Cerio SEFA OW-500 A1 User Manual
  1. Manuals
  2. Brands
  3. Cerio Manuals
  4. Wireless Access Point
  5. SEFA OW-500 A1
  6. User manual

Cerio SEFA OW-500 A1 User Manual

Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
CERIO Corporation
CenOS 5.0
User Manual
for
OW-500 A1
eXtreme Power Wave2 4X 2x2 +18dBi Tri-Band Outdoor Bridge/AP
V2.0

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the SEFA OW-500 A1 and is the answer not in the manual?

Questions and answers

Related Manuals for Cerio SEFA OW-500 A1

Summary of Contents for Cerio SEFA OW-500 A1

  • Page 1 CERIO Corporation CenOS 5.0 User Manual OW-500 A1 eXtreme Power Wave2 4X 2x2 +18dBi Tri-Band Outdoor Bridge/AP V2.0...

  • Page 2: Table Of Contents

    Content 1. Device and Software Configuration ........... 6 Device & Antenna appearance & RJ-45 reset kit description ..........6 Setup preparation of AP ....................6 Login Web Page ........................ 9 2. Operating Mode Introduction ............10 Access Point Mode (Defdault) ..................10 CAP mode (Centralizes Access Point) ................
  • Page 3 4.3.2 MAN-Mesh Status ......................35 5. Access Point mode ................36 VLAN Setup ........................36 # Network Setup ........................38 # Network Pull-down menu ......................39 5.1.1 DHCP Server ........................39 5.1.2 Bandwidth Control ......................41 5.1.3 Radio 0(2.4G)/Radio 1(5G)/Radio 2(5G) Access Point Setup ........... 42 5.1.4 MAC Filter ........................
  • Page 4 5.5.3 Advanced Setup ......................70 5.5.4 WMM Setup ........................72 5.5.5 WDS Setup ........................74 5.5.6 WDS Status ........................76 6. Client Bridge Mode ................. 78 Configure LAN Setup ...................... 78 Configure DHCP Setup ....................80 Wireless General Setup ....................82 6.3.1 Radio 0(2.4G) Basic Setup ....................
  • Page 5 System Log ........................139 10. [ Other technical documents] ............141 10.1 Point to Point / Multi-Point for WDS settings ............... 141 10.2 Apply CERIO web authentication login page sample ............. 142 Appendix A. WEB GUI Valid Characters ..........149 V2.0...

  • Page 6: Device And Software Configuration

    Device and Software Configuration 1.1 Device & Antenna appearance & RJ-45 reset kit description 1. 1T1R/2T2R Antenna Connector 1. When the device's wireless signal selects the Radio output and only uses 1T1R, the main ANT 1 ANT2 signal output position is ANT1, and ANT2 will have no signal output, Please refer to the External for 5GHz(Radio1) 2x2 manual 5.5.2 “Radio 1 (5G)”...
  • Page 7 Basic connection diagram: Step 1: Please click on the computer icon in the bottom right window, and click “Open Network and Internet settings” Step 2: After click left side "Ethernet" function, click on the right side “Change adapter options” again. V2.0...
  • Page 8 Step 3: In “Change adapter options” Page. Please find Ethernet (Local LAN) and Click the right button on the mouse and Click “Properties” Step 4: In Properties page to setting IP address, please find “Internet Protocol Version 4 (TCP/IPv4)” and double click or click “OK” button. Step 5 : Select “Use the following IP address”, and fix in IP Address : 192.168.2.# V2.0...

  • Page 9: Login Web Page

    ex. The # is any number by 1 to 253 Subnet mask : 255.255.255.0 And Click "OK" to complete the fixed computer IP setting Login Web Page Launch Web Browser Launch as web browser to access the web management interface of system by entering the default IP Address, http://192.168.2.254, in the URL field, and then press Enter.

  • Page 10: Operating Mode Introduction

    Operating Mode Introduction Access Point Mode (Defdault) Please click on System ->Mode Setup and choose Access Point Mode When you want to use the wireless method to access the Internet, you can convert the device to the Access Point mode.. It can be deployed as a traditional fixed wireless Access Point ...
  • Page 11 Application of WDS function in Access Point mode WDS can be used for long-distance point-to-point wireless connections, as well as applications for long-distance point-to-multipoint wireless connections. You can enable the WDS function under the Access Point (AP Mode), which is an application of AP + WDS, which means that the device can also use the services of the Access Ponit (AP station), it can be used for long distance with another AP through WDS.

