Buffer stores command statements entered in the current session To avoid re entering long command statements use the keyboard Up Arrow Ctrl P and Down Arrow Ctrl N keys to recall previous statements from the Command History Buffer When the desired statement is displayed press the Enter key to execute or you may edit the statement before executing it Device Name gt history passwd Changes the CLI Password Device Name gt passwd lt oldpassword gt lt newpassword gt lt newpassword gt 44 caution Avaya strongly urges you to change the default passwords to restrict access to your network devices to authorized personnel If you lose or for get your password settings you can always perform the Reset to Factory Default Procedure Avaya Wireless AP 4 5 6 User s Guide A 29 CLI Commands a quit Ends a CLI session Device Name gt quit The done and exit commands perform the same action reboot Reboots the Access Point after specified number of seconds Specify a value of O zero for immediate reboot Device Name gt reboot 0 Device Name gt reboot
25. Avaya Wireless AP 4 5 6 User s Guide 4 121 Security kaaa Different servers support different EAP types and each EAP type provides different features Refer to the documentation that came with your RADIUS server to determine which EAP types it supports gt NOTE The AP supports the following EAP types when Authentication Mode is set to 802 1x or WPA EAP TLS PEAP and EAP TTLS When Authentication Mode is set to Mixed the AP supports the following EAP types EAP TLS PEAP EAP TLLS and EAP MD5 MD5 does not support automatic key distribution therefore if you choose this method you need to manually configure each client with the network s encryption key Authentication Process There are three main components in the authentication process The standard refers to them as 1 supplicant client PC 2 authenticator Access Point 3 authentication server RADIUS server When using Authentication Mode is set to 802 1x WPA or Mixed mode 802 1x and WEP you need to configure your RADIUS server for authentication purposes 4 122 Avaya Wireless AP 4 5 6 User s Guide a Security Prior to successful authentication an unauthenticated client PC cannot send any data traffic through the AP device to other systems on the LAN The AP inhibits all data traffic from a particular client PC until the client PC is authenticated Regardless of its authentication status a client PC can always exchange 802 1x messages in the clear wit
26. Check this box to allow only clients configured with the Access Point s specific Network Name to associate with the Access Point When enabled a client configured with the Network Name ANY cannot connect to the AP This option is disabled by default 5 of 5 Dynamic Frequency Selection DFS 802 11a APs sold in Europe use a technique called Dynamic Frequency Selection DFS to automatically select an operating channel During boot up the AP scans the available frequency and selects a channel that is free of interference If the AP subsequently detects interference on its channel it automatically reboots and selects another channel that is free of interference 4 28 Avaya Wireless AP 4 5 6 User s Guide mas Interfaces DFS only applies to 802 11a APs used in Europe i e units whose regulatory domain is set to ETSI The European Telecommunications Standard Institute ETSI requires that 802 11a devices use DFS to prevent interference with radar systems and other devices that already occupy the 5 GHz band If you are using an 802 11a AP in Europe keep in mind the following e DFS is not a configurable parameter It is always enabled and cannot be disabled e You cannot manually select the device s operating channel you must let DFS select the channel e You cannot configure the Auto Channel Select option Within the HTTP interface this option always appears enabled RTS CTS Medium Rese
27. Device Name 5 show network Result The CLI displays network group parameters Note show network and show ip return the same data Figure A 11 Results of show network and show ip CLI Commands Device Name gt show network IP Network Group Parameters ipaddr 168 6 6 1 ipsubmask 5 255 0 6 6 ipgw 160 6 6 1 ipttl 64 ipaddrtype 5 static Device Name gt show ip IP Network Group Parameters ipaddr 108 0 0 1 ipsubmask s 255 0 0 0 ipgw 186 6 6 1 ipttl 64 ipaddrtype 5 static Device Name gt _ Avaya Wireless AP 4 5 6 User s Guide A 37 CLI Commands Show Individual and Table Parameters To view a single parameter Device Name gt show lt parameter name gt Syntax Example Device Name 5 show ipaddr Result Displays the Access Point IP address Figure A 12 Result of show ipaddr CLI Command Device Name gt show ipaddr ipaddr 16 6 0 1 Device Name gt _ To view all parameters in a table Syntax Device Name gt show lt table name gt Example Device Name 5 show mgmtipaccesstbl Result Displays the IP Access Table and its entries A 38 Avaya Wireless AP 4 5 6 User s Guide CLI Commands upload Uploads a text based configuration file from the AP to the TFTP Server Executing upload with the asterisk character will make use of the previously set stored TFTP
28. default RW pktfwdif Interface Port 1 Ethernet 2 WDS 1 3 WDS 2 4 WDS 3 5 WDS 4 6 WDS 5 7 WDS 6 Avaya Wireless AP 4 5 6 User s Guide A 71 RAD Commands i gt NOTE The Wireless Distribution System WDS feature is not available for 802 11a or 802 11b g APs at this time RAD Commands The Rogue AP Detection RAD feature enables an additional security level for wireless LAN deployments The RAD feature provides a mechanism for detecting Rogue Access Points by utilizing the coverage of the trusted Access Point deployment The Rogue AP Scan employs background scanning using low level 802 11 scanning functions for effective wireless detection of Access Points in its coverage area with minimal impact on the normal operation of the Access Point The set radstatus command enables Rogue Access Point Detection The scan repetition duration radscanint is also configurable A 72 Avaya Wireless AP 4 5 6 User s Guide RAD Commands Rogue Access Point Detection RAD Parameters Name Type Values Access CLI Parameter Rogue Access Group N A R rad Point Detection RAD Status Integer enable RW radstatus disable default Scan Interval Integer 15 1440 minutes RW radscanint Syntax Examples Device Name gt set radstatus enable Device Name gt set radscanint lt 15 1440 gt Device Name gt show rad Figure A 14 Results
29. s Guide Ae n Hardware Installation e A computer that is connected to the same IP network as the AP and has one of the following Web browsers installed Microsoft Internet Explorer 6 with Service Pack 1 or later and patch Q323308 Netscape 6 1 or later The computer is required to configure the AP using the Web or HTTP interface Hardware Installation Follow these steps to install a Single radio AP 1 Unpack the Access Point and accessories from the shipping box 2 If you intend to install the unit free standing or if you intend to mount it to the ceiling use a Phillips screwdriver to attach the metal base to the underside of the unit The metal base and screws are provided See Mounting Options for additional information Avaya Wireless AP 4 5 6 User s Guide 2 7 Hardware Installation Figure 2 1 Attach the Metal Base 2 8 Avaya Wireless AP 4 5 6 User s Guide Hardware Installation 3 Press down on the cable cover lock located in the front center of the unit to release the cable cover Figure 2 2 Unlock the Cable Cover cable cover lock Avaya Wireless AP 4 5 6 User s Guide 2 9 Hardware Installation Ea 4 Remove the cable cover from the unit Figure 2 3 Remove Cable Cover 2 10 Avaya Wireless AP 4 5 6 User s Guide MAHA H Hardware Installation 5 Remove the front cover the side with the LED indicators from the unit Figure 2 4 Remov
30. s Guide A 109 802 11b Wireless Interface Commands O Name Type Values Access CLI Parameter Supported Data Octet String 1 Mbits sec R suppdatarates males 2 Mbits sec 5 5 Mbits sec 11 Mbits sec Transmit Rate Integer32 0 auto fallback RW txrate default 1 Mbits sec 2 Mbits sec 5 5 Mbits sec 11 Mbits sec Supported Frequency Octet String Depends on R suppchannels Channels Regulatory Domain Physical Layer Type Integer dsss direct R phytype sequence spread spectrum for 802 11b Regulatory Domain DisplayString U S Canada R regdomain List FCC Europe ETSI Japan MKK Note 1 For 802 11a APs in Europe Auto Channel Select is a read only parameter it is always enabled 3 of 3 A 110 Avaya Wireless AP 4 5 6 User s Guide c3 802 11b Wireless Interface Commands Syntax Examples Network Name SSID Device Name gt set wif index 35 netname lt Network Name SSID for wireless interface gt Device Name gt show wif For results of the show wif command see Figure A 20 Operational Mode Device Name gt set wif lt index gt mode lt see table gt Mode Operational Mode 1 dot11b only 2 dot11g only 3 dot11bg 4 dot11a only 5 dott 1g wifi TX Power Control The TX Power Control feature lets the user configure the transmit power level of the card in the AP at one of four levels Avaya Wireless
31. Additional Hardware Features LED Indicators The AP has four LED indicators The LEDs are identified in LED Indicators Illustrated and exhibit the following behavior Ethernet Ethernet Wireless Power Link Activity Activity Indication Solid Green Green Green Normal Operation Green when link flash flash exists with with data data activity activity Solid Solid Solid Solid Rebooting Power on Self Test Amber Amber Amber Amber POST Solid Solid Solid Solid Reset to Factory Defaults Green Amber Amber Amber command issued Solid Red Off Off Off SDRAM Test Failure 1 of 3 Avaya Wireless AP 4 5 6 User s Guide 2 57 Additional Hardware Features a Ethernet Ethernet Wireless Power Link Activity Activity Indication Solid Red Green Off Off If the AP is configured to get an IP address from a DHCP server it may take up to two minutes to obtain the address The Power LED will be red and if there is an Ethernet link the Ethernet Link LED will be green during the time the AP is trying to obtain an address Once an address is obtained the Power LED will turn green Blinking Blinking Blinking Off Hardware Timer Test Failure Red Red or Off Red Blinking Off Off Blinking Flash Test Failure Red Red Solid Red Blinking Solid Off Ethernet Test Failure Red or Off Red Solid Red Off Off Solid Red Wireless Test Failure Blinking Blinking Blinking Off Missing or bad AP ima
32. CLI Conventions rs Below are the rules for creating modifying enabling and disabling and deleting table entries e Creation The table name is required The table index is required For table entry or instance creation the index is always zero 0 The order in which the table arguments or objects are entered is not important Parameters that are not required can be omitted in which case they will be assigned the default value e Modification The table name is required The table index is required To modify the table index must be the index of the entry to be modified Only the table objects that are to be modified need to be specified Not all the table objects are required If multiple table objects are to be modified the order in which they are entered is not important lf the entire table entry is to be modified all the table objects have to be specified A 12 Avaya Wireless AP 4 5 6 User s Guide a CLI Conventions e Enabling Disabling The table name is required The table index is required For table enabling disabling the index should be the index of the entry to be enabled disabled The entry s new state either enable or disable is required e Deletion The table name is required The table index is required For table deletion the index should be the index of the entry to be deleted The word delete i
33. Device Name 1 gt e Complete command description and command usage can be provided by Device Name gt help lt command name gt Device Name gt lt command name gt help A 20 Avaya Wireless AP 4 5 6 User s Guide Pa Accessing the AP CLI Accessing the AP CLI You can use HyperTerminal or Telnet to access the AP CLI e Using HyperTerminal to Log in to the AP e Using Telnet to Log in to the AP Using HyperTerminal to Log in to the AP 1 Open your terminal emulation program like HyperTerminal and set the following connection properties Com Port lt COM1 COM2 etc depending on your computer Baud rate 9600 Data Bits 8 Stop bits 1 Flow Control None Parity None Avaya Wireless AP 4 5 6 User s Guide A 21 Accessing the AP CLI a se 2 Under File gt Properties gt Settings gt ASCII Setup enable the Send line ends with line feeds option Result HyperTerminal sends a line return at the end of each line of code 3 Enter the CLI password default is public gt NOTE Avaya recommends changing all default passwords immediately See the following sections for information on how to change the default passwords CLI password see passwd SNMP passwords read read write and SNMPv3 authentication and privacy see SNMP Commands HTTP password see HTTP and HTTPS Commands Using Telnet to Log in to the AP The CLI commands can be used to access configure
34. Enter the maximum time in seconds that the AP should wait for the RADIUS server to respond to a request in the Response Time field Range is 1 10 seconds default is 3 seconds Enter the maximum number of times an authentication request may be retransmitted in the Maximum Retransmissions field Range is 1 4 default is 3 If you are configuring a back up server repeat Steps 7 through 12 for the back up server Click OK to save your changes Click the RADIUS Auth sub tab Enter the time in seconds each client session may be active before being automatically re authenticated in the Authorization Lifetime field The Authorization Lifetime default is 0 reauthentication is disabled The configurable range is from 900 seconds to 43200 seconds gt NOTE 14 15 4 162 Authorization Lifetime is used for MAC authenticated clients and 802 1x clients Setting Authorization Lifetime in the RADIUS Auth tab will also effect EAP 802 1x Authorization clients Click OK to save your changes Reboot the AP device for these changes to take effect Avaya Wireless AP 4 5 6 User s Guide _ kani Figure 4 24 RADIUS EAP 802 1x Authentication Screen RADIUS Auth EAP 802 1x Auth RADIUS Acct The EAP 802 1x access control provides EAP 802 1x based authentication of wireless clients via a standard 802 1x server s Primary and backup EAP 802 1x Authentication servers can be configured Note ht order to enable the
35. If you decide to manually set the unit s Channel ensure that nearby devices do not use the same frequency Available Channels vary based on regulatory domain See 802 11a Channel Frequencies and 802 119 Channel Frequencies gt NOTE You cannot manually set the channel for 802 11a products in Europe see Dynamic Frequency Selection DFS for details 5 of 7 4 56 Avaya Wireless AP 4 5 6 User s Guide es Interfaces Parameter Description Transmit Rate Select a specific transmit rate for the AP The values available depend on the Operational Mode Auto Fallback is the default setting it allows the AP to select the best transmit rate based on the cell size Use the drop down menu to select a specific transmit rate for the AP e For 802 11b only Auto Fallback 1 2 5 5 11 Mbits sec For 802 11g only Auto Fallback 6 9 12 18 24 36 48 54 Mbits sec For 802 11b g and 802 11g wifi Auto Fallback 1 2 5 5 6 9 11 12 18 24 36 48 54 Mbits sec e For 802 11a only Auto Fallback 6 9 12 18 24 36 48 54 Mbits s and Auto Fallback is the default setting it allows the AP unit to select the best transmit rate based on the cell size 6 of 7 Avaya Wireless AP 4 5 6 User s Guide 4 57 Interfaces lt Parameter Description DTIM Period The Deferred Traffic Indicator Map DTIM is used with clients that have power management enabl
36. Length Interval Value Phrase None Inactive Inactive Inactive Inactive Inactive Inactive Inactive Inactive Inactive 802 1x Inactive Inactive Inactive Inactive Inactive Active Active Inactive Inactive Mixed Inactive Active Inactive Inactive Inactive Active Active Inactive Inactive WPA Inactive Inactive Inactive Inactive Inactive Inactive Inactive Inactive Inactive WPA PSK Inactive Inactive Inactive Inactive Inactive Inactive Inactive Active Active WEP Active Inactive Inactive Inactive Inactive Inactive Inactive Inactive Inactive gt NOTE If you have two or more SSIDs per interface with a security mode of None be aware that security being applied in the VLAN is not being applied in the wireless network A 124 Avaya Wireless AP 4 5 6 User s Guide a VLAN SSID Pair Commands gt NOTE If you set Security Mode to 802 1x WPA or Mixed you also need to configure the RADIUS Authentication parameters If you set Authentication Mode to Mixed you also need to configure WEP Encryption settings VLAN SSID Pair Commands VLAN SSID Parameters Name Type Values Access CLI Parameter VLAN Group N A R vlan Status Integer enable RW vlanstatus disable default Management ID Vlan Id 1 untagged RW vlanmgmtid or 1 4094 Avaya Wireless AP 4 5 6 User s Guide A 125 VLAN SSID Pair Commands EN VLAN ID Tabl
37. Logging into the HTTP Interface Once the AP has a valid IP Address and an Ethernet connection you may use your web browser to issue commands The Command Line Interface CLI also provides a method for issuing commands using Telnet or a serial connection This section covers only use of the HTTP Interface For more information about issuing commands with the CLI refer to The Command Line Interface Follow these steps to view the available commands supported by the AP s HTTP interface 1 Open a Web browser on a network computer gt NOTE The HTTP interface supports the following Web browser Microsoft Internet Explorer 6 with Service Pack 1 or later Netscape 6 1 or later 6 2 Avaya Wireless AP 4 5 6 User s Guide Cr KK Logging into the HTTP Interface 2 If necessary disable the Internet proxy settings For Internet Explorer users follow these steps Select Tools gt Internet Options Click the Connections tab Click LAN Settings lf necessary remove the check mark from the Use a proxy server box Click OK twice to save your changes and return to Internet Explorer 3 Enter the Access Point s IP address in the browser s Address field and press Enter Result The Enter Network Password screen appears Avaya Wireless AP 4 5 6 User s Guide 6 3 Logging into the HTTP Interface a ee a Ri 4 Enter the HTTP password in the Password field and click OK Leave the User Name fiel
38. Name Type Values Access CLI Parameter IP ARP Filtering Group N A R iparp Status Integer enable RW iparpfltstatus disable default IP Address IpAddress User Defined RW iparpfitipaddr Subnet Mask IpAddress User Defined RW iparpfltsubmask Broadcast Filtering Table Name Type Values Access CLI Parameter Broadcast Filtering Table N A R broadcastfittbl Table Index Integer 1 5 N A index Protocol Name DisplayString N A R protoname Direction Integer ethertowireless RW direction wirelesstoether both default Status Integer enable RW status disable default Avaya Wireless AP 4 5 6 User s Guide A 53 Filtering Commands TCP UDP Port Filtering The following parameters are used to enable disable the Port filter feature Name Type Values Access CLI Parameter Port Filtering Group N A R portfit Port Filter Status Integer enable default RW portfitstatus disable TCP UDP Port Filtering Table The following parameters are used to configure TCP UDP Port filters Name Type Values Access CLI Parameter Port Filtering Table Table N A R portfittbl Table Index N A User Defined there are also 4 pre defined indices see Port Number in this table for more information R index 10f 3 A 54 Avaya Wireless AP 4 5 6 User s Guide Filtering Commands Name Type Values Access CLI Parameter
39. Table Index Integer 3 or 4 Dual radio R index APs Network Name DisplayString 2 31 characters RW netname SSID My Wireless Network default Auto Channel Select Integer enable default RW autochannel acs disable DTIM Period Integer 1 255 RW dtimperiod 1 default RTS CTS Medium Integer 0 2347 RW medres Reservation Default is 2347 off MAC Address PhyAddress 12 hex digits R macaddr Closed System Integer enable RW closedsys disable default Supported Frequency Octet String Depends on R suppchannels Channels Regulatory Domain Load Balancing Integer enable default RW Idbalance disable 1 of 3 A 108 Avaya Wireless AP 4 5 6 User s Guide 802 11b Wireless Interface Commands Name Type Values Access CLI Parameter Distance between Integer large default RW distaps APs medium small minicell microcell Interference Integer enable default RW interrobust Robustness r disable Operating Frequency Integer 1 14 available RW channel Channel channels vary by regulatory domain country see 802 11b Channel Frequencies Multicast Rate Integer 1 Mbits sec 1 RW multrate 2 Mbits sec 2 default 5 5 Mbits sec 3 11 Mbits sec 4 Closed Wireless Integer enable RW closedsys System disable default Medium Distribution Integer enable default RW meddendistrib disable MAC Address PhyAddress 12 hex digits R macaddr 2of3 Avaya Wireless AP 4 5 6 User
40. This feature enables you to prevent wireless subscribers within a BSS from exchanging traffic Avaya Wireless AP 4 5 6 User s Guide 4 115 Bridge CC mi Although this feature is generally enabled in public access environments Enterprise LAN administrators use it to conserve wireless bandwidth by limiting communication between wireless clients For example this feature prevents peer to peer file sharing or gaming over the wireless network e To block Intra BSS traffic set Intra BSS Traffic Operation to Block e To allow Intra BSS traffic set Intra BSS Traffic Operation to Passthru Packet Forwarding The Packet Forwarding feature enables you to redirect traffic generated by wireless clients that are all associated to the same AP to a single MAC address This filters wireless traffic without burdening the AP and provides additional security by limiting potential destinations or by routing the traffic directly to a firewall You can redirect to a specific port Ethernet or WDS or allow the bridge s learning process and the forwarding table entry for the selected MAC address to determine the optimal port gt NOTE The gateway to which traffic will be redirected should be node on the Ethernet network It should not be a wireless client 4 116 Avaya Wireless AP 4 5 6 User s Guide Esl Bridge Configuring Interfaces for Packet Forwarding Configure your AP to forward packets by specifying interface port s to which
41. a new session is begun gt NOTE This feature requires RADIUS authentication using MAC Access Control or 802 1x Wireless clients configured in the Access Point s static MAC Access Control list are not tracked 4 164 Avaya Wireless AP 4 5 6 User s Guide el cela Configuring RADIUS Accounting Follow these steps to enable RADIUS accounting on the AP gt NOTE For RADIUS accounting to work you must first enable RADIUS authentication as follows 1 Inthe RADIUS Auth screen place a check mark in the box labeled Enable RADIUS MAC Access Control 2 Place a check mark in the box labeled Enable Primary RADIUS Authentication Server 3 If you want to configure a back up RADIUS server place a check mark in the box labeled Enable Back up RADIUS Authentication Server 4 Enter the time in seconds each client session may be active before being automatically re authenticated in the Authorization Lifetime field The Authorization Lifetime default is 0 reauthentication is disabled The configurable range is from 900 seconds to 43200 seconds 5 Selecta MAC Address Format Type This should correspond to the format in which the clients 12 digit MAC addresses are listed within the RADIUS server Available options include Dash delimited dash between each pair of digits XX yy ZZ aa bb cc Colon delimited colon between each pair of digits Xx yy Zz aa bb cc Avaya Wireless AP 4 5 6 User s Guide 4 165 RAD
42. and manage the AP using Telnet Follow these steps 1 Confirm that your computer s IP address is in the same IP subnet as the AP A 22 Avaya Wireless AP 4 5 6 User s Guide a Accessing the AP CLI gt NOTE If you have not previously configured the Access Point s IP address and do not have a DHCP server on the network the Access Point will default to an IP address of 169 254 128 132 2 Go to the DOS command prompt on your computer 3 Type telnet lt IP Address of the unit gt 4 Enter the CLI password default is public gt NOTE Avaya recommends changing all default passwords immediately See the following sections for information on how to change the default passwords CLI password see passwd SNMP passwords read read write and SNMPv3 authentication and privacy see SNMP Commands HTTP password see HTTP and HTTPS Commands Avaya Wireless AP 4 5 6 User s Guide A 23 CLI Commands CLI Commands A 24 done Terminates the CLI session download Uses TFTP server to download image configuration or bootloader upgrade files to Access Point exit Terminates the CLI session help Displays general CLI help information or command help information such as command usage and syntax history Remembers commands to help avoid re entering complex statements passwd Sets the Access Point s CLI password quit Terminates the CLI session reboot Reboots the Access Point in the specifie
43. by pinging the switch to ensure VLAN properties and by pinging hosts past the switch to confirm the switch is functional Ultimately traffic can be sniffed on the Ethernet or WDS interfaces if configured using third party packages Most problems can be avoided by ensuring that 802 1Q compliant VLAN tags containing the proper VLAN ID have been inserted in the bridged frames The VLAN ID in the header should correspond to the user s assigned network name What if network traffic is being directed to a nonexistent host e All sessions are disconnected traffic is lost and a manual override is necessary e Workaround you can configure the switch to mimic the nonexistent host I have just configured the Management ID and now I can t manage the AP e Check to ensure your password is correct If your password is incorrect or all inbound packets do NOT have the correct tag then a manual override is necessary A CAUTION The manual override process disconnects all users and resets all values to factory defaults 7 12 Avaya Wireless AP 4 5 6 User s Guide Symptoms and Solutions Power over Ethernet PoE The AP Does Not Work 1 Verify that you are using a standard UTP Category 5 cable 2 Try a different port on the same PoE hub remember to move the input port accordingly if it works there is probably a faulty port or bad RJ 45 port connection 3 If possible try to connect the AP to a different PoE hub
44. can be omitted is the comment argument gt NOTE Up to 10 entries can be added to the SNMP Trap Host Table disable delete Name Type Values Access CLI Parameter SNMP Trap Host Table N A R snmptraphosttbl Table Table Index Integer User Defined N A index IP Address IpAddress User Defined RW ipaddr Password DisplayString User Defined up to WwW passwd 64 characters Comment DisplayString User Defined upto RW cmt optional 254 characters Status optional Integer enable default RW status A 86 Avaya Wireless AP 4 5 6 User s Guide as SNMP Commands Syntax Examples Change SNMP Passwords Device Name password Device Name Device Name Device Name gt set snmprpasswd lt New Password SNMP read gt set snmprwpasswd lt New Password gt SNMP read write gt set snmpv3authpasswd lt New Password gt SNMPv3 authentication password gt set snmpv3privpasswd lt New Password gt SNMPv3 privacy password Configure Management Interfaces Device Name gt set snmpifbitmask lt see Table A 3 gt Choose from the following values Table A 3 Interface Bitmask Values Interface Bitmask Description 0 or 2 disable all interfaces All management channels disabled 1 or 3 Ethernet only Ethernet only enabled 4 or 6 Wireless only Wireless only enabled 5 or 7 all interfaces All management chan
45. gt NOTE The inventory management commands display advanced information about the AP s installed components You may be asked to report this information to a representative if you contact customer support IP Access Table Commands IP Access Table Parameters When creating table entries you may either specify the argument name followed by argument value or simply entering the argument value When only the argument value is specified then enter the values in the order depicted by the following table CLI applies default values to the omitted A 62 Avaya Wireless AP 4 5 6 User s Guide CT nd IP Access Table Commands arguments Due to the nature of the information the only argument that can be omitted is the comment argument Name Type Values Access CLI Parameter IP Access Table Table N A R mgmtipaccesstbl Table Index Integer User Defined N A index IP Address IpAddress User Defined RW ipaddr IP Mask IpAddress User Defined RW ipmask Comment DisplayString User Defined RW cmt optional Status optional Integer enable default RW status disable delete Syntax Examples Edit Management IP Access Table Device Name gt set mgmtipaccesstbl index ipaddr lt IP address gt ipmask lt subnet mask gt Avaya Wireless AP 4 5 6 User s Guide A 63 IP Commands caai IP Commands IP Configuration Parameters Name Type Values Access CLI Para
46. pkts The number of packets received at the 5 5 Mbits sec transmit rate since the start of the Link Test 2 Mbps pkts The number of packets received at the 2 Mbits sec transmit rate since the start of the Link Test 1 Mbps pkts The number of packets received at the 1 Mbits sec transmit rate since the start of the Link Test gt NOTE Click the Refresh button periodically to update the test results The test screen does not refresh automatically 5 18 Avaya Wireless AP 4 5 6 User s Guide mare Link Test Figure 5 11 SNR Report Screen Link Test This tab displays the remote link test results statistics for the initiator station this access point and the remote station wireless client or another access point associated via WDS Quality is measured in terms of Signal strength Noise strength and the Signal to Noise Ration SHR In addition the number of packets received at different rates is displayed Initiator Station Info Remote Station Info Station Name Device Name winxp MAC Address 00 60 1D 34 97 B8 00 02 20 51 94 E4 SNR dB Signal dBm Noise dBm 11 Mbps Pkts 5 5 Mbps Pkts 2 Mbps Pkts 1 Mbps Pkts 5 Click Close to end the Link Test Avaya Wireless AP 4 5 6 User s Guide 5 19 Station Statistics e Station Statistics This tab displays information on wireless clients attached to the AP and on Wireless Distribution System links Enabling and Viewing Stat
47. show set search Example 3 Displaying parameters for set and show commands Example 3a allows you to see every possible parameter for the set or show commands Notice from example 3a that the list is very long Example 3b shows how to display a subset of the parameters based on initial parameter letters A 16 Avaya Wireless AP 4 5 6 User s Guide CC CLI Help Example 3a Displaying every parameter that can be changed Device Name set Figure A 5 Result of set CLI command Device Namel set Command Description The set command modifies the value of a given scalar parameter or table entry Command Usage set lt parameter lt parameter value lt CR gt set lt table gt lt index gt lt argi gt lt valuei gt lt argN gt lt valueN gt lt CR gt Example set sysname My Wireless Device lt CR gt set mgmtipaccesstbhl ipaddr 14 6 6 16 ipmask 255 255 6 8 cmt Test WorkStation lt CR gt Device Name gt set hroadcastf ltthl dhcpgw dhcpippooltbl dhcppridns ipaddr dhcpsecdns ipaddr dhcpstatus dnsdomainname dnsprisvripaddr dnssecsvuripaddr dnsstatus etherf 1tifbitmask telsessiontout tftpfilename tftpfiletype tf tpipaddr ulanidtbl vlanmgmtid vlanstatus wdstbl wif wifsec Device Name 1 gt set Avaya Wireless AP 4 5 6 User s Guide A 17 CLI Help paan Example 3b Displaying parameters based on letter sequence This example shows entries fo
48. 0 Destination Port Shared Secret Confirm Shared Secret Response Time seconds Maximum Retransmissions 0 4 fu 4 a E http 10 0 0 1 fcFafrad radiusacc html eg internet Z Avaya Wireless AP 4 5 6 User s Guide 4 169 RADIUS CA 4 170 Avaya Wireless AP 4 5 6 User s Guide AVAYA Monitor Information 5 In This Chapter Logging into the HTTP Interface Version Provides version information for the Access Point s system components ICMP Displays statistics for Internet Control Message Protocol packets sent and received by the AP IP ARP Table Displays the AP s IP Address Resolution table Learn Table Displays the list of nodes that the AP has learned are on the network IAPP Provides statistics for the Inter Access Point Protocol messages sent and received by the AP RADIUS Provides statistics for the configured primary and backup RADIUS server s Interfaces Displays the Access Point s interface statistics Wireless and Ethernet Link Test Evaluates the link with a wireless client Station Statistics Displays statistics for stations and Wireless Distribution System links Avaya Wireless AP 4 5 6 User s Guide 5 1 Logging into the HTTP Interface i Logging into the HTTP Interface Once the AP has a valid IP Address and an Ethernet connection you may use your web browser to monitor network statistics The Command Line Interface CLI also provides a
49. 2 1 ProroguistoS 5 neced a Gene eSeceaGERS CSGGS DAGREORESSS EERE 2 1 Product PIKAS 65 king PP PA ESS 2 5 MDPC Upgrade ANS a na ka AKA once heed BAAL eraka i 2 6 System Requirements a a a NBA BKA BARA BARAKONG sea KG 2 6 Hardware WetlSUON asana si KARA ERA Pak KLANG UAGHLREERESA 2 7 IMILIGIIZINON asa eee ad eek Gab KG HR e OSA EERE TEER i EES 2 17 DEON op hah Uda LED e EAE AA 2 18 SETUP WIZAIG lt lt 2sc8as Cee ed dered BARRAGE DAGA ERA 2 26 Download the Latest Software 0 0 cee ene 2 45 Setup your TFTP Server 4 4a aaa ABAKA RA NAGA noawae 2 45 Avaya Wireless AP 4 5 6 User s Guide 1 Download Updates from a TFTP Server using the Web Interface 2 46 Download Updates from a TFTP Server using the CLI Interface 2 47 Additional Hardware Features 0 06 500 e cane eens 2 47 Mounting LI PUONS 6 625 pe BAKA PBA PG eadiosed hha AGA 2 48 Installing the AP in a Plenum aaa 2 54 Kensington Security Slot 0 0000s cece eee eee 2 54 Power over ENOM base adage PAANAN DRA PARK ARENA ee eee 2 56 LED INET 6 4 5 2645 d4225 5S54 OS ROT HAAN PLAN KK BA 2 57 Related TOPICS ga KARERA KALAKARAN KAR Gass RTRA REA RRN 2 61 3 Status Information 000 eee eee 3 1 Ii TIIS Chapter 5 2 ok ooh base eos Heda So ted SEEMS O REESE RRS OM 3 1 Logging into the HTTP Interface c6accccueeiaaedaaweead BEA 3 1 DEI SIMS NAGA 4 4 4 SRS SONGS 4 SSN SS SRER ISAS SS TR 3 3 4 Advanced Configuration
50. 20 21 Within the RADIUS Accounting Configuration screen place a check mark in the Enable RADIUS Accounting box to turn on this feature Place a check mark in the box labeled Enable Primary RADIUS Accounting Server If you want to configure a back up RADIUS server place a check mark in the box labeled Enable Back up RADIUS Accounting Server Enter the session timeout interval in minutes within the Accounting Inactivity Timer field An accounting session automatically ends for a client that is idle for the period of time specified Range is 1 60 minutes default is 5 minutes Select a Server Addressing Format type IP Address or Name If you want to identify RADIUS servers by name you must configure the Access Point as a DNS Client See DNS Client for details Enter the server s IP address or name in the field provided Enter the port number which the AP and the server will use to communicate By default RADIUS accounting uses port 1813 Enter the Shared Secret in the Shared Secret and Confirm Shared Secret field This is a password shared by the RADIUS server and the AP The same password must also be configured on the RADIUS server Avaya Wireless AP 4 5 6 User s Guide 4 167 RADIUS 22 Enter the maximum time in seconds that the AP should wait for the RADIUS server to respond to a request in the Response Time field Range is 1 10 seconds default is 3 seconds 23 Enter the maximum number of times
51. 30 A 30 Avaya Wireless AP 4 5 6 User s Guide ass CLI Commands search Lists the parameters supported by the specified table This list corresponds to the table information displayed in the HTTP interface In the following example the CLI returns the list of parameters that make up an entry in the IP Access Table Example Device Name gt search mgmtipaccesstbl Figure A 10 Results of search mgmtipaccesstbl CLI command Device Name gt search mgmtipaccesstbl The supported elements are index ipaddr ipmask emt status Avaya Wireless AP 4 5 6 User s Guide A 31 CLI Commands E set Configures the value of the specified parameter To see a definition and syntax example type only set and then press the Enter key To see a list of available parameters enter a space then a question mark after set example set As shown in the following examples parameters may be set individually or all parameters for a given table can be set with a single statement Syntax Device Name gt set lt parameter gt lt value gt Device Name gt set lt table gt lt index gt lt argument 1 gt lt value 1 gt lt argument N gt lt value N gt Configuring Objects that Require Reboot Certain objects supported by the Access Point require a device reboot for the changes to take effect To inform you of this behavior the CLI provides informational messages when you have configured an
52. 4 96 ii PA 4 97 Alam Host Tables Xa ca0sseadre adie Seis IRAN KEBUWKPRNG 4 108 a AA 4 109 cy AA AA PAA APA PAA PAA PAPA PAA 4 113 Mi s 4 114 BA 4g eka 4s 6 PA SEALS SPARES EADS BON TG SERS 4 114 IMA SA AA AA 4 115 Packet Forwarding 225 a ma man KANG KA DALE RA DE RNB ANG 4 116 DUCE PA 4 118 Authentication and Encryption Modes 4 118 Authentication Protocol Hierarchy aaa 4 130 SSID VLAN and Security Modes aa 4 130 ULANG IN 2c NG KG KARGA CARER RACE HEEL ERASE Ey 4 131 VLAN Workgroups and Traffic Management 4 135 Typical User VLAN Configurations aa 4 136 Configure Multiple SSID VLAN Security Mode Entries 4 137 Typical VLAN Management Configurations 4 146 MACACO 6 6554 0 Tuna PRIS BANGAG SORES RL AG 4 147 Avaya Wireless AP 4 5 6 User s Guide 3 Rogue Access Point Detection RAD 4 149 PADIS AGA BB ea NGANGA a terre eee are ae eee ery eae er 4 155 MAC Access Control by Means of RADIUS Authentication 4 156 RADIUS Authentication with 802 1x 4 4 161 RADIUS ACCUM occ naedeehed es caeeuaesearedugaees 4 164 5 Monitor Information 020000 eee eee 5 1 ATMS ONGPIET cccisoseardeaas denaseeeeere eed baeee boos 5 1 Logging into the HTTP Interface ccccceacce ca daedaede eda BANA 5 2 MPS 6c 50 Sa oA Oh eG OREN ARDS Sa CANS A POE ROSES OH 5 6 cake peak ee ooh eee AA 5 8 PARP Tablo ei os8 chao
53. AP 1 is not directly connected to the Ethernet network Packets destined for or sent by the client are relayed between the Access Points over the WDS link Avaya Wireless AP 4 5 6 User s Guide 4 59 Interfaces _ 6666c Figure 4 8 WDS Example Client 1 Client 2 4 60 Avaya Wireless AP 4 5 6 User s Guide ka Interfaces Bridging WDS Each WDS link is mapped to a logical WDS port on the AP WDS ports behave like Ethernet ports rather than like standard wireless interfaces on a BSS port an Access Point learns by association and from frames on a WDS or Ethernet port an Access Point learns from frames only When setting up a WDS keep in mind the following The WDS link shares the communication bandwidth with the clients Therefore while the maximum data rate for the Access Point s cell is still 11 Mb client throughput will decrease when the WDS link is active If there is no partner MAC address configured in the WDS table the WDS port remains disabled Each WDS port on a single AP should have a unique partner MAC address Do not enter the same MAC address twice in an AP s WDS port list Each Access Point that is a member of the WDS must have the same Channel setting to communicate with each other Each Access Point that is a member of the WDS must have the same network domain Each Access Point that is a member of the WDS must have the same WEP Encryption settings WDS does not use 802 1x Therefo
54. AP 4 5 6 User s Guide 2 61 Related Topics C 2 62 Avaya Wireless AP 4 5 6 User s Guide AVAY Status Information 3 In This Chapter e Logging into the HTTP Interface e System Status Logging into the HTTP Interface Once the AP has a valid IP Address and an Ethernet connection you may use your web browser to monitor the system status Follow these steps to monitor an AP s operating statistics using the HTTP interface 1 Open a Web browser on a network computer gt NOTE The HTTP interface supports the following Web browser Microsoft Internet Explorer 6 with Service Pack 1 or later Netscape 6 1 or later 2 If necessary disable the Internet proxy settings For Internet Explorer users follow these steps Avaya Wireless AP 4 5 6 User s Guide 3 1 Logging into the HTTP Interface De a Select Tools gt Internet Options Click the Connections tab Click LAN Settings If necessary remove the check mark from the Use a proxy server box Click OK twice to save your changes and return to Internet Explorer 3 Enter the Access Point s IP address in the browser s Address field and press Enter Result The Enter Network Password screen appears 4 Enter the HTTP password in the Password field and click OK Leave the User Name field blank By default the HTTP password is public Result The System Status screen appears 3 2 Avaya Wireless AP 4 5 6 U
55. Access Points are provided in the scan results The RAD scan is done on a channel list initialized based on the regulatory domain of the device The RAD Scan then performs background scanning on all the channels in this channel list using 802 11 MAC scanning functions It will either actively scan the network by sending probe requests or passively scan by only listening for beacons The access point information is then gathered from the probe responses and beacons To minimize traffic disruption and maximize the scanning efficiency the RAD feature employs an enhanced background scanning algorithm and uses the CTS to Self mechanism to keep the clients silent The scanning algorithm allows traffic to be serviced between each channel scan Before start of every scan except scan on the working channel the CTS to self mechanism is used to set the NAV values of clients to keep them silent during the scanning period In addition the scan repetition duration can also be configured to reduce the frequency of RAD scan cycles to maximize Access Point performance 4 150 Avaya Wireless AP 4 5 6 User s Guide Ba Yr Configure Multiple SSID VLAN Security Mode Entries RAD Configuration Requirements The RAD feature can be configured monitored via the HTTP CLI or SNMP management interfaces The following management options are provided e The RAD feature can be enabled or disabled e The repetition interval of RAD can be configured e SNMP Tr
56. Defined RW endipaddr Width Integer User Defined RW width Default Lease Time Integer32 3600 RW defleasetm optional 86400 sec default Maximum Lease Integer32 3600 RW maxleasetm Time optional 86400 sec default Comment optional DisplayString User Defined RW cmt Status optional Integer enable 1 RW status disable 2 delete 3 A 44 Avaya Wireless AP 4 5 6 User s Guide DHCP Server Commands gt NOTE Set either End IP Address or Width but not both when creating an IP address pool Syntax Examples Device Device address gt Device Device Device Device Device ame ame gt set dhcpstatus disable gt set dhcpippooltbl 0 startipaddr lt start ip endipaddr xend ip address ame ame ame ame ame gt set dhcpgw lt gateway ip address gt gt set dhcppridnsipaddr lt primary dns ip address gt gt set dhcpsecdnsipaddr lt secondary dns ip address gt gt set dhcpstatus enable gt reboot 0 Avaya Wireless AP 4 5 6 User s Guide A 45 DNS Client Commands DNS Client Commands DNS Client for RADIUS Name Resolution Name 254 characters Name Type Values Access CLI Parameter DNS Client Group N A R dns DNS Client status Integer enable RW dnsstatus disable default Primary DNS IpAddress User Defined RW dnspridnsipaddr Server IP Address Secondary DNS IpAddress Use
57. EAP 802 1x based authentication feature at least one 802 1x server must be configured Note Changes to these parameters require access point reboot in order to take effect Enable Primary EAP 802 1x Authentication Server v Enable Backup EAP 802 1x Authentication Server v EAP 802 1x Authentication Server Primary Backup Server Addressing Format IP Address j iP Address z Server NamellP Address 0 0 0 0 0 0 0 0 Destination Port 1812 1812 Shared Secret ennnaane Confirm Shared Secret JRRRRRERR Response Time seconds l3 Maximum Retransmissions 0 4 J Avaya Wireless AP 4 5 6 User s Guide 4 163 RADIUS _ T RADIUS Accounting Using an external RADIUS server the AP can track and record the length of client sessions on the access point by sending RADIUS accounting messages per RFC2866 When a wireless client is successfully authenticated RADIUS accounting is initiated by sending an Accounting Start request to the RADIUS server When the wireless client session ends an Accounting Stop request is sent to the RADIUS server Session Length Accounting sessions continue when a client reauthenticates to the same AP Sessions are terminated when e A client disassociates e A client does not transmit any data to the AP for a fixed amount of time e A client is detected on a different interface If the client roams from one AP to another one session is terminated and
