User’s Manual Wireless LAN Outdoor AP/Bridge Model No.: SP915-1000 World Wide Web: www.micronet.com.tw ; www.micronet.
Table of Contents Chapter 1 Introduction................................................................................... 1 1.1 Package Contents .......................................................................................... 1 1.2 Key Features ................................................................................................. 1 1.3 LED Indicator ...............................................................................................
.4.2 Changing Password........................................................................................20 3.4.3 Managing Firmware ........................................................................................20 3.5 TCP/IP Related Settings ............................................................................. 24 3.5.1 Addressing........................................................................................................24 3.5.2 Static DHCP Mappings........................
Chapter 1 Introduction Micronet proudly introduces SP915-1000, high power outdoor Access Point. It is compliant with IEEE802.11b providing speed of up to 11Mbps. The AP includes a Web-Based User Interface for easy management of your wireless network. Security is intact with WEP, WPA and 802.1x for preventing unauthorized access in wireless environment. SP915-1000 combining with high power antenna (SP920MA-12) is ideal for distant inter-building connection. 1.
y y y y y y y y y y y y y 1.3 ¾ AP Client is for Dynamic LAN-to-LAN Bridging. The AP Client automatically establishes bridge links with APs from any vendors. Enabling/disabling SSID broadcasts. MAC-address-based access control. Antenna alignment assistance. Link health monitoring. Wireless client isolation. AP load balancing. Transmit power control.
Chapter 2 Installation and Configuration 2.1 Mounting the SP915-1000 Follow steps below to mount SP915-1000 with a wall-mount kit #1. 1. Put the M6*90 screw into wall mount #1. 2. Fix the wall mount #1 to the bottom of SP915-1000 by using M4*80 screw. 3. Fix the SP915-1000 to the pole with the wall mount #1 using M6*90 screw. 4. Use M6 screw set, including spring washer and nuts, to finish the installation.
Follow steps below to mount SP915-1000 with a wall-mount kit #2. 1. Stick the supplied sticker for wall mount #2. 2. Use the 7.00mm driller to drill a 25mm-deep hole at each of the cross marks. 3. Plug in a supplied plastic conical anchor in each hole. 4. Screw a supplied ST3.9*20 screw in each plastic conical anchor for a proper depth so that the wireless AP can be hung on the screws. 5. Fix two wall mounts #1 to the bottom of SP915-1000 by using two M4*80 screws. 6.
2.2 Connecting the Managing PC and the SP915 To connect the Ethernet managing computer and the managed AP for firsttime configuration, users have two choices as illustrated in diagram below. (Note: One connector of the Ethernet cable must be plugged into the LAN/CONFIG Ethernet jack of the SP915-1000 for configuration.) 2.3 Preparing for Configuration For users to configure the SP915-1000, a managing computer with a Web browser is needed.
PC/Notebook must belong in the same IP range and subnet. Follow the steps below to configure IP settings for LAN PC. Step 1. In the control panel, double click on Network Connections. Double click on the local area connection (e.g. LAN). The following screen will appear. Step 2. Select ‘Internet Protocol (TCP/IP)’, and then click on the ‘Properties’ button. The screen will appear to allow entry of TCP/IP settings. Step 3.
2.4 IP Address 192.168.0.1 Subnet Mask 255.255.255.0 Username root Password root Accessing Web-based User Interface SP915-1000 is embedded with web-based management user interface and provides a series of web pages, which display the configuration and status of the system. After configuration of IP, the management interface can be access by entering the IP address of the router into the browser. Step 1. Login page will appear to prompt users to enter the username and password. Step 2.
2.5 Quick Setup via Web-Based UI Follow the following steps for quick setup of your wireless AP. Click at the bottom of each configuration interface to save changes. 2.5.1 Operational Mode Go to the ‘General’ menu and click to select a mode for the AP. The AP supports 2 operational modes: y AP/Bridge: This mode provides both Access Point and Static LAN-toLAN Bridging functionality. The static LAN-to-LAN bridging function is supported through Wireless Distribution System (WDS).
y AP Client: This mode is for Dynamic LAN-to-LAN Bridging. The AP Client automatically establishes bridge links with APs from any vendors. In either mode, the AP forwards packets between its Ethernet interface and wireless interface for wired hosts on the Ethernet side and wireless host(s) on the wireless side. There are 2 types of wireless links as specified by the IEEE 802.11 standard. y STA-AP: This type of wireless link is established between an IEEE 802.11 Station (STA) and an IEEE 802.
