™ ENJOY THE FREEDOM OF WIRELESS NETWORKING 802.11 Wireless Networking Guide ENTERASYS.
NOTICE Enterasys Networks reserves the right to make changes in specifications and other information contained in this document and its web site without prior notice. The reader should in all cases consult Enterasys Networks to determine whether any such changes have been made. The hardware, firmware, or software described in this document is subject to change without notice.
Contents Preface Intended Audience . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xi Associated Documents . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xii Document Conventions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xiii Getting Help . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Contents 2 Understanding Wireless Network Characteristics In This Chapter. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-1 Wireless Network Name . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-2 Access Point MAC Addresses . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-3 RoamAbout R2 MAC Addresses . . . . . . . . . . . . . . .
Contents Static and Dynamic VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . RoamAbout SNMP Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Access Point 2000. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . RoamAbout R2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Contents 5 Configuring the Wireless Network In This Chapter. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5-1 Configuring APs in an Infrastructure Network . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5-3 Required Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5-3 Wireless Parameters Used in an Infrastructure Network . . . . . . . . . . . . . .
Contents RoamAbout R2 Console Port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Access Point 2000 Console Port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Configuring the R2 for SNMPv1 or SNMPv2. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Configuring the AP for Authentication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Contents Using the RoamAbout R2 Console Port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Using the Access Point 2000 Console Port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Checking RoamAbout Product Version Numbers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Using AP Manager . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Using the Access Point 2000 Console Port . . . . . . . . . .
Contents B Connecting a Device to the Console Port C ASCII to HEX Conversion Glossary Index ix
Preface A RoamAbout wireless network consists of RoamAbout wireless products, such as the RoamAbout R2 Wireless Access Platform, RoamAbout Access Point 2000, RoamAbout PC Card, and other wireless products that use an 802.11 Direct Sequence (DS) compliant radio. This manual describes how to design, install, configure and maintain a RoamAbout wireless network. It also describes how to troubleshoot problems that may arise during installation or operation.
Associated Documents Associated Documents You can download the documentation, drivers, and utilities from the RoamAbout Wireless web site. Check the RoamAbout Wireless web site regularly for product upgrades: http://www.enterasys.com/wireless Component Information Location RoamAbout AP Manager RoamAbout 802.
Document Conventions Document Conventions The following icons are used in this document: Icon Meaning CAUTION: Contains information essential to avoid personal injury or damage to the equipment. NOTE NOTE: Calls the reader’s attention to any item of information that may be of special importance.
Getting Help Getting Help For additional support related to this device or document, contact Enterasys Networks using one of the following methods: World Wide Web: http://www.enterasys.com/wireless Phone: North America: (603) 332-9400 Europe: 353 61 701 910 Asia: +800 8827-2878 Internet mail: support@enterasys.com To send comments or suggestions concerning this document, contact the Enterasys Networks Technical Writing Department via the following e-mail address: TechWriting@enterasys.
Chapter 1 Wireless Network Configurations There are three basic RoamAbout wireless network configurations: • One or more APs connecting wireless clients to a wired network, using the Workgroup Bridge mode. A wireless client can be any computer with an 802.11 Direct-Sequence (DS) compliant radio card. This type of network is referred to as a wireless infrastructure network. • Two or more APs used as a wireless link connecting wired networks. This is called a LAN-to-LAN configuration.
RoamAbout AP RoamAbout AP This guide addresses the different RoamAbout AP hardware platforms: RoamAbout Access Point (sometimes referred to as Classic), RoamAbout Access Point 2000, and RoamAbout R2 Wireless Access Platform. Unless otherwise specified, AP refers to all the RoamAbout AP platforms. The RoamAbout Access Point Classic is no longer available; however, a number of the Access Point 2000 reference information and procedures apply to the Classic platform.
RoamAbout AP • Dynamic address learning The forwarding and translating process module automatically adds new source addresses to the address database while the AP is operating. This reverse learning of the address and port association allows automatic network configuration without prior downline loading of configuration data to the AP. Address learning is protocol and management entity independent. An Aging Timer determines how long an address remains in the database.
RoamAbout PC Card RoamAbout PC Card The RoamAbout PC Card is an IEEE 802.11 Direct Sequence (DS) compliant wireless network interface card. The RoamAbout PC Card functions like any standard wired Ethernet card; however, the RoamAbout PC Card uses radio frequencies instead of a cable for the LAN connection. When installed in a computer, the PC Card and computer are referred to as a RoamAbout wireless client.
RoamAbout PC Card Operating System Support You can have clients with various operating systems in the same wireless network. Refer to the RoamAbout 802.11 PC Card Drivers and Utilities Setup and Installation Guide for setup and installation information. For the latest version of the RoamAbout drivers, see the RoamAbout web site: http://www.enterasys.com/wireless. You may need to install the appropriate networking protocols when installing the RoamAbout PC Card in the computer.
Wireless Infrastructure Network Wireless Infrastructure Network In a wireless infrastructure network, wireless clients communicate with an AP to connect to a wired LAN. A RoamAbout wireless infrastructure network can support clients with various operating systems. The area where a client can communicate with the AP is called a coverage area. To increase the coverage area, you can add APs to the wireless network. Single AP A single AP supports a single wireless infrastructure network.
Wireless Infrastructure Network Figure 1-1: Cells Within a Wireless Infrastructure Network Configuration Cell 1 Coverage Areas Cell 2 AP2 AP1 Workgroup Mode Workgroup Mode Wireless Client To allow wireless clients to physically move within a wireless network, the coverage areas should overlap. In Figure 1-1, Cell 1 and Cell 2 share overlapping areas of coverage.
Wireless Infrastructure Network Wireless Client Behavior You can configure the wireless client to connect to a specific wireless network or the first available wireless network. If you configure the client to connect to a specific wireless network, the client establishes a radio connection to the AP in the specified wireless network that provides the best communications quality. APs in a different wireless network are ignored.
LAN-to-LAN Configuration LAN-to-LAN Configuration You can connect separate LANs over a wireless link by configuring two or more RoamAbout APs to communicate with each other. This is called a LAN-to-LAN configuration. There are two variations of the RoamAbout LAN-to-LAN configuration: • Point-to-Point, using the LAN-to-LAN Endpoint Bridge mode, which connects two wired networks. • Point-to-Multipoint, using the LAN-to-LAN Multipoint Bridge mode, which can connect multiple wired networks.
LAN-to-LAN Configuration Point-to-Multipoint You can connect wired LANs in different buildings using the LAN-to-LAN Multipoint feature. At least one of the APs is configured as a Multipoint AP, called the Central AP. The Central AP can communicate directly with up to six APs. The six APs are configured as Endpoints, which can only communicate directly to the Central AP. The Central AP allows the Endpoint APs to communicate with each other through the Central AP.
LAN-to-LAN Configuration Figure 1-4 provides an example of two Central APs in the same Point-to-Multipoint configuration. In this configuration, six APs are configured to communicate with the same Central AP. You can configure one or more of those six APs as a Central AP to communicate with up to five additional APs. If using an Access Point 2000, this configuration requires the Wireless Relay parameter to be enabled.
LAN-to-LAN Configuration In Figure 1-4, Building A is the Central AP for Buildings A1 through A5 and Building B. However, Building B is also the Central AP for Building A and Buildings B1 through B5. You could expand this one further by making Building B3 a Central AP for five other buildings, although adding additional hops may decrease network performance. To avoid bridging problems, do not configure an AP as an Endpoint for more than one Central AP.
RoamAbout R2 Configuration Examples RoamAbout R2 Configuration Examples This section provides configuration examples using the RoamAbout R2 (with the two-slot option). Restrictions • The RoamAbout R2 slot 2 does not support LAN-to-LAN Multipoint. • If two 802.11b PC Cards are installed in the RoamAbout R2 Wireless Access Platform, one of the PC Cards must be connected to the Range Extender Antenna to prevent radio interference between the two cards.
RoamAbout R2 Configuration Examples Workgroup Mode and LAN-to-LAN Example Figure 1-7 shows two RoamAbout R2s in different buildings using an outdoor directional antenna to connect the LANs in those buildings. Each RoamAbout R2 contains two radio slots; one slot configured in Workgroup mode, and one slot configured in LAN-to-LAN Endpoint Bridge mode. In addition, a RoamAbout R2 can be configured for multipoint mode (slot 1 only), connect to an omni-directional antenna, and connect to other APs.
Ad-Hoc Network Ad-Hoc Network Wireless ad-hoc networks do not include APs. Instead, the ad-hoc network is a loose association, or workgroup, of computers that can communicate with each other using the PC Card in Ad-Hoc Mode. Figure 1-8 shows an ad-hoc network. The ad-hoc network is also known as a peer-to-peer network or independent network. The size of the ad-hoc network coverage area is determined by various factors, such as proximity and obstacles in the environment.
Optional Antennas Optional Antennas The RoamAbout PC Card has two integrated antennas that perform best in an open environment with as few obstacles as possible. Depending on the environment and wireless network configuration, you may need an optional antenna. The following sections describe the types of optional antennas available with the RoamAbout products.