  • Page 12: Cap Mode (Centralizes Access Point)

    2.2 CAP mode (Centralizes Access Point) Please click on System ->Mode Setup and choose CAP Mode After switching the CAP mode, this mode is not a wireless AP, Is a central centralized manager, which for the centralized management of multiple wireless APs in AP mode. It can mainly perform centralized settings, VLAN management, and AP monitoring.

  • Page 13: Client Bridge + Repeater Mode

    2.3 Client Bridge + Repeater Mode Please click on System ->Mode Setup and choose Client Bridge Mode Client Bridge mode, which is responsible for wireless connection with the upper Access Point station(AP). the device must be bridged with the upper Access Point station(AP) for normal operation, and the Repeater extended Access Point station(AP) can be used normally after bridging with the upper AP.

  • Page 14: Wisp + Repeater Ap Mode

    2.4 WISP + Repeater AP Mode Please click on System ->Mode Setup and choose WISP Mode WISP's WAN end wirelessly bridges the upper xDSL AP. The connection method supports dynamic IP, static IP, PPPoE and PPTP. When sharing to all network through NAT. It can be used as an WISP (Wireless Internet Service Provide) to receive wireless signals over last...

  • Page 15: System Configuration

    System Configuration There are common functions in any mode have management / Time Server / SNMP and Time Policy. Please refer to the following detailed instructions. Management Administrators can specify geographical location of the system via instructions in this page and modify system login password and select use system login protocol by 80, 443, 23, 22 Port.
  • Page 16  System Language: Administrator can select system language for English and Traditional Chinese  System Information: Administrator can set the system name / Description and Location.  Root Password: Administrator can change system login password.  LED Control:When system working the moment, device LED will flashes. Administrator can select close the LED flashes in the function.
  • Page 17 Auto Reboot: The functions can Auto-reboot the system by Date/time management.  Daily: Setting time to system reboot.  Weekly : Setting frequency (ex. Weekly) and time of system reboot  Monthly : Setting Every month, fixed date and time to system reboot ...

  • Page 18: Configure Time Server

    Configure Time Server Administrator can select manual or via a NTP server to modify system time for the right local time. If select update the system time for manual, when administrator reboot system the system time will reply default. If select update the system time for the NTP Server, system must set gateway and DNS server, the system can be connected internet.

  • Page 19: Snmp

    3.3 SNMP SNMP is an application-layer protocol that provides a message format for communication between SNMP managers and agents. By enabling SNMP function, the administrator can obtain the system information remotely. Please click on System -> SNMP and follow the below setting. SNMP v2c function Active: Administrator can select Enable or Disable the service.

  • Page 20: Configure Time Policy

    assigned server. Active: Administrator can select Enable or Disable the service.  Community: Set a community string required by the remote host computer that will receive trap  messages or notices send by the system. IP(1~4) : Enter the IP addresses of the remote hosts to receive trap messages. ...
  • Page 21 Comment: Enter the description of Time Policy rule.  Mode: Administrator can select On schedule or Out of schedule to execution the rules.  Create New Policy button: Administrator can set time for week / start time and end time. Click “Save”...

  • Page 22: Cap Mode

    CAP Mode The CAP mode itself isn’t Access Point. This mode is primarily to control all the managed AP. The following describes setup function in system menu 4.1 VLAN Setup Setup Control AP of LAN or VLAN IP Address, Gateway, DNS and Ethernet Tag etc. Please click on System ->...
  • Page 23  #:Display VLAN No.  VLAN Mode:Display on /off line status for the VLAN mode  IP Address:Display IP address for the VLAN mode.  NetMask:Display netmask for the VLAN mode.  Action:Administrator can set VLAN IP、Radio 0(2.4) or Radio 1(5G) / Radio 2(5G) on/off、Spanning tree、IAPP and VLAN tag.
  • Page 24 ETH0:Administrator select Enable/disable the Ethernet port.  VLAN Tag:Administrator can set Tag ID for the Ethernet port.  Set Gateway / DNS address functions.  Gateway: The default Gateway IP Address is 192.168.2.1, Please check your Gateway IP and  change.

  • Page 25: Ap Control

    4.2 AP Control When CenOS5.0 AP changes to CAP mode, Administrator can use AP Control functions to centralize management of APs in the network architecture. AP control Setting functions have “Scan Device”, “Batch Setup”, “AP Setup”, “Group / Map setup” and Authