DDC WAP-0003 manual final
Contents
1. Built in account For admini Enterprise certification an Members who hawe admini Members who have view DNS Administrators Group DNS clients who are permi Designated administrators All workstations and serve All domain controllers in th ll domain guests All domain users Designated administrators Members in this group can Built in account For guest Built in account For anony Built in account For Intern Key Distribution Center Se Servers in this group can Designated administrators Please note that in this case we have a user called test whose account password are used to obtain the digital certificate from server 38 Goto the Diaktin tab and check Allow access option for Remote Access Permission and No Callback for Callback Options test Properties EA E ea ap oe seen Pay a Aa a ae a a pos 4 Eon Gl access througi remote Access Tolley f P Verify Caller ID T Assign a Static IP Address T Apply Static Routes perp E ed Peeee es SEG TS GULES _Q For MD5 Authentication Steps 39 54 39 Goto Start gt Program gt Administrative Tools gt Active Directory Users and Computers 40 Right click on the domain and select Properties EA Active Directory Users and Computers a l z oj x E Console Window Help 12 Action view Eae el enara Tree FE LOCAL 5 objects ee Active Directory Users2. Beacon Interval To set the period of time inmillisecondsthat AP sends out a beacon Default is 100 milliseconds RTS Threshold To set the size of RTS CTS packet size Default is 2432 bytes Fragmentation Threshold To setthe number of bytes used for the fragmentation boundary for directed messages Default is 2436 bytes DTIM Interval This value indicates the interval of the Delivery Traffic Indication Message DTIM A DTIM field is a countdown field informing clients of the next window for listening to broadcast and multicast messages When the Access Point has buffered broadcast or multicast messages for associated clients it sends the next DTIM with a DTIM Interval value Access Point Clients hear the beacons and awaken to receive the broadcast and multicast messages Authentication Type The Authentication Type default is set to Open System and you may want to set to Shared Key when the clients and AP in the same wireless network enable the WEP encryption All the nodes and hosts on the network must use the same authentication type It s recommend that you use the default setting SSID Broadcast While SSID Broadcast is enabled all wireless clients will be able to communicate with the Access Point For security purpose you may want to disable SSID Broadcast to allow only those wireless clients with the AP s SSID to communicate with the Access Point TX Rate Select the data rate for data transmission lig Only Mode S
3. Check the connection of computer and Wireless Access Point by doing a simple Ping test Go to Start gt Run gt Type command gt Type ping 192 168 1 1 A successful ping will Show responses from the Wireless Access Point os CWINNTWystem3 command com Microsoft R gt Windows DOS CCo Copyright Microsoft Corp 1998 2061 C DOCUME 1L ADMINI 1 gt ping 192 168 1 1 Pinging 192 168 1 1 with 32 bytes of data Reply from 192 168 1 1 bytes 32 time ims ITL 30 Reply from 192 168 1 1 bytes 32 time lt ims TITL 30 Reply from 192 168 1 1 bytes 32 timetims TTL 30 Reply from 192 168 1 1 bytes 32 timetims TTL 380 Ping statistics for 192 168 1 1 Packets Sent 4 Received 4 Lost iHz loss Approximate round trip times in milli seconds Minimum Ams Maximum ims Average Pms C DOCUME 1 ADMINI 1 gt 38 2 The wireless clients cannot access the network in the infrastructure mode Check that the wireless network device is being installed and working properly Go to Start gt Right mouse click on My Computer gt Properties Administrator h Internet E7 Internet Explorer a E mail A Outlook Express ee A 45USUpdate 5 265 053 x3 MSN Explorer Windows Media Player Windows Movie Maker Tour Windows P Files and Settings Transfer Help and Suppe es me My Documents 5 My Recent Documents Search Manage Map Ne
4. IEEE 802 11 standard The 54Mbps Wireless Access Point supports 64 128 bit shared key for WEP Would the information be transmitted securely in the air WLAN offers two layers of protection for security First layer is on the hardware level As with Direct Sequence Spread Spectrum DSSS technology it has the inherent security feature of scrambling Second of all on the software level the security control is made possible by Wired Equivalent Privacy WEP for access control What is I SM band The FCC and their counterparts outside of the U S have set aside bandwidth for unlicensed use in the ISM Industrial Scientific and Medical band The 2 4GHz unlicensed ISM band is available worldwide which presents the opportunity for the global market of 802 11b high speed wireless products H APPENDIX B NETWORKING BASIS This chapter will help you learn the basics of home networking Using the Windows XP Network Setup Wizard Go to Start menu gt Control Panel gt Network Connections In the menu on the left side of the window select Set up a home or small office network Click Next procced Click Next continue Network Setup Wizard Welcome to the Network Setup Wizard This wizard will help you set up this computer to run on pour network With a network you car Share an Internet conmection Set up Internet Connection Firewall Share files and folders Share a printer To continue
5. 9 Restricted Groups Fy i System Services Reagetry 125 m neh pane BRI Public key Policies _ Enberprise Trust i 4 P Sear ty Pokies on Actree Directory H E Administrative Temp lates i Leer canbiar abon H E Souse Setting HE Windows Settings EJ administrates Templates Create a new Automati Certiinabe Request ojek and add t ho he Secunty Cov iguration Editor 81 17 The Automatic Certificate Request Setup Wizard will guide you through the Automatic Certificate Request setup simply click Next through to the last step Automatic Certificate Request Setup Wizard Certificate Template The nest time a computer logs on a certificate based on the template you select is provided A certificate template it a set of predefined properties for certificates issued to computers Select a template trom the following list Certificate templates Name Intended Purposes a Computer Chent Authentication Server Authenticatior Domain Controller Chent Authentication Server Suthenticatior Enrollment Agent Computer Certificate Request Agent IFSEC 1 3 6 7 5 5 8 2 2 Cancel 18 Click Finish to complete the Automatic Certificate Request Setup 19 Goto Start gt Run andtype command and click Enter to open Command Prompt 20 Type secedit refreshpolic
6. Tons Firmware earsion 1 00 LAM MAC iD 0 22 39 44 55 IPF Adress 12 1681 1 Tliet Mask 255 255 255 0 Gateway 0 0 0 0 fen 0 Roeralyve TIEF MAC 00 80 c8 Oc 31 he THD APS SaaS Encryption Function biseble Channel amp aes F97 Riscoive PEI Ventas Connection Time Wireless Sitio AM 02008 00 57 10 0 208 1 ae la Getting Started With Setup Wizard Setup wizard is provided as part of the web configuration utility You can simply follow the step by step process to get LevelOne Access Point configured and ready for running in 4 easy steps by clicking on the Wizard button on the function menu The following screen will appear Please click Next to continue Sdibps Access Point Setup Wizard Welcome to the 54tibps Access Point Setup Wizard The Wizard will direct you through these four quick steps Start by clicking on Next estep 1 Set your new password estep 2 Set the Soll and Channel estep 3 Set Encryption estep 4 Restart Step 1 Set Password Set Password LevelOne Access Point is password You may want to change the Administrator password of this Access Point to prevent authorized modification ta the configuration settings protected to prevent unauthorized Enter your new password in the following text fields Click Next to ail continue with setup or Exit to quit setup wizard modification to your configuration You can change to new password if you wish E Password otherwise s
7. Wireless Networks Authentication Advanced Connect using Select Internet Protocol ES 54Mbps High Speed Network Adapter TCP IP and Click E q O Configure Properties to continue This connection uses the following items ic E Client for Microsoft Networks w m File and Printer Sharing for Microsott Networks w Internet Frotocol TCP IP Install Uninsta Properties pi i Description Transmission Control Protocal nternet Protocol The default Wide area network protocol that provides communicatior across diverse interconnected networks Show icon in notification area when connected Dynamically Assigned IP Address Internet Protocol TCP IP Properties The TCP IP Properties window General Alternate Configuration appears fou can get F settings assigned automatically if your network supports this capability Othenwse you need to ask your network administrator for the appropriate IP settings Select Obtain an IP address automatically if you are ona Obtain an IP address automatically DHCP enabled network Click OK to close the window with the changes made Obtain DNS server address automatically Use the following ONS server addresses Co C CDe 52 Static P Address Internet Protocol TCP IP Properties Select Use the following IP address General Enter the I
8. 192 168 1 1Aip cei Microsoft Internet Explorer File Edit View Favorites Tools Help Back leg ix a A p2 Search SIP Favorites GA media Address http 192 168 1 1 ip cgi Settings were successfully saved Back The new settings are now been saved to Access Point and will be effective once the Access Point restarts Click Back to go back to Basic Setting page 17 Advanced Setting This page contains configurations for advanced users which the change will reflect the wireless performance and operating modes Advanced Setting Micrsinft Internet Explorer Fee Ect ime Favorites Tok Hep O O DAG Px geome Qu Ol 2 SE Socks E bbb 1002 9 yay ancad hiri a an _ Wan a Access Point ee wizard Statud Basie Setting If Setting Security P0212 Tools AP Pode gt Ap Cr AP Client Remate AFP BSS IO OOOO O Wireless Bridge Remote Bridge MAC pat pb Berhad Beacon Interval 100 meaac range 1 1000 dafauit 100 RTS Threshold 2432 iranga 256 2492 default 2437 Fragmenti Threshold edi iranga 250 2546 default 2546 awan number only DTIM Interval 3 range 1255 de aJkt 3 Authentication Type C Open System Shared Key Both SSID braaticast Enable Disable TX Rates Auto Mbps Lig Only Mode gt Enabled Disabled Lapel Cancel Help AP Mode Select one of the AP operating modes for different application of Access Point 1 AP The no
9. address of the Router in the Default gateway field 2 Enter the IP address of the Router in the DNS server field DANS Contiguration Gateway LAVINS Configura TCPAIP Properties ion IP Address Bias Sdyanced An F address can be automatically assigned to this computer lyor network does hot automatically assign IP addresses ask bout Aebwork administrator forar address and then type itir the space below C Obtainan IP address automatically i Specify an IP address IP Addtess 192 168 1 2 Subnet Mask f 1255 255 255 0 APPENDIX C 802 1x Authentication Setup There are three essential components to the 802 1x infrastructure 1 Supplicant 2 Authenticator and 3 Server The 802 1x security supports both MD5 and TLS Extensive Authentication Protocol EAP The 802 1x Authentication is a complement to the current WEP encryption used in wireless network The current security weakness of WEP encryp tion is that there is no key management and no limitation for the duration of key lifetime 802 1x Authentication offers key management which includes key per user and key per session and limits the lifetime of the keys to certain duration Thus key decryption by unauthorized attacker becomes extremely difficult and the wireless network is safely secured We will introduce the 802 1x Authentication infrastructure as a whole and going into details of the setup for each essential component
10. click Hest Network Setup Wizard Before you continue Then complete the following steps Install the network cards modems and cables Tum on all computers printers and external modems Connect to the Internet When you click Next the wizard will search for a shared Internet connection on your network Cancel Ae Select the option that best describes how you connect your computer to the Internet In the case of using router in the network choose the second option Click Next to continue 1 Enter a short description for your computer 2 Enter a name for your computer to be recognized among the network 3 Click Next to continue Network Setup Wizard Select a connection method Select the statement that best describes this computer O This computer connects directly to the Internet The other computers on my network connect to the Internet through this computer View an example Preeeree eer rere rer rer rere errr rere rere reer rete reer rer errr reer rr rarer errr terre rrr eer errr er ere rere etree rer rer rrr rir errr er rer errr rer rere rere errr eter rire rete rere rei T his computer connects to the Intemet through another computer on my network or through a residential gateway View an example C Other Learn more about home or mall office network configurations Network Setup Wizard Give this computer a description and name Co