Optional Antennas Range Extender Antenna Use the Range Extender Antenna (Figure 1-10) to ensure optimal transmission and reception quality for situations where the integrated antennas are shielded, such as: • The wireless device, such as a desktop client, is close to metal surfaces. • The wireless device is installed in a hidden location, such as in a cabinet. • Objects shield the wireless device. • Using the RoamAbout R2 Mezzanine slot upgrade option, where two 802.
Optional Antennas Outdoor Antenna Kit There are two RoamAbout antennas available for outdoor use: • 14-dBi directional antenna • 7-dBi omni-directional antenna The RoamAbout outdoor antennas support outdoor LAN-to-LAN wireless links that are used to connect separate LANs. The directional antenna is typically used in a Point-to-Point wireless link. The omni-directional antenna is typically used in a Point-to-Multipoint configuration.
Chapter 2 Understanding Wireless Network Characteristics This chapter describes many of the wireless networking concepts and characteristics. You should be familiar with this information before you design, implement, or manage a RoamAbout wireless network. Not all characteristics apply to all of the network configurations. Some of the features listed are not available with earlier versions of the AP and the PC Card driver.
Wireless Network Name Topic Page Wired Equivalent Privacy (WEP) Encryption 2-13 Authentication 2-14 802.1X Rapid Rekeying 2-16 SNMP Community Names 2-19 Console Port Security 2-19 Network Protocols 2-20 Wireless Traffic 2-20 Spanning Tree Protocol 2-22 VLANs 2-23 RoamAbout SNMP Management 2-26 Wireless Network Name A wireless network name, also called an SSID, is the name of the wireless infrastructure network.
Access Point MAC Addresses Access Point MAC Addresses The MAC address is a unique identifier for networking devices. Each LAN device (including Ethernet cards, bridges, routers, and gateways) is identified by a unique factory-set MAC address: • One MAC address for the wired Ethernet interface, which is printed on the AP. • One MAC address for the RoamAbout PC Card installed in the AP, which is printed on a label on the back side of the card.
Channel Frequencies Channel Frequencies The channel sets the center radio frequency for the wireless device. The RoamAbout PC Card can support up to 14 channels; however, the number of available channels varies in different countries. • APs within the same wireless infrastructure network can be set to different channels. You can change the channel in an AP. The client automatically uses the same channel as the AP.
Transmit Rate Transmit Rate The transmit rate identifies the preferred data transmission speed of the AP. The actual data transmission speed is subject to the type of PC Cards at both ends of the wireless link and the communications quality of the link. Transmissions at faster rates allow for higher data throughput and quicker network response times. However, transmissions at lower rates are usually more reliable and cover longer distances than the higher rates.
Transmit Rate Auto Rate With the auto rate option, the PC Card in a client or AP automatically switches to the next lower rate when data transmissions fail more than once. Shortly after completing the transmission, the PC Card returns to transmitting data at the higher rate. In most environments, Auto Rate allows the PC Card to use a higher rate for better data throughput, yet the PC Card can still use the more reliable slower rate when transmissions fail.
Communications Quality Communications Quality Communications quality is measured by the Signal to Noise Ratio (SNR). The SNR is a dynamic indicator that indicates the relative strength of the radio signal (signal level) versus the radio interference (noise level) in the radio signal path. In most environments, SNR is a good indicator for the quality of the radio link between transmitter and receiver. A higher SNR value means a better quality radio link.
Data Throughput Efficiency Data Throughput Efficiency Data throughput efficiency is measured in transmissions sent, lost, or received. When a data transmission fails, the wireless device automatically retransmits the data. It is normal in many environments for a transmission to fail occasionally. Data is not lost since the wireless device automatically retransmits the data frames. Many failed transmissions may result in longer network response times.
RTS/CTS Protocol RTS/CTS Protocol Each device in a wireless network can sense transmissions from other devices in its network that use the same frequency. To avoid collisions and lost data, a device only transmits when it senses that no other device is transmitting. This behavior is referred to as the Carrier Sense Multiple Access/Collision Avoidance (CSMA/CA) protocol. The RTS/CTS (Request to Send/Clear to Send) protocol is useful when collisions do occur.
RTS/CTS Protocol Hidden Station A wireless device is a hidden station when its transmissions cannot be sensed by another wireless device in the same network. Therefore, multiple devices could transmit at the same time. This problem can occur with clients located at opposite ends of an AP coverage area. Figure 2-2 illustrates a hidden station example. Clients A and B are within range of the AP.
802.11 Power Management 802.11 Power Management Power management can extend the battery life of clients by allowing the client to sleep for short periods of time while its messages are buffered by the AP. You may need to balance wireless performance versus battery-life. Power management imposes a more active use of the wireless medium, which might lead to more frequent transmission delays experienced as slower network response times during file transfers.
Security Security The following lists the types of security in a RoamAbout wireless environment: • Network operating system security • RoamAbout AP Secure Access • Wired Equivalent Privacy (WEP) Encryption • Simple Network Management Protocol (SNMP) community names • SNMPv3 (RoamAbout R2 only) • Device Authentication, which requires a RADIUS (Remote Authentication Dial-In User Service) server. Authentication can be based on: — MAC address — 802.1X — Both MAC address and 802.1X • 802.
Security Wired Equivalent Privacy (WEP) Encryption The WEP feature encrypts all data transmitted within the wireless network. The encryption uses the RC4 algorithm as defined in the IEEE 802.11 Wired Equivalent Privacy standard. NOTE NOTE: Broadcast and multicast messages are not encrypted. The RoamAbout devices can be configured with four encryption keys. Each key is placed in a specific position (Key 1, Key 2, Key 3, or Key 4). You select one key to encrypt transmitted data.
Security Authentication The RoamAbout AP supports authentication of wireless workgroup clients. An AP can authenticate clients based on: • MAC address • 802.1X • Both MAC address and 802.1X (Hybrid authentication) When using any of these types of authentication, you must configure the AP as a RADIUS client. RADIUS Client RADIUS (Remote Authentication Dial In User Service) is a protocol that the AP uses to communicate with a remote Authentication Server.
Security 802.1X Authentication IEEE 802.1X authentication allows logins based on user name, password, user certificates, and other methods that may be mutually supported by the authentication server and the clients. Only clients that support 802.1X can participate in a wireless network that uses this type of authentication. IEEE 802.1X authentication also imposes more requirements on the RADIUS server. For MAC address authentication, a RADIUS server only needs to handle RADIUS. For 802.
Security 802.1X Rapid Rekeying Rapid Rekeying, also known as Key Tumbling, provides automatic IEEE 802.11 WEP encryption key generation and frequent redistribution of WEP keys. The following information applies to using Rapid Rekeying: • Rapid Rekeying requires the use of 802.1X authentication. Unauthenticated clients and MAC address authentication clients cannot receive updated WEP keys, and would soon lose connectivity to the LAN.
Security 2. The key period expires. The AP creates two new random keys and loads them into the inactive authenticator key indexes (Keys 3 and 4 in this example). The keys are not yet used for transmission or reception. AP Client Key # Encryption TX/RX State TX/RX Encryption Key1 aaaaaaaaaaaaaa RX Active TX aaaaaaaaaaaaaa Key2 bbbbbbbbbbbbb TX Active RX bbbbbbbbbbbbb Key3 cccccccccccccc Inactive xxxxxxxxxxxxx Key4 ddddddddddddd Inactive xxxxxxxxxxxxx 3.
Security 4. Once the AP transmits the new keys to all clients in the supplicant list, it begins using the new TX key (Key4). At this time all supplicants are using Key3 as their TX key. AP Client Key # Encryption TX/RX State TX/RX Encryption Key1 aaaaaaaaaaaaaa Inactive aaaaaaaaaaaaaa Key2 bbbbbbbbbbbbb Inactive bbbbbbbbbbbbb Key3 cccccccccccccc RX Active TX cccccccccccccc Key4 ddddddddddddd TX Active RX ddddddddddddd 5. The key period expires.
Security SNMP Community Names The SNMP community name allows management tools using SNMP to display or modify AP parameters remotely. The RoamAbout R2 supports SNMPv3. To access the RoamAbout R2 parameters via SNMP, the management tool must know the Authentication Password and Privacy Password. To support management tools using SNMPv2 or SNMPv1, the R2 provides four community names that allow SNMPv1 and SNMPv2c read-only and read-write access.
Network Protocols Network Protocols When you install a RoamAbout PC Card in a computer using a Windows operating system, you may need to install and configure a set of networking protocols. The type of protocols needed depends on the network operating system used within your LAN environment. The most common protocols are: • IPX/SPX compatible protocols if your networking environment is using the Novell NetWare network operating system.
Wireless Traffic Message Types When a device in the wireless network transmits data, it can take one of these forms: • Broadcast: A data message transmitted by one device to all devices in the network. • Multicast: A data message transmitted by one device to multiple devices in the network. Unlike broadcast messages, multicast messages do not always include all devices in the network. • Unicast - A data message transmitted by one device to another device.
Spanning Tree Protocol Spanning Tree Protocol The RoamAbout AP uses 802.1d Spanning Tree Protocol to prevent network loops. A loop occurs when there are alternate routes between networks, as described in “Preventing Network Loops” on page 1-12. A loop can cause bridges to continually forward multicast traffic and degrade network performance. In normal LAN-to-LAN operation, keep Spanning Tree ENABLED. You should only disable Spanning Tree when using an application in a configuration that requires it.
VLANs VLANs A VLAN is a logical partition of one or more physical networks. A single VLAN can span multiple LANs, and multiple VLANs can reside within a single LAN. One major benefit of a VLAN is that traffic is restricted to a subset of the physical LAN or LANs. Multicasts are only sent to the VLAN member ports. Therefore, a VLAN can conserve network bandwidth and improve security. All the devices in a designated VLAN need not necessarily support VLANs.
VLANs Network Configurations Both the RoamAbout Access Point 2000 and the R2 can be used as a wireless bridge to an existing VLAN. For example, two APs can connect VLANs residing in different buildings, as illustrated in Figure 2-4. The wired side of each AP is connected to a switch that supports VLAN IDs. Switch 1 connects to VLANs Red, Blue, and Green, but only forwards data from VLANs Red and Green. Switch 2, in a different building, connects to VLANs Red and Green.
VLANs Ingress Filtering is always enabled on the RoamAbout R2. That is, the R2 does NOT forward data from a VLAN defined on other ports if it is received on a port that is not configured for that VLAN. In Figure 2-5, should R2(A) be configured incorrectly and forward VLAN Green data from Switch 2 to R2(E), R2 (E) would not forward the data. Although other R2(E) ports are configured for VLAN Green, the port receiving the data is not configured for VLAN Green. It is only configured for VLAN Red.
RoamAbout SNMP Management RoamAbout SNMP Management Access Point 2000 The Access Point supports the Simple Network Management Protocol (SNMP) through any standard Network Management Station (NMS) that supports SNMP. The SNMP management capability enables you to manage standard SNMP MIB characteristics, such as protocol filtering and address filtering. The Access Point 2000 supports the following MIB objects: • DEC ELAN Vendor MIB • IEEE 802.
RoamAbout SNMP Management RoamAbout R2 The RoamAbout R2 supports SNMPv3. If your Network Management Station (NMS) does not support SNMPv3, use the RoamAbout R2 console port to configure the Communities Views for SNMPv1 and SNMPv2c access. The RoamAbout R2 supports the following MIBs: • Enterasys-802.11 Extensions MIB • RFC1907 (SNMPv3) • Enterasys Extended Switch MIB • RFC2233 (IF-MIB) • Enterasys Encrypted 802.
Chapter 3 Designing and Implementing a Wireless Network The first step in designing a wireless network is to determine which network configuration best fits your needs. The wireless network configurations are discussed in Chapter 1. Once you have chosen a configuration, this chapter lists the various site requirements necessary for each type of network. Some of the features listed are not available with earlier versions of the AP and the PC Card driver.
Infrastructure Network Infrastructure Network To plan a wireless infrastructure network, determine the following: • Coverage area - the area where the clients are located. If the clients are mobile, this is the area where the clients can connect to the network. • Supported users - the number of clients that you expect to support. • Network utilization - how users intend to use the network.
Infrastructure Network Determining the Coverage Area and Supported Users Coverage area is determined by a number of factors, including physical obstructions and noise levels as shown in Figure 3-1. The following is an example of the coverage area in a semi-open environment, which is defined as work space divided by shoulder-height, hollow wall elements. The distances in your environment may be different. • 11 Mbit/s - 165 feet (50 meters) • 5.
Infrastructure Network Noise levels in the radio frequencies can reduce the coverage area. Such noise can be generated by microwave ovens and elevator motors. Increasing the AP Density will also reduce the coverage area of a single AP. A RoamAbout Access Point can support up to 250 users within its coverage area. The RoamAbout R2 supports up to 250 users per slot.
Infrastructure Network Selecting the Locations for Multiple APs Consider the following: • Each coverage area must overlap another coverage area to allow roaming for clients. • The amount of overlap depends on number of users in a coverage area and utilization of the network. If you expect that one coverage area has more users or higher network utilization than the other coverage areas, increase the overlap of the adjacent coverage areas by moving the APs closer together (see Figure 3-2).
Infrastructure Network RoamAbout R2 Mezzanine Special Considerations The following information pertains to the RoamAbout R2 with the Mezzanine option installed: • Slot 2 does not support LAN-to-LAN Multipoint. • If two 802.11b PC Cards are installed in the RoamAbout R2, one of the PC Cards must be connected to the Range Extender Antenna to prevent radio interference between the two cards. The antenna must be placed at least two feet away from the RoamAbout R2.
LAN-to-LAN Network Configuration LAN-to-LAN Network Configuration There are two types of LAN-to-LAN configurations. The LAN-to-LAN Endpoint Bridge mode is used in a Point-to-Point configuration to connect two separate wired LANs. The LAN-to-LAN Multipoint Bridge mode is used in a Point-to-Multipoint configuration to connect multiple wired LANs. Typically, the LANs are in different buildings and the configuration requires the RoamAbout outdoor antenna kit. Consider the following: • Type of antenna.
Ad-Hoc Network Ad-Hoc Network The only requirement for an ad-hoc network is the ability to communicate with one or more other wireless users. To do this: • All PC Cards must use the same channel. Default channels are listed in Table A-3 on page A-3. • Determine the size of the coverage area. The speed of the RoamAbout PC Card is one factor that determines the client coverage area. Other factors include physical obstructions and noise levels.
Wireless Network Hardware Installation Overview Wireless Network Hardware Installation Overview Once you have designed the wireless network and determined where to place the wireless devices, install and configure the hardware as described in the following sections. Wireless Infrastructure Network The following is an overview of the steps to install the wireless devices in a wireless infrastructure network. 1. Install the RoamAbout AP in the location you have chosen.
Wireless Network Hardware Installation Overview Ad-Hoc Network The following is an overview of the steps to install the wireless clients in an Ad-Hoc network. 1. Create wireless clients by installing the RoamAbout PC Card into the appropriate computers. Refer to the RoamAbout PC Card documentation. 2. If installing the RoamAbout Client Utility (recommended), see the “RoamAbout Client Utility” on page 4-7. 3. Configure the wireless clients, as described in the RoamAbout 802.
Chapter 4 Wireless Network Tools This chapter describes the configuration tools. You can configure the AP using one or more of these tools: • RoamAbout AP Manager • RoamAbout console port • Telnet (RoamAbout R2 only) • Web Management (RoamAbout R2 only) • Network Management Station (NMS) To configure the AP for the first time, you need to use the RoamAbout AP Manager or the console port.
RoamAbout AP Manager RoamAbout AP Manager The RoamAbout AP Manager is a configuration tool for new APs and a management tool to assist the ongoing management and support of RoamAbout wireless networks. The AP Manager can manage multiple APs simultaneously. The AP Manager has the following features: 4-2 • Ability to manage multiple APs remotely, including changing parameters on multiple APs in a wireless network with a single command. • Ability to group APs.
RoamAbout AP Manager Installing the RoamAbout AP Manager The AP Manager supports Windows 95, Windows 98, Windows 2000, Windows Me, Windows NT (V4.0 or later), and Windows XP. The AP Manager can manage APs from a wireless computer. However, the AP Manager needs to be on a computer connected to the same wired LAN as the AP to assign an IP address or upgrade the AP firmware. The AP Manager is included on the CD-ROM in the RoamAbout AP kit, and can also be downloaded from the enterasys.com/wireless web site.
RoamAbout AP Manager Using the AP Manager You can manage APs individually or as a single group. You can group APs based on any criteria, such as: • All APs belonging to the same network are in one group. For example, have one group for the Accounting network and one group for the Engineering network. • To avoid confusion, you should have different groups for APs in an infrastructure network and APs in a LAN-to-LAN configuration. APs in these configurations are managed differently.
Other SNMP Management Tools Other SNMP Management Tools The AP supports the Simple Network Management Protocol (SNMP) through any standard Network Management Station (NMS) that supports SNMP. The SNMP management capability enables you to manage standard SNMP MIB characteristics, such as protocol filtering and address filtering. • To manage the AP with an NMS, you must first use the console port or AP Manager to configure the AP with a valid IP address. • The RoamAbout R2 supports SNMPv3.
Telnet Telnet You can manage the RoamAbout R2 through Telnet. However, you must first assign the R2 an IP address. Perform the following steps to access the R2 through Telnet: 1. Open a DOS Prompt. 2. Telnet to the IP Address that you assigned to the RoamAbout R2. For example: telnet 10.0.0.00 You are prompted for a username and password. The default username is admin and the default password is password. The Main Menu appears. 3. Ensure that your preferences are set to use the arrow keys.
RoamAbout Client Utility RoamAbout Client Utility The RoamAbout Client Utility is a diagnostic tool for RoamAbout wireless networks. The RoamAbout Client Utility is included on the RoamAbout 802.11 PC Card Drivers and Utilities CD-ROM, or you can download it from the RoamAbout Wireless web site. Refer to the RoamAbout 802.11 PC Card Drivers and Utilities Setup and Installation Guide for setup and installation information.