58. Each Access Point requires a password to allow get and set requests from an SNMP manager The default password is public This password must be at least 6 characters in length Security Settings You need to determine what security features you will enable on the Access Point Authentication Method A primary authentication server may be configured a backup authentication server is optional The network administrator typically provides this information 2 of 3 Avaya Wireless AP 4 5 6 User s Guide 2 3 Prerequisites Information Description Authentication Server Shared Secret This is a password shared between the Access Point and the RADIUS authentication server so both passwords must be the same and is typically provided by the network administrator Authentication Server Authentication Port This is a port number default is 1812 and is typically provided by the network administrator Client IP Address Pool Allocation Scheme The Access Point can automatically provide IP addresses to clients as they sign on The network administrator typically provides the IP Pool range DNS Server IP Address The network administrator typically provides this IP Address 3 of 3 2 4 Avaya Wireless AP 4 5 6 User s Guide Sasa Product Package Product Package Each Single radio AP comes with the following e One metal base for
59. Figure 2 10 Setup Wizard Step 1 Introduction Step 2 System Configuration Configuration Step 4 Password Configuration Step 5 Wireless Interfaces Configuration Step 6 Summary Welcome to the Access Point Setup Wizard The setup wizard provides a set of pages for configuring basic access point parameters which are listed below System is used to configure device information such as system name and contact information IP Configuration is used to configure the internet TCP IP setting for the access point Password is used to configure the SNMP Telnet CLI and HTTP web default passwords Wireless Interfaces is used to configure the characteristics of the wireless medium Click the Setup Wizard button and the wizard will lead you through a step by step guide to configuring your access point For more advanced configuration options click the exit button below and visit the Configuration section of the web interface Once you have completed the setup wizard you must reboot the access point in order for the changes to take effect Setup Wizard 5 Click Setup Wizard to begin If you want to configure the AP without using the Setup Wizard click Exit and see Advanced Configuration The Setup Wizard supports the following navigation options Save amp Next Button Each Setup Wizard screen has a Save amp Next button Click this button to submit any changes you made to the unit s parameters and conti
60. Guide Ol Interfaces Parameter Description Regulatory Reports the regulatory domain for which the Domain AP is certified Not all features or channels are available in all countries The available regulatory domains include e FCC U S Canada Mexico and Australia e ETSI Europe and the United Kingdom e MKK Japan e SG Singapore e ASIA China and South Korea e TW Taiwan and Hong Kong Network Name SSID Enter a Network Name between 2 and 31 characters long for the wireless network You must configure each wireless client to use this name as well 2of5 Avaya Wireless AP 4 5 6 User s Guide 4 25 Interfaces eee Parameter Description Auto Channel The AP scans the area for other Select Access Points and selects a free or relatively unused communication channel This helps prevent interference problems and increases network performance By default this feature is enabled See 802 11a Channel Frequencies for a list of Channels gt NOTE You cannot disable Auto Channel Select for 802 11a products in Europe see Dynamic Frequency Selection DFS for details Frequency When Auto Channel Select is enabled this Channel field is read only and displays the Access Point s current operating Channel When Auto Channel Select is disabled you can specify the Access Point s channel If you decide to manually set the unit s Channel ensure that nearby devi
61. Guide ns Management Serial Configuration Settings The serial port interface on the AP is enabled at all times See Setting IP Address using Serial Port for information on how to access the CLI interface via the serial port You can configure and view following parameters Setting Description Baud Rate Select the serial port speed bits per second Choose between 2400 4800 9600 19200 38400 or 57600 the default Baud Rate is 9600 Flow Control Select either None default or Xon Xoff software controlled data flow control gt NOTE To avoid potential problems when communicating with the AP through the serial port Avaya recommends that you leave the Flow Control setting at None the default value Serial Data Bits This is a read only field and displays the number of data bits used in serial communication 8 data bits by default 1of2 Avaya Wireless AP 4 5 6 User s Guide 4 75 Management Kai Setting Description Serial Parity This is a read only field and displays the number of parity bits used in serial communication no parity bits by default Serial Stop Bits This is a read only field that displays the number of stop bits used in serial communication 1 stop bit by default gt NOTE The serial port bit configuration is commonly referred to as 8N1 2of2 Automatic Configuration The Automatic Configuration feature which
62. Help Folder to the new location and then specify the new path in the Help Link box 6 22 Avaya Wireless AP 4 5 6 User s Guide po Help Link Figure 6 15 Help Link Configuration Screen Retrieve File Reboot Help Link This tab is used to configure the location of access point help information Please enter a location where your browser can find the Help Information For example e A Path to a Local Directory i e file C Program Files help accesspointindex htm e amp Path to a Mapped Drive i e file G shared help accesspoint index htm or An HTTP URL Address i e http www accesspoint comhelp index htm Note Due to security changes in nternet Explorer a fink to a local or mapped drive may not work uniess the IP address of the Access Point is added to the Trusted Sites of internet Explorer Security tab under Internet Options There is no known method for enabling links to local or mapped drives with Netscape The user may install the help files on an internal or external web site and point the fink to it Help Link CAProgram Files ORINOCOWP Help index htm Avaya Wireless AP 4 5 6 User s Guide 6 23 Help Link C 6 24 Avaya Wireless AP 4 5 6 User s Guide AVAYA Troubleshooting 7 In This Chapter e Troubleshooting Concepts e Symptoms and Solutions e Recovery Procedures e Related Applications gt NOTE This section helps you locate problems related to the AP device setup For det
63. HyperTerminal select File gt Properties gt Settings gt ASCII Setup gt Send Line Ends with Line Feeds Ethernet Link Does Not Work 1 Double check the physical network connections Use a known good unit to make sure the network connection is present Once you have the AP IP address you can use the Ping command over Ethernet to test the IP Address If the AP responds to the Ping then the Ethernet Interface is working properly 2 By default the Access Point will attempt to automatically detect the Ethernet settings However if you are having problems with the Ethernet link manually configure the Access Point s Ethernet settings For example if your switch operates at 100 Mbits sec Full Duplex manually configure the Access Point to use these settings see Ethernet If you cannot access the unit over Ethernet then use the CLI interface over the serial port to configure the Ethernet port see The Command Line Interface and Syntax Examples 3 Perform network infrastructure troubleshooting check switches routers etc 7 4 Avaya Wireless AP 4 5 6 User s Guide eE Symptoms and Solutions Basic Software Setup and Configuration Problems Lost AP Telnet or SNMP Password 1 Perform the Reset to Factory Default Procedure in this guide This procedure resets system and network parameters but does not affect the AP Image The default AP HTTP password is public and the default Teln
64. Password Wi lx mo Please type your user name and password Site 192 168 0 3 Realm Access Product User Name Password J Save this password in your password list Cancel 5 Click the Monitor button located on the left hand side of the screen 5 4 Avaya Wireless AP 4 5 6 User s Guide EP Logging into the HTTP Interface Figure 5 2 Monitor Main Screen Status Configure Monitor Commands Help Exit IAPP RADIUS Interfaces Link Test versin CMP AL PARPTabe LeamTabe N Monitor There are eight main categories that provide monitoring and diagnostics information on the access point Version provides information on the version of the access point and its system components ICMP displays statistics on Internet Control Message Protocol messages received and transmitted by the access point IP ARP Table provides information on the IP Address Resolution table Bridge Learn Table displays entries that have been learned by the access point bridge IAPP provides statistics on the Inter Access Point Protocol messages received and transmitted by the access point RADIUS provides statistics on the primary and backup RADIUS server s configured to communicate with the access point Interfaces displays access point interface statistics Ethernet and Wireless Remote Link Test is used to evaluate wireless client links The remote link test is a feature that helps monitor the radio qualit
65. Threshold is an advanced Bridge setup option that you can use to protect the network against data overload by e Specifying a maximum number of frames per second as received from a single network device identified by its MAC address e Specifying an absolute maximum number of messages per port 4 114 Avaya Wireless AP 4 5 6 User s Guide es Bridge The Storm Threshold parameters allow you to specify a set of thresholds for each port of the AP identifying separate values for the number of broadcast messages second and Multicast messages second When the number of frames for a port or identified station exceeds the maximum value per second the AP will ignore all subsequent messages issued by the particular network device or ignore all messages of that type e Address Threshold Enter the maximum allowed number of packets per second Ethernet Threshold Enter the maximum allowed number of packets per second e Wireless Threshold Enter the maximum allowed number of packets per second Intra BSS The wireless clients or subscribers that associate with a certain AP form the Basic Service Set BSS of a network infrastructure By default wireless subscribers in the same BSS can communicate with each other However some administrators such as wireless public spaces may wish to block traffic between wireless subscribers that are associated with the same AP to prevent unauthorized communication and to conserve bandwidth
66. Time Integer dd hh mm ss R sysuptime dd days hh hours mm minutes ss seconds Emergency Resets all RW sysresettodefaults Restore to parameters to N te You m st defaults default factory enter the following command twice to resetto defaults set sysresettodefaults 1 2 of 2 Syntax Examples Device Name Device Name Device Name Device Name A 96 for system gt gt set sysname lt system name gt sysloc lt Unit Location gt gt set sysctname lt Contact Name person responsible gt set sysctphone lt Contact Phone Number gt sysctemail lt Contact E mail address gt gt show system Avaya Wireless AP 4 5 6 User s Guide ez Telnet Commands Figure A 19 Result of show system CLI Command Device Name gt show system System Parameters sysname g Device Name sysloc 3 System Location sysctname s Contact Name sysctemail s name 0rganization com sysctphone Contact Phone Number sysuptime CDD HH MM SS 6 11 6 46 sysoid 1 3 6 1 4 1 11898 2 4 6 sysdescr AP v2 1 6 SN 2UT16570004 v2 6 16 sysservices s 2 sysf lashupdate 5 B6 sysflashbckint H 120 sysresettodefaults 6 Device Name l gt _ Telnet Commands Telnet Parameters Name Type Values Access CLI Parameter Telnet Group N A R telnet Telnet Interface 0 or2 no RW telifbitmask Management Bitmask interfaces disable Interface Bitmask 1 or 3 Etherne
67. Unicast Frames Received The number of Unicast frames received from the associated wireless station or WDS link partner by the AP Non Unicast Frames Received The number of Non Unicast frames received i e broadcast or multicast from the associated wireless station or WDS link partner by the AP Octets Transmitted The number of octets sent to the associated wireless station or WDS link partner from the AP e Unicast Frames Transmitted The number of Unicast frames transmitted to the associated wireless station or WDS link partner from the AP Avaya Wireless AP 4 5 6 User s Guide 5 23 Station Statistics a i 5 24 Avaya Wireless AP 4 5 6 User s Guide AVAY Commands 6 In This Chapter Logging into the HTTP Interface Introduction to File Transfer via TFTP or HTTP Describes the available file transfer methods Update AP by Using TFTP Download files from a TFTP server to the AP Update AP by Using HTTP Download files to the AP from HTTP Upload File by Using TFTP Upload configuration files from the AP to a TFTP server Upload File by Using HTTP Upload configuration files from the AP by using HTTP Reboot Reboot the AP in the specified number of seconds Reset Reset all of the Access Point s configuration settings to factory defaults Help Link Configure the location where the AP Help files can be found Avaya Wireless AP 4 5 6 User s Guide 6 1 Logging into the HTTP Interface gee wew
68. Update Error Invalid Image File Upload File by Using TFTP Use the Retrieve File via TFTP tab to upload Configuration files from the AP to a TFTP server The TFTP server must be running and configured to point to the directory to which you want to copy the uploaded file We suggest you assign the file a meaningful name which may include version or location information If you do not have a TFTP server installed on your system install the TFTP server from the Avaya Wireless CD You can either install the TFTP server from the CD Wizard or run OEM TFTP Server exe found in the CD s Xtras SolarWinds sub directory 6 14 Avaya Wireless AP 4 5 6 User s Guide a Upload File by Using TFTP 1 Once on the Retrieve File screen click on the via TFTP tab The Retrieve AP via TFTP tab shows version information and allows you to enter TFTP information as described below Figure 6 8 Retrieve File via TFTP Command Screen Update AP Retrieve File Reboot Lo elpLink NW Status are MA wamre A Configure This page is used to retrieve the access point configuration file using TFTP Monitor System Information Commands Help TFTP Information Server IP Address 10 15 28 Exit F File Name BLD6_7AUGO3_AP2000 Retrieve Config File g 2 In the Server IP Address field enter the TFTP server IP Address To locate the IP address assigned to the TFTP server double click the TFTP server icon on your desktop 3 In th
69. Verify that you have entered the proper AP Image file name including the file extension and directory path 5 If you have a problem uploading a file verify that the TFTP server is configured to allow uploads typically the default setting is to allow only downloads Client Connection Problems Client Software Finds No Connection Make sure you have configured your client software with the proper Network Name and Security settings Network Names and WEP Keys are typically allocated and maintained by your network administrator Avaya Wireless AP 4 5 6 User s Guide 7 9 Symptoms and Solutions ae jj Client PC Card Does Not Work 1 Make sure you are using the latest PC Card driver software 2 Download and install the latest Avaya Wireless client software from http www avaya com support Intermittent Loss of Connection 1 Make sure you are within range of an active AP 2 You can check the signal strength using the signal strength gauge on your client software If you have an 802 11b AP you can also use the Remote Link Test available in the Access Point s HTTP interface See Link Test Client Does Not Receive an IP Address Cannot Connect to Internet 1 If the AP is configured as a DHCP server open the Web browser Interface and select the Configure button and then the Network tab to make sure the proper DHCP settings are being used 2 If you are not using the DHCP server feature on the AP then make sure that your
70. Wireless AP 4 5 6 User s Guide Say Recovery Procedures Forced Reload Procedure Use this procedure to erase the current AP Image and download a new AP Image In some cases specifically when a missing or corrupted AP Image prevents successful booting you may need to use ScanTool or the Bootloader CLI to download a new executable AP Image gt NOTE This does not delete the AP s configuration in other words the Forced Reload Procedure does not reset to device to factory defaults If you need to force the AP to the factory default state after loading a new AP image use the Reset to Factory Default Procedure above For this procedure you will first erase the AP Image currently installed on the unit and then use either ScanTool or the Bootloader CLI over the serial port to set the IP address and download a new AP Image Follow these steps 1 While the unit is running press the RESET button gt NOTE See RELOAD and RESET Buttons to identify the buttons You need to use a pin or the end of a paperclip to press a button Result The AP reboots and the indicators begin to flash Avaya Wireless AP 4 5 6 User s Guide 7 17 Recovery Procedures CC A caution By completing Step 2 the firmware in the AP will be erased You will need an Ethernet connection a TFTP server and a serial cable if using the Bootloader CLI to reload firmware 2 Press and hold the RELOAD button for about 20 seconds until the POWER L
71. Wireless AP 4 5 6 User s Guide haz System Status Each section of the System Status screen provides the following information System Status This area provides system level information including the unit s IP address and contact information See System for information on these settings System Alarms System traps if any appear in this area Each trap identifies a specific severity level Critical Major Minor and Informational See Alarms for a list of possible alarms Avaya Wireless AP 4 5 6 User s Guide 3 5 System Status CN 3 6 Avaya Wireless AP 4 5 6 User s Guide AVAYA Ga lian 4 In This Chapter Configuring the AP Using the HTTP HTTPS Interface System Configure specific system information such as system name and contact information Network Configure IP settings DNS client DHCP server and Link Integrity Interfaces Configure the Access Point s interfaces Wireless and Ethernet Also describes configuring a Wireless Distribution System WDS Management Configure the Access Point s management Passwords IP Access Table and Services such as configuring secure or restricted access to the AP via SNMPv3 HTTPS CLI or Automatic Configuration Filtering Configure Ethernet Protocol filters Static MAC Address filters Advanced filters and Port filters Alarms Configure the Alarm SNMP Trap Groups the Alarm Host Table and the Syslog features Bridge Configure the Spanning Tree Pro
72. allows an AP to be automatically configured by downloading a specific configuration file from a TFTP server during the boot up process Automatic Configuration is disabled by default The configuration process for Automatic Configuration varies depending on whether the AP is configured for dynamic or static IP When an AP is configured for dynamic IP the Configuration filename and the TFTP server IP address are contained in the DHCP response when the AP gets its IP address dynamically from the DHCP server When 4 76 Avaya Wireless AP 4 5 6 User s Guide ees Management configured for static IP these parameters are instead configured in the AP interface After setting up automatic configuration you must reboot the AP When the AP reboots it receives the new configuration information and must reboot one additional time If Syslog is configured a Syslog message will appear indicating the success or failure of the Automatic Configuration Set up Automatic Configuration for Static IP Perform the following procedure to enable and set up Automatic Configuration when you have a static IP address for the TFTP server 1 Click Configure gt Management gt AutoConfig The Automatic Configuration Screen appears 2 Check Enable Auto Configuration 3 Enter the Configuration Filename 4 Enter the IP address of the TFTP server in the TFTP Server Address field gt NOTE The default filename is config The default TFTP IP addr
73. an Access Point The term 802 11 is used to describe features that apply to the 802 11a 802 11b and 802 11g wireless standards A Single radio AP is an Access Point that supports one IEEE radio standard The AP 4 AP 5 and AP 6 are Single radio APs An 802 11a AP is an Access Point that supports the IEEE 802 11a standard An 802 11b AP is an Access Point that supports the IEEE 802 11b standard Avaya Wireless AP 4 5 6 User s Guide 1 1 Introduction to Wireless Networking CO e An 802 11b g AP is an Access Point that supports the IEEE 802 119 standard e An 802 11a g AP is an Access Point that supports the IEEE 802 11a g standards e Blue text indicates a link to a topic or Web address If you are viewing this documentation on your computer click the blue text to jump to the linked item gt NOTE A Note indicates important information that helps you make better use of your computer A CAUTION A Caution indicates either potential damage to hardware or loss of data and tells you how to avoid the problem Introduction to Wireless Networking An AP extends the capability of an existing Ethernet network to devices on a wireless network Wireless devices can e connect to a single Access Point or e move between multiple Access Points located within the same vicinity As wireless clients move from one coverage cell to another the devices maintain network connectivity 1 2 Avaya Wireless AP 4 5 6 User s Guid
74. an authentication request may be retransmitted in the Maximum Retransmissions field Range is 1 4 default is 3 24 If you are configuring a back up server repeat Steps 5 through 10 for the back up server 25 Enable RADIUS accounting and click OK to save your changes 26 Reboot the AP device for these changes to take effect 4 168 Avaya Wireless AP 4 5 6 User s Guide _ a Figure 4 25 RADIUS Accounting Server Configuration File Edit View Favorites Tools Help Heak gt A A Rech Favorites meda J D S fw SE Address http 10 0 0 1 cFa rad radiusacc html z Go Links Bi RADIUS Auth EAP 802 1x Auth RADIUS Acct The RADIUS Accounting feature generates accounting start and stop messages by the RADIUS client in the access point These messages are sent to the RADIUS servers configured using this tab Primary and backup RADIUS Accounting servers can be configured Note RADIUS Accounting services are only performed for wireless clients that Rave been authenticated via RADIUS MAC based authentication or 802 x authentication Note Changes to these parameters require access point reboot in order to take effect Enable RADIUS Accounting O Enable Primary RADIUS Accounting Server Go Enable Backup RADIUS Accounting Server i Accounting Inactivity Timer minutes 5 RADIUS Accounting Server Primary Backup Server Addressing Format IP Address zj r Address zj Server Name IP Address 0 0 0 0 0 0 0
75. and 255 RTS CTS Medium Reservation This parameter affects message flow control and should not be changed under normal circumstances Range is 0 to 2347 When set to a value between 0 and 2347 the Access Point uses the RTS CTS mechanism for packets that are the specified size or greater When set to 2347 the default setting RTS CTS is disabled See RTS CTS Medium Reservation for more information 6 of 9 4 36 Avaya Wireless AP 4 5 6 User s Guide as Interfaces Parameter Description Interference Enable this option if other electrical devices in Robustness the 2 4 GHz frequency band such as a microwave oven or a cordless phone may be interfering with the wireless signal The AP will automatically fragment large packets into multiple smaller packets when interference is detected to increase the likelihood that the messages will be received in the presence of interference The receiving radio reassembles the original packet once all fragments have been received This option is disabled by default Closed System Check this box to allow only clients configured with the Access Point s specific Network Name to associate with the Access Point When enabled a client configured with the Network Name ANY cannot connect to the AP This option is disabled by default 7 of 9 Avaya Wireless AP 4 5 6 User s Guide 4 37 Interfaces KA Parameter Descripti
76. and maintains the keys for its clients The AP securely delivers the appropriate keys to its clients Avaya Wireless AP 4 5 6 User s Guide 4 125 Security CB e Client server mutual authentication 802 1x Pre shared key for networks that do not have an 802 1x solution implemented gt NOTE For more information on WPA see the Wi Fi Alliance Web site at http www wi fi org The AP supports two WPA authentication modes e WPA The AP uses 802 1x to authenticate clients You should only use an EAP that supports mutual authentication and session key generation such as EAP TLS EAP TTLS and PEAP See 802 1x Authentication for details e WPA PSK Pre Shared Key For networks that do not have 802 1x implemented you can configure the AP to authenticate clients based on a Pre Shared Key This is a shared secret that is manually configured on the AP and each of its clients The Pre Shared Key must be 256 bits long which is 64 hexadecimal digits The AP also supports a PSK Pass Phrase option to facilitate the creation of the Pre Shared Key so a user can enter an easy to remember phrase rather than a string of characters 4 126 Avaya Wireless AP 4 5 6 User s Guide ks Security Configuring Security Settings You can configure each SSID VLAN to operate in one of the following Security modes Security Mode Description No Security This is the default setting for an AP Enable WEP The AP and cli
77. and receive Device Name gt upload lt TFTP Server IP address gt lt tftpfilename such as config sys gt config Device Name gt show tftp to ensure the filename file type and the IP address are correct After setting the TFTP parameters you can back up your current file as long as all the other parameters are the same with the following command Device Name gt upload Avaya Wireless AP 4 5 6 User s Guide A 101 WDS Commands WDS Commands Wireless Distribution System WDS Parameters Name Type Values Access CLI Parameter WDS Table Table N A R wdstbl Port Index Integer 3 1 3 6 Wireless R portindex Status Integer enable disable RW status Partner MAC PhysAddress User Defined RW partnermacaddr Address Wireless Distribution System WDS Security Table Parameters The WDS Security Table manages WDS related security objects Name Type Values Access CLI Parameter WDS Security Table N A R wdssectbl Table Table Index Integer Primary WNIC 53 R index Secondary WNIC 4 Security Mode Integer none wep RW secmode Encryption Key 0 WEPKeyType N A WO encryptkey0 A 102 Avaya Wireless AP 4 5 6 User s Guide ksr 802 11a Wireless Interface Commands 802 11a Wireless Interface Commands The wireless interface group parameter is wif For Single radio APs the wireless interface uses tabl
78. approximated It is calculated by means of a manual Site Survey in which an AP is set up and clients are tested throughout the area to determine signal strength and coverage and local limits such as physical interference are investigated From these measurements the appropriate cell size and density is determined and the optimum distance between APs is calculated to suit your particular business requirements Avaya Wireless AP 4 5 6 User s Guide A 113 802 11b Wireless Interface Commands De a Set the Multicast Rate 802 11b Only Device Name gt set wif lt index gt multrate lt 1 2 5 5 11 Mbits sec gt gt NOTE The Distance Between APs must be set before the Multicast Rate gt NOTE There is an inter dependent relationship between the Distance between APs and the Multicast Rate In general larger systems operate at lower average transmit rates Distance between APs Multicast Rate Large 1 and 2 Mbits sec Medium 1 2 and 5 5 Mbits sec Small 1 2 5 5 and 11 Mbits sec Minicell 1 2 5 5 and 11 Mbits sec Microcell 1 2 5 5 and 11 Mbits sec A 114 Avaya Wireless AP 4 5 6 User s Guide ea eaa 802 11b g Wireless Interface Commands 802 11b g Wireless Interface Commands The wireless interface group parameter is wif For Single radio APs the wireless interface uses table index 3 See Interfaces for information on these parameters
79. auto fallback default 1 Mbits sec 2 Mbits sec 5 5 Mbits sec 11 Mbits sec For 802 11g only mode 0 auto fallback default 6 Mbits sec 9 Mbits sec 12 Mbits sec 18 Mbits sec 24 Mbits sec 36 Mbits sec 48 Mbits sec 54 Mbits sec 36 Mbits sec 48 Mbits sec 54 Mbits sec RW txrate 3 of 4 Avaya Wireless AP 4 5 6 User s Guide A 117 802 11b g Wireless Interface Commands Name Type Values Access CLI Parameter Transmit Rate continued Integer32 For 802 11g wifi and 802 11bg modes 0 auto fallback default 1 Mbits sec 2 Mbits sec 5 5 Mbits sec 11 Mbits sec 6 Mbits sec 9 Mbits sec 12 Mbits sec 18 Mbits sec 24 Mbits sec RW txrate Physical Layer Type Integer ERP Extended Rate Protocol R phytype Note 1 For 802 11a APs in Europe Auto Channel Select is a read only parameter it is always enabled 4of4 Network Name SSID Device Name gt set wif index 35 netname lt Network Name SSID for wireless interface gt Device Name gt show wif For results of the show wif command see Figure A 20 A 118 Avaya Wireless AP 4 5 6 User s Guide Ca UE 802 11b g Wireless Interface Commands Operational Mode Device Name 5 set wif index mode lt see tables Mode Operational Mode 1 dot1 1b only 2 dot11g only 3 dot11bg 4 dot11a o
80. disable the browser s Internet proxy settings For Internet Explorer users follow these steps a Select Tools gt Internet Options b Click the Connections tab c Click LAN Settings d If necessary remove the check mark from the Use a proxy server box 2 26 Avaya Wireless AP 4 5 6 User s Guide Saas Initialization e Click OK twice to save your changes and return to Internet Explorer 3 Enter the Access Point s IP address in the browser s Address field and press Enter This is either the dynamic IP address assigned by a network DHCP server or the static IP address you manually configured See ScanTool for information on how to determine the unit s IP address and manually configure a new IP address if necessary Result The Enter Network Password screen appears 4 Enter the HTTP password in the Password field Leave the User Name field blank For new units the default HTTP password is public Result The Setup Wizard will launch automatically An example of the Password dialog and the Setup Wizard page are shown next Avaya Wireless AP 4 5 6 User s Guide 2 27 Initialization HA a Figure 2 9 Enter Network Password D gt Please type your user name and password Site 192 168 0 3 Realm Access Product User Name Password eee T Save this password in your password list Cancel 2 28 Avaya Wireless AP 4 5 6 User s Guide Initialization
81. feature known as Wired Equivalent Privacy or WEP that is designed to provide a wireless LAN with a security level equal to what is found on a wired Ethernet network WEP encrypts the data portion of each packet exchanged on an 802 11 network using an Encryption Key also known as a WEP Key When Encryption is enabled two 802 11 devices must have the same Encryption Keys and both devices must be configured to use Encryption in order to communicate If one device is configured to use Encryption but a second device is not then the two devices will not communicate even if both devices have the same Encryption Keys e An 802 11b AP supports 64 bit and 128 bit encryption For 64 bit encryption an encryption key is 10 hexadecimal characters 0 9 and A F or 5 ASCII characters see ASCII Character Chart For 128 bit encryption an encryption key is 26 hexadecimal characters or 13 ASCII characters Avaya Wireless AP 4 5 6 User s Guide 4 119 Security ae e An 802 11a or 802 11b g AP supports 64 bit 128 bit and 152 bit encryption For 64 bit encryption an encryption key is 10 hexadecimal characters 0 9 and A F or 5 ASCII characters see ASCII Character Chart For 128 bit encryption an encryption key is 26 hexadecimal characters or 13 ASCII characters For 152 bit encryption an encryption key is 32 hexadecimal characters or 16 ASCII characters gt NOTE 64 bit encryption is sometimes referred t
82. installed every 20 feet and each Access Point generates a small radio cell with a diameter of about 10 feet In contrast a typical warehouse might have a low density area consisting of large cells with a diameter of about 90 feet and Access Points installed every 200 feet Avaya Wireless AP 4 5 6 User s Guide 4 41 Interfaces po Figure 4 6 Low Density vs Ultra High Density Network The Distance Between Cells parameter supports five values Large Medium Small Minicell and Microcell A CAUTION The distance between APs should not be approximated It is calculated by means of a manual Site Survey in which an AP is set up and clients are tested throughout the area to determine signal strength and coverage and local limits such as physical interference are investigated From these measurements the appropriate cell size and density is determined and the optimum distance between APs is calculated to suit your particular business requirements Contact your reseller for information on how to conduct a Site Survey 4 42 Avaya Wireless AP 4 5 6 User s Guide Ca Interfaces Multicast Rate The multicast rate determines the rate at which broadcast and multicast packets are transmitted by the Access Point to the wireless network Stations that are closer to the Access Point can receive multicast packets at a faster data rate than stations that are farther away from the AP You should set the Multicast Rate based on the siz
83. local DHCP server is accessible from the Access Point s subnet 7 10 Avaya Wireless AP 4 5 6 User s Guide Symptoms and Solutions 3 From the client computer use the ping network command to test the connection with the AP If the AP responds but you still cannot connect to the Internet there may be a physical network configuration problem contact your network support staff 4 If using Power over Ethernet make sure you are not using a crossover Ethernet cable between the AP and the hub VLAN Operation Issues Verifying Proper Operation of the VLAN Feature The correct VLAN configuration can be verified by pinging both wired and wireless hosts from both sides of the AP device and the network switch Traffic can be sniffed on both the wired Ethernet and wireless WDS backbones if configured Bridge frames generated by wireless clients and viewed on one of the backbones should contain IEEE 802 1Q compliant VLAN headers or tags The VLAN ID in the headers should correspond to one of the VLAN User IDs configured for the AP gt NOTE Sixteen VLAN SSID pairs are available for the AP 6 and APs that have an 802 11a b g or 802 11b g Upgrade Kit installed The AP 5 and AP 4 support only one VLAN SSID pair Avaya Wireless AP 4 5 6 User s Guide 7 11 Symptoms and Solutions De a VLAN Workgroups The correct VLAN assignment can be verified by pinging the AP to ensure connectivity
84. management channels enabled A 58 Avaya Wireless AP 4 5 6 User s Guide lt HTTP and HTTPS Commands Set TCP Port Device Name gt set httpport lt HTTP port number default is 80 gt Configure Secure Socket Layer HTTPS Enabling SSL and configuring a passphrase allows encrypted Secure Socket Layer communications to the AP through the HTTPS interface Device Name gt set sslstatus lt enable disable gt You must change the SSL passphrase when uploading a new certificate private key pair which will have a corresponding passphrase Device Name gt set sslpassphrase lt SSL certificate passphrase gt Device Name gt show http To view all HTTP configuration information including SSL HTTP Group Parameters httpifbitmask 15 httppasswd paaa a httpport 80 httphelplink file C Program Files ORiNOCO AP2000 HTML home htm httpsetupwiz disable sslstatus enable sslpassphrase RARER ES Avaya Wireless AP 4 5 6 User s Guide A 59 IAPP Commands IAPP Commands gt NOTE These parameters configure the Inter Access Point Protocol IAPP for roaming Leave these settings at their default value unless a technical representative asks you to change them IAPP Parameters Name Type Values Access CLI Parameter IAPP Group N A R iapp IAPP Status Integer enable default RW iappstatus disable Periodic Announce Integer 80 RW iappannint Interval seco
85. method for viewing network statistics using Telnet or a serial connection This section covers only use of the HTTP interface For more information about viewing network statistics with the CLI refer to The Command Line Interface Follow these steps to monitor an AP s operating statistics using the HTTP interface 1 Open a Web browser on a network computer gt NOTE The HTTP interface supports the following Web browser Microsoft Internet Explorer 6 with Service Pack 1 or later Netscape 6 1 or later 5 2 Avaya Wireless AP 4 5 6 User s Guide Cr KK Logging into the HTTP Interface 2 If necessary disable the Internet proxy settings For Internet Explorer users follow these steps Select Tools gt Internet Options Click the Connections tab Click LAN Settings f necessary remove the check mark from the Use a proxy server box Click OK twice to save your changes and return to Internet Explorer 3 Enter the Access Point s IP address in the browser s Address field and press Enter Result The AP Enter Network Password screen appears Avaya Wireless AP 4 5 6 User s Guide 5 3 Logging into the HTTP Interface 4 Enter the HTTP password in the Password field and click OK Leave the User Name field blank By default the HTTP password is public Result The System Status screen appears Figure 5 1 Enter Network Password Screen Enter Network
86. of show rad CLI command OCO AP 20801 gt show rad Rogue AP Detect Group disable 4 15 Avaya Wireless AP 4 5 6 User s Guide A 73 RADIUS Commands RADIUS Commands Avaya Wireless devices that use RADIUS authentication or accounting support a primary and backup RADIUS server for MAC based authentication and a primary and backup RADIUS server for EAP 802 1x authentication The configuration parameters and statistics are the same for both primary and backup servers The CLI differentiates the primary and backup RADIUS parameters by using the table index e Index 1 Primary MAC based authentication server e Index 2 Backup MAC based authentication server e Index 3 Primary EAP 802 1x authentication server e Index 4 Backup EAP 802 1x authentication server General RADIUS Parameters Name Type Values Access CLI Parameter RADIUS Group N A R radius MAC Access Integer enable R radmacacctrl Sonitrol Status disable default Authorization Integer32 900 43200 seconds RW radauthlifetm Liretime 0 sec default disabled 1 of 2 A 74 Avaya Wireless AP 4 5 6 User s Guide ee RADIUS Commands Name Type Values Access CLI Parameter MAC Address Integer dashdelimited default RW radmacaddrformat Format a colondelimited singledashdelimited no delimiter RADIUS Integer enable RW radaccstatus Accounting Status disable default Accounti
87. out aif MAC addresses with a header of 00 11 22 Help Wireless MAC Address 000000000000 Enter aif zeros since filtering wired MAC addresses Wireless Mask 000000000000 Enter ak zeros for the mask since filtering wired MAC addresses Exit ae od MAG Wired Mask iraloss MAC Wireless Mask Comment Status Address Address 00 20 A6 12 34 56 FF FF FF FF FF FF 00 20 A6 21 43 65 FF FF FF FF FF FF Enable 4 88 Avaya Wireless AP 4 5 6 User s Guide as Filtering Static MAC Filter Examples Consider a network that contains a wired server and three wireless clients The MAC address for each unit is as follows e Wired Server 00 40 F4 1C DB 6A e wireless Client 1 00 02 2D 51 94 E4 e Wireless Client 2 00 02 2D 51 32 12 e Wireless Client 3 00 20 A6 12 4E 38 Prevent Two Specific Devices from Communicating Configure the following settings to prevent the Wired Server and Wireless Client 1 from communicating e Wired MAC Address 00 40 F4 1C DB 6A e Wired Mask FF FF FF FF FF FF e Wireless MAC Address 00 02 2D 51 94 E4 e Wireless Mask FF FF FF FF FF FF Result Traffic between the Wired Server and Wireless Client 1 is blocked Wireless Clients 2 and 3 can still communicate with the Wired Server Avaya Wireless AP 4 5 6 User s Guide 4 89 Filtering el Prevent Multiple Wireless Devices From Communicating With a Single Wired Device Configure the following settings to prevent Wireless Clients 1 and 2 from communi
88. pA NEY cask che da KAME PRA AA NENA Rees A 46 Ethernet Interface Commands 500 ce eee eee eens A 48 Ethernet Interface Parameters 0 00 00 cence A 48 Syntax Examples cesso Geo eShIGRR CSSA GY BN VERE DS A 48 Hii COMMING ret oe edad KARMA LAKAD AESSR KSNR A 50 Ethernet Protocol Filtering Parameters A 50 Ethernet Protocol Filtering Table Parameters A 50 Static MAC Address Filter Table 0 aa A 51 Proxy ARP ParamelteTs 2x 04304 diaten TARA PANATA G NG A 52 IP ARP Filtering Parameters 2 2a nakaka aanak noe een A 53 Broadcast Filtering Table 0000 ccc ae aaa A 53 TCP UDP Por Fined ossscce0s oy KB RA KAL koe GARA A 54 TCP UDP Port Filtering Tables ha ctediavaetn iw era NANGKA A 54 HTTP and HTTPS Commands 3 0654 PK BAGAN oh deo LAG A 57 HTTP Web browser Parameters aaa A 57 Syntax EXoMINGS 5 lt ccas VSN PAPAG DIPA PBA NANA PBA A 58 balad sa PN HA aca hae hare Raid an Sean A 60 IAPP Paramotis s a mGA KARA NAG 2 ei s000549 e485 5008580005 A 60 itt BSS Commands sarres ssri dkr paces hase pnsekqaaaewe A 61 ra BSS ParamotefS siss PNG GARA DI LEBEL ARAL SALAS ERS A 61 AA AY A 61 Inventory Management Commands aa A 62 Inventory Management Parameters A 62 IP Access Table Commands 0 0 aaa A 62 Avaya Wireless AP 4 5 6 User s Guide 7 IP Access Table Parameters 000cn nee n nee enn A 62 Syntax EXAMPI
89. packets are redirected and a destination MAC address 1 Within the Packet Forwarding Configuration screen check the box labeled Enable Packet Forwarding Specify a destination Packet Forwarding MAC Address The AP will redirect all unicast multicast and broadcast packets received from wireless clients to the address you specify Select a Packet Forwarding Interface Port from the drop down menu You can redirect traffic to Ethernet A WDS connection see Wireless Distribution System WDS for details Any traffic is redirected to a port based on the bridge learning process Click OK to save your changes Avaya Wireless AP 4 5 6 User s Guide 4 117 Security Security The AP provides several security features to protect your network from unauthorized access e Authentication and Encryption Modes e MAC Access e Rogue Access Point Detection RAD Authentication and Encryption Modes The AP supports the following Security features Type Description WEP Encryption The original encryption technique specified by the IEEE 802 11 standard 802 1x Authentication An IEEE standard for client authentication Wi Fi Protected Access WPA A new standard that provides improved encryption security over WEP 4 118 Avaya Wireless AP 4 5 6 User s Guide Ca Security WEP Encryption The IEEE 802 11 standards specify an optional encryption
90. parameters Executing upload without parameters will display command help and usage information Syntax Action Syntax Upload a file Device Name gt upload lt tftp server address gt lt path and filename gt lt filetype gt Display help and usage information Device Name gt help upload Execute the upload command using previously set stored TFTP Parameters Device Name gt upload Example Device Name gt upload 192 168 1 100 APconfig sys config Avaya Wireless AP 4 5 6 User s Guide A 39 Parameter Tables E Parameter Tables Objects contain groups that contain both parameters and parameter tables Use the parameter tables in the following sections to configure the Access Point Columns used in the tables include e Name Parameter Group or Table Name e Type Data type e Values Value range and default value if any e Access access type R Read Only show RW Read Write can be set W Write Only CLI Parameter Parameter name as used in the Access Point Access Point network objects are associated with Groups The network objects and their associated parameters are described in the following sections A 40 Avaya Wireless AP 4 5 6 User s Guide Ca rt Auto Configuration Commands Auto Configuration Commands The Auto Configuration feature automatically configures an AP by downloading a specific configuration file from a TFTP
91. press Enter Result The Enter Network Password screen appears 4 Enter the HTTP password in the Password field and click OK Leave the User Name field blank By default the HTTP password is public Result The System Status screen appears Figure 4 1 Enter Network Password Screen gt Please type your user name and password Site 192 168 0 3 Realm Access Product User Name Password T Save this password in your password list Cancel Avaya Wireless AP 4 5 6 User s Guide 4 3 Configuring the AP Using the HTTP HTTPS Interface tl 5 Click the Configure button located on the left hand side of the screen Figure 4 2 Configure Main Screen Alarms Bridge Security RADIUS SSID VLAN Security System ay Network AY Interfaces AY Management Filtering a Status Configure Congue There are nine main categories of configuration for the access point which may be changed to suit your network properties and configuration Monitor System is used to configure specific system information such as system name and contact information Commands Network is used to configure IP settings DNS client DHCP server Link Integrity and VLAN Help Interfaces is used to configure the access point interfaces Wireless Slot A Wireless Slot B and Ethernet Exit Management is used to configure the access point management Passwords IP Access Table Services and AutoConfig Filtering is used
92. sean Rede endaed Radiunaeiony A 84 SNMP COMMANGS 545224456884 5 e6654824454 e03G 8845505055 A 84 8 Avaya Wireless AP 4 5 6 User s Guide SNMP ParametelS sess sissors nade e o4G4R ReER INAS A 84 SNMP Trap Host Table Parameters A 86 Stan EXONS se cip APA akan A 87 Spanning Tree Commands aaa eens A 88 Spanning Tree Parameters 0060 000 e aan A 88 Spanning Tree Priority and Path Cost Table A 89 SpeclraLimk VolP Commands ccc ciccsecedsdaae ee DAANG GRAN A 90 SpectraLink VoIP Parameters 802 11b and bg Modes Only A 90 Storm Threshold Commands ccccca cnc seeeraeepnagagaaa ea na A 91 Storm Threshold Parameters 0000 cece eens A 91 Stonn Threshold Tae xx ces heb eaeaG cede aereesedaeaeean A 91 Syslog COMMIS 248 Bhd rrada Ar LENG DEN wed Regs a A 92 Syslog Parameters PA A 92 Syslog Host Table Parameters 2 00200 ee eeeee A 94 SMO EOM AE A 94 System Information Commands ce eee ee eee A 95 Systemi PANGS xa ak KAR G0 2G ERS EEHS DER RRA EERE SRE WA A 95 Syntax EXAMS sasas 4hGAS SS CADETS EAR EE PRE EGRESS A 96 Tonet OIMISIGS 2254 pace atetderatouteh eoeeerelenae hanes A 97 Telnet Parameters 240 2chaseescevehage de rretsi eios A 97 ie palan Hi 42d ch danke u tee dade eaeeeeceeua ones A 98 TETE COMMA Ss 6655 3 24 4 AN 844 4 CERNE Oe SS OK A AOS oR A 99 TFTP Server Parameters kak fpaudaaeed cha MEN sti rarna A 99 Syntax Examples ana PA bo KKK eee ORI
93. server during the boot up process Perform the following commands to enable and set up automatic configuration gt NOTE The configuration filename and TFTP server IP address are configured only when the AP is configured for Static IP If the AP is configured for Dynamic IP these parameters are not used and obtained from DHCP The default filename is config The default TFTP IP address is 169 254 128 133 for the AP Avaya Wireless AP 4 5 6 User s Guide A 41 Auto Configuration Commands Auto Configuration Parameters These parameters relate to the Auto Configuration feature which allows an AP to be automatically configured by downloading a specific configuration file from a TFTP server during the boot up process Name Type Values Access CLI Parameter Auto Group N A R autoconfig Configuration Auto Integer enable default RW autoconfigstatus Configuration disable Status Auto Config DisplayString User Defined RW autoconfigfilename File Name Auto Config IpAddress User Defined RW autoconfigTFTPaddr TFTP Server IP Address Syntax Examples Device Name gt set autoconfigstatus lt enable disable gt Device Name gt set autoconfigfilename lt filename gt Enter the filename of the configuration file that is used if the AP is configured for Static IP Device Name gt set autoconfigTFTPaddr lt IP address gt Enter the TFTP server address that is used if the AP is confi
94. table Syntax Device Name gt set lt Table gt index status lt enable disable delete gt Device Name gt set lt Table gt index status lt l enable 2 disable 3 delete gt Example Device Name gt set mgmtipaccesstbl 2 status enable Device Name set mgmtipaccesstbl 2 status disable Device Name set mgmtipaccesstbl 2 status delete MM N0 OME EM Device Name set mgmtipaccesstbl 2 status 2 Avaya Wireless AP 4 5 6 User s Guide A 35 CLI Commands EC gt NOTE You may need to enable a disabled table entry before you can change the entry s elements show Displays the value of the specified parameter or displays all parameter values of a specified group parameter table Groups contain Parameters and Tables Tables contain parameters for a series of similar entities To see a definition and syntax example type only show and then press the Enter key To see a list of available parameters enter a question mark after show example show Syntax Device Name gt show lt parameter gt Device Name gt show lt group gt Device Name gt show lt table gt Examples Device Name gt show ipaddr Device Name gt show network Device Name gt show mgmtipaccesstbl A 36 Avaya Wireless AP 4 5 6 User s Guide CLI Commands Show Group Parameters To view all elements of a group or table Syntax Device Name gt show lt group name gt Example
95. the AP gets its IP address dynamically from the DHCP server A Syslog server address is also contained in the DHCP response allowing the AP to send Auto Configuration success and failure messages to a Syslog server gt NOTE 1 The configuration filename and TFTP server IP address are configured only when the AP is configured for Static IP If the AP is configured for Dynamic IP these parameters are not used and obtained from DHCP Click Configure 5 Management 5 AutoConfig The Automatic Configuration Screen appears Check Enable Auto Configuration When the AP is Configured with Dynamic IP the DHCP server should be configured with the TFTP Server IP address Boot Server Host Name option 66 and Configuration file Bootfile Name option 67 as follows Select DHCP Server gt DHCP Option gt Scope The DHCP Options Scope Screen appears Avaya Wireless AP 4 5 6 User s Guide 4 79 Management per Figure 4 12 DHCP Options Setting the Boot Server Host Name Options tor 11 0 0 0 EmbedLab OK Unused Options Active Options 020 Non local Source Routini a 003 Router 021 Policy Filter Masks 022 Max DG Reassembly Sizd Cancel O06 DNS Servers Add 007 Log Servers 023 Default Time to live 044 WINS NBNS Servers 024 Path MTU Aging TO lt Remove 066 Boot Server Host Name 025 Path MTU Plateau Table 067 Bootfile Name Comment TFTP boot server host name String 4 Add the Boot Server hos
96. the AP when the current AP image is bad or missing The Bootloader CLI allows you to assign an IP Address and download a new image Once the image is downloaded and running the Access Point uses the normal CLI This guide covers the normal CLI unless otherwise specified The Bootloader CLI is accessible via the serial interface only if the AP does not contain a software image or a download image command over TFTP has failed A 8 Avaya Wireless AP 4 5 6 User s Guide nas Bootloader CLI The Bootloader CLI provides you with the ability to configure the initial setup parameters as well as download a software image to the device The following functions are supported by the Bootloader CLI e set command to configure the device s initial parameters e show command to view the device s configuration parameters e help command to provide additional information on all commands supported by the Bootloader CLI e reboot command to reboot the device The parameters supported by the Bootloader CLI for viewing and modifying are e System Name e IP Address Assignment Type e IP Address e IP Mask e Gateway IP Address e TFTP Server IP Address e Image File Name including the file extension Avaya Wireless AP 4 5 6 User s Guide A 9 Bootloader CLI C The following lists display the results of using the help command in the Bootloader CLI Figure A 1 Results of help bootloader CLI command Device name gt he
97. to and Wireless Mask set to all zeros the wireless network from a specific only the Wireless MAC address and wireless MAC Wireless Mask leave the Wired MAC address from being Address and Wired Mask set to all zeros forwarded to the wired network between a specific all four parameters wired MAC address and a specific wireless MAC address Avaya Wireless AP 4 5 6 User s Guide 4 87 Filtering es Creating an Entry To create an entry click Add and enter the appropriate MAC addresses and Masks to setup a filter The entry is enabled automatically when saved To edit an entry click Edit To disable or remove an entry click Edit and change the Status field from Enable to Disable or Delete Figure 4 14 Static MAC Configuration Screen Alarms il Bridge x Security RADIUS VLAN System Network Interfaces Management Filtering Status R Ethernet Protocol Static MAC Advanced 17 TCP UDP Port gt Configure The static MAC filter can be used to optimize the network performance by allowing filtering based on MAC addresses or groups of MAC addresses on wired and wireless interfaces Groups of MAC addresses can be specified by using a bitmask Monitor For Example N a block of MAC addresses header consisting of 00 11 22 is to be filtered from wired to wireless interface then the following can be configured Commands Wired MAC Address 001122AABBCC Wired Mask FFFFFF000000 This mask filters
98. to be local so long as you 7 28 Avaya Wireless AP 4 5 6 User s Guide Ca UE Related Applications have a valid TFTP IP address Note that you do not need a TFTP server running unless you want to transfer files to or from the AP After the TFTP server is installed e Check to see that TFTP is configured to point to the directory containing the AP Image e Make sure you have the proper TFTP server IP Address the proper AP Image file name and that the TFTP server is connected e Make sure the TFTP server is configured to both send and receive with no time out Avaya Wireless AP 4 5 6 User s Guide 7 29 Related Applications O 7 30 Avaya Wireless AP 4 5 6 User s Guide AVAYA mene A In This Appendix This section describes the AP s Command Line CLI Interface CLI commands can be used to initialize configure and manage the Access Point CLI commands may be entered in real time through a keyboard or submitted with CLI scripts After entering commands press the Enter key to execute the command The CLI is available through both the Serial Port interface and over the Ethernet interface using Telnet gt NOTE All CLI commands and parameters are case sensitive Avaya Wireless AP 4 5 6 User s Guide A 1 In This Appendix This appendix contains the following sections General Notes Bootloader CLI CLI Conventions CLI Help Accessing the AP CLI CLI Commands Parameter Tables Auto Config
99. to the Scan List screen Click Cancel to close the ScanTool When the download process is complete configure the AP as described in Getting Started and Advanced Configuration Avaya Wireless AP 4 5 6 User s Guide a Recovery Procedures Download a New Image Using the Bootloader CLI To download the AP Image you will need an Ethernet connection to the computer on which the TFTP server resides This can be any computer on the LAN or connected to the AP with a cross over Ethernet cable You must also connect the AP to a computer with a standard serial cable and use a terminal client such as HyperTerminal From the terminal enter CLI Commands to set the IP address and download an AP Image Preparing to Download the AP Image Before starting you need to know the Access Point s IP address subnet mask the TFTP Server IP Address and the AP Image file name Make sure the TFTP server is running and configured to point to the folder containing the image to be downloaded Download Procedure 1 Download the latest software from http www avaya com support 2 Copy the latest software updates to your TFTP server s default directory 3 Use a straight through serial cable to connect the Access Point s serial port to your computer s serial port gt NOTE You must remove the Access Point s cable cover and front cover to access the serial port Avaya Wireless AP 4 5 6 User s Guide 7 21 Recovery Procedures
100. to the next screen 11 When finished click Reboot on the Summary screen to restart the AP and apply your changes 2 44 Avaya Wireless AP 4 5 6 User s Guide iia Download the Latest Software Download the Latest Software Avaya periodically releases updated software for the AP on its Web site at http www avaya com support Avaya recommends that you check the Web site for the latest updates after you have installed and initialized the unit Three types of files can be downloaded to the AP from a TFTP server e image AP software image or kernel e config configuration file e bspBI BSP Bootloader firmware file Setup your TFIP Server A Trivial File Transfer Protocol TFTP server allows you to transfer files across a network You can e upload files from the AP for backup or copying and e download the files for configuration and AP Image upgrades The Solarwinds TFTP server software is located on the Avaya Wireless AP Installation CD ROM You can also download the latest TFTP software from Solarwind s Web site at http www solarwinds net gt NOTE If a TFTP server is not available in the network you can perform similar file transfer operations using the HTTP interface Avaya Wireless AP 4 5 6 User s Guide 2 45 Download the Latest Software i After the TFTP server is installed e Check to see that TFTP is configured to point to the directory containing the AP Image e Make sure you have the p
101. 10 0 0 12 e The names of keyboard keys software buttons and field names are displayed in bold type For example Click the Configure button Avaya Wireless AP 4 5 6 User s Guide A 3 General Notes ss e Screen names are displayed in bold italics For example the System Status screen Important Terminology Term Description Configuration Files Database files containing the current Access Point configuration Configuration items include the IP Address and other network specific values Config files may be downloaded to the Access Point or uploaded for backup or troubleshooting Download vs Upload Downloads transfer files to the Access Point Uploads transfer files from the Access Point The TFTP server performs file transfers in both directions Group A logical collection of network parameter information For example the System Group is composed of several related parameters Groups can also All items for a given Group can be contain Tables displayed with a show lt Group gt CLI Command 1of2 A 4 Avaya Wireless AP 4 5 6 User s Guide naa General Notes Term Description Image File The Access Point software executed from RAM To update an Access Point you typically download a new Image File This file is often referred to as the AP Image Parameter A fundamental network value that can be displayed and may be changeable For example the Access Poi
102. 11b g ERP CCK DSSS OFDM 2 4 GHz OFDM stands for Orthogonal Frequency Division Multiplexing this is the name for the radio technology used by 802 11a devices DSSS stands for Direct Sequence Spread Spectrum this is the name for the radio technology used by 802 11b devices MAC Address This is a read only field that displays the unique MAC Media Access Control address for the Access Point s wireless interface The MAC address is assigned at the factory 2of5 Avaya Wireless AP 4 5 6 User s Guide 4 47 Interfaces Parameter Description Regulatory Reports the regulatory domain for which the AP Domain is certified Not all features or channels are available in all countries The available regulatory domains include e FCC U S Canada Mexico and Australia e ETSI Europe including the United Kingdom e MKK Japan e IL Israel Network Name SSID Enter a Network Name between 2 and 31 characters long for the wireless network You must configure each wireless client to use this name as well Auto Channel Select The AP scans the area for other Access Points and selects a free or relatively unused communication channel This helps prevent interference problems and increases network performance By default this feature is enabled see 802 11g Channel Frequencies for a list of Channels 3 of 5 4 48 Avaya Wireless AP 4 5 6 User s Guide
103. 15 minutes effectively protects against intrusion without disrupting network activities 3 Place a check mark in the box labeled Enable Encryption WEP 4 Configure Encryption Key 1 only i e do not configure Keys 2 through 4 Keep in mind the following For 64 bit encryption an encryption key is 10 hexadecimal characters 0 9 and A F or 5 ASCII characters see ASCII Character Chart For 128 bit encryption an encryption key is 26 hexadecimal characters or 13 ASCII characters For 152 bit encryption an encryption key is 32 hexadecimal characters or 16 ASCII characters Enable WPA Mode Follow this step to enable WPA on an SSID VLAN pair 1 Set Security Mode to WPA 4 144 Avaya Wireless AP 4 5 6 User s Guide CT TE Configure Multiple SSID VLAN Security Mode Entries Enable WPA PSK Mode Follow these steps to enable WPA PSK on an SSID VLAN pair 1 2 3 Set Security Mode to WPA PSK Configure the Pre Shared Key Enter a phrase in the PSK Pass Phrase field The AP will automatically generate a Pre Shared Key based on the phrase you enter You must also configure your clients to use this same key Enter between 8 and 63 characters Avaya recommends using a pass phrase of at least 13 characters including both numbers and upper and lower case letters to ensure that the generated key cannot be easily deciphered by network infiltrators When finished configuring all parameters click OK
104. 16 17 Replace the front cover Replace the cable cover Turn on the AP Ceiling Mount Follow these steps to mount the AP to a ceiling 1 2 Unplug the Access Point s power supply if necessary Use a Phillips screwdriver to attach the metal base to the underside of the AP if necessary SeeAttach the Metal Base for an illustration Feed a mounting screw through each of the four rubber feet The AP comes with four 3 5 mm x 40 mm pan head screws Remove the screws from the rubber feet 5 Turn the AP upside down position the base against the ceiling 2 52 where you want to mount the unit Mark the center of the four mounting holes in the rubber feet Set the AP aside and drill a hole at each of the locations you marked above Each hole should be wide enough to hold a mounting plug which is 6 mm x 35 mm Insert a plug into each hole The AP comes with four 6 mm x 35 mm plugs Insert the screws into the holes you made previously in the rubber feet Avaya Wireless AP 4 5 6 User s Guide Additional Hardware Features 10 Insert the screws into the wall plugs Use a screwdriver to tighten the screws and attach the Access Point s metal base to the ceiling Figure 2 13 Mounting the AP to the Ceiling Avaya Wireless AP 4 5 6 User s Guide 2 53 Additional Hardware Features Ca Installing the AP in a Plenum In an office building plenum is the space between the str
105. 16 VLAN SSID pairs per radio based on model type gt NOTE The ability to configure up to 16 VLAN SSID pairs and configure a security mode per SSID is available only for the AP 6 and APs that have an 802 11a b g or 802 11b g Upgrade Kit installed The AP matches packets transmitted or received to a network name with the associated VLAN Traffic received by a VLAN is only sent on the wireless interface associated with that same VLAN This eliminates unnecessary traffic on the wireless LAN conserving bandwidth and maximizing throughput Traffic Management In addition to enhancing wireless traffic management the VLAN capable AP supports easy assignment of wireless users to workgroups In a typical scenario each user VLAN represents a workgroup for example Avaya Wireless AP 4 5 6 User s Guide 4 135 SSID VLAN and Security Modes ss one VLAN could be used for an EMPLOYEE workgroup and the other for a GUEST workgroup In this scenario the AP would assign every packet it accepted to a VLAN Each packet would then be identified as EMPLOYEE or GUEST depending on which wireless NIC received it The AP would insert VLAN headers or tags with identifiers into the packets transmitted on the wired backbone to a network switch Finally the switch would be configured to route packets from the EMPLOYEE workgroup to the appropriate corporate resources such as printers and servers Packets from the GUEST workgroup could be
106. 457 2 4571 2 457 11 2 462 2 4621 2 462 12 2 4671 2 467 13 2 4721 2 472 14 2 z 2 484 Note 1 France is restricted to these channels Note 2 Channel 14 is only available when using 802 11b only mode 2of2 Avaya Wireless AP 4 5 6 User s Guide Radio Specifications Ca Wireless Communication Range The range of the wireless signal is related to the composition of objects in the radio wave path and the transmit rate of the wireless communication Communications at a lower transmit range may travel longer distances The range values listed in the Communications Range Chart are typical distances as calculated by Avaya s development team for FCC certified products These values provide a rule of thumb and may vary according to the actual radio conditions at the location where the product is used The range of your wireless devices can be affected when the antennas are placed near metal surfaces and solid high density materials Range is also impacted due to obstacles in the signal path of the radio that may either absorb or reflect the radio signal In Open Office environments antennas can see each other no physical obstructions between them In Semi open Office environments workspace is divided by shoulder height hollow wall elements antennas are at desktop level In a Closed Office environment solid walls and other obstructions may affect signal strength The followin
107. 48V Power Consumption 10 Watts Avaya Wireless AP 4 5 6 User s Guide C 9 Hardware Specifications Ca Environmental Specifications AP Unit e Operating Temperature 0 to 55 C ambient temperature without plastic cabinet e Operating Humidity 95 maximum non condensing e Storage Temperature 20 to 75 C ambient temperature e Storage Humidity 95 maximum non condensing gt NOTE For AP 6 units operating at temperatures above 50 C 122 F we recommend that the plastic enclosure be removed Ethernet Interface 10 100 Base TX RJ 45 female socket Serial Port Interface Standard RS 232C interface with DB 9 female connector C 10 Avaya Wireless AP 4 5 6 User s Guide CT UE Radio Specifications Power over Ethernet Interface Category 5 foiled twisted pair cables must be used to ensure compliance with FCC Part 15 subpart B Class B requirements Standard 802 3af pin assignments HTTP Interface e Microsoft Internet Explorer 6 with Service Pack 1 or later e Netscape 6 1 or later Radio Specifications e 802 11a Channel Frequencies e 802 11b Channel Frequencies e 802 11g Channel Frequencies e Wireless Communication Range gt NOTE Refer to the Regulatory Flyer included with the AP for the latest regulatory information Avaya Wireless AP 4 5 6 User s Guide C 11 Radio Specifications Ca 802 11a Channel Frequencies The available 802 11a Channels varies by regulatory doma
108. 5 If you selected a Security Mode of 802 1x Mixed Mode or WPA gt 7 8 you must configure a Radius 802 1x EAP server see RADIUS Authentication with 802 1x for details Click Edit if you want to modify an existing entry You can also disable or delete an entry from the Edit screen NOTE When editing the primary Network Name SSID entry disabling or deleting that entry is not allowed Click the tab for the second wireless interface if applicable and create or modify SSID VLAN entries as necessary Reboot the AP Avaya Wireless AP 4 5 6 User s Guide 4 145 Configure Multiple SSID VLAN Security Mode Entries CO Typical VLAN Management Configurations Control Access to the AP Management access to the AP can easily be secured by making management stations or hosts and the AP itself members of a common VLAN Simply configure a non zero management VLAN ID and enable VLAN to restrict management of the AP to members of the same VLAN Ax CAUTION If a non zero management VLAN ID is configured then management access to the AP is restricted to wired or wireless hosts that are members of the same VLAN Ensure your management platform or host is a mem ber of the same VLAN before attempting to manage the AP 1 Click Configure gt SSID VLAN Security 2 Set the VLAN Management ID to a value between 0 and 4094 a value of O disables VLAN management 3 Place a check mark in the Enable VLAN Protocol box Pr
109. 5 Select an appropriate filename and location and click OK Reboot Use the Reboot tab to save configuration changes if any and reset the AP Entering a value of 0 zero seconds causes an immediate reboot Note that Reset described below does not save configuration changes Avaya Wireless AP 4 5 6 User s Guide 6 19 Reboot QC re eee A caution Rebooting the AP will cause all users who are currently connected to lose their connection to the network until the AP has completed the restart pro cess and resumed operation Figure 6 13 Reboot Command Screen Update AP Retrieve File Reboot Reset Help Link Status This tab is used to reboot the access point by specifying the number of seconds before the next reboot The access point reboots immediately by entering a value of zero Configure Warning Rebooting the access point wil cause ali users who are currently connected to Jose their connection to the network until the unit has completed the restart Monitor process and resumed operation commands Please enter the time to reboot seconds jo Help Reboot a Exit 6 20 Avaya Wireless AP 4 5 6 User s Guide _ Reset Reset Use the Reset tab to restore the AP to factory default conditions The AP may also be reset from the RESET button located on the side of the unit Since this will reset the Access Point s current IP address a new IP address must be assigned Refer to Recovery Procedures fo
110. 6 90 Sensitivity dBm Antenna 3 dBi integrated diversity antenna module 2 4 2 5 GHz Gain C 22 Avaya Wireless AP 4 5 6 User s Guide AVAYA Technical Support D Before You Seek Help If you are having a problem using an AP and cannot resolve it with the information in Troubleshooting gather the following information and contact your local authorized reseller or visit http www avaya com support for contact information e List of Avaya Wireless products installed on your network include the following Product names and quantity Part numbers P N Serial numbers S N e List of Avaya Wireless software versions installed Check the HTTP interface s Version screen Include the source of the software version e g pre loaded on unit installed from CD downloaded from Avaya Web site etc Avaya Wireless AP 4 5 6 User s Guide D 1 Before You Seek Help CO e Information about your network Network operating system e g Microsoft Networking include version information Protocols used by network e g TCP IP NetBEUI IPX SPX AppleTalk Ethernet frame type e g 802 3 Ethernet II if known IP addressing scheme include address range and whether static or DHCP Network speed and duplex 10 or 100 Mbits sec full or half duplex Type of Ethernet device that the Access Points are connected to e g Power over Ethernet power injector hub switch etc Typ
111. 6 2 437 2 437 2 437 2 437 7 2 442 2 442 2 442 2 442 8 2 447 2 447 2 447 2 447 9 2 452 2 452 2 452 3 10 2 457 2 4571 2 457 11 2 462 2 4621 2 462 4 12 2 4671 2 467 13 2 4721 2 472 14 s 2 484 Note 1 France is restricted to these four channels 2of2 Avaya Wireless AP 4 5 6 User s Guide Radio Specifications 802 11g Channel Frequencies The available 802 11g channels vary by regulatory domain and or country 802 11g radio certification is available in the following regions e FCC U S Canada Mexico and Australia e ETSI Europe and the United Kingdom e ETSI Europe including the United Kingdom China and South Korea e MKK Japan e IL Israel Some countries restrict 802 11g operation to specific frequency bands The web interface will always display the available channels depending in the cards regulatory domain In the CLI any channels that are not available are labeled Not Supported Channel ID FCC ETSI MKK IL GHz GHz GHz GHz 1 2 412 2 412 2 412 2 2 417 2 417 2 417 3 2 422 2 422 2 422 4 2 427 2 427 2 427 2 427 5 2 432 2 432 2 432 2 432 1 of 2 C 16 Avaya Wireless AP 4 5 6 User s Guide Radio Specifications Channel ID FCC ETSI MKK IL GHz GHz GHz GHz 6 2 437 2 437 2 437 2 437 7 2 442 2 442 2 442 2 442 8 2 447 2 447 2 447 2 447 9 2 452 2 452 2 452 10 2
112. AP 4 5 6 User s Guide A 111 802 11b Wireless Interface Commands co Tr eror e 100 of the maximum transmit power level of the card e 50 e 25 e 12 5 Perform the following commands to enable TX Power Control and set the transmit power level Device Name gt set txpowercontrol enable Device Name gt set wif lt interface number gt currenttxpowerlevel lt value gt Allowed values are 1 100 2 50 3 25 4 12 5 Autochannel Select ACS ACS is enabled by default Reboot after disabling or enabling ACS Device Name gt set wif lt index gt autochannel lt enable disable gt Device Name gt reboot 0 Enable Disable Closed System Device Name gt set wif lt index gt closedsys lt enable disable gt A 112 Avaya Wireless AP 4 5 6 User s Guide 802 11b Wireless Interface Commands Enable Disable Interference Robustness 802 11b Only Device Name gt set wif lt index gt interrobust lt enable disable gt Enable Disable Load Balancing 802 11b Only Device Name gt set wif lt index gt ldbalance lt enable disable gt Enable Disable Medium Density Distribution 802 11b Only Device Name gt set wif lt index gt meddendistrib lt enable disable gt Set the Distance Between APs 802 11b Only Device Name gt set wif lt index gt distaps lt large medium small minicell microcell gt Device Name gt reboot gt NOTE The distance between APs should not be
113. AP 4 5 6 User s Guide 5 21 Station Statistics Description of Station Statistics The following stations statistics are displayed 5 22 MAC Address The MAC address of the wireless client for which the statistics are gathered For WDS links this is the partner MAC address of the link IP Address The IP address of the associated wireless station for which the Statistics are gathered 0 0 0 0 for WDS links Interface to which the Station is connected The interface number on which the client is connected with the AP For WDS links this is the interface on which the link is configured Station Type The type of wireless client STA or WDS MAC Protocol The MAC protocol for this wireless client or WDS link partner The possible values are 802 11a 802 11b 802 11g Signal Noise The Signal Noise Level measured at the AP when frames are received from the associated wireless station or WDS link partner Time since Last Packet Received The time elapsed since the last frame from the associated wireless station or WDS link partner was received Number of Clients The number of stations and WDS links monitored Avaya Wireless AP 4 5 6 User s Guide aT Station Statistics The following stations statistics are not displayed in the Graphical User Interface but can be viewed from a MIB browser Octets Received The number of octets received from the associated wireless station or WDS link partner by the AP
114. E 4 Open your terminal emulation program like HyperTerminal and set the following connection properties Com Port lt COM1 COM2 etc depending on your computer gt Baud rate 9600 Data Bits 8 Stop bits 1 Flow Control None Parity None 5 Under File gt Properties gt Settings gt ASCII Setup enable the Send line ends with line feeds option Result HyperTerminal sends a line return at the end of each line of code 6 Press the RESET button on the AP Result The terminal display shows Power On Self Tests POST activity After approximately 30 seconds a message indicates Sending Traps to SNMP manager periodically After this message appears press the ENTER key repeatedly until the following prompt appears Device Name gt 7 22 Avaya Wireless AP 4 5 6 User s Guide Recovery Procedures Device Name Device Name Device Name Device Name Device Name Device Name Device Name Device Name Device Name Example Device Name Device Name Device Name Device Name Device Name Device Name Device Name Device Name Device Name 7 Enter only the following statements gt set ipaddrtype static gt set ipaddr Access Point IP Address gt set ipsubmask lt IP Mask gt set tftpipaddr lt TFTP Server IP Address gt set tftpfilename lt AP Image File Name including file extension gt set ipgw Gateway IP Address gt show ip gt show tft
115. ED turns amber Result The AP deletes the current AP Image 3 Follow one of the procedures below to load a new AP Image to the Access Point Download a New Image Using ScanTool Download a New Image Using the Bootloader CLI Download a New Image Using ScanTool To download the AP Image you will need an Ethernet connection to the computer on which the TFTP server resides and to a computer that is running ScanTool this is either two separate computers connected to the same network or a single computer running both programs ScanTool detects if an Access Point does not have a valid software image installed In this case the TFTP Server and Image File Name parameters are enabled in the ScanTool s Change screen so you can download a new image to the unit These fields are grayed out if ScanTool does not detect a software image problem 7 18 Avaya Wireless AP 4 5 6 User s Guide Ee Recovery Procedures Preparing to Download the AP Image Before starting you need to know the Access Point s IP address subnet mask the TFTP Server IP Address and the AP Image file name Make sure the TFTP server is running and configured to point to the folder containing the image to be downloaded Download Procedure Follow these steps to use ScanTool to download a software image to an Access Point with a missing image 1 Download the latest software from http www avaya com support 2 Copy the latest software updates to
116. ERGO PAA PARAN EEDS A 100 VOS COMMI KALA eee acest eheGEsehetaseheeesudawes A 102 Wireless Distribution System WDS Parameters A 102 Wireless Distribution System WDS Security Table Parameters A 102 802 11a Wireless Interface Commands A 103 BU 1 la Parameters ana Seeds BEER ESHER ARAWAN ALAGANG A 103 Avaya Wireless AP 4 5 6 User s Guide 9 nG EOMP ics adaeeandeaaeenseaedsd ee ba ween RR A 105 802 11b Wireless Interface Commands A 107 902 11b Paramita ocho cake roret rada ia rr RENA LEAD GA A 108 Syntax EXAMPLES naaa na ered ob astetta nirin odes dees A 111 802 11b g Wireless Interface Commands A 115 802 11b g Parameters oo 3 ma NG GB GG h 454 ed oooh tasas A 115 Wireless Interface SSID VLAN Security Commands A 121 Wireless Interface SSID Table Parameters A 121 Sites EXOD ssp sce eee ARERR EARL RARE ARES A 123 VLAN SSID Pair Commands s6 ses4soe s44 4 085450885 A 125 VLANISSID Parameters ccddccaancceaeesee eae eae cages A 125 VLAN ID TABI xa Ka paang Hoi eA ON SEAR ALAGA A 126 unG Aa Ss ieee hades caade dade caeeenadeseases A 127 B ASCII Character Chart 00 00 eee neues B 1 DESENPION 62545 24854 K HANNA BNG KAKA POP ARI BABA GLEN NAG GAG B 1 C Specifications apak AABANG cde AKA KALA C 1 i Tits Avene veces ce cedecedeananek he DANG GALERA APAKAN C 1 Sotware FEAUeS cineca d NGANGA BAGA ee ees LAKARAN dbas
117. Error Invalid syntax entered at the command prompt Invalid Command A non existent command has been entered at the command prompt Invalid Parameter Name An invalid parameter name has been entered at the command prompt Invalid Parameter Value An invalid parameter value has been entered at the command prompt Invalid Table Index An invalid table index has been entered at the command prompt Invalid Table An invalid table parameter has been entered Parameter at the command prompt Invalid Table An invalid table parameter value has been Parameter Value entered at the command prompt Read Only Parameter User is attempting to configure a read only parameter 1of2 Avaya Wireless AP 4 5 6 User s Guide A 7 Bootloader CLI E Error Message Description Incorrect Password An incorrect password has been entered in the CLI login prompt Download The download operation has failed due to Unsuccessful incorrect TFTP server IP Address or file name Upload Unsuccessful The upload operation has failed due to incorrect TFTP server IP Address or file name 2of2 Bootloader CLI Administrators use the CLI to control Access Point operation and monitor network statistics The AP supports two types of CLI the Bootloader CLI and the normal CLI The Bootloader CLI provides a limited command set and is used to perform initial configuration of
118. Format ipaddr Maximum Retransmission 3 Index 2 RADIUS Acc Server Status disable IP Address Host Name 6 6 6 6 Accounting Port R 1813 Response Time s 3 Shared Secret z OO Server Addressing Format ipaddr Maximum Retransmission 3 Secure Management Commands Secure Management Parameters Name Type Values Access CLI Parameter Secure Integer Enable Disable RW securemgmtstatus Management A 82 Avaya Wireless AP 4 5 6 User s Guide Serial Port Commands Serial Port Commands Serial Port Parameters Name Type Values Access CLI Parameter Serial Group N A R serial Baud Rate Integer 2400 4800 RW serbaudrate 9600 default 19200 38400 57600 Data Bits Integer 8 R serdatabits Parity Integer none R serparity Stop Bits Integer 1 R serstopbits Flow Control Value none default RW serflowctrl xonxoff gt NOTE To avoid unexpected performance issues leave Flow Control at the default setting none unless you are sure what this setting should be Avaya Wireless AP 4 5 6 User s Guide A 83 SNMP Commands C Syntax Examples Device Name gt set serbaudrate lt 2400 4800 9600 19200 38400 57600 gt Device Name gt set serflowctrl lt none xonxoff gt Device Name gt show serial Figure A 18 Result of show serial CLI Command Device Name 1 gt show serial Serial Interface Group Parame
119. G0 oo Oe TOT EN PG Oe HARI KARERA PDEA 5 9 Leam Tablo con cc cckaad oh Raee eee rdd Akae SRE FERRAR RS 5 10 PP sh ie RRM ASR RE PORN GREE TEETE EE TE TETT 5 11 BIG aide E S EE OREA acc ase ar eee rena eats SR ete 5 12 IMEMBGEE 0na bA LAN BKA GIG ORS SG OS ERIRRREEOREADARE GE ORAS 5 13 Lie Weel lt ccceuuceaa pean PA 5 15 SEN SANSE ag a aed Saha LORS SPER TERRES h RIA ORRSS 5 20 Enabling and Viewing Station Statistics 5 20 Refreshing Station Statistics eee eee eee 5 20 6 ComMandS PAA PAPA rer eee eae 6 1 IG Tite ater scr teeter eda EAA NEERA NEA 6 1 Logging into the HTTP Interface 0 65 cece eens 6 2 Introduction to File Transfer via TFTP or HTTP 6 5 TFTP File Transfer Guidelines 2 200005 6 6 HTTP File Transfer Guidelines 2cc4cacaacaaexcaeda NAWANG 6 6 Image Error Checking during File Transfer 6 7 Update AP by Using IF IP aasam BKAGA AG cdee none reek ead ae Ea 6 8 Update AP by Using HTTP 44 2x paa p084 KARGADA KENA G AGA 6 11 4 Avaya Wireless AP 4 5 6 User s Guide Upload File by Using FIP 4sa dacugandades acne vega deadas 6 14 Upload File by Using HTTP 2a pup p aa KABAGAL BE DEL AGE ER 6 16 BAM AA 6 19 EE PG PP UNA P E E AA 6 21 Mee DINK EEE TAEAE NEEE AKA GERRY NGLANENLANE NANA AE 6 22 7 Troubleshooting 00 0c a 7 1 Ths ONGPIGT 5 4 cess KR PIPE HORS REREGE EH SERRE GSH EE HOH 7 1 Troubleshooting Concepts naam KG es dae
120. GS naa GN KEAN GG EGR GAPE HES EOR 4 OHNE ERESS A 63 FP CONS Gao can a dele bo ETE eaa TTET A 64 IP Configuration Parameters 2 0 2 0 cece eee eee A 64 melon EXOMPISss ka G KG BABA RAANG orara TREERNE A A 65 Link Integrity CommandS 56250440544 AG 4008 bdeesseecess A 65 Link Integrity Parameters ica5es 625404 ceacGadenne PALAG A 65 IP Target Table Parameters aa A 66 ae aa Ci AT A 67 MAC Access Control Commands a A 68 MAC Access Control Parameters aaa A 68 MAC Access Control Table Parameters A 68 SVMs EXOMPIGS osisssa dtt ristad ERG AGH ETS RECHARE RS A 69 Monitoring Paranisters 2c45 6 046855 005 9808 LEON KEAN A 70 Packet Forwarding Commands 7 4 a ea 008 e00e84 KR sees A 71 Packet Forwarding Parameters 0 A 71 PAG COMMAS AA A 72 Rogue Access Point Detection RAD Parameters A 73 SOx EOM AA AY A 73 RADIUS Commands 7 paaa KK KhA GERA PAK onsen eden woged sox A 74 General RADIUS Parameters 0002 c cee eene ees A 74 RADIUS Authentication Parameters A 75 RADIUS Accounting Parameters ccs ah GARA NARRA ANAL A 77 Syntax EXANIDIGS oc nh KG EERE oe ease tir e EES eed Gee PANG A 78 Secure Management Commands ee A 82 Secure Management Parameters 0 5 A 82 Sela Fon LONG a acctaitenatgucdedapacedepnenahua A 83 Serial Port Parameters cia scescoedevaderieaganeeases A 83 DYAN EXAM Gn cic ccncdde
121. I Password HTTP Web Password By default each of these passwords is set to public See Passwords for more information Avaya Wireless AP 4 5 6 User s Guide 2 31 Initialization aos 9 Configure the basic wireless interface settings and click Save amp Next The following options are available for an 802 11a AP Option Description Primary Network Enter a Network Name between 2 Name SSID and 31 characters long for the wireless network You must configure each wireless client to use this name as well Additional Network The AP supports up to 16 SSIDs and Names SSIDs VLANs per wireless interface radio Refer to the Advanced Configuration chapter for information on the detailed rules on configuring multiple SSIDs VLANs and security modes 10f 4 2 32 Avaya Wireless AP 4 5 6 User s Guide Initialization Option Description Auto Channel Select By default the AP scans the area for other Access Points and selects the best available communication channel either a free channel if available or the channel with the least amount of interference Remove the check mark to disable this option Note that you cannot disable Auto Channel Select for 802 11a products in Europe see Dynamic Frequency Selection DFS for details 2 of 4 Avaya Wireless AP 4 5 6 User s Guide 2 33 Initialization Option Description
122. IUS CA 10 11 12 13 4 166 Single dash delimited dash between the sixth and seventh digits xxyyzz aabbcc No delimiters No characters or spaces between pairs of hexadecimal digits xxyyzzaabbcc Select a Server Addressing Format type IP Address or Name If you want to identify RADIUS servers by name you must configure the AP as a DNS Client See DNS Client for details Enter the server s IP address or name in the field provided Enter the port number which the AP and the server will use to communicate By default RADIUS servers communicate on port 1812 Enter the Shared Secret in the Shared Secret and Confirm Shared Secret field This is a password shared by the RADIUS server and the AP The same password must also be configured on the RADIUS server Enter the maximum time in seconds that the AP should wait for the RADIUS server to respond to a request in the Response Time field Range is 1 10 seconds default is 3 seconds Enter the maximum number of times an authentication request may be retransmitted in the Maximum Retransmissions field Range is 0 4 default is 3 If you are configuring a back up server repeat Steps 6 through 11 for the back up server Click OK to save your changes Avaya Wireless AP 4 5 6 User s Guide as kari Now that Radius authentication is enabled and configured configure Radius Accounting as follows 14 15 16 17 18 19
123. LAN T AABANG A 13 CUED AP PAA AA PE PR PASANG A 14 ING Question MaK aac cca eens bee Reh hHargeensegeeawe ere A 14 The Help CONN 245 04 oh 56068o de ee4beees baeh EGG A 19 AGANG MEAP GE a GREAT RANA aces PURA KANG RANA A 21 Using HyperTerminal to Log in to the AP A 21 Using Telnet to Log in to the AP aaa A 22 CL COMMI 5 58855 2388598 449 20059951980 Se TRS Aa A 24 Oe TEE ATA S AA AA A 25 S e i ca 55 200 EEEE SHER DIGNA DBA ALABANG GANA A 25 Aah E cee eiadeta BERBAL B NADERA RNEA AA tegen sees NGGG A 26 KA AA A 26 WN pA ADARNA KAREN KANAN BANA LEAN PAGANIG ANA PERA A 29 sa AAO PAP PAA AA AA A 29 PDA PT A 30 Cals Se ee ee ee ee ee ee PALANG NUNAL ee A 30 AA A 31 AA AA APAPAP PE PAA A 32 BOO 2baa a E ABAD PERA GAN PRES RE eOEGEREE RE SRE aw SSS A 36 Wad 68h 4A SS RTE AS Ap AA TE A 39 Parametr Mees scrc eGettedieppereiteheetephetiepadas A 40 Auto Configuration Commands 0 0c eee ene A 41 Auto Configuration Parameters a A 42 Syntax EXANIDIGS sadareti 44446643 SEOd FSERRS HAH OS ER SS A 42 6 Avaya Wireless AP 4 5 6 User s Guide DHCP Server Commands s vag 44aG aus dee beeen ceeed aa enns A 43 DHCP Server Parameters 24 asan GRRR BALANG GANA A 43 IP Address Pool Parameters acses4e5a0060 00 eR Rusa os A 44 Syntax EXOMPlGS 624 dee0s PAA gan arentiod PAA A 45 DNS Client Commands ich eae d aeee Hal RARE Rah RoR ERS A 46 DNS Client for RADIUS Name Resolution A 46 Sima INN
124. Name Enter related information typically the protocol name To edit or delete an entry click Edit and change the information or select Enable Disable or Delete from the Status drop down menu An entry s status must be enabled in order for the protocol to be subject to the filter 4 Reboot the AP for any changes to the Ethernet Protocol Filter Table to take effect Static MAC The Static MAC Address filter optimizes the performance of a wireless and wired network When this feature is properly configured the AP can block traffic between wired devices and wireless devices based on MAC address 4 84 Avaya Wireless AP 4 5 6 User s Guide aaa Filtering For example you can set up a Static MAC filter to prevent wireless clients from communicating with a specific server on the Ethernet network You can also use this filter to block unnecessary multicast packets from being forwarded to the wireless network gt NOTE The Static MAC Filter is an advanced feature You may find it easier to control wireless traffic via other filtering options such as Ethernet Protocol Filtering Each static MAC entry contains the following fields e Wired MAC Address e Wired Mask e Wireless MAC Address e Wireless Mask e Comment This field is optional Each MAC Address or Mask is comprised of 12 hexadecimal digits 0 9 A F that correspond to a 48 bit identifier Each hexadecimal digit represents 4 bits O or 1 Avaya Wir
125. P is installed Contact Name The name of the person responsible for the AP Contact Email The email address of the person responsible for the AP Contact Phone The telephone number of the person responsible for the AP Object ID This is a read only field that displays the Access Point s MIB definition this information is useful if you are managing the AP using SNMP 1of2 Avaya Wireless AP 4 5 6 User s Guide 4 5 System E Parameters Description Ethernet MAC This is a read only field that displays the Address unique MAC Media Access Control address for the Access Point s Ethernet interface The MAC address is assigned at the factory Descriptor This is a read only field that reports the Access Point s name serial number current image software version and current bootloader software version Up Time This is a read only field that displays how long the Access Point has been running since its last reboot 2 of 2 Dynamic DNS Support DNS is a distributed database mapping the user readable names and IP addresses and more of every registered system on the Internet Dynamic DNS is a lightweight mechanism which allows for modification of the DNS data of host systems whose IP addresses change dynamically Dynamic DNS is usually used in conjunction with DHCP for assigning meaningful names to host systems whose IP addresses change dyna
126. TFTP yes yes yes C 2 Avaya Wireless AP 4 5 6 User s Guide aE Software Features Advanced Bridging Functions Feature 802 11b 802 11a 802 11b g IEEE 802 1d Bridging yes yes yes WDS Relay yes yes yes Roaming yes yes yes Protocol Filtering yes yes yes Multicast Broadcast Storm yes yes yes Filtering Proxy ARP yes yes yes TCP UDP Port Filtering yes yes yes Blocking Intra BSS Clients yes yes yes Packet Forwarding yes yes yes Avaya Wireless AP 4 5 6 User s Guide C 3 Software Features Cg a rij Medium Access Control MAC Functions Feature 802 11b 802 11a 802 11b g Automatic Channel yes yes yes Selection ACS Dynamic Frequency N A yes N A Selection DFS Closed System Feature yes yes yes TX Power Control N A Available with yes 802 11a upgrade kit Not available with 5Ghz upgrade kit Note 1 A user cannot manually select a channel for products sold in Europe these products require automatic channel selection using Dynamic Frequency Selection DFS C 4 Avaya Wireless AP 4 5 6 User s Guide Ri Software Features Security Functions Feature 802 11b 802 11a 802 11b g IEEE 802 11 WEP 1 yes yes yes MAC Access Control yes yes yes RADIUS MAC based Access yes yes yes Control IEEE 802 1x Authentication yes yes yes Multiple Authentication yes yes yes Server Su
127. TP Interface 0 or2 no RW httpifbitmask Management Bitmask interfaces disable Interface Bitmask 1 or 3 Ethernet 4 or 6 Wireless 5 or 7 all interfaces default is 7 HTTP Password DisplayString User Defined Ww httppasswd max 64 characters HTTP Port Integer User Defined RW httpport Default 80 Help Link DisplayString User Defined RW httphelplink SSL Status Integer Enable Disable RW ssistatus SSL Certificate DisplayString User Defined Write o sslpassphrase Passphrase nly Avaya Wireless AP 4 5 6 User s Guide A 57 HTTP and HTTPS Commands EN gt NOTE The default path for the Help files is C Program Files Avaya_ Wireless AP HTML index htm Use the forward slash character rather than the back slash character when configuring the Help Link location The AP Help information is available in English French German Italian Spanish and Japanese Syntax Examples Change HTTP Interface Password Device Name gt set httppasswd lt New Password gt HTTP interface password Configure Management Interfaces Device Name gt set httpifbitmask lt see Table A 2 gt Choose from the following values Table A 2 Interface Bitmask Values Interface Bitmask Description 0 or 2 disable all interfaces All management channels disabled 1 or 3 Ethernet only Ethernet only enabled 4 or 6 Wireless only Wireless only enabled 5 or 7 all interfaces All
128. The IP address of a second DNS server on Server IP Address the network The Access Point will attempt to contact the secondary server if the primary server is unavailable DNS Client Default The default domain name for the Domain Name Access Point s network for example avaya com Contact your network administrator if you need assistance setting this parameter Advanced Default TTL Time to Live Time to Live TTL is a field in an IP packet that specifies how long in seconds the packet can remain active on the network The Access Point uses the default TTL for packets it generates for which the transport layer protocol does not specify a TTL value This parameter supports a range from O to 65535 By default TTL is 64 4 12 Avaya Wireless AP 4 5 6 User s Guide el Network DHCP Server If your network does not have a DHCP Server you can configure the AP as a DHCP server to assign dynamic IP addresses to Ethernet nodes and wireless clients A CAUTION Make sure there are no other DHCP servers on the network and do not enable the DHCP server without checking with your network administrator first as it could bring down the whole network Also the AP must be con figured with a static IP address before enabling this feature When the DHCP Server functionality is enabled you can create one or more IP address pools from which to assign addresses to network devices Avaya Wireless AP 4 5 6 User
129. able the SpectraLink Voice over IP feature The Spectralink Legacy Support parameter should be enabled if the AP is operating in 802 11bg mode and legacy 802 11 Spectralink telephones are used This parameter will set the basic rates of the AP to be 1 and 2 Mbps in 802 11bg mode and will allow old telephones that operate only at the 1 and 2 Mbps basic rate to connect to the AP Name Type Values Access CLI Parameter Spectralink VolP Group N A R spectralink Spectralink VolP Integer enable RW speclinkstatus Status disable default Spectralink Legacy Integer enable RW speclinklegacysupport Support disable default A 90 Avaya Wireless AP 4 5 6 User s Guide CT Storm Threshold Commands Storm Threshold Commands Storm Threshold Parameters Name Type Values Access CLI Parameter Storm Threshold Group N A N A stmthres Broadcast Integer 0 255 RW stmbrdthres Threshold packets sec default is 0 Multicast Threshold Integer 0 255 RW stmmultithres packets sec default is 0 Storm Threshold Table Name Type Values Access CLI Parameter Storm Threshold Table N A R stmthrestbl Table Table Index Integer 1 Ethernet R index 3 Wireless 1of2 Avaya Wireless AP 4 5 6 User s Guide A 91 Syslog Commands Name Type Values Access CLI Parameter Broadcast Integer 0 255 RW
130. abled or disabled via the Web interface Place a check mark in the box provided to enable a specific group Remove the check mark from the box to disable the alarms Alarm Severity Levels vary e Configuration Alarm Trap Name Description oriTrapDNSIPNotConfigured This traps is generated when the DNS IP Address has not been configured Severity Level Major Avaya Wireless AP 4 5 6 User s Guide 4 97 Alarms e Security Alarms Trap Name Description oriTrapAuthenticationFailure This trap is generated when a client authentication failure occurs The authentication failures can range from MAC Access Control Table RADIUS MAC Authentication 802 1x Authentication specifying the EAP Type Severity Level Major oriTrapUnauthorizedManager Detected This trap is generated when an unauthorized manager has attempted to view and or modify parameters Severity Level Major 4 98 Avaya Wireless AP 4 5 6 User s Guide aaa Alarms e Wireless Alarms Trap Name Description oriTrapWLCNotPresent When you start the AP this trap is generated when a wireless interface card is not present in the AP Severity Level Informational oriTrapWLCFailure This trap is generated when a general failure occurs with the wireless interface card Severity Level Critical oriTrapWLCRemoval This trap is generated when the wireless inter
131. ails about RADIUS TFTP serial communication programs such as HyperTerminal Telnet applications or web browsers please refer to the documentation that came with the application for assistance Avaya Wireless AP 4 5 6 User s Guide 7 1 Troubleshooting Concepts Troubleshooting Concepts The following list identifies important troubleshooting concepts and topics The most common initialization and installation problems relate to IP addressing For example you must have valid IP addresses for both the AP and the management computer to access the unit s HTTP interface 7 2 IP Address management is fundamental Factory default units are set for Dynamic DHCP IP Address assignment The default IP address for the AP is 169 254 128 132 if your network does not have a DHCP server If you connect the AP to a network with an active DHCP server then use ScanTool to locate the IP address of your unit If a DHCP server is not active on your subnet then use ScanTool to assign a static IP address to the unit The Trivial File Transfer Protocol TFTP provides a means to download and upload files These files include the AP Image executable program and configuration files If the AP password is lost or forgotten you will need to reset to default values The Reset to Factory Default Procedure resets configuration but does not change the current AP Image If all else fails Use the Forced Reload Procedure to erase the curren
132. also referred to as WPA2 and will be available in 2004 gt NOTE For Single radio APs WPA is available for the AP 6 or APs that have an 802 11a b g or 802 11b g upgrade kit WPA is NOT available for the AP 5 or AP 4 Note that while you can select WPA on AP 5 units WPA is not supported for the AP 5 unless you have installed an 802 11a b g upgrade kit 4 124 Avaya Wireless AP 4 5 6 User s Guide nas Security WPA is a replacement for Wired Equivalent Privacy WEP the encryption technique specified by the original 802 11 standard WEP has several vulnerabilities that have been widely publicized WPA addresses these weaknesses and provides a stronger security system to protect wireless networks WPA provides the following new security measures not available with WEP e Improved packet encryption using the Temporal Key Integrity Protocol TKIP and the Michael Message Integrity Check MIC e Per user per session dynamic encryption keys Each client uses a different key to encrypt and decrypt unicast packets exchanged with the AP A client s key is different for every session it changes each time the client associates with an AP The AP uses a single global key to encrypt broadcast packets that are sent to all clients simultaneously Encryption keys change periodically based on the Re keying Interval parameter WPA uses 128 bit encryption keys e Dynamic Key distribution The AP generates
133. aps are sent after completion of a RAD scan cycle and also whenever a new Access Point is detected e Additionally the RAD scan results are maintained in a table that can be queried via SNMP The system administrator has to enable RAD on the Access Points in the wireless network and also configure the Trap Host on all these Access Points to the IP address of the management station The Access Points on detecting a new Access Point sends a RAD Scan Result Trap to the management station Avaya Wireless AP 4 5 6 User s Guide 4 151 Configure Multiple SSID VLAN Security Mode Entries PE Figure 4 21 Example Rogue AP Detection Deployment Trusted AP Rogue AP EA Management Station An example network deployment is shown The Trusted AP has Rogue Access Detection enabled and the trap host is configured to be the management station The Trusted AP on detecting the Rogue AP will send a trap to the management station with the Channel and BSSID of the Rogue Access Point 4 152 Avaya Wireless AP 4 5 6 User s Guide UE Configure Multiple SSID VLAN Security Mode Entries Configuring RAD Perform this procedure to enable RAD and define the Scan Interval The RAD screen also displays the time of the last scan and the number of new access points detected in the last scan 1 Enable the Security Alarm Group Select the Security Alarm Group link from the RAD screen Configure a Trap Host to receive the list of access
134. ar apart physically your AP devices are located which in turn determines the size of your cell Cells of different sizes have different capacities and therefore suit different applications For instance a typical office has many stations that require high bandwidth for complex high speed data processing In contrast a typical warehouse has a few forklifts requiring low bandwidth for simple transactions gt NOTE This feature is not available if you are using an Avaya 802 11a b Card or a non Avaya Wireless client with the AP Cell capacities are compared in the following table which shows that small cells suit most offices and large cells suit most warehouses Small Cell Large Cell Physically accommodates few Physically accommodates many stations stations High cell bandwidth per station Lower cell bandwidth per station High transmit rate Lower transmit rate 4 40 Avaya Wireless AP 4 5 6 User s Guide Ca Interfaces Coverage The number of Access Points in a set area determines the network coverage for that area A large number of Access Points covering a small area is a high density cell A few Access Points or even a single unit covering the same small area would result in a low density cell even though in both cases the actual area did not change only the number of Access Points covering the area changed In a typical office a high density area consists of a number of Access Points
135. ate Key the private key for encryption in SSL communications 5 Inthe File Operation field select either Update AP or Update AP amp Reboot You should reboot the AP after downloading files 6 10 Avaya Wireless AP 4 5 6 User s Guide Update AP by Using HTTP Update AP by Using HTTP Use the Update AP via HTTP tab to download Configuration AP Image Bootloader files and Certificate and Private Key files to the AP 1 Once on the Update AP screen click on the via HTTP tab The Update AP via HTTP tab shows version information and allows you to enter HTTP information as described below Figure 6 4 Update AP via HTTP Command Screen UndateaP RetrieveFile W Reboot XA Hetpline Status a via TFTP yia HTTP i Configure This page is used to update software images and configuration files in the Access Point using HTTP file transfer Click on the browse button to search for the file or enter the path in the text box Select the file type and click the Update AP button to Monitor start the file transfer ag r System Information Commands Help pa File Type Image pd xi File Name CAAP2000 sei Browse Update AP Cancel Avaya Wireless AP 4 5 6 User s Guide 6 11 Update AP by Using HTTP rn 2 Select the File Type that needs to be updated from the drop down box Choices include Config for configuration information such as System Name Contact Name and so on Image for the AP Image ex
136. ation requests sent from the RADIUS client in the AP Trap Severity Level Major oriTrapModuleNotInitialized This trap is generated when a certain software or hardware module is not initialized or fails to initialize Trap Severity Level Major oriTrapDeviceRebooting This trap is generated when the AP is rebooting Trap Severity Level Informational 1of2 Avaya Wireless AP 4 5 6 User s Guide 4 101 Alarms Trap Name Description oriTrap TaskSuspended This trap is generated when a software task in the AP is suspended Trap Severity Level Critical oriTrapBootPFailed In bootloader mode this trap is generated when the AP does not receive a response from the BootP server The result is that the Access Point reverts to its static IP configuration and you will need to set reset configuration options Trap Severity Level Major oriTrapDHCPFailed In operational mode this trap is generated when the AP does not receive a response from the DHCP server The result is that the Access Point reverts to its static IP configuration and you will need to set reset configuration options Trap Severity Level Major 2 of 2 4 102 Avaya Wireless AP 4 5 6 User s Guide hea Alarms e FLASH Memory Alarms Trap Name Description oriTrapFlashMemoryEmpty This trap is generated when an error occurs while downloading a file to the AP an
137. available commands and parameters A 14 Avaya Wireless AP 4 5 6 User s Guide CLI Help The following table lists each operation and provides a basic example Detailed examples and display results for each operation follow the table Operation Basic Example Display the command list see Example 1 Displaying the command list Device Name gt Display commands that start with specified letters see Example 2 Displaying specific commands Device Name gt s Display parameters for set and show commands see Example 3 Displaying parameters for set and show commands Device Name gt set Device Name gt show ipa Prompt to enter successive parameters for commands see Example 4 Displaying prompts for successive parameters Device Name gt download Example 1 Displaying the command list To display the command list enter Device Name gt Avaya Wireless AP 4 5 6 User s Guide A 15 CLI Help mj Figure A 3 Result of CLI command Device Name 1 gt show set download upload reboot passwd help quit done exit history search Device Name _ Example 2 Displaying specific commands To show all commands that start with specified letters enter one or more letters then with no space between letters and Device Name gt s Figure A 4 Result of s CLI command Device Name gt s
138. b g mode This is the default mode Use this mode if you want to support a mix of 802 11b and 802 11g devices 802 11g wifi This mode was developed for Wi Fi compliance testing purposes It is similar to 802 11g only mode In general you should use either 802 119 only mode if you want to support 802 11g devices only or 802 11b g mode to support a mix of 802 11b and 802 11g devices 10f7 4 52 Avaya Wireless AP 4 5 6 User s Guide Interfaces Parameter Description Physical Interface Type Depending on the Operational Mode this field reports e For 802 11b mode only 802 11b CCK DSSS 2 4 GHz e For 802 11g and 802 11g wifi modes 802 11g OFDM DSSS 2 4 GHz e For 802 11b g mode 802 11b g ERP CCK DSSS OFDM 2 4 GHz e For 802 11a mode only this field reports 802 11a OFDM 5 GHz OFDM stands for Orthogonal Frequency Division Multiplexing this is the name for the radio technology used by 802 11a devices DSSS stands for Direct Sequence Spread Spectrum this is the name for the radio technology used by 802 11b devices MAC Address This is a read only field that displays the unique MAC Media Access Control address for the Access Point s wireless interface The MAC address is assigned at the factory 20f7 Avaya Wireless AP 4 5 6 User s Guide 4 53 Interfaces Ka Parameter Description Regulatory Reports the
139. bcast Threshold packets sec default is 0 Multicast Threshold Integer 0 255 RW mcast packets sec default is 0 2of2 Syslog Commands Syslog Parameters The following parameters configure the Syslog settings Name Type Values Access CLI Parameter Syslog Group N A R syslog Syslog Status Integer enable RW syslogstatus disable default Syslog Port Octet String 514 R syslogport 1of2 A 92 Avaya Wireless AP 4 5 6 User s Guide Ca Syslog Commands Name Type Values Access CLI Parameter Syslog Lowest Integer 1 7 RW syslogpritolog Priority Logged 1 LOG ALERT 2 LOG_CRIT 3 LOG_ERR 4 LOG_ WARNING 5 LOG NOTICE 6 LOG_INFO default 7 LOG_DEBUG Heartbeat Status Integer enable 1 RW sysloghbstatus disable 2 default Heartbeat Interval Integer 1 604800 RW sysloghbinterval seconds seconds 900 sec default 2 of 2 gt NOTE The Heartbeat parameters are advanced settings not available via the HTTP interface When Heartbeat is enabled the AP periodically sends a message to the Syslog server to indicate that it is active The frequency with which the heartbeat message is sent depends upon the setting of the Heartbeat Interval Avaya Wireless AP 4 5 6 User s Guide A 93 Syslog Commands Syslog Host Table Parameters The table described below configures the Syslog hosts that will receive message from the AP Y
140. be changed under normal circumstances Range is O to 2347 When set to a value between 0 and 2347 the Access Point uses the RTS CTS mechanism for packets that are the specified size or greater When set to 2347 the default setting RTS CTS is disabled See RTS CTS Medium Reservation for more information Closed System Check this box to allow only clients configured with the Access Point s specific Network Name to associate with the Access Point When enabled a client configured with the Network Name ANY cannot connect to the AP This option is disabled by default 5 of 5 4 50 Avaya Wireless AP 4 5 6 User s Guide Ea Wireless 802 11a g Interfaces You can configure and view the following parameters within the Wireless Interface Configuration screen for an 802 11a g AP gt NOTE You must reboot the Access Point before any changes to these parameters take effect Avaya Wireless AP 4 5 6 User s Guide 4 51 Interfaces Parameter Description Operational Mode An 802 11a g wireless interface can be configured to operate in the following modes 802 11b mode only The radio uses the 802 11b standard only 802 11g mode only The radio is optimized to communicate with 802 11g devices This setting will provide the best results if this radio interface will only communicate with 802 11g devices 802 11a mode only The radio uses the 802 11a standard only 802 11
141. be how to configure an AP over an Ethernet connection using ScanTool and the HTTP interface If you want to configure the unit over the serial port see Setting IP Address using Serial Port for information on how to access the CLI over a serial connection and The Command Line Interface for a list of supported commands Avaya Wireless AP 4 5 6 User s Guide 2 17 Initialization kaan ScanTool ScanTool is a software utility that is included on the installation CD ROM ScanTool allows you to find the IP address of an Access Point by referencing the MAC address in a Scan List or to assign an IP address if one has not been assigned ScanTool automatically e detects the Access Points installed on your network regardless of IP address e lets you configure each unit s IP settings and e allows you to download new software to an AP that does not have a valid software image installed see Client Connection Problems To access the HTTP interface and configure the AP the AP must be assigned an IP address that is valid on its Ethernet network By default the AP is configured to obtain an IP address automatically from a network Dynamic Host Configuration Protocol DHCP server during boot up If your network contains a DHCP server you can run ScanTool to find out what IP address the AP has been assigned Default IP Address If your network does not contain a DHCP server the Access Point s IP address defaults to 169 254 128 132 In t
142. bel Alternatively use ScanTool to identify an Access Point s current IP address Once you have the current IP address use the HTTP or CLI Interface to change the unit s IP settings if necessary If you use static IP Address assignments and cannot access the unit over Ethernet use the Initializing the IP Address using CLI procedure Once the IP Address is set you can use the Ethernet Interface to complete configuration Avaya Wireless AP 4 5 6 User s Guide CO FX Symptoms and Solutions 6 Perform the Reset to Factory Default Procedure in this guide This will reset the unit to DHCP mode If there is a DHCP Server on the network the DHCP Server will assign an IP Address to the AP HTTP browser or Telnet Interface Does Not Work 1 Make sure you are using a compatible browser Microsoft Internet Explorer 6 with Service Pack 1 or later Netscape 6 1 or later 2 Make sure you have the proper IP address Enter your Access Point s IP Address in the browser address bar similar to this example http 192 168 1 100 When the Enter Network Password window appears leave the User Name field empty and enter the HTTP password in the Password field The default HTTP password is public 3 Use the CLI over the serial port to check the IP Access Table which can be restricting access to Telnet and HTTP Avaya Wireless AP 4 5 6 User s Guide 7 7 Symptoms and Solutions CO HTML Help Files Do No
143. cating with the Wired Server e Wired MAC Address 00 40 F4 1C DB 6A e Wired Mask FF FF FF FF FF FF e Wireless MAC Address 00 02 2D 51 94 E4 e Wireless Mask FF FF FF 00 00 00 Result When a logical AND is performed on the Wireless MAC Address and Wireless Mask the result corresponds to any MAC address beginning with the 00 20 2D prefix Since Wireless Client 1 and Wireless Client 2 share the same prefix 00 02 2D traffic between the Wired Server and Wireless Clients 1 and 2 is blocked Wireless Client 3 can still communicate with the Wired Server since it has a different prefix 00 20 A6 4 90 Avaya Wireless AP 4 5 6 User s Guide Ca Filtering Prevent All Wireless Devices From Communicating With a Single Wired Device Configure the following settings to prevent all three Wireless Clients from communicating with Wired Server 1 e Wired MAC Address 00 40 F4 1C DB 6A e Wired Mask FF FF FF FF FF FF e Wireless MAC Address 00 00 00 00 00 00 e Wireless Mask 00 00 00 00 00 00 Result The Access Point blocks all traffic between Wired Server 1 and all wireless clients Prevent A Wireless Device From Communicating With the Wired Network Configure the following settings to prevent Wireless Client 3 from communicating with any device on the Ethernet e Wired MAC Address 00 00 00 00 00 00 e Wired Mask 00 00 00 00 00 00 e Wireless MAC Address 00 20 A6 12 4E 38 e Wireless Mask FF FF FF FF FF FF Result The Acc
144. ce the system name is anyway limited to 32 bytes e All invalid characters at the beginning or end of the string are replaced with the character X e All other invalid characters are replaced with hyphens 4 8 Avaya Wireless AP 4 5 6 User s Guide Network Network The Network category contains three sub categories e IP Configuration e DHCP Server e Link Integrity IP Configuration You can configure and view the following parameters within the IP Configuration screen gt NOTE You must reboot the Access Point in order for any changes to the Basic IP or DNS Client parameters take effect Avaya Wireless AP 4 5 6 User s Guide 4 9 Network Basic IP Parameters Parameter Description IP Address Assignment Type Set this parameter to Dynamic to configure the Access Point as a Dynamic Host Configuration Protocol DHCP client the Access Point will obtain IP settings from a network DHCP server automatically during boot up If you do not have a DHCP server or if you want to manually configure the Access Point s IP settings set this parameter to Static IP Address The Access Point s IP address When IP Address Assignment Type is set to Dynamic this field is read only and reports the unit s current IP address The Access Point will default to 169 254 128 132 if it cannot obtain an address from a DHCP server 1of2 4 10 Avaya Wireless AP 4 5 6 User s Guide
145. ceiling or desktop mounting includes two screws e Mounting hardware Four 3 5 mm x 40 mm screws Four 6 mm x 35 mm plugs e One power supply e One Installation CD ROM that contains the following Software Installation Wizard ScanTool Solarwinds TFTP software HTML Help this user s guide in PDF format e One Access Point Quick Start Guide If any of these items are missing or damaged please contact your reseller or Technical Support see Technical Support for contact information Avaya Wireless AP 4 5 6 User s Guide 2 5 System Requirements CO MiniPCI Upgrade Kits Single radio APs can be fitted with different radio types MiniPCl upgrade kits are available for 802 11a b g and 802 11b g wireless cards Each kit is composed of a single miniPCI board with an integral antenna attached The type of radio is indicated on the label on the antenna and instructions on how to open your AP to replace the radio are provided with the kit System Requirements The following are the minimum requirements to begin using an AP e A 10Base T Ethernet or 100Base TX Fast Ethernet switch or hub e Atleast one of the following IEEE 802 11 compliant devices You will need an If you have an 802 11a client device 802 11a AP 802 11b or 802 11b g client device 802 11b AP 802 11b g client device 802 11b g AP 802 11a g client device 802 11a g AP 2 6 Avaya Wireless AP 4 5 6 User
146. ces LinkTest version ICMP IPARPTable LeamTable Status This tab provides details on the IP Address Resolution Protocol ARP table This table displays IP to MAC address resolution and the interface on which it was detected Configure Interface 1 Ethernet Interface 3 Wireless Monitor Commands Help Interface MAC Address IP Address Media Type Exit Avaya Wireless AP 4 5 6 User s Guide 5 9 Leam Table rs Learn Table This tab displays information relating to network bridging It reports the MAC address for each node that the device has learned is on the network and the interface on which the node was detected There can be up 10 000 entries in the Learn Table Figure 5 6 Learn Table IAPP RADIUS Interfaces Link Test Version ICMP IP ARP Table Learn Table i Status This tab displays the bridge learn table that contains MAC addresses and port numbers on which wired hosts and wireless clients reside Configure O Monitor MAC Address 0 Commands Help Exit 5 10 Avaya Wireless AP 4 5 6 User s Guide aa IAPP IAPP This tab displays statistics relating to client handovers and communications between Avaya Wireless Access Points Figure 5 7 IAPP Screen Version ICMP IP ARP Table LeamTable APP RADIUS i Interfaces w Link Test i Status This tab displays Inter Access Point Protocol IAPP statistics Statistics include IAPP packets received and tran
147. ces do not use the same frequency Available Channels vary based on regulatory domain See 802 11a Channel Frequencies Note that you cannot manually set the channel for 802 11a products in Europe see Dynamic Frequency Selection DFS for details 3 of 5 4 26 Avaya Wireless AP 4 5 6 User s Guide Interfaces Parameter Description Transmit Rate Use the drop down menu to select a specific transmit rate for the AP Choose between 6 9 12 18 24 36 48 54 Mbits s and Auto Fallback Auto Fallback is the default setting it allows the AP unit to select the best transmit rate based on the cell size DTIM Period The Deferred Traffic Indicator Map DTIM is used with clients that have power management enabled DTIM should be left at 1 the default value if any clients have power management enabled This parameter supports a range between 1 and 255 4of5 Avaya Wireless AP 4 5 6 User s Guide 4 27 Interfaces Parameter Description RTS CTS Medium Reservation This parameter affects message flow control and should not be changed under normal circumstances Range is 0 to 2347 When set to a value between 0 and 2347 the Access Point uses the RTS CTS mechanism for packets that are the specified size or greater When set to 2347 the default setting RTS CTS is disabled See RTS CTS Medium Reservation for more information Closed System
148. ces tab you configure the Access Point s operational mode power control settings wireless interface settings and Ethernet settings You may also configure a Wireless Distribution System for AP to AP communications For the wireless interface configuration refer to the wireless parameters below that correspond to your radio type Operational Mode Wireless 802 11a Wireless 802 11b Wireless 802 1 1b g Wireless 802 1 1a g Wireless Distribution System WDS Ethernet Avaya Wireless AP 4 5 6 User s Guide 4 21 Interfaces km Operational Mode You can configure and view the following parameters within the Operational Mode screen e Operational Mode the mode of communication between the wireless clients and the Access Point 802 11b only 802 11g only 802 11bg 802 11a default 802 11g wifi TX Power Control The TX Power Control feature lets you configure the transmit power level of the card in the AP at one of four levels e 100 of the maximum transmit power level of the card e 50 e 25 e 12 5 4 22 Avaya Wireless AP 4 5 6 User s Guide RS o Configuring TX Power Control Interfaces 1 Click Configure gt Interfaces gt Operational Mode 2 Select Enable Transmit Power Control 3 Select the transmit power level for interface A from the Wireless A Transmit Power Level drop down menu 4 Click OK Figure 4 5 Operational Mode Screen TX Power Control Alarms Bri
149. check mark in the box provided to enable WEP encryption See WEP Encryption for more information 3 of 5 2 42 Avaya Wireless AP 4 5 6 User s Guide ma Initialization Option Description Set Encryption Key 1 If you enabled Encryption configure an Encryption Key This key is used to encrypt and decrypt data between the AP and its wireless clients Enter the number of characters that correspond to the desired key size as described below e Enter 10 hexadecimal characters 0 9 and A F or 5 ASCII characters see ASCII Character Chart to use 64 bit encryption e Enter 26 hexadecimal characters or 13 ASCII characters to use 128 bit encryption e Enter 32 hexadecimal characters or 16 ASCII characters to use 152 bit encryption 4of5 Avaya Wireless AP 4 5 6 User s Guide 2 43 Initialization i Option Description Set Encryption Key 1 gt NOTE continued Additional advanced settings are available in the Wireless Interface Configuration screen See Wireless 802 114 Wireless 802 11b or Wireless 802 11b g for details See Security for more information on security features 5 of 5 10 Review the configuration summary If you want to make any additional changes use the navigation panel on the left hand side of the screen to return to an earlier screen After making a change click Save amp Next to save the change and proceed
150. clients to be on the same physical segment no matter where they are attached on the logical LAN or WAN segment They simplify traffic flow between clients and their frequently used or restricted resources VLANs now extend as far as the reach of the access point signal Clients can be segmented into wireless sub networks via SSID and VLAN assignment A Client can access the network by connecting to an AP configured to support its assigned SSID VLAN AP devices are fully VLAN ready however by default VLAN support is disabled Before enabling VLAN support certain network settings should Avaya Wireless AP 4 5 6 User s Guide 4 131 SSID VLAN and Security Modes A be configured and network resources such as a VLAN aware switch a RADIUS server and possibly a DHCP server should be available Once enabled VLANs are used to conveniently efficiently and easily manage your network in the following ways e Manage adds moves and changes from a single point of contact e Define and monitor groups e Reduce broadcast and multicast traffic to unnecessary destinations Improve network performance and reduce latency e Increase security Secure network restricts members to resources on their own VLAN Clients roam without compromising security VLAN tagged data is collected and distributed through an AP s wireless interface s based on Network Name SSID An Ethernet port on the access point connects a wireless cell or net
151. d Australia ETSI Most of Europe including the United Kingdom Ireland Singapore and Hong Kong e MKK Japan e IL Israel Network Name Enter a Network Name between 2 and 31 SSID characters long for the wireless network You must configure each wireless client to use this name as well 20f9 4 32 Avaya Wireless AP 4 5 6 User s Guide eee Interfaces Parameter Description Auto Channel The AP scans the area for other Select Access Points and selects a free or relatively unused communication channel This helps prevent interference problems and increases network performance By default this feature is enabled see 802 11b Channel Frequencies for a list of Channels However if you are setting up a Wireless Distribution System WDS it must be disabled See Wireless Distribution System WDS for more information Frequency When Auto Channel Select is enabled this Channel field is read only and displays the Access Point s current operating channel When Auto Channel Select is disabled you can specify the Access Point s operating channel If you decide to manually set the unit s channel ensure that nearby devices do not use the same frequency unless you are setting up a WDS Available Channels vary based on regulatory domain See 802 11b Channel Frequencies 3 of 9 Avaya Wireless AP 4 5 6 User s Guide 4 33 Interfaces lt Parameter Descr
152. d RADIUS servers MAC Access Control by Means of RADIUS Authentication If you want to control wireless access to the network and if your network includes a RADIUS Server you can store the list of MAC addresses on the RADIUS server rather than configure each AP individually From the RADIUS Authentication tab you can define the IP Address of the server that contains a central list of MAC Address values that identify the authorized stations that may access the wireless network You must specify information for at least the primary RADIUS server The back up RADIUS server is optional 4 156 Avaya Wireless AP 4 5 6 User s Guide a sapin gt NOTE Contact your RADIUS server manufacturer if you have problems configuring the server or have problems using RADIUS authentication Follow these steps to enable RADIUS MAC Access Control 1 Within the RADIUS Auth screen place a check mark in the box labeled Enable RADIUS MAC Access Control 2 Place a check mark in the box labeled Enable Primary RADIUS Authentication Server 3 If you want to configure a back up RADIUS server place a check mark in the box labeled Enable Back up RADIUS Authentication Server 4 Enter the time in seconds each client session may be active before being automatically re authenticated in the Authorization Lifetime field The Authorization Lifetime default is 0 reauthentication is disabled The configurable range is from 900 seconds to 43200 seconds
153. d blank By default the HTTP password is public Result The System Status screen appears Figure 6 1 Enter Network Password Screen D gt Please type your user name and password Site 192 168 0 3 Realm Access Product User Name Password I Save this password in your password list Cancel 5 Click the Commands button located on the left hand side of the screen 6 4 Avaya Wireless AP 4 5 6 User s Guide ase EO Introduction to File Transfer via TFTP or HTTP Figure 6 2 Commands Main Screen Update AP i Retrieve File Reboot 1 1 Help Link i Status Commands Fi TI ir that ti int Configure here are five commands that can be executed on the access poini Monitor Update AP is used to upload files via TFTP HTTP to the access point This feature can be used to upgrade the access point and upload configuration files Commands Retrieve File is used to retrieve configuration file from the access point via TFTP HTTP This feature can be used to backup the access point configuration file Help Reboot allows you to reboot the access point in the specified number of seconds Exit Reset will reset all the configuration settings of the access point to the factory default values Help Link is used to configure where the access point help information can be retrieved 6 Click the tab that corresponds to the command you want to issue For example click Reboot to restart the unit Introduct
154. d no data is present in the flash memory Severity Level Informational oriTrapFlashMemoryCorrupted This trap is generated when an error occurs while downloading a file to the AP and the data in the flash memory is invalid or corrupted Severity Level Critical Avaya Wireless AP 4 5 6 User s Guide 4 103 Alarms si e TFTP Alarms Trap Name Description oriTrapTFTPFailedOperation This trap is generated when a failure occurs during a TFTP upload or download operation Severity Level Major oriTrapTFTPOperationInitiated This trap is generated when a 4 104 TFTP upload or download operation is started Severity Level Informational oriTrapTFTPOperationCompleted This trap is generated when a TFTP operation is complete upload or download Severity Level Informational Image Alarms Trap Name Description oriTrapZeroSizelmage This trap is generated when a zero size image is loaded on the AP Trap Severity Level Major 10f 2 Avaya Wireless AP 4 5 6 User s Guide as Alarms Trap Name Description oriTrapInvalidlmage This trap is generated when an invalid image is loaded in the Access Point Trap Severity Level Major oriTraplmageTooLarge This trap is generated when the image loaded in the AP exceeds the size limitation of the flash memory Trap Severity Level Major oriTrapIncompatiblelmage This trap
155. d time search Lists the parameters in a specified Table set Configures the value of the specified parameter show Displays the value of the specified parameter or displays all parameter values of a specified group parameter table upload Uses TFTP server to upload configuration files from Access Point to TFTP default directory or specified path Avaya Wireless AP 4 5 6 User s Guide CLI Commands done Ends a CLI session Device Name gt done The exit and quit commands perform the same action download Downloads the specified file from a TFTP server to the Access Point Executing download in combination with the asterisk character will make use of the previously set TFTP parameters Executing download without parameters will display command help and usage information Syntax Action Syntax Downloads a file Device Name gt download lt tftp server address gt lt path and filename gt lt file type gt 1of2 Avaya Wireless AP 4 5 6 User s Guide A 25 CLI Commands Action Syntax Displays help and usage information Device Name gt download Executes the download command using previously set stored TFTP parameters Device Name gt download 2 of 2 Example Device Name gt download 192 168 exit Ends a CLI session Device Name gt exit 1 100 APImage2 img The done and quit commands perf
156. des information on how to configure encryption keys using HEX or ASCII values Help Configuration in Hex Configuration in 64 bit encryption key 10 charact 0 F 5 alphanumeric characters 128 bit encryption key 26 characters 0 F 13 alphanumeric characters Exit 152 bit encryption key 32 characters 0 F 16 alphanumeric characters Note Changes to these parameters require access point reboot in order to take effect Network name SSID VLAN ID 0 4094 untagged untagged Security Mode Encryption Key 0 Encryption Key 1 Encryption Key 2 Encryption Ke Encryption Transmit Key Encryption Key Length 4 140 Avaya Wireless AP 4 5 6 User s Guide Configure Multiple SSID VLAN Security Mode Entries b Enter a Network Name SSID between 2 and 31 characters in the field provided This parameter is mandatory c Enter a VLAN ID in the field provided This parameter is mandatory You must specify a unique VLAN ID for each SSID on the interface As defined by the 802 1Q standard a VLAN ID is a number between 1 and 4094 A value of 1 means that an entry is untagged You can set the VLAN ID to 1 or untagged if you do not want clients that are using a specific SSID to be members of a VLAN workgroup Only one untagged VLAN ID is allowed per interface The VLAN ID must match an ID used by your network contact your network administrator if you need assistance defining the VLAN IDs d Selec
157. dge Security RADIUS VLAN X System Network Interfaces i Management i Filtering Status Operational Mode X Wireless Ethernet i Ontigure The operational mode of the wireless interface determines the mode of communication between wireless clients and the access point Monitor Note Changes to these parameters require access point reboot in order to take effect Note Select the desired operational mode prior to configuring other wireless interface Commands parameters Heie Wireless A Operational Mode 802 11bg X Exit Enable TX Power Control Wireless A Transmit Power Level Avaya Wireless AP 4 5 6 User s Guide 0 10096 x Cancel S 4 23 Interfaces Wireless 802 11a You can configure and view the following parameters within the Wireless Interface Configuration screen for an 802 11a AP gt NOTE You must reboot the Access Point before any changes to these parameters take effect Parameter Description Physical Interface Type For an 802 11a AP this field reports 802 11a OFDM 5 GHz OFDM stands for Orthogonal Frequency Division Multiplexing this is the name for the radio technology used by 802 11a devices MAC Address This is a read only field that displays the unique MAC Media Access Control address for the Access Point s wireless interface The MAC address is assigned at the factory 10f 5 4 24 Avaya Wireless AP 4 5 6 User s
158. e Integer ofdm orthogonal frequency division multiplexing for 802 11a phytype always enabled Note 1 For 802 11a APs in Europe Auto Channel Select is a read only parameter it is 2 of 2 A 104 Avaya Wireless AP 4 5 6 User s Guide 802 11a Wireless Interface Commands Syntax Examples Network Name SSID Device Name gt set wif lt index 3 gt netname lt Network Name SSID for wireless interface gt Device Name gt show wif Figure A 20 Results of show wif CLI command for an AP Device Name gt show wif Wireless Interface Table Network Name Distance Between APs Interference Robustness DTIM Period Automatic Channel Selection Frequency Channel RTS CTS Medium Reservation Multicast Rate Closed System Load Balancing Medium Density Distribution MAC Address Supported Data Rates Supported Frequency Channels Physical Layer Type Regulatory Domain List Transmit Rate Turbolode Avaya Wireless AP 4 5 6 User s Guide 3 My Wireless Network A large disable 4 enable 56 2347 2 MBps disable enable disable 66 36 F1 65 609 E9 6 9 12 18 24 36 48 54 52 56 66 64 36 46 44 48 149 153 157 161 OFDH USA FCC 6 disable A 105 802 11a Wireless Interface Commands D a Operational Mode Device Name gt set wif lt index gt mode lt see table gt Mode Operational Mode 1 dot11b only 2 dot11g only 3 d
