1. Manuals
  2. Brands
  3. 3e Technologies International Manuals
  4. Wireless Access Point
  5. 3e-527A3
  6. User manual

3e Technologies International 3e-527A3 User Manual

Wireless access point – 8 port
Hide thumbs
Table of Contents

Quick Links

Rhein Tech Laboratories, Inc.
360 Herndon Parkway
Suite 1400
Herndon, VA 20170
http://www.rheintech.com
Appendix K:
User Manual
Please refer to the following pages.
Client:
3e Technologies Int'l
Model:
3e-527A3
Standards:
FCC 15.247 & RSS-210
ID's:
QVT-527A3/6780A-527A3
Report #:
2006146
Page 81 of 114
Table of Contents
loading

Related Manuals for 3e Technologies International 3e-527A3

Summary of Contents for 3e Technologies International 3e-527A3

  • Page 1 Rhein Tech Laboratories, Inc. Client: 3e Technologies Int’l 360 Herndon Parkway Model: 3e-527A3 Suite 1400 Standards: FCC 15.247 & RSS-210 Herndon, VA 20170 ID’s: QVT-527A3/6780A-527A3 http://www.rheintech.com Report #: 2006146 Appendix K: User Manual Please refer to the following pages. Page 81 of 114...
  • Page 2 ERRATA SHEET Changes to 29000152-001 Revision C Chapter 6, page 99, Paragraph titled “Radio Frequency Interference Requirements” The text currently reads: “This device has been tested and found to comply with the limits for a Class A Digital Device, pursuant to Part 15 of the Federal Communications Commission’s Rules and Regulations.” The text should read: “This device has been tested and found to comply with the limits for a Class B Digital Device, pursuant to Part 15 of the Federal Communications Commission’s Rules and Regulations.”...
  • Page 3 � Wireless Access Point – 8 Port User's Guide Model 3e–527A3 3e Technologies International 700 King Farm Blvd., Suite 600 Rockville, MD 20850 (301) 670-6779 www.3eti.com 29000152-001 B publ. 1003/06...
  • Page 4 This page intentionally left blank.
  • Page 5 3e Technologies International's Wireless Access Point – 8 Port User's Guide Model 3e–527A3...
  • Page 6 International. 3e Technologies International reserves the right to revise this documentation and to make changes in content from time to time without obligation on the part of 3e Technologies International to provide notification of such revision or change. 3e Technologies International provides this documentation without warranty, term or condition of any kind, either implied or expressed, including, but not limited to, the implied warranties, terms, or conditions of merchantability, satisfactory quality, and fitness for a particular purpose.
  • Page 7 Table of Contents SAFETY INFORMATION .................... vi Chapter 1: Introduction....................1 Basic Features ......................2 Wireless Basics......................3 802.11b ........................3 802.11a ........................3 802.11g........................3 802.11b/g Mixed......................3 802.11a Turbo......................4 Network Configuration ....................4 Access Point Configurations..................5 Possible AP Topologies..................5 Bridging ........................6 Default Configuration.....................6 Data Encryption and Security................6 SSID ...........................6 AES and 3DES......................7 MAC Address Filtering ..................7...
  • Page 8 Rogue AP Detection ....................34 Advanced........................35 Wireless Bridge......................35 Services Settings.......................36 DHCP Server ......................36 Subnet Roaming.....................37 SNMP Agent......................38 Admin User Management ..................40 List All Users ......................40 Add New User .......................41 User Password Policy ...................42 End User Authentication ..................43 General ........................43 User List ........................44 Add New User .......................45 Add Authenticated MAC ..................46 List Authenticated MAC ..................46...
  • Page 9 Virtual Server ......................77 Demilitarized Zone (DMZ) ..................78 Advanced........................79 Chapter 5: Wireless Bridge Configuration ..............81 Introduction ......................81 Wireless Bridge — General ..................82 Auto-forming Wireless Bridging ..............82 Manual Bridging ....................84 Monitoring ......................85 Wireless Bridge — Radio..................85 Wireless Bridge — Encryption................87 Wireless Bridge — MAC Address FIltering............88 Setting Up Bridging Type ..................89 Point-to-Point Bridge Configuration ..............89 Point-to-Point Bridging Setup Guide - Manual Mode........90...

  • Page 10: Safety Information

    SAFETY INFORMATION Please follow thes guidelines when installing and using the 3e–527A3 product. ! WARNING Warnings must be followed carefully to avoid bodily injury. ! CAUTION Cautions must be observed to avoid damage to your equipment. NOTE: Notes contain important information about this product. 29000152-0001 B...