11. gt 43 Click Define this policy setting select Enabled and click OK to continue Security Policy Setting a J 2 x store password using reversible encryption for all users in the f domain IY Define this policy setting i Enabled C Disabled 44 45 Computers Properties amp Active Directory Users and Computers 5 Console Window Action View Tree Ei FAE LOCAL Builtin J Computers Active Directory Users and Computers E Domain Controllers H I ForeignSecurityPrincipals am X 2 Users 21 objects Ife DHCP Users fon fon CE Dor C2 Dar Copy 4dd members to a group Disable Account Reset Password Move Open home page Send mail All Tasks Delete Rename Refresh f TsInternetUser User Go to Start gt Progra m gt Administrative Tools gt Active Directory Users and Go to Users Right click on the user that you are granting access and select QSRwaver f dministrator User Pii cert Publishers Security Group CE OHCP Adminis Security Group Security Group Built in account For admini Enterprise certification an Members who have admini Members who have views DNS Administrators Group DNS clients who are permi besignated administrators All domain guests Bll domain users hesignated administrators embers in th
12. 2000 Server which can act as a CA server assuming you have a valid account password to access the server 13 Connect to the server and ask for access and the server will prompt you to enter your user name and password 14 Enter your user name and password then click OK to continue Connect to 197 168 1 10 Connecting to 192 166 1 10 User name v A Password Remember my password Please note that we use IP addresses for connection with the server for our illustration andthe IP of the server is 192 168 1 10 15 After successful login open up your Internet Browser and type the following in the address field http 192 168 1 10 certsrv This is how we connect to the Certificate Service installed in Windows 2000 server 63 16 Now we are connected to the Certificate Service Select Request a certificate and click Next to continue 9 Microsoft Certificate Services Microsoft Internet Explorer Fis Edt Via Fevortes Tods Help ir CS sax ei p Favorites rasa ta di G 5 jie een 92 000 1Okcertervi Pc ened Centhicae Samices Wireless CA Welcome Tou Wise this web site to request a certificate for your web browser e mail client or other secure program Orica you acquire a cartficate you wall be able to securely identify yourself to other people ower the wab sign your s mail messages ancrpl your 6 mail massages and more depending upon the ypa of
13. 4 operation modes Access Point Forms a wireless network and works as a bridge to communicate with Ethernet LAN network AP Client Acts as an wireless client which allows the computers that are connected to the AP to communicate with other wireless clients Point to Point Bridge Connects two independent Ethernet LAN networks or computers wirelessly _A Multrtpoint Bridge Connects more than two independent Ethernet LAN networks or computers wirelessly What is Roaming Roaming is the ability of portable computers e g Packet PC and notebook to have consistent and continuous data transmission reception throughout an area covered by more than one Wireless Access Point In order to achieve seamless connectivity all the wireless clients and Access Points must be set to use the sameSSID When a user walked out of the coverage area of one AP into another the wireless client network device will automatically reestablish connection with the new AP What is a MAC Address The Media Access Control MAC address is a unique number assigned by the manufacturer to any Ethernet networking devices e g a network adapter that allows the network to identify it at the hardware level Unlike IP addresses which can be changed or dynamically assigned by the network the MAC address of a networking device is permanent What is WEP Wired Equivalent Privacy WEP is a type of data encryption mechanism described in the
14. 61 11 Select Smart Card or other Certificate from the drop down list box for EAP type Wireless Network Connection Properties fx General wireless Network Authentication Rdvanced Select this option to provide authenticated network access for wired and wireless Ethernet networks Enable network access control using IEEE 802 1 Smart Card or other Certificate MO5S Challenge Smart Card or other Certificate Authenticate as computer when computer information is available Authenticate as guest when user or computer information is unavailable 12 Click O K to close the Wireless Network Connection Properties window thus make the changes effective The wireless client configuration in the zero configuration utility provided in Windows XP is now completed for TLS configuration Before you can enable IEEE 802 1x authentication and have wireless client authenticated by the Radius server you have to download the certificate to your local computer first 62 TLS Authentication Download Digital Certificate from Server In most rporations it requires internal IT or MIS staff s help to have the certificated downloaded to your local computer One of the main reasons is that each corporation uses its own server systems and you will need the assistance from your IT or MIS for account password CA server location and etc The following illustration is based on obtaining a certificate from Windows
15. ARuiltic uiltinDornain H E Delegate Control onkainer Default container For upogr H E Find Prganizational Default container For new a ig Connect to Poran i ontainer Default container for secu H E Connect ta Domain Controller onkainer Default container For upar H Operations Masters Pew H All Tasks b YEW Mew Window From Here Refresh Export List 4 Opens pro Help 41 Select Group Policy tab and click Edit to edit the Group Policy FAE LOCAL Properties 4 Default Domain F olicy Bj Gi AIT 42 Goto Computer Configuration gt Windows Settings gt Security Settings gt Account Policies gt Password Policies lox i Action View Tree Polic Computer Setting at Default Domain Policy Fae0 1 FA area password history 1 passwords remembered B fal Computer Configuration E Maximum password age 42 days E TJ Software Settings AY Minimum password age D days I Ow se Settings t mirimum pason length characters Scripts Startup Shu aalis inca i i Security Settings tore fe password using reversible encryption F a Account Policies Ba Password Pr lal Account Locl eal Kerberos Pol E Local Policies ce Event Log H O Restricted Group i System Services i Registry i File System H E Public Key Policie a IP Security Polici _ Administrative Template J User Configuration H E Software Settings be 4 4
16. Configuration Utility gt version 1 31 Apply Fefresh Close 802 1x 1 Enab 2 IfMD5 EAP methods is used then you can skip step 3 and go to step 4 Select the Encryption Key Lifetime from 5 Minutes to 1 Day As soon as the lifetime of the Encryption Key is over the Encryption Key will be renewed by the Radius server 4 Select the Length ranging from 64 to 256 Bits that you would like to use for Encryption Key LevelOne WAP O003 S4Mbps Wireless LAN Access Point A J ioj Settings Link Information Pe enm W 802 134 Function AP Settings Encryption Key Length ea bits Lifetime fi Day IF Settings RADIUS Serger 1 Fort i812 WEF Settings IF Address f i E p 607 1 Settings Shared Secret RADIUS Serer 2 Optionall Port J p PAddess 0 pP fp p Shared Secret AP Mame MacAddress s510 APFFFCOd O0 03 2F FF FC 04 4PFFFC Yes Copyright 2002 Wireless Access Point Contiquration Ltilit eae gre s Y Apply Refresh Close le 802 1x security by clicking the 802 1X Function checkbox Length 5 RADI Serv 6 RADI US Server 1 Enter the IP address of and the Port used by the Primary Radius erEnter the Shared Secret which is used by the Radius Server US Server 2 Enter the IP address of Port and Shared Secret used by the Secondary Radius Server 7 Click NOTE As soona Access Point currently will be disconnected The wireless clients must be c
17. PC Card Go to Start gt Control Panel 2 double click on Network Connections 3 right click on the Wireless Network Connection that you use with our 54Mbps wireless PC Card _58 4 Click Properties to open up the Properties setting window Y Wireless Network Connection 3 Status ax General Support i Connection Status Connected Duration 00 37 11 Speed Ad Mbps Signal Strength anal Activity Gent l Recenved YT Packets 21 840 21 356 5 Click on the Wireless Network tab Wireless Network Connection Properties fx Genel Wireless Networks i Authentication Advanced Connect using S ece etwor apter E 54Mbps High Speed Network Adap This connection uses the following items w El Client for Microsoft Networks File and Printer Sharing for Microsoft Networks 05 Packet Scheduler Internet Protocal TCFIF Ingtall Uninstall Properties Description Transmission Control Protocollnternet Protocol The default Wide area network protocol that provides communication across diverse interconnected networks Show icon in notification area when connected _50 6 Click Properties of the available wireless network which you wish to connect or configure Please note that
18. by pinging the IP of the Access Point for example 192 168 1 1 in thecommand prompt window es C WINNTystem3 command com MicrosofttRK gt Windows DOs CCoCopyright Microsoft Corp 1998 2001 C DOCUME L ADMINI 1 gt ping 192 168 1 1 Pinging 192 168 1 1 with 32 bytes of data Reply from 192 168 1 1 bytes 32 time ims ITTL 30 Reply from 192 168 1 1 bytes 32 time lt ims TTL 380 Reply from 192 168 1 1 bytes 32 timetims TTL 380 Reply from 192 168 1 1 bytes 32 time lt ims TTL 380 Ping statistics for 192 168 1 1 Packets Sent 4 Received 4 Lost chx loss Approximate round trip times in milli seconds Minimum Bms Maximum ims Average Ams DOCUME 1 ADMIMI 1 gt Aj Link Information This is the default page when 54M AP Utility starts up T LevelOne WAP 0003 S4Mbpe Wireless LAN Access Pont lolx E statu Link Information AP Settings AF Mame APFFFCOd ESSID APFFFE04 IP Settings IPF Address 192 166 1 1 WEP Settings Mac Address 00 03 2F FF F 04 602 1X Settings Domain gt JapantAll Channel jb WEF Security Copyright 2002 Wireless Access Paint Configuration Utility fee version 1 31 Apply Refresh Close Status displays the basic settings of the selected Access Point Available AP lists all the 54Mbps Access Point of the same network domain detected on the network You can select a particular Access Point from the list t
19. cenificate you request retrieve the m cemicate or cetiicate revocation list amp Raquest cenificate eck on a pending cemicate heat Bice BrT 17 Select User Certificate request and click Next to continue F Microsoft Certificate Services Microsoft Intennet Explore File Edt View Feoi Took Heb E Das D x E a po anh gy Favorites ea pe a Ga Address E http 192 468 1 10kcertsryicertrous ep JE e Dig rosti Cenficale Semices Vyirelessl4 Choose West Please Select ihe tps of reques YOU HOI Ike fo Make User centicate raquest User Cartticata Achanced request Mest gt Cr i hemi 18 Click Submit gt to continue Microsoft Certificate Serviors Micrasoft Internet explorer Fie Ede vew Fouorbes Tools Help Gp bax x B of po ann gy Favorites reds F Ei d E Address dB heip JL 92165 1 JOkcertarvicertrobi asortype 0 Eo in Microso Ceticale Semices Wireless C4 Leer Certificate ldenti Infarmation Allie necessary enon hiomaton has already baen Cone ced You may nor SUDMIT Our recuest More Options 19 The Certificate Service is now processing the certificate request Hicri Gertificate Sarviona Microsoft Infemet Explorer Fie Edt Wou Fores Tonk Holp E Q O i A ih Emh p Faos Gye D A a A Addos hep L92 158 1 10kcetavicertrobl sse7type e Efe ink Microsodt Certif
20. the configuration menu anytime by opening up an webbrowser window and type in the IP address of LevelOne Access Point The default IP address of the Access Point is shown below index Microsoft Internet Explorer Open web browser f File Edit View Favorites Tools Help AN window Q ak S 3 x a A a Search p Favorites media E Biles E wi mpi gt SCD Press Enter or Go ldd NOTE The IP address shown above is the default IP address for LevelOne Access Point Use this IP address when connecting to a network consisting of Access Points set to default settings If the IP address of the Access Point is being changed to comply with the network then type in the IP address in the Address field of the web browser instead of the default IP address Type in user name Connect to 192 1 BBs B Type in password Click OK aPO4245C User name f admin we Remember my password a cna NOTE The default username is admin and the default password is also admin The configuration menu will appear You can configure and get information about LevelOne Access Point by going through each tab Here Statuspage is displayed B Status Microsoft internet Explorar Fic Ed Wi Fabas Took Hap O ie lz Oh san yra Gime 4 Co OS a Bekken Aiko ILS 165 Ld tates Hire ia Access Point 2 whe waned Basic Setting IF Setting advanced Setting Samii BS 1a