2.5.2 IP Address Go to the ‘TCP/IP’ menu and click to alter the IP configuration for the AP. 2.5.3 Wireless Settings Go to the ‘IEEE 802.11’ menu and click to set wireless parameters for the AP. 2.5.4 Restart Device After pressing on each page, the interface will be bought back to Start Page. The changes will be highlighted in red. Press to apply the changes.
2.6 Installation For configuring a pair of APs for dynamic or static bridging with high grain directional antenna, please follow the steps below. Step 1. Connect each bridge to a computer via Ethernet and configure the data rate of each AP to the lowest value, 1Mbps. Step 2. Fix the alignment of the antenna on one side. Run ‘PING’ function in DOS environment between the two APs. Response time from the ‘PING’ will indicate the optimal alignment. Step 3.
(Note: When doing dynamic bridging, configure Bridge 1 to be in AP Client mode and configure Bridge 2 to be in AP/Bridge mode. If users are doing static bridging, make use of the Antenna Alignment Assistance feature to help align the directional antennas.) Instead of using PING.exe, users can run Wireless Network Manager on Computer 1, and go to the Antenna Alignment tab. Click to begin monitoring the WDS link quality.
installing dynamic bridging, use the Link Monitor feature on the AP Client side to help align the directional antennas. 2.7 Setting up Client Computers The TCP/IP and IEEE 802.11b-related settings of wireless client computers must match those of the AP. 2.7.1 Configuring SP915-1000 Related Settings Before the TCP/IP networking system of a wireless client computer can communicate with other hosts, the underlying wireless link must be established between this wireless computer and an AP.
Chapter 3 Web-Based Management The following chapter will outline the web-based user interface used for configuring SP915-1000. 3.1 Overview Once, the login details are correctly entered, the web browser will proceed to the following page containing overview of AP’s settings. 3.2 Menu Structure The left side of the start page contains a menu for users to carry out commands. Here is a brief description of the hyperlinks on the menu. y Home: For returning back to the start page.
y y y y ¾ DHCP Mappings: Current IP-MAC Address mappings of the builtin DHCP server. ¾ System Log: System events log. ¾ Link Monitor: When the AP is in AP Client mode, this page shows the signal strength and link quality of the wireless link to its associated access point. General: General tools. ¾ Password: For gaining rights to change the settings of the AP. ¾ Firmware Tools: For upgrading the firmware of the AP, backing up and restoring configuration, and configuration reset settings of the AP.
the AP immediately for the settings changes to take effect. Clicking discards any settings changes and brings users back to the start page. If users click , the start page will reflect the changed settings and followed by two buttons: and . In addition, changes are highlighted in red. Clicking Cancel discards all the changes. Clicking Restart restarts the AP for the settings changes to take effect. 3.2.
3.3 Status Menu 3.3.1 Wireless Clients On this page, the status information of each associated client, including its MAC address, IP address, user name (if the client has been IEEE 802.1x authenticated), number of bytes it has send, number of bytes it has received, and the time of its last activity, are shown. 3.3.2 DHCP Mappings On this page, all the current static or dynamic DHCP mappings are shown.
dynamic mapping indicates that the DHCP server chooses an IP address from the IP address pool specified by the First allocatable IP address and Allocatable IP address count settings on the DHCP Server configuration page. 3.3.3 System Log System events are recorded in the memory of the AP. The logged information is useful for troubleshooting purposes. The system events are divided into several categories, and users can select which categories of events to log. 3.3.
3.4 General Operation 3.4.1 Operational Mode The AP supports 2 operational modes: y AP/Bridge: This mode provides both Access Point and Static LAN-toLAN Bridging functionality. The static LAN-to-LAN bridging function is supported through Wireless Distribution System (WDS). y AP Client: This mode is for Dynamic LAN-to-LAN Bridging. The AP Client automatically establishes bridge links with APs from any vendors.
AP/Bridge AP Client AP/Bridge WDS STA-AP AP Client STA-AP To establish a static bridge link based on WDS, the AP/bridges at both end of the WDS link must be manually configured with each other’s MAC addresses. To establish a dynamic bridge link between an AP and an AP Client, both devices have to be configured with the same SSID and WEP settings. The AP Client automatically scans for any AP that is using the matched SSID and establishes a bridge link with the scanned AP.
friendly. However, due to different behavior of different Web browser types and versions, HTTP-based firmware management operations may not work properly with some Web browsers. If users cannot successfully perform HTTP-based firmware management operations with the Web browser, try the TFTP-based method. Upgrade Firmware via HTTP y Click and then select a correct firmware .bin file. The firmware file path will be shown in the Firmware file name text box.
Upgrading Firmware via TFTP When use TFTP as the firmware management protocol, users can configure settings for the AP’s TFTP client to communicate with a TFTP server. If the TFTP client does not get a response from the TFTP server within a period specified by the Timeout setting, it will resend the previous request. The Max number of retries setting specifies the maximal number of resend before the TFTP client stops communicating with the TFTP server.
y y y y y On the computer, run the TFTP Server utility. Select the Accept write requests check box, and specify the folder to which the configuration settings of the AP will be saved. On the computer, run a Web browser and click the , hyperlink. Choose TFTP as the Firmware management protocol. Within the Configuration Backup/Restore section, specify the IP address of the computer, which acts as a TFTP server.
y Trigger the restoring process by clicking . The AP will then download the configuration backup file from the TFTP server. Resetting Configuration to Factory Defaults Clicking the button resets the device configuration to factory defaults. 3.5 TCP/IP Related Settings 3.5.1 Addressing The IP address of the AP can be manually set (Set Manually) or automatically assigned by a DHCP server on the LAN (Obtain from a DHCP Server).
server manually, you can configure the server to obtain an IP address by DHCP and it is always assigned the same IP address. y y 3.6 Specify the MAC address of the DHCP client and the IP address to be assigned. Then, give a description for this mapping. Select the corresponding Enabled check box. IEEE 802.11 Menu 3.6.1 Communication 3.6.1.1 Basic Basic communication settings include AP functionality, Regulatory domain, Channel number, Network name (SSID), Data rate, and Transmit power.
y y y y client can associate with the AP. The number of available RF channels depends on local regulations. Therefore users have to choose an appropriate regulatory domain to comply with local regulations. The SSID of a wireless client computer and the SSID of the AP must be identical for them to communicate with each other. If there is RF interference, users may want to reduce the Data rate for more reliable wireless transmission. In most cases, leave the setting to ‘Auto’.
3.6.1.4 AP Load Balancing Several APs can form a load-balancing group if they are set with the same ‘Group ID’. The load-balancing policy can be by ‘Number of Users’ or by ‘Traffic Load’. If the ‘Number-of-Users’ policy is selected, a new wireless user can only associate with an AP that has the smallest number of associated wireless users in the group.
By WDS, two or more LAN segments can be connected wirelessly. As illustrated in the below diagram, a pair of wireless LAN-to-LAN bridges is used to connect two LAN segments. Since the AP is WDS-enabled, it can be used as a wireless bridge. y y Specify the MAC address of the AP at the other end of the WDS link. Select the corresponding Enabled check box. (Note: An AP can have up to 6 WDS links to other APs or wireless bridges.) 3.6.
When the Wireless client isolation setting is set to ‘This AP Only’, wireless clients of this AP cannot see each other, and wireless-to-wireless traffic is blocked. When the setting is set to ‘All APs in This Subnet’, traffic among wireless users of different APs in the same IP subnet is blocked. This feature is useful for WLANs deployed in public places. In this way, hackers have no chance to attack other wireless users in a hotspot.
STA 1 STA 3 STA 2 AP 1 AP 2 WCI: All APs in This Subnet WCI: All APs in This Subnet Switch Wireless Link Ethernet Link Behavior of the “All APs on This Subnet” wireless client isolation option. As illustrated in the first figure when AP 1 and AP 2 are using the “This AP Only” option, wireless traffic between STA 1 and STA 2 is blocked by AP 1. While wireless traffic between STA 2 and STA 3, which are associated with different APs, is still allowed.
y y y IEEE 802.1x EAP with Static WEP (EAP-MD5): The IEEE 802.1x functionality is enabled and the user-name/password-based EAPMD5 authentication is used. Data encryption is achieved by static WEP. IEEE 802.1x EAP with Dynamic WEP (EAP-TLS, EAP-TTLS, PEAP): The IEEE 802.1x functionality is enabled and dynamic WEP key distribution authentication (EAP-TLS, EAP-TTLS, or PEAP) is used. Data encryption is achieved by dynamic WEP. IEEE 802.
With MAC-Address-Based Access Control, users can specify the wireless client computers that are permitted or not permitted to associate with the AP. When the table type is set to inclusive, entries in the table are permitted to associate with the AP. When the table type is set to exclusive, entries in the table are not permitted to associate with the AP. For denying access to the wireless network, please follow the below procedure: 1. Select ‘Enabled’ from the Functionality drop-down list. 2.
to download the MAC ACL (Access Control List) file from the TFTP server. 3. Specify the IP address of the TFTP server in the TFTP server IP address text box. 4. Specify the name of the MAC ACL file on the TFTP server in the MAC ACL file name text box. 5. Click . 3.6.3 IEEE 802.1x/RADIUS IEEE 802.1x Port-Based Network Access Control is a new standard for solving some security issues associated with IEEE 802.11, such as lack of user-based authentication and dynamic encryption key distribution.
encryption between the wireless client computer and its associated wireless access point. To sum up, EAP-MD5 supports only user authentication, while EAP-TLS supports user authentication as well as dynamic encryption key distribution. An access point supporting IEEE 802.1x can be configured to communicate with two RADIUS servers. When the primary RADIUS server fails to respond, the wireless access point will try to communicate with the secondary RADIUS server.
