Motorola WS2000 - Wireless Switch - Network Management Device Specifications

MWS2000 Wireless SwitchSystem Reference Guide

TOC-8 WS2000 Wireless Switch System Reference Guide

5-20 WS2000 Wireless Switch System Reference Guide 5. Click Apply to save changes.This screen also provides the ability to change several advanced s

Wireless Configuration 5-21 5.5.1 Common Settings to All Radio Types Some of the settings are common to all three radio types. Channel Selection Mo

5-22 WS2000 Wireless Switch System Reference Guide Antenna DiversityUse the drop-down menu to configure the Antenna Diversity settings for Access Po

Wireless Configuration 5-23 5.5.2 Radio-Specific SettingsThe fields below are only available for some radio types, as indicated in the second colum

5-24 WS2000 Wireless Switch System Reference Guide Click the Apply button to save changes.5.6 Advanced Access Port SettingsThe WS2000 Wireless Switc

Wireless Configuration 5-25 2. Select the Access Port to examine or modify. When the Access Port Name menu item is selected, the following screen a

5-26 WS2000 Wireless Switch System Reference Guide 5.6.2 Antenna Settings 5.6.3 Access Port PropertiesUse the options provided in this area to set t

Wireless Configuration 5-27 RTS Threshold Set the Request to Send Threshold (RTS Threshold) by specifying a number. RTS is a transmitting station’s

5-28 WS2000 Wireless Switch System Reference Guide Click Apply in the Access Port window to save changes.5.7 Quality of Service ConfigurationDisrupt

Wireless Configuration 5-29 5.7.1 Setting the Bandwidth Share ModeFirst, specify how the networking resources will be shared. The Bandwidth Share M

Product Overview1.1 WS2000 Wireless Switch System Reference Guide . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

5-30 WS2000 Wireless Switch System Reference Guide Bandwidth Share for Each WLAN TableThe fields in this table are: 5.7.2 Configuring Voice Prioriti

Wireless Configuration 5-31 To set up Port Authentication for all adopted AP300 Access Ports:1. In the Username field, specify a 802.1x username fo

5-32 WS2000 Wireless Switch System Reference Guide The Rogue AP Detection screen allows the administrator to determine how thoroughly the switch wil

Wireless Configuration 5-33 NOTE: Note that only some access ports have the capability of being a Detector AP, including Motorola AP100, AP200, and

5-34 WS2000 Wireless Switch System Reference Guide 5.9.3 Examine the Approve and Rogue Access PortsThis screen displays information about APs known

Wireless Configuration 5-35 1. Enter a number in the Rogue Entries Age Out Time field to indicate the number of elapsed minutes before an AP will b

5-36 WS2000 Wireless Switch System Reference Guide To enable and configure Rogue AP Containment:1. Check the Enable Rogue AP Containment box to enab

Wireless Configuration 5-37 Details About the Rogue DetectorThe lower portion of the Rogue AP Detail screen displays information about the AP that

5-38 WS2000 Wireless Switch System Reference Guide 2. Check the Rogue AP box (in the lower right area of the screen) to generate a trap when a rogue

Wireless Configuration 5-39 5.11 Wireless Intrusion Detection SystemThe Motorola Wireless Intrusion Detection System (WIDS) protects against a wide

1-2 WS2000 Wireless Switch System Reference Guide 1.1 WS2000 Wireless Switch System Reference GuideThis guide is intended to support administrators

5-40 WS2000 Wireless Switch System Reference Guide WIDS also keep track of anomalies. An anomaly is defined as an event which is different from the

Wireless Configuration 5-41 5.11.2 Filtered MUsThe Filtered MUs screen displays a list of all MUs that have been filtered out by WIDS. You can, if

5-42 WS2000 Wireless Switch System Reference Guide 5.12 Smart ScanEach radio, depending on the country it is operating in, provides a large number o

Wireless Configuration 5-43 5.13 Self HealA self-healing network is one that is capable of maintaining the availability of the network under all ci

5-44 WS2000 Wireless Switch System Reference Guide Interference AvoidanceWhen enabled, the AP keeps track of the retry count for the Tx frames and i

Wireless Configuration 5-45 5.14.1 Mesh Base SettingUse the Mesh Base Settings area of the Mess Setting screen to set up the device as a Mesh Base

5-46 WS2000 Wireless Switch System Reference Guide

Administrator and User Access6.1 Configuring Administrator Access . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

6-2 WS2000 Wireless Switch System Reference Guide 6.1 Configuring Administrator AccessThe WS2000 Network Management System allows users to log in to

Administrator and User Access 6-3 NOTE: If all the check boxes in this section are disabled, the administrator will not be able to access the switc

Product Overview 1-3 1.2 System OverviewThe WS2000 Wireless Switch provides a low-cost, feature-rich option for sites with one to six Access Ports.

6-4 WS2000 Wireless Switch System Reference Guide If the RADIUS button is selected, specify the RADIUS Server IP address, the communication port for

Administrator and User Access 6-5 6.2 Configuring User AuthenticationThe WS2000 Wireless Switch provides an integrated RADIUS server as well as the

6-6 WS2000 Wireless Switch System Reference Guide ideal choice for networks using legacy EAP authentication methods.• Tunneled TLS EAP (EAP-TTLS) is

Administrator and User Access 6-7 6.2.2 Configuring Lightweight Directory Access Protocol (LDAP) AuthenticationWhen the RADIUS Data Source is set t

6-8 WS2000 Wireless Switch System Reference Guide The following are the additional settings that are required for the LDAPS data source.2. Click App

Administrator and User Access 6-9 4. Click Apply to save changes.To delete a server row, select the row corresponding to that entry and click the D

6-10 WS2000 Wireless Switch System Reference Guide 2. To set a group as a group of Guest users, click the check box in the Guest column, next to the

Administrator and User Access 6-11 When you logon with the guest user name for the first time, you are forced to change the default password. Use t

6-12 WS2000 Wireless Switch System Reference Guide 2. Enter the required password in the Password text box. You can also generate a random password.