21. Access Point D4 wizard Status Basic Setting IP Setting Advanced Setting Security 4 902 1 O Enabled Disabled 2 Encryption key Length 64 bits 178 bits 56hits Lifetime 10e 2 RADIUS Server i Jp Port Shared Secret RADIUS Server 2 optional F Port Sharad Secrat 1 Enable 802 1x security by selecting Enable 2 If MD5 EAP method is used then you can skip step 2 and go to step3 Select the Encryption Key Length Size ranging from 64 to 256 Bits that you would like to use Select the Lifetime of the Encryption Key from 5 Minutes to 1 Day As soon as the lifetime of the Encryption Key is over the Encryption Key will be renewed by the Radius server 4 Enter the IP address of and the Port used by the Primary Radius Server Enter the Shared Secret which is used by the Radius Server 5 Enter the IP address of Port and Shared Secret used by the Secondary Radius Server Click Help to get interpretation for Encryption Keyand Radius Server 6 Click Apply button for the 802 1x settings to take effect after Access Point reboots itself NOTE As soon as 802 1x security is enabled all the wireless client stations that are connected to LevelOne Access Point currently will be disconnected The wireless clients must be configured manually to authenticate themselves with the Radius server to be reconnected _A Tools Three functions are provided in this page Backup Restore S
22. LevelOne Access Point setup CONFIGURING LevelOne 54Mbps WIRELESS ACCESS POINT The web based configuration menu provides user friendly graphic design for easy configuration Please go through the following check list before you consider using the configuration menu 1 You will need a JavaScript enabled web browser such as Internet Explorer v5 5 or higher versions 2 The Ethernet network adapter must be working properly Please refer to Troubleshooting section for details 3 Ifyou are connecting LevelOne Access Point thro ugh a router or a local area network which has DHCP server enabled you will not need to assign a static IP address to the computer that you are using to configure the Access Point Please go to check item no 6 4 If you are not connecting LevelOne Access Point through a router or a local area network which has DHCP server enabled you will need to assign a static IP address to the computer that you are using to configure the Access Point 5 The IP address assigned to the computer that you are using to configure LevelOne Access Point must be in the same IP address range as Access Point s Please refer to Networking Basis section to learn more about assigning IP address 6 The power jack must be properly inserted to make sure that LevelOne Access Point is powered The Default Settings of LevelOne 54Mbps Wireless Access Point IP Address 192 168 1 1 WEP Disabled Configuration Menu You can access
23. M M LevelOne WAP 0003 54Mbps Wireless Access Point User s Manual V 1 0 Manufacturer s Disclaimer Statement The information in this document is subject to change without notice and does not represent a commitment on the part of the vendor No warranty or representation either expressed or implied is made with respect to the quality accuracy or fitness for any particular purpose of this document The manufacturer reserves the right to make changes to the content of this document and or the products associated with it at any time without obligation to notify any person or organization of such changes In no event will the manufacturer be liable for direct indirect special incidental or consequential damages arising out of the use or inability to use this product or documentation even if advised of the possibility of such damages This document contains materials protected by copyright All rights are reserved No part of this manual may be reproduced or transmitted in any form by any meansor for any purpose without expressed written consent of its authors Product names appearing in this document are mentioned for identification purchases only All trademarks product names or brand names appearing in this document are registered property of their respective owners FCC STATEMENT This product has been tested and complies with the specifications for a Class B digital device pursuant to Part 15 of the FCC Rules
24. P address and You can get F settings assigned automatically if your network supports this capability Othenwse you need to ask your network administrator for j th iate IP settings subnet mask fields e appropriate IP settings fe Use the following IP address IP address 192 768 1 2 Subnet mask Baa 255 255 0 Default gateway Enter the IP address of the Router in the Default gateway field Enter the IP address of the Use the following DNS server ag Router in the DNS server field Preferred ONS server Alternate DNS server Click Ok to close the window NOTE The IP address must be within the same range as the wireless route or Access Point Wireless Network in Windows 2000 Local Area Connection 5 Properties a x Go to Start menu gt Settings gt General Sharing Network and Dial up i E tuzing Connections gt Double click on A gS the Local Area Connection 54Mbps High Speed Wireless Network Configure Components checked are used by this conmectior Select Internet Protocol TCP IP and click m Client for Microsott Networks E al Network Load Balancing ieem Primer stranreiaihficrasaft Networks Properties ee EN Install Uninstall Properties D Description Apa aaa Transmission Control Protocalslnternet Protocol The default wide area network protocol that provides communication across diverse interconnected networks Sho
25. These limits are designed to provide reasonable protection against harmful interference in a residential installation This equipment generates uses and can radiate radio frequency energy and if not installed and used according to the Instructions may cause harmful interference to radio communications However there is no guarantee that interference will not occur in a particular installation If this equipment does cause harmful interference to radio or television reception which is found by turning the equipment off and on the user is encouraged to try to correct the interference by one or more of the following measures Reorient or relocate the receiving antenna Increase the separation between the equipment or devices e Connect the equipment to an outlet other than the receivers e Consult a dealer or an experienced radio TV technician for assistance FCC Radiation Exposure Statement This equipment complies with FCC radiation exposure limits set forth for an uncontrolled environment This equipment should be installed and operated with minimum distance 20cm between the radiator and your body Table of Contents INTRODUCTION iii oaaae a a cies ecu eeiaaeade ec Eaa aaa Caa 4 Product Features parni ien TE te niet onl eceteans La epee aeeniean sate 4 Systeri REGUIFENTENE Susena renal iene a EE E aan ea inate E stabin ase net E E aA 4 GETTING STARTED siastasicssccnciaecsticcatecssevanteastuiestenasutssiazessuacanauisaveaditaanssaten
26. address text field a memorable name for the Access Point in the Client Vendor text field the access password used by the Access Point in the Shared secrettext field Re type the password in the Confirmed shared secret text field 27 Click Finish to complete adding of the Access Point Add RADIUS Client 192 168 1 1 RADIUS Standard 28 Inthe Internet Authentication Service right click Remote Access Policies 29 Select New Remote Access Policy 2 Internet Authentication Service Export List Help 30 Select Day And Time Restriction and click Add to continue iSelect Attribute aes Select the type of attribute to add and then click the Add button Attribute types Mame Description Called Station Id Phone number dialed by user Calling Station Id Phone number from which call originated Chent Friend y M ame Friendly name forthe RADIUS chent 45 only Clent IP Address IP address of RADIUS chent A5 only Clent Yendar Manufacturer of RADIUS prosp or WAS A5 onl SE eee T ime period and days of week during which use Framed Protocal The protocol to be used NAS Identifier String identifying the HAS originating the request WAS IP Addess IP address of the MAS originating the request lA MAS Port Type Type of physical port used by the HAS onginatin Service Type Type of service user has requested Tunnel T ppe Tunneling protocols to be used Wiindowes Groups Windows groups that us
27. all clients and nodes ina wireless network The SSID must be identical for each clients and nodes in the wireless network Subnet Mask The method used for splitting IP networks into a series of sub groups or subnets The mask is a binary pattern that is matched up with the IP address to turn part of the host ID address field into a field for subnets TCP IP Transmission Control Protocol Internet Protocol The basic communication language or protocol of the Internet It can also be used as acommunications protocol in a private network i e intranet or internet When you are set up with direct access to the Internet your computer is provided with a copy of the TCP IP program just as every other computer that you may send messages to or get information from also has a copy of TCP IP Throughput The amount of data transferred successfully from one point to another in a given period of time WEP Wired Equivalent Privacy WEP is an encryption scheme used to protect wireless data communication To enable the icon will prevent other stations without the same WEP key from linking with the AP Wireless Bridge One of the additional AP operating modes offered by 54Mpbs Access Point which allows a pair of APs to act as the bridge that connects two Ethernet networks or Ethernet enabled clients together 103 APPENDIX E TECHNICAL SPECI FICATION o ttem Specification O OOO Standard Wireless IEEE 802 11b 802 11g draft E
28. ate ONS server Wireless Network In Windows 98 and Windows ME Go to Start menu gt Ts RE rr Configuratian Identification Access Control Settings gt Control Panel gt The following network components are installed Double click on Network Select TCP IP of the l tS h a network device a He BE lt EOE Click P roperties to J remove C perenes Primary Network Logor Windows Logon File and Print Shatitigs continue Descnphon The A Point restart icine conn TEPAIP is the protocol you use to connect to the Internet and itself and the screen will wide area networks Switch back to startup page Link Information TCP IP Properties Bindings Advanced we DNS Configuration Gateway WINS Configurattag F Address i z An IP address can be automatically assigned to this computer Select Obtain an IP IF your network does not automatically assign IP addresses ask your network administrator for an address and then type it in the space below The TCP IP Properties window appears address automatically if you are on a DHCP enabled network Specify an IP address Click OK to close the window with the changes made IY Detect connection to network media cancel _ 55 Select Specify an IP address Enter the IP address and subnet mask fields In the DNS Configuration Tab Page 1 enter the IP
29. ay take a few minutes 3 Network Setup Wizard You re almost done Sy 4 fou need to run the Network Setup Wizard once on each of the computers on your J network To run the wizard on computers that are not running Windows 4P you can use the Windows FP CD ora Network Setup Disk what do you want to do O Use the Network Setup Disk already have O Uze my Windows PCD O Just finish the wizard don t need to run the wizard on other computers Click Format Disk if you wish to format the disk Click Next to copy the necessary files to the disk Click Next to continue with the Network Setup Wizard Network Setup Wizard Insert the disk you want to use Insert a disk the into the following disk drive and then click Next 3k Floppy A Copying o format the disk click Format Disk zs Please wait while the wizard copies Files Network Setup Wizard Torun the wizard with the Network Setup Disk yy Y Complete the wizard and restart this computer Then use the Network Setup Disk to run the Network Setup Wizard once on each of the other computers on your network Here s how 1 Insert the Network Setup Disk into the nest computer you want to network 2 Open My Computer and then open the Network Setup Disk 3 Double click netsetup 47 NOTE Now you may use the Network Setup Disk you just created in any PCs in your network that you wis