159. e gt NOTE Sixteen VLAN SSID pairs are available for the AP 6 and APs that have an 802 11a b g or 802 11b g Upgrade Kit installed The AP 5 and AP 4 support only one VLAN SSID pair Name Type Values Access CLI Parameter VLAN ID Table Table N A R vlanidtbl Index Integer32 3 1 3 16 Wireless R index A 4 1 4 16 Wireless B Dual radio APs only Identifier ID Vlan Id 1 or O both RW id correspond to untagged or 1 4094 Network Name Display String 2 31 characters RW ssid SSID Status Integer enable default when RW status new entry created disable delete Note 1 When adding a new entry to the table you must specify the index instance you want to configure such as 3 5 the 0 index value is not applicable to this table and does not create a new entry A 126 Avaya Wireless AP 4 5 6 User s Guide Ea VLAN SSID Pair Commands Syntax Examples Enable VLAN Management Device Name gt set vlanstatus enable Device Name gt set vlanmgmtid lt 1 4094 gt Device Name gt show vlandidtbl gt reboot 0 to review your settings Device Name Disable VLAN Management Device Name gt set vlanstatus disable or Device Name gt set vlanmgmtid 0 Device Name gt reboot 0 Add an Entry to the VLAN ID Table Device Name gt set vlanidtbl lt index number see table gt id lt 1 4094 l untagged gt ssid lt ent
160. e 4 62 Avaya Wireless AP 4 5 6 User s Guide ee interfaces 8 Click OK 9 Reboot the AP Figure 4 9 WDS Configuration Wireless Distribution System WDS WDS can be used to establish point to point i e wireless backhaul connections with other access points This table is used to configure WDS partner access points Edit i Port Index Partner MAC Address Status 1 00 02 2D 12 34 56 Disable 2 00 00 00 00 00 00 Disable 3 00 00 00 00 00 00 Disable 00 00 00 00 00 00 Disable 00 00 00 00 00 00 Disable 00 00 00 00 00 00 Disable gt NOTE To set up a Wireless Distribution System WDS with 802 1x set each Access Point s 802 1x Security Mode to Mixed and assign each unit in the WDS the same Encryption Key 1 See Security Avaya Wireless AP 4 5 6 User s Guide 4 63 Management kaan Ethernet Select the desired speed and transmission mode from the drop down menu Half duplex means that only one side can transmit at a time and full duplex allows both sides to transmit When set to auto duplex the AP negotiates with its switch or hub to automatically select the highest throughput option supported by both sides For best results Avaya recommends that you configure the Ethernet setting to match the speed and transmission mode of the device the Access Point is connected to such as a hub or switch If in doubt leave this setting at its default auto speed auto duplex Choose between e 10 Mbit s half dup
161. e e Zero Image size e Large image size e Non VxWorks image e AP image e Digital signature verification If any of the above checks fail on the downloaded image the Access Point deletes the downloaded image and retains the old image Otherwise if all checks pass successfully the AP deletes the old image and retains the downloaded image These checks ensure that the AP does not enter an invalid image state The storage of the two images is only temporary to ensure the proper verification the two images are not be stored in the AP permanently Image error checking functions automatically in the background No user configuration is required Avaya Wireless AP 4 5 6 User s Guide 6 7 Update AP by Using TFTP EC Update AP by Using TFTP Use the Update AP via TFTP tab to download Configuration AP Image Bootloader files and Certificate and Private Key files to the AP A TFTP server must be running and configured to point to the directory containing the file If you do not have a TFTP server installed on your system install the TFTP server from the Avaya Wireless CD You can either install the TFTP server from the CD Wizard or run OEM TFTP Server exe found in the CD s Xtras SolarWinds sub directory 1 Once on the Update AP screen click on the via TFTP tab The Update AP via TFTP tab shows version information and allows you to enter TFTP information as described below 6 8 Avaya Wireless AP 4 5 6 User s Guide
162. e http www kensington com for information on Kensington security solutions Figure 2 14 Kensington Security Slot Avaya Wireless AP 4 5 6 User s Guide Additional Hardware Features p j Power over Ethernet An Power over Ethernet enabled AP is equipped with an 802 3af compliant Power over Ethernet module Power over Ethernet PoE delivers both data and power to the access point over a single Ethernet cable If you choose to use Power over Ethernet there is no difference in operation the only difference is in the power source The Power over Ethernet PoE integrated module receives 48 VDC over a standard Category 5 Ethernet cable To use Power over Ethernet you must have an PoE hub also known as a power injector connected to the network The cable length between the PoE hub and the Access Point should not exceed 100 meters approximately 325 feet The PoE hub is not a repeater and does not amplify the Ethernet data signal If connected to an PoE hub and an AC power simultaneously the Access Point draws power from Power over Ethernet Maximum power supplied to an Access Point is 11 Watts the unit typically draws approximately 10 Watts Also see Hardware Specifications gt NOTE The AP s 802 3af compliant Power over Ethernet module is backwards compatible with all Avaya Wireless Power over Ethernet hubs that do not support the IEEE 802 3af standard 2 56 Avaya Wireless AP 4 5 6 User s Guide
163. e o UA Introduction to Wireless Networking Site Survey To determine the best location for an Access Point Avaya recommends conducting a Site Survey before placing the device in its final location For information about how to conduct a Site Survey contact your local reseller Before an Access Point can be configured for your specific networking requirements it must first be initialized See Getting Started for details Figure 1 1 Typical wireless network access infrastructure l Coverage es Area Avaya Wireless AP 4 5 6 User s Guide 1 3 Introduction to Wireless Networking CO Once initialized the network administrator can configure each unit according to the network s requirements The AP functions as a wireless network access point to data networks An AP network provides e Seamless client roaming e Easy installation and operation e Over the air encryption of data e High speed network links To be fully operational the AP 3 needs at least one wireless card installed Guidelines for Roaming Wireless Standard Support An AP can only communicate with client devices that support its wireless standard For example an 802 11a client cannot communicate with an 802 11b AP and an 802 11b client cannot communicate with an 802 11a AP However both 802 11b and 802 11g clients can communicate with an 802 11b g AP 1 4 Avaya Wireless AP 4 5 6 User s Guide Introduction to Wireless Networking Network Names
164. e C 1 Number of Stations per BSS 0 ee eee C 2 Management Functions aaa C 2 Advanced Bridging Functions Xa wa KA AWA KARNE NAWANG C 3 Medium Access Control MAC Functions C 4 SOY FUNCIONE 2205 hicks hawed Race RARE Pega ge aE aE C 5 Network Functions 22265 oe 54546845 C485 36eeG doo so 5988554 C 7 Advanced Wireless Functions 00 0 00e0ees C 8 Hardware Specifications 0c eee eee C 9 Physical Specifications 244448 ee exe ARR AR RE Ka eeenaHeeeaa C 9 Electrical Specincalionss s 23544264 oo bheee RANI NANA SR DANGWA C 9 10 Avaya Wireless AP 4 5 6 User s Guide Environmental Specifications 002000005 C 10 Radio SpeCnealone paa ved s he Gus SRS Ree eek OA HS see Seo C 11 802 11a Channel Frequencies aa anaana naana C 12 802 11b Channel Frequencies anaana anaana C 14 802 11g Channel Frequencies 0 2005 C 16 Wireless Communication Range 0 eee eens C 18 D Technical Support nawa RAA WEEE swans D 1 Before You Seek Help 2 0 0222 eee eee eee D 1 Avaya Wireless AP 4 5 6 User s Guide 11 12 Avaya Wireless AP 4 5 6 User s Guide AVAYA Introduction 1 In This Chapter The following topics are covered in this section e Document Conventions e Introduction to Wireless Networking e IEEE 802 11 Specifications e Management and Monitoring Capabilities Document Conventions The term AP refers to
165. e Critical e Major e nformational Avaya Wireless AP 4 5 6 User s Guide 4 107 Alarms C Critical alarms will often result in severe disruption in network activity or an automatic reboot of the AP Major alarms are usually activated due to a breach in the security of the system Clients cannot be authenticated or an attempt at unauthorized access into the AP has been detected Informational alarms are there to provide the network administrator with some general information about the activities the AP is performing Alarm Host Table Add an Entry or Enable the AP To add an entry and enable the AP to send SNMP trap messages to a Trap Host click Add and then specify the IP Address and Password gt NOTE Up to 10 entries are possible in the Alarm Host table IP Address Enter the Trap Host IP Address e Password Enter the password in the Password field and the Confirm field e Comment Enter an optional comment such as the alarm trap host station name 4 108 Avaya Wireless AP 4 5 6 User s Guide Ca Alarms Edit or Delete an Entry To edit or delete an entry click Edit Edit the information or select Enable Disable or Delete from the Status drop down menu Syslog The Syslog messaging system enables the AP to transmit event messages to a central server for monitoring and troubleshooting The AP can send messages to one Syslog server it cannot send messages to more than one Syslog server The access
166. e File Name field enter the name of the file to be uploaded 4 Click the Retrieve Config File button to initiate the upload of the Configuration file from the AP to the TFTP server Avaya Wireless AP 4 5 6 User s Guide 6 15 Upload File by Using HTTP e gt NOTE For information on how to download the file from the TFTP server to the AP see Update AP by Using TFTP Upload File by Using HTTP Use the Retrieve File via HTTP tab to upload the configuration file from the AP 1 Once on the Retrieve File screen click the via HTTP tab The Retrieve File via HTTP tab shows version information Figure 6 9 Retrieve File via HTTP Command Screen Update AP Retrieve File A F t tese Help Link i Status via TFTP vaHTTP AM Configure This page is used to retrieve the configuration file from the Access Point using HTTP file transfer Click the Retrieve Config File button to start the file transfer Monito 5 nate System Information ommands Help Retrieve Config File g Exit 6 16 Avaya Wireless AP 4 5 6 User s Guide Upload File by Using HTTP 2 Click on the Retrieve Config File button to initiate this operation The AP displays a confirmation message that asks if you want to proceed with retrieving the configuration file Figure 6 10 Retrieve File Confirmation Message Microsoft Internet Explorer x Y You are retrieving Configuration file From the AP Do you want to proceed E Ca
167. e TFTP server IP Address you will not be able to download a new AP Image to the AP IP Address management is fundamental We suggest you create a chart to document and validate the IP addresses for your system 7 14 Avaya Wireless AP 4 5 6 User s Guide C o ry Recovery Procedures If the password is lost or forgotten you will need to reset the AP to default values The Reset to Factory Default Procedure resets configuration settings but does not change the current AP Image If the AP has a corrupted software image follow the Forced Reload Procedure to erase the current AP Image and download a new image Reset to Factory Default Procedure Use this procedure to reset the network configuration values including the Access Point s IP address and subnet mask The current AP Image is not deleted Follow this procedure if you forget the Access Point s password 1 Press and hold the RELOAD button for 10 seconds gt NOTE See RELOAD and RESET Buttons to identify the buttons You need to use a pin or the end of a paperclip to press a button Result The AP reboots and the factory default network values are restored 2 If not using DHCP use the ScanTool or CLI over a serial connection to set the IP address subnet mask and other IP parameters See The Command Line Interface for CLI information Avaya Wireless AP 4 5 6 User s Guide 7 15 Recovery Procedures Figure 7 1 RELOAD and RESET Buttons 7 16 Avaya
168. e commands from any other IP address In contrast the IP mask 255 255 255 0 would allow any device that shares the first three octets of the IP address to configure the AP For example if you enter an IP address of 10 20 30 1 with a 255 255 255 0 subnet mask any IP address between 10 20 30 1 and 10 20 30 254 will have access to the AP s management interfaces Comment Enter an optional comment such as the station name To edit or delete an entry click Edit Edit the information or select Enable Disable or Delete from the Status pull down menu Avaya Wireless AP 4 5 6 User s Guide 4 67 Management pO Services You can configure the following management services Secure Management SNMP Settings HTTP Access HTTPS Access Secure Socket Layer Telnet Configuration Settings Serial Configuration Settings Automatic Configuration gt NOTE You must reboot the Access Point if you change the HTTP Port or Telnet Port 4 68 Avaya Wireless AP 4 5 6 User s Guide Es Management Secure Management Secure Management allows the use of encrypted and authenticated communication protocols such as SNMPv3 and Secure Socket Link SSL to manage the Access Point Setting Description Enable Secure Enables the further configuration of HTTPS Management Access and SNMPv3 After enabling Secure Management you can choose to configure HTTPS SSL access on the Services tab and confi
169. e index 3 See Interfaces for information on these parameters 802 11a Parameters Name Type Values Access CLI Parameter Wireless Interfaces Group N A R wif Table Index Integer 3 or 4 Dual radio R index APs Network Name DisplayStrin 2 31 characters RW netname SSID g My Wireless Network default Auto Channel Select Integer enable default RW autochannel acs disable DTIM Period Integer 1 255 RW dtimperiod 1 default RTS CTS Medium Integer 0 2347 RW medres Reservation Default is 2347 off MAC Address PhyAddress 12 hex digits R macaddr Closed System Integer enable RW closedsys disable default 1 of 2 Avaya Wireless AP 4 5 6 User s Guide A 103 802 11a Wireless Interface Commands Name Type Values Access CLI Parameter Supported Frequency Channels Octet String Depends on Regulatory Domain R suppchannels Load Balancing Integer enable default disable RW Idbalance Operating Frequency Channel Integer Varies by regulatory domain and country See 802 11a Channel Frequencies RW channel Supported Data Rates Octet String See Transmit Rate below suppdatarates Transmit Rate Integer32 0 Auto Fallback default 6 Mbits sec 9 Mbits sec 12 Mbits sec 18 Mbits sec 24 Mbits sec 36 Mbits sec 48 Mbits sec 54 Mbits sec RW txrate Physical Layer Typ
170. e of Security enabled on the wireless network None WEP Encryption 802 1x Mixed e A description of the problem you are experiencing What were you doing when the error occurred What error message did you see Can you reproduce the problem For each Avaya Wireless product describe the behavior of the device s LEDs when the problem occurs D 2 Avaya Wireless AP 4 5 6 User s Guide EE Before You Seek Help Avaya Wireless AP 4 5 6 User s Guide D 3 Before You Seek Help D 4 Avaya Wireless AP 4 5 6 User s Guide
171. e of the Access Point s cell If the Access Point s cell is very small for example Distance Between APs is set to Microcell you can expect that all stations should be able to successfully receive multicast packets at 11 MBits sec so you can set Multicast Rate to 11 Mbits sec However if the Access Point s cell is large you need to accommodate stations that may not be able to receive multicast packets at the higher rates in this case you should set Multicast Rate to 1 or 2 Mbits sec Avaya Wireless AP 4 5 6 User s Guide 4 43 Interfaces CO Figure 4 7 1 Mbits s and 11 Mbits s Multicast Rates gt NOTE There is an inter dependent relationship between the Distance between APs and the Multicast Rate In general larger systems operate at a lower average transmit rate The variation between 4 44 Avaya Wireless AP 4 5 6 User s Guide Interfaces Multicast Rate and Distance Between APs is presented in the following table 1 0 Mbit s 2 0 Mbits s 5 5 Mbits s 11 Mbits s Large yes yes Medium yes yes yes Small yes yes yes yes Minicell yes yes yes yes Microcell yes yes yes yes The Distance Between APs must be set before the Multicast Rate because when you select the Distance Between APs the appropriate range of Multicast values automatically populates the drop down menu This feature is not available if you are using an Avaya 802 11a b Card or a non Avaya Wireles
172. e the Front Cover Avaya Wireless AP 4 5 6 User s Guide 2 11 Hardware Installation a 6 Remove the back cover from the unit Figure 2 5 Remove the Back Cover 2 12 Avaya Wireless AP 4 5 6 User s Guide Ee rr Hardware Installation 7 Connect one end of an Ethernet cable to the Access Point s Ethernet port The other end of the cable should not be connected to another device until after the installation is complete Use a straight through Ethernet cable if you intend to connect the Access Point to a hub switch patch panel or Power over Ethernet power injector Use a cross over Ethernet cable if you intend to connect the Access Point to a single computer 8 If you are not using Power over Ethernet or you want to connect the Access Point to Power over Ethernet and AC power simultaneously attach the AC power cable to the Access Point s power port Avaya Wireless AP 4 5 6 User s Guide 2 13 Hardware Installation el Figure 2 6 Attach Ethernet Cable and Power Cable Power Cable Ethernet Cable gt NOTE Once attached the power cable locks into place To disconnect the power cable slide back the black plastic fitting and gently pull the cable from the connector 2 14 Avaya Wireless AP 4 5 6 User s Guide PA Hardware Installation 9 10 11 12 13 Connect the free end of the Ethernet cable to a hub switch patch panel Power over Ethernet power inject
173. eae as cadeeunge bene 7 2 Symptoms and SOMONE oss BAG EK PLLID See es ORS eee Se 7 3 o AA AA as 7 3 Basic Software Setup and Configuration Problems 7 5 Client Connection Problems 2 22 7 9 VLAN Operation Issues 2 7 11 Power over Ethemet PoE sesa Gem AK RR erara Peeh ee aeeus 7 13 Recovery Procedures 2 6c eee eee AG 7 14 Reset to Factory Default Procedure 7 15 Forced Reload Procedure aaa NAG ccd sseceaase 7 17 Setting IP Address using Serial Port auaa 7 24 Related Applications 2 a GG 8854548540084 eed bb aa ded 7 28 RADIUS Authentication Server anaana aaa 7 28 TRIP DEN 5 6555 6 DAGA BUNGA SRK R SES CRE LORS eS 7 28 eee ee ee eT ee AD ee ee EE E A 1 A The Command Line Interface A 1 Ni ISADORA ctacepeasateetade se eena LARA NG NA A 1 General Noles 54244 ae4 2 eae PAA O44 54 04 Sox A 3 Prerequisite Skills and Knowledge 0 200 ee eee A 3 Notation Conventions 56624524645 o58444ee45 irhier trein A 3 Avaya Wireless AP 4 5 6 User s Guide 5 Important Terminology 64 KAG BANA KNGNG BEE ecdaeed KALA we A 4 Navigation and Special Keys 0 000 c eee eee ee A 6 OLI Enor MG34JOBE ndecer deena eidete eee eed hah KPAG A 7 ate aji lal AG APA AA PAA AA A 8 LION STNND Hg BGM BELA NARRA PE KBEKAHAANERBAANBAAAA ELA A 11 Command Conventions px pA PED E PG ELAPEREPL EGR GAGA A 11 ENG TE ORNS an 5 he seo aaa PURA PARAK A
174. ecision making e Spanning Tree protocol used for loop avoidance Once the AP is connected to your network it learns which devices are connected to it and records their MAC addresses in the Learn Table The table can hold up to 10 000 entries To view the Learn Table click on the Monitor button in the web interface and select the Learn Table tab The Bridge tab has four sub categories e Spanning Tree e Storm Threshold e Intra BSS e Packet Forwarding Avaya Wireless AP 4 5 6 User s Guide 4 113 Bridge E Spanning Tree A Spanning Tree is used to avoid redundant communication loops in networks with multiple bridging devices Bridges do not have any inherent mechanism to avoid loops because having redundant systems is a necessity in certain networks However redundant systems can cause Broadcast Storms multiple frame copies and MAC address table instability problems Complex network structures can create multiple loops within a network The Spanning Tree configuration blocks certain ports on AP devices to control the path of communication within the network avoiding loops and following a spanning tree structure For more information on Spanning Tree protocol please see Section 8 0 of the IEEE 802 1d standard The Spanning Tree configuration options are advanced settings Avaya recommends that you leave these parameters at their default values unless you are familiar with the Spanning Tree protocol Storm Threshold Storm
175. ecutable program Bsp BI for the Bootloader software Certificate the digital certificate for authentication in SSL communications Private Key the private key for encryption in SSL communications 3 Use the Browse button or manually type in the name of the file to be downloaded including the file extension in the File Name field If typing the file name you must include the full path and the file extension in the file name text box 4 To initiate the HTTP Update operation click the Update AP button The AP displays a message that advises you to reboot the device for the changes to take effect Figure 6 5 System Message Microsoft Internet Explorer xj Q You are updating Image file to the AP You will need to reboot the device for changes to take effect Do you want to proceed E Cancel 6 12 Avaya Wireless AP 4 5 6 User s Guide a Update AP by Using HTTP 5 Click OK to continue with the operation or Cancel to abort the operation gt NOTE An HTTP file transfer using SSL may take extra time If the operation completes successfully the following screen appears Figure 6 6 Update AP Successful HTTP Update was Successful If the operation did not complete successfully the following screen appears and the reason for the failure is displayed Avaya Wireless AP 4 5 6 User s Guide 6 13 Upload File by Using TFTP GT iOi Figure 6 7 Update AP Unsuccessful HTTP
176. ed DTIM should be left at 1 the default value if any clients have power management enabled This parameter supports a range between 1 and 255 RTS CTS Medium This parameter affects message flow control Reservation and should not be changed under normal circumstances Range is 0 to 2347 When set to a value between 0 and 2347 the Access Point uses the RTS CTS mechanism for packets that are the specified size or greater When set to 2347 the default setting RTS CTS is disabled See RTS CTS Medium Reservation for more information Closed System Check this box to allow only clients configured with the Access Point s specific Network Name to associate with the Access Point When enabled a client configured with the Network Name ANY cannot connect to the AP This option is disabled by default 7 of 7 4 58 Avaya Wireless AP 4 5 6 User s Guide aay Interfaces Wireless Distribution System WDS A Wireless Distribution System WDS creates a link between two 802 11a 802 11b or 802 11b g APs over their radio interfaces This link relays traffic from one AP that does not have Ethernet connectivity to a second AP that has Ethernet connectivity WDS allows you to configure up to six 6 point to point links between Access Points In the WDS Example below AP 1 and AP 2 communicate over a WDS link represented by the blue line This link provides Client 1 with access to network resources even though
177. ed nodelimiter gt Set Authorization Lifetime for MAC based authentication or EAP 802 1x authentication Device Name gt set radauthlifetm x900 43200 seconds default is 0 disabled gt Enable RADIUS Accounting Device Name gt set radaccstatus enable Device Name gt set radaccinactivetmr lt inactivity timer in minutes gt Device Name gt show radius A 80 Avaya Wireless AP 4 5 6 User s Guide ar RADIUS Commands Figure A 16 Result of show radius CLI Command Device Name gt show radius RADIUS Group RADIUS Authentication radc liinvsvraddr radmacaccctrl 5 disable radauthlifetm 966 radmacaddrf ormat dashdelimited RADIUS Accounting radaccstatus z disable radaccinactivetmr 5 Configure RADIUS Accounting server Device Name gt set radacctbl lt index gt status lt enable gt seraddrfmt lt ipaddr or name gt ipaddr lt RADIUS IP address or name gt port lt user defined gt ssecret lt user defined gt responsetm lt 1 to 4 seconds gt maxretx lt 1 to 10 times gt Device Name gt show radacctbl Avaya Wireless AP 4 5 6 User s Guide A 81 Secure Management Commands Oa Figure A 17 Results of show radacctbl CLI command Device Name gt show radaccthl RADIUS Accounting Group Table Index 1 RADIUS Acc Server Status disable IP Address Host Name 6 6 6 6 Accounting Port 5 1813 Response Time 3 3 Shared Secret z HOE Server Addressing
178. eless AP 4 5 6 User s Guide 4 85 Filtering ka Taken together a MAC Address Mask pair specifies an address or a range of MAC addresses that the AP will look for when examining packets The AP uses Boolean logic to perform an AND operation between the MAC Address and the Mask at the bit level However for most users you do not need to think in terms of bits It should be sufficient to create a filter using only the hexadecimal digits 0 and F in the Mask where 0 is any value and F is the value specified in the MAC address A Mask of 00 00 00 00 00 00 corresponds to all MAC addresses and a Mask of FF FF FF FF FF FF applies only to the specified MAC Address Example For example if the MAC Address is 00 20 A6 12 54 C3 and the Mask is FF FF FF 00 00 00 the AP will examine the source and destination addresses of each packet looking for any MAC address starting with 00 20 A6 If the Mask is FF FF FF FF FF FF the AP will only look for the specific MAC address in this case 00 20 A6 12 54 C3 4 86 Avaya Wireless AP 4 5 6 User s Guide a Filtering When creating a filter you can configure the Wired parameters only the Wireless parameters only or both sets of parameters Which parameters to configure depends upon the traffic that you want block To block all traffic Configure from a specific wired only the Wired MAC Address and Wired MAC address from Mask leave the Wireless MAC Address being forwarded
179. encryption e Enter 26 hexadecimal characters or 13 ASCII characters to use 128 bit encryption e Enter 32 hexadecimal characters or 16 ASCII characters to use 152 bit encryption 4of4 Avaya Wireless AP 4 5 6 User s Guide 2 35 Initialization 2 36 The following options are available for an 802 11b AP Option Description Primary Network Name SSID Enter a Network Name between 2 and 31 characters long for the wireless network You must configure each wireless client to use this name as well Additional Network Names SSIDs The AP supports up to 16 SSIDs and VLANs per wireless interface radio Refer to the Advanced Configuration chapter for information on the detailed rules on configuring multiple SSIDs VLANs and security modes Auto Channel Select By default the AP scans the area for other Access Points and selects the best available communication channel either a free channel if available or the channel with the least amount of interference Remove the check mark to disable this option If you are setting up a Wireless Distribution System WDS it must be disabled See Wireless Distribution System WDS for more information 10f 4 Avaya Wireless AP 4 5 6 User s Guide may Initialization Option Description Frequency Channel When Auto Channel Select is enabled this field is read only and displays the Acce
180. ents to the wireless LAN e Enable IP ARP Filtering Place a check mark in the box provided to allow IP ARP filtering based on the IP ARP Filtering Address and IP Mask Leave the box unchecked to prevent filtering If enabled you should also configure the IP ARP Filtering Address and IP ARP IP Mask IP ARP Filtering Address Enter the Network filtering IP Address IP ARP IP Mask Enter the Network Mask IP Address The following protocols are listed in the Advanced Filter Table Deny IPX RIP e Deny IPX SAP Deny IPX LSP e Deny IP Broadcasts e Deny IP Multicasts Avaya Wireless AP 4 5 6 User s Guide 4 93 Filtering ess The AP can filter these protocols in the wireless to Ethernet direction the Ethernet to wireless direction or in both directions Click Edit and use the Status field to Enable or Disable the filter TCP UDP Port Port based filtering enables you to control wireless user access to network services by selectively blocking TCP UDP protocols through the AP A user specifies a Protocol Name Port Number Port Type TCP UDP or TCP UDP and filtering interfaces Wireless only Ethernet only all interfaces or no interfaces in order to block access to services such as Telnet and FTP and traffic such as NETBIOS and HTTP For example an AP with the following configuration would discard frames received on its Ethernet interface with a UDP destination port number of 137 effectively blocking NETBIOS Na
181. ents use the same static Encryption WEP keys to encrypt data Enable 802 1x The AP uses the 802 1x standard to Security communicate with a RADIUS server and authenticate clients The AP generates and distributes dynamic per user WEP Keys to each client following successful authentication Enable Mixed Mode The AP uses 802 1x Mode for clients that 802 1x and WEP support 802 1x and have an 802 1x Encryption supplicant application installed The AP uses static WEP Encryption for clients that do not use 802 1x 1of2 Avaya Wireless AP 4 5 6 User s Guide 4 127 Security ee Security Mode Description Enable WPA Mode The AP uses 802 1x to communicate with a RADIUS server and authenticate clients The AP generates and distributes dynamic per user encryption keys based on the Temporal Key Integrity Protocol TKIP to each client following successful authentication WPA mode provides message integrity checking to guard against replay type attacks This mode is not available for all radio types Enable WPA PSK The AP uses a Pre shared Key manually Mode configured on both the AP and the clients to authenticate clients The AP generates and distributes dynamic per user encryption keys based on TKIP to each client following successful authentication This mode is for customers who want to use WPA but do not have a RADIUS server installed on their network This mode is not available for all
182. equency Division Multiplexing OFDM to achieve data rates of up to 54 Mbits sec Available Frequency Channels vary by regulatory domain and or country See 802 11a Channel Frequencies for details 802 11g In 2003 the IEEE introduced the 802 11g standard 802 11g devices operate in the 2 4 GHz frequency band using OFDM to achieve data rates of up to 54 Mbits sec In addition 802 11g devices are backwards compatible with 802 11b devices Available Frequency Channels vary by regulatory domain and or country See 802 11g Channel Frequencies for details Avaya Wireless AP 4 5 6 User s Guide 1 7 Management and Monitoring Capabilities a ae j Management and Monitoring Capabilities There are three management and monitoring interfaces available to the network administrator to configure and manage an AP on the network e HTTP HTTPS Interface e Command Line Interface e SNMP Management HTTP HTTPS Interface The HTTP Interface also known as the Web browser Interface provides easy access to configuration settings and network statistics from any computer on the network You can access the Web or HTTP Interface e over your LAN switch hub etc e over the Internet or e with a crossover Ethernet cable connected directly to your computer s Ethernet Port HTTPS provides an HTTP connection over a Secure Socket Layer HTTPS is one of two available secure management options on the AP the other secure management option is SNMP
183. er and an agent and thereby learns the values of managed objects and learn of notifiable events For example the observation of a set command that changes passwords would enable an attacker to learn the new passwords To address the security threats listed above SNMPv3 provides the following when secure management is enabled e Authentication Provides data integrity and data origin authentication e Privacy a k a Encryption Protects against disclosure of message payload e Access Control Controls and authorizes access to managed objects gt NOTE The remainder of this guide describes how to configure an AP using the HTTP Web interface or the CLI interface For information on how to manage devices using SNMP refer to the documentation that came with your SNMP program Also refer to the MIB files for information on the parameters available via SNMP 1 12 Avaya Wireless AP 4 5 6 User s Guide AVAY Getting Started 2 In This Chapter e Prerequisites e Product Package e System Requirements e Hardware Installation e Initialization e Download the Latest Software e Additional Hardware Features Prerequisites Before installing an AP you need to gather certain network information The following section identifies the information you need gt NOTE Passwords must be configured with at least 6 characters in length Avaya Wireless AP 4 5 6 User s Guide 2 1 Prerequisites Information Descrip
184. er network name gt Device Name gt show vlandidtbl to review your settings Device Name gt reboot 0 gt NOTE Sixteen VLAN SSID pairs are available for the AP 6 and APs that have an 802 11a b g or 802 11b g Upgrade Kit installed The AP 5 and AP 4 support only one VLAN SSID pair Avaya Wireless AP 4 5 6 User s Guide A 127 VLAN SSID Pair Commands a A 128 Avaya Wireless AP 4 5 6 User s Guide AVAYA ASCII Character Chart Description You can configure WEP Encryption Keys in either Hexadecimal or ASCII format Hexadecimal digits are 0 9 and A F not case sensitive ASCII characters are 0 9 A F a f case sensitive and punctuation marks Each ASCII character corresponds to two hexadecimal digits The table below lists the ASCII characters that you can use to configure WEP Encryption Keys It also lists the Hexadecimal equivalent for each ASCII character ASCII Hex ASCII Hex ASCII Hex ASCII Hex Character Equivalent Character Equivalent Character Equivalent Character Equivalent 21 9 39 Q 51 i 69 i 22 3A R 52 j 6A 23 3B S 53 k 6B 24 lt 3C T 54 6C 25 3D U 55 m 6D amp 26 gt 3E V 56 n 6E 27 2 3F WwW 57 o 6F 28 40 X 58 p 70 29 A 41 Y 59 q 71 k 2A B 42 Z 5A r 72 2B C 43 5B s 73 2C D 44 5C t 74 2D E 45 5D u 75 Avaya Wireless AP 4 5 6 User s Guide B 1
185. ers for different Authentication types The current available authentication types are EAP 802 1x authentication and MAC based authentication You can configure two separate sets of Primary and Secondary RADIUS Servers for each of the two supported Authentication types 802 1x EAP Based authentication and MAC based authentication You can configure the AP to communicate with up to six different RADIUS servers e Primary Authentication Server MAC based authentication e Back up Authentication Server MAC based authentication e Primary Authentication Server EAP 802 1x authentication e Back up Authentication Server EAP 802 1x authentication e Primary Accounting Server e Back up Accounting Server Avaya Wireless AP 4 5 6 User s Guide 4 155 RADIUS T gt NOTE You must have configured the settings for at least one Authentication server before configuring the settings for an Accounting server The back up servers are optional but when configured the AP will communicate with the back up server if the primary server is off line After the AP has switched to the backup server it will periodically check the status of the primary RADIUS server every five 5 minutes Once the primary RADIUS server is again online the AP automatically reverts from the backup RADIUS server back to the primary RADIUS server All subsequent requests are then sent to the primary RADIUS server You can view monitoring statistics for each of the configure
186. ess Point blocks all traffic between Wireless Client 3 and the Ethernet network Avaya Wireless AP 4 5 6 User s Guide 4 91 Filtering S Prevent Messages Destined for a Specific Multicast Group from Being Forwarded to the Wireless LAN If there are devices on your Ethernet network that use multicast packets to communicate and these packets are not required by your wireless clients you can set up a Static MAC filter to preserve wireless bandwidth For example if routers on your network use a specific multicast address such as 01 00 5E 00 32 4B to exchange information you can set up a filter to prevent these multicast packets from being forwarded to the wireless network e Wired MAC Address 01 00 5E 00 32 4B e Wired Mask FF FF FF FF FF FF e Wireless MAC Address 00 00 00 00 00 00 e Wireless Mask 00 00 00 00 00 00 Result The Access Point does not forward any packets that have a destination address of 01 00 5E 00 32 4B to the wireless network 4 92 Avaya Wireless AP 4 5 6 User s Guide a Filtering Advanced You can configure the following advanced filtering options e Enable Proxy ARP Place a check mark in the box provided to allow the Access Point to respond to Address Resolution Protocol ARP requests for wireless clients When enabled the AP answers ARP requests for wireless stations without actually forwarding them to the wireless network If disabled the Access Point will bridge ARP requests for wireless cli
187. ess is 169 254 128 133 for the AP 5 Click OK to save the changes Avaya Wireless AP 4 5 6 User s Guide 4 77 Management 6 Reboot the AP When the AP reboots it receives the new configuration information and must reboot one additional time If a Syslog server was configured the following messages can be observed on the Syslog server AutoConfig for Static IP TFTP server address and configuration filename AutoConfig Successful Figure 4 11 Automatic Configuration Screen Alarms u Bridge 1 Security 1 RADIUS VLAN System Network Interfaces Management Filtering 1 Status Passwords IP Access Table Services AutoConfig i This tab is used to enable auto configuration and also to configure TFTP server IP address and configuration filename Configure Monitor Note The configuration filename and TFTP server IP address specified here are used only when the AP is configured for STATIC IP if the AP is configured for Dynamic IP these parameters are not used and obtained from DHCP Commands Enable Auto Configuration Help Exit Cancel 4 78 Avaya Wireless AP 4 5 6 User s Guide Ca Management Set up Automatic Configuration for Dynamic IP Perform the following procedure to enable and set up Automatic Configuration when you have a dynamic IP address for the TFTP server via DHCP The Configuration filename and the TFTP server IP address are contained in the DHCP response when
188. et password is also public Client Computer Cannot Connect 1 Client computers should have the same Network Name and security settings as the AP 2 Network Names should be allocated and maintained by the Network Administrator 3 Refer to the documentation that came with your client card for additional troubleshooting suggestions Avaya Wireless AP 4 5 6 User s Guide 7 5 Symptoms and Solutions Ca 6e rrrereece z 6 AP Has Incorrect IP Address 7 6 1 Default IP Address Assignment mode is dynamic DHCP If you do not have a DHCP server on your network the default IP Address is 169 254 128 132 If you have more than one unintialized AP connected to the network they will all have the same default IP address and you will not be able to communicate with them due to an IP address conflict In this case assign each AP a static IP address via the serial cable or turn off all units but one and change the IP address using ScanTool one at a time The AP only contacts a DHCP server during boot up If your network s DHCP server is not available while the AP is booting the device will retain the last IP Address it had Reboot the AP once your DHCP server is on line again or use the ScanTool to find the Access Point s current IP address To find the unit s current IP address if using DHCP open the IP Client Table in the DHCP Server and match the Access Point s IP address to its MAC address found on the product la
189. face card has been removed from the device Severity Level Critical oriTrapWLCIncompatibleFirmwa re This trap is generated when the firmware of the wireless interface card is incompatible with the AP Severity Level Critical 1of2 Avaya Wireless AP 4 5 6 User s Guide 4 99 Alarms Trap Name Description oriTrapWLCVoltageDiscrepancy The dual radio AP supports 3 3 V and 5 V wireless cards This trap is generated when a wireless interface card using a different voltage is inserted in the AP Severity Level Critical oriTrapWLCIncompatibleVendor This trap is generated when an incompatible wireless vendor card is inserted or present in the AP Severity Level Critical oriTrapWLCFirmwareDownload Failure This trap is generated when a failure occurs during the firmware download process of the wireless interface card Severity Level Critical 2 of 2 4 100 Avaya Wireless AP 4 5 6 User s Guide Alarms e Operational Alarms Trap Name Description oriTrapWatchDogTimerExpired This trap is generated when the software watch dog timer expires This indicates that a problem has occurred with one or more software modules and the AP will reboot automatically Trap Severity Level Critical oriTrapRADIUSServerNot Responding This trap is generated when no response is received from the RADIUS server s for authentic
190. fault setting the RTS CTS mechanism is disabled When set to 0 the RTS CTS mechanism is used for all packets When set to a value between 0 and 2347 the Access Point uses the RTS CTS mechanism for packets that are the specified size or greater You should not need to enable this parameter for most networks unless you suspect that the wireless cell contains hidden nodes 4 30 Avaya Wireless AP 4 5 6 User s Guide Interfaces Wireless 802 11b You can configure and view the following parameters within the Wireless Interface Configuration screen for an 802 11b AP gt NOTE You must reboot the Access Point before any changes to these parameters take effect Parameter Description Physical Interface Type For 802 11b AP this field reports 802 11b DSSS 2 4 GHz DSSS stands for Direct Sequence Spread Spectrum this is the name for the radio technology used by 802 11b devices MAC Address This is a read only field that displays the unique MAC Media Access Control address for the Access Point s wireless interface The MAC address is assigned at the factory 10f 9 Avaya Wireless AP 4 5 6 User s Guide 4 31 Interfaces Ka Parameter Description Regulatory Reports the regulatory domain for which the Domain AP is certified Not all features or channels are available in all countries The available regulatory domains include FCC U S Canada Mexico an
191. g tables show typical range values for various environments for FCC certified products range may differ for products certified in other regulatory domains C 18 Avaya Wireless AP 4 5 6 User s Guide Radio Specifications AP 4 802 11b Wireless Communication Ranges Range 11 Mbits s 5 5 Mbits s 2 Mbits s 1 Mbits s Open Office 177m 219m 272m 338 m 581 ft 718 ft 892 ft 1109 ft Semi Open 122 m 151m 187 m 232 m Omeg 400 ft 495 ft 614 ft 761 ft Closed Office 84 m 104 m 129 m 160 m 276 ft 341 ft 423 ft 525 ft Tx Power dBm 15 15 15 15 Receiver 82 85 88 91 Sensitivity dBm Antenna Gain 3 dBi integrated diversity antenna module 2 4 2 5 GHz Avaya Wireless AP 4 5 6 User s Guide Radio Specifications Da a AP 5 802 11a Wireless Communication Ranges 54 48 36 24 18 12 9 6 Range Mbits s Mbits s Mbits s Mbits s Mbits s Mbits s Mbits s Mbits s Open 37m 57m 82m 118m 146 m 169 m 181m 195m Office 121 ft 187 ft 269 ft 387 ft 479 ft 654 ft 594 ft 640 ft Semi 26m 39m 57m 81m 101m 116m 125m 134m Open 85 ft 128 ft 187 ft 266 ft 331 ft 381 ft 410 ft 440 ft Office Closed 18m 27m 39m 56 m 69 m 80 m 86 m 92m Office 59 ft 89 ft 128 ft 184 ft 226 ft 262 ft 282 ft 302 ft Tx Power 12 14 15 16 16 16 16 16 dBm Receiver
192. ge Amber Amber or Amber Off or Off Solid Solid Solid Solid Missing or bad bootloader Amber Amber Amber Amber image all LEDs remain solid amber 2 of 3 2 58 Avaya Wireless AP 4 5 6 User s Guide p rtr Additional Hardware Features Ethernet Ethernet Wireless Power Link Activity Activity Indication n a n a n a Red Wireless radio is not working properly n a n a Amber Amber Indicated interface in administrative down state 3 of 3 Avaya Wireless AP 4 5 6 User s Guide 2 59 Additional Hardware Features Figure 2 15 LED Indicators Illustrated 2 60 Avaya Wireless AP 4 5 6 User s Guide Ca Related Topics Related Topics The Setup Wizard helps you configure the basic AP settings required to get the unit up and running The AP supports many other configuration and management options The remainder of this user guide describes these options in detail See Advanced Configuration for information on configuration options that are available within the Access Point s HTTP interface See Monitor Information for information on the statistics displayed within the Access Point s HTTP interface See Commands for information on the commands supported by the Access Point s HTTP interface See Troubleshooting for troubleshooting suggestions See The Command Line Interface for information on the CLI interface and for a list of CLI commands Avaya Wireless
193. gure SNMPv3 passwords on the Passwords tab SNMP Settings Setting Description SNMP Interface Configure the interface or interfaces Bitmask Ethernet Wireless All Interfaces from which you will manage the AP via SNMP You can also select Disabled to prevent a user from accessing the AP via SNMP Avaya Wireless AP 4 5 6 User s Guide 4 69 Management i HTTP Access Setting Description HTTP Interface Configure the interface or interfaces Bitmap Ethernet Wireless All Interfaces from which you will manage the AP via the Web interface For example to allow Web configuration via the Ethernet network only set HTTP Interface Bitmask to Ethernet You can also select Disabled to prevent a user from accessing the AP from the Web interface HTTP Port Configure the HTTP port from which you will manage the AP via the Web interface By default the HTTP port is 80 Enable HTTP Setup The Setup Wizard appears automatically Wizard the first time you access the HTTP interface If you exited out of the Setup Wizard and want to relaunch it enable this option click OK and then close your browser or reboot the AP The Setup Wizard will appear the next time you access the HTTP interface 4 70 Avaya Wireless AP 4 5 6 User s Guide moo air Management Figure 4 10 Management Services Configuration Screen pate A JE TBNBG DH Sid a N soo This tab b
