SENAO NOA-3570 User Manual

Outdoor access point
Table of Contents

Advertisement

Quick Links

NOA-3570
Outdoor Access Point
User's Guide
Version 3.50
12/2005

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the NOA-3570 and is the answer not in the manual?

Questions and answers

Summary of Contents for SENAO NOA-3570

  • Page 1: Customer Support

    NOA-3570 Outdoor Access Point User’s Guide Version 3.50 12/2005...
  • Page 2 Certifications 1 Select the certification you wish to view from this page.
  • Page 3 Interference Statements and Warnings FCC Statement This device complies with Part 15 of FCC rules. Operation is subject to the following two conditions: • This device may not cause harmful interference. • This device must accept any interference received, including interference that may cause undesired operations.
  • Page 4: Table Of Contents

    IMPORTANT NOTE: FCC Radiation Exposure Statement: This equipment complies with FCC radiation exposure limits set forth for an uncontrolled environment. This equipment should be installed and operated with minimum distance 20cm between the radiator & your body. This transmitter must not be co-located or operating in conjunction with any other antenna or transmitter.
  • Page 5: Safety Warnings

    NOA-3570 User’s Guide Safety Warnings For your safety, be sure to read and follow all warning notices and instructions. • Do NOT open the device or unit. Opening or removing covers can expose you to dangerous high voltage points or other risks. ONLY qualified service personnel can service the device.
  • Page 6: Table Of Contents

    List of Figures ......................19 List of Tables ......................23 Preface ........................27 Chapter 1 Getting to Know Your NOA-3570 ................29 1.1 Introducing the NOA-3570 .................29 1.2 NOA-3570 Features ...................29 1.3 Applications for the NOA-3570 ................33 1.3.1 Access Point .....................33 1.3.2 AP + Bridge ....................34...
  • Page 7 5.2.1 Encryption ....................55 5.2.2 Authentication ...................55 5.2.3 Restricted Access ..................56 5.2.4 Hide NOA-3570 Identity ................56 5.2.5 Configuring Wireless LAN on the NOA-3570 ..........56 5.3 Spanning Tree Protocol (STP) ................57 5.3.1 Rapid STP ....................57 5.3.2 STP Terminology ..................57 5.3.3 How STP Works ..................58 5.3.4 STP Port States ..................58...
  • Page 8 NOA-3570 User’s Guide Chapter 6 Internal RADIUS Server ..................81 6.1 Internal RADIUS Overview .................81 6.2 Internal RADIUS Server Setting .................82 6.3 Trusted AP Overview ..................84 6.4 Configuring Trusted AP ..................85 6.5 Trusted Users Overview ..................86 6.6 Configuring Trusted Users .................86 Chapter 7 VLAN ........................
  • Page 9 NOA-3570 User’s Guide Chapter 11 Maintenance ......................119 11.1 Maintenance Overview ...................119 11.2 System Status Screen ..................119 11.2.1 System Statistics ...................120 11.3 Association List ....................121 11.4 Channel Usage ....................122 11.5 F/W Upload Screen ..................123 11.6 Configuration Screen ..................126 11.6.1 Backup Configuration ................127 11.6.2 Restore Configuration ................128...
  • Page 10 NOA-3570 User’s Guide Chapter 16 VLAN Setup ......................151 16.1 VLAN Setup ....................151 Chapter 17 SNMP Configuration .................... 153 17.1 About SNMP ....................153 17.2 Supported MIBs ....................154 17.3 SNMP Configuration ..................154 17.4 SNMP Traps ....................155 Chapter 18 System Security ....................157 18.1 System Security .....................157...
  • Page 11 21.2 Time and Date Setting ..................182 21.2.1 Resetting the Time ................183 Chapter 22 Troubleshooting ....................185 22.1 Problems Starting Up the NOA-3570 .............185 22.2 Problems with Console Port Access ..............185 22.3 Problems with the Ethernet Interface .............186 22.4 Problems with the Password ................187 22.5 Problems with Telnet ..................187...
  • Page 12 NOA-3570 User’s Guide Appendix I Command Interpreter................... 245 Appendix J Brute-Force Password Guessing Protection............. 247 Appendix K Log Descriptions....................249 Index........................253 Table of Contents...
  • Page 13 NOA-3570 User’s Guide Table of Contents...
  • Page 14: List Of Figures