30. crosoft Encrypted Authentication version 2 MS CHAP v2 Microsoft Encrypted Authentication MS CHAP T Encrypted Authentication CHAP M Unencypted Authentication PAP SPAF r Unauthenticated Access Allow remote PPP clients to connect without negotiating any authentication method OK Cancel Apply 36 Goto Start gt Program gt Administrative Tools gt Active Directory Users and Computers 37 Select Users and double click on the user that can be newly created or currently existing who will be configured to have the right to obtain digital certificate remotely 4 Active Directory Users and Computers E lol x E Console Window Help jal e gt amxEnel nbr Tree Ey Active Directory Users and Computers Action view Description EEP FAE LOCAL Builtin H E Computers f Administrator Ci Cert Publishers GE OHCP Adminis IEE DHCP Users ei DnisAdmins i OnsUpdatePr i gi Domain Admins Pii Domain Comp Pii Domain Contr Pii Domain uesks Pii Domain Users Pil Enterprise Ad Pi Group Policy Eh Guest IUSR FAEDL f wan Fae Security Group fi schema Admins fi ajune User Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group Security Group User User User User Security Group
31. datate a a dco dint did eaaseaetecades 35 WEP SeUINO S hiaccaccaicaterarceniccarcuarenntuicec A Oane te ectawentedauetden comma 36 902 S CuanlinG S ean EN E caged Geocraiaeetaes 37 APPENDIX A TROUBLESHOOTING orici aaa aa baa 38 APPENDIX B NETWORKING BASIS siisii a aa aa Ra 43 APPENDI X C 802 1x Authentication Setup s sssssssss1s2s22 552 55 5 5 s 57 802 IX AuUthenticaion Niras MUCUS soke o a a a 57 Supplicant Wireless Network PC Card cccccccccsccsccecceceeee ceeeeeeeeeseeeeseeseeseeseegeeeesaeaeseegeneeeenes 58 Authenticator Wireless Network Access Point s sssssssssssssrsrsrsrnnnrrrrsrsrsrenenrnenesrererereresenet 76 Radius Servers Window2000 Serve eirin a a a eaeiaidtenns 77 APPENDIX D GLOSSARY sssssssnnsonnnnnnnnnnnnnnnnnannnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnann nnana 99 APPENDI X E TECHNICAL SPECI FI CATION ccscsscssscsscssseesenscesnsesensensenasenseneeoasensenssseenseaes 104 INTRODUCTION LevelOne WAP 0003 54Mbps Wireless Access Point is designed to meet the needs of wireless clients who use 2 4GHz 802 11b g draft compliant wirelessnetworking devices such as PC Card With the Dual Standard capability not only seamless but also simultaneous wireless data transmission between AP and all wireless clients using both 802 11b and g draft can be sustained Device network setup can be installed by the simple setup wizard that is provided as part of t
32. dress If you still have problems getting an IP address after computer restarts you will have to consult with your MIS in your office or call computer and network technicians 50 Dynamic I P Address V S Static I P Address By definition Dynamic IP addresses are the IP addresses that are being automatically assigned to a network device on the network These Dynamically assigned IP addresses will expire and may be changed over time Static IP addresses are the IP addresses that users manually enter for each of the network adapters a Hetwork Oiniectiiis Fle E ik Go to Start menu gt Farba Abes E Mehyork Conmectons ka gt p A LAN or High Speed internet Toe Awoned Hah Control Panel gt Network Connections gt Right click Peiwork Tasta m on the active Local Area Rae anma ma We ofa Lary Bd ops bee isshi E eee yara Available wincioss hotacdk connection gt Select Md Ad f 5 A Properties EF ete eee Ar Papar 1 Repair the comecion Bridges Connechons iat Renanesthe cinan Crea Shortcut D few siete ofthe Go nnection at Cheng mirga o this aneio NOTE There might be two or more Local Area Connection to choose from You must select the one that you will use to connect to the network 5 The Local Area Connection l Wireless Network Connection Properties l Properties would appear General
33. e Access Point re operates after it restarts Using AP 54M Utility for Management Installing AP 54M Utility The AP 54M Utility is a program that runs on your PC which offers easy management for all existing 54Mbps Access Points in the same network domain Please follow the steps below for installation and refer to Manage and Configure AP with AP 54M Utility session Access point configuration NOTE The installation demonstrated is based on Windows XP operating system The other Windows operation system will have very similar installation 1 Turn on your PC 2 After Windows starts up insert the 54Mbps Access Point Product CD into the CD tray of the CD ROM 3 The following screen would appear O Lem H ALAN maimai 4 Click Install on the menu bar to proceed with 54M AP installation The 54M AP Utility loads the Install wizard for installation Instalkhelkd Mizard InstallShieldA Wizard which will guide you through the rest of the ay Leveldne WAP O003 S4Mbos AP Utility Setup IS preparing the i setup process Please wait Installshield Wizard Click Next to start Insta lation Welcome to the InstallShield Wizard for LevelOne WAP 0003 54Mbps AP Utility The InstallShieldA Wizard will install Leveldne WAP 0003 Adibps AP Utility on your computer To continue click Nert Cancel Tnstalls Tie ld Wizard Click Next to install in default Choose Destinat
34. e sure you have the right Login authorization UserName Password OK Cancel Login Management Enter UserName and Password for Login the Access Point UserName admin Click O K button Password OK Cancel NOTE The default usernameis admin and the default password is also admin Z LevelOne WAP 0003 S4Mbps Wireless LAN Access Point ioj x The Access Point Link Information restarts itself and APFFFCO4 AP Settings the screen will ESSID APFFF CO IP Settings switch back to IP Address So Rey WEP Settings Mac Address OO O5 2F FF FC 04 startup page Link 8027 1 Settings Information Domain JapantAll Channel B WEP Security FE Name Mac Address 651D APFFFCO4 O0 03 2F FF FC 04 APFFFC Yes Copyright 2002 Wireless Access Point Contiqguration tilit eee eae 4 Apply Fefresh Close I P Settings This is the page where you configure the IP settings for the Access Point 2 LevelOne WAP 0003 54Mbps Wireless LAN Access Point q BI x Select Fixed IP Address and enter Link Information Fixed IP Address DHCP Client the IP address of AP Settings the Access Point IP Address Setting IP Settings and Gateway WEP Settings IP Addresg f192 fiss fi fi 602 1 Settings Subnet Mask 255 255 255 f Gateway E l bE l Select DHCP Client if there is a DHCP serve
35. e unique identifier that identifies the ESS In infrastructure association the stations use the same ESSID as AP s to get connected Ethernet A popular local area data communications network originally developed by Xerox Corp that accepts transmission from computers and terminals Ethernet operates on a 10 100 Mbps base transmission rate using a shielded coaxial cable or over shielded twisted pair telephone wire Fragmentation When transmitting a packet over a network medium sometimes the packet is broken into several segments if the size of packet exceeds that allowed by the network medium Fragmentation Threshold The Fragmentation Threshold defines the number of bytes used for the fragmentation boundary for directed messages The purpose of Fragmentation Threshold is to increase the transfer reliability thru cutting a MAC Service Data Unit MSDU into several MAC Protocol Data Units MPDU in smaller size The RF transmission can not allow to transmit too big frame size due to the heavy interference caused by the big size of transmission frame But if the frame size is too small it will create the overhead during the transmission Gateway a device that interconnects networks with different incompatible communication protocols IEEE The Institute of Electrical and Electronics Engineers which is the largest technical professional society that promotes the development and application of electro technology and alli
36. ed sciences for the benefit of humanity the advancement of the profession The IEEE fosters the development of standards that often become national and international standards Infrastructure An infrastructure network is a wireless network or other small network in which the wireless network devices are made a part of the network through the Access Point which connects them to the rest of the network ISM Band The FCC and their counterparts outside of the U S have set aside bandwidth for unlicensed use in the ISM Industrial Scientific and Medical band Spectrum in the vicinity of 2 4GHz inparticular is being made available worldwide 101 MAC Address Media Access Control Address is a unique hex number assigned by the manufacturer to any Ethernet networking device such as a network adapter that allows the network to identify it at the hardware level Multicasting Sending data to a group of nodes instead of a single destination Multiple Bridge One of the additional AP operating modes offered by 54mbps Access Point which allows a group of APs that consists of two or more APs to connect two or more Ethernet networks or Ethernet enabled clients together The way that multiple brid ge setup is based on the topology of Ad Hoc mode Node A network junction or connection point typically a computer or workstation Packet A unit of data routed between an origin and a destination in a network PLCP Physical layer conve
37. elect Enable or Disable EEE 802 11g dragt only mode _19 Security This page is where you configure the security features supported by LevelOne Access Point Security Microsoft binterwat Explarae Fle Edt ew Fewkes Took Help Sicdeess E hetp L02 168 1 Lfemcunky hon of Access Point on weird Status Basie Seti IP Setii Avane Setting 202 1 Teala Administrator bi admin AP Poasserond Meri eras Gafir nee isa MAC Filter gt Enablad Disabled Qr Only dany PCs with Mac istad below to access devira gt gnh alkow PCs with MAC listed below bo arcas device 10 a Password Allow you to change the new login password Here are the necessary steps 1 Enter the new password in the AP Password New field 2 Enter the new password again in the Confirm field 3 Click Apply NOTE The wireless clients will not be able to recognize the Access Point using SiteSurvey utilities such as zero configuration utility provided inWindows XP MAC Filter MAC Filter function controls the MAC of the network devices that are listed in this table for access authorization or denial When MAC Filter is enabled by selectingthe Enabled radio box select one of two choices Only deny PCs with MAC listed below to access device or Only allow PCs with MAC listed below to access device gt Enabled Gisabled zs Only dany BCs with MAC litaj bakya bo aocaes desica Or
38. eless Access Point LevelOne WAP 0003 WIRELESS ACCESS POINT S PORTS Power Receptor Reset Button MDII RJ 45 Ethernet Port Straight Through cable is required to connect with router or switch Cross Over cable is required to connect to computer directly LevelOne WAP 0003 WIRELESS ACCESS POINT S LEDS Power LED ON when the unit is powered up WLAN LED ON indicates WLAN is working blink indicates wireless activity e LANLED ON indicates LAN connection blink indicates LAN activity Connecting LevelOne WAP 0003 Wireless Access Point Wireless Network Wireless Station In order to setup an Infrastructure of a wireless network such as the example shown above you will need the following A broadband Internet connection ADSL or Cable modem provided by your ISP as part of the broadband connection installation A Router that connects to the ADSL Cable modem for Internet connection sharing An Access Point to connect with the Router to form a wireless infrastructure network U AA U N e Wireless clients equipped with wireless networking devices such as wireless PC Card for wireless connection Setting Up LevelOne WAP 0003 Wireless Access Point LevelOne 54mbps Access Point is designed to be working right out of the box Any changes of the default settings can be easily made through the web based configuration menu using web browser such as Internet Explorer Please go through this chapter carefully for
39. eless Bridge thus a LAN or a single computer station can join a wireless ESS network through it Authentication Type Indication of an authentication algorithm which can be supported by the Access Point Open System Open System authentication is the simplest of the available authentication algorithms Essentially it is a null authentication algorithm Any station that requests authentication with this algorithm may become authenticated if 802 11 Authentication Type at the recipient station is set to Open System authentication Shared Key Shared Key authentication supports authentication of stations as either a member of those who knows a shared secret key or a member of those who does not Backbone The core infrastructure of a network which transports information from one central location to another where the information is unloaded into a local system Bandwidth Thetransmission capacity of a device which is calculated by how much data the device can transmit in a fixed amount of time expressed in bits per second bps Beacon A beacon isa packet broadcast by the Access Point to keep the network synchronized Included in a beacon are information such as wireless LAN service area the AP address the Broadcast destination addresses time stamp Delivery Traffic Indicator Maps and the Traffic Indicator Message TIM Bit A binary digit which is either 0 or 1 for value is the smallest unit for data Bridge An interne