Chapter 5 Configuring the Wireless Network This chapter provides the procedures to configure the wireless device parameters. Before performing these procedures, you need to install the wireless network tools as described in Chapter 4. • To install the drivers and utilities on the clients, refer to the RoamAbout 802.11 PC Card Drivers and Utilities Setup and Installation Guide. • If you are configuring a wireless infrastructure network, configure the APs first.
In This Chapter 5-2 Topic Page Setting Spanning Tree 5-43 Filtering Traffic by Protocols 5-44 Filtering Traffic by Addresses 5-46 Checking the Configuration on Multiple APs 5-47 Resetting the RoamAbout AP 5-48 Using the RoamAbout R2 Web Management 5-49 Configuring Clients 5-50
Configuring APs in an Infrastructure Network Configuring APs in an Infrastructure Network After installing the AP, you can configure its network and wireless parameters using the AP Manager, the console port, or the R2 Web Management. To configure the RoamAbout R2 for management by an NMS using SNMPv2 or SNMPv1, see “Configuring the R2 for SNMPv1 or SNMPv2” on page 5-29.
Configuring APs in an Infrastructure Network • Station name: Select a unique name that helps identify the location of the AP. Each AP should have a unique station name. • Bridge Mode: Set to Workgroup. • AP Density: See AP Density and Roaming on page 2-8 for more information. • Transmit Rate: The default setting works well in most environments. See “Transmit Rate” on page 2-5. • RTS Threshold: The default setting works well in most environments. See “RTS/CTS Protocol” on page 2-9.
Configuring APs in an Infrastructure Network Using the AP Manager Use the Help button in the AP Manager for a description of any field. 1. If you are currently managing APs with the AP Manager, determine if the new AP belongs to an existing group. Refer to “RoamAbout AP Manager” on page 4-2 for a description of configuration groups. File→Open (adds the AP to an existing group) File→New (starts a new group) 2. Click Setup/Add New AP. 3.
Configuring APs in an Infrastructure Network Using the RoamAbout R2 Console Port To use the console port, follow the instructions in “Connecting a Device to the Console Port” in Appendix B. Use Help in the console screens for a description of any field. 1. Choose Network Configuration from the Main Menu and enter the following parameters: IP address: Enter the IP address you wish to assign to the AP. Subnet mask: Enter the subnet mask you wish to assign to the AP.
Configuring APs in an Infrastructure Network Using the Access Point 2000 Console Port To use the console port, follow the instructions in “Connecting a Device to the Console Port” in Appendix B. Use Help in the console screens for a description of any field. 1. Choose Set IP Address from the Installation Menu. 2. Enter the IP address, subnet mask, and default gateway. 3. Choose Module-Specific Options from the Installation Menu. 4. Choose Set Wireless Configuration.
Configuring APs in a Point-to-Point Network Configuring APs in a Point-to-Point Network You can configure two APs to communicate with each other in a LAN-to-LAN Point-to-Point configuration using the AP Manager or the console port as described in the following sections. To configure the RoamAbout R2 for management by an NMS using SNMPv2 or SNMPv1, see “Configuring the R2 for SNMPv1 or SNMPv2” on page 5-29.
Configuring APs in a Point-to-Point Network Wireless Parameters Used in a Point-to-Point Network The following AP parameters are not used in this configuration: • Wireless Network Name • AP Density • Secure Access • Power Management (DTIM Period) • IntraBSS Relay • Multicast Transmit Rate The following describes the settings used in a point-to-point network: • Slot 1/Slot 2: (RoamAbout R2 only): Select the slot to be configured. • Channel: Both APs must use the same channel.
Configuring APs in a Point-to-Point Network Using the AP Manager Use the Help button in the AP Manager for a description of any field. 1. If you are currently managing APs with the AP Manager, determine if the new AP belongs to an existing group. Refer to “RoamAbout AP Manager” on page 4-2 for a description of configuration groups. File→Open (adds the AP to an existing group) File→New (starts a new group) 2. Click Setup/Add New AP. 3.
Configuring APs in a Point-to-Point Network Using the RoamAbout R2 Console Port To use the console port, follow the instructions in “Connecting a Device to the Console Port” in Appendix B. Use Help in the console screens for a description of any field. 1. Choose Network Configuration from the Main Menu and enter the following parameters: IP address: Enter the IP address you wish to assign to the AP. Subnet mask: Enter the subnet mask you wish to assign to the AP.
Configuring APs in a Point-to-Point Network Using the Access Point 2000 Console Port To use the console port, follow the instructions in “Connecting a Device to the Console Port” in Appendix B. Use Help in the console screens for a description of any field. 1. Choose Set IP Address from the Installation Menu. 2. Enter the IP address, subnet mask, and default gateway. 3. Choose Module-Specific Options from the Installation Menu. 4. Choose Set Wireless Configuration.
Configuring the AP for Point-to-Multipoint Configuring the AP for Point-to-Multipoint You can configure up to seven APs in a point-to-multipoint configuration. At least one AP must be configured as a Central AP. The other APs are configured as endpoint APs, as described in “Point-to-Multipoint” on page 1-10. To configure the RoamAbout R2 for management by an NMS using SNMPv2 or SNMPv1, see “Configuring the R2 for SNMPv1 or SNMPv2” on page 5-29.
Configuring the AP for Point-to-Multipoint Wireless Parameters Used in a Point-to-Multipoint Network The following AP parameters are not used in this configuration: • Wireless Network Name • AP Density • Secure Access • Power Management (DTIM Period) • IntraBSS Relay • Multicast Transmit Rate The following describes the settings used in a point-to-multipoint network: • Slot 1/Slot 2 (RoamAbout R2 only): Select the slot to be configured. For the central AP, Slot 1 must be selected. • Channel.
Configuring the AP for Point-to-Multipoint Using the AP Manager Use the Help button in the AP Manager for a description of any field. 1. Determine which AP is the Central AP, as described in “Point-to-Multipoint” on page 1-10. 2. If you are currently managing APs with the AP Manager, determine if the new AP belongs to an existing group. Refer to “RoamAbout AP Manager” on page 4-2 for a description of configuration groups. File→Open (adds the AP to an existing group) File→New (starts a new group) 3.
Configuring the AP for Point-to-Multipoint Using the RoamAbout R2 Console Port To use the console port, follow the instructions in “Connecting a Device to the Console Port” in Appendix B. Use Help in the console screens for a description of any field. 1. Choose Network Configuration from the Main Menu and enter the following: IP address: Enter the IP address you wish to assign to the AP. Subnet mask: Enter the subnet mask you wish to assign to the AP.
Configuring the AP for Point-to-Multipoint Using the Access Point 2000 Console Port To use the console port, follow the instructions in “Connecting a Device to the Console Port” in Appendix B. Use Help in the console screens for a description of any field. 1. Choose Set IP Address from the Installation Menu. 2. Enter the IP address, subnet mask, and default gateway. 3. Choose Module-Specific Options from the Installation Menu. 4. Choose Set Wireless Configuration.
Viewing Current AP Settings Viewing Current AP Settings You can view the current settings before you modify the RoamAbout AP parameters. Using the AP Manager Using the AP Manager, select the AP from the Managed List field and click the various buttons, such as Wireless Parameters, Network Parameters, and Hardware. In the Wireless Parameters dialog box, click the Advanced button to view all the wireless parameters.
Modifying the IP Address Modifying the IP Address The AP can obtain an IP address using these methods: • BootP (default): The AP obtains its IP Address from a BootP server when it reboots. A BootP server must be configured in advance to respond with the desired IP address. • DHCP: The AP obtains its IP address from a DHCP server. This option is not recommended for enterprise networks. • Manual: Prevents the AP from issuing BootP or DHCP requests to obtain an IP address.
Modifying the IP Address To manually change the IP address of an Access Point or Access Point 2000, perform the following. You will need the AP’s wired MAC address and an unused IP address. 1. Select the AP in the managed list. 2. Click on the Network Parameters button. 3. Set the Address State to Volatile. 4. Select Manual from the IP Address Initialization option. 5. Click OK. 6. In the main AP Manager window, click the Reset button. Then, click Reset with Current Settings. 7.
Setting the Cabletron Discovery Protocol Using the Access Point 2000 Console Port To manually enter an IP address, and disable both BOOTP and DHCP, go to Set IP Address in the Main Menu and enter an IP address. A reset to the AP is not needed. To change how the IP address is obtained, perform the following: 1. Choose Module-Specific Options from the Main Menu. 2. Choose Choose BOOTP or DHCP to get IP Address. 3. Enable DHCP or BOOTP. The AP obtains an IP address on the next reset.
Modifying Wireless Parameters Modifying Wireless Parameters The following AP wireless parameters can be modified as necessary: • AP Density: Should only be changed when APs are moved closer or further apart from each other. This parameter is only available when the AP is in Workgroup bridge mode. See AP Density and Roaming on page 2-8 for more information.
Modifying Wireless Parameters • IntraBSS Relay: When enabled, it allows wireless users associated with an AP to see and communicate between each other. This is accomplished by taking a multicast packet from one wireless user and rebroadcasting it so that all wireless users see it. When disabled, it prevents communication between users associated with an AP.
Configuring for Security Configuring for Security To have the most amount of security in your wireless infrastructure network: • Set up your networking protocols to require user names and passwords. Refer to the documentation that came with the networking software or operating system. • Create a unique Wireless Network Name and enable Secure Access at the APs. • Configure the APs to not communicate with unencrypted clients. • Enable console port security.
Configuring for Security Setting Encryption Before configuring encryption on the AP, create the encryption keys as follows: 1. Create up to four keys, where the keys can be: — 5 printable characters or 10 hexadecimal digits if the RoamAbout PC Card supports 40-bit WEP encryption. — 13 printable characters or 26 hexadecimal digits if the RoamAbout PC Card supports 128-bit encryption. You must create at least one key. The printable character keys are case-sensitive.
Configuring for Security Using the RoamAbout R2 Console Port To configure encryption using the RoamAbout R2 console port, perform the following: 1. Choose Wireless Configuration from the Main Menu. 2. Choose Encryption Configuration. Radio Slot: 1 or 2 Encryption State: Enable Keys: Enter up to 4 encryption keys. Transmit Key ID: Select the Key number that you want the RoamAbout R2 to use when transmitting data. Exclude Unencrypted: — Enable to accept only encrypted data from clients.
Configuring for Security Using the Access Point 2000 Console Port To configure encryption using the console port, perform the following: 1. Choose Module-Specific Options from the RoamAbout AP Installation Menu. 2. Choose Set Encryption Configuration. Set Encryption Key: Use these menu options to enter the keys. Set Transmit Key ID: Choose one key to be the transmit key. Each AP can use a different transmission key as long as the other devices have that key entered in the same position.
Configuring the Console Port for Security Configuring the Console Port for Security For the AP 2000, the AP Manager and any other SNMP Manager must have the correct read/write community name associated with the AP; otherwise, the tool cannot make any changes to the AP. For the R2, the AP Manager and any other SNMP Manager must have the correct Authentication and Privacy passwords. AP Manager For the AP 2000, the AP Manager can change both the read-only and read/write SNMP community names.
Configuring the R2 for SNMPv1 or SNMPv2 Configuring the R2 for SNMPv1 or SNMPv2 The RoamAbout R2 supports SNMPv3. To support management tools using SNMPv2 or SNMPv1, the R2 provides four community names that allow SNMPv1 and SNMPv2c read-only and read-write access. The names are disabled by default with the exception of Community Name #1, which is set to public. The community names are only accessible from the R2 console port.
Configuring the AP for Authentication Configuring the AP for Authentication Authentication uses a RADIUS server to authenticate wireless clients in a wireless infrastructure network. Refer to Authentication on page 2-14 for a description of the types of authentication.
Configuring the AP for Authentication 4. Enter the Custom Authenticator. The format is 16 printable ASCII characters, or 32 hexadecimal digits preceded by 0x. 5. Click OK. After you enter a custom authenticator, you are prompted to enter a password. Once you set the password, only those with the password can access the custom RADIUS authenticator. If this is the first time entering a Custom Authenticator, the RADIUS Client Management Password dialog box appears. 6. Enter the New Password. 7.
Configuring the AP for Authentication Configuring the AP for Authentication Before you can configure the AP as a RADIUS client, you must choose the type of authentication to use: MAC address, 802.1X, or both. Also, you need to have the following RADIUS server information available: • Primary Server IP Address: IP Address of the primary RADIUS authentication server. The IP Address must be an IP Version 4 address.
Configuring the AP for Authentication • Time Between Reauthentications: Time, in minutes, between each reauthentication when Reauthentication is enabled. The default is 60 minutes. • Hold Period After Failed Login: Time, in seconds, after a login failure before the device can restart the authentication procedure. The default is 60 seconds. A login failure is when a device tries to log in and fails authentication twice consecutively.
Configuring the AP for Authentication Using the RoamAbout R2 Console Port 1. Choose Security and Policy Configuration from the Main Menu. 2. Choose RADIUS Client Configuration. RADIUS: Enable. The RADIUS Client Parameters screen appears. 3. Enter the RADIUS client information. 4. Choose Save. 5. Choose Authentication Configuration from the Security and Policy Configuration menu. Authentication Configuration Slot: 1 or 2 Authentication Mode: Choose MAC, 802.1X, or Hybrid (MAC and 802.1X). 6. If 802.
Configuring the AP for Authentication Using the Access Point 2000 Console Port 1. Choose Module-Specific Options from the RoamAbout AP Installation Menu. 2. Choose Authentication Options. 3. Choose Configure RADIUS Client. 4. Choose Enable/Disable RADIUS Authentication. Enable this setting. 5. In the Configure RADIUS Client Parameters menu, choose Enter All RADIUS Client Parameters. 6. Enter all the RADIUS client parameters.
Configuring for Rapid Rekeying Configuring for Rapid Rekeying To use Rapid Rekeying, you must set up the AP for 802.1X authentication, as described in Configuring the AP for Authentication on page 5-30. Rapid Rekeying must be configured on the AP and the wireless clients. The following lists the Rapid Rekeying parameters: • Time Between Key Changes (or Rekeying Period): This is the interval, in minutes, that the AP waits before starting a new key sequence. Time can be 1 to 525600 minutes.
Configuring for Rapid Rekeying Using the Access Point 2000 Console Port To set up Rapid Rekeying using the console port, perform the following steps: 1. Choose Module-Specific Options from the Installation Menu. 2. Choose Authentication Options. 3. Choose Configure Wireless Authentication Type. 4. Choose 802.1X Authentication with Rapid Rekeying. 5. Enter the 802.1X activation key, then enter the 802.1X parameters as described in “Configuring the AP for Authentication” on page 5-32. 6.
Configuring for Rapid Rekeying Set Up Rapid Rekeying on the Clients This section describes how to set up Rapid Rekeying on a Windows XP client. For more information, refer to the Release Notes or the Readme file that came with the RoamAbout PC Card driver. 1. Open the Control Panel by selecting Start→Programs→Control Panel. 2. In the Control Panel, open Network Connections then open the Wireless Network Connection (RoamAbout 802.11 DS). 3.
Configuring for Rapid Rekeying 6. In the Wireless Network Properties window (shown below), select the following: a) Check the box marked Data encryption (WEP enabled). b) Check the box marked The Key is provided for me automatically. c) Un-check any other checked boxes. d) Click OK to apply the changes. 7. Click OK, or Close, to close all open windows.
Configuring for VLANs Configuring for VLANs The RoamAbout AP supports the forwarding of tagged VLAN data. The RoamAbout R2 can be configured to forward VLAN data to specific endpoints. The Access Point 2000 can only be configured to forward or not forward VLAN data. When forwarding VLAN data, the Access Point 2000 forwards to all endpoints. NOTE NOTE: VLAN 1 is a default VLAN used by the R2 to allow pass-through of untagged data.
Configuring for VLANs Ports are displayed according to the Remote Wireless MAC addresses you set up for the RoamAbout R2 configuration. In the LAN-to-LAN Multipoint configuration, the ports are assigned according to the wireless MAC Addresses you entered in the Multipoint Properties dialog box. The ports are defined as follows: • Port 1: The 10/100 Ethernet Port. • Port 2: R2 Slot 1 if the slot is in LAN-to-LAN Endpoint mode. • Ports 2 through 7: R2 Slot 1 if the slot is in LAN-to-LAN Multipoint mode.
Configuring for VLANs To enable or disable GVRP (RoamAbout R2 only): 1. Click the VLAN Parameters button. 2. Enable or disable GVRP. 3. Click OK. To enable or disable VLAN compatibility on the AP 2000: 1. Click the VLAN Parameters button. 2. Enable or disable Allow Tagged Packets. 3. Click OK. Using the RoamAbout R2 Web Management To access the VLAN configuration pages, click on the VLANs/Multicast Groups folder.
Setting Spanning Tree Setting Spanning Tree It is important to avoid Point-to-Multipoint configurations that will cause bridge loops. A bridge loop occurs when two parallel network paths are created between any two LANs, causing packets to be continuously regenerated through both parallel paths. This situation eventually renders the network unusable due to the excessive traffic that is being generated by the loop.
Filtering Traffic by Protocols Filtering Traffic by Protocols You can configure the AP to NOT forward specific protocol traffic to the wireless network. This could reduce unnecessary traffic and increase the network response time. However, filtering the wrong protocols can negatively affect the operation of the network. When solving network problems, you should clear all filters. To select the protocol to filter using the AP Manager, perform the following steps: 1.
Filtering Traffic by Protocols Table 5-1: Protocols to Filter(Cont’d) Protocol Description DECnet Does not forward DECnet packets carried in Ethernet V2 frames or in IEEE 802.3 frames with LLC/SNAP headers. DECnet packets are used primarily in DEC VMS and related networking. If you do not plan to have DECnet clients, you should filter all DECnet traffic. LAT Does not forward Local Area Transport (LAT) packets. Used primarily in terminal/server communication.
Filtering Traffic by Addresses Filtering Traffic by Addresses You can filter traffic to the network using Address Denied, or you can restrict access to the network using Addresses Allowed. The device can be on either side of the AP (wired or wireless). You identify the device by its MAC address. The maximum number of entries for each AP in the list is 128 entries. • Addresses Denied The AP does not forward traffic from a device with its MAC address in the Addresses Denied field.