Administrator and User Access 6-13 3. Click Print. The user information is printed. You can then provide this information to the user for reference

1-4 WS2000 Wireless Switch System Reference Guide 1.3 Hardware OverviewThe WS2000 Wireless Switch provides a fully integrated solution for managing

6-14 WS2000 Wireless Switch System Reference Guide 1. To enable group access to a particular WLAN, check the box for that WLAN in the row correspond

Administrator and User Access 6-15 To import a CA certificate perform the following steps: 1. Select System Configuration --> Certificate Mgmt -

6-16 WS2000 Wireless Switch System Reference Guide 6.3.2 Creating Self CertificatesSelf certificates are those for which the organization creates a

Administrator and User Access 6-17 3. Fill in as many of the optional fields as desired or as required by the CA that will sign the certificate. Th

6-18 WS2000 Wireless Switch System Reference Guide

Switch Administration7.1 Overview of Administration Support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

7-2 WS2000 Wireless Switch System Reference Guide 7.1 Overview of Administration SupportThe WS2000 Network Management System provides several screen

Switch Administration 7-3 7.3 Changing the Name of the SwitchWhen the administrator first logs into the WS2000 Network Management System, the Syste

7-4 WS2000 Wireless Switch System Reference Guide 1. Select System Configuration --> System Settings from the left menu.2. Type in a description

Switch Administration 7-5 2. Enter the IP address of the DNS server in the DNS Server IP Address field.3. Click Apply to save changes.7.6 Configuri

Product Overview 1-5 1.3.2 WS2000 Wireless Switch LED FunctionsThe switch has a large blue LED on the right front that indicates that the switch is

7-6 WS2000 Wireless Switch System Reference Guide 7.7 Configuring Switch RedundancyThe WS2000 Wireless Switch supports redundancy between two WS2000

Switch Administration 7-7 7.7.2 Redundancy Operations StatusTo see the Operational Mode status for switch redundancy, look at the bottom of the Red

7-8 WS2000 Wireless Switch System Reference Guide an FTP server, on a system with a TFTP server, or on a CompactFlash card that is compatible with t

Switch Administration 7-9 2. After the switch reboots, return to the Firmware Update screen. Read the Status field to verify that the firmware upda

7-10 WS2000 Wireless Switch System Reference Guide Select [System Configuration] --> [Cfg/Firmware Mgt] --> DHCP Options (Sys Update) to confi

Switch Administration 7-11 7.9 Exporting and Importing Wireless Switch Settings All of the configuration settings for the WS2000 Wireless Switch ca

7-12 WS2000 Wireless Switch System Reference Guide 6. If required, select Default Before Applying to reset the WS2000 device to default settings bef

Switch Administration 7-13 3. Enter the administrative password for this WS2000 in the Administrator Password field. This allows you to download th

7-14 WS2000 Wireless Switch System Reference Guide Below is a sample configuration file that has been annotated using comment lines. All comment lin

Switch Administration 7-15 set fw boot on-board-flashset fw active-partition primaryset bind-interface none/systemlogs// Logs menuset mode disables

1-6 WS2000 Wireless Switch System Reference Guide 1.4 Software OverviewThe WS2000 Wireless Switch software provides a fully integrated solution for

7-16 WS2000 Wireless Switch System Reference Guide set rate pkts wlan 0.00set rate pkts ap 0.00set rate pkts mu 0.00set rate mbps switch 0.00set rat

Switch Administration 7-17 userdbuser// clear userdb user configurationclearall /systemuserdbgroup// clear userdb group configurationclearall /syst

7-18 WS2000 Wireless Switch System Reference Guide policy// radius access policy configuration set Guests /systemradiusldap// radius LDAP configurat

Switch Administration 7-19 set kerb realm 1 \0set kerb port 1 1 88set kerb port 1 2 88set kerb port 1 3 88set eap port 1 1 1812set eap port 1 2 181

7-20 WS2000 Wireless Switch System Reference Guide set wep-mcm enc-key 2 3 e2565fc57c2a766fb0d52a19a9set wep-mcm enc-key 2 4 92262fb50c5a061fc0a55a6

Switch Administration 7-21 set auth 3 noneset wep-mcm index 3 1set wep-mcm enc-key 3 1 c2767fe55c0a564f90f50a3989set wep-mcm enc-key 3 2 f2464fd56c

7-22 WS2000 Wireless Switch System Reference Guide // WLAN 4 configurationset mode 4 disableset ess 4 104set enc 4 noneset auth 4 noneset wep-mcm in

Switch Administration 7-23 set eap syslog mode 4 disableset vlan-id 4 4set secure-beacon 4 disabledelete 4 all// WLAN 5 configurationset mode 5 dis

7-24 WS2000 Wireless Switch System Reference Guide set adopt 5 allowset acl 5 allowset mcast 5 1 01005E000000set mcast 5 2 09000E000000set eap syslo

Switch Administration 7-25 set name 6 WLAN6set no-mu-mu 6 disableset vop 6 enableset bcast 6 disableset adopt 6 allowset acl 6 allowset mcast 6 1 0

Getting Started2.1 Getting Started with the WS2000 Wireless Switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

7-26 WS2000 Wireless Switch System Reference Guide set ccmp rotate-mode 7 disableset ccmp mixed-mode 7 disableset ccmp preauth 7 disableset ccmp opp

Switch Administration 7-27 set ccmp enc-phrase 8 a11e00942773343deb84set ccmp enc-key 8 c2767fe55c0a564fa8cd3201b1984a33f986e7872572740a80c6dcff329

7-28 WS2000 Wireless Switch System Reference Guide set primary 802.11a 1set dtim 802.11a 1 10set dtim 802.11a 2 10set dtim 802.11a 3 10set dtim 802.

Switch Administration 7-29 set mac 1 00A0F860C858set ap_type 1 AP200set radio_type 1 802.11bset beacon intvl 1 100set dtim 1 1 10set dtim 1 2 10set

7-30 WS2000 Wireless Switch System Reference Guide set radio_type 4 802.11aset beacon intvl 4 100set dtim 4 1 10set dtim 4 2 10set dtim 4 3 10set dt

Switch Administration 7-31 // AP Deny List menudelete all// Self-Healing configuration/networkapselfheal// Self-Heal Interference Avoidance Configu

7-32 WS2000 Wireless Switch System Reference Guide set wlan 1 1set auto 1 enabledel 1 allset base 1 disableset max-clients 1 6set client 2 disablese

Switch Administration 7-33 set client 11 disableset wlan 11 1set auto 11 enabledel 11 allset base 11 disableset max-clients 11 6set client 12 disab

7-34 WS2000 Wireless Switch System Reference Guide set ddnsusrcls 1 singleset dgw 1 192.168.0.1set dns 1 1 192.168.0.1set dns 1 2 192.168.0.1set win

Switch Administration 7-35 set option-43 4 \0set mode 4 serverset range 4 192.168.3.100 192.168.3.254delete 1 alldelete 2 alldelete 3 alldelete 4 a

2-2 WS2000 Wireless Switch System Reference Guide 2.1 Getting Started with the WS2000 Wireless SwitchThis section provides just enough instruction t

7-36 WS2000 Wireless Switch System Reference Guide set duplex port3 fullset auto-negotiation port4 enableset speed port4 100Mset duplex port4 fullse

Switch Administration 7-37 set mode 7 disableset mode 8 disable/networkwannat// NAT configurationset type 1 1-to-manyset inb mode 1 disableset type

7-38 WS2000 Wireless Switch System Reference Guide delcmd ftp pasv delcmd web file alladdcmd web file \0addcmd web file \0addcmd web file \0addcmd w

Switch Administration 7-39 set override enablepolicyinbound// Inbound policy configurationdelete all/networkfwset override enablepolicyoutbound// O

7-40 WS2000 Wireless Switch System Reference Guide set bw-share weight 8 1set bw-share mode rate-limitset bw-share mode none/// VLAN configurationne

Switch Administration 7-41 set exturl 5 fail \0set http-mode 5 https// Wlan 6 - Hotspot configurationset mode 6 disableset page-loc 6 defaultset ex

7-42 WS2000 Wireless Switch System Reference Guide set port 4 secondary 1812// Wlan 5 - Hotspot Radius configurationset acct-mode 5 disableset acct-

Switch Administration 7-43 /networkwips// WIPS menuset mode enabledefaultsset mode clientset ipaddr 192.168.0.10set mask 255.255.255.0set dgw 192.1

7-44 WS2000 Wireless Switch System Reference Guide wlanipfpolicyset ipf-mode 1 enableset ipf-mode 1 disable set default incoming 1 allow set defaul

Switch Administration 7-45 set username \0set password \0set hostname \0/// WIDS Configurationnetworkwidsset mode disableset detect-window 10/netwo

Getting Started 2-3 NOTE: For optimum compatibility use Sun Microsystems’ JRE 1.4 or higher (available from Sun’s website), and be sure to disable

7-46 WS2000 Wireless Switch System Reference Guide set anomaly-detect mode tkip-cntr-meas disable set anomaly-detect filter-ageout tkip-cntr-meas 60

Switch Administration 7-47 7.10 Updating Sensor FirmwareWS2000 provides support for setting up AP300s as dedicated sensors. This feature enables up

7-48 WS2000 Wireless Switch System Reference Guide 7. To restrict the maximum size of the sensor firmware image, use the Max size of sensor file. Us

Switch Administration 7-49 Select System Configuration --> SNMP Access from the left menu to set up SNMP service.7.11.1 Setting the SNMP Version

7-50 WS2000 Wireless Switch System Reference Guide 7.11.1.2 Setting Up SNMP v3 Community DefinitionsSetting up the v3 user definition is very simila

Switch Administration 7-51 7.11.2 Setting Up the Access Control ListTo set up the Access Control list as specified by arange of IP addresses, click

7-52 WS2000 Wireless Switch System Reference Guide 3. Specify a destination User Datagram Protocol (UDP) port for receiving the traps that are sent

Switch Administration 7-53 1. To set the SNMP traps, select System Configuration --> SNMP Access --> SNMP Traps from the left menu.2. Check t

7-54 WS2000 Wireless Switch System Reference Guide IPS Event An Intrusion Prevention System event is detected by the switch’s firewall.IPS Event tra

Switch Administration 7-55 3. Click the Apply button to save the trap settings.4. It is necessary to tell the switch where to send the notification

© 2009 Motorola, Inc. All rights reserved. MOTOROLA and the Stylized M Logo are registered in the US Patent & Trademark Office. Symbol is a regi

2-4 WS2000 Wireless Switch System Reference Guide Step 3: Set the Basic Switch Setting1. Enter a System Name for the wireless switch. The specified

7-56 WS2000 Wireless Switch System Reference Guide Enter the minimum number of packets that must pass through the device before an SNMP rate trap wi

Switch Administration 7-57 3. To set the time manually, click the Set Date/Time button. A sub-window displays where you can set the WS2000’s time.N

7-58 WS2000 Wireless Switch System Reference Guide 7.13 Setting Up and Viewing the System LogThe WS2000 Network Management System keeps a log of the

Switch Administration 7-59 4. Check the Enable logging to CF check box to enable logging of events to a CF card on the switch. This is useful when

7-60 WS2000 Wireless Switch System Reference Guide

Configuring HotSpot8.1 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

8-2 WS2000 Wireless Switch System Reference Guide 8.1 OverviewThe hotspot feature enables the WS2000 Wireless Switch to act as a single on-site solu

Configuring HotSpot 8-3 8.2.1 Enabling Hotspot on a WLANTo enable hotspot on a WLAN:1. Click [Network Configuration] --> Wireless. The Wireless

8-4 WS2000 Wireless Switch System Reference Guide 8.2.2 Set Hotspot ConfigurationHotspots can be configured from the <WLAN Name> Hotspot Confi

Configuring HotSpot 8-5 primary RADIUS server. To authenticate a hotspot user with a RADIUS server through a VPN tunnel select the bind interface f

Getting Started 2-5 NOTE: The WS2000 switch is shipped with an open default SNMP configuration:Community: public, OID: 1.3.6.1, Access: Read-only

8-6 WS2000 Wireless Switch System Reference Guide Redirect PagesHotspot uses HTML pages to provide login and login status to the user. Three files a

Configuring HotSpot 8-7 Type in the HTML code for the appropriate page. You can also paste the code from the clipboard by clicking the Get from Cl

8-8 WS2000 Wireless Switch System Reference Guide 8.2.3 Setting the User Access PolicyThe RADIUS Access Policy screen allows you to set WLAN access