194. gured for Static IP A 42 Avaya Wireless AP 4 5 6 User s Guide PA DHCP Server Commands DHCP Server Commands 44 caution Before enabling DHCP server on the AP confirm that the IP address pools you have configured are valid addresses on the network and do not overlap the addresses assigned by any other DHCP server on the net work Enabling this feature with incorrect address pools will cause prob lems on your network DHCP Server Parameters Name Type Values Access CLI Parameter DHCP Server Group N A R dhcp DHCP Server Integer enable 1 default RW dhcpstatus Status disable 2 delete 3 Gateway IP IpAddress User Defined RW dhcpgw Address Primary DNS IP IpAddress User Defined RW dhcppridnsipaddr Address Secondary DNS IP IpAddress User Defined RW dhcpsecdnsipaddr Address Number of IP Pool Integer32 N A R dhcpippooltblent Table Entries Avaya Wireless AP 4 5 6 User s Guide A 43 DHCP Server Commands CO gt NOTE You must have at least one entry in the DHCP Server IP Address Pool Table before you can set the DHCP Server Status dhcpstatus to Enable IP Address Pool Parameters Name Type Values Access CLI Parameter DHCP Server IP Table N A R dhcpippooltbl Address Pool Table Table Index Integer User Defined N A index Start IP Address IpAddress User Defined RW startipaddr End IP Address IpAddress User
195. h the AP the client begins encrypting data after it has been authenticated Figure 4 16 RADIUS Authentication Illustrated The AP acts as a pass through device to facilitate communications between the client PC and the RADIUS server The AP 2 and the client 1 exchange 802 1x messages using an EAPOL EAP Over LAN protocol A Messages sent from the client station are encapsulated by the AP and transmitted to the RADIUS 3 server using EAP extensions B Avaya Wireless AP 4 5 6 User s Guide 4 123 Security a Upon receiving a reply EAP packet from the RADIUS the message is typically forwarded to the client after translating it back to the EAPOL format Negotiations take place between the client and the RADIUS server After the client has been successfully authenticated the client receives an Encryption Key from the AP if the EAP type supports automatic key distribution The client uses this key to encrypt data after it has been authenticated For 802 11a and 802 11b g clients that communicate with an AP each client receives its own unique encryption key this is known as Per User Per Session Encryption Keys Wi Fi Protected Access WPA Wi Fi Protected Access WPA is a security standard designed by the Wi Fi Alliance in conjunction with the Institute of Electrical and Electronics Engineers IEEE WPA is a sub set of the forthcoming IEEE 802 11i security standard currently in draft form IEEE 802 11i is
196. he Escalation Management link Then click the International Services link that includes telephone numbers for the international Centers of Excellence TCP IP Facilities Customers may experience differences in product performance reliability and security depending upon network configurations design and topologies even when the product performs as warranted To order copies of this and other documents For the most current versions of documentation go to the Avaya support Web site http www avaya com support AP 4 5 6 User s Guide Table of Contents 1 tga cca c ence kee eeen AA 1 1 la This NSB s ccct ch wee Oo ear hiene eee ecdoea seek HUBYENG 1 1 Document Conventigns lt ia 4255 4ce5 40 854440854404 PG GALA 1 1 Introduction to Wireless Networking 000000 aaa 1 2 DI UIE aha AGA pgh EHS YEH PERA DARK LANG BEER EK NGA 1 3 Guidelines for ROAMING 4 4K KA ced KAG KE nade AKA KAG 1 4 IEEE 802 11 Specifications css So4554 S85 LPBNADGND ERAP 44884455 1 6 eoe AA oe 1 7 PUA cs a PLA hb oes PORHESY SRDS BANA DAAA KGG GAI GA hd 1 7 Pie PEE AE ESERE TEA E EAT EE Mens 1 7 Management and Monitoring Capabilities 1 8 ATIPATIPS Marlatt kaRG PARK KA irienn pi ir BAEK 1 8 Command Line Interiace 24 64 KGG KGG KA ene eee ee ered eee NGA 1 9 SNMP Management 4 4 aa 60556004 cede 5a Rake Re 1 10 2 Getting DUO os bes cs cick ccsndewese bes GAGA 2 1 ln TIIS CNAPREY cet cceecenn Bebe Gee KGG RAA eed eS See eG EER GE
197. he MIB can be opened with any text editor such as Microsoft Word Notepad or WordPad SNMPv3 Secure Management SNMPvs3 is one of two available secure management options on the AP the other secure management option is HTTPS HTTP connection over Secure Socket Layer SNMPv3 is based on the existing SNMP framework but addresses security requirements for device and network management The security threats addressed by Secure Management are e Modification of information An entity could alter an in transit message generated by an authorized entity in such a way as to effect unauthorized management operations including the setting of object values The essence of this threat is that an unauthorized entity could change any management parameter including those related to configuration operations and accounting e Masquerade Management operations that are not authorized for some entity may be attempted by that entity by assuming the identity of an authorized entity Avaya Wireless AP 4 5 6 User s Guide 1 11 Management and Monitoring Capabilities aa aa e Message stream modification SNMP is designed to operate over a connectionless transport protocol There is a threat that SNMP messages could be reordered delayed or replayed duplicated to effect unauthorized management operations For example a message to reboot a device could be copied and replayed later e Disclosure An entity could observe exchanges between a manag
198. his case you can use ScanTool to assign the AP a static IP address that is valid on your network 2 18 Avaya Wireless AP 4 5 6 User s Guide a Initialization ScanTool Instructions Follow these steps to install ScanTool initialize the Access Point and perform initial configuration 1 Locate the unit s Ethernet MAC address and write it down for future reference The MAC address is printed on the product label Each unit has a unique MAC address which is assigned at the factory Confirm that the AP is connected to the same LAN subnet as the computer that you will use to configure the AP Power up reboot or reset the AP Result The unit requests an IP Address from the network DHCP server Insert the Installation CD into the CD ROM drive of the computer that you will use to configure the AP Result The installation program will launch automatically Follow the on screen instructions to install the Access Point software and documentation Avaya Wireless AP 4 5 6 User s Guide 2 19 Initialization i gt NOTE The Avaya Wireless Installation program supports the following operating systems Windows 98SE Windows 2000 Windows NT Windows ME Windows XP After the software has been installed double click the ScanTool icon on the Windows desktop to launch the program if the program is not already running Result ScanTool scans the subnet and d
199. in and or country 802 11a radio certification is available in the following regions e FCC U S Canada and Australia e ETSI Europe and the United Kingdom e MKK Japan e SG Singapore e ASIA China Hong Kong and South Korea e TW Taiwan There are five sets of frequency bands that determine the available channels depending on the regulatory domain Some countries restrict 802 11a operation to specific frequency bands The Web interface and CLI display the available channels for a radio s particular regulatory domain In the CLI any channels that are not available are labeled Not Supported C 12 Avaya Wireless AP 4 5 6 User s Guide ay Radio Specifications Frequency Channel FCC ETSI MKK SG ASIA TW Band ID GHz GHz GHz GHz GHz GHz Lower Band 34 5 170 36 default 36 5 180 5 180 5 180 38 5 190 40 5 200 5 200 5 200 42 5 210 44 5 220 5 220 5 220 46 5 230 48 5 240 5 240 5 240 Middle Band 52 5 260 5 260 5 260 52 default 56 5 280 5 280 5 280 58 5 300 5 300 5 300 60 5 320 5 320 5 320 H Band 100 5 500 104 5 520 108 5 540 112 5 560 116 5 580 120 5 600
200. ion Statistics To enable the monitoring of Stations Statistics perform the following procedure 1 Click on the Monitor tab on the left on the web page 2 Click on the Station Statistics tab on the Monitor screen 3 Enable the Monitoring Station Statistics feature Station Statistics are disabled by default by checking Enable Monitoring Station Statistics and click OK You do not need to reboot the AP for the changes to take effect If clients are connected to the device or WDS links are configured for the device the statistics will now be shown on the screen Refreshing Station Statistics Click on the Refresh button in the browser window to view the latest statistics If any new clients associate to the AP you can see the statistics of the new clients after you click the refresh button 5 20 Avaya Wireless AP 4 5 6 User s Guide CD Station Statistics Figure 5 12 Station Statistics Screen interface interface an whieh the station in associated or tho WOS link is configured Type STA Station ar WOS Protocol BEZAfa 882 41b or 802 119 SMR Signal to Noise Ratio TSLE Time since lasi frare was received from the associated station or WOS link partner A station will no longer be displayed in the Bst If the chent is inactive or hes been de suthenticated WUS rika are shown in the table s long as the link ks configured in the AP Enable Monitoring Station Stabstics paso O Avaya Wireless
201. ion of the access point system components This information can be used by Technical Support to diagnose incompatibility issues and to determine if updated software or drivers are required and available Serial Number Not Applicable 01R706021386 Not Applicable Not Applicable Not Applicable Not Applicable 01UT27365294 Avaya Wireless AP 4 5 6 User s Guide Name if Version Software Image Hardware Inventory AP Firmware BSP BL Original Wireless MIB Wireless PRI Firmware Wireless NIC ICMP CE ICMP This tab provides statistical information for both received and transmitted messages directed to the AP Not all ICMP traffic on the network is counted in the ICMP Internet Control Message Protocol statistics Figure 5 4 ICMP Monitoring Screen IAPP RADIUS Interfaces Link Test Version ICMP IP ARP Table Learn Table i Status This tab provides statistics on the Internet Control Message Protocol ICMP packets transmitted and received by the access point Configure O Monitor n Messages Received Messages Transmitted Commands Total ICMP Packets 34 Total ICMP Packets 0 Er Help z o Destination Unreachable er Problems Exit Addre 5 8 Avaya Wireless AP 4 5 6 User s Guide IP ARP Table IP ARP Table This tab provides information based on the Address Resolution Protocol ARP which relates MAC Address and IP Addresses Figure 5 5 IP ARP Table APP RADIUS Intera
202. ion to File Transfer via TFTP or HTTP There are two methods of transferring files to or from the AP TFTP or HTTP or HTTPS if enabled The following procedures describe downloading Configuration AP Image Bootloader Private Key and Certificate files to the AP e Update AP by Using TFTP e Update AP by Using HTTP Avaya Wireless AP 4 5 6 User s Guide 6 5 Introduction to File Transfer via TFTP or HTTP The following procedures describe uploading Configuration files from the AP e Upload File by Using TFTP e Upload File by Using HTTP TFTP File Transfer Guidelines A TFTP server must be running and configured to point to the directory containing the file If you do not have a TFTP server installed on your system install the TFTP server from the Avaya Wireless CD HTTP File Transfer Guidelines HTTP file transfer can be performed either with or without SSL enabled HTTP file transfers with SSL require enabling Secure Management and Secure Socket Layer HTTP transfers that use SSL may take additional time gt NOTE SSL requires Internet Explorer version 6 128 bit encryption Service Pack 1 and patch Q323308 6 6 Avaya Wireless AP 4 5 6 User s Guide SS Introduction to File Transfer via TFTP or HTTP Image Error Checking during File Transfer The Access Point performs checks to verify that an image downloaded through HTTP or TFTP is valid The following checks are performed on the downloaded imag
203. iption Distance Between Set to Large Medium Small Microcell or APs Minicell depending on the site survey for your system By default this parameter is set to Large The distance value is related to the Multicast Rate described next In general a larger distance between APs means that your clients operate a slower data rates on average See Distance Between APs for more information 4of9 4 34 Avaya Wireless AP 4 5 6 User s Guide ka Interfaces Parameter Description Multicast Rate Sets the rate at which Multicast messages are sent This value is related to the Distance Between APs parameter described previously The table below displays the possible Multicast Rates based on the Distance between APs setting By default this parameter is set to 2 Mbits sec See Multicast Rate for more information Distance between APs Multicast Rate Large 1 and 2 Mbits sec Medium 1 2 and 5 5 Mbits sec Small 1 2 5 5 and 11 Mbits sec Minicell 1 2 5 5 and 11 Mbits sec Microcell 1 2 5 5 and 11 Mbits sec 5 of 9 Avaya Wireless AP 4 5 6 User s Guide 4 35 Interfaces l Parameter Description DTIM Period The Deferred Traffic Indicator Map DTIM is used with clients that have power management enabled DTIM should be left at 1 the default value if any clients have power management enabled This parameter supports a range between 1
204. is generated when an incompatible image is loaded in the AP Trap Severity Level Major 2 of 2 Avaya Wireless AP 4 5 6 User s Guide 4 105 Alarms Ki In addition the AP supports these standard traps which are always enabled e RFC 1215 Trap Trap Name Description coldStart The AP has been turned on or rebooted Trap Severity Level Informational linkUp The AP s Ethernet interface link is up working Trap Severity Level Informational linkDown The AP s Ethernet interface link is down not working Trap Severity Level Informational 4 106 Avaya Wireless AP 4 5 6 User s Guide Alarms e Bridge MIB RFC 1493 Alarms Trap Name Description newRoot This trap indicates that the AP has become the new root in the Spanning Tree network Trap Severity Level Informational topologyChange This trap is sent by the AP when any of its configured ports transitions from the Learning state to the Forwarding state or from the Forwarding state to the Blocking state This trap is not sent if a newRoot trap is sent for the same transition Trap Severity Level Informational All these alarm groups correspond to System Alarms that are displayed in the System Status screen including the traps that are sent by the AP to the SNMP managers specified in the Alarm Host Table Severity Levels There are three severity levels for system alarms
205. isplays all detected Access Points The ScanTool s Scan List screen appears as shown in the following example gt NOTE 2 20 If your computer has more than one network adapter installed you will be prompted to select the adapter that you want ScanTool to use before the Scan List appears If prompted select an adapter and click OK You can change your adapter setting at any time by clicking the Select Adapter button on the Scan List screen The ScanTool Network Adapter Selection screen will not appear if your computer only has one network adapter installed Avaya Wireless AP 4 5 6 User s Guide mama Initialization Figure 2 8 Scan List x Scan List MAC Adress Paddiess Uptime Sytem Descipion N3 TO Change 301 SN 01R 706021386 v2 O0 60 1d 31 97 b8 4 Toe ips Ddehodm s TB Select Adapter Cancel 7 Locate the MAC address of the AP you want to initialize within the Scan List gt NOTE If your Access Point does not show up in the Scan List click the Rescan button to update the display If the unit still does not appear in the list see Troubleshooting for suggestions Note that after rebooting an Access Point it may take up to five minutes for the unit to appear in the Scan List Avaya Wireless AP 4 5 6 User s Guide 2 21 Initialization E 8 Do one of the following If the AP has been assigned an IP address by a DHCP server on the network write down the IP address and c
206. lex full duplex or auto duplex e 100 Mbit s half duplex or full duplex e auto speed half duplex or auto duplex Management The Management category contains three sub categories e Passwords e IP Access Table e Services 4 64 Avaya Wireless AP 4 5 6 User s Guide a Management Passwords You can configure the following passwords Type Description SNMP Read For read access to the AP using SNMP Password Enter a password in both the Password field and the Confirm field The default password is public SNMP Read Write For read and write access to the AP using Password SNMP Enter a password in both the Password field and the Confirm field The default password is public This password must be at least 6 characters in length SNMPv3 For sending authenticated SNMPv3 Authentication messages Enter a password in both the Password Password field and the Confirm field The default password is public Password length is recommended to be at least 8 characters Secure Management Services tab must be enabled to configure SNMPv3 1of2 Avaya Wireless AP 4 5 6 User s Guide 4 65 Management ees Type Description SNMPv3 Privacy For sending encrypted SNMPv3 data Enter Password a password in both the Password field and the Confirm field The default password is public Password length is recommended to be at least 8 characters Secure Management Se
207. lick Cancel to close ScanTool Go to Setup Wizard for information on how to access the HTTP interface using this IP address If the AP has not been assigned an IP address in other words the unit is using its default IP address 169 254 128 132 follow the steps in the table to assign it a static IP address that is valid on your network 2 22 Avaya Wireless AP 4 5 6 User s Guide CC E Initialization Step Action 1 Highlight the entry for the AP you want to configure 2 Click the Change button Result The Change screen appears Scan Tool Change Screen Change MAC Address 00 60 1 d 31 97 b8 Name Device Name O IP ddress Type Static C Dynamic IP Address KA Subnet Mask 55000 Gateway IP Address foor TFTP Server IP Address 192 168 0 101 Image File Name 0 01001000343 bin tl Cancel 1 of 3 Avaya Wireless AP 4 5 6 User s Guide 2 23 Initialization 2 24 Step Action Set IP Address Type to Static Enter a static IP Address for the AP in the field provided You must assign the unit a unique address that is valid on your IP subnet Contact your network administrator if you need assistance selecting an IP address for the unit Enter your network s Subnet Mask in the field provided Enter your network s Gateway IP Address in the field provided gt NOTE Enter the SNMP Read Write password in the Read Write Pas
208. lp Command List Description Set system parameters Show running system information Description of commands command usage and parameters reboot reboot the target Command Usage set lt parameter name gt lt parameter value gt lt cr gt show lt cr gt help lt cr gt reboot lt cr gt Parameter List Description sysname ipaddr System IP Address ipsubmask System Subnet Mask ipgw System Default Gateway IP Address tftpipaddr TFTP Server IP Address tftpfilename Image or Binary File name ipaddrt ype System IP Address Type STATIC or DYNAMIC Device name 1 gt A 10 Avaya Wireless AP 4 5 6 User s Guide inns CLI Conventions The following lists display the results of using the show command in the Bootloader CLI Figure A 2 Results of show bootloader CLI command Device name gt show sysname Device name System Name ipaddr 16 6 6 1 System IP Address ipsubmask 4 6 System Subnet Mask ipgu 16 6 6 System Default Gateway IP Address ipaddrtype IP Address type tftpipaddr TFTP Server IP Address tftpf ilename Image or Binary File Name Device name 1 gt CLI Conventions This section contains the following topics e Command Conventions e Entering Text Strings Command Conventions Each table element or parameter must be specified as in the example below Device Name gt set mgmtipaccesstbl 0 ipaddr 10 0 0 10 ipmask 255 255 0 0 Avaya Wireless AP 4 5 6 User s Guide A 11
209. me Service packets Protocol Destination Protocol Interface Status Type Port Name Enable Disable TCP UDP Number UDP 137 NETBIOS Ethernet Enable Name Service 4 94 Avaya Wireless AP 4 5 6 User s Guide SS Filtering Adding TCP UDP Port Filters 1 Place a check mark in the box labeled Enable TCP UDP Port Filtering Click Add under the TCP UDP Port Filter Table heading 3 In the TCP UDP Port Filter Table enter the Protocol Names to filter Set the destination Port Number a value between 1 and 65535 to filter See the IANA Web site at http www iana org assignments port numbers for a list of assigned port numbers and their descriptions Set the Port Type for the protocol TCP UDP or both TCP UDP 6 Set the Interface to filter Wireless Ethernet All interfaces No interfaces Click OK Avaya Wireless AP 4 5 6 User s Guide 4 95 Alarms CC Editing TCP UDP Port Filters 1 Click Edit under the TCP UDP Port Filter Table heading 2 Make any changes to the Protocol Name or Port Number for a specific entry if necessary 3 In the row that defines the port set the Status to Enable Disable or Delete as appropriate 4 Select OK Alarms This category has three sub categories e Groups e Alarm Host Table e Syslog 4 96 Avaya Wireless AP 4 5 6 User s Guide aay Alarms Groups There are seven alarm groups that can be en
210. me Type Values Access CLI Parameter Link Integrity Poll Integer 500 15000 ms RW linkintpollint Interval in increments of 500ms 500 ms default Link Integrity Poll Integer 0 255 RW linkintpollretx Retransmissions 5 default 2of2 IP Target Table Parameters Name Type Values Access CLI Parameter Link Integrity IP Table N A R linkinttbl Target Table Table Index Integer 1 5 N A index Target IP Address IpAddress User Defined RW ipaddr Comment DisplayString User Defined up to RW cmt optional 254 characters Status optional Integer enable RW status disable default delete A 66 Avaya Wireless AP 4 5 6 User s Guide E Link Integrity Commands Syntax Examples Device Name gt show linkinttbl this shows the current links Device Name gt set linkinttbl lt 1 5 depending on what table row you wish to address gt ipaddr lt ip address of the host computer you want to check gt Device Name gt set linkintpollint lt the interval between link integrity checks gt Device Name gt set linkintpollretx lt number of times to retransmit before considering the link down gt Device Name gt set linkintstatus enable Device Name gt show linkinttbl confirm new settings Device Name gt reboot 0 Avaya Wireless AP 4 5 6 User s Guide A 67 MAC Access Control Commands MAC Access Control Commands MAC Access Control Parameters
211. mediately enter reboot 0 zero at the CLI prompt Create a table entry or row Use 0 zero as the table index when you create an entry When creating a table row only the mandatory table elements are required comment is usually an optional table element For optional table elements the default value is generally applied if you do not specify a value Syntax Device Name gt set lt table name gt lt table index gt lt element 1 gt lt value 1 lt element n gt lt value n gt Example Device Name gt set mgmtipaccesstbl 0 ipaddr 10 0 0 10 ipmask 255 255 0 0 Result A new table entry is created for IP address 10 0 0 10 with a 255 255 0 0 subnet mask A 34 Avaya Wireless AP 4 5 6 User s Guide CC CLI Commands Modify a table entry or row Use the index to be modified and the table elements you would like to modify For example suppose the IP Access Table has one entry and you wanted to modify the IP address Device Name gt set mgmtipaccesstbl 1 ipaddr 10 0 0 11 You can also modify several elements in the table entry Enter the index number and specific table elements you would like to modify Hint Use the search command to see the elements that belong to the table Device Name gt set mgmtipaccesstbl 1 ipaddr 10 0 0 12 ipmask 255 255 255 248 cmt First Row Enable Disable or Delete a table entry or row The following example shows how to manage the second entry in a
212. meter Network Group N A R network IP Configuration Group N A R ip Note The network and ip parameters display the same information IP Address IpAddress User Defined RW ipaddr IP Mask IpAddress User Defined RW ipmask Default Router IpAddress User Defined RW ipgw IP Address Default TTL Integer User Defined RW ipttl seconds 64 default Address Type Integer static RW ipaddrtype dynamic default gt NOTE The IP Address Assignment Type ipaddrtype must be set to static before the IP Address ipaddr IP Mask ipmask or Default Gateway IP Address ipgw values can be entered A 64 Avaya Wireless AP 4 5 6 User s Guide Link Integrity Commands gt NOTE The IP Subnet Mask of the AP must match your network s Subnet Mask Syntax Examples Device Name Device Name Device Name Device Name Device Name gt set ipaddrtype static gt set ipaddr lt fixed IP address of unit gt set ipsubmask lt IP Mask gt set ipgw lt gateway IP address gt show network Link Integrity Commands Link Integrity Parameters Name Type Values Access CLI Parameter Link Integrity Group N A R linkint Link Integrity Integer enable RW linkintstatus ING disable default 1of2 Avaya Wireless AP 4 5 6 User s Guide A 65 Link Integrity Commands Na
213. mically 4 6 Avaya Wireless AP 4 5 6 User s Guide Ka System Access Points provide DDNS support by adding the host name option 12 in DHCP Client messages which is used by the DHCP server to dynamically update the DNS server Access Point System Naming Convention The Access Point s system name is used as its host name In order to prevent Access Points with default configurations from registering similar host names in DNS the default system name of the Access Point is uniquely generated Access Points generate unique system names by appending the last 3 bytes of the Access Point s MAC address to the default system name Avaya Wireless AP 4 5 6 User s Guide 4 7 System ats The system name must be compliant with the encoding rules for host name as per DNS RFC 1123 The DNS host name encoding rules are e Characters have to alphanumeric or hyphen e The name cannot start or end with a hyphen e The name cannot start with a digit e The number of characters has to be 63 or less Currently the system name length is limited to 32 bytes Image upgrades could cause the system to boot with an older system name format that is not DNS compliant To prevent problems with dynamic DNS after an image upgrade the system name will automatically be converted to a DNS compliant system name The rules of conversion of older system names are e If the length is greater than 63 then the string is truncated This will not happen sin
214. ncel 3 Click OK to continue with the operation or Cancel to abort the operation The File Download dialog box is displayed Avaya Wireless AP 4 5 6 User s Guide 6 17 Upload File by Using HTTP _ _ Sas Figure 6 11 File Download Dialog Box File Download x C Some files can harm your computer If the file information below looks suspicious or you do not fully trust the source do not open or save this file File name AP Config File type From 10 0 0 1 Would you like to open the file or save it to your computer Open E i Cancel More Info Iv Always ask before opening this type of file 4 On clicking the Save button the following Save As window displays where the you are prompted to choose the filename and location where the Configuration file is to be downloaded 6 18 Avaya Wireless AP 4 5 6 User s Guide po Reboot Figure 6 12 Retrieve File Save As Dialog Save As Save in E Desktop o cy EB Ca My Documents 3 Yahoo Messenger wi ProximUserDoc2 21 245pecs AB UltraEdit 32 History CE DellSafety User Guide For APR A English_source Ag Graphics Desktop GE Agi 24questions D aursp tes j CD Beta AP Relz 4 My Documents gb Citrix Program Neighborhood mi Frutiger PC PS Family Ll ORINOCO 11ag Client Utility mi Frutiger PC TT Family Ej Microsoft Project My Computer My Network P gt File name AP Confid pe Save as type Document w A
215. nds 120 default 160 200 Announce Integer 2 seconds R iappannresp Response Time Handover Time out Integer 410 ms RW iapphandtout 512 ms default 614 ms 717 ms 819 ms 1of2 A 60 Avaya Wireless AP 4 5 6 User s Guide Intra BSS Commands Name Type Values Access CLI Parameter Max Handover Integer 1 4 default 4 RW iapphandretx Retransmissions Send Announce Integer enable default RW iappannregstart Request on Startup disable 2 of 2 Intra BSS Commands Intra BSS Parameters The following parameters control the Intra Basic Service Set BSS traffic feature which prevents wireless clients that are associated with the same AP from communicating with each other Name Type Values Access CLI Parameter Intra BSS Traffic Group N A R intrabss Intra BSS Traffic Integer passthru default RW intrabssoptype Operation block Syntax Example Device Name gt set intrabssoptype lt passthru default block gt Avaya Wireless AP 4 5 6 User s Guide A 61 Inventory Management Commands _ _ a Inventory Management Commands Inventory Management Parameters Name Type Values Access CLI Parameter System Inventory Subgroup N A R sysinvmgmt Management Component Table Subgroup N A R sysinvmgmtcmptbl Component Interface Subgroup N A R sysinvmgmtcmpiftbl Table
216. nels enabled Avaya Wireless AP 4 5 6 User s Guide A 87 Spanning Tree Commands DE i Spanning Tree Commands Spanning Tree Parameters Name Type Values Access CLI Parameter Spanning Tree Group N A R stp Spanning Tree Integer enable default RW stpstatus Status disable Bridge Priority Integer 0 65535 RW stppriority 32768 default Maximum Age Integer 600 4000 RW stpmaxage in 0 01 sec intervals i e 6 to 40 seconds 2000 default Hello Time Integer 100 1000 RW stphellotime in 0 01 sec intervals i e 1 to 10 seconds 200 default Forward Delay Integer 400 3000 RW stpfwddelay in 0 01 sec intervals i e 4 to 30 seconds 1500 default A 88 Avaya Wireless AP 4 5 6 User s Guide Spanning Tree Commands Spanning Tree Priority and Path Cost Table Name Type Values Access CLI Parameter Spanning Tree Table N A R stpbl Table Table Index Port N A 1 15 R index Priority Integer 0 255 RW priority 128 default Path Cost Integer 1 65535 RW pathcost 100 default State Integer disable R state blocking listening learning forwarding broken Status Integer enable RW status disable Avaya Wireless AP 4 5 6 User s Guide A 89 SpectraLink VolP Commands LUC i SpectraLink VoIP Commands SpectraLink VoIP Parameters 802 11b and bg Modes Only These parameters enable or dis
217. ng the AP from a network computer to confirm that the new IP address has taken effect 8 When the proper IP address is set use the HTTP interface or CLI over Telnet to configure the rest of the unit s operating parameters Avaya Wireless AP 4 5 6 User s Guide 7 27 Related Applications LUC i Related Applications RADIUS Authentication Server If you enabled RADIUS Authentication on the AP make sure that your network s RADIUS servers are operational Otherwise clients will not be able to log in There are several reasons the authentication server services might be unavailable here are two typical things to check e Make sure you have the proper RADIUS authentication server information setup configured in the AP Check the RADIUS Authentication Server s Shared Secret and Destination Port number default is 1812 for RADIUS Accounting the default is 1813 e Make sure the RADIUS authentication server RAS setup matches the AP TFIP Server The Trivial File Transfer Protocol TFTP server allows you to transfer files across a network You can upload configuration files from the AP for backup or copying and you can download configuration files or new software images The TFTP software is located on the Avaya Wireless AP Installation CD ROM Ifa TFTP server is not configured and running you will not be able to download and upload images and configuration files to from the AP Remember that the TFTP server does not have
218. ng Integer32 0 2147483647 RW radaccinactivetmr Inactivity Timer minutes default is 5 min 2 of 2 RADIUS Authentication Parameters gt NOTE Use a server name only if you have enabled the DNS Client functionality See DNS Client Commands Name Type Values Access CLI Parameter RADIUS Authentication Table N A R radiustbl Primary MAC based Integer 1 R index authentication server Backup MAC based Integer 2 R index authentication server Primary EAP 802 1x Integer 3 R index authentication server 1of2 Avaya Wireless AP 4 5 6 User s Guide A 75 RADIUS Commands Name Type Values Access CLI Parameter Backup EAP 802 1x Integer 4 R index authentication server RADIUS Server Status Integer enable RW status disable default Server Addressing Integer ipaddr default RW seraddrfmt Format see note name Server IP Address or IpAddress User Defined RW ipaddr Name DisplayStr enter an IP ing address if seraddrfmt is ipaddr or a name if set to name up to 254 characters if using a name Port optional Integer User Defined RW port 1812 default Shared Secret DisplayStr User Defined W ssecret ing max 63 characters Response Time sec Integer 1 4 seconds RW responsetm 3 sec default Maximum Integer 0 4 RW maxretx Retransmissions 3 default optional 2 of 2 A 76 Avaya Wireless AP 4 5 6 User
219. nly 5 dot11g wifi TX Power Control The TX Power Control feature lets the user configure the transmit power level of the card in the AP at one of four levels e 100 of the maximum transmit power level of the card e 50 e 25 e 12 5 Avaya Wireless AP 4 5 6 User s Guide A 119 802 11b g Wireless Interface Commands a aa Ei Perform the following commands to enable TX Power Control and set the transmit power level Device Name gt set txpowercontrol enable Device Name gt set wif interface number currenttxpowerlevel lt value gt Allowed values are 1 100 2 50 3 25 4 12 5 Autochannel Select ACS ACS is enabled by default Reboot after disabling or enabling ACS Device Name gt set wif lt index gt autochannel lt enable disable gt Device Name gt reboot 0 Enable Disable Closed System Device Name gt set wif lt index gt closedsys lt enable disable gt A 120 Avaya Wireless AP 4 5 6 User s Guide Wireless Interface SSID VLAN Security Commands Wireless Interface SSID VLAN Security Commands Wireless Interface SSID Table Parameters The Wireless Interface SSID table manages the SSID and VLAN pairs and the security modes of those pairs gt NOTE The ability to configure up to 16 VLAN SSID pairs and configure a security mode per SSID is available only for the AP 6 and APs that have an 802 11a b g or 802 11b g Upgrade Kit installed
220. nt must have a unique IP Address and the Wireless interface must be assigned an SSID Change parameters with the CLI set Command and view them with the CLI show Command Table Tables hold parameters for several related items For example you can add several potential managers to the SNMP Table All items for a given Table can be displayed with a show lt Table gt CLI Command TFTP Refers to the TFTP Server used for file transfers 2 of 2 Avaya Wireless AP 4 5 6 User s Guide A 5 General Notes Navigation and Special Keys This CLI supports the following navigation and special key functions to move the cursor along the prompt line Key Combination Operation Delete or Backspace Delete previous character Ctrl A Move cursor to beginning of line Ctrl E Move cursor to end of line Ctrl F Move cursor forward one character Ctrl B Move cursor back one character Ctrl D Delete the character the cursor is on Ctrl U Delete all text to left of cursor Ctrl P Go to the previous line in the history buffer Ctrl N Go to the next line in the history buffer Tab Complete the command line List available commands A 6 Avaya Wireless AP 4 5 6 User s Guide General Notes CLI Error Messages The following table describes the error messages associated with improper inputs or expected CLI behavior Error Message Description Syntax
221. ntagged VLAN ID Exit can be configured If 802 1 Mixed Mode or WPA security modes are configured then at least one RADIUS 802 1x EAP server must be configured for authentication Enable Security Per SSID M SSID VLAN and Security Data Table Edit a Index Network Name SSID VLANID Security Mode Status 3 3 None Enable Enable Enable Enable Enable Enable gt NOTE The ability to configure up to 16 VLAN SSID pairs and configure a security mode per SSID is available only for the AP 6 and APs that have an 802 11a b g or 802 11b g Upgrade Kit installed Avaya Wireless AP 4 5 6 User s Guide 4 139 Configure Multiple SSID VLAN Security Mode Entries CO 5 Add one or more new SSID VLAN security mode entries Each wireless interface supports up to 16 entries Follow these steps a Click Add to create a new SSID VLAN security mode entry Figure 4 19 SSID VLAN and Security Table Wireless A Add Entries System Network Interfaces Management Filtering Alarms Bridge Security RADIUS SSIDIVLANISecurity Mp Status Configure SSID VLAN and Security Table Wireless A Add Entries This page is used to configure additional SSIDs VLANs and Security Modes Each table entry requires a Monitor unique SSID and VLAN ID ff the WEP security mode is configured then the appropriate key size must be configured The access Commands point supports 64 128 and 152 bit encryption keys The following table provi
222. nue to the next page The instructions described next shown how to navigate the Setup Wizard using the Save amp Next buttons Avaya Wireless AP 4 5 6 User s Guide 2 29 Initialization Navigation Panel The Setup Wizard provides a navigation panel on the left hand side of the screen Click the link that corresponds to the parameters you want to configure to be taken to that particular configuration screen Note that clicking a link in the navigation panel will not submit any changes you made to the unit s configuration on the current page Exit The navigation panel also includes an Exit option Click this link to close the Setup Wizard at any time Ax CAUTION If you exit from the Setup Wizard any changes you submitted by clicking the Save amp Next button up to that point will be saved to the unit but will not take effect until it is rebooted 6 Configure the System Configuration settings and click Save amp Next See System for more information 7 Configure the Access Point s Basic IP address settings if necessary and click Save 4 Next See Basic IP Parameters for more information 2 30 Avaya Wireless AP 4 5 6 User s Guide ey Initialization 8 Assign the AP new passwords to prevent unauthorized access and click Save amp Next Each management interface has its own password SNMP Read Password SNMP Read Write Password SNMPv3 Authentication Password SNMPv3 Privacy Password CL
223. o as 40 bit encryption 128 bit encryption is sometimes referred to as 104 bit encryption 802 1x Authentication IEEE 802 1x is a standard that provides a means to authenticate and authorize network devices attached to a LAN port A port in the context of IEEE 802 1x is a point of attachment to the LAN either a physical Ethernet connection or a wireless link to an Access Point 802 1x requires a RADIUS server and uses the Extensible Authentication Protocol EAP as a standards based authentication framework and supports automatic key distribution for enhanced security The EAP based authentication framework can easily be upgraded to keep pace with future EAP types 4 120 Avaya Wireless AP 4 5 6 User s Guide Ca Security Popular EAP types include Type Description EAP Message Username Password based authentication Digest 5 MD5 does not support automatic key distribution EAP Transport Certificate based authentication a Layer Security TLS certificate is required on the server and each client supports automatic key distribution EAP Tunneled Certificate based authentication a Transport Layer certificate is required on the server a Security TTLS client s username password is tunneled to the server over a secure connection supports automatic key distribution PEAP Protected Secure username password based EAP with MS CHAP authentication supports automatic key v2 distribution
224. oad will begin Be patient while the image is downloaded to the Access Point 6 When the download is complete type reboot 0 and press Enter gt NOTE See The Command Line Interface for more information Additional Hardware Features e Mounting Options e Installing the AP in a Plenum e Kensington Security Slot e Power over Ethernet e LED Indicators Avaya Wireless AP 4 5 6 User s Guide 2 47 Additional Hardware Features E j Mounting Options There are three mounting options for the AP described below Desktop Mount This is the standard installation for the AP See Hardware Installation for instructions Wall Mount Follow these steps to mount the AP on a wall 1 Identify the location where you intend to mount the unit gt NOTE For best results mount the unit vertically In other words the antenna should be pointing up or down but not sideways 2 Unplug the Access Point s power supply if necessary 3 Use a Phillips screwdriver to remove the metal base from the underside of the AP if necessary 4 Press down on the cable cover lock to release the cable cover See Unlock the Cable Cover for an illustration 5 Remove the cable cover from the unit See Remove Cable Cover for an illustration 2 48 Avaya Wireless AP 4 5 6 User s Guide SSS Additional Hardware Features 10 11 12 Remove the front cover from the unit See Remove the Front Cover for an illustration Remo
225. object that requires a reboot The following messages are displayed as a result of the configuring such object or objects A 32 Avaya Wireless AP 4 5 6 User s Guide Ca E E CLI Commands The following message is displayed every time you configure an object that requires the device to be rebooted Device Name gt set ipaddr 135 114 73 10 The following elements require reboot ipaddr In addition to the above informational message the CLI also provides a message as a result of the exit quit or done command if changes have been made to objects that require reboot If you make changes to objects that require reboot and execute the exit command the following message is displayed Device Name gt exit lt CR gt OR quit lt CR gt OR done lt CR gt Modifications have been made to parameters that require the device to be rebooted These changes will only take effect after the next reboot Examples Device Name gt set sysloc Main Lobby Device Name gt set mgmtipaccesstbl 0 ipaddr 10 0 0 10 ipmask 255 255 0 0 Avaya Wireless AP 4 5 6 User s Guide A 33 CLI Commands Set the Access Point IP Address Parameter Syntax Device Name gt set lt parameter name gt lt parameter value gt Example Device Name gt set ipaddr 10 0 0 12 Result IP Address will be changed when you reboot the Access Point The CLI reminds you when rebooting is required for a change to take effect To reboot im
226. ol Check this box to enable the Control Table e Operation Type Choose between Passthru and Block This determines how the stations identified in the MAC Access Control Table are filtered If set to Passthru only the addresses listed in the Control Table will pass through the bridge If set to Block the bridge will block traffic to or from the addresses listed in the Control Table e MAC Access Control Table Click Add to create a new entry Click Edit to change an existing entry Each entry contains the following field MAC Address Enter the wireless client s MAC address Comment Enter an optional comment such as the client s name e Status The entry is enabled automatically when saved so the Status field is only visible when editing an entry You can also disable or delete entries by changing this field s value gt NOTE For larger networks that include multiple Access Points you may prefer to maintain this list on a centralized location using the MAC Access Control by Means of RADIUS Authentication 4 148 Avaya Wireless AP 4 5 6 User s Guide Ds Configure Multiple SSID VLAN Security Mode Entries Figure 4 20 MAC Access Configuration Screen System u Network A Interfaces Management 1 Filtering p Alarms Bridge Security Q RADIUS A VAN A Status TY MAC Access Encryption Authentication i Configure This feature can be used to deny or allow network access to wireless clien
227. on Load Balancing Enable this option so clients can evaluate which Access Point to associate with based on current AP loads This feature is enabled by default it helps distribute the wireless load between APs This feature is not available if you are using an Avaya 802 11a b Card ora non Avaya Wireless client with the AP 8 of 9 4 38 Avaya Wireless AP 4 5 6 User s Guide Interfaces Parameter Description Medium Density Distribution When enabled the Access Point automatically notifies wireless clients of its Distance Between APs Interference Robustness and RTS CTS Medium Reservation settings This feature is enabled by default and allows clients to automatically adopt the values used by its current Access Point even if these values differ from the client s default values or from the values supported by other Access Points gt NOTE This feature is not available if you are using an Avaya 802 11a b Card or a non Avaya Wireless client with the AP Avaya recommends that you leave this parameter enabled particularly if you have Avaya Wireless clients on your wireless network leaving this parameter enabled should not adversely affect the performance of any Avaya 802 11a b Cards or non Avaya Wireless cards on your network 9 of 9 Avaya Wireless AP 4 5 6 User s Guide 4 39 Interfaces i Distance Between APs Distance Between APs defines how f