    Figure 33 Wireless LAN: 802.1x/WPA for WPA Protocol ........78 Figure 34 Wireless LAN: 802.1x/WPA for WPA-PSK Protocol ....... 79 Figure 35 NOA-3570 Authenticates Wireless Stations ........... 81 Figure 36 NOA-3570 Authenticates Trusted APs ........... 82 Figure 37 Internal RADIUS Server Setting Screen ..........83 Figure 38 Trusted AP Overview ................
  • Page 15 NOA-3570 User’s Guide Figure 39 Trusted AP Screen ................. 85 Figure 40 Trusted Users Screen ................87 Figure 41 VLAN ...................... 90 Figure 42 IP Setup ....................93 Figure 43 Certificate Configuration Overview ............96 Figure 44 My Certificates ..................97 Figure 45 My Certificate Import ................
  • Page 16: List Of Tables

    NOA-3570 User’s Guide Figure 82 Menu 14- Dial-in User Setup ..............149 Figure 83 Menu 14.1- Edit Dial-in User ..............149 Figure 84 Menu 16 VLAN Setup ................151 Figure 85 SNMP Management Model ..............153 Figure 86 Menu 22 SNMP Configuration .............. 154 Figure 87 Menu 23 System Security ..............
  • Page 17 NOA-3570 User’s Guide Figure 125 Windows XP: Local Area Connection Properties ......... 206 Figure 126 Windows XP: Internet Protocol (TCP/IP) Properties ......207 Figure 127 Windows XP: Advanced TCP/IP Properties ......... 208 Figure 128 Windows XP: Internet Protocol (TCP/IP) Properties ......209 Figure 129 Macintosh OS 8/9: Apple Menu ............
  • Page 18 Table 7 System General Setup ................50 Table 8 Password ....................52 Table 9 Time Setting ....................53 Table 10 NOA-3570 Wireless Security Levels ............56 Table 11 STP Path Costs ..................57 Table 12 STP Port States ..................58 Table 13 Wireless: Access Point ................
  • Page 19: Chapter 22 Troubleshooting

    Table 64 General Commands for Third Party TFTP Clients ......... 172 Table 65 System Maintenance: Time and Date Setting ........183 Table 66 Troubleshooting the Start-Up of Your NOA-3570 ........185 Table 67 Troubleshooting Console Port Access ............ 185 Table 68 Troubleshooting the Ethernet Interface ..........186 Table 69 Troubleshooting the Password ...............
  • Page 20: Preface

    NOA-3570 User’s Guide Table 82 Current Consumption ................193 Table 83 Approvals ....................194 Table 84 Packaging Specifications ................ 197 Table 85 Mounting Hardware Specifications ............197 Table 86 Power over Ethernet Injector Specifications .......... 199 Table 87 Power over Ethernet Injector RJ-45 Port Pin Assignments ....199 Table 88 Classes of IP Addresses ................
  • Page 21 NOA-3570 User’s Guide List of Tables...
  • Page 22: Getting To Know Your Noa-3570

    NOA-3570. The Power over Ethernet (PoE) feature means that power can be delivered to the NOA-3570 over an Ethernet line. This allows you to mount the NOA-3570 in areas where there are no nearby power sources.
  • Page 23: Figure 1 Poe Installation Example

    WDS Functionality A Distribution System (DS) is a wired connection between two or more APs, while a Wireless Distribution System (WDS) is a wireless connection. Your NOA-3570 supports WDS, providing a cost-effective solution for wireless network expansion. The NOA-3570 supports up to five wireless links with other APs.
  • Page 24: Table 1 Ieee 802.11G

    LANs. IEEE 802.11b Wireless LAN Standard The NOA-3570 also fully complies with the IEEE 802.11b standard. This means an IEEE 802.11b radio card can interface directly with an IEEE 802.11g device (and vice versa) at 11 Mbps or lower depending on range.
  • Page 25: Vpn Passthrough

    (like the Internet). The NOA-3570 allows VPN connections to go through it. Wireless LAN MAC Address Filtering Your NOA-3570 checks the MAC address of the wireless station against a list of allowed or denied MAC addresses. WEP Encryption WEP (Wired Equivalent Privacy) encrypts data frames before transmitting over the wireless network to help keep network communications private.
  • Page 26: Applications For The Noa-3570

    1.3.1 Access Point The NOA-3570 is an ideal access solution for wireless Internet connection. A typical Internet access application for your NOA-3570 is shown as follows. Stations A, B and C can access the wired network through the NOA-3570s. Chapter 1 Getting to Know Your NOA-3570...
  • Page 27: Ap + Bridge

    Figure 3 Access Point Application 1.3.2 AP + Bridge In AP+Bridge mode, the NOA-3570 supports both AP connections (A and B can connect to the wired network through X) and bridge connections (X can communicate with Y) at the same time.
  • Page 28: Bridge / Repeater