Configuring HotSpot 8-9 When the mobile unit requests the RADIUS server to log out, the RADIUS server again sends a trigger to the wireless switch

8-10 WS2000 Wireless Switch System Reference Guide If a client logs out or an MU is dis-associated, an Accounting Stop packet will be generated desc

Using DDNS9.1 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

9-2 WS2000 Wireless Switch System Reference Guide 9.1 OverviewWhen browsing web sites or sending E-mail messages a domain name is used. For example,

Using DDNS 9-3 2. Enter a range of IPs in the Address Assignment Range fields.3. Click the Advanced DHCP Server button to open the Advanced DHCP wi

9-4 WS2000 Wireless Switch System Reference Guide 9.3 Updating DNS Entries using DDNSOnce DDNS has been configured and enabled for a subnet, it is p

Using DDNS 9-5 9.3.2 Updating DNS Entries for All Active SubnetsThe DNS entries for all active subnets can be updated using the following steps.1.

2-6 WS2000 Wireless Switch System Reference Guide Step 5: Configure Subnet1The WS2000 Network Management System allows the administrator to define a

9-6 WS2000 Wireless Switch System Reference Guide

Trunking VLANs Through the WAN Port10.1 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

10-2 WS2000 Wireless Switch System Reference Guide 10.1 OverviewEarlier versions of WS2000 had a limit of 31 VLAN IDs (IDs 1-31) due to LAN port swi

Trunking VLANs Through the WAN Port 10-3 10.2 Configuring VLAN Trunking Use the following steps to configure VLAN trunking on the WAN port.1. Selec

10-4 WS2000 Wireless Switch System Reference Guide 6. To enable filtering using IP, check the Enable IP Filtering check box. This option is only ava

Status & Statistics11.1 WAN Statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

11-2 WS2000 Wireless Switch System Reference Guide 11.1 WAN StatisticsThe WS2000 Network Management System provides a set of screens that allow the

Status & Statistics 11-3 11.2 Subnet StatisticsThe WS2000 Network Management System provides a set of screens that allow the administrator to v

11-4 WS2000 Wireless Switch System Reference Guide The following information is displayed:• The Idx field displays an unique number for each of the

Status & Statistics 11-5 11.2.2 Subnet StatsThe Subnet Stats screens displays statistics for each of the subnets. Selecting Status & Statis

Getting Started 2-7 3. For this initial configuration, ensure that This interface is a DHCP Server is enabled. If so, the switch sets the IP addres

11-6 WS2000 Wireless Switch System Reference Guide 11.2.2.1 InterfacesThe interfaces section of the screen displays information about the ports and

Status & Statistics 11-7 Selecting the [Status & Statistics]-->Subnet Stats--><Subnet Name> Stats-->STP Stats displays the f

11-8 WS2000 Wireless Switch System Reference Guide The screen also provide comprehensive information on the port interfaces used. This information i

Status & Statistics 11-9 The WLAN Summary section of the screen shows basic statistics about the currently enabled WLANs.In the lower section o

11-10 WS2000 Wireless Switch System Reference Guide 11.3.2 Getting Statistics for a Particular WLANTo see a summary information about wireless opera

Status & Statistics 11-11 11.3.3 General WLAN Information11.3.3.1 Information Section11.3.3.2 Traffic Area 11.3.3.3 RF StatusESSID Displays the

11-12 WS2000 Wireless Switch System Reference Guide 11.3.3.4 Errors11.4 Access Port StatisticsThe WS2000 Network Management System provides two scre

Status & Statistics 11-13 Each Access Port associated with the switch is listed in the AP Summary area. For each AP, the following information

11-14 WS2000 Wireless Switch System Reference Guide 11.4.3 General Access Port Information11.4.3.1 Information Section11.4.3.2 Traffic Area HW Addre

Status & Statistics 11-15 11.4.3.3 RF Status11.4.3.4 ErrorsAvg. Bit Speed The Total column displays the average bit speed in Mbps for a given

2-8 WS2000 Wireless Switch System Reference Guide NOTE: This setting is independent from the DHCP settings for the switch’s internal subnets.3. If T

11-16 WS2000 Wireless Switch System Reference Guide 11.5 Mobile Unit (MU) StatisticsEach Access Port can have up to 32 associated mobile units. Thes

Status & Statistics 11-17 11.6 Mesh StatisticsA mesh network is a type of local area network where each node participating in the network is co

11-18 WS2000 Wireless Switch System Reference Guide MAC The unique 48-bit, hard-coded Media Access Control address, known as the devices station ide

Status & Statistics 11-19 11.7 Intrusion Prevention StatisticsThe Intrusion Prevention Statistics (IPS) screen displays the IPS statistics. To

11-20 WS2000 Wireless Switch System Reference Guide Select [Status & Statistics] --> Statistical Graphs from the navigation menu on the left.

Status & Statistics 11-21 5. Repeat Steps 1 through 4 to display as many statistics windows as required.A graphical statistics display window w

11-22 WS2000 Wireless Switch System Reference Guide

WS2000 Use Cases12.1 Retail Use Case. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

12-2 WS2000 Wireless Switch System Reference Guide 12.20 Configuring the WAN Interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

WS2000 Use Cases 12-3 12.1 Retail Use Case12.1.1 A Retail Example12.1.1.1 BackgroundCCC Clothing Stores have, in the past, used POS terminals with

Getting Started 2-9 6. Click the Apply button to save changes.Step 7: Enable Wireless LANs (WLANs)The WS2000 Wireless Switch works either in a wire

12-4 WS2000 Wireless Switch System Reference Guide This plan covers all the wireless devices—the POS terminals, the printers, and the customer lapto

WS2000 Use Cases 12-5 Clarissa starts her web browser and enters “http://192.168.0.1/” as the URL. The WS2000 sends a login page to her browser.She

12-6 WS2000 Wireless Switch System Reference Guide 12.3.2 Setting Access ControlIn the WS2000 Access screen, Clarissa controls which network interfa

WS2000 Use Cases 12-7 Clarissa clicks the Apply button to save her changes.Clarissa leaves the rest of the System Configuration screens for now, mo