228. on WEP Encryption Place a check mark in the box provided to enable WEP encryption See WEP Encryption for more information Set Encryption Key 1 If you enabled Encryption configure an Encryption Key This key is used to encrypt and decrypt data between the AP and its wireless clients Enter the number of characters that correspond to the desired key size as described below e Enter 10 hexadecimal characters 0 9 and A F or 5 ASCII characters see ASCII Character Chart to use 64 bit encryption e Enter 26 hexadecimal characters 0 9 and A F or 13 ASCII characters to use 128 bit encryption 4of4 Avaya Wireless AP 4 5 6 User s Guide 2 39 Initialization The following options are available for an 802 11b g AP Option Description Operational Mode An 802 11b g wireless interface can be configured to operate in the following modes e 802 11b mode only e 802 11g mode only e 802 11g wifi mode e 802 11b g mode default Primary Network Name SSID Enter a Network Name between 2 and 31 characters long for the wireless network You must configure each wireless client to use this name as well Additional Network Names SSIDs The AP supports up to 16 SSIDs and VLANs per wireless interface radio Refer to the Advanced Configuration chapter for information on the detailed rules on configuring multiple SSIDs VLANs and security modes
229. or or an Ethernet port on a computer If using AC power connect the power cord to a power source such as a wall outlet to turn on the unit Configure and test the unit See Initialization for details Download the latest software to the unit if necessary See Download the Latest Software for details Place the unit in the final installation location See Mounting Options for mounting options and instructions gt NOTE 14 Avaya recommends that you perform a Site Survey prior to determine the installation location for your AP units For information about how to conduct a Site Survey contact your local reseller Replace the back cover front cover and cable cover Be careful to avoid trapping the power and Ethernet cables when replacing the cable cover Avaya Wireless AP 4 5 6 User s Guide 2 15 Hardware Installation il Figure 2 7 Assembled Unit 15 If desired you can attach a Kensington lock to secure the cable cover into place This will protect the unit from unauthorized tampering See Kensington Security Slot for details 2 16 Avaya Wireless AP 4 5 6 User s Guide Eu Initialization Initialization Avaya provides two tools to simplify the initialization and configuration of an AP e ScanTool e Setup Wizard ScanTool is included on the Installation CD the Setup Wizard launches automatically the first time you access the HTTP interface gt NOTE These initialization instructions descri
230. orm the same action help Displays instructions on using control key sequences for navigating a command line and displays command information and examples A 26 Avaya Wireless AP 4 5 6 User s Guide CLI Commands Syntax Action Syntax Use help as the only argument Device Name gt help See the following example Device Name gt help lt command Display complete command name gt description and command usage Device Name gt lt command name gt help Avaya Wireless AP 4 5 6 User s Guide A 27 CLI Commands CC Example Figure A 9 Results of help CLI command Device Name gt help Type at the command prompt for a command list Complete command description and command usage can be provided by help lt command name gt lt CR gt lt command name gt help lt CR gt Special keys supported Arrow Keys DEL BS delete previous character Ctrl A go to beginning of line Ctrl E go to end of line Ctr1 F go forward one character Ctr1 B go backward one character Ctr1 D delete current character Ctrl U x delete to beginning of line Ctr1 K delete to end of line Ctrl W E delete previous word Ctr1 T 3 transpose previous character Ctrl P go to previous line in history buffer Ctrl N go to next line in history buffer Tab Will attempt command completion a Comment Character will provide command listing Examples
231. ot up but you can also set the Channel manually see Interfaces for details e Access Points that use the same Channel should be installed as far away from each other as possible to reduce potential interference IEEE 802 11 Specifications In 1997 the Institute of Electrical and Electronics Engineers IEEE adopted the 802 11 standard for wireless devices operating in the 2 4 GHz frequency band This standard includes provisions for three radio technologies direct sequence spread spectrum frequency hopping spread spectrum and infrared Devices that comply with the 802 11 standard operate at a data rate of either 1 or 2 Megabits per second Mbits sec 1 6 Avaya Wireless AP 4 5 6 User s Guide ee IEEE 802 11 Specifications 802 11b In 1999 the IEEE modified the 802 11 standard to support direct sequence devices that can operate at speeds of up to 11 Mbits sec The IEEE ratified this standard as 802 11b 802 11b devices are backwards compatible with 2 4 GHz 802 11 direct sequence devices that operate at 1 or 2 Mbits sec Available Frequency Channels vary by regulatory domain and or country See 802 11b Channel Frequencies for details 802 11a Also in 1999 the IEEE modified the 802 11 standard to support devices operating in the 5 GHz frequency band This standard is referred to as 802 11a 802 11a devices are not compatible with 2 4 GHz 802 11 or 802 11b devices 802 11a radios use a radio technology called Orthogonal Fr
232. ot11bg 4 dot11a only 5 dott 1g wifi TX Power Control The TX Power Control feature lets the user configure the transmit power level of the card in the AP at one of four levels e 100 of the maximum transmit power level of the card e 50 e 25 e 12 5 A 106 Avaya Wireless AP 4 5 6 User s Guide Ra 5 1 802 11b Wireless Interface Commands Perform the following commands to enable TX Power Control and set the transmit power level Device Name gt set txpowercontrol enable Device Name gt set wif interface number currenttxpowerlevel lt value gt Allowed values are 1 100 2 50 3 25 4 12 5 Autochannel Select ACS ACS is enabled by default Reboot after disabling or enabling ACS Device Name gt set wif lt index gt autochannel lt enable disable gt Device Name gt reboot 0 Enable Disable Closed System Device Name gt set wif lt index gt closedsys lt enable disable gt 802 11b Wireless Interface Commands The wireless interface group parameter is wif For Single radio APs the wireless interface uses table index 3 See Interfaces for information on these parameters Jack Why are mode and tx power control not in the tables Avaya Wireless AP 4 5 6 User s Guide A 107 802 11b Wireless Interface Commands 802 11b Parameters Name Type Values Access CLI Parameter Wireless Interfaces Group N A R wif
233. ou can configure up to ten Syslog hosts Name Type Values Access CLI Parameter Syslog Host Table Table N A R sysloghosttbl Table Index Integer 1 10 N A index IP Address IpAddress User Defined RW ipaddr Comment optional DisplayString User Defined RW cmt Status optional Integer enable RW status disable delete Syntax Examples Device Name gt set syslogpriority lt 1 7 default is 6 gt Device Name gt set syslogstatus lt enable disable gt A 94 Avaya Wireless AP 4 5 6 User s Guide System Information Commands System Information Commands System Parameters flash version S N bootloader version Name Type Values Access CLI Parameter System Group N A R system Name Display String User Defined RW sysname Location Display String User Defined RW sysloc Contact Name Display String User Defined RW sysctname Contact E mail Display String User Defined RW sysctemail Contact Phone Display String User Defined RW sysctphone Maximum 254 characters FLASH Backup Integer 0 65535 seconds RW sysflashbckint Interval Flash Update 0 RW sysflashupdate 1 System OID DisplayString N A R sysoid Descriptor DisplayString System Name R sysdescr 1of2 Avaya Wireless AP 4 5 6 User s Guide A 95 System Information Commands values Name Type Values Access CLI Parameter Up
234. ovide Access to a Wireless Host in the Same Workgroup The VLAN feature can allow wireless clients to manage the AP If the VLAN Management ID matches a VLAN User ID then those wireless clients who are members of that VLAN will have AP management access 4 146 Avaya Wireless AP 4 5 6 User s Guide Ae ji Configure Multiple SSID VLAN Security Mode Entries A CAUTION Once a VLAN Management ID is configured and is equivalent to one of the VLAN User IDs on the AP all members of that User VLAN will have management access to the AP Be careful to restrict VLAN membership to those with legitimate access to the AP 1 Click Configure 5 VLAN 2 Set the VLAN Management ID to use the same VLAN ID as one of the configured SSID VLAN pairs See Typical User VLAN Configurations for details 3 Place a check mark in the Enable VLAN Protocol box Disable VLAN Management 1 Click Configure gt SSID VLAN Security 2 Remove the check mark from the Enable VLAN Protocol box to disable all VLAN functionality MAC Access The MAC Access tab allows you to build a list of stations identified by their MAC addresses authorized to access the network through the AP The list is stored inside each AP within your network Note that you must reboot the AP for any changes to the MAC Access Control Table to take effect Avaya Wireless AP 4 5 6 User s Guide 4 147 Configure Multiple SSID VLAN Security Mode Entries sl e Enable MAC Access Contr
235. p gt reboot 0 to confirm your new settings to confirm your new settings gt set ipaddrtype static ipaddr 10 0 0 12 ipsubmask 255 255 255 0 tftpipaddr 10 0 0 20 gt set gt set gt set gt set tftpfilename MyImage bin ipgw 10 0 0 30 gt show ip gt show tftp gt reboot 0 gt set Result The AP will reboot and then download the image file You should see downloading activity begin after a few seconds within the TFTP server s status screen When the download process is complete configure the AP as described in Getting Started and Advanced Configuration Avaya Wireless AP 4 5 6 User s Guide 7 23 Recovery Procedures E Setting IP Address using Serial Port Use the following procedure to set an IP address over the serial port using the CLI The network administrator typically provides the AP IP address Hardware and Software Requirements e Standard straight through serial data RS 232 cable with a one male DB 9 connector and one female DB 9 connector The AP comes with a female 9 pin serial port e ASCII Terminal software such as HyperTerminal Attaching the Serial Port Cable 1 Unlock and remove the cable cover from the AP 2 Remove the front cover from the AP to reveal the serial port 3 Connect one end of the serial cable to the AP and the other end to a serial port on your computer 4 Power on the computer and AP if necessary 7 24 Avaya Wireless AP 4 5 6 User s Guide
236. piscando Deferred Transmissions n Errors Late Collisions Unknown Protocols Out Octets bytes Excessive Collisions Internal MAC Transmit Errors Carrier Sense Errors Out Discards Frames Too Long Out Errors Internal MAC Receive Errors Output Queue Length Transmitted Fragment Count Multicast Transmitted Frame Count Failed Count Retry Count Multiple Retry Count Duplicate Frame Count Successful RTS Count Failed RTS Count Failed ACK Count Received Fragment Count Multicast Received Frame Count FCS Error Out Unicast Packets Out Non unicast Packets 5 14 Avaya Wireless AP 4 5 6 User s Guide r e Link Test Link Test This tab displays information on the quality of the wireless link to clients and other APs in the Wireless Distribution System During a Link Test the Access Point and the selected device exchange a series of packets to test the strength of the connection The devices start by exchanging packets at the 11 Mbits sec rate but fall back to the slower rates if necessary gt NOTE This feature is not available for an 802 11b g AP Also this feature is not available if you are using a non Avaya Wireless client with an 802 11b AP Follow these steps to perform a Link Test 1 Open the Remote Link Test screen 2 Click Explore Result A list of detected stations will appear If the list does not appear automatically click Refresh Avaya Wireless AP 4 5 6 User s Guide 5 15 Link Test mka Fig
237. ple Access Points you may prefer to maintain this list on a centralized location using the RADIUS parameters see RADIUS Commands Monitoring Parameters Using the show command with the following table parameters will display operating statistics for the AP these are the same statistics that are described in Monitor Information for the HTTP Web interface staticmp Displays the ICMP Statistics statarptbl Displays the IP ARP Table Statistics statbridgetbl Displays the Learn Table statiapp Displays the IAPP Statistics statradius Displays the RADIUS Authentication Statistics statif Displays information and statistics about the Ethernet and wireless interfaces stat802 11 Displays additional statistics for the wireless interfaces statethernet Displays additional statistics for the Ethernet interface statmss Displays station statistics and Wireless Distribution System links A 70 Avaya Wireless AP 4 5 6 User s Guide e e Packet Forwarding Commands Packet Forwarding Commands Packet Forwarding Parameters The following parameters control the Packet Forwarding feature which redirects wireless traffic to a specific MAC address Name Type Values Access CLI Packet Forwarding Group N A R pktfwd MAC Address Packet Forwarding MacAddress User Defined RW pktfwdmacaddr MAC Address Packet Forwarding Integer enable RW pktfwdstatus sh disable default Packet Forwarding Integer 0 any
238. point logs Session Start Log in and Session Stop Log out events for each wireless client as an alternative to RADIUS accounting See RFC 3164 at http www rfc editor org for more information on the Syslog standard Avaya Wireless AP 4 5 6 User s Guide 4 109 Alarms _ ij Figure 4 15 Syslog Configuration Screen Groups Alarm Host Table Syslog This tab is used to configure hosts or servers on the network that will receive syslog messages from the access point Enable Syslog Vv Syslog Port Number 514 Syslog Lowest Priority Logged 6 OK Gals Add 2 r Et m IP Address Comment Status 192 168 0 213 Enable 4 110 Avaya Wireless AP 4 5 6 User s Guide 9 Alarms Setting Syslog Event Notifications Syslog Events are logged according to the level of detail specified by the administrator Logging only urgent system messages will create a far smaller more easily read log then a log of every event the system encounters Determine which events to log by selecting a priority defined by the following scale Event Priority Description LOG EMERG 0 system is unusable LOG ALERT 1 action must be taken immediately LOG CRIT 2 critical conditions LOG ERR 3 error conditions LOG WARNING 4 warning conditions LOG NOTICE 5 normal but significant condition LOG INFO 6 informational LOG DEBUG 7 debug level messages Avaya Wireless AP 4 5 6 Use
239. points detected during the scan 2 Click Configure gt Security gt RAD 3 Enable RAD by checking Enable Rogue AP Detection 4 Enter the Scan Interval The Scan Interval specifies the time period in minutes between scans and can be set to any value between 15 and 1440 minutes 5 Click OK The results of the RAD scan be viewed in the Status page in the HTTP interface Avaya Wireless AP 4 5 6 User s Guide 4 153 Configure Multiple SSID VLAN Security Mode Entries PE Figure 4 22 Rogue Access Point Detection Screen Bridge Security MAC Access Encryption Authentication RAD To scan for Access Points within range of your AP enable the Rogue AP Detection RAD feature Set the scan interval in minutes Note When Rogue AP Detection is enabled the Security Alarm Group must aiso be enabled and 2 Trap Host configured to receive the list of access points detected during the scan Enable Rogue AP Detection O Scan Interval 15 1440 minutes 15 Last Successful Scan Time DD HH MM SS 00 00 00 00 Number of New access points detected in last scan o Ok gt Cancel 4 154 Avaya Wireless AP 4 5 6 User s Guide hay Ka RADIUS The AP communicates with a network s RADIUS server to provide the following features e MAC Access Control by Means of RADIUS Authentication e RADIUS Authentication with 802 1x e RADIUS Accounting The network administrator can configure multiple RADIUS Authentication Serv
240. pond to a request in the Response Time field Range is 1 10 seconds default is 3 seconds 4 158 Avaya Wireless AP 4 5 6 User s Guide asa Nani 11 Enter the maximum number of times an authentication request may be retransmitted in the Maximum Retransmissions field Range is 0 4 default is 3 12 If you are configuring a back up server repeat Steps 6 through 11 for the back up server 13 Click OK to save your changes 14 Reboot the AP for these changes to take effect Avaya Wireless AP 4 5 6 User s Guide 4 159 RADIUS _ _ Figure 4 23 RADIUS MAC Based Access Control Screen RADIUS Auth EAP 802 1x Auth RADIUS Acct The RADIUS access control provides MAC based authentication of wireless clients via a standard RADIUS server s Primary and backup RADIUS Authentication servers can be configured Note ht order to enable the RADIUS MAC based authentication feature at feast one RADIUS server must be configured Note Changes to these parameters require access point reboot in order to take effect Enable RADIUS MAC Access Control Id Enable Primary RADIUS Authentication Server m Enable Backup RADIUS Authentication Server oO Authorization Lifetime seconds foo MAC Address Format Type DachDelimitead E RADIUS Authentication Server Primary Backup Server Addressing Format IP Address E e Address a Server NamellP Address 0 0 0 0 0 0 0 0 Destination Port 1812 1812 Shared Secret ang kasa
241. pport 4 Rogue Access Point no yes yes Detection 1 of 2 Avaya Wireless AP 4 5 6 User s Guide C 5 Software Features E Feature 802 11b 802 11a 802 11b g Wi Fi Protected Access N A Available with yes WPA AP 600a b g or 802 11a b g Upgrade Kit Not available with AP 5 Note 1 Key lengths supported by 802 11a 64 bit 128 bit and 152 bit Key lengths supported by 802 11b 64 bit and 128 bit Key lengths supported by 802 11b g 64 bit 128 bit and 152 bit Note 2 EAP MD5 EAP TLS EAP TTLS and PEAP client supplicant supported Note 3 Use in conjunction with WPA or 802 1x Authentication Note 4 Support is provided for a primary and backup RADIUS authentication server for both MAC based authentication and 802 1x authentication 2of2 C 6 Avaya Wireless AP 4 5 6 User s Guide eT Software Features Network Functions Feature 802 11b 802 11a 802 11b g DHCP Client yes yes yes DHCP Server yes yes yes Inter Access Point yes yes yes Protocol IAPP Link Integrity yes yes yes System Logging yes yes yes Syslog RADIUS Accounting yes yes yes Support 1 DNS Client yes yes yes TCP IP Protocol yes yes yes Support Virtual LAN Support One VLAN AP 5 One VLAN per Up to 16 ID per wireless interface VLAN IDs wireless per wireless AP 5 with 802 1 1a b g upgrade kit Up to 16 VLAN IDs per wireless interface interface interface
242. r Defined RW dnssecdnsipaddr Server IP Address Default Domain Integer32 User Defined upto RW dnsdomainname Syntax Examples Device Name Device Name server Device Name server Device Name A 46 gt set dnsstatus enable gt set dnsprisvripaddr lt IP address of primary DNS gt set dnssecsvripaddr lt IP address of secondary DNS gt set dnsdomainname lt default domain name gt Avaya Wireless AP 4 5 6 User s Guide DNS Client Commands Device Name gt show dns Figure A 13 Results of show dns CLI command Device Name gt show dns DNS Client Group dnsstatus H dnsprisvripaddr dnssecsvripaddr dnsdomainname eon oop oo Do Avaya Wireless AP 4 5 6 User s Guide A 47 Ethernet Interface Commands lt i Ethernet Interface Commands Ethernet Interface Parameters Name Type Values Access CLI Parameter Ethernet Interface Group N A R ethernet Speed Integer 10halfduplex RW etherspeed 10fullduplex 10autoduplex 100halfduplex 100fullduplex autohalfduplex autoautoduplex default MAC Address PhyAddress N A R ethermacaddr Syntax Examples Device Name gt set etherspeed lt value gt See Table A 1 Device Name gt reboot 0 A 48 Avaya Wireless AP 4 5 6 User s Guide tl Ethernet Interface Commands Table A 1 Ethernet Speed and Transmission Mode
243. r enable 1 RW status disable 2 delete 3 2of2 gt NOTE The filter Operation Type passthru or block applies only to the protocol filters that are enabled in this table gt NOTE The AP requires a reboot for changes to the Ethernet Protocol Filtering Table to take effect Static MAC Address Filter Table Name Type Values Access CLI Parameter Static MAC Table N A R staticmactbl Address Filter Table Table Index N A N A R index Static MAC PhysAddress User Defined RW wiredmacaddr Address on Wired Network 1 of 2 Avaya Wireless AP 4 5 6 User s Guide A 51 Filtering Commands CO Name Type Values Access CLI Parameter Static MAC PhysAddress User Defined RW wiredmask Address Mask on Wired Network Static MAC PhysAddress User Defined RW wirelessmacaddr Address on Wireless Network Static MAC PhysAddress User Defined RW wirelessmask Address Mask on Wireless Network Comment DisplayString max 255 RW cmt optional characters Status optional Integer enable default RW status disable delete 20f2 Proxy ARP Parameters Name Type Values Access CLI Parameter Proxy ARP Group N A R parp Status Integer enable RW parpstatus disable default A 52 Avaya Wireless AP 4 5 6 User s Guide Filtering Commands IP ARP Filtering Parameters
244. r more information 44 caution Resetting the AP to its factory default configuration will permanently over write all changes that have made to the unit The AP will reboot automati cally after this command has been issued Figure 6 14 Reset to Factory Defaults Command Screen Update AP Retrieve File Rese X Help Link X Status This tab is used to reset the access point configuration to factory default values Configure Warning Resetting the access point to its factory defauit configuration wiki cause ali changes that have been made to the unit to be permanently lost The access point will reboot once this function is executed Monitor Reset to Factory Default Commands Help Exit Avaya Wireless AP 4 5 6 User s Guide 6 21 Help Link caai Help Link To open Help click the Help button on any display screen During initialization the AP on line help files are downloaded to the default location C Program Files Avaya_ Wireless AP HTML index htm gt NOTE Use the forward slash character rather than the back slash character when configuring the Help Link location gt NOTE Add the AP s management IP address to the Internet Explorer list of Trusted Sites The Avaya Wireless AP Help information is available in English French German Italian Spanish and Japanese The Help files are copied to your computer in one language only If you want to place these files on a shared drive copy the
245. r parameters that start with the letter The more letters you enter the fewer the results returned Notice that there is no space between the letters and the question mark Device Name gt show ipa Figure A 6 Result of show ipa CLI command Device Name gt show ipa ipaddr ipaddrt ype iparp iparpf lt ipaddr iparpf ltstatus iparpf ltsubmask Device Name gt show iparp Figure A 7 Result of show iparp CLI command Device Name 1 gt show iparp iparp iparpf ltipaddr iparpf ltstatus iparpf ltsubmask Device Name show iparp_ Example 4 Displaying prompts for successive parameters Enter the command a space and then Then when the parameter prompt appears enter the parameter value Result The parameter is changed and a new CLI line is echoed with the new value in the first part of the following example the value is the IP Address of the TFTP server A 18 Avaya Wireless AP 4 5 6 User s Guide las CLI Help After entering one parameter you may add another to the new CLI line to see the next parameter prompt and so on until you have entered all of the required parameters The following example shows how this is used for the download Command The last part of the example shows the completed download command ready for execution Device Name gt download lt TFTP IP Address gt Device Name gt download 192 168 0 101 lt File Name gt Device Name gt download 192 168 0 101 apimage
246. r s Guide 4 111 Alarms i Configuring Syslog Event Notifications You can configure the following Syslog settings from the HTTP interface 4 112 Enable Syslog Place a check mark in the box provided to enable system logging Syslog Port Number This field is read only and displays the port number 514 assigned for system logging Syslog Lowest Priority Logged The AP will send event messages to the Syslog server that correspond to the selected priority and above For example if set to 6 the AP will transmit event messages labeled priority 0 to 6 to the Syslog server s This parameter supports a range between 1 and 7 6 is the default e Syslog Host Table This table specifies the IP addresses of a network servers that the AP will send Syslog messages to Click Add to create a new entry Click Edit to change an existing entry Each entry contains the following field IP Address Enter the IP Address for the management host Comment Enter an optional comment such as the host name Status The entry is enabled automatically when saved so the Status field is only visible when editing an entry You can also disable or delete entries by changing this field s value Avaya Wireless AP 4 5 6 User s Guide mE Bridge Bridge The AP is a bridge between your wired and wireless networking devices As a bridge the functions performed by the AP include e MAC address learning e Forward and filtering d
247. racters or 16 ASCII characters Avaya Wireless AP 4 5 6 User s Guide SUE Configure Multiple SSID VLAN Security Mode Entries Enable 802 1x Security Follow these steps to enable 802 1x on an SSID VLAN pair 1 Set Security Mode to 802 1x 2 Select an Encryption Key Length An 802 11b AP supports 64 bit and 128 bit encryption An 802 11a or 802 11b g AP supports 64 bit and 128 bit encryption 3 Enter a Re keying Interval The Re keying Interval determines how often a client s encryption key is changed and can be set to any value between 60 65535 seconds Rekeying frustrates hacking attempts without taxing system resources Setting a fairly frequent rekey value 900 seconds 15 minutes effectively protects against intrusion without disrupting network activities Enable Mixed Mode 802 1x and WEP Encryption Follow these steps to use both 802 1x and WEP Encryption simultaneously clients that do not support 802 1x use WEP Encryption for security purposes on an SSID VLAN pair 1 Set Security Mode to Mixed Avaya Wireless AP 4 5 6 User s Guide 4 143 Configure Multiple SSID VLAN Security Mode Entries v56 8 2 Enter a Re keying Interval The Re keying Interval determines how often a client s encryption key is changed and can be set to any value between 60 65535 seconds Rekeying frustrates hacking attempts without taxing system resources Setting a fairly frequent rekey value 900 seconds
248. radio types 2 of 2 You configure an SSID VLAN to use a particular Security mode by setting the Security Mode parameter in the SSID VLAN and Security table see Configure Multiple SSID VLAN Security Mode Entries The following table summarizes the Security Mode options available in the HTTP 4 128 Avaya Wireless AP 4 5 6 User s Guide Security Interface s Configure gt SSID VLAN Security Mode Wireless A B screen and describes how each of these options correspond to the six Security Modes listed above Authentication Mode Authentication Encryption Method Setting Method Employed Employed None None None or manually configured Static WEP settings 802 1x 802 1x Dynamic WEP Keying Mixed 802 1x or None Dynamic WEP Keying depends on a client s or Static WEP configuration depends on client s configuration WPA 802 1x Dynamic TKIP Keying WPA PSK Manually configured Dynamic TKIP Keying Pre shared Key gt NOTE Before enabling the 802 1x Mixed or WPA mode the 802 1x server should be configured Set the encryption key in Mixed mode after the authentication is set to Mixed mode Avaya Wireless AP 4 5 6 User s Guide 4 129 SSID VLAN and Security Modes EN Authentication Protocol Hierarchy There is a hierarchy of authentication protocols defined for the AP The hierarchy is as follows from Highest to lowest e 802 1x authentication e MAC Access Control
249. re if you want to encrypt the WDS link you must configure each Access Point to use WEP encryption either WEP encryption only or Mixed Mode and each Access Point must have the same Encryption Key s See Security Avaya Wireless AP 4 5 6 User s Guide 4 61 Interfaces a e If your network does not support spanning tree be careful to avoid creating network loops between APs For example creating a WDS link between two Access Points connected to the same Ethernet network will create a network loop if spanning tree is disabled For more information refer to the Spanning Tree section WDS Setup Procedure gt NOTE You must disable Auto Channel Select to create a WDS Each Access Point that is a member of the WDS must have the same Channel setting to communicate with each other To setup a wireless backbone follow the steps below for each AP that you wish to include in the Wireless Distribution System 1 Confirm that Auto Channel Select is disabled 2 Write down the MAC Address of the radio that you wish to include in the Wireless Distribution System 3 Open the Wireless Interface Configuration screen 4 Scroll down to the Wireless Distribution System heading 5 Click the Edit button to update the Wireless Distribution System WDS Table 6 Enter the MAC Address that you wrote down in Step 2 in one of the Partner MAC Address field of the Wireless Distribution Setup window 7 Set the Status of the device to Enabl
250. regulatory domain for which the Domain AP is certified Not all features or channels are available in all countries The available regulatory domains include e FCC U S Canada Mexico and Australia e ETSI Europe and the United Kingdom e MKK Japan e SG Singapore e ASIA China and South Korea e TW Taiwan and Hong Kong Network Name Enter a Network Name between 2 and 31 SSID characters long for the wireless network You must configure each wireless client to use this name as well 3 of 7 4 54 Avaya Wireless AP 4 5 6 User s Guide es Interfaces Parameter Description Auto Channel The AP scans the area for other Select Access Points and selects a free or relatively unused communication channel This helps prevent interference problems and increases network performance By default this feature is enabled See 802 11a Channel Frequencies and 802 11g Channel Frequencies for a list of Channels gt NOTE You cannot disable Auto Channel Select for 802 11a products in Europe see Dynamic Frequency Selection DFS for details 4of7 Avaya Wireless AP 4 5 6 User s Guide 4 55 Interfaces Parameter Description Frequency Channel e When Auto Channel Select is enabled this field is read only and displays the Access Point s current operating Channel e When Auto Channel Select is disabled you can specify the Access Point s channel
251. restricted to a gateway that allowed access to only the Internet A member of the GUEST workgroup could send and receive e mail and access the Internet but would be prevented from accessing servers or hosts on the local corporate network Typical User VLAN Configurations VLANs segment network traffic into workgroups which enable you to limit broadcast and multicast traffic Workgroups enable clients from different VLANs to access different resources using the same network infrastructure Clients using the same physical network are limited to those resources available to their workgroup The AP can segment users into a maximum of 16 different workgroups 32 if using two cards in a Dual radio AP based on an SSID VLAN pair also referred as a VLAN Workgroup or a Sub network 4 136 Avaya Wireless AP 4 5 6 User s Guide pa k Configure Multiple SSID VLAN Security Mode Entries gt NOTE The ability to configure up to 16 VLAN SSID pairs and configure a security mode per SSID is available only for the AP 6 and APs that have an 802 11a b g or 802 11b g Upgrade Kit installed The four primary scenarios for using VLAN workgroups are as follows 1 VLAN disabled Your network does not use VLANs but you can configure the AP to use multiple SSIDs 2 VLAN enabled all VLAN Workgroups use the same VLAN ID Tag 3 VLAN enabled each VLAN workgroup uses a different VLAN ID Tag 4 VLAN enabled a mixture of Tagged and Untagged workgro
252. roper TFTP server IP address the proper AP Image file name and that the TFTP server is operational e Make sure the TFTP server is configured to both Transmit and Receive files with no automatic shutdown or time out Download Updates from a TFIP Server using the Web Interface Download the latest software from http www avaya com support Copy the latest software updates to your TFTP server In the Web Interface click the Commands button and select the Download tab Enter the IP address of your TFTP server in the field provided Enter the File Name including the file extension Enter the full directory path and file name If the file is located in the default TFTP directory you need enter only the file name Select the File Type from the drop down menu use Img for software updates Select Download amp Reboot from the File Operation drop down menu Click OK 9 The Access Point will reboot automatically when the download is 2 46 complete Avaya Wireless AP 4 5 6 User s Guide nE E Additional Hardware Features Download Updates from a TFIP Server using the CLI Interface Download the latest software from http www avaya com support Copy the latest software updates to your TFTP server Open the CLI interface via Telnet or a serial connection Enter the CLI password when prompted a BN o N a Enter the command download lt tftpaddr gt lt filename gt img Result The downl
253. rvation The 802 11 standard supports optional RTS CTS communication based on packet size Without RTS CTS a sending radio listens to see if another radio is already using the medium before transmitting a data packet If the medium is free the sending radio transmits its packet However there is no guarantee that another radio is not transmitting a packet at the same time causing a collision This typically occurs when there are hidden nodes clients that can communicate with the Access Point but are out of range of each other in very large cells Avaya Wireless AP 4 5 6 User s Guide 4 29 Interfaces lt i When RTS CTS occurs the following occurs 1 The sending radio first transmits a Request to Send RTS packet to confirm that the medium is clear 2 When the receiving radio successfully receives the RTS packet it transmits back a Clear to Send CTS packet to the sending radio 3 When the sending radio receives the CTS packet it sends the data packet to the receiving radio The RTS and CTS packets contain a reservation time to notify other radios including hidden nodes that the medium is in use for a specified period This helps to minimize collisions While RTS CTS adds overhead to the radio network it is particularly useful for large packets that take longer to resend after a collision occurs RTS CTS Medium Reservation is an advanced parameter and supports a range between 0 and 2347 bytes When set to 2347 the de
254. rvices tab must be enabled to configure SNMPv3 Telnet CLI For the CLI interface via serial or Telnet Password Enter a password in both the Password field and the Confirm field The default password is public HTTP Web For the Web browser HTTP interface Enter Password a password in both the Password field and the Confirm field The default password is public gt NOTE For security purposes Avaya recommends changing ALL PASSWORDS from the default public immediately to restrict access to your network devices to authorized personnel If you lose or forget your password settings you can always perform the Reset to Factory Default Procedure 2of2 4 66 Avaya Wireless AP 4 5 6 User s Guide Pas Management IP Access Table The Management IP Access table limits in band management access to the IP addresses or range of IP addresses specified in the table This feature applies to all management options SNMP HTTP and CLI except for CLI management over the serial port To configure this table click Add and set the following parameters e IP Address Enter the IP Address for the management station e IP Mask Enter a mask that will act as a filter to limit access to a range of IP Addresses based on the IP Address you already entered The IP mask 255 255 255 255 would authorize the single station defined by the IP Address to configure the Access Point The AP would ignor
255. s Guide RADIUS Commands RADIUS Accounting Parameters gt NOTE Use a server name only if you have enabled the DNS Client functionality See DNS Client Commands Name Type Values Access CLI Parameter RADIUS Table N A R radacctbl Accounting Primary RADIUS Integer 1 R index Backup RADIUS Integer 2 R index RADIUS Server Integer enable RW status Status disable default Server Addressing Integer ipaddr default RW seraddrfmt Format see note namie Server IP Address IpAddress User Defined RW ipaddr or Name Display enter an IP address if String seraddrfmt is ipaddr or a name if set to name up to 254 characters if using a name Port optional Integer User Defined RW port 1813 default Shared Secret DisplayString User Defined W ssecret max 63 characters 1 of 2 Avaya Wireless AP 4 5 6 User s Guide A 77 RADIUS Commands a Name Type Values Access CLI Parameter Response Time Integer 1 4 seconds RW responsetm sec 3 sec default Maximum Integer 1 10 RW maxretx Retransmissions 3 default optional 2of2 Syntax Examples Configure RADIUS Authentication server Device Name gt set radiustbl lt index gt status enable seraddrfmt lt ipaddr or name gt ipaddr lt RADIUS IP address or name gt port lt user defined gt ssecret lt user defined gt responsetm lt 1 to 10 seconds gt maxretx lt 0 to 4 time
256. s Guide 4 13 Network CO Figure 4 3 DHCP Server Configuration Screen IP Configuration DHC 2 Link Integrity The DHCP server in the access point allows for dynamic IP address assignment to both wireless clients and wired hosts Note The DHCP server can only be enabled after at least one entry has been added to the DHCP server IP pool table Changes to these parameters require access point reboot in order to take effect Enable DHCP Server Vv Subnet Mask 255 255 255 0 Gateway IP Address 192 168 0100 Primary DNS IP Address 192 168 0 1 Secondary DNS IP Address 192 168 0 2 Number of IP Pool Table Entries f m iii IP Pool Table Add gt Edit Start IP End IP Default Lease Maximum Lease Comment Status 192 168 0 101 192 168 0 110 86400 86400 Enable 4 14 Avaya Wireless AP 4 5 6 User s Guide Network You can configure and view the following parameters within the DHCP Server Configuration screen Parameter Description Enable DHCP Place a check mark in the box provided to Server enable DHCP Server functionality gt NOTE You cannot enable the DHCP Server functionality unless there is at least one IP Pool Table Entry configured Subnet Mask This field is read only and reports the Access Point s current subnet mask DHCP clients that receive dynamic addresses from the AP will be assigned this same subnet mask Gateway IP Address The AP will assign the specified addre
257. s client with the AP Wireless 802 11b g You can configure the following radio parameters for an 802 11b g AP gt NOTE You must reboot the Access Point before any changes to these parameters take effect Avaya Wireless AP 4 5 6 User s Guide 4 45 Interfaces Parameter Description Operational Mode An 802 11b g wireless interface can be configured to operate in the following modes e 802 11b mode only The radio uses the 802 11b standard only 802 11g mode only The radio is optimized to communicate with 802 11g devices This setting will provide the best results if this radio interface will only communicate with 802 119 devices e 802 11b g mode This is the default mode Use this mode if you want to support a mix of 802 11b and 802 11g devices e 802 11g wifi This mode was developed for Wi Fi compliance testing purposes It is similar to 802 1 1g only mode In general you should use either 802 11g only mode if you want to support 802 11g devices only or 802 11b g mode to support a mix of 802 11b and 802 11g devices 10f 5 4 46 Avaya Wireless AP 4 5 6 User s Guide Interfaces Parameter Description Physical Interface Type Depending on the Operational Mode this field reports e For 802 11b mode only 802 11b CCK DSSS 2 4 GHz For 802 11g and 802 11g wifi modes 802 11g OFDM DSSS 2 4 GHz e For 802 11b g mode 802
258. s gt Device Name gt show radiustbl A 78 Avaya Wireless AP 4 5 6 User s Guide a RADIUS Commands Figure A 15 Results of show radiustbl CLI command OcO AP 2000 gt show radiustbl RADIUS Authentication Group Table 1 Server type s MAC Authentication RADIUS Auth Server Status disable IP Address Host Hame 0 0 0 0 Authentication Port 1812 Response Time 3 Shared Secret KAAAAAAK Server Addressing Format ipaddr Maximum Retransmission 3 Index 2 Server type 5 MAC Authentication RADIUS Auth Server Status disable IP Address Host Hame 0 0 0 0 Authentication Port 1812 Response Time 3 Shared Secret AARAA RA N Server Addressing Format ipaddr Maximum Retransmission 3 Index 3 Server type EAP 802 1x Authentication RADIUS Auth Server Status disable IP Address Host Name a 0 0 0 0 Authentication Port 1812 Response Time 3 Shared Secret kaka haka hahahaha Server Addressing Format ipaddr Maximum Retransmission 3 Index 4 Server type EAP 802 1x Authentication RADIUS Auth Server Status disable IP Address Host Name 5 0 0 0 0 Authentication Port 1812 Response Time 3 Avaya Wireless AP 4 5 6 User s Guide A 79 RADIUS Commands EBA Enable RADIUS MAC Access Control Device Name gt set radmacaccctrl enable Device Name gt reboot 0 Set MAC Address Format Type Device Name gt set radmacaddrformat lt dashdelimited colondelimited singledashdelimit
259. s required Entering Text Strings When you enter a text string that contains spaces for a parameter you must use a string delimiter for the AP to correctly interpret the text string For this CLI implementation the single quote or double quote character can be used at the beginning and at the end of the string For example Device Name gt set sysname Lobby Does not need quote marks Device Name gt set sysname Front Lobby Requires quote marks Avaya Wireless AP 4 5 6 User s Guide A 13 CLI Help CC The scenarios supported by this CLI are My Desk in the office Double Quotes My Desk in the office Single Quotes My Desk in the office Single Quotes within Double Quotes My Desk in the office Double Quotes within Single Quotes Daniel s Desk in the office One Single Quote within Double Quotes Daniel s Desk in the office One Double Quote within Single Quotes The string delimiter does not have to be used for every string object You must use the single quote or double quote only for text strings that contain blank spaces If the text string does not contain blank spaces then the string delimiters single or double quotes mentioned in this section are not required CLI Help This section contains the following topics e The Question Mark e The Help Command The Question Mark This command can be used in a number of ways to display
260. s used to configure Secure Managernont SNMP Telnet CLI and HTTP web parameters HTTPS Access Secure Socket Layer You can access the AP in a secure fashion using Secure Socket Layer SSL over port 443 The AP supports SSLv3 with a 128 bit encryption certificate maintained by the AP for secure communications between the AP and the HTTP client All communications are encrypted using the server and the client side certificate Avaya Wireless AP 4 5 6 User s Guide 4 71 Management Ea gt NOTE SSL requires Internet Explorer version 6 128 bit encryption Service Pack 1 and patch 0323308 The AP comes pre installed with all required SSL files default certificate and private key installed Configuring Secure Socket Layer SSL After enabling SSL the only configurable parameter is the SSL passphrase The default SSL passphrase is If you decide to upload a new certificate and private key using TFTP or HTTP File Transfer you need to change the SSL Certificate Passphrase for the new SSL files Setting Description Enable HTTPS Check this box to enable SSL on the AP Secure Web gt NOTE You need to reboot the AP after enabling or disabling SSL for the changes to take effect SSL Certificate Specifies the SSL Passphrase to use if Passphrase Enable HTTPS has been checked You must change the SSL passphrase when uploading a new certificate private key pair which will have a corresponding pas
261. ser s Guide E System Status Figure 3 1 Enter Network Password Screen Enter Network Password 2 x D gt Please type your user name and password Site 192 168 0 3 Realm Access Product User Name Password I Save this password in your password list Cancel System Status System Status is the first screen to appear each time you connect to the HTTP interface You can also return to this screen by clicking the Status button Avaya Wireless AP 4 5 6 User s Guide 3 3 System Status Figure 3 2 System Status Screen System Status IP Address 192 168 0 4 Contact Name System Name DeviceName Contact Phone System Location System Location Contact Email Up Time DD HH MM 55 00 00 42 29 Object ID System Alarms v2 3 0 514 SN 01R706021386 v2 0 10 Contact Name Contact Phone Number name Organization com 1 3 6 1 4 1 11898 2 4 6 This table displays information on the alarms SNMP Traps generated by the access point They should be deleted once they are reviewed and resolved The alarm severity levels are Critical Major Minor and Informational Description Severity AP Cold Started Informational Link Up Informational Link Up Informational Link Up Informational Link Up Informational AP Warm Started Informational ented 000000 ne Doo Time Stamp O days Ohrs 0m 19s O days Ohrs0m19s O days Ohrs0m19s 0 days Ohrs 0m19s O days OhrsOm19s O days Ohrs0m25s 3 4 Avaya