  • Page 11: Chapter 1: Introduction

    3e–527A3 Wireless Access Point – 8 Port Chapter 1: Introduction Chapter 1: Introduction This manual covers the installation and operation of the 3e Technolo- gies International’s 3e–527A3 Wireless Access Point. The 3e–527A3 is a ruggedized access point/gateway/bridge which is intended for use in industrial and external environments.

  • Page 12: Basic Features

    3e–527A3 Wireless Access Point – 8 Port Chapter 1: Introduction Basic Features The 3e–527A3 is housed in a sturdy case which is not meant to be opened except by an authorized technician for maintenance or repair. If you wish to reset to factory settings, use the reset function available through the web-screen management module.

  • Page 13: Wireless Basics

    3e–527A3 Wireless Access Point – 8 Port Chapter 1: Introduction Wireless Basics Wireless networking uses electromagnetic radio frequency waves to transmit and receive data. Communication occurs by establishing radio links between the wireless access point and devices configured to be part of the WLAN.

  • Page 14: Network Configuration

    3e–527A3 Wireless Access Point – 8 Port Chapter 1: Introduction 802.11a Turbo 802.11a Turbo technology provides speed and throughput of more than double standard wireless LAN technologies in networking products such as PCs, access points, routers and PC cards. It is very helpful to users who require additional bandwidth (over standard WLAN technologies) that results in higher throughput necessary for a variety of functions such as: streaming media (video, DVD, MPEG), VoIP, etc., or for providing...

  • Page 15: Access Point Configurations

    3e–527A3 Wireless Access Point – 8 Port Chapter 1: Introduction Access Point Configurations When a 3e–527A3 is used as an access point, IP addresses for wire- less devices are typically assigned by the wired network’s DHCP server. The wired LAN’s DHCP server assigns addresses dynamically, and the AP virtually connects wireless users to the wired network.

  • Page 16: Default Configuration

    3e–527A3 Wireless Access Point – 8 Port Chapter 1: Introduction 3. The last and most prevalent use is multiple APs connected to a wired network and operating off that network’s DHCP server to provide a wider coverage area for wireless devices, enabling the devices to “roam”...

  • Page 17: Aes And 3Des

    3e–527A3 Wireless Access Point – 8 Port Chapter 1: Introduction AES and 3DES The Advanced Encryption Standard (AES) was selected by National Institute of Standards and Technology (NIST) in October 2000 as an up- grade from the previous DES standard. AES uses a 128-bit block cipher algorithm and encryption technique for protecting computerized infor- mation.

  • Page 18: Management

    3e–527A3 Wireless Access Point – 8 Port Chapter 1: Introduction The Crypto Officer initially installs and configures the 3e–527A3 after which the password MUST be changed from the default password. The ID and Password are case sensitive. Management After initial setup, maintenance of the system and programming of security functions are performed by personnel trained in the procedure using the embedded web-based management screens.
  • Page 19 3e–527A3 Wireless Access Point – 8 Port Chapter 1: Introduction 3e-527A3 Navigation Options Access Point/Bridge Mode Gateway/Bridge Mode System Configuration System Configuration General General Operating Mode Operating Mode Encrp Port Encrp Port Wireless Access Point Wireless Access Point General General...
  • Page 20 3e–527A3 Wireless Access Point – 8 Port Chapter 1: Introduction System Administration System Admnistration Email Notification Conf Email Notification Conf Configuration Button Configuration Button System Upgrade System Upgrade • Firmware Upgrade • Firmware Upgrade • Local Configuration Upgrade • Local Configuration Upgrade •...

  • Page 21: Preparation For Use

    Chapter 2: Hardware Installation Chapter 2: Hardware installation Preparation for Use The 3e Technologies International's 3e–527A3 Wireless Access Point requires physical mounting and installation on the site, following a pre- scribed placement design to ensure optimum operation and roaming. FCC Regulations require that the 3e–527A3 be professionally in- stalled by an installer certified by the National Association of Radio and Telecommunications Engineers or equivalent institution.

  • Page 22: Minimum System And Component Requirements

    3e–527A3 Wireless Access Point – 8 Port Chapter 2: Hardware Installaton It is intended that the user not open the unit. Any maintenance re- quired is limited to the external enclosure surface, cable connections, and to the management software (as described in chapter three through five) only.

  • Page 23: Earth Ground Connection

    3e–527A3 Wireless Access Point – 8 Port Chapter 2: Hardware Installation A MGMT Port is designed for use during initial configuration only. This uses an RJ45 cable to connect the 3e–527A3 to a laptop. The ENCRP port is a dedicated Ethernet port used for connecting to the Ethernet port of a DSL modem or any device that requires layer en- cryption.

  • Page 24: The Indicator Lights

    3e–527A3 Wireless Access Point – 8 Port Chapter 2: Hardware Installaton The Indicator Lights The top panel of the 3e–527A3 contains a set of indicator lights (Light Emitting Diodes or LEDs) that help describe the state of various network- ing and connection operations. Detail of LEDs on the face of the 3e–527A3 Description Power...

  • Page 25: Preliminary Configuration Steps

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Chapter 3: Access Point Configuration Introduction The 3e–527A3 comes with the capability to be configured as an ac- cess point. As it incorporates two separate 802.11 wireless cards, one for configuring a local WLAN and one for use in bridging, it can also be configured for bridging, either with access point or gateway configuration on the WLAN side.

  • Page 26: Initial Setup Using The "Local" Port

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Initial Setup using the “Local” Port Plug one end of an RJ-45 Ethernet cable to the LAN port of the 3e– 527A3 (see page 11) and the other end to an Ethernet port on your lap- top.

  • Page 27: Login

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Login On your computer, pull up a browser window and put the de- fault URL for the 3e–527A3 Local LAN in the address line. (https:// 192.168.15.1) You will be asked for your User Name and Password. The default is "CryptoOfficer"...

  • Page 28: System Configuration

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration System Configuration General You will immediately be directed to the System Configuration — General screen for the 3e–527A3 access point. This screen lists the firmware version number for your 3e–527A3 and allows you to set the Host Name and Domain Name as well as establish system date and time.

  • Page 29: Operating Mode

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Operating Mode This screen allows you to set the operating mode to either Wireless Access Point/Bridge or Gateway/Bridge mode. You only need to visit this page only if you will be changing from Access Point to Gateway mode, if you want to change your submode to IPv6, or if you want to configure the wireless cards.

  • Page 30: Configure Wireless Cards

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Configure Wireless Cards The factory default for the two wireless cards are: • 802.11b/g for the AP • 802.11a/TurboA for the Bridge If you want to swap the cards and make the 802.11a/TurboA card for the AP and the 802.11b/g card for the Bridge.
  • Page 31 3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Click the entry on the left hand navigation panel for System Configu- ration — WAN. This directs you to the System Configuration — WAN screen. If not using DHCP to get an IP address, input the static IP information that the access point requires in order to be managed from the wired LAN.
  • Page 32 3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Click the entry on the left hand navigation panel for System Configu- ration — LAN. This directs you to the System Configuration — LAN screen. This sets up the default numbers for the four octets for a possible pri- vate LAN function for the access point.

  • Page 33: Encrp Port

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Encrp Port Click the entry on the left hand navigation panel for System Con- figuration — Encrp Port. This directs you to the System Configuration — Encrp Port screen. You can set the link speed and duplex for the encrp port in the Encrp Link field.

  • Page 34: Static Aes Key

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Static AES Key The Advanced Encryption Standard (AES) uses a 128-bit block cipher algorithm and encryption technique for protecting computerized infor- mation. With the ability to use even larger 192-bit and 256-bit keys, if desired, it offers higher security against brute-force attacks than the older 56-bit DES keys.

  • Page 35: Static 3Des Key

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Static 3DES Key To use 3DES, enter a 192-bit key as 48 hexadecimal digit (0-9, a-f, or A-F). The Key Generator button automatically generates a randomized key of the appropriate length. This key is initially shown in plain text so the user has the opportunity to copy the key.

  • Page 36: Wireless Access Point Configuration

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Wireless Access Point Configuration General Wireless Setup allows your computer’s PC Card to communicate with the access point. Once you have completed wireless access point configu- ration, you can complete the rest of the configuration wirelessly unless you will be employing the FIPS 140-2 secure mode, assuming that you have installed and configured a wireless PC card on your computer.
  • Page 37 3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Select the wireless mode from the drop-down list. You can choose from the following options: • 802.11b • 802.11g • 802.11b/g Mixed You can assign a channel number to the AP (if necessary) and modify the Tx Pwr Mode.
  • Page 38 3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Tx Pwr Mode and Fixed Pwr Level: The Tx Power Mode defaults to Auto, giving the largest range of radio transmission available under nor- mal conditions. As an option, the AP's broadcast range can be limited by setting the Tx Power Mode to Fixed and choosing from 1-8 for Fixed Pwr Level (1 being the shortest distance.) Finally, if you want to prevent any radio frequency transmission, set Tx Pwr Mode to Off.