    Figure 5 on page 35) are connected to independent wired networks and have a bridge (A can communicate with B) connection at the same time. A NOA-3570 without a wired connection can act as a repeater (see C in Figure 6 on page 36).
  • Page 29: Figure 6 Repeater Application

    NOA-3570 User’s Guide Figure 6 Repeater Application Chapter 1 Getting to Know Your NOA-3570...
  • Page 30: Introducing The Web Configurator

    It is recommended that you set your screen resolution to 1024 by 768 pixels. 2.2 Accessing the NOA-3570 Web Configurator 1 Make sure your NOA-3570 hardware is properly connected (refer to the Quick Start Guide). 2 Prepare your computer/computer network to connect to the NOA-3570 (refer to Appendix D on page 201).
  • Page 31: Resetting The Noa-3570

    NOA-3570 if this happens to you. 2.3 Resetting the NOA-3570 If you forget your password or cannot access the NOA-3570, you will need to reload the factory-default configuration file. Uploading this configuration file replaces the current configuration file with the factory-default configuration file. This means that you will lose all configurations that you had previously.
  • Page 32: Navigating The Noa-3570 Web Configurator

    NOA-3570’s console port. Turn the NOA-3570 off and then on to begin a session. When you turn on the NOA-3570 again, you will see the initial screen. When you see the message “Press any key to enter Debug Mode within 3 seconds”...
  • Page 33: Figure 10 The Main Menu Screen Of The Web Configurator

    Use this screen to configure the wireless LAN settings and WLAN authentication/security settings. MAC Filter Use this screen to change MAC filter settings on the NOA-3570 Roaming Use this screen to configure the NOA-3570 to allow wireless users to roam seamlessly between APs that are within the same subnet.
  • Page 34 Configuration Use this screen to backup and restore the configuration or reset the factory defaults to your NOA-3570. Restart This screen allows you to reboot the NOA-3570 without turning the power off. LOGOUT Click LOGOUT to exit the web configurator.
  • Page 35 NOA-3570 User’s Guide Chapter 2 Introducing the Web Configurator...
  • Page 36: Chapter 3 Wizard Setup

    This chapter provides information on the WIZARD SETUP screens in the web configurator. 3.1 Wizard Setup Overview The web configurator’s setup wizard helps you configure your NOA-3570 for wireless stations to access your wired LAN. Note: Click Next in each screen to continue or click Back to return to the previous screen.
  • Page 37: Wizard Setup: Wireless Lan

    Click Next to proceed to the next screen. 3.3 Wizard Setup: Wireless LAN Use this wizard screen to configure one of the NOA-3570’s two wireless LAN (WLAN) adapters to function as an AP (WLAN 1 is recommended). Use the ADVANCED WIRELESS screens to configure a WLAN adapter for bridge/repeater functions.
  • Page 38: Figure 12 Wizard: Wireless Lan Setup

    The channel only can setup in Channel 01 ~ 11. The following table describes the labels in this screen. Table 5 Wizard: Wireless LAN Setup...
  • Page 39: Wizard Setup: Ip Address Assignment

    DESCRIPTION Key 1 to Key 4 The WEP keys are used to encrypt data. Both the NOA-3570 and the wireless stations must use the same WEP key. If you chose 64-bit WEP, then enter any 5 ASCII characters or 10 hexadecimal characters ("0-9", "A-F").
  • Page 40: Basic Setup Complete

    Type the IP address of the gateway. The gateway is an immediate neighbor of your NOA-3570 that will forward the packet to the destination. The gateway must be a router on the same segment as your NOA-3570's LAN or WAN port.
  • Page 41: Figure 16 Wizard: Setup Complete

    NOA-3570 User’s Guide Figure 16 Wizard: Setup Complete Well done! You have set up your NOA-3570 to operate on your network and access the Internet. Chapter 3 Wizard Setup...
  • Page 42: Chapter 4 System Screens

    NOA-3570 System Name. 4.2.1 Domain Name You can manually enter a domain name or the NOA-3570 can get it automatically by DHCP. 4.2.2 DNS Server Address Assignment Use DNS (Domain Name System) to map a domain name to its corresponding IP address and vice versa, for instance, the IP address of www.zyxel.com is 204.217.0.2.
  • Page 43: Configuring General Setup

    DESCRIPTION General Setup System Name Type a descriptive name to identify the NOA-3570 in the Ethernet network. This name can be up to 30 alphanumeric characters long. Spaces are not allowed, but dashes "-" and underscores "_" are accepted. Domain Name This is not a required field.
  • Page 44: Configuring Password

    ADVANCED and then the Password tab. The screen appears as shown. This screen allows you to change the NOA-3570’s password. If you forget your password (or the NOA-3570 IP address), you will need to reset the NOA- 3570. See Section 2.3 on page 38 for details.
  • Page 45: Configuring Time Setting

    Click Reset to reload the previous configuration for this screen. 4.5 Configuring Time Setting To change your NOA-3570’s time and date, click the SYSTEM link under ADVANCED and then the Time Setting tab. The screen appears as shown. Use this screen to configure the NOA-3570’s time based on your local time zone.
  • Page 46: Table 9 Time Setting

    Current Time This field displays the time of your NOA-3570. (hh:mm:ss) Each time you reload this page, the NOA-3570 synchronizes the time with the time server. New Time (hh:mm:ss) This field displays the last updated time from the time server.
  • Page 47 NOA-3570 User’s Guide Chapter 4 System Screens...
  • Page 48: Chapter 5 Wireless Lan

    Wireless security is vital to your network to protect wireless communication between wireless stations, access points and the wired network. Wireless security methods available on the NOA-3570 are data encryption, wireless client authentication, restricting access by device MAC address and hiding the NOA-3570 identity.
  • Page 49: Restricted Access

    (Allow Association) or exclude them from accessing the AP (Deny Association). 5.2.4 Hide NOA-3570 Identity If you hide the SSID, then the NOA-3570 cannot be seen when a wireless client scans for local APs. The trade-off for the extra security of “hiding” the NOA-3570 may be inconvenience for some valid WLAN clients.
  • Page 50: Spanning Tree Protocol (Stp)

    5.3.1 Rapid STP The NOA-3570 uses IEEE 802.1w RSTP (Rapid Spanning Tree Protocol) that allow faster convergence of the spanning tree (while also being backwards compatible with STP-only aware bridges).
  • Page 51: How Stp Works

    NOA-3570 User’s Guide 5.3.3 How STP Works After a bridge determines the lowest cost-spanning tree with STP, it enables the root port and the ports that are the designated ports for connected LANs, and disables all other ports that participate in STP. Network packets are therefore only forwarded between enabled ports, eliminating any possible network loops.
  • Page 52: Access Point Mode

    5.5.1 Access Point Mode Select Access Point in the Operating Mode drop-down list box to display the screen as shown next. Channel selection only can choose 1~11ch. Figure 20 Wireless: Access Point 21dBm...
  • Page 53: Table 13 Wireless: Access Point

    Choose Channel Set the operating frequency/channel depending on your particular region. To manually set the NOA-3570 to use a channel, select a channel from the drop- down list box. Click MAINTENANCE and then the Channel Usage tab to open the Channel Usage screen to make sure the channel is not already used by another AP or independent peer-to-peer wireless network.
  • Page 54 NOA-3570. Output Power Set the output power of the NOA-3570 in this field. If there is a high density of APs within an area, decrease the output power of the NOA-3570 to reduce interference with other APs. The options are 21dBm, 19dBm, 17dBm or 15dBm.
  • Page 55: Bridge/Repeater Mode

    Click Reset to begin configuring this screen afresh. 5.5.2 Bridge/Repeater Mode The NOA-3570 can act as a wireless network bridge and establish wireless links with other APs. You need to know the MAC address of the peer device, which also must be in bridge mode.
  • Page 56: Figure 22 Bridge Loop: Two Bridges Connected To Hub

    NOA-3570 User’s Guide Figure 22 Bridge Loop: Two Bridges Connected to Hub If your NOA-3570 (in bridge mode) is connected to a wired LAN while communicating with another wireless bridge that is also connected to the same wired LAN as shown next.
  • Page 57: Figure 24 Wireless: Bridge/Repeater

    Select the check box to use TKIP to encrypt traffic on the WDS between APs. When you enable WDS security, type a Pre-Shared Key (PSK) for each link. Note: Other APs must use the same encryption method in order to communicate with the NOA-3570 when you enable WDS security. Chapter 5 Wireless LAN...
  • Page 58: Ap+Bridge Mode

    Click the WIRELESS link under ADVANCED. Select AP+Bridge in the Operating Mode drop-down list box to display the screen as shown next. In this screen, you can configure the NOA-3570 to function as an AP and bridge simultaneously. See the section on NOA-3570 applications for more information.
  • Page 59: Figure 25 Wireless: Ap+Bridge