12-8 WS2000 Wireless Switch System Reference Guide 12.4 Configuring POS SubnetClarissa selects the first subnet from the LAN menu items in the left

WS2000 Use Cases 12-9 The Default Gateway is already set to the subnet address. This is the IP address to which the DHCP clients on this subnet wil

12-10 WS2000 Wireless Switch System Reference Guide After the Address Assignment Range is entered, Clarissa clicks Advanced DHCP Server.Clarissa ent

WS2000 Use Cases 12-11 12.6 Configuring the Cafe SubnetClarissa selects the third subnet in the LAN menu list under Network Configuration in the le

12-12 WS2000 Wireless Switch System Reference Guide Clarissa clicks the Ok button in the Advanced DHCP Server window, then on the Apply button in th

WS2000 Use Cases 12-13 If corporate had not paid their ISP for a static IP address for each store, she would have selected the This interface is a

2-10 WS2000 Wireless Switch System Reference Guide 2. Verify that Access Port 1 is shown in the Access Ports Adopted field to the right. If it is no

12-14 WS2000 Wireless Switch System Reference Guide After she makes this selection a new button appears, labelled “1 to Many Mappings”. She selects

WS2000 Use Cases 12-15 Clarissa clicks the Apply button to confirm that all attacks listed will be filtered.12.10 Configuring the Access PortsSo fa

12-16 WS2000 Wireless Switch System Reference Guide She does not change the supported rates—using the Set Rates button—but leaves them as they are.

WS2000 Use Cases 12-17 12.10.2 Naming the POS Access PortHaving specified the general Access Port defaults, Clarissa goes on to name and configure

12-18 WS2000 Wireless Switch System Reference Guide She clicks the Apply button to save her changes.12.10.4 Configuring the Cafe Access PortFinally,

WS2000 Use Cases 12-19 12.10.5 Associating the Access Ports to the WLANsNow Clarissa selects the APs/Radio item in the left menu. This screen indic

12-20 WS2000 Wireless Switch System Reference Guide different ESSID. Since the cafe is a public access WLAN, leaving this option on will make it eas

WS2000 Use Cases 12-21 Clarissa goes to the left menu and clicks the button to the left of the Cafe WLAN node. A menu item labeled “Cafe Security”

12-22 WS2000 Wireless Switch System Reference Guide Clarissa clicks the Apply button to confirm her choices.

WS2000 Use Cases 12-23 Clarissa clicks the + to the left of the Printer WLAN menu item and selects the Printer Security item. In the screen that di

Getting Started 2-11 Setting the Authentication MethodThe authentication method sets a challenge-response procedure for validating user credentials

12-24 WS2000 Wireless Switch System Reference Guide She clicks the Ok button to confirm the WEP key selections, then the Apply button to confirm the

WS2000 Use Cases 12-25 Clarissa then clicks the “+” to the left of the POS WLAN in the left menu and selects POS Security. In that screen, she sele

12-26 WS2000 Wireless Switch System Reference Guide She clicks the Ok button in the 802.1x-EAP configuration window. She then clicks the WPA-TKIP Se

WS2000 Use Cases 12-27 With this, Clarissa has finished configuring the basic WLAN configuration and the WLAN security. She clicks the Ok button in

12-28 WS2000 Wireless Switch System Reference Guide To set the subnet access for a pair of subnets, she clicks the square for traffic from one subne

WS2000 Use Cases 12-29 12.15 Configuring the ClientsClarissa has now finished configuring the switch. Next she configures the wired clients.Going t

12-30 WS2000 Wireless Switch System Reference Guide 12.16 Field Office Use Case12.16.1 A Field Office Example 12.16.1.1 BackgroundLeo is the network

WS2000 Use Cases 12-31 To keep things simple, he will define one subnet for the administration users, one subnet for the sales and marketing users,

12-32 WS2000 Wireless Switch System Reference Guide 192.168.0.1. He sets his laptop to have an IP address of 192.168.0.2 and a netmask of 255.255.25

WS2000 Use Cases 12-33 As soon as he logs in, the WS2000 asks him to set the password. He sets the administration password to something relatively

2-12 WS2000 Wireless Switch System Reference Guide Step 9: Test ConnectivityAt this point, the switch is set up to allow mobile units to access the

12-34 WS2000 Wireless Switch System Reference Guide Different countries have different regulations for the use of radio frequencies. Setting the loc

WS2000 Use Cases 12-35 AirBEAM® is a Symbol Technology product for the management of software on wireless devices. Leo does not have a copy of AirB

12-36 WS2000 Wireless Switch System Reference Guide This screen shows the subnets, their IP addresses, and the network interfaces (the 10/100BaseT p

WS2000 Use Cases 12-37 He also selects the option This interface is a DHCP Server. Choosing this DHCP option means that the switch will pick IP add

12-38 WS2000 Wireless Switch System Reference Guide The Domain Name field will be supplied to any DHCP clients that request it. Leo enters his compa

WS2000 Use Cases 12-39 Leo selects the Advanced DHCP Server button and follows the same procedures as he did for the engineering subnet. Leo clicks

12-40 WS2000 Wireless Switch System Reference Guide Again, Leo fills out the advanced DHCP screen as he did for the two previous subnets. Leo clicks

WS2000 Use Cases 12-41 He clicks Ok button in the address window, then the Apply button on the WAN window to save his changes.The next step is to s

12-42 WS2000 Wireless Switch System Reference Guide the pull-down menus to the right of each IP number. As he does so, a 1 to Many Mappings button a

WS2000 Use Cases 12-43 Leo examines the list and sees no reason to turn off any of the filters. He clicks the Apply button.The next step is to dete

LAN/Subnet Configuration3.1 Enabling Subnets for the LAN Interface. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

12-44 WS2000 Wireless Switch System Reference Guide Now that the WLANs are enabled, Leo needs to specify which Access Ports go with which WLANs.He s

WS2000 Use Cases 12-45 For the engineering WLAN, Leo selects the AP with MAC of 00:A0:F8:BB:FC:94 and makes sure that all WLAN check boxes are not

12-46 WS2000 Wireless Switch System Reference Guide In the Advanced section of the screen, the Disallow MU to MU Communications setting would keep m

WS2000 Use Cases 12-47 Leo also needs to configure the 802.1x EAP system and the WPA2 encryption. Leo clicks 802.1x EAP Configuration. In the windo

12-48 WS2000 Wireless Switch System Reference Guide qLeo clicks the Ok button to save the 802.1x EAP settings.Leo then clicks the WPA2-CCMP Setting

WS2000 Use Cases 12-49 Leo also selects Allow WPA/WPA2-TKIP clients in the section labelled WPA2-CCMP Mixed Mode. WPA-TKIP is an earlier version of

12-50 WS2000 Wireless Switch System Reference Guide All the Access Ports will be indoors, so he specifies Placement as Indoors. He sets the default

WS2000 Use Cases 12-51 He sets the channel at 1, and notes the number. Access Ports channels should be separated as much as practical to minimize i

12-52 WS2000 Wireless Switch System Reference Guide He clicks the Apply button to save his changes.Leo then selects AP2, the second engineering Acce

WS2000 Use Cases 12-53 Leo clicks Apply to save his changes.To avoid interference with the sales and marketing AP, Leo chooses channel 10 for the a

ContentsChapter 1: Product Overview1.1 WS2000 Wireless Switch System Reference Guide . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

3-2 WS2000 Wireless Switch System Reference Guide 3.1 Enabling Subnets for the LAN InterfaceSubnets are used to maximize the available network addre

12-54 WS2000 Wireless Switch System Reference Guide The Access Ports are now configured. The next step is to specify access levels between the subne

WS2000 Use Cases 12-55 Similarly, Leo restricts access from the marketing subnet to the administration subnet.Leo would also like to restrict traff

12-56 WS2000 Wireless Switch System Reference Guide Similarly, he restricts the marketing and administration subnets in their access to the WAN.Leo

WS2000 Use Cases 12-57 12.27 Configuring the VPNTo configure a VPN link between WS2000s, the following must be specified:• The subnets on each end

12-58 WS2000 Wireless Switch System Reference Guide Leo clicks the Add button to add a VPN tunnel.Now Leo specifies the network parameters for the t

WS2000 Use Cases 12-59 The Remote Subnet specifies the subnet, on the other WS2000, to which the engineering subnet will be connected. The Remote G

12-60 WS2000 Wireless Switch System Reference Guide The AH Authentication protocol is used between the two WS2000 switches to authorize initializati

WS2000 Use Cases 12-61 laptop to connect to the administration WLAN. He makes sure that laptops on each WLAN can connect to the WAN and to each oth

12-62 WS2000 Wireless Switch System Reference Guide

Syslog MessagesA.1 Informational Log Entries . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

LAN/Subnet Configuration 3-3 4. Click Apply to save changes. All “unapplied” changes are lost when the administrator moves to a new screen.The rest

A-2 WS2000 Wireless Switch System Reference Guide A.1 Informational Log EntriesSystem Component Debug Level Log Message802.1X Module LOG_INFO 8021x

A-3 Encryption Key Exchange ModuleLOG_INFO [Pairwise Transient Key] Unable to get free CC bufferEncryption Key Exchange ModuleLOG_INFO [Pairwise

A-4 WS2000 Wireless Switch System Reference Guide A.2 Notice Log EntriesWIPS module LOG_INFO “Sensor [MAC] is no longer responding, removed”WIPS mod

A-5 Encryption Key Exchange ModuleLOG_NOTICE [Pairwise Transient Key] Bad version [MAC_ADDR] mu->addr Encryption Key Exchange ModuleLOG_NOTICE

A-6 WS2000 Wireless Switch System Reference Guide A.3 Warning Log EntriesSystem Component Debug Level Log Message802.1X Module LOG_WARNING 8021x: M

A-7 Kerberos Proxy Module LOG_WARNING krb5: error [Number] in krb5_rd_req_decoded) retval Kerberos Proxy Module LOG_WARNING krb5: key generation

A-8 WS2000 Wireless Switch System Reference Guide RF Port Configuration Module LOG_WARNING Portal [MAC_ADDR] denied adoption in acl prtl_ptr->ad

A-9 A.4 Alert Log EntryA.5 Error-Level Log EntriesSystem Component Debug Level Log MessageNTP Client Module LOG_ALERT errno [Number] updating sys

A-10 WS2000 Wireless Switch System Reference Guide Address Lookup Table Module LOG_ERR altable: can't read cfg bss radio idx Address Lookup T

A-11 Address Lookup Table Module LOG_ERR cfg radio type [Number] not allowed rtype Address Lookup Table Module LOG_ERR rfport list is full Add

3-4 WS2000 Wireless Switch System Reference Guide 1. Change the Name of the subnet to use a descriptive name that indicates something about the subn

A-12 WS2000 Wireless Switch System Reference Guide NTP Client Module LOG_ERR ntp:socket bind error. errno=[Number] errno NTP Client Module LOG_ER

A-13 Rogue AP Detection Module LOG_ERR Unable to read watched_ssid from cfg Receive Packets Module LOG_ERR rx data frame of unexpected etherne

A-14 WS2000 Wireless Switch System Reference Guide SIP Module LOG_ERR SIP:Bye received with NULL call idSIP Module LOG_ERR SIP:Status message receiv

A-15 AP Revert LOG_ERR RF Port [MAC] no free rfpPort Configuration LOG_ERR Port Auto-neg Get failed for port [port idx]Port Configuration LOG_ERR

A-16 WS2000 Wireless Switch System Reference Guide IP Filter Module LOG_ERR [Function Name]:Could not get Global IP FIlter TableIP Filter Module LOG

A-17 IP Filter Module LOG_ERR Unable to allocate memory for iterator infoIP Filter Module LOG_ERR Could not get total entries from WLAN IP Filter

A-18 WS2000 Wireless Switch System Reference Guide IP Filter Module LOG_ERR Config GET/SET error in ccWlanIpFilterPolicyTableIP Filter Module LOG_ER

A-19 IP Filter Module LOG_ERR [Function Name]:Duplicate filter name in TRUNK IP Filter TableIP Filter Module LOG_ERR Config GET/SET error in ccWan

A-20 WS2000 Wireless Switch System Reference Guide IP Filter Module LOG_ERR Invalidation request rcvd for column[column number] in ccWanTrunkIpFilte