40. er belongs to Add Cancel 31 Unless you want to specify the active duration for 802 1x authentication click OK to accept to have 802 1x authentication enabled at all times x Ok All Cancel Sunday Monday i i i R Permitted C Denied Sunday through Saturday from 12 4M to 12 Afl 32 Select Grant remote access permission and click Next to continue Add Remote Access Policy E x Permissions Determine whether to grant or deny remote access permission Tou can use a Remote Access Policy either to grant certain access privileges to a group of users orto act as a filter and deny access privileges to a group of users lf a user matches the specified conditions Grant remote access permission Dery remote access permission lt Back Cancel 33 Click Edit Profile to open up Add Remote Access Policy For TLS Authentication S etup Steps 34 38 34 Select Authentication Tab 35 Enable Extensible Authentication Protocol and select Smart Card or other Certificate for TLS authentication Edit Dial in Profile q aes Dial in Constraints IF Multilink Authentication Encryption Advanced Check the authentication methods which are allowed For this connection Extensible Authentication Protocol Select the EAP type which it acceptable for this policy Smart Card or other Certificate Configure Mi
41. erret i _ Apply Cancal Help Enable 802 1x security by selecting Enable 2 If MD5 EAP methods is used then you can skip step 3 and go to step 4 3 Select the Encryption Key Length Size ranging from 64 to 256 Bits that you would like to use Select the Lifetime of the Encryption Key from 5 Minutes to 1 Day As soon as the lifetime of the Encryption Key is over the Encryption Key will be renewed by the Radius server 4 Enter the IP address of and the Port used by the Primary Radius Server Enter the Shared Secret which is used by the Radius Server Enter the IP address of Port and Shared Secret used by the Secondary Radius Server 6 Click Apply button for the 802 1x settings to take effect after Access Point reboots itself NOTE As soon as 802 1x security is enabled all the wireless client stations that are connected to the Access Point currently will be disconnected The wireless clients must be configured manually to authenticate themselves with the Radius server to be reconnected 76 Radius Server Window2000 Server This section to help those who has Windows 2000 Server installed and wants to setup Windows2000 Server for 802 1x authentication which includes setting up Certificate Service for TLS Authentication and enable EAP methods 1 Login into your Windows 2000 Server as Administrator or account that has Administrator authority 2 Go to Start gt Control Panel and double click Add or Re
42. ertani cep Eja ine Microsoft Cerificate Se Certificate installed Our nea cert fi cabe has been successtuly instalad Aore O nemt All the configuration and certificate download are now complete Let s try to connect to the Access Point using 802 1x TLS Authentication 23 Windows XP will prompt you to select a certificate for wireless network connection Click on the network connection icon in the system tray to continue dy Wireless Network Connection X Eick here to select a certificate or other credentials Far Cone chon bo Bee metea k AP RPPCOA 70 24 Select the certificate that was issued by the server WirelessCA and click OK to continue Connect Wireless Network Connection Friendly name lssuer Wireless 4 Expiration date 162004 4 02 09 FM 25 Check the server to make sure that it s the server that issues certificate and click OK to complete the authentication process Validate Server Certificate A The Root Certification Authority For the server s certificate isf Wireless 4 Do vou wank to accept this connection Cancel 71 MD5 Authentication 26 Select Data encryption WEP enabled option but leave other option unselected 27 Select the key format that you want to use to key in your Network key ASCII characters 0 9 a z and A Z HEX characters 0 9 a f 28 Select thekey length that you wish to use 40 bits 5 characters for ASCII 10 cha
43. esdaesidssseuscdausteanawanvatarseas 5 Getting To Know The Wireless Network Access POiNnt s sssssrsreresrrrsrsrrrsrsrersrrrrrrrrrrnrerrrerne 5 WIRELESS NETWORK ACCESS POINT S PORTS cccceccsecceeceeeeeeceeseeeeeeeseeeaeeeaeeeneesaeeeas 5 WIRELESS NETWORK AGCESS POINT S LEDS siccin a a a a 5 Connecting The Wireless Network Access PoOint sssssssrsrrrrrrsrsrsrsrnrrrrsrsrrrrrrerrrnrnerersrnrenre 5 Setting Up The Wireless Network Access Point s sssssssssrsrsrsrrrsrsrerrrrrnrnrrrnernrsrnrsrsrerrrnrnrenrne 6 CONFI GURI NG YOUR WIRELESS ACCESS POINT cscssscsssssscssecssenssesseessenssonsenasenssonsenseenessans 7 Cconnguraton MENU sineira a a tes meatianleiarentesieelenseuhastars 8 Getting Started With Setup Wizard aeren a E 10 Status P gEeur d EE E E E A N T E acrn nies 12 Basio CINO asr AE E A a A AOR 14 IP SEINO eaer o N E A N 16 Advanced Seringe iie a E A E alae ohana 18 SCCUFIE Ve aane A E E 20 10N E EE E EAE A E AAA E A oa eae E E A T 23 TOOS a a a A T E en eee meena 25 Using AP 54M U tility for ManaGeMe Nt cccssceseseeseesesenseeeesesseeenseeeesensesenseeenseesnssaseeensenseesanes 27 Histaling AP SAM UUNI sersa naa T E ea a E 27 Manage and Configure Access Point with 54M AP Utility ssssesenssssenerrsnrerrnrnnsrsrererrrnrrrrene 31 LAK ANTONION de tora teste cnantenas spansat cccesatnancenee T E T 32 PPS CURING Sonn canatacst anercaatew eae E secant ueaensecnentac 33 IP SEUNS a caters tan ta
44. ess network SSI D Service Set Identifier which is a unique name shared among all clients and nodes in a wireless network The SSID must be identical for each clients and nodes in thewireless network Channel The value of channel that AP will operate in You can select the channel range of 1 to 11 for North America FCC domain 1 to 13 for European ETSI domain and 1 to 14 for Japanese domain WEP Key To disable WEP security click on the Disable option To enable WEP security there are 2 type of WEP keys to choose from 64bits and 128bits When one of the 2 WEP key options is selected you must enter the value of one of the four Keys in ASCII or HEX format You can also enter the values for all four WEP keys and select one to use NOTE When AP s WEP security is enabled all the wireless clients that wish to connect to the Access Point must also have WEP enabled with the identical WEP Key value entered For the changes made to any of the items above to be effective click Apply _14 E http 192 4 68 1 1 basic_hex cgi Microsoft Internet Explorer File Edit View Favorites Tools Help Q sack i j x B A po Search SIP Favorites GA Media 4 CA E ddress 2 hbk 192 168 1 1 basic hex cgi Settings were successtully saved The dewice is restarting Back The new settings are now been saved to Access Point and will be effective once the Access Point restarts Click Back to go back to Basic S
45. etting page _15 I P Setting This is the page where you configure the IP and DHCP settings of LevelOne Access Point iP Setting Microsoft Internet Explorer Fi Bot ew Favorite Toe Hep Gp mack a EJ ry eel Search gh revokas rk F o ey EA Bies fa http 1192 L60 11e hird Accese Point 7 wieard Status Rasia Settling i fanned Setting Seminty oF te Taal Obtain IF Automatically i Fixed IP Address 192 1686 Subnet Mask Catevray DHCP Server F P Fange hank to ONG Sarver Epp C Eenca Help The default IP address of LevelOne Access Point is 192 168 1 1 with the Subnet Mask of 255 255 255 0 You can type in other values for IP Address Subnet Mask and Gateway and click Apply button for the changes to be effective You can also set the Access Point to obtain the IP from a DHCP server but itis not recommended Once set it will be dfficult to determine the dynamic IP assigned to the Access Point Select the option Obtain IP Automatically and click Apply button for the changes to be effective DHCP Server Its not recommended to enable the DHCP Server if you have a DHCP server running in your LAN network for it will cause possible IP assignment conflict Enable the DHCP server function by selecting the option On and enter the IP range Click OK to close pop up box Click Apply for the changes to be effective 16 http
46. ettings Restore default settings and Firmware Upgrade ET Toot Micreinri krieroet Explirar Pie Bot Yer Pevokte Tois Heb Ge EA lal a fa pO rh P Favartes ed fA Bian WB hepil 192 L a 1 Libon herri Access P eS ccess oint WAE iard Statua Basie Setting IP Setting Adwanted Setling Security 502 18 I Mig E 4 Backup Settings Bock Restore Settings Browse Aiesta Restore to defaut Detauk settings Firmware Upgrade Browse Upgrede Hap Backup Settings Click on Backup button which will open a FileSave Dialog box where you get to save all the current settings and configurations to a file Restore Settings Click on the Browse button to open a FileOpen Dialog box where you get to select the file which you Save previous settings and configurations to be opened Upon selecting the saved file click Restore and complete the restore process when LevelOne Access Point re operates after it restarts Restore to default settings Click on Default button to restore LevelOne Access Point back to it s manufacture default settings Firmware Upgrade Click on the Browse button to open a FileOpen Dialog box where you get to select the firmware file which you download from the web for the latest version Upon selecting the firmware file click Upgrade and complete the firmware upgrade process 25 when LevelOn
47. fau Tree FAE LOCAL 5 objects 25 Active Directory Users i Flen ilin uiltin Domain H E aaa Contra ontainer Default container for upgr H E Find organizational Default container for new a ig Connect to pone ts ontainer Default container For secu BL Connect to Domain Controller onkainer Default container for upor fl Operations Masters Per All Tasks TIE New Window From Here Refresh Export List 4 Opens pro Help 13 Select Group Policy tab and click Properties to continue FAE LOCAL Properties a 2 x General Managed Byf Group Policy E Curent Group Policy Object Links for FAE Group Policy Object Links No Override Disabled i Default Domain Policy Group Policy Objects higher in the list have the highest priority This list obtained from fae01 FAE LOCAL Up Down Hew Options Delete T Block Policy inheritance Edit Properties Cancel Apply 14 15 16 Go to Computer Configuration gt Security Settings gt Public Key Policies Right click Automatic Certificate Request Setting and select New Click Automatic Certificate Request 7 Group Policy Automate CartFicas Request 7 FEB Cefauk Doman Policy Feel FAE LOZAL Policy by Computer Configuraban F Softaare Settings Ld Windows Settings E eF Locs Policies H E Evert Lo
48. h to setup Simply insert the Network Setup Disk into the disk drive of a PC and open to browse the content of the disk with My Computer or Windows File Manager Double click and run the file netsetup for the program to handle the rest Click Finish to Network Setup Wizard complete the Completing the Network Setup Network Setup Wizard Wizard Tou have successtully set up this computer for home or small office networking For help with home or small office networking see the Following topics in Help and Support Center Using the Shared Documents folder Sharing files and folders To see other computers on pour network click Stark and then click My Network Places To close this wizard click Finish System will now System Settines Change have to restart in a You must restart your computer before the new settings will take effect h order for the new Do you want to restark your computer naw settings to be effective Click Yes to restart the computer Checking I P Address of Your Computer In Windows XP Sometimes you will need to know the IP address of the computer that you are using For example when you want to make sure that your computer is in the same network domain as that of your Access Point for you can configure and access the AP Go to Start menu gt Run gt type z 7 Type the name of a program Folder document or command Internet resource and Wi
49. he web management utility or by manually configured for the advanced settings SNMP management is also supported to make central network management an easy task for corporation I T personnel Wireless network protection can be ensured by WEP encryption WEFi Protected Access WPA and 802 1x authentication to achieve maximum level of security LevelOne WAP 0003 2 4GHz 802 11g b Wireless Access Point offers unbeatable performance for both data throughput and range coverage which Is an ideal device to be deployed not only in complex Enterprise corporation networking infrastructure and metropolitan area but also in simple SOHO and home environments Product Features Fully IEEE 802 11g draft and 802 11b standards compliant High speed data transfer of IEEE 802 11b g draft Highly efficient design mechanism to provide unbeatable performance achieving data rate up to 54 Mbps for 802 11g draft and 11 Mbps for 802 11b with wide range coverage Strong network security with 802 1x Protected Access WPA and WEP encryption Auto select and use the least crowded channel by Dynamic Channel Selection Function Quick and easy setup with Web based management configuration utility System Requirements Windows 95 98 98SE Millennium 2000 and XP computers Internet Explorer 5 5 or higher One CD ROM drive Atleast one 10 100Mbps Ethernet network adapter installed GETTING STARTED Getting To Know LevelOne 54Mbps Wir
50. icate Se User Certificate ldenti Infermation Allthe necessary identifying informaton has already been collected You may now submit your request Mare ptione gt gt Waitimg for server response BE Waiting For server repenaae interest OOOO 6 20 The certificate is issued by the server click Install this certificate to download and store the certificate to your local computer Hicrocoft Certificate Serviens Micrasoft Intenet E kple Fie Edt Vern Feoi Toos Heb rs ep i f l O Search gly Favontes md A joa a addeese dk heip Laz 168 1 JOkceetavioertineh ssn S gt Es inie Aiicrogo Cerficals Senicee Certificate lssued The certificate WL reaguestec Wee Ssled to WOU i Cone nieret 21 Click Yes to store the certificate to your local computer Root Certificate Store A Do you want to 400 the following certificate to the Rook Store Subject Wireless Ty Issuer Self Issued Time Validity Monday January 06 2003 through Thursday January 06 2005 Serial Number 13271301 47463763 41E04CF 249709F4 Thumbprint shal 244FCRSC 2D9F2F21 4DC262F9 20080EFA B490D10E Thumbprink ridS 1EBALECO 20364070 66512146 413566440 22 Certificate is now installed Microsoft Certificate Services Microsoft Internet E xplore Fie Edt Wind Faorbss tois Hap ir G O da fald search lp Favorites Amei 2 G a Ge Address d http JrL92 165 1 10k
51. if you are going to change to a different 802 1x authentication EAP method i e switch from using MD5 to TLS you must remove the current existing wireless network from your Preferred networks first and add it in again Wireless Network Connection Properties x r ee i i General Wireless Networks Authentication Advanced Use Windows to configure my wireless network settings Available networks To connect to an available network click Configure APFFFCO4 A USA2243 Linkeys i Prefered networks Automatically connect to available networks in the order listed below Bed AFFFFCO IVE OOM Cierne Popes Lear about setting up wireless network configuration To configure for using TLS authentication method please follow steps 7 25 Please follow steps 26 for using MD5 authentication method TLS Authentication 7 Select The key is provided for me automatically option Wireless Hetwork Properties Network name SSID Wireless network key WEP This network requires a key for the following Data encryption MEP enabled Network Authentication Shared mode The key is provided for me automatically Click OK to close the Wireless Network Properties window Click Authentication tab 10 Select Enable network access control using I EEE 802 1x option to enable 802 1x authentication
52. imply click Next to E Verily Password continue After entering the new password in both text boxes click Next to continue 10 Step 2 Set WLAN Connection Enter the SSID that you would like to use and select the channel of operation then click Next to continue Step 3 Set WEP Encryption You may enable the WEP security by selecting Enabled otherwise simply click Next to continue Select one of the WEP enqcyption key size and enter the value of the key in the Key text box then click Next to continue Step 4 Restart The Setup wizard is now completed The new settings will be effective after LevelOne Access Point restarts Click Restart to reboot the Access Point S5dMbps Access Point Setup Wizart es Set Wireless LAN Connection Enter the SSID of the wireless network and select the frequency channel that this Access Point will operate in Click Next to continue setup or Exit to quit setup wizard E Channel Oy gt gt AS back next exit Sdifbps Access Point Setup Wizard You may enable WEF security for data encryption by selecting Enabled Select one of the WEF encryption key size and enter the value of the key in the text fields below Click Next to continue with setup or Exit to quit setup wizard E iep Enabled Disabled E ep encryption E key OOUOOO0000 Input 10 HEX character HES is 0 9 A F or a f Q gt gt As back ne
53. in 802 1x authentication 802 1x Authentication I nfrastructure 802 11 Wireless Access Points Support 802 1X Authentication Request oes lt gt RADIUS Public 802 11 Wireless Networks Server Authentication Success amp Internet 802 11 Wireless Clients Support 802 1 Intranet The Infrastructure diagram showing above illustrates that a group of 802 11 wireless clients is trying to form a 802 11 wireless network with the Access Point in order to have access to the Internet Intranet In 802 1x authentication infrastructure each of these wireless clients would have to be authenticated by the Radius server which would grant the authorized client and notified the Access Point to open up a communication port to be used for the granted client There are 2 Extensive Authentication Protocol EAP methods supported 1 MD5 and 2 TLS _57 MD5 authentication is simply a validation of existing user account and password that is stored in the server with what are keyed in by the user Therefore wireless client user will be prompted for account password validation every time when he she is trying to get connected TLS authentication is a more complicated authentication which involves using certificate that is issued by the Radius server for authentication TLS authentication is a more secure authentication since not only the Radius server authenticates the wireless client but also the client can va
54. ion Location Select folder where Setup will install files folder or Click Setup will install LevelOne WAP 0003 54Mbps AP Utility in the following folder Browse to j nsta To install to this folder click Mest To install to a different folder click Browse and select another folder in a different folder Destination Folder CA Levene WAP 0003 54Mbps AP Utility Browse InstallShield Cancel Installation wizard copies the utility program files in your PC Tnstallshueld Mizan Setup Status Level ne WAP 0003 o4Mbps AP Utility Setup is performing the requested operations Installing 37 InstallShield 5 Click Finish to complete the installation f InstallShield Wizard InstallShield Wizard Complete Setup has finished installing Levellne WAP O003 54Mbps AF Utility on your computer Back cw tinsh D Caneel 6 The 54M AP Utility icon would then appear on your desktop for easy access apua W AP 0003 SdbMbps AP ntiity Manage and Configure Access Point with 54M AP Utility LevelOne AP 54M Utility can be useful in away that allows you to configure one AP to another to save the trouble of logging into the web configuration utility of each AP However all the Access Points that you wish to configure using 54MAP Utility must be in the same network domain as your PC s You may also check the existence with the Access Point
55. is group can Ruilt in account For quest Built in account For anony built in account For Intern ty Distribution Center Se vers in this group can This user account is used Opens property sheet for the current selection All workstations and serve All domain controllers in th 46 Go to Account tab and enable Store password using reversible encryption 47 Click OK to continue test Properties Po SC COUt TS ocre Our 48 Goto Start gt Program gt Administrative Tools gt Internet Authentication Service 49 Go to Remote Access Policies 50 Make sure that MD5 is moved up to Order 1 51 Right click MD5 and select Properties Internet Authentication Service Move Down E a Remote Access Policies Delete Rename Properties Opens property sheet For the current selection 52 Goto Authentication tab 53 Enable Extensible Authentication Protocol 54 Select MD5 Challenge for EAP type Edit Dial in Profile MD5 Challenae Ecrtacen A AH We APPENDIX D GLOSSARY Access Point An internetworking device that seamlessly connects wired and wireless networks Ad Hoc An independent wireless LAN network formed by a group of computers each with an network adapter AP Client One of the additional AP operating modes offered by 54mbps Access Point which allows the Access Point to act as an Ethernet to Wir
56. lidate the Radius server by the certificate that it issues The authentication request from wireless clients and reply by the Radius Server and Access Point process can be briefed as follows 1 The client sends an EAP start message to the Access Point 2 The Access Point replies with an EAP Request ID message 3 Theclient sends its Network Access Identifier NAI its user name tothe Access Point In an EAP Respond message 4 The Access Point forwards the NAI to the RADIUS server with a RADIUS Access Request message The RADIUS server responds to the client with its digital certificate The client validates the digital certificate and replies its own digital certificate to the RADIUS server The RADIUS server validates client s digital certificate The client and RADIUS server derive encryption keys 9 The RADIUS server sends the access point a RADIUS ACCEPT message including the client s WEP key 10 The Access Point sends the client an EAP Success message along with the broadcast key and key length all encrypted with the client s WEP key Supplicant Wireless Network PC Card Here is the setup for the Wireless Network PC Card under Windows XP which is the only Operating System that our driver supports for 802 1x Microsoft is planning on supporting 802 1x security in all common Windows Operating System including Win98SE ME 2000 by releasing Service Pack in 2003 Please note that the setup illustration is based on our 54Mbps wireless
57. locate Internet Protocol IP addresses in a network Every computer has to have an IP address in order to communicate with each other in a TCP IP based infrastructure network Without DHCP each computer must be entered in manually the IP address DHCP enables the network administrators to assignthe IP from a central location and each computer receives an IP address upon plugged with the Ethernet cable everywhere on the network DSSS Direct Sequence Spread Spectrum DSSS generates a redundant bit pattern for each bit to be transmitted This bit pattern is called a chip or chipping code The longer the chip the greater the probability that the original data can be recovered Even if one or more bits in the chip are damaged during transmission statisticaltechniques embedded in the radio can recover the original data without the need for retransmission To an unintended receiver DSSS appears as low power wideband noise and is rejected ignored by most narrowband receivers Dynamic IP Address An IP address that is assigned automatically to a client station ina TCP IP network by a DHCP server 100 Encryption A security method that uses a specific algorithm to alter the data transmitted thus prevent others from knowing the information transmitted ESS ESS stands for Extended Service Set More than one BSS is configured to become Extended Service Set LAN mobile users can roam between different BSSs in an ESS ESSID Th
58. ly allow PCs with Mia betad below to access davice 0 PAGI Mt MAGS BACE Mat MACE PAg MAACO MAG Filler Emabled isabhed u ani deny Pits with WaZ bsted below to access dawice 2 Only allow PCs with MAC listed below to access device eni L Gree Cree The maximum number of MAC addressesthat can be stored in Access Pint is 50 You can browse through the MAC address saved by selecting the drop down box Dji E http 192 168 1 1 security cgi Microsoft Internet Explorer Fie Edit View Favorites Tools Help Back Neg x a A Search SP Favorites GA media E2 Address 2 http ii 192 168 1 L security cgi mettings were successtully saved Back For any changes made in the security page click Apply for the changes to be effective When the above page will appear Click Back to go back to the previous page 802 1x There are three essential components to the 802 1x infrastructure 1 Supplicant 2 Authenticator and 3 Server LevelOne Access Point serves as an Authenticator and the EAP methods used must be supported by the backend Radius Server The 802 1x security supports both MD5 and TLS Extensive Authentication Protocol EAP Please follow the steps below to configure 802 1x security E B0 tx Micresoft internet Explorer Fe BoE Yea 6Fovorte Tok Halo a ik al ea poset pre ima Ol Ga Sehhece httn t 92 168 1 ainedz Hire
59. move Programs 3 Click on Add Remove Windows components Check Certificate Services and click Next to continue Windows Components Wizard i g Windows Components You can add or remove components of Windows 2000 To add or remove a component click the checkbox 4A shaded box means that only part of the component will be installed To see what s included in a component click Details Components Accessories and Utilities 121 ME H F Cerificate Services wiry w Indexing Service DOME ra EE Internet Information Services I5 21 7 MB S93 Mananement and Monitorina Tonla A MA x Description Installs a certification authority CA to issue certiticates for use with public key security applications Total disk space required 2 1 ME mE Space available on disk J524 4 ME a lt Back Cancel 5 Select Enterprise root CA and click Next to continue Windows Components Wizard CA Identifying Information Enter information to identify this CA 6 Enter the information that you want for your Certificate Service and click Next to continue Windows Components Wizard Certification Authority Type There are four types of certification authorities _78 7 Goto Start gt Program gt Administrative Tools gt Certificate Authority 8 Rightclick on the Policy Setting select new 9 Select Certificate to Issue f Certification Auth
60. mputer description ARES 51 STATION No amp Examples Family Room Computer or Monica s Computer ALIENT Examples FAMILY or MONICA Computer name The curent computer name is Mid Leam more about computer names and descriptions TK TT Enter Workgroup Network Setup Wizard name for your Name your network home network Click Next to Name your network by specifying a workgroup name below All computers on your network continue should have the same workgroup name Workgroup name AREAS Examples HOME or OFFICE AY AT Click Next and Network Setup Wizard wait for the wizard Ready to apply network settings to apply the settings The wizard will apply the following settings This process may take a few minutes to complete and cannot be interrupted Settings Internet connection settings Connecting through another device or computer Network settings Computer description AREA 51 STATION No 6 Computer name ALIEN T Workgroup name AREAS To apply these settings click Next SY ES _45 You may create a network setup disk which saves you the trouble of having to configure every PCs in your network Select the first choice and insert a floppy disk into your disk drive Click Next to continue Network Setup Wizard Please wait S Please wait while the wizard configures this computer for home or small office networking This process m
61. ndows will open it For you Click OK When the command prompt window appears type command ipconfig all and press Enter This command will display the IP addresses of all the network adapters in your computer E Scroll CW NDS System 2 yond exe ajaj x Ethernet adapter Wireless Metuork Connection 3 Connect ion epar iF ic DMS Suffix DESCPIDCIOM s sia ee z S4Ahbps High bypeed Wire lars dapter Physical Adidpess a a a s a a a BR EB CH 12 AE 1A A Enableg a a T hutocaonfiaguration Enahled F Tr d TE Aiea ae E E T E E iF oe Ta Bu PRA r ron n n rrp n m ee oe oS Befamlt Gateway a 2 2 2 gt 192 168 1 1 DAG Serer 197 168 141 41 DAG SRS 2 ee a a a a a ed Lease Obtained Peiday April A4 2689 11245 28 PA Lease Expires Saturday April BS SHAS 11 45 26 FA CisTocuments and Bettings typark In this case the IP address of your network adapter is 192 168 1 2 hich means your Access Point must have an IP address of 192 168 1xxx in order for you to be able to access it _4Q If the IP address is assigned by DHCP server on the network there are chances you might have to release the IP and acquire it from DHCP server again Here is how you do it Go toStart menu gt Run gt type a i Type the name of a program Folder document or command Internet resource and Windows will open it For you Click O K Type command ipconfig rene
62. o view and change its configuration 2 AP Settings This is the page that allows you to change the settings of the Access Point Z LevelOne WAP 0003 S4Mbpe Wireless LAN Access Point a ol x Link Information i ESSID APFFFCO4 AP Settings Channel E peniti AP Name APFFFCO4 WEF Settings Mode Setting 602 1 Settings Access Point Remote MAC Address Access Point Client o o o Wireless Bridge Multiple Bridge Copyright 2002 Viireless Access Point Configuration Utility version 1 31 Apply Refresh Close Basic Setting allows you to enter the new values for ESSID Channel and AP Name of the Access Point Mode Setting allows you to change the operating mode of the Access Point There are 4 modes that you can choose 1 Access Point 2 Access Point Client 3 Wireless Bridge and 4 Multiple Bridge Please refer to Appendix C Glossary for the functionalities and definitions of these operating modes Advanced Setting recommended for advanced users who are familiar with wireless networks and it s where you set additional parameters and settings of the Access Point Please refer to Appendix C Glossary for the definitions of these values and function For any changes made to be effective click Apply button 22 The utility program will now prompt you for user PAHTA name and password as part of the login and security protection to mak
63. onfigured manually to authen Apply button for the 802 1 x settings to take effect after Access Point reboots itself s 802 1x security is enabled all the wireless client stations that are connected to the ticate themselves with the Radius server to be reconnected Please refer toAppendix C for detail 802 1x setup and installation a4 APPENDIX A TROUBLESHOOTING This chapter provides solutions to frequently encountered problems that can occur during the installation and operation of LevelOne 54Mbps Wireless Access Point Please read through the following to solve your problems 1 The computer connected to LevelOne Wireless Access Point through Ethernet network cannot access the configuration menu Check that the Ethernet Adapter is working properly Make sure that the drivers for the network adapters are installed properly Check that the Ethernet cable is connect to the Wireless Access Point properly and the Ethernet LED of the Wireless Access Point is ON Check that the IP address of the computer is in the same IP range and subnet as that ofthe Wireless Access Point Please refer to the Networking Basis in APPENDIX B in this manual for more information if necessary NOTE The default IP Address of LevelOne Wireless Access Point is 192 168 1 1 All the computers on the network must have a unique IP address inthe same range e g 192 168 1 xxx and they must all have the same subnet mask e g 255 255 255 0
64. ority Action view m Ee Tree Name Intended Purpose Certification Authority Local EFs Recovery Agent File Recovery FRA Wireless ca al Basic EFS Encrypting File System tm Revoked Certificates ge Domain Controller Client Authentication Server Guthentic Issued Certificates Gel web Server Server Guthentication Pending Requests EA Computer Client Authentication Server Guthentic Failed Requ Encrypting File System Secure Email ests siigation Authority Mew Code Signing Microsoft Trust List Signi Wie Refresh Export List Help Add a Certificate Template to the list of Certificate Templates issued by this Certifica 10 Select Authenticated Session and Smartcard Logon by holding down to the Ctrl key and click OK to continue Select Certificate Template 2 x Select a certificate template to sue certificates Secure Email Clier Secure Email Cher Client Authenticatic Chent Authenticatic Iqning Code Signing st Signing Microsoft Trust List H F arollroent nent Certificate Flenuesh F Cancel 79 11 Goto Start gt Program gt Administrative Tools gt Active Directory Users and Computers 12 Right click on domain and select Properties to continue amp Active Directory Users and Computers E a 7 oj x E Console Window Help Action view A EY as Wi if a ee
65. pdate Driver Peake ATLOII9 Pemily PC Psst Ethem Obabee E PTET adapters Uninstall roan F Sound video and ganie controbers _Seen For hercware changes og System devices Proparting Sep Universe Seria Bus controllers l connect RJ 45 cable z pers property sheet for the umant selection Check and make sure that the network adapter is working properly 4Mbps High Speed Wireless Network Adapter Prope General Advanced Driver Resources Ha Adhbps High Speed Wireless Network Adapter Device type Network adapters Manufacturer Unknown Location FCI bus 1 device O function O Device status his device is working properly Ifyou are having problems with this device click Troubleshoot ta start the traubleshooter Troubleshoot Device Usage Use this device enable we 3 Resetting LevelOne Wireless Access Point to Factory Default Setting You may choose to Reset the Wireless Access Point by doing the following Locate the Reset button on the back of the Wireless Access Point Use a paper clip to press the Reset button Hold the reset button for at least 5 seconds before you release Wait till the Wireless Access Point reboots itself it may take a few minutes then the configuration will be set back to factory default values 4 What are the operation modes supported by LevelOne Wireless Access Point The Wireless Access Point supports
66. r assigning IP addresses on the AP Name Mac Address SSID network APFFFCO4 O0 03 2F FF FC 04 APFFF CU Ye Please also refer to Appendix B to learn more about Network SOR Ose e mee ay een Wireless Access Point Configuration Utility AERE EEE Apply Refresh Close and IP address Click Apply button for any changes made to be effective The utility program will prompt you for user name and password for security protection 35 WEP Settings This ts the page that allows you to configure the WEP settings for the Access Point LevelOne WAP 0003 S4Mbps Wireless LAN Access Point j x Enable WEP Key i security by clicking i ofopmatioL M Data Encryption Data Encryption AP Settings Auth Mode Auto Switch WEP Key Setting Hex ASCII Key Length lea bits Key 1 IP Settings WEP Settings 802 1 Settings O Key 2 O Key 3 O Key 4 Copyright 2002 Wireless Access Point Configuration Utility version 1 31 LevelOne WAP 0003 54Mbps Wireless LAN Access Point i A iix Select the Auth Mode and the Key Length I Data Encryption Auth Made Auto Switch WEP Key Setting Hex ASCII WEP Settings Key Length lea bits IP Setting 807 1 Settings key 4 Fill at least one of C Key 2 the 4 Web Key fields Key 3 with Hex or ASCII Key 4 values Copyright 2002 Wireless Access Point
67. racters for HEX 104 bits 13 characters for ASCII 26 characters for HEX 29 After deciding the key format and key length that you wish to use for network key Enter the network key in Network key text box Wireless Network Properties Network name SSID Wireless network key MEP This network requires a key for the following Data encryption WEF enabled Network Authentication Shared mode Network kep Key format Key length Key index advanced a The key is provided for me automatically Cancel Please note that that value of Network key entered and key format length used must be the same as that used in the Access Point Although there are 4 set of keys can be set in the Access Point WEP configuration it s thefirst set of key that must be the same as that we used by the Supplicant wireless client 30 Click OK to close the Wireless Network Properties window thus make the changes effective a 31 Select Authentication tab 32 Select Enable network access control using EEE 802 1X to enable 802 1x authentication 33 Select MD 5 Challenge from the drop down list box for EAP type Wireless Network Connection Properties F Eg General Wireless Networks Authentication Advanced Select this option to provide authenticated network access for wired and wireless Ethernet networks Enable network access control using IEEE 802 1 EAP
68. rent wireless traffic calculated in terms of number of packets sent and received by AP through wireless communication is also displayed View Log Upon clicked the page will change to log page The log page records every event and the time that it happens Ey Leg Micresnft istarai Explorer Apia 2008 O1 0e22 ApeiQG 2008 01 0222 Apriti2009 01 0836 A _ I Acc ess Point _GleerLog Ratash LLET AF 2 4GAt mode Ready Channel 6 TE ae best S500 APS 55 Syrien tated Worreless Pot ceonected 0 G0 cl 13 ae You may clear the entries recorded in the log by clicking the Clear Log button and refre sh the screen to show the latest log entries by clicking the Refresh button _ 3 Basic Setting This is the page where you can change the basic settings of LevelOne 54Mbps Wireless Access Point with the minimum amount of effort to adjust a secure wireless network a Anric fartting Wicresaft btermet Explorar Pee bE weu Peart Oe He G ma x i ai a eS wp Search FF Pavers reds g Beto E hipiji ed dsi i i fc heel E Access Point z THERET mitar Sais f IP Bair ring rfl tt r Se ag fu ide Di Tumi p A Rie S amp F oa dadd55 BIG amp PII4455 Ghaneeel 6 eel Domain Use 3 WEP Key 25 Hgo LI 6468s 1fhbas Abridge HEX s lappi Locana Lose AP Name Name of the AP which can be used to identify the Access Point among the all the Access Points in the wirel