    NOA-3570 User’s Guide Figure 25 Wireless: AP+Bridge Table 13 on page 60 Table 14 on page 64 descriptions of the fields in the Access Point and Bridge/Repeater operating modes for descriptions of the fields in this screen. Chapter 5 Wireless LAN...
  • Page 60: Configuring Mac Filters

    5.6 Configuring MAC Filters The MAC filter screen allows you to configure the NOA-3570 to give exclusive access to up to 32 devices (Allow Association) or exclude up to 32 devices from accessing the NOA-3570 (Deny Association). Every Ethernet device has a unique MAC (Media Access Control) address.
  • Page 61: Figure 26 Mac Address Filter

    NOA-3570 User’s Guide Figure 26 MAC Address Filter The following table describes the labels in this screen. Table 15 MAC Address Filter NOA-3570 LABEL DESCRIPTION WLAN Adapter Select the WLAN adapter for which you want to configure MAC address filtering.
  • Page 62: Configuring Roaming

    MAC Address Enter the MAC addresses (in XX:XX:XX:XX:XX:XX format) of the wireless station that are allowed or denied access to the NOA-3570 in these address fields. Apply Click Apply to save your changes back to the NOA-3570.
  • Page 63: Requirements For Roaming

    NOA-3570 User’s Guide Figure 27 Roaming Example The steps below describe the roaming process. 1 As wireless station Y moves from the coverage area of access point AP 1 to that of access point 2 AP 2, it scans and uses the signal of access point AP 2.
  • Page 64: Introduction To Wpa

    LABEL DESCRIPTION Active Select Yes from the drop-down list box to enable roaming on the NOA-3570 if you have two or more APs on the same subnet. Note: All APs on the same subnet and the wireless stations must have the same SSID to allow roaming.
  • Page 65: Wpa With Radius Application Example

    NOA-3570 User’s Guide 2 The AP checks each client’s password and (only) allows it to join the network if it matches its password. 3 The AP derives and distributes keys to the wireless clients. 4 The AP and wireless clients use the TKIP encryption process to encrypt data exchanged between them.
  • Page 66: Wireless Client Wpa Supplicants

    To change your NOA-3570’s authentication settings, click the WIRELESS link under ADVANCED and then the 802.1x/WPA tab. The screen varies by the key management protocol you select. The WPA function is not available on all NOA-3570 models. Chapter 5 Wireless LAN...
  • Page 67: Authentication Required: 802.1X

    Select Authentication Required to configure Key Management Protocol and other related fields. Apply Click Apply to save your changes back to the NOA-3570. Reset Click Reset to begin configuring this screen afresh. 5.13 Authentication Required: 802.1x Select Authentication Required in the Wireless Port Control field and 802.1x in the Key...
  • Page 68: Figure 32 Wireless Lan: 802.1X/Wpa For 802.1X Protocol

    NOA-3570 User’s Guide Figure 32 Wireless LAN: 802.1x/WPA for 802.1x Protocol Chapter 5 Wireless LAN...
  • Page 69: Table 18 Wireless Lan: 802.1X/Wpa For 802.1X Protocol

    RADIUS server has priority. Idle Timeout The NOA-3570 automatically disconnects a wireless station from the wired network (In Seconds) after a period of inactivity. The wireless station needs to enter the username and password again before access to the wired network is allowed.
  • Page 70 Enter a password (up to 31 alphanumeric characters) as the key to be shared between the external accounting server and the NOA-3570. The key must be the same on the external accounting server and your NOA-3570. The key is not sent over the network.
  • Page 71: Authentication Required: Wpa

    NOA-3570 User’s Guide 5.14 Authentication Required: WPA Select Authentication Required in the Wireless Port Control field and WPA in the Key Management Protocol field to display the next screen. Figure 33 Wireless LAN: 802.1x/WPA for WPA Protocol The following table describes the labels not previously discussed.
  • Page 72: Authentication Required: Wpa-Psk

    Choose WPA in this field. Protocol WPA Mixed Mode The NOA-3570 can operate in WPA Mixed Mode, which supports both clients running WPA and clients running dynamic WEP key exchange with IEEE 802.1x in the same Wi-Fi network. Select Enable to activate WPA mixed mode. Otherwise, select Disable.
  • Page 73: Table 20 Wireless Lan: 802.1X/Wpa For Wpa-Psk Protocol

    Type a pre-shared key from 8 to 63 case-sensitive ASCII characters (including spaces and symbols). Apply Click Apply to save your changes back to the NOA-3570. Reset Click Reset to begin configuring this screen afresh. Chapter 5 Wireless LAN...
  • Page 74: Internal Radius Server