262. ser s Guide 4 17 Network i Parameter Description IP Pool Table Status IP Pools are enabled upon entry in Entry the table You can also disable or delete continued entries by changing this field s value gt NOTE You must reboot the Access Point before changes to any of these DHCP server parameters take effect 4of4 Link Integrity The Link Integrity feature checks the link between the AP and the nodes on the Ethernet backbone These nodes are listed by IP address in the Link Integrity IP Address Table The AP periodically pings the nodes listed within the table If the AP loses network connectivity that is the ping attempts fail the AP disables its wireless interface until the connection is restored This forces the unit s wireless clients to switch to another Access Point that still has a network connection Note that this feature does not affect WDS links if applicable 4 18 Avaya Wireless AP 4 5 6 User s Guide ans Network You can configure and view the following parameters within the Link Integrity Configuration screen Parameter Description Enable Link Place a check mark in the box provided to Integrity enable Link Integrity Poll Interval The interval between link integrity checks milliseconds Range is 500 15000 ms in increments of 500 ms default is 500 ms Poll The number of times a poll should be Retransmissions retransmitted before
263. smitted by the access point as well as the number of roaming wireless clients Configure Monitor Commands Help Exit Avaya Wireless AP 4 5 6 User s Guide 5 11 RADIUS EC RADIUS This tab provides RADIUS authentication EAP 802 1x authentication and accounting information for both the Primary and Backup RADIUS servers gt NOTE RADIUS authentication and accounting must be enabled for this information to be valid 5 12 Avaya Wireless AP 4 5 6 User s Guide a aT Figure 5 8 RADIUS Monitoring Screen RADIUS Interfaces Link Test Station Statistics This tab provides statistics on the primary and backup RADIUS Authentication and Accounting server s with which the access point is configured to communicate Primary Authentication Server Backup Authentication Server Access Requests Access Accepts Access Retransmissions Access Rejects Access Challenges Malformed Access Responses Authentication Bad Authenticators Timeouts Access Requests Access Accepts Access Retransmissions Access Rejects Access Challenges Malformed Access Responses Authentication Bad Authenticators Timeouts 9200090009 200000090 Primary EAP 802 1x Authentication Backup EAP 802 1x Authentication Server Server Access Requests Access Accepts Access Retransmissions Access Rejects Access Challenges Malformed Access Responses Authentication Bad Authenticators Timeouts Access Requests Access Accep
264. so displays the relative strength of the link a green bar indicates a strong link a yellow bar indicates a fair link and a red bar indicates a weak link Signal dBm The strength of the received signal in dBm decibels referenced to 1 milliwatt The displayed value is the running average since the start of the test and is reported as a negative number Higher numbers correspond to a stronger link For example 40 dBm corresponds to a stronger signal than 50 dBm The bar graph also displays the relative strength of the signal a longer bar represents a stronger signal Noise dBm The strength of the noise detected at the receiver reported in dBm decibels referenced to 1 milliwatt The displayed value is the running average since the start of the test and is reported as a negative number Noise can interfere with the received signal so a smaller noise value corresponds to a stronger link For example a noise level of 95 dBm is more desirable than a noise level of 89 dBm The bar graph displays the relative strength of the noise level a shorter bar represents a weaker noise level and is more desirable than a longer bar Avaya Wireless AP 4 5 6 User s Guide 5 17 Link Test Saas 11 Mbps pkts The number of packets received at the 11 Mbits sec transmit rate since the start of the Link Test In general most packets will be received at the 11 Mbits sec rate if the devices have a strong link 5 5 Mbps
265. sphrase 4 72 Avaya Wireless AP 4 5 6 User s Guide aaa Management Accessing the AP through the HTTPS interface The user should use a SSL intelligent browser to access the AP through the HTTPS interface After configuring SSL access the AP using https followed by the AP s management IP address Telnet Configuration Settings Setting Description Telnet Interface Select the interface Ethernet Wireless Bitmask All Interfaces from which you can manage the AP via telnet This parameter can also be used to Disable telnet management Telnet Port The default port number for Telnet applications is 23 However you can use this field if you want to change the Telnet port for security reasons but your Telnet application also must support the new port number you select 1of2 Avaya Wireless AP 4 5 6 User s Guide 4 73 Management Setting Description Login Idle Timeout Enter the number of seconds the system Timeout Seconds seconds will wait for a login attempt The AP terminates the session when it times out The range is 1 to 300 seconds the default is 30 seconds Session Idle Enter the number of seconds the system will wait during a session while there is no activity The AP will terminate the session on timeout The range is 1 to 36000 seconds the default is 900 seconds 2 of 2 4 74 Avaya Wireless AP 4 5 6 User s
266. ss Point s current operating channel When Auto Channel Select is disabled you can specify the Access Point s operating channel If you decide to manually set the unit s channel ensure that nearby devices do not use the same frequency unless you are setting up a WDS Available Channels vary based on regulatory domain See 802 11b Channel Frequencies Distance Between Set to Large Medium Small APs Microcell or Minicell depending on the site survey for your system The distance value is related to the Multicast Rate described next In general a larger distance between APs means that your clients operate a slower data rates on average See Distance Between APs for more information 2 of 4 Avaya Wireless AP 4 5 6 User s Guide 2 37 Initialization lt Option Description Multicast Rate Sets the rate at which Multicast messages are sent This value is related to the Distance Between APs parameter described previously The table below displays the possible Multicast Rates based on the Distance between APs See Multicast Rate for more information Distance between APs Multicast Rate Large 1 and 2 Mbits sec Medium 1 2 and 5 5 Mbits sec Small 1 2 5 5 and 11 Mbits sec Minicell 1 2 5 5 and 11 Mbits sec Microcell 1 2 5 5 and 11 Mbits sec 3 of 4 2 38 Avaya Wireless AP 4 5 6 User s Guide Initialization Option Descripti
267. ss to its DHCP clients Primary DNS IP Address The AP will assign the specified address to its DHCP clients Secondary DNS IP Address The AP will assign the specified address to its DHCP clients 10f 4 Avaya Wireless AP 4 5 6 User s Guide 4 15 Network Parameter Description Number of IP Pool Table Entries This is a read only field that reports the number of IP address pools currently configured 2 of 4 4 16 Avaya Wireless AP 4 5 6 User s Guide Ca Network Parameter Description IP Pool Table This entry specifies a range of IP addresses Entry that the AP can assign to its wireless clients Click Add to create a new entry Click Edit to change an existing entry Each entry contains the following field Start IP Address End IP Address Default Lease Time optional The default time value for clients to retain the assigned IP address DHCP automatically renews IP Addresses without client notification This parameter supports a range between 3600 and 86400 seconds The default is 86400 seconds Maximum Lease Time optional The maximum time value for clients to retain the assigned IP address DHCP automatically renews IP Addresses without client notification This parameter supports a range between 3600 and 86400 seconds The default is 86400 seconds Comment optional 3 of 4 Avaya Wireless AP 4 5 6 U
268. sword default is public Result The terminal displays a welcome message and then the CLI Prompt Device Name gt 5 Enter show ip Result Network parameters appear Figure 7 2 Result of show ip CLI Command Device Name gt show ip IP Network Group Parameters ipaddr 168 6 6 1 ipsubmask 255 0 0 0 ipgw 160 6 6 1 ipttl 64 ipaddrt ype static Device Name _ 6 Change the IP address and other network values using set and reboot CLI commands similar to the example below use your own IP address and subnet mask Note that IP Address Type is set to Dynamic by default If you have a DHCP server on your 7 26 Avaya Wireless AP 4 5 6 User s Guide as Recovery Procedures network you should not need to manually configure the Access Point s IP address the Access Point will obtain an IP address from the network s DHCP server during boot up Result After each entry the CLI reminds you to reboot however wait to reboot until all commands have been entered Device Name gt set ipaddrtype static Device Name gt set ipaddr lt IP Address gt Device Name gt set ipsubmask lt IP Subnet Mask gt Device Name gt show ip to confirm your new settings Device Name set ipgw Default Gateway IP Address Device Name reboot 0 7 After the AP reboots verify the new IP address by reconnecting to the CLI and enter a show ip command Alternatively you can pi
269. sword field for new units the default SNMP Read Write password is public The TFTP Server IP Address and Image File Name fields are only available if ScanTool detects that the AP does not have a valid software image installed See Client Connection Problems 20f3 Avaya Wireless AP 4 5 6 User s Guide SSS Initialization Step Action 8 Click OK to save your changes Result The Access Point will reboot automatically and any changes you made will take effect 9 When prompted click OK a second time to return to the Scan List screen 10 Click Cancel to close the ScanTool 11 Proceed to Setup Wizard for information on how to access the HTTP interface 30f3 Avaya Wireless AP 4 5 6 User s Guide 2 25 Initialization lt Setup Wizard The first time you connect to an AP s HTTP interface the Setup Wizard launches automatically The Setup Wizard provides step by step instructions for how to configure the Access Point s basic operating parameter such as Network Name IP parameters system parameters and management passwords Setup Wizard Instructions Follow these steps to access the Access Point s HTTP interface and launch the Setup Wizard 1 Open a Web browser on a network computer The HTTP interface supports the following Web browser Microsoft Internet Explorer 6 with Service Pack 1 or later Netscape 6 1 or later 2 If necessary
270. t 4 or 6 Wireless 5 or 7 all interfaces default is 7 Avaya Wireless AP 4 5 6 User s Guide A 97 Telnet Commands Name Type Values Access CLI Parameter Telnet Port Integer User Defined RW telport 23 default Telnet Login Integer 1 300 seconds RW tellogintout Inactivity Time out 30 sec default Telnet Session Idle Integer 1 900 seconds RW telsessiontout meron 900 sec default Syntax Examples Configure Management Interfaces Device Name gt set telifbitmask lt see Table A 4 gt Choose from the following values Table A 4 Interface Bitmask Values Interface Bitmask Description 0 or 2 disable all interfaces All management channels disabled 1 or 3 Ethernet only Ethernet only enabled 4 or 6 Wireless only Wireless only enabled 5 or 7 all interfaces All management channels enabled A 98 Avaya Wireless AP 4 5 6 User s Guide a TFTP Commands Set TCP Port Device Name gt set telport lt Telnet port number default is 23 gt Set Telnet Session Timeouts Device Name gt set tellogintout lt time in seconds between 1 and 300 default is 30 gt Device Name gt set telsessiontout lt time in seconds between 1 and 36000 default is 900 gt TFTP Commands TFIP Server Parameters These parameters relate to upload and download commands When a user exec
271. t AP Image and then download a new image Once the new image is loaded use the Reset to Factory Default Procedure to set the unit to factory default values and reconfigure the unit Avaya Wireless AP 4 5 6 User s Guide SSS Symptoms and Solutions e The AP Supports a Command Line Interface CLI If you are having trouble locating your AP on the network connect to the unit directly using the serial interface and refer to The Command Line Interface for CLI command syntax and parameter names Symptoms and Solutions Connectivity Issues Connectivity issues include any problem that prevents you from powering up or connecting to the AP AP Unit Will Not Boot No LED Activity 1 Make sure your power source is operating 2 Make sure all cables are connected to the AP correctly 3 If you are using Power over Ethernet make sure you are using a Category 5 foiled twisted pair cable to power the AP Serial Link Does Not Work 1 Make sure you are using a standard straight through 9 pin serial cable 2 Double check the physical network connections Avaya Wireless AP 4 5 6 User s Guide 7 3 Symptoms and Solutions CO 3 Make sure your PC terminal program such as HyperTerminal is active and configured to the following values Com Port COM1 COM2 etc depending on your computer Baud rate 9600 Data bits 8 Stop bits 1 Flow Control None Parity None Line Feeds with Carriage Returns In
272. t Appear 1 Verify that the HTML Help files are installed in the default directory C Program Files Avaya_Wireless AP HTML If the Help files are not located in this folder contact your network administrator to find out where the Help files are located on your server Perform the following steps to verify the location or to enter the pathname for the Help files a Click the Commands button in the HTTP interface b Select the Help tab located at the top of the screen c Enter the pathname where the Help files are located in the Help Link box d Click OK when finished Telnet CLI Does Not Work 1 7 8 Make sure you have the proper IP Address Enter your AP IP address in the Telnet connection dialog from a DOS prompt type C gt telnet lt AP IP Address gt Confirm that your computer has an IP address in the same IP subnet as your Access Point Use the CLI over the serial port to check the IP Access Table which can be restricting access to Telnet and HTTP Avaya Wireless AP 4 5 6 User s Guide td Symptoms and Solutions TFTP Server Does Not Work 1 Make sure the TFTP Server has been started 2 Verify the IP address of the TFTP Server The server may be local or remote so long as it has a valid IP address 3 Configure the TFTP Server to point to the folder containing the file to be downloaded or to the folder in which the file is to be uploaded 4
273. t name and Boot Filename parameters to the Active Options list 5 Set the value of the Boot Server host name parameter to the host name or IP Address of the TFTP server For example 11 0 0 7 4 80 Avaya Wireless AP 4 5 6 User s Guide l Management Figure 4 13 DHCP Options Setting the Boot Server Host Name Options for 11 0 0 0 EmbedLab Unused Options Active Options 020 Non local Source Routini a 003 Router 021 Policy Filter Masks ane O06 DNS Servers 022 Max DG Reassembly Sizi bok 007 Log Servers 023 Default Time to live 044 WINS NBNS Servers 024 Path MTU Aging TO lt Remove O66 Boot Server Host Name 025 Path MTU Plateau Table Y ootfile Name Comment Bootfile Name String AP Config 6 Set the value of the Bootfile Name parameter to the Configuration filename For example AP Config 7 If using Syslog set the Log server IP address option 7 Log Servers Avaya Wireless AP 4 5 6 User s Guide 4 81 Filtering kaa 8 Reboot the AP When the AP reboots it receives the new configuration information and must reboot one additional time If a Syslog server was configured the following messages can be observed on the Syslog server AutoConfig for Dynamic IP TFTP server address and configuration filename AutoConfig Successful Filtering The Access Point s Packet Filtering features help control the amount of traffic exchanged between the wired and wireless networks There are fo
274. t the security mode for the SSID VLAN entry and configure the security mode parameters according to one of the following procedures Enable WEP Encryption Enable 802 1x Security Enable Mixed Mode 802 1x and WEP Encryption Enable WPA Mode Enable WPA PSK Mode Avaya Wireless AP 4 5 6 User s Guide 4 141 Configure Multiple SSID VLAN Security Mode Entries ac vc gt NOTE If you have two or more SSIDs per interface with a security mode of None be aware that security being applied in the VLAN is not being applied in the wireless network gt NOTE Some parameters on other pages must be configured for each security mode to function RADIUS server s must be configured to support authentication of WPA 802 1x or WEP clients Encryption keys must be configured for WEP clients if mixed mode is selected Enable WEP Encryption Follow these steps to set up WEP encryption on an SSID VLAN pair 1 2 4 142 Set Security Mode to WEP if necessary Enter Encryption Key 0 only the transmit key the key used to encrypt outgoing data will be automatically set to zero Keep in mind the following For 64 bit encryption an encryption key is 10 hexadecimal characters 0 9 and A F or 5 ASCII characters see ASCII Character Chart For 128 bit encryption an encryption key is 26 hexadecimal characters or 13 ASCII characters For 152 bit encryption an encryption key is 32 hexadecimal cha
275. ters serbaudrate 9666 serdatabits 8 serparity none serstopbits 1 serf lowctrl none SNMP Commands SNMP Parameters A caution Avaya strongly urges you to change the default passwords to restrict access to your network devices to authorized personnel If you lose or for get your password settings you can always perform the Reset to Factory Default Procedure A 84 Avaya Wireless AP 4 5 6 User s Guide LS a SNMP Commands Name Type Values Access CLI Parameter SNMP Group N A R snmp SNMP Interface Oor2 no RW snmpifbitmask Management Bitmask interfaces disable Interface Bitmask 1 or 3 Ethernet 4 or 6 Wireless 5 or 7 all interfaces default is 7 Read Password DisplayString User Defined W snmprpasswd public default max 63 characters Read Write DisplayString User Defined W snmprwpasswd PASSWOTO public default max 63 characters SNMPv3 DisplayString User Defined W snmpv3authpass Authentication public default wd Password max 63 characters SNMPv3 Privacy DisplayString User Defined W snmpv3privpass Ree public default NG max 63 characters Avaya Wireless AP 4 5 6 User s Guide A 85 SNMP Commands SNMP Trap Host Table Parameters When creating table entries you specify the argument name followed by an argument value The CLI applies default values to the omitted arguments Due to the nature of the information the only argument that
276. th a crossover Ethernet cable connected directly to your computer s Ethernet Port Avaya Wireless AP 4 5 6 User s Guide 1 9 Management and Monitoring Capabilities o a See The Command Line Interface for more information on the CLI and for a list of CLI commands and parameters SNMP Management You can also manage and configure an AP using the Simple Network Management Protocol SNMP gt NOTE This requires an SNMP manager program like HP Openview or Castlerock s SNMPc The AP supports several Management Information Base MIB files that describe the parameters that can be viewed and or configured over SNMP e MIB II RFC 1213 e Bridge MIB RFC 1493 e Ethernet like MIB RFC 1643 e 802 11 MIB e Avaya Wireless Enterprise MIB Avaya provides these MIB files on the CD included with each Access Point You need to compile one or more of the above MIBs into your SNMP program s database before you can manage an Access Point using SNMP Refer to the documentation that came with your SNMP manager for instructions on how to compile MIBs 1 10 Avaya Wireless AP 4 5 6 User s Guide po CC CT r 4r Management and Monitoring Capabilities The Enterprise MIB defines the read and read write objects that can be viewed or configured using SNMP These objects correspond to most of the settings and statistics that are available with the other management interfaces Refer to the Enterprise MIB for more information t
277. the link is considered down Range is 0 to 255 default is 5 Target IP Address This entry specifies the IP address of a host Entry on the network that the AP will periodically poll to confirm connectivity The table can hold up to five entries By default all five entries are set to 0 0 0 0 Click Edit to update one or more entries Each entry contains the following field e Target IP Address e Comment optional e Status Set this field to Enable to specify that the Access Point should poll this device You can also disable an entry by changing this field s value to Disable Avaya Wireless AP 4 5 6 User s Guide 4 19 Network Mi Figure 4 4 Link Integrity Configuration Screen IP Configuration DHCP Server Link Integrity This feature checks connectivity between the access point and the network backbone Connectivity is checked by pinging the IP Addresses in the table below Note ff the network backbone connection is Jost then the access point wireless interface amp is are disabled until connectivity is resumed Enable Link Integrity Poll Interval milliseconds Poll Retransmissions nae Target IP Address Table a Target IP Address Comment Status 192 168 0 200 DNS Server Enable 192 168 0 201 Mail Server Enable 192 168 0 25 DHCP Server Disable 0 0 0 0 Disable 0 0 0 0 Disable 4 20 Avaya Wireless AP 4 5 6 User s Guide a Interfaces Interfaces From the Interfa
278. tion Network Name SSID of the wireless cards Assign the Access Point a Primary Network Name before wireless users can communicate with it The clients also need the same Network Name This is not the same as the System Name which applies only to the Access Point The network administrator typically provides the Network Name AP s IP Address If you do not have a DHCP server on your network then you need to assign the Access Point an IP address that is valid on your network HTTP Web Interface Password Each Access Point requires a read write password to access the Web interface The default password is public CLI Interface Each Access Point requires a read write Password password to access the CLI interface The default password is public SNMP Read Each Access Point requires a password to Password allow get requests from an SNMP manager The default password is public 1 of 3 2 2 Avaya Wireless AP 4 5 6 User s Guide ES Prerequisites Information Description SNMPv3 If Secure Management is enabled each Authentication Access Point requires a password for Password sending authenticated SNMPv3 messages The default password is public SNMPv3 Privacy Password If Secure Management is enabled each Access Point requires a password when sending encrypted SNMPv3 data The default password is public SNMP Read Write Password
279. to configure Ethernet Protocol filters Static MAC Address filters Advanced filters and Port filters Alarms is used to enable and disable Alarm SNMP Trap Groups configure the Alarm Host Table and the Syslog feature Bridge is used to configure the Spanning Tree Protocol Storm Threshold protection Intra BSS traffic and Packet Forwarding Security is used to configure security features such as MAC Access Control Encryption WEP and 802 1 RADIUS is used to configure RADIUS features such as RADIUS Access Control and Accounting SSID VLAN SECURITY is used to configure VLAN group membership Security per VLAN and SSID features 6 Click the tab that corresponds to the parameter you want to configure For example click Network to configure the Access Point s TCP IP settings The parameters contained in each of the configuration categories are described later in this chapter 7 Configure the Access Point s parameters as necessary After changing a configuration value click OK to save the change 4 4 Avaya Wireless AP 4 5 6 User s Guide System 8 Reboot the Access Point for all of the changes to take effect System You can configure and view the following parameters within the System Configuration screen Parameters Description Name The name assigned to the AP Refer to Dynamic DNS Support and Access Point System Naming Convention for rules on naming the AP Location The location where the A
280. tocol Storm Threshold protection Intra BSS traffic and Packet Forwarding Security Configure security features such as MAC Access Control WPA WEP Encryption and 802 1x Configure Rogue Access Point Avaya Wireless AP 4 5 6 User s Guide 4 1 Configuring the AP Using the HTTP HTTPS Interface _ e T Detection RAD and define the Scan Interval Configure up to 16 VLAN and SSID pairs per wireless interface and define the security mode for each pair e RADIUS Configure RADIUS features such as RADIUS Access Control and Accounting Configuring the AP Using the HTTP HTTPS Interface Follow these steps to configure an Access Point s operating settings using the HTTP HTTPS interface 1 Open a Web browser on a network computer gt NOTE The HTTP interface supports the following Web browser Microsoft Internet Explorer 6 with Service Pack 1 or later Netscape 6 1 or later 2 If necessary disable the Internet proxy settings For Internet Explorer users follow these steps Select Tools gt Internet Options Click the Connections tab Click LAN Settings 4 2 Avaya Wireless AP 4 5 6 User s Guide ce Cc rST an Configuring the AP Using the HTTP HTTPS Interface If necessary remove the check mark from the Use a proxy server box Click OK twice to save your changes and return to Internet Explorer 3 Enter the Access Point s IP address in the browser s Address field and
281. ts Access Retransmissions Access Rejects Access Challenges Malformed Access Responses Authentication Bad Authenticators Timeouts e00000009 900900900009 Primary Accounting Server Backup Accounting Server Interfaces This tab displays statistics for the Ethernet and wireless interfaces The Operational Status can be up down or testing Avaya Wireless AP 4 5 6 User s Guide 5 13 Interfaces _ _ Figure 5 9 Wireless Interface Monitoring Interfaces Link Test This tab provides information and statistics on the Ethernet interface of the Access Point Ethernet Type ethermet csmacd Description 0 0 MIB Specific Definition apo Physical Address 00 60 40 31 97 B8 Last Change oT a Powe fraps Speed Maximum Packet Size 7 KN N In Octets bytes This tab displays information and statistics on thi In Unicast Packets In Non unicast Packets Wireless In Discards In Errors Type ether Unknown Protocols Description Out Octets bytes MIB Specific Definition Out Unicast Packets MAC Address 00 02 2 Out Non unicast Packets Command 5 Last Change Out Discards Operational Status Out Errors Admin Status Output Queue Length Speed Alignment Error Maximum Packet Size FCS Errors In Octets bytes In Unicast Packets Single Collision Frames In Non unicast Packets Multiple Collision Frames SQE Test Errors In
282. ts associated to the access point The MAC access control table is used to enter the wireless client s MAC Addresses Monitor Note Changes to these parameters require access point reboot in order to take effect Commands Enable MAC Access control Vv Operation Type Block X Help Cancel Exit ml MAC Access Control Table Edit p MAC Address Comment Status 43 DE AC Enable CD EA 45 Enable Rogue Access Point Detection RAD The Rogue AP Detection RAD feature provides an additional security level for wireless LAN deployments Rogue AP detection provides a mechanism for detecting Rogue Access Points by utilizing the coverage of the trusted Access Point deployment Avaya Wireless AP 4 5 6 User s Guide 4 149 Configure Multiple SSID VLAN Security Mode Entries CO The Rogue AP Scan employs background scanning using low level 802 11 scanning functions for effective wireless detection of Access Points in its coverage area with minimal impact on the normal operation of the Access Point This RAD feature can be enabled on an Access Point via its HTTP CLI or SNMP Interfaces The scan repetition duration is configurable The Access Point will periodically scan the wireless network and report all the available Access Points within its coverage area using SNMP traps For additional reliability the results are stored in the Access Point in a table which can be queried via SNMP The BSSID and Channel number of the detected
283. uctural ceiling and the tile ceiling that is provided to help air circulate Many companies also use the plenum to house communication equipment and cables However these products and cables must comply with certain safety requirements such as Underwriter Labs UL Standard 2043 Standard for Fire Test for Heat and Visible Smoke Release for Discrete Products and Their Accessories Installed in Air Handling Spaces The AP has been certified under UL Standard 2043 and can be installed in the plenum only when the following conditions apply e The unit uses Power over Ethernet PoE to receive power over a plenum rated Category 5 Ethernet cable the power cable must not be connected to the unit e The unit s plastic covers have been removed this includes the cable cover the front cover and the back cover Kensington Security Slot The AP enclosure includes a Kensington Security Slot for use with a Kensington locking mechanism When properly installed a Kensington lock can prevent unauthorized personnel from stealing the AP In addition the Kensington locks secures the cable cover in place which prevents tampering with the Ethernet and power cables 2 54 Avaya Wireless AP 4 5 6 User s Guide PI Additional Hardware Features The Kensington Security Slot is shown in the illustrations below the figure on the left shows the slot with the cable cover attached the figure on the right shows the slot with the cable cover removed Se
284. ups Configure Multiple SSID VLAN Security Mode Entries Each SSID VLAN can have its own security mode so that customers can have multiple types of clients non WEP WEP 802 1x WPA on the same system but separated by VLAN gt NOTE You must reboot the AP before any changes to these parameters take effect 1 Click Configure gt SSID VLAN Security gt Mgmt VLAN Avaya Wireless AP 4 5 6 User s Guide 4 137 Configure Multiple SSID VLAN Security Mode Entries CO 2 Place a check mark in the Enable VLAN Protocol box to enable VLAN support If VLAN is disabled all table entries on the SSID VLAN Security page will be disabled 3 Click the tab for Wireless A or Wireless B if applicable 4 Place a check in the Enable Security Per SSID check box 4 138 Avaya Wireless AP 4 5 6 User s Guide S SSSs Configure Multiple SSID VLAN Security Mode Entries Figure 4 18 SSID VLAN and Security Table Wireless A System Network Interfaces Management Filtering Alarms Bridge Security RADIUS SSIDIVLANISecurity Ng Status Mgmt VLAN Wireless A i Configure Monitor SSID VLAN and Security Data Configuration Wireless A Commands This page is used to configure multiple SSIDs Wireless Network Names VLAN IDs and Security Modes In order for the Security per VLAN and SID feature to function VLAN Status must be enabled Mgmt VLAN Help The user must specify unique SSIDs and VLAN IDs values only a single u
285. ur sub categories under the Filtering heading e Ethernet Protocol e Static MAC e Advanced e TCP UDP Port Ethernet Protocol The Ethernet Protocol Filter blocks or forwards packets based on the Ethernet protocols they support 4 82 Avaya Wireless AP 4 5 6 User s Guide red Filtering Follow these steps to configure the Ethernet Protocol Filter 1 Select the interface or interfaces that will implement the filter from the Ethernet Protocol Filtering drop down menu Ethernet Packets are examined at the Ethernet interface Wireless Packets are examined at the Wireless interface All Interfaces Packets are examined at both interfaces Disabled The filter is not used 2 Select the Filter Operation Type If set to Passthru only the enabled Ethernet Protocols listed in the Filter Table will pass through the bridge If set to Block the bridge will block enabled Ethernet Protocols listed in the Filter Table Avaya Wireless AP 4 5 6 User s Guide 4 83 Filtering a 3 Configure the Ethernet Protocol Filter Table This table is pre populated with existing Ethernet Protocol Filters however you may enter additional filters by specifying the appropriate parameters To add an entry click Add and then specify the Protocol Number and a Protocol Name e Protocol Number Enter the protocol number See http Awww iana org assignments ethernet numbers for a list of protocol numbers e Protocol
286. uration Commands DHCP Server Commands DNS Client Commands Ethernet Interface Commands Filtering Commands HTTP and HTTPS Commands IAPP Commands Intra BSS Commands Inventory Management Commands IP Access Table Commands IP Commands A 2 e Link Integrity Commands MAC Access Control Commands Monitoring Parameters Packet Forwarding Commands RAD Commands RADIUS Commands Secure Management Commands Serial Port Commands SNMP Commands Spanning Tree Commands SpectraLink VolP Commands Storm Threshold Commands Syslog Commands System Information Commands Telnet Commands TFTP Commands WDS Commands 802 11a Wireless Interface Commands Avaya Wireless AP 4 5 6 User s Guide i General Notes e 802 11b Wireless Interface e Wireless Interface Commands SSID VLAN Security Commands e 802 11b g Wireless Interface e VLAN SSID Pair Commands Commands General Notes Prerequisite Skills and Knowledge To use this document effectively you should have a working knowledge of Local Area Networking LAN concepts network access infrastructures and client server relationships In addition you should be familiar with software setup procedures for typical network operating systems and servers Notation Conventions e Computer prompts are shown as constant width type For example Device Name gt e Information that you input as shown is displayed in bold constant width type For example Device Name gt set ipaddr
287. ure 5 10 Remote Link Test Screen Version ICMP IP ARP Table Learn Table IAPP RADIUS Interfaces Link Test u Remote Link test is a feature that provides wireless statistics for clients associated to the access point as well as other access points communicating via Wireless Distribution System WDS To discover the wireless clients associated to the access point click Explore then the Refresh button To start a link test Configure select an entry from the table below and then click Link Test System Name evice e Contact Name Marulas Up Time OD HH MM SS Commands Help Explore 3 Link Test 1 Exit Station Name MAC Address interface Radio Type C owinxp 00 02 2D 51 94 E4 PC CARD B IEEE 802 11 3 Select a Station from the list by clicking the circle to the left of the Station s entry 4 Click Link Test to start the test Result A new Link Test window opens and displays the following information for the Access Point referred to as the Initiator Station and the wireless client referred to as the Remote Station Station Name The Access Point s System Name or the client s Windows Networking name MAC Address 5 16 Avaya Wireless AP 4 5 6 User s Guide ee Link Test SNR dB The Signal to Noise ratio for the received signal The displayed value is the running average since the start of the test and is reported in decibels dB Higher numbers correspond to a stronger link The bar graph al
288. utes an upload or download command the specified arguments are stored in TFTP parameters for future use If nothing is specified in the command line when issuing subsequent upload or download commands the stored arguments are used Avaya Wireless AP 4 5 6 User s Guide A 99 TFTP Commands ee Name Type Values Access CLI Parameter TFTP Group N A R tftp TFTP Server IP IpAddress User Defined RW tftpipaddr Address TFTP File DisplayString User Defined RW tftpfilename Name TFTP File Type Integer img RW tftpfiletype config bootloader Syntax Examples Download an AP Configuration File from a TFTP Server First start your TFTP program It must be running and configured to transmit and receive Device Name Device Name Device Name Device Name A 100 gt set tftpfilename lt file name gt tftpfiletype config tftpipaddr lt IP address of your TFTP server 5 show tftp to ensure the filename file type and the IP address are correct gt download gt reboot 0 Avaya Wireless AP 4 5 6 User s Guide Ss TFTP Commands After following the complete process above once you can download a file of the same name as long as all the other parameters are the same with the following command Device Name gt download Backup your AP Configuration File to a TFTP Server First start your TFTP program It must be running and configured to transmit
289. v3 Enabling HTTPS allows you to access the AP in a secure fashion using Secure Socket Layer SSL over port 443 The AP supports SSLv3 with a 128 bit encryption certificate maintained by the AP for secure communications between the AP and the HTTP client All communications are encrypted using the server and the client side certificate 1 8 Avaya Wireless AP 4 5 6 User s Guide KG ol Management and Monitoring Capabilities The AP comes pre installed with all required SSL files default certificate private key and SSL Certificate Passphrase installed Command Line Interface The Command Line Interface CLI is a text based configuration utility that supports a set of keyboard commands and parameters to configure and manage an AP Users enter Command Statements composed of CLI Commands and their associated parameters Statements may be issued from the keyboard for real time control or from scripts that automate configuration For example when downloading a file administrators enter the download CLI Command along with IP Address file name and file type parameters How To Access the CLI You access the CLI over a HyperTerminal serial connection or via Telnet During initial configuration you can use the CLI over a serial port connection to configure an Access Point s IP address When accessing the CLI via Telnet you can communicate with the Access Point from over your LAN switch hub etc from over the Internet or wi
290. ve the back cover from the unit See Remove the Back Cover for an illustration Place the back cover on the mounting location and mark the center of the three mounting holes Remove the cover from the wall and drill a hole at each of the locations you marked above Each hole should be wide enough to hold a mounting plug which is 6 mm x 35 mm Insert a plug into each hole The AP comes with four 6 mm x 35 mm plugs you only need to use three of these when wall mounting the unit Insert a screw into each of the mounting holes molded into the back cover The AP comes with four 3 5 mm x 40 mm pan head screws you only need to use three of these when wall mounting the unit Insert the screws into the wall plugs Use a screwdriver to tighten the screws and attach the back cover to the wall In the following example the back cover is mounted upside down the two holes are at the bottom Avaya Wireless AP 4 5 6 User s Guide 2 49 Additional Hardware Features ar Figure 2 11 Attach the Back Cover to the Wall 13 Attach Ethernet and power cables to the AP unit if necessary 2 50 Avaya Wireless AP 4 5 6 User s Guide e a Additional Hardware Features 14 Snap the unit into the back cover In the following example the unit is mounted upside down and its antenna is facing down Figure 2 12 AP Mounted on a Wall Avaya Wireless AP 4 5 6 User s Guide 2 51 Additional Hardware Features 15
291. via RADIUS Authentication e MAC Access Control through individual APs MAC Access Control Lists If both 802 1x and MAC authentication are enabled the 802 1x results will take effect This is required in order to propagate the WEP keys to the clients in such cases Once you disable 802 1x on the AP you will see the effects of MAC authentication SSID VLAN and Security Modes The AP allows you to segment wireless networks into multiple sub networks based on Network Name SSID and VLAN membership and to apply security modes per SSID gt NOTE The ability to configure up to 16 VLAN SSID pairs and configure a security mode per SSID is available only for the AP 6 and APs that have an 802 11a b g or 802 11b g Upgrade Kit installed 4 130 Avaya Wireless AP 4 5 6 User s Guide in SSID VLAN and Security Modes A Network Name SSID identifies a wireless network Clients associate with Access Points that share its SSID During installation the Setup Wizard prompts you to configure one Network Name for each wireless interface After initial setup the AP can be configured to support up to 16 SSIDs per wireless interface to segment wireless networks based on VLAN membership Refer to Configure Multiple SSID VLAN Security Mode Entries for configuration details VLAN Overview Virtual Local Area Networks VLANs are logical groupings of network hosts Defined by software settings other VLAN members or resources appear to
292. work to a wired backbone The access points communicate across a VLAN capable switch that analyzes VLAN tagged packet headers and directs traffic to the appropriate ports On the wired network a RADIUS server authenticates traffic and a DHCP server manages IP addresses for the VLAN s Resources like servers and printers may be present and a hub may include multiple APs extending the network over a larger area In this figure the numbered items correspond to the following components 4 132 Avaya Wireless AP 4 5 6 User s Guide l FT SSID VLAN and Security Modes VLAN enabled access point VLAN aware switch IEEE 802 1Q uplink AP management via wired host SNMP Web interface or CLI DHCP Server RADIUS Server VLAN 1 VLAN 2 ND a BF WOOD Avaya Wireless AP 4 5 6 User s Guide 4 133 SSID VLAN and Security Modes WE cra 4 134 Avaya Wireless AP 4 5 6 User s Guide CT CHU SSID VLAN and Security Modes VLAN Workgroups and Traffic Management Access Points that are not VLAN capable typically transmit broadcast and multicast traffic to all wireless Network Interface Cards NICs This process wastes wireless bandwidth and degrades throughput performance In comparison VLAN capable AP is designed to efficiently manage delivery of broadcast multicast and unicast traffic to wireless clients The AP assigns clients to a VLAN based on a Network Name SSID The AP can support up to
293. y as well as the number of packets received by wireless clients 6 Click the tab that corresponds to the statistics you want to review For example click Learn Table to see the list of nodes that the AP has discovered on the network 7 lf applicable click the Refresh button to update the statistics Avaya Wireless AP 4 5 6 User s Guide 5 5 Version caai Version From the HTTP interface click the Monitor button and select the Version tab The list displayed provides you with information that may be pertinent when calling Technical Support With this information your Technical Support representative can verify compatibility issues and make sure the latest software are loaded This screen displays the following information for each Access Point component Serial Number The component s serial number if applicable Component Name ID The AP identifies a system component based on its ID Each component has a unique identifier Variant Several variants may exist of the same component for example a hardware component may have two variants one with more memory than the other Version Specifies the component s version or build number The Software Image version is the most useful information on this screen for the typical end user 5 6 Avaya Wireless AP 4 5 6 User s Guide Version Figure 5 3 Version Information Screen e N Version ICMP IP ARP Table Leam Table This tab displays version informat
294. your TFTP server 3 Launch ScanTool 4 Highlight the entry for the AP you want to update and click Change 5 Set IP Address Type to Static gt NOTE You need to assign static IP information temporarily to the Access Point since its DHCP client functionality is not available when no image is installed on the device 6 Enter an unused IP address that is valid on your network in the IP Address field You may need to contact your network administrator to get this address Avaya Wireless AP 4 5 6 User s Guide 7 19 Recovery Procedures kaa 7 8 11 12 13 14 7 20 Enter the network s Subnet Mask in the field provided Enter the network s Gateway IP Address if necessary You may need to contact your network administrator to get this address You should only need to enter the default gateway address if the Access Point and the TFTP server are separated by a router Enter the IP address of your TFTP server in the field provided Enter the Image File Name including the file extension Enter the full directory path and file name If the file is located in the default TFTP directory you need enter only the file name Click OK Result The Access Point will reboot and the download will begin automatically You should see downloading activity begin after a few seconds within the TFTP server s status screen Click OK when prompted that the device has been updated successfully to return
Download Pdf Manuals
Related Search