  • Page 39: Security

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Security The Wireless Access Point — Security screen displays a default fac- tory setting of AES encryption, but the encryption key is not set and it will not communicate to any clients unless the encryption is set by the CryptoOfficer.

  • Page 40: Static 3Des Key

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Static 3DES Key To use 3DES, enter a 192-bit key as 48 hexadecimal digit (0-9, a-f, or A-F). The Key Generator button automatically generates a randomized key of the appropriate length. This key is initially shown in plain text so the user has the opportunity to copy the key.

  • Page 41: Dynamic Key Exchange

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Dynamic Key Exchange Dynamic key management requires the installation of the 3e-030 Security Server software which resides on a self-contained workstation connected to the 3e–527A3 over the WAN port. The Security Server soft- ware configuration includes: obtaining a root certificate from a Certificate Authority (CA) like Microsoft;...

  • Page 42: Fips 802.11I

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration FIPS 802.11i If you wish to use FIPS 802.11i on the 3e–527A3, enable either Pre- shared Key Settings or 802.1x Settings. If you are a SOHO user, selecting pre-shared key means that you don’t have the expense of installing a Radius Server.

  • Page 43: Mac Address Filtering

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration MAC Address Filtering The Wireless Access Point — MAC Address Filtering screen is used to set up MAC address filtering for the 3e–527A3 device. The factory de- fault for MAC Address filtering is Disabled. If you enable MAC Address filtering, you should also set the toggle for Filter Type.

  • Page 44: Rogue Ap Detection

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Rogue AP Detection The Wireless Access Point — Rogue AP Detection screen allows the network administrator to set up rogue AP detection. Enable rogue AP detection and enter the MAC Address of each AP in the network that you want the AP being configured to accept as a trusted AP.

  • Page 45: Wireless Bridge

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Advanced The Wireless Access Point — Advanced screen allows you to enable or disable load balancing and publicly secure packet forwarding. Load balancing is disabled by default. The load balancing feature bal- ances the wireless clients between APs.

  • Page 46: Services Settings

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Services Settings DHCP Server The Service Settings — DHCP Server screen is used for configur- ing the DHCP server function accessible from the Local LAN port. The default factory setting for the DHCP server function is enabled. You can disable the DHCP server function, if you wish, but it is not recommended.

  • Page 47: Subnet Roaming

    Chapter 3: Access Point Configuration Subnet Roaming The 3e-527A3 supports subnet roaming with 3eTI's subnet roaming coor- dinator server installed. Subnet roaming occurs when a user roams to an access point that is connected to a different subnet than its home subnet.

  • Page 48: Snmp Agent

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration SNMP Agent The Service Settings — SNMP Agent screen allows you to set up an SNMP Agent. The agent is a software module that collects and stores management information for use in a network management system. The 3e–527A3's integrated SNMP agent software module translates the de- vice’s management information into a common form for interpretation by the SNMP Manager, which usually resides on a network administrator’s...
  • Page 49 3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration The SNMP configuration consists of several fields, which are ex- plained below: • Community –The Community field for Get (Read Only), Set (Read & Write), and Trap is simply the SNMP terminology for “password”...

  • Page 50: Admin User Management

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Admin User Management List All Users The Admin User Management — List All Users screen lists the Crypto Officer and administrator accounts configured for the unit. You can edit or delete users from this screen. If you click on Edit, the Admin User Management —...

  • Page 51: Add New User

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Add New User The Admin User Management — Add New User screen allows you to add new Administrators and CryptoOfficers, assigning and confirming the password. Administrators can view the system but this role has limited access to change settings.

  • Page 52: User Password Policy

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration User Password Policy The Admin User Management — User Password Policy screen is always enabled. The definition of a complex password is a password that contains characters from all of the following 4 groups and at least 2 of each group: uppercase letters, lowercase letters, numerals, and symbols found on the keyboard.

  • Page 53: End User Authentication

    Chapter 3: Access Point Configuration End User Authentication In the 3e-527A3, all end users (wireless and wired), may require an account in order to have access to the Internet. Each end user is required to input their user name and password to authenticate with the system.

  • Page 54: User List

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration User List The End User Authentication — User List screen lists all end user information. The CryptoOfficer can edit, delete, and unlock users from this screen. If you click on Edit, the End User Authentication — Edit User screen appears.

  • Page 55: Add New User

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Add New User The End User Authentication — Add New User screen allows you to add new end users, assigning and confirming the password. Administrators can view the system but this role has limited access to change settings.

  • Page 56: Add Authenticated Mac

    8-port switch. We also recommend that you not at- tach servers and other un-trusted PCs on the same 8-port switch on the 3e-527A3. List Authenticated MAC This screen provides a list of all of the authenticated MAC addresses.