    The NOA-3570 has a built-in RADIUS server that can authenticate wireless clients or other APs (that are configured as trusted APs). The NOA-3570 can function as an AP and as a RADIUS server at the same time. PEAP (Protected EAP) and MD5 authentication is implemented on the internal RADIUS server using simple username and password methods over a secure TLS connection.
  • Page 75: Internal Radius Server Setting

    LABEL DESCRIPTION Setting Use the Setting screen to turn the NOA-3570’s internal RADIUS server off or on and to view information about the NOA-3570’s certificates. Trusted AP Use the Trusted AP screen to specify APs as trusted APs so they can use the NOA-3570’s internal RADIUS server to authenticate wireless clients.
  • Page 76: Figure 37 Internal Radius Server Setting Screen

    LABEL DESCRIPTION Active Select the Active check box to have the NOA-3570 use its internal RADIUS server to authenticate wireless clients or other APs. This field displays the certificate index number. The certificates are listed in alphabetical order. Use the CERTIFICATES screens to manage certificates. The internal RADIUS server uses one of the certificates listed in this screen to authenticate each wireless client.
  • Page 77: Trusted Ap Overview

    Click Reset to start configuring this screen afresh. 6.3 Trusted AP Overview A trusted AP is an AP that uses the NOA-3570’s internal RADIUS server to authenticate its wireless clients. Each wireless client must have a user name and password configured in the Trusted Users screen.
  • Page 78: Configuring Trusted Ap

    RADIUS server. 6.4 Configuring Trusted AP To specify APs as trusted APs so they can use the NOA-3570’s internal RADIUS server to authenticate wireless clients, click the AUTH SERVER link under ADVANCED and then the Trusted AP tab. The screen appears as shown.
  • Page 79: Trusted Users Overview

    AP and the NOA-3570. The key is not sent over the network. This key must be the same on the AP and the NOA-3570. Both the NOA-3570’s IP address and this shared secret must also be configured in the “external RADIUS”...
  • Page 80: Figure 40 Trusted Users Screen

    DESCRIPTION This field displays the trusted user index number. Active Select this check box to have the NOA-3570 authenticate wireless clients with the same user name and password activated on their wireless utilities. User Name Enter the user name for this user account. This name can be up to 31 alphanumeric characters long, including spaces.
  • Page 81 NOA-3570 User’s Guide Chapter 6 Internal RADIUS Server...
  • Page 82: Chapter 7 Vlan

    “management VLAN” in order to access and manage the NOA-3570. A computer that is not a member of this VLAN, then that device cannot manage the NOA-3570. If no devices are in the management VLAN, then you will only be able to access the NOA- 3570 through the console port (not through the network).
  • Page 83: Figure 41 Vlan

    DESCRIPTION Enable VLAN Tagging Select this check box to turn on VLAN tagging. Use the Wireless screen to set the VLAN ID tag that the NOA-3570 adds to the Ethernet frames that a WLAN adapter receives from wireless clients or APs.
  • Page 84: Chapter 8 Ip Screen

    The subnet mask specifies the network number portion of an IP address. Your NOA-3570 will compute the subnet mask automatically based on the IP address that you entered. You don't need to change the subnet mask computed by the NOA-3570 unless you are instructed to do otherwise.
  • Page 85: Ip Address Assignment

    NOA-3570 User’s Guide 8.2.1 IP Address Assignment Every computer on the Internet must have a unique IP address. If your networks are isolated from the Internet, for instance, only between your two branch offices, you can assign any IP addresses to the hosts without problems. However, the Internet Assigned Numbers Authority (IANA) has reserved the following three blocks of IP addresses specifically for private networks.
  • Page 86: Figure 42 Ip Setup

    Note: You must know the IP address assigned to the NOA- 3570 (by the DHCP server) to access the NOA-3570 again. Use fixed IP address Select this option if your NOA-3570 is using a static IP address. When you select this option, fill in the fields below. IP Address Enter the IP address of your NOA-3570 in dotted decimal notation.
  • Page 87 NOA-3570 User’s Guide Chapter 8 IP Screen...
  • Page 88: Chapter 9 Certificates

    A certification path is the hierarchy of certification authority certificates that validate a certificate. The NOA-3570 does not trust a certificate if any certificate on its path has expired or been revoked.
  • Page 89: Advantages Of Certificates

    9.1.1 Advantages of Certificates Certificates offer the following benefits. • The NOA-3570 only has to store the certificates of the certification authorities that you decide to trust, no matter how many devices you need to authenticate. • Key distribution is simple and very secure since you can freely distribute public keys and you never need to transmit private keys.
  • Page 90: Figure 44 My Certificates