Checking the Configuration on Multiple APs Checking the Configuration on Multiple APs The AP Manager provides integrity tests that check for consistent settings across all the APs in a single group. Use the integrity tests to make sure that the APs in a single wireless network are configured correctly. To access the tests, click Integrity on the AP Manager menu bar.
Resetting the RoamAbout AP Resetting the RoamAbout AP This section describes how to reset the AP. • Reset with Current Settings If you change any wireless configuration parameter, such as the wireless network name or channel, you must select this option to reset the AP to implement your changes. — From the AP Manager, select Reset then select Reset with Current Settings. — From a device attached to the RoamAbout R2 console port, select Reset/Upgrade from the Main Menu and then select Reset Switch.
Using the RoamAbout R2 Web Management Using the RoamAbout R2 Web Management For the RoamAbout R2 web management, AP Manager or any Network Management Station to remotely manage the AP, the AP must have a valid IP address and subnet mask. The RoamAbout R2 web management runs on the following browsers: • Netscape Communicator V4.5, V4.6, V4.7, V6.0 (and later) • Microsoft Internet Explorer V4.0 and V5.0 (and later) To manage the RoamAbout R2 using web management, perform the following steps: 1.
Configuring Clients Configuring Clients To configure the clients, refer to the RoamAbout 802.11 PC Card Drivers and Utilities Setup and Installation Guide and the client online help. Check the enterasys.com/wireless web site frequently for client upgrades and documentation revisions.
Chapter 6 Maintaining the Wireless Network To maintain the wireless network, you should regularly check the wireless coverage area, communications quality, and data throughput efficiency. As your environment changes, you may need to adjust wireless parameters or move APs to account for new obstructions or new sources of radio interference. You may also need to add APs should the number of users increase. In addition, you should regularly check the RoamAbout Wireless web site for product updates.
Testing Radio Communications Quality Testing Radio Communications Quality You can test the radio communications quality from the AP to another wireless device using the AP Manager, or from a client to another wireless device using the RoamAbout Client Utility. Using the AP Manager The RoamAbout AP Manager provides a Link Test tool that tests the signal quality from the AP to a client or another AP. Click on the Help button in any window for more information. 1.
Testing Radio Communications Quality Using the RoamAbout Client Utility This procedure requires the RoamAbout Client Utility on a RoamAbout client. The RoamAbout Client Utility Link Test window allows you to investigate the specific link between the RoamAbout client and its test partner. Click on the Help button in any window for more information. 1. To start the Client Utility, perform the following: — Click on the Client Utility icon Taskbar.
Testing Radio Communications Quality A low signal level indicates that the client and the test partner may be too far apart or there may be obstructions between them. If possible, remove the obstructions, move the devices closer, or use the optional Range Extender antenna described in “Range Extender Antenna” on page 1-17. 4. Check the Total Messages column. Data throughput efficiency is measured in messages sent, lost, or received. 5. Divide the number of Messages Lost by the number of Messages Sent.
Optimizing RoamAbout AP Placement If one or more clients are transmitting simultaneously with the AP in an infrastructure network, you may need to lower the RTS Threshold on the AP as described in the “RTS/ CTS Protocol” on page 2-9. If the concentration of users per AP is high, you may need to place the APs closer together to distribute the load, or add APs to the wireless network. To measure values over time, click the Test History tab.
Optimizing RoamAbout AP Placement To open the Site Monitor window, perform the following steps: 1. To start the Client Utility, perform the following: — Click on the Client Utility icon Taskbar. located on the System Tray of your Windows or — From the Windows Taskbar, click Start, then select Programs→RoamAbout→RoamAbout Client Utility. 2. Click on the Advanced drop-down menu and select Site Monitor. 3. Select the network in the Selection tab if you have multiple wireless networks. 4.
Optimizing RoamAbout Outdoor Antenna Placement 5. Check the signal level and noise level if the SNR is low between the AP and the wireless device. If the signal level is low, the devices may be too far apart or there are obstructions between them. If the noise level is high, determine the source of interference by selecting other clients. If available, use the RoamAbout Client Utility Site Monitor tool at a mobile client to better determine the location of the interference.
Logging Measurement Data Logging Measurement Data You can save the results of your RoamAbout Client Utility Link Test or Site Monitor session in a log file. To enable logging, set the Client Utility to enhanced mode by clicking the Options button in the Status/Functions window. For information about a Client Utility window, press while in that window. You can use this log file to: • Evaluate the results at a later time.
Checking the Client RoamAbout PC Card Checking the Client RoamAbout PC Card The RoamAbout Client Utility has a Diagnose Card tool that allows you to investigate the operation of your RoamAbout PC Card and the installed driver. Run the card test only in situations where there is a card failure or when you suspect a configuration mismatch. When contacting RoamAbout technical support, the card test results may help the support representative determine the cause of a malfunctioning device.
Monitoring the AP Using RMON Monitoring the AP Using RMON The AP supports four of the nine Remote Network Monitoring MIB (RMON) groups: • Statistics - Contains statistics measured by the probe for the wired LAN and the wireless LAN interfaces. • History - Records periodic statistical samples from a network and stores them for later retrieval. • Alarm - Periodically takes statistical samples from variables in the probe and compares them to previously configured thresholds.
Monitoring RADIUS Client Operations Monitoring RADIUS Client Operations Using the console port, you can monitor the RADIUS client statistics for the primary and secondary RADIUS servers. Using the RoamAbout R2 Console Port To view the RADIUS client statistics, choose RADIUS Client Statistics from the Security and Policy Configuration menu. Refer to Table 6-1 for a description of the statistics. Using the Access Point 2000 Console Port 1.
Monitoring RADIUS Client Operations Table 6-1: RADIUS Client Statistics Menu - Field Descriptions 6-12 Field Description Invalid Server Addresses Number of RADIUS Access-Response packets received from unknown addresses. Round Trip Time Time interval (in hundredths of seconds) between the most recent Access-Reply/ Access-Challenge and the Access-Request that matched it from the RADIUS authentication server. Access Requests Number of RADIUS Access-Request packets sent to the server.
Checking RoamAbout Product Version Numbers Checking RoamAbout Product Version Numbers Using AP Manager To check the RoamAbout AP firmware version, run the RoamAbout AP Manager, choose the Hardware button and check the software version (SW=Vx.x). Refer to the AP Manager on-line help for additional information. Using the Access Point 2000 Console Port To check the RoamAbout AP firmware version using the console port, select Show Current Settings from the Installation Menu.
Upgrading the RoamAbout AP Firmware Upgrading the RoamAbout AP Firmware The AP firmware, also called embedded software, can be easily upgraded. Regularly check the RoamAbout web site for the latest information concerning RoamAbout updates. To upgrade the AP, copy the image file from the web site to the same directory as the AP Manager or BootP/TFTP server. • For the Access Point Classic, select the latest V*.BIN file for firmware upgrades. • For the Access Point 2000, select the N*.
Upgrading the RoamAbout AP Firmware 4. Choose BootP Server if a BootP server has been configured with the correct file. Choose TFTP Server if you wish to upgrade the AP with a specific image. If choosing TFTP Server, you will be prompted for the server IP address and image file name. 5. Follow the online instructions to complete the upgrade. Using the RoamAbout R2 Console Port To upgrade the RoamAbout R2 using the console port: 1. Make sure that you have properly configured a BootP/TFTP server. 2.
Replacing the PC Card in an AP Replacing the PC Card in an AP You may need to replace a defective PC Card or upgrade the PC Card in an AP. If upgrading the AP from a 2 Mbit/s PC Card to an 11 Mbit/s PC Card, make sure that the AP firmware version is V5.0 or greater, as described in the “Checking RoamAbout Product Version Numbers” section on page 6-13. NOTE NOTE: Refer to the Regulatory information, FCC requirements, and installation information shipped with the PC Card before you install it.
Chapter 7 Problem Solving This chapter contains problem solving information for the RoamAbout wireless network. If the problem appears to be with an AP or a specific client, check the LEDs first. The AP LEDs are described in the next section. The client LEDs are described on page 7-19.
Using the AP LEDs to Determine the Problem Using the AP LEDs to Determine the Problem The AP LEDs show status and help diagnose problems. The following sections describe the LEDs on the AP 2000 and the original release of the AP. Figure 7-1 shows the RoamAbout APs. Figure 7-1: RoamAbout APs Acce ss Po 1 int 1 2 R2 Wireless Access Platform Access Point 2000 Access Point Classic RoamAbout R2 LEDs Table 7-1 describes the function of each LED.
Using the AP LEDs to Determine the Problem Table 7-1: RoamAbout R2 LED Descriptions Name Description System Status Lights when the RoamAbout R2 passes self-test. If the RoamAbout R2 fails the test, the LED blinks at a steady rate. Power Lights when the power is on. Wired Forwarding Lights when the RoamAbout R2 is forwarding packets to the wired Ethernet port. 1 Wireless Forwarding (Slot 1) Lights when the RoamAbout R2 is forwarding packets to the wireless port (slot 1).