A-21 IP Filter Module LOG_ERR Config GET/SET error in ccIpFilterPolicyTableIP Filter Module LOG_ERR Config GET/SET error in ccIpFilterPolicyTableI

LAN/Subnet Configuration 3-5 3.2.1 The DHCP ConfigurationDHCP is a protocol that includes mechanisms for IP address allocation and delivery of host

A-22 WS2000 Wireless Switch System Reference Guide DynDNS module LOG_ERR ERROR while retrieving DynDNS MODEDynDNS module LOG_ERR ERROR adding Interf

A-23 A.6 Debug-Level Log EntriesSystem Component Debug Level Log Message802.1X Module LOG_DEBUG Deauthenticating MU [MAC_ADDR] mu_ptr->addr Ce

A-24 WS2000 Wireless Switch System Reference Guide NTP Client Module LOG_DEBUG rcvd ntp response from [IP_ADDR] sa.sin_addr.s_addr Encryption Key E

A-25 SIP Module LOG_DEBUG SIP:Ack received in invalid state for call id [identifier]SIP Module LOG_DEBUG SIP:Changing the state of the SIP session

A-26 WS2000 Wireless Switch System Reference Guide Port Configuration LOG_DEBUG Register value received for Port [idx] = [register value] Port Confi

A-27 A.7 Emergency Log EntriesIP Filter Module LOG_DEBUG Protocol mismatchIP Filter Module LOG_DEBUG direction mismatch[incoming/outgoing]IP Filte

A-28 WS2000 Wireless Switch System Reference Guide

IndexNumerics1 to 1 NAT . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .4-121 to Many NAT . . . . . . . . . . . . .

WS2000 Wireless Switch System Reference GuideIndex-2setting method . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .2-11setting up fo

Index-3Ffiles, sample configuration file . . . . . . . . . . . . . . . . . . . . . . . . .7-13filterscontent . . . . . . . . . . . . . . . . . . .

3-6 WS2000 Wireless Switch System Reference Guide 2. If Dynamic DNS services are needed on the subnet, check the box labeled Enable Dynamic DNS.Enab

WS2000 Wireless Switch System Reference GuideIndex-4entering . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .2-4logenab

Index-5operational status . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7-7remote IDtypes . . . . . . . . . . . . . . . . . . . . .

WS2000 Wireless Switch System Reference GuideIndex-6advanced settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .3-10allowing or den

Index-7creating tunnels . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .4-18FAQs . . . . . . . . . . . . . . . . . . . . . . . . . .

WS2000 Wireless Switch System Reference GuideIndex-8

MOTOROLA INC.1303 E. ALGONQUIN ROADSCHAUMBURG, IL 60196http://www.motorola.com72E-121350-01 Revision AFebruary 2009

LAN/Subnet Configuration 3-7 14.Use the Static Mappings table to associate static (or fixed) IP addresses with MAC addresses of specific wireless d

3-8 WS2000 Wireless Switch System Reference Guide 3.3.2 The Access Exception AreaIn the lower half of the screen, the access is controlled by specif

LAN/Subnet Configuration 3-9 • Specify a Name to identify the new access rule. For example, this could be the name of a particular application.• Se

3-10 WS2000 Wireless Switch System Reference Guide 3.4 Advanced Subnet Access SettingsThere can be situations in which the standard subnet access se

LAN/Subnet Configuration 3-11 7. Move rules to a higher or lower precedence by clicking the Move Up or Move Down buttons, as necessary.8. When you

TOC-2 WS2000 Wireless Switch System Reference Guide3.2.1 The DHCP Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

3-12 WS2000 Wireless Switch System Reference Guide • Src. Ports (Source Ports)—The source port range determines which ports the firewall rule applie

LAN/Subnet Configuration 3-13 To configure the bridge:1. Set the Priority for the bridge. Set the Priority as low as possible to force other device

3-14 WS2000 Wireless Switch System Reference Guide 3.6 Virtual LAN (VLAN) ConfigurationA Virtual Local Area Network or VLAN is a switched network th

LAN/Subnet Configuration 3-15 5. Enter a list of allowed VLANs between 1 and 4094 in the Allowed VLANs box. The VLANs in this list will be allowed

3-16 WS2000 Wireless Switch System Reference Guide TCP Transmission Control Protocol (TCP) is a set of rules used with Internet Protocol (IP) to se

LAN/Subnet Configuration 3-17 4. Select a Port from the pulldown menu for this IP Filtering rule to apply to. The default is All and will apply the

3-18 WS2000 Wireless Switch System Reference Guide 3.8 URL FilteringUse the URL Filtering screen to filter out access through HTTP to websites and s

LAN/Subnet Configuration 3-19 The URL Parameters screen contains four lists containing parameters used for URL filtering. There are four parameters

3-20 WS2000 Wireless Switch System Reference Guide 3.9 Port ConfigurationUse the Port Configuration screen to enable or disable each of the 6 LAN po

WAN Configuration4.1 Configuring the WAN Interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

TOC-35.3 Configuring Wireless LAN Security. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

4-2 WS2000 Wireless Switch System Reference Guide 4.1 Configuring the WAN InterfaceA wide area network (WAN) is a widely dispersed telecommunication

WAN Configuration 4-3 • The IP Address refers to the IP address that the outside world will use to address the WS2000 Wireless Switch.• Click the M

4-4 WS2000 Wireless Switch System Reference Guide 4. Check Keep Alive to instruct the switch to continue occasional communications over the WAN even

WAN Configuration 4-5 4.2 Configuring the WS2000 FirewallThe WS2000 Wireless Switch provides a secure firewall/Network Address Translation (NAT) so

4-6 WS2000 Wireless Switch System Reference Guide Enter a default timeout value (in seconds) for the switch to use as the timeout value when no matc

WAN Configuration 4-7 Click the Apply button to save changes made on this screen. 4.2.4 Enabling NetBIOS ALGUse the NetBIOS ALG feature to allow ho

4-8 WS2000 Wireless Switch System Reference Guide 3. Click Properties button. The Internet Protocol (TCP/IP) Properties dialog box opens4. Click the

WAN Configuration 4-9 4.3 Configuring Intrusion Prevention SystemIP networks are vulnerable to security breaches by attackers exploiting known bugs

4-10 WS2000 Wireless Switch System Reference Guide 2. To enable IPS, select the Enable IPS check box.3. To enable the different signature categories

WAN Configuration 4-11 5. Set the Protocol Anomaly Detection Parameters next. The following values have to be provided.The values entered for each

TOC-4 WS2000 Wireless Switch System Reference Guide6.1.5 Applet Timeout Specification . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

4-12 WS2000 Wireless Switch System Reference Guide 4.4 Configuring Network Address Translation (NAT)NAT provides the translation of an Internet Prot

WAN Configuration 4-13 4. If the NAT type is 1 to Many, the 1 to Many button in the adjacent Outbound Mappings field is active, allowing the admini

4-14 WS2000 Wireless Switch System Reference Guide 7. Click the Forward all unspecified ports to check box and then specify an IP address to enable

WAN Configuration 4-15 4.5.2 Creating User Defined RoutesThe User Defined Routes area of the screen allows the administrator to view, add or delete

4-16 WS2000 Wireless Switch System Reference Guide 1. Select the RIP Type from the pull-down menu to be one of the following values. 2. Select a rou

WAN Configuration 4-17 4.6 Configuring a Virtual Private Network (VPN)VPNs are IP-based networks that use encryption and tunneling to give users re

4-18 WS2000 Wireless Switch System Reference Guide Use the Auto Initiate Interval to set the interval when the status of all tunnels are checked. Th

WAN Configuration 4-19 3. Select the subnet that will be the local end of the tunnel from the Local Subnet menu. 4. Specify the IP address to use f

4-20 WS2000 Wireless Switch System Reference Guide 3. Select the authentication and anti-replay method you wish to use for the tunnel from the AH Au

WAN Configuration 4-21 8. Provide keys for both Inbound ESP Encryption Key and Outbound ESP Encryption Key. The length of the keys is mandated by t

TOC-57.13.2 Setting Up a Log Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

4-22 WS2000 Wireless Switch System Reference Guide 3. Forward secrecy is a key-establishment protocol that guarantees that the discovery of a sessio

WAN Configuration 4-23 9. If ESP with Authentication is selected for the ESP type, select the authentication algorithm to be used with ESP from the

4-24 WS2000 Wireless Switch System Reference Guide 3. Select the Operation Mode for IKE. The Phase I protocols of IKE are based on the ISAKMP identi

WAN Configuration 4-25 11.Specify a Key Lifetime, which is the number of seconds that the key is valid. At the end of the lifetime, the key is rene

4-26 WS2000 Wireless Switch System Reference Guide An allow outbound rule: For IKE, an allow inbound rule: These rules must be above (higher in pr

WAN Configuration 4-27 4.6.6.4 How do I specify which certificates to use from the WS2000 certificate manager to be used for an IKE policy?When gen

4-28 WS2000 Wireless Switch System Reference Guide 4.6.6.7 How can I setup the WS2000 switch to accept VPN tunnels from gateways that have a DHCP WA

WAN Configuration 4-29 4.7 Configuring Content FilteringContent filtering allows system administrators to block specific commands and URL extension

4-30 WS2000 Wireless Switch System Reference Guide 4. Specify the outbound FTP actions that should get blocked by checking the FTP action to block.

WAN Configuration 4-31 4.8 Configuring DynDNSThe WS2000 Wireless Switch provides support for using the DynDNS service. Dynamic DNS is a feature off

TOC-6 WS2000 Wireless Switch System Reference Guide11.6.1 Mesh Base Connections . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

4-32 WS2000 Wireless Switch System Reference Guide

Wireless Configuration5.1 Enabling Wireless LANs (WLANs) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

5-2 WS2000 Wireless Switch System Reference Guide 5.11 Wireless Intrusion Detection System. . . . . . . . . . . . . . . . . . . . . . . . . . . . .

Wireless Configuration 5-3 5.1 Enabling Wireless LANs (WLANs)The WS2000 Wireless Switch works in either a wired or wireless environment; however, t

5-4 WS2000 Wireless Switch System Reference Guide The screen also displays the following information:1. By default, the switch assigns consecutive E

Wireless Configuration 5-5 5.1.1.6 Hotspot Inactivity TimeoutEnter the duration of inactivity for a user after which the user is timed out from the

5-6 WS2000 Wireless Switch System Reference Guide 5.2 Configuring Wireless LANsThe Network Configuration --> Wireless window (covered in Enabling

Wireless Configuration 5-7 1. Check the Disallow MU to MU Communications box to enable a communication block between mobile units (MUs) using this

5-8 WS2000 Wireless Switch System Reference Guide 5.3.1 Selecting the Authentication MethodThe authentication method sets a challenge-response proce

Wireless Configuration 5-9 3. The administrator is required to specify the RADIUS Server Address of a primary RADIUS server for this type of authen

TOC-712.23 Adopting Access Ports. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

5-10 WS2000 Wireless Switch System Reference Guide 10.In the Max. Retries field, set the maximum number of retries for a client to successfully reau

Wireless Configuration 5-11 3. A realm name functions similar to a DNS domain name. In theory, the realm name is arbitrary; however, in practice, a

5-12 WS2000 Wireless Switch System Reference Guide WEP is available in two encryption modes: 40 bit (also called 64-bit) and 104 bit (also called 12

Wireless Configuration 5-13 2. To use WPA/WPA2-TKIP encryption with 802.1x EAP authentication or the No Authentication selection, click the WPA/WPA

5-14 WS2000 Wireless Switch System Reference Guide (CBC-MAC) method. Changing even one bit in a message produces a totally different result thus pro

Wireless Configuration 5-15 10.Click the Ok button to return to the WLAN security screen.11.Click the Apply button on the WLAN Security screen to s

5-16 WS2000 Wireless Switch System Reference Guide To Configure IP Filtering for the WLAN:1. Check the box marked Enable IP Filtering to turn on IP

Wireless Configuration 5-17 3. Each entry in the table specifies one or more MAC address to be used to match with a mobile unit’s MAC address that

5-18 WS2000 Wireless Switch System Reference Guide The switch creates a default name for a newly found switch consisting of “AP” and a unique number

Wireless Configuration 5-19 The following screen is displayed with the settings for the selected Access Port.3. From this screen, the administrator