  • Page 57: System Status

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Monitoring/Reports This section gives you a variety of lists and status reports. Most of these are self-explanatory. System Status The Monitoring/Report — System Status screen displays the status of the 3e–527A3 device, the network interface, and the routing table.

  • Page 58: Bridging Status

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Bridging Status The Monitoring/Report — Bridging Status screen displays the Ether- net Port STP status, Encryp Port STP status, Wireless Port STP status, and Wireless Bridging information. 29000152-001 B...

  • Page 59: Bridge Site Map

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Bridge Site Map The Bridge Site Map shows the spanning tree network topology of both wired and wireless nodes connected to the network. The root STP node is always on top and the nodes of the hierarchy are displayed below it.

  • Page 60: Wireless Clients

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Wireless Clients The Monitoring/Report — Wireless Clients screen displays the MAC Address of all wireless clients and their signal strength and transmit rate. The screen shown here emulates the FIPS 140-2 setup and contains a col- umn for EMCON response.

  • Page 61: Adjacent Ap List

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Once the transmit power is re-enabled and clients re-associate to the AP, EMCON information is maintained for them. If a new client that wasn't associated previously associates with the AP after the EMCON mode, its EMCON status appears as "-", which indicates the status record is not applicable.

  • Page 62: Dhcp Client List

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration DHCP Client List The Monitoring/Report — DHCP Client List screen displays all clients currently connected to the 3e–527A3 via DHCP server, including their hostnames, IP addresses, and MAC Addresses. The DHCP Client list constantly collects entries.

  • Page 63: Web Access Log

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Web Access Log The Web Access Log displays system facility messages for any con- figuration changes via the web GUI. Along with the old value and new value, the when/who/what changes are also recorded. For security reasons, some sensitive data may not be recorded (for example, the en- cryption key) or may not be completely recorded (for example, the au- thenticated MAC).

  • Page 64: Network Activity

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Network Activity The Network Activity Log keeps a detailed log of all activities on the network which can be useful to the network administration staff. The Network Activities log will continue to accumulate listings and rotates when the log reaches the defined maximum size.

  • Page 65: Auditing

    For audit events resulting from actions of identified users, the 3e-527A3 shall be able to associate each auditable event with the identity of the user that caused the event. The 3e-527A3 shall be able to include or exclude auditable events from the set of audited events based on object identity, user identity, subject identity, host identity, and event type.

  • Page 66: Report Query

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Report Query The Auditing—Report Query screen allows you to query on report based on start time, end time, MAC address, or unique record IDs. Configuration The Auditing—Configuration screen is used to configure the auditing settings.
  • Page 67 3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Event Type Description Audit Log Configuration Modified Any modification to the audit log configuration (enable/disable, recorded event types, etc) will trig- ger the creation of an audit record. Key Transfer Error Any error detected during the dynamic key exchange, either to...

  • Page 68: System Administration

    If your email server does not support SSL (Secure Socket Layer) then disable SSL on the 3e-527A3. You may also test your email setup us- ing the test feature on this screen.

  • Page 69: Configuration-Button

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Configuration-Button The System Administration—Configuration Button screen is used in conjunction with the physical Configuration/RESET button which is ac- cessible from the outside of the 3e–527A3 unit. The Configuration/RESET button is located directly under the number “1”...
  • Page 70 3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration To use the Configuration/RESET button push the button for two seconds. After two seconds the WLAN2 and WLANSS LEDs are turned off. These two LEDs can then be used as input indicators. The procedure to enter the password is: Example: 11111111 Push the Configuration/RESET button once (input is acknowl-...

  • Page 71: System Upgrade

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration System Upgrade The System Administration — System Upgrade screen gives you the ability to upload updates to the 3e–527A3 device’s firmware as they be- come available. When a new upgrade file becomes available, you can do a firmware upgrade from the Firmware Upgrade window.

  • Page 72: Local Configuration Upgrade

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Local Configuration Upgrade On the System Administration — System Upgrade screen, click on the Local Configuration Upgrade tab to upload and download configura- tion files to access points connected to the network. To upload a configuration file, select the file using the browse but- ton and enter the passphrase for that file.
  • Page 73 3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration The random configuration feature is intended to reduce the effort to generate new keys for the system and to create a new password for the CryptoOfficer role that is performing this operation. When the generate button is pushed, the following parameters are randomized: •...

  • Page 74: Remote Configuration Upgrade

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Remote Configuration Upgrade On the System Administration — System Upgrade screen, click on the Remote Configuration Upgrade tab to upload and download config- uration files to access points in remote locations which are not configured. This remote configuration upgrade feature allows you to selectively transfer a configuration file to other APs.
  • Page 75 3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration The random configuration file is used to update the bridging SSID and bridging encryption on other devices using the existing bridging link. If the bridging key or the bridging SSID is changed on the normal configuration screen, then the bridging link to the other devices will be terminated, and the configuration can not be updated.

  • Page 76: Factory Default

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration You have the option to configure the second byte of the IP address to limit the range in which the IP addresses are distributed. For example, if your network already uses the 10.0.0.0 network address for other devices, you can limit the auto configuration to an upper range of 10.128.0.0 and the IP addresses will start from that number.

  • Page 77: Remote Logging

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Remote Logging The System Administration —Remote Logging screen allows you to forward the syslog data from each machine to a central remote logging server. In the 3e–527A3, this function uses the syslogd daemon. If you en- able Remote Logging, input a System Log Server IP Address and System Log Server Port.

  • Page 78: Utilities

    3e–527A3 Wireless Access Point – 8 Port Chapter 3: Access Point Configuration Utilities The System Administration — Utilities screen gives you ready access to two useful utilities: Ping and Traceroute. Simply enter the IP Address or hostname you wish to ping or traceroute and click either the Ping or Traceroute button, as appropriate.

  • Page 79: Chapter 4: Gateway Configuration

    3e–527A3 Wireless Access Point – 8 Port Chapter 4: Gateway Configuration Chapter 4: Gateway Configuration Introduction Chapter 3 covered the default configuration of the 3e–527A3 Wireless Access Point as an access point, for use as part of a host wired network. This chapter covers configuration as a gateway.
  • Page 80 3e–527A3 Wireless Access Point – 8 Port Chapter 4: Gateway Configuration A comparison of gateway and access point setup for the 3e–527A3 ������� ���� ������ ����� ���� �������� ������� �������� ������� ������������ ������������ ���� ������ ���� ������ ������������ ������������ ������������ ����...

  • Page 81: Configuring In Gateway Mode

    3e–527A3 Wireless Access Point – 8 Port Chapter 4: Gateway Configuration Configuring in Gateway Mode To configure the 3e–527A3 in gateway mode, complete the following steps. 1. Login on to the 3e–527A3 (see Chapter 3, page 21). 2. Using the navigation bar to the left, navigate to the System Con- figuration —...

  • Page 82: Main Ip Setting

    3e–527A3 Wireless Access Point – 8 Port Chapter 4: Gateway Configuration In Gateway mode, the System Configuration–WAN screen has two tabs: Main IP Setting and IP Aliasing. Main IP Setting The Main IP Setting screen allows you to set Link Speed and Duplex of the WAN port.

  • Page 83: Ip Aliasing

    3e–527A3 Wireless Access Point – 8 Port Chapter 4: Gateway Configuration IP Aliasing You can add up to ten additional IP aliases on the WAN port. The IP aliasing entries can be used by the virtual server to map a public IP address to a private IP address.
  • Page 84 3e–527A3 Wireless Access Point – 8 Port Chapter 4: Gateway Configuration Click the entry on the left hand navigation panel for System Configu- ration — LAN. This directs you to the System Configuration — LAN screen. This sets up the default numbers for the four octets for a possible pri- vate LAN function for the access point.

  • Page 85: Content Filtering

    3e–527A3 Wireless Access Point – 8 Port Chapter 4: Gateway Configuration Security Click the entry on the left hand navigation panel for Wireless Access Point — Security. This directs you to the Wireless Access Point — Secu- rity screen. The default factory setting for the 3e–527A3 in gateway mode is no encryption but for security reasons it will not communicate to any clients unless the encryption is set by the CryptoOfficer.

  • Page 86: Port Filtering

    3e–527A3 Wireless Access Point – 8 Port Chapter 4: Gateway Configuration IP Filtering Click the entry on the left hand navigation panel for Firewall — IP Filtering. The IP Filtering screen blocks certain IPs on the Private LAN from ac- cessing your Internet connection.

  • Page 87: Virtual Server

    3e–527A3 Wireless Access Point – 8 Port Chapter 4: Gateway Configuration Virtual Server Click the entry on the left hand navigation panel for Firewall — Vir- tual Server. In order to protect the Private Network, the built-in NAT firewall filters out traffic to the private network. Since all clients on the Private Network are normally not visible to outside users, the virtual server func- tion allows some clients on the Private Network to be accessed by outside users by configuring the application mapping function offered on this...

  • Page 88: Demilitarized Zone (Dmz)

    3e–527A3 Wireless Access Point – 8 Port Chapter 4: Gateway Configuration It is recommend that IP addresses of virtual server computers hosted on the Private Network be manually (statically) assigned to coincide with a static server mapping to that specific IP address. Virtual servers should not rely on the dynamic IP assignment of the DHCP server function which could create unmapped IP address assignments.

  • Page 89: Advanced

    3e–527A3 Wireless Access Point – 8 Port Chapter 4: Gateway Configuration Advanced Click the entry on the left hand navigation panel for Firewall — Ad- vanced. As advanced firewall functions, you can enable/disable • Block Ping to WAN • Web-based management from WAN port •...
  • Page 90 3e–527A3 Wireless Access Point – 8 Port Chapter 4: Gateway Configuration This page intentionally left blank. 29000152-001 B...

  • Page 91: Chapter 5: Wireless Bridge Configuration

    3e–527A3 Wireless Access Point – 8 Port Chapter 5: Wireless Bridge Configuration Chapter 5: Wireless Bridge Configuration Introduction In the 3e–527A3, wireless bridging uses a second WLAN card to set up an independent wireless bridge connection. Since wireless bridging provides a mechanism for APs to collaborate, it is possible to extend the basic service set (BSS) of a standalone AP and to connect two separate LANs without installing any cabling.

  • Page 92: Wireless Bridge — General

    3e–527A3 Wireless Access Point – 8 Port Chapter 5: Wireless Bridge Configuration Wireless Bridge — General The Wireless Bridge — General screen contains wireless bridging information including the channel number, Tx rate, Tx power, spanning tree protocol (802.1d) enable/disable, and remote AP's BSSID. This page is important in setting up your bridge configuration.
  • Page 93 3e–527A3 Wireless Access Point – 8 Port Chapter 5: Wireless Bridge Configuration AUTO BRIDGING GENERAL SETTINGS OPTIONS Bridging Mode Auto Bridging auto bridging selected SSID numbers or letters Can be any set of letters and numbers assigned by the network adminis- trator.

  • Page 94: Manual Bridging

    3e–527A3 Wireless Access Point – 8 Port Chapter 5: Wireless Bridge Configuration Manual Bridging When the wireless bridge is in manual bridging mode, you can manu- ally select a signal strength LED MAC and enable or disable spanning tree protocol. You can also delete remote AP's MAC addresses. MANUAL BRIDGING GENERAL SETTINGS OPTIONS Bridging Manual Bridging...

  • Page 95: Monitoring

    3e–527A3 Wireless Access Point – 8 Port Chapter 5: Wireless Bridge Configuration Monitoring In the upper right-hand corner of the Wireless Bridge — General screen there is a button called Monitoring. f you click on this button, a pop-up window will appear (WDS Information). If you select En- able refresh, you can set the bridge refresh interval from 5 seconds to 30 minutes.
  • Page 96 3e–527A3 Wireless Access Point – 8 Port Chapter 5: Wireless Bridge Configuration Radio Settings Wireless Mode 802.11a Sets the wireless mode for the wireless bridge. 802.11a Turbo Tx Rate 802.11a AUTO, When set to AUTO, the card attempts to select the 6, 9, 12, 18, 24, 36, 48, 54 optimal rate for the channel.

  • Page 97: Wireless Bridge — Encryption

    3e–527A3 Wireless Access Point – 8 Port Chapter 5: Wireless Bridge Configuration Wireless Bridge — Encryption The Wireless Bridge — Encryption screen is used to configure static encryption keys for the wireless bridge. This is an important page to set up to ensure that your bridge is working correctly.

  • Page 98: Wireless Bridge — Mac Address Filtering

    3e–527A3 Wireless Access Point – 8 Port Chapter 5: Wireless Bridge Configuration Wireless Bridge — MAC Address FIltering The Wireless Bridge — MAC Address Filtering screen functions just like the AP MAC Address Filter (see page 36) but it is only used in auto bridging mode and only controls access to the wireless bridge network.

  • Page 99: Setting Up Bridging Type

    3e–527A3 Wireless Access Point – 8 Port Chapter 5: Wireless Bridge Configuration Setting Up Bridging Type Point-to-Point Bridge Configuration A point-to-point link is a direct connection between two, and only two, locations or nodes. Because the bridge function uses a separate WLAN card for bridging, you can also set up WLANs on the separate AP WLAN card.