    LABEL DESCRIPTION PKI Storage This bar displays the percentage of the NOA-3570’s PKI storage space that is Space in Use currently in use. The bar turns from green to red when the maximum is being approached. When the bar is red, you should consider deleting expired or unnecessary certificates before adding more certificates.
  • Page 91: Certificate File Formats

    Select a certificate’s radio button and click Details to open a screen with an in- depth list of information about the certificate. Create Click Create to go to the screen where you can have the NOA-3570 generate a certificate or a certification request. Import Click Import to open a screen where you can save the certificate that you have enrolled from a certification authority from your computer to the NOA-3570.
  • Page 92: Importing A Certificate

    X.509 certificate into a printable form. • Binary PKCS#7: This is a standard that defines the general syntax for data (including digital signatures) that may be encrypted. The NOA-3570 currently allows the importation of a PKS#7 file that contains a single certificate.
  • Page 93: Creating A Certificate

    Click CERTIFICATES, My Certificates and then Create to open the My Certificate Create screen. Use this screen to have the NOA-3570 create a self-signed certificate, enroll a certificate with a certification authority or generate a certification request, see the following figure.
  • Page 94: Figure 46 My Certificate Create

    NOA-3570 User’s Guide Figure 46 My Certificate Create The following table describes the labels in this screen. Table 30 My Certificate CreateNOA-3570 LABEL DESCRIPTION Certificate Name Type up to 31 ASCII characters (not including spaces) to identify this certificate. Subject Information Use these fields to record information that identifies the owner of the certificate.
  • Page 95 You must have the certification authority’s certificate already imported in the Trusted CAs screen. Click Trusted CAs to go to the Trusted CAs screen where you can view (and manage) the NOA-3570's list of certificates of trusted certification authorities. Request...
  • Page 96: My Certificate Details

    In the case of a self-signed certificate, you can set it to be the one that the NOA-3570 uses to sign the trusted remote host certificates that you import to the NOA-3570.
  • Page 97: Figure 47 My Certificate Details

    NOA-3570 User’s Guide Figure 47 My Certificate Details Chapter 9 Certificates...
  • Page 98: Table 31 My Certificate Details

    If the certificate is a self-signed certificate, the certificate itself is the only one in the list. The NOA-3570 does not trust the certificate and displays “Not trusted” in this field if any certificate on the path has expired or been revoked.
  • Page 99: Trusted Cas

    Click CERTIFICATES, Trusted CAs to open the Trusted CAs screen. This screen displays a summary list of certificates of the certification authorities that you have set the NOA-3570 to accept as trusted. The NOA-3570 accepts any valid certificate signed by a certification authority on this list as being trustworthy;...
  • Page 100: Figure 48 Trusted Cas

    LABEL DESCRIPTION PKI Storage This bar displays the percentage of the NOA-3570’s PKI storage space that is Space in Use currently in use. The bar turns from green to red when the maximum is being approached. When the bar is red, you should consider deleting expired or unnecessary certificates before adding more certificates.
  • Page 101: Importing A Trusted Ca's Certificate

    Select a certificate’s radio button and click Details to open a screen with an in- depth list of information about the certificate where you can change the certificate’s name and set whether or not you want the NOA-3570 to check a certification authority’s list of revoked certificates before trusting a certificate issued by the certification authority.
  • Page 102: Trusted Ca Certificate Details

    Trusted CA Details screen. Use this screen to view in-depth information about the certification authority’s certificate, change the certificate’s name and set whether or not you want the NOA-3570 to check a certification authority’s list of revoked certificates before trusting a certificate issued by the certification authority.
  • Page 103: Figure 50 Trusted Ca Details

    NOA-3570 User’s Guide Figure 50 Trusted CA Details Chapter 9 Certificates...
  • Page 104: Table 34 Trusted Ca Details

    31 characters to identify this key certificate. You may use any character (not including spaces). Property Select this check box to have the NOA-3570 check incoming certificates that are Check incoming issued by this certification authority against a Certificate Revocation List (CRL).
  • Page 105 Click Apply to save your changes back to the NOA-3570. You can only change the name and/or set whether or not you want the NOA-3570 to check the CRL that the certification authority issues before trusting a certificate issued by the certification authority.
  • Page 106: Chapter 10 Log Screens

    10.1 Configuring View Log The web configurator allows you to look at all of the NOA-3570’s logs in one location. Click LOGS to open the View Log screen. The View Log screen displays logs for the...
  • Page 107: Figure 51 View Log