Using the AP LEDs to Determine the Problem Table 7-2: RoamAbout R2 LED Patterns Wired LAN Wireless LAN Wireless Forwarding 2 3 Wired Forwarding System OK Meaning of LED Pattern 1 No power. Check the power connections. Diagnostics failed. If the pattern continues to display, contact technical support. Normal operating mode. RoamAbout R2 is waiting for the Spanning Tree. No action is required. RoamAbout R2 is occasionally saturated. No action is required.
Using the AP LEDs to Determine the Problem AP 2000 LEDs Table 7-3 describes the function of each LED. Error conditions cause the LEDs to turn on, off, or blink in a pattern. Table 7-4 describes the patterns, the most likely causes, and possible corrective actions. Table 7-5 describes the LED patterns during an AP firmware upgrade. If you suspect an AP failure, run the self-test by removing then reapplying AC power.
Using the AP LEDs to Determine the Problem Table 7-4: RoamAbout AP 2000 LED Patterns Wired LAN Wireless LAN AP Saturated 2 Bridge State Power/ System Status Meaning of LED Pattern 1 No power. Check the power connections. Diagnostics failed. The AP automatically resets after one minute. If the pattern continues to display, contact technical support. Normal operating mode. AP is waiting for the Spanning Tree. No action is required. or Spanning Tree detected a bridge loop and disconnected the port.
Using the AP LEDs to Determine the Problem Table 7-5: Network Loading LED Patterns Wired LAN Wireless LAN AP Saturated 2 Bridge State Power/ System OK Meaning of LED Pattern 1 Downline loading image from load host. TFTP file not found or other TFTP error. (LEDs blink 10 times.) Upgrading Flash. (LEDs blink then turn on one at a time starting with Wireless LAN.) All LEDs, except Wired LAN, are on when the Flash upgrade is successful. Invalid load image.
Using the AP LEDs to Determine the Problem AP (Classic) LEDs Table 7-6 describes the LED functions. Table 7-7 describes the patterns, likely causes, and possible corrective actions. Table 7-8 describes the patterns during a firmware upgrade. Table 7-6: AP (Classic) LEDS Name Description Power OK Lights (green) when the AP has power. Module OK Lights (green) when the AP passes its power-up self-test. The LED is off if the AP fails the test.
Using the AP LEDs to Determine the Problem Table 7-7: AP (Classic) LED Patterns Power OK Module OK Wired LAN Bridge State Saturated 1 Wireless LAN Card Present Meaning of LED Pattern 2 Ethernet connection is not working or there is a hardware failure. Failure while initializing/testing the memory. Normal operating mode. Waiting for the Spanning Tree. No action is required. AP is occasionally saturated due to excessive traffic. No action is required. PC Card is defective.
Using the AP LEDs to Determine the Problem Table 7-8: Network Loading/Upline Dumping LED Patterns Power OK Module OK Wired LAN Bridge State Saturated 1 Wireless LAN Card Present Meaning of LED Pattern 2 Waiting for downline load from load host Downline loading image from load host Firmware error detected while downline loading image from load host TFTP file not found Waiting for retry of TFTP load Upgrading Flash Flash upgrade successful Invalid (wrong) load image Unsuccessful Flash upgrade Invalid
Showing Counters Showing Counters You can display the values of all the counters maintained by the AP. This information can help you monitor the performance of your wireless network or better understand a problem. Typically, this information is used by RoamAbout support personnel to help you diagnose a problem. Using the AP Manager Perform the following to show a subset of the counters using the AP Manager. For a description of the counters, click the Help button. 1.
Showing Counters Table 7-9: RoamAbout AP (Classic and 2000) Counters Counter Description Individually addressed bytes sent Total number of bytes transmitted by the interface as part of unicast messages. Normal behavior for this counter shows a relatively high value that is increasing rapidly. Multicast bytes sent Total number of bytes transmitted by the interface as part of multicast messages. This value is expected to be a large number.
Showing Counters Table 7-9: RoamAbout AP (Classic and 2000) Counters (Cont’d) Counter Description Single collision Number of successfully transmitted frames on the selected interface for which transmission is inhibited by exactly one collision. Frames counted in this counter are not counted by the MultipleCollisionFrames counter. Multiple collisions Number of successfully transmitted frames on the selected interface for which transmission is inhibited by more than one collision.
Showing Counters Table 7-10: RoamAbout AP Classic and 2000) PC Card Counters Counter Description Individually addressed frames sent (TxUnicastFrames) Number of messages sent by the PC Card that are destined for another wireless device. In most LAN applications, it is normal behavior for this counter to have a high value and continuously increase (you can see it run). For example, this counter should increase rapidly when running the Link Test.
Showing Counters Table 7-10: RoamAbout AP Classic and 2000) PC Card Counters (Cont’d) Counter Description Transmit retry limit exceeded frames (TxRetryLimitExceeded) Number of messages that could not be delivered after the maximum number of retransmissions. You can use this counter with TxDiscards to identify a wireless network that is overloaded due to severe interference or excessive load of wireless data traffic.
Showing Counters Table 7-10: RoamAbout AP Classic and 2000) PC Card Counters (Cont’d) Counter Description Wrong station address on transmit (TxDiscardsWrongSA) Number of times a message transmission was not done because a wrong MAC address was used by the protocol stack. A non-zero value indicates an error situation in the communication between the driver and protocol stack.
Showing Counters Table 7-11: RoamAbout R2 Counters Counter Wired Description DropEvents Total number of events in which packets were dropped by the probe due to lack of resources. This number is not necessarily the number of packets dropped; it is just the number of times this condition has been detected. Octets Total number of octets of data (including those in bad packets) received on the network (excluding framing bits but including FCS octets).
Displaying Error Logs Table 7-11: RoamAbout R2 Counters (Cont’d) Counter Wired Description Pkts 128 to 255 Octets Total number of packets (including bad packets) received that were between 128 and 255 octets in length inclusive (excluding framing bits but including FCS octets). Pkts 256 to 511 Octets Total number of packets (including bad packets) received that were between 256 and 511 octets in length inclusive (excluding framing bits but including FCS octets).
RoamAbout PC Card LED Activity in a Client RoamAbout PC Card LED Activity in a Client If you encounter difficulty using a RoamAbout client, the error may be related to various causes, such as: • Out-of range situation, which prevents the PC Card from establishing a wireless connection with the network. • Configuration mismatch, which prevents the PC Card from establishing a wireless connection with the (correct) network. • Absence of or conflict of the RoamAbout Driver.
RoamAbout PC Card LED Activity in a Client Table 7-12: RoamAbout PC Card LED Description Power LED Transmit /Receive LED Continuous Green Blinking Standard operational mode: Card is powered on. Sensing/transmitting wireless data. • • Off Flicker Description/Action Flicker • • Card is powered on. A network connection was established but currently there is no wireless activity. This could be a normal situation. Also, the client may have moved out of the range of the wireless network.
Windows Does Not Detect the RoamAbout PC Card Windows Does Not Detect the RoamAbout PC Card If the RoamAbout PC Card was properly working at one time in the client, the problem could be one of the following: • The PC Card is no longer properly inserted. Reinsert the PC Card into the PC Card slot. • The PC Card was removed and reinserted but the computer requires a reboot to recognize the PC Card. Restart the computer. • The RoamAbout PC Card driver was improperly removed or corrupted.
Checking the Network Protocols on a Windows System Checking the Network Protocols on a Windows System To verify that the client is configured for the correct type of networking and networking protocols on Windows 95, 98, and Me operating systems: 1. From the Windows desktop, click Start then select Settings→Control Panel. 2. Double-click on Network. Verify that the list of network components includes Client for Microsoft Networks and, optionally, Client for NetWare Networks. 3.
Device Conflict on a Windows System Device Conflict on a Windows System A device conflict under Windows NT may be related to the RoamAbout ISA card or PC Card. To detect which card is causing the conflict, use the Windows NT diagnostics. This problem can also appear on Windows 98 and the early version of Windows 95 (OSR0).
Device Conflict on a Windows System A conflict can still occur even after using the Windows NT Diagnostics program to determine unused I/O port addresses and IRQ values. This can happen when your computer has one or more devices and/or peripherals installed that claimed an I/O Base Address or IRQ value without notifying the Windows NT operating system. Therefore, the Windows NT Diagnostics program does not display these values as used.
Device Conflict on a Windows System Changing the ISA Adapter Address If the device conflict is related to the I/O port address of the ISA card, you can change the ISA address by changing the jumper setting on the ISA card (Figure 7-3).
Setting SNMP Trap Addresses (Access Point Only) Setting SNMP Trap Addresses (Access Point Only) To have the AP send SNMP traps, you need to enter the IP address of the device where the trap is to be sent. A trap is a defined event or condition detected by the RoamAbout AP SNMP agent. NOTE: This feature is not available on the RoamAbout R2. NOTE The AP sends an SNMP trap when any of the following events occur: • AP is powered on (coldstart trap).
Setting Upline Dump (Access Point Only) Setting Upline Dump (Access Point Only) The Upline Dump mode is disabled by default. This option allows you to specify whether the AP uploads diagnostic information about itself in the event of a crash. This option should be DISABLED unless a support representative tells you otherwise. NOTE: This feature is not available on the RoamAbout R2.