  • Page 100: Point-To-Point Bridging Setup Guide - Manual Mode

    3e–527A3 Wireless Access Point – 8 Port Chapter 5: Wireless Bridge Configuration Point-to-Point Bridging Setup Guide - Manual Mode Direction Bridge 1 Bridge 2 Wireless Bridge — General (Manual Bridging Mode) Bridging Mode manual briding selected manual bridging selected Signal Strength LED MAC Not Assigned (select from Not Assigned (select from drop-down list)
  • Page 101 3e–527A3 Wireless Access Point – 8 Port Chapter 5: Wireless Bridge Configuration The following sequence walks you through the setup of bridge 1. Bridge 2 would duplicate this procedure, with the BSSID of bridge 2 be- ing the MAC address of bridge 1 and vice versa. Navigate to the Wireless Bridge —...
  • Page 102 3e–527A3 Wireless Access Point – 8 Port Chapter 5: Wireless Bridge Configuration Next go to the Wireless Bridge — General screen. Select either manual or auto bridging. If you choose Manual Bridging then you will have to set Spanning Tree Protocol to Enable unless you are sure that there is no chance of a loop.
  • Page 103 3e–527A3 Wireless Access Point – 8 Port Chapter 5: Wireless Bridge Configuration wireless bridge will be indicated on the Signal Strength LED located on the front of the case. Next, navigate to the Wireless Bridge — Encryption screen. Select the appropriate key type and length and the key value. The encryption key value and type for Bridge 1 must be the same as for Bridge 2.

  • Page 104: Point-To-Multipoint Bridge Configuration

    3e–527A3 Wireless Access Point – 8 Port Chapter 5: Wireless Bridge Configuration Point-to-Multipoint Bridge Configuration A point-to-multipoint configuration allows you to set up three or more 3e–527A3 access points in bridging mode and accomplish bridging between 3 or more locations wirelessly. For the three bridges that are to be linked to communicate properly, they have to be set up with compatible commands in their setup screens.

  • Page 105: Point-To-Multipoint Bridging Setup Guide - Manual Mode

    3e–527A3 Wireless Access Point – 8 Port Chapter 5: Wireless Bridge Configuration Point-to-Multipoint Bridging Setup Guide - Manual Mode Direction Bridge 1 Bridge 2 ~ n Wireless Bridge — Radio Wirelss Mode 802.11a 802.11a Tx Rate AUTO AUTO Channel No. Same as Bridge 2~n Same as Bridge 1 Tx Power Mode...

  • Page 106: Repeater Bridge Configuration

    3e–527A3 Wireless Access Point – 8 Port Chapter 5: Wireless Bridge Configuration The above recommended setup requires only Bridge 1 to be set in point-to-multipoint mode. It is possible to set all bridges in point-to- multipoint mode, in which case , each bridge would have to contain the BSSID for each of the other bridges and Spanning Tree Protocol must be Enabled.

  • Page 107: Repeater Bridging Setup Guide - Auto Mode

    3e–527A3 Wireless Access Point – 8 Port Chapter 5: Wireless Bridge Configuration Repeater Bridging Setup Guide - Auto Mode Direction Bridge 1 Bridge 2 Bridge 3 Wireless Bridge — Radio Wireless Mode 802.11a 802.11a 802.11a Tx Rate AUTO AUTO AUTO Channel Same as Bridge 2 Same as Bridge 1...
  • Page 108 3e–527A3 Wireless Access Point – 8 Port Chapter 5: Wireless Bridge Configuration This page intentionally left blank. 29000152-001 B...

  • Page 109: Radio Frequency Interference Requirements

    3e–527A3 Wireless Access Point – 8 Port Chapter 6: Technical Support Chapter 6: Technical Support Manufacturer’s Statement The 3e–527A3 is provided with warranty. It is not desired or expected that the user open the device. If malfunction is experienced and all exter- nal causes are eliminated, the user should return the unit to the manufac- turer and replace it with a functioning unit.
  • Page 110 3e–527A3 Wireless Access Point – 8 Port Chapter 6: Technical Support This page intentionally left blank. 29000152-001 B...
  • Page 111 3e–527A3 Wireless Access Point – 8 Port Glossary Glossary 3DES Also referred to as Triple DES, a mode of the DES encryption algorithm that encrypts data three times. 802.11 802.11 refers to a family of specifications developed by the IEEE for wireless LAN technol- ogy.
  • Page 112 3e–527A3 Wireless Access Point – 8 Port Glossary A handheld device. SNMP Simple Network Management Protocol SSID A Network ID unique to a network. Only clients and access points that share the same SSID are able to communicate with each other. This string is case-sensitive. Wireless LANs offer several security options, but increasing the security also means increasing the time spent managing the system.

Table of Contents