69. rgence protocol PPDU PLCP protocol data unit Preamble Type During transmission the PSDU shall be appended to a PLCP preamble and header to create the PPDU Two different preambles and headers are definedas the mandatory Supported long preamble and header which interoperates with the current 1 and 2 Mbit s DSSS specification as described in IEEE Std 802 11 1999 and an optional short preamble and header At the receiver the PLCP preamble and header are processed to aid in demodulation and delivery of the PSDU The optional short preamble and header is intended for application where maximum throughput is desired and interoperability with legacy and non short preamble capable equipment is not consideration That is it is expected to be used only in networks of like equipment that can all handle the optional mode IEEE 802 11b standard PSDU PLCP service data unit Roaming ALAN mobile user moves around an ESS and enjoys a continuous connection toan Infrastructure network RTS Request To Send An RS 232 signal sent from the transmitting station to the receiving station requesting permission to transmit RTS Threshold Transmitters contending for the medium may not be aware of each other RTS CTS mechanism can solve this Hidden Node Problem If the packet size is smaller than the preset RTS Threshold size the RTS CTS mechanism will NOT be enabled 102 SSID Service Set Identifier which is a unique name shared among
70. rmal Access Point operating modewhich forms a wireless ESS network with its wireless clients 2 AP Client Acts as an Ethernet to Wireless Bridge which allows a LAN or a single computer station to join a wireless ESS network through it You must make sure that the SSID and Channel is set to the same as that used by the AP you wish to connect Remote AP BSS ID key inthe LAN Mac address NOT wireless Mac address of the AP that you wish to get connected Please note that if you leave Mac address as 000000000000 then you will get connected by the SSID that is set in you AP _18 3 Wireless Bridge A pair of APs operating under Bridge mode to act as the bridge that connects two Ethernet networks or Ethernet enabled clients together You must make sure that the SSID and Channel is set to the same as that used by the AP you wish to connect The Remote Bridge MAC is where you enter the MAC address of the other AP that you connect to setup the wireless bridge Remote Bridge MAC filed key in the LAN Mac address NOT wireless Mac address of the AP that you wish to get connected 4 Multiple Bridge A group of APs which consists of two or more APs operating under Multiple Bridge mode that can connect two or more Ethernet networks or Ethernet enabled clients together The way that multiple bridge setup is based on the topology of Ad Hoc mode NOTE All APs have to use the sameChannel and SSID in order to form a Multiple Bridge network
71. thernet IEEE 802 3 u 10 100BaseTX Data Rate 802 11g draft Up to 54Mbps 6 9 12 18 24 36 48 54 802 11b Up to 11Mbps 1 2 5 5 11 1 x 100BaseTX with Automatic MDI MDIX feature Power Jack 2 5 mm inner dimension na Default Reset button Direct Sequence Spread Spectrum DSSS Data Modulation BPSK QPSK CCK and OFDM BPSK QPSK 16 QAM 64 QAM RF Frequency 2412 MHz 2462 MHz North America 2412 MHz 2472 MHz GeneralEurope 2412 MHz 2484 MHz Japan 1 11 Channels North America 1 13 Channels Europe 1 14 Channels Japan 16 18 dBm typical 1 2 Mbps BPSK QPSK 90 dBm 5 5 Mbps CCK 86 dBm 11 Mbps CCK 82 dBm Typically PER lt 8 packet size 1024 and 25 5 54 Mbps 68 dBm 48 Mbps 68 dBm 36 Mbps 72 dBm 24 Mbps 74 dBm 18 Mbps 82 dBm 12 Mbps 86 dBm 9 Mbps 89 dBm 6 bps 90 dBm Typically PER lt 8 packet size 1024 and 25 5 104 Security WEP 64 128 Password Protect 802 1x security MD5 and TLS Port Isolation TBD MAC Filtering SSID Broadcast Disable function Wi Fi Protected Access TBD 1 X 2 4GHz Embedded Antenna Memory SDRAM 8 MB up to 16 MB FLASH 1 MB up to 4MB Power Operation max 1 2 A Power Supply DC 5 Volt 5 2 4A AC Adapter AC 100V 240V Consumption 600mA 50mA Design and specifications are subject to change without notice 105
72. twork Drive Disconnect Network Drive w Show on Desktop Rename Properties 080 wizard ja All Programs gt A Log OFF O Turn OFF Computer System Properties System Restore Automatic U dates Remote General Computer Name en Advanced System Microsott Windows sF Protessioral Version 2002 Go to Hardware Registered to Tinin Mee 4 337 5493094 22998 Computer Intel Celeron processor r l MHz 112 MB of RAM Apply 20 Go to Device System Properties Manager dates Remote General E Computer Name Hardware _ Advanced E Add Hardware Wizard z The Add Hardware Wizard helps you install hardware Add Hardware wizard Device Manager The Device Manager lists all the hardware devices installed on your computer Use the Device Manager to change the properties of any device Hardware Profiles Hardware profiles provide a way for you to set up and shore different hardware configurations Hardware Profiles Right mouse click Fle Action Wew Help on the network Besos 2 ne i H Disk e adapter which you T a sical ia Human Interface bona E E IDE AT A ATAPT controlor dog EE 1294 Bus host controders with And go to i Infrared devices e Keyboards Properties see pointing chovicos F Md irra H Montos 488 Hamri sapere Lo MP L354 Nek Adapter 5 Ba Sbp High Spaad Wiakeas Network Adarter EF MP CL SOZ 1 Lb Wireless wispter U
73. tworking function that incorporates the lowest 2 layers of the OSI network protocol model Browser An application program that enables one to read the content and interact in the World Wide Web or Intranet BSS BSS stands for Basic Service Set It is an Access Point and all the LAN PCs that associated with it Channel The bandwidth which wireless Radio operates is divided into several segments which we call them Channels AP and theclient stations that it associated work in one of the channels CSMA CA In local area networking this is the CSMA technique that combines slotted time division multiplexing with carrier sense multiple access collision detection CSMA CD to avoid having collisions occur a second time This works best if the time allocated 5 short compared to packet length and if the number of situations is small CSMA CD Carrier Sense Multiple Access Collision Detection which is a LAN access method used in Ethernet When a device wants to gain access to the network it checks to see if the network is quiet senses the carrier If itis not it waits a random amount of time before retrying If the network is quiet and two devices access the line at exactly the same time their signals collide When the collision is detected they both back off and wait a random amount of time before retrying DHCP Dynamic Host Configuration Protocol which is a protocol that lets network eblinistrators manage and al
74. type MD5 Challenge WOS Challenge Smart Card or other Certificate eee Authenticate as computer when computer information is available Authenticate as guest when user or computer information is unavailable 34 Click OK to close Wireless Network Connection Properties window thus make all the changes effective 73 Unlike TLS which uses digital certificate for validation the MD 5 Authentication is based on the user account password Therefore you must have a valid account used by the server for validation 35 WindowsXP will prompt you to enter your user name and password Click on the network connection icon in the system trayto continue a o mea Jy Wireless Network Connection x Gick here to enker your weer mame sind pessward for the net iork APF RPC _74 36 Enter the user name password and the logon domain that your account belongs if you have one or more network domain exist in your network 37 Click OK to complete the validation process Wireless Network Connection Leer name Password Logon domain lt 9 Authenticator Wireless Network Access Point This is the web page configuration in LevelOne Access Point that we use 02 14 Enabled C sabed Encryption Key Length F 64 bite 178 bits Z56bits Lie tire 30 Minutas RADIUS Server I IF E Br p E Port faiz Shared Secret MA optional TP p p lE wh Port booo Shared S
75. w in the command prompt window and press Enter This command releases the current IP address and acquire it from the network i e DHCP server once more E Scroll CAWINDOWS Systemi emd exe joj x Ethernst adapter Warelescs Natwork Canmection 3 Connectian specific DHE Suffix Description 2 p4 bps High Speed Wireless Hetuork A Fhysical Adarpess H HS LA 1 143 HE LA Dhep Enabled Yeg MicocontFiguration Enabled E A a ra in ire oe E a Becdeeviee vote FES Subnet Mask a s w s a ncs a a AbDLA Default Datena DWP Karini DHS Serwce PE T Preecoage Le eI Lease p oe Se ak eek cdg al A SHAA 11 45 26 FA Lede EXD FEZ r r r ew n e ra ea CU Ce April BS 2G 11 etek F G a potumeniy and Serting t ypark gt In this case the IP address that we acquired is 192 168 1 3 However it s often that the acquired IP address of the network adapter might would not be the same NOTE To renew IP under Windows 98 and Windows ME you will have to go to theStart menu gt Run gt type winipcfg and click OK The Windows IP Configuration Menu window would appear where you first click release button to release the current IP address followed by clicking of Renew to acquire a new IP address from network If the above methods for IP renew fail you will have to try and restart the computer which will reinitializes the network adapter settings during startupincluding renewing IP ad
76. w icon in taskbar when connected 53 The TCP IP Properties window appears Select Obtain an IP address automatically if you are ona DHCP enabled network Click OK to close the window with the changes made Select Use the following IP address Enter the IP address and subnet mask fields Enter the IP address of the Router in the Default gateway field Enter the IP address of the Router in the DNS server field Click Ok to close the window Internet Protocol TCP IP Properties Bee Pe x General fou can get F settings assigned automatically if your network supports thi capability Othenvise pou need to ask your network administrator for the appropriate IP settings f Obtain ONS server address automatically Use the following DNS server addresses Prefered DHS server Advanced CL D Cancel Altenate DHS zerer gjin i r O Re ge z Protocol TCP IP Prop as Ss al General fou can get IF settings assigned automatically if your network supports this capability Otherwise pou need to ask your network administrator for the appropriate IP settings automatically Use the following IP address IPF address 492 AER Comms 255 255 255 0 Subnet mask Default gateway Obtain ONS server address automatically f Use the following DNS server age Prefered ONS server Altern
77. xt exit sautops acess Pont Setup Wizard setup Completed The Access Point setup is now completed If you want ta change any setup settings click Back to go back to the previous pages Click Restart to reboot the Access Point for the new settings to take effect afls LevelOne Access Point is now rebooting sameps Access Poi SEtUD Wiza click Close to close the Setup wizard window and go back to the main menu saving Changes and Restarting Close Status Page This page displays the following information Pie Foe kev Femi Toots Hal pides ABE bt Le 168 L1 jean Hira Access Point Dasic Setting F Setting advanced Setting Security BOS Foois Fimea Yersion L J LAM MACDI 4t 22 33 44 35 IF Address 102 184 1 1 fubrert Mask 255 255 255 0 Gaby O 0 0 0 Semi 0 Recelvye 1927 MAc 00 80 cB Oc 31 fe SSID SAPS SSH Encryption Furction Disma Channel i Senna 2 oF Beeceiven 19 EETA Chagga Tiig Witelesa Simig Agr Oi 2003 00 A 10 0 80 1Sae la al Firmware Version Shows the current firmware version LAN Shows the Mac address IP address default 192 168 1 1 Subnet Mask Gateway Address The current LAN traffic calculated in terms of number of packets sent and received by AP through wired connection ts also displayed Wireless Shows the Mac address current ESSID the status of Encryption Function Enable or Disable the current using channel The cur
78. y machine_policy to refresh policy Adding I nternet Authentication Service ca Command Prompt CiN secedit refreshpolicy machine_policy Group policy propagation from the domain has been initiated for this computer 21 Go to Start gt Control Panel gt Add or Remove Programs 22 Select Add Remove Windows Components from the panel on the left 82 23 Select Internet Authentication Service and click OK to install Networking Services s a x To add or remove a component click the check box A shaded bos means that only part of the component will be installed To see what s included in a component click Details subcomponents of Networking Services L I COM Internet Services Proxy 0 0 ME JE Domain Name System DNS 1 1 MB LI a simple TCP IP Services O Site Server ILS Services 15MEB Description Enables authentication authorization and accounting of dial up and WPN users AS supports the RADIUS protocol Total disk space required O4MB Details Space available on disk 0462 6 ME Cancel 83 Setting Internet Authentication Service 24 Goto Start gt Program gt Administrative Tools gt Internet Authentication Service 25 Rightclick Client and select New Client P Internet Authentication Service Action view Friendly Name Protocol Export List Help 26 Enter the IP address of the Access Point in the Client
Download Pdf Manuals
Related Search