3.7 Configuring Advanced Settings 3.7.1 Packet Filters The SP915-1000 provides layer 2 (Ethernet Type Filters), layer 3 (IP Protocol Filters), and layer 4 (TCP/UDP Port Filters) filtering capabilities. The configuration processes for the filters are similar. y y y Functionality: Allows filtering capability to be enabled or disabled. Policy for matched packets: Indicates how a matched packet is processed: discard or pass. To enable a filtering rule: Select the check box to the left of the rule. 3.7.1.
3.7.1.2 IP Protocol Filters The protocol, source address, and destination address fields of a packet incoming from the WLAN or Ethernet interface is inspected for filtering. In a rule, specify the hex-decimal protocol number, source IP address range (Source IP Address AND Source Subnet Mask), and destination IP address range (Destination IP Address AND Destination Subnet Mask).
specify the decimal Destination Port, Protocol type (TCP/UDP), and the name of the higher-level protocol (Application Name). 3.7.2 Management 3.7.2.1 UPnP UPnP (Universal Plug and Play) enables a Windows XP user to automatically discover peripheral devices by HTTP. When the UPnP functionality is enabled, users can see the AP in ‘My Network Places’ of Windows XP. The AP can be given a friendly name that will be shown in My Network Places.
The system events are divided into the following categories: y General: system and network connectivity status changes. y Built-in AP: wireless client association and WEP authentication status changes. y MIB II traps: Cold Start, Warm Start, Link Up, Link Down and SNMP Authentication Failure. y RADIUS user authentication: RADIUS user authentication status changes. 3.7.2.
39
Chapter 4 Appendix 4.1 Appendix A: Default Settings Press the Default (SF-Reset, or Soft-Reset) switch on the housing of a powered-on AP to reset the configuration settings to factory-default values. Setting Name Default Value Global User Name Password IEEE 802.
Method of obtaining an IP Address IP Address Subnet Mask Default Gateway DHCP Server Management UPnP System Log SNMP SNMP read community SNMP write community Telnet 4.2 Set manually 192.168.0.1 255.255.255.0 0.0.0.0 Disabled Enabled Local Log Enabled public private Enabled Appendix B: Troubleshooting Check the following: y Make sure that the power of the AP is on and the Ethernet cables are connected firmly to the Ethernet jacks of the AP.
¾ Check the signal strength and link quality sensed by the WLAN NIC. 4.2.2 TCP/IP Settings Problems For a wireless client computer to communicate with a correspondent host on the Internet by the host’s domain name (e.g. http://www.micronet.info), first sends a DNS request to a DNS server on the Internet. The DNS request travels first to the AP, and then the AP relays this request to the default gateway of the client computer.
Problem: The AP does not respond to ping from the client computer. y Are two or more NICs installed on the client computer? ¾ Use the OS-provided command-line network tool, route.exe, to modify the contents of the routing table. ¾ Use Windows-provided Device Manager to disable unnecessary NICs. y Is the underlying link (Ethernet or IEEE 802.11b) established? ¾ Make sure the Ethernet link is OK. ¾ Make sure the wireless settings of the wireless client computer and of the AP match.
4.3 Appendix C: Additional Information 4.3.1 Distances and Data Rates Maximum distances posted below are actual tested distance thresholds. However, there are many variables such as barrier composition and construction and local environmental interference that may impact your actual distances and cause you to experience distance thresholds far lower than those posted below. IEEE 802.11b Maximum Distance Table Environmental Condition Speed and Distance Ranges 11 Mbps 5.
4.3.2 Specification Standards IEEE802.11b Antenna Frequency 1 x N-Type Connector 1 x RJ-45 10/100BaseTX (Waterproof) z CCK: 11/5.5Mbps z DQPSK: 2Mbps z DBSK: 1Mbps 2 x N-type Connector 2.4~2.4835 GHz, DSSS Transmit Power Receiver Sensitivity Max. 30dBm -85dBm Interface Data Rate z z z DHCP z z Operational Mode z z z z z Advance Features z z z z z Security Features z z z z Management z z DHCP Server & Client Static DHCP mappings. Showing current DHCP mappings.