    NOA-3570 User’s Guide Figure 51 View Log The following table describes the labels in this screen. Table 35 View Log NOA-3570 LABEL DESCRIPTION Display Select a log category from the drop down list box to display logs within the selected category. To view all logs, select All Logs.
  • Page 108: Configuring Log Settings

    To change your NOA-3570’s log settings, click LOGS and then Log Settings. The Log Settings screen opens. Use the Log Settings screen to configure to where the NOA-3570 is to send the logs; the schedule for when the NOA-3570 is to send the logs and which logs and/or immediate alerts the NOA-3570 is to send.
  • Page 109: Figure 52 Log Settings

    NOA-3570 User’s Guide Figure 52 Log Settings The following table describes the labels in this screen. Table 36 Log Settings NOA-3570 LABEL DESCRIPTION Address Info Mail Server Enter the server name or the IP address of the mail server for the e-mail addresses specified below.
  • Page 110 Select the categories of logs that you want to record. Send immediate alert Select the categories of alerts for which you want the NOA-3570 to immediately send e-mail alerts. Apply Click Apply to save your customized settings and exit this screen.
  • Page 111 NOA-3570 User’s Guide Chapter 10 Log Screens...
  • Page 112: Maintenance

    NOA-3570. 11.2 System Status Screen Click MAINTENANCE to open the System Status screen, where you can use to monitor your NOA-3570. Note that these labels are READ-ONLY and are meant to be used for diagnostic purposes. Figure 53 System Status The following table describes the labels in this screen.
  • Page 113: System Statistics

    Also provided are "system up time" and "poll interval(s)". The Poll Interval field is configurable. Figure 54 System Status: Show Statistics The following table describes the labels in this screen. Table 38 System Status: Show Statistics NOA-3570 LABEL DESCRIPTION Port This is the Ethernet port or the built-in wireless card.
  • Page 114: Association List

    Click this button to stop refreshing statistics. 11.3 Association List View the wireless stations that are currently associated to the NOA-3570’s WLAN cards in the Association List screen. Click MAINTENANCE and then the Association List tab to display the screen as shown next.
  • Page 115: Channel Usage

    11.4 Channel Usage The Channel Usage screen shows which channels are being used by other wireless networks within the NOA-3570's transmission range. If a channel is being used, select a channel removed from it by five channels to avoid overlap.
  • Page 116: F/W Upload Screen

    Find firmware at www.zyxel.com in a file that (usually) uses the system model name with a .bin extension, for example, "NOA-3570.bin". The upload process uses HTTP (Hypertext Transfer Protocol) and may take up to two minutes. After a successful upload, the system will reboot.
  • Page 117: Figure 57 Firmware Upload

    Click Upload to begin the upload process. This process may take up to two minutes. Note: Do not turn off the NOA-3570 while firmware upload is in progress! After you see the Firmware Upload in Process screen, wait two minutes before logging into the NOA-3570 again.
  • Page 118: Figure 58 Firmware Upload In Process

    NOA-3570 User’s Guide Figure 58 Firmware Upload In Process The NOA-3570 automatically restarts in this time causing a temporary network disconnect. In some operating systems, you may see the following icon on your desktop. Figure 59 Network Temporarily Disconnected After two minutes, log in again and check your new firmware version in the System Status screen.
  • Page 119: Configuration Screen

    NOA-3570 User’s Guide Figure 60 Firmware Upload Error 11.6 Configuration Screen Chapter 20 on page 169 for transferring configuration files using FTP/TFTP commands. Click MAINTENANCE, and then the Configuration tab. Information related to backing up configuration, restoring configuration and restoring factory defaults appears as shown next.
  • Page 120: Backup Configuration

    Figure 61 Configuration 11.6.1 Backup Configuration Backup configuration allows you to back up (save) the NOA-3570’s current configuration to a file on your computer. Once your NOA-3570 is configured and functioning properly, it is highly recommended that you back up your configuration file before making configuration changes.
  • Page 121: Restore Configuration

    Figure 63 Network Temporarily Disconnected If you uploaded the default configuration file you may need to change the IP address of your computer to be in the same subnet as that of the default NOA-3570 IP address (192.168.1.2). Appendix D on page 201 for details on how to set up your computer’s IP address.
  • Page 122: Back To Factory Defaults

    11.6.3 Back to Factory Defaults Click the Reset button in this section to clear all user-entered configuration information and returns the NOA-3570 to its factory defaults as shown on the screen. The following warning screen will appear. Figure 65 Reset Warning Message 11.7 Restart Screen...
  • Page 123: Figure 66 Restart Screen

    NOA-3570 User’s Guide Figure 66 Restart Screen Chapter 11 Maintenance...

Table of Contents