Appendix A PC Card Information Consult your authorized RoamAbout reseller sales office for information about the radio regulations that apply in your country. Table A-1: Radio Characteristics R-F frequency band Number of selectable sub-channels 2.4 GHz (2400-2483.
Table A-2: Radio Characteristics (For Outdoor Antenna Use) R-F frequency band Number of selectable sub-channels Modulation technique Spreading Bit error rate Nominal Output Power Range 1 A-2 2.
Supported Frequency Sub-Bands Supported Frequency Sub-Bands The RoamAbout PC Card supports a number of factory-programmed channels. The number of available frequencies is subject to local radio regulations as defined by local authorities. In RoamAbout infrastructure environments, the RoamAbout PC Card automatically starts operation at the frequency channel that is used by the RoamAbout AP. This frequency is controlled by the LAN administrator who sets the RoamAbout AP configuration.
Appendix B Connecting a Device to the Console Port This Appendix describes how to connect a device to the console port. Refer to the Hardware Installation Guide for more information. You can manage the AP using its console port or using the RoamAbout AP Manager program. You do not need to use the console port if you use the AP Manager. You can connect a terminal or personal computer running terminal emulation software to the console port.
For the RoamAbout R2 Wireless Access Platform: Pin Assignment [1, 4, 6]* (1) Data Carrier Detect (DCD) (4) Data Terminal Ready (DTR) (6) Data Set Ready (DSR) 2 3 5 7, 8* 9 Receive Data (RXD) Transmit Data (TXD) Ground (7) Request to Send (RTS) (8) Clear to Send (CTS) No connect 1 6 5 9 LKG-8996-931-01 * [1,4,6] and [7,8] are tied together. 3. If using a terminal, configure the transmit and receive baud rates to 9600 baud only. 4.
5. Press until the RoamAbout Main Menu is displayed. The Installation Menu allows you to display and modify various AP and wireless networking parameters. If this is a RoamAbout R2, you are prompted for a username and password. The default username is admin and the default password is password. NOTE NOTE: If your screen remains blank after 3 seconds, press the Ctrl and L keys together. If the screen still remains blank, shut down the terminal emulation program and restart it.
Appendix C ASCII to HEX Conversion This Appendix provides the ASCII to HEX conversion for use with third party products that do not allow ASCII entry of encryption keys.
C-2 ASCII Value HEX Value E 45 e 65 F 46 f 66 G 47 g 67 H 48 h 68 I 49 i 69 J 4A j 6A K 4B k 6B L 4C l 6C M 4D m 6D N 4E n 6E O 4F o 6F P 50 p 70
ASCII Value HEX Value Q 51 q 71 R 52 r 72 S 53 s 73 T 54 t 74 U 55 u 75 V 56 v 76 W 57 w 77 X 58 x 78 Y 59 y 79 Z 5A z 7A C-3
Glossary 802.1X IEEE 802.1X uses security protocols, such as RADIUS, to provide centralized user identification, authentication and dynamic key management. Access Platform See R2 Wireless Access Platform. Access Point A wired to wireless bridge that connects a wireless LAN to a wired Ethernet LAN. Ad-Hoc network A group of wireless clients that participate in wireless communication without connection to a wireless infrastructure network. An ad-hoc network does not include APs.
Glossary Cell A single AP and its wireless clients within a wireless infrastructure network containing multiple APs. Channel (Frequency) The center radio frequency that the wireless device uses to transmit. The RoamAbout PC Card can support up to 13 radio frequency channels as defined in the IEEE 802.11 Standard. The number of available channels for your PC Card is subject to radio regulations that apply in your country. In most countries, these radio regulations adhere to either the FCC or ETSI Standards.
Glossary ISA adapter An option for the RoamAbout PC Card for computers that do not have a PCMCIA slot. The ISA adapter installs into a computer’s ISA bus and provides a PCMCIA slot for the PC Card. MAC Address This is the hardware address of the device. The MAC address consists of 12 hexadecimal digits, and is printed on the device. Multicast Message A data message that is transmitted by one wireless device to multiple devices in the wireless network.
Glossary RADIUS RADIUS (Remote Authentication Dial-In User Service). RADIUS is an IETF standard protocol for Authentication, Authorization and Accounting. Range Extender Antenna An indoor antenna that extends the coverage area of a RoamAbout wireless device. Rapid Rekeying Also known as Key Tumbling, provides frequent, automatic, redistribution of IEEE 802.11 WEP Encryption keys for enhanced security. RoamAbout AP Manager Software used to manage and configure one or more APs.
Glossary WEP Wired Equivalent Privacy. Used to encrypt data transmitted via the wireless medium. wireless client A computer such as a PC, laptop, or notebook, that uses the PC card for wireless LAN connectivity. A wireless client is also referred to as a station. wireless infrastructure network A wireless network that consists of wireless clients connected by one or more APs to a wired Ethernet LAN.
Index Numerics 802.1X Activation Key description 5-33 entering 5-37 802.1X authentication overview 2-15 parameters 5-32 802.1X Rapid Rekeying See Rapid Rekeying 802.
Index ASCII character encryption key 5-25 ASCII to HEX conversion C-1 authentication configuring 5-30–5-35 overview 2-14 Authentication trap 7-26 Auto Rate 2-6 B B*.
Index console port Access Point security 2-19 configuring for security 5-28 connecting a device B-1 description 4-5 infrastructure network 5-7 password 5-28 point-to-multipoint network 5-17 point-to-point network 5-12 security 5-28 tips for using B-3 used with VLAN 5-42 console port (R2) connecting a device B-1 infrastructure network 5-6 point-to-multipoint network 5-16 point-to-point network 5-7, 5-11 security 2-19 tips for using B-3 console port password (Access Point) description 2-19 console port passwo
Index F Filters address 2-21, 5-46 protocols 2-21, 5-44 rate limiting 2-21 Firmware Revisions integrity test 5-47 Firmware version AP 6-13 fixed rate 2-20, 2-21 flash upgrade definition 4-2 Forbidden VLAN configuration 5-40 Forwarding integrity test 5-47 Frame collisions 2-10, 6-4 G G*.
Index LAN-to-LAN Multipoint Mode description 1-3 LAT filter 5-45 LEDs PC Card 7-20 RoamAbout AP 2000 7-5 RoamAbout AP Classic 7-8 RoamAbout R2 7-2 Link Test description 6-3 diagnostic tool 6-2, 6-6 testing data throughput efficiency 6-3 testing point-to-point 6-7 Load balancing infrastructure network 5-4 modifying 5-23 overview 3-6 log file client 6-8 errors 7-18 Login names 2-12 M MAC address description 2-3 filtering 5-46 R2 internal 2-3 R2 Spanning Tree 2-3 R2 spanning tree 2-3 used with authentication 5
Index O Omni-directional antenna 1-18 Outdoor antenna 1-18, 3-6, 3-7, 6-7 P Parameters integrity test 5-47 Passwords 2-12 PC Card 11 Mbit/s 2-6 2 Mbit/s 2-6 description 1-4 diagnostics 6-9 in an AP 1-4 LEDs 7-19 replacing 6-16 unable to detect 7-21 version numbers 6-13 PC Card firmware version 6-13 PCI Adapter Card description 1-4 PCIC - 16 bit 7-24 Peer-to-peer network 1-1 Point-to-Multipoint configuring 5-13–5-17 considerations 3-7 definition 1-1, 1-9 description 1-10 required information 5-13 wireless pa
Index Remote Network Monitoring MIB See RMON Remote RTS Threshold description 2-9–2-10 modifying 5-22 Remote Wireless MAC Address 5-12 Reset button 5-48 Reset button (hardware) 5-48, 6-15 Reset count 7-18 Reset with current settings 5-48 Reset with factory defaults AP 5-48 RMON accessibility 4-5 groups 6-10 RoamAbout Client Utility See Client Utility RoamAbout R2 connector pinout B-2 console port 5-6 definition 1-2 LED descriptions 7-3 LED patterns 7-4 Mezzanine special considerations 3-6 Special considerat
Index SNR AP placement 6-6–6-7 description 2-7 in ad-hoc network 6-3 outdoor antenna placement 6-7 testing communications quality 6-2–6-3 testing data throughput 6-4 Spanning Tree point-to-multipoint network 5-14, 5-16 point-to-point network 5-9, 5-12 Spanning Tree Protocol 2-22, 5-43 SpectraLink NetLink WTS encryption ASCII to HEX Conversion C-1 SSID 2-2 Static VLAN 2-25 Station Firmware 6-13 Station Name infrastructure network 5-4 integrity test 5-47 point-to-multipoint network 5-14 point-to-point network
Index VLAN counters 7-12 VLAN ID configuring with AP Manager 5-41 range 2-23 VLAN Name configuring with AP Manager 5-41 W Web management define password 5-28 R2 access 4-6 using 5-49 Web site 1-5 WEP configuring 5-25 description 2-13 Wired Equivalent Privacy See WEP Wired Forwarding LED 7-3 Wired LAN Activity LED 7-5, 7-8 wired MAC address 5-8, 5-13 Wireless client See client Wireless Forwarding (Slot 1) LED 7-3 Wireless infrastructure network definition 1-1 description 1-6 hardware installation 3-9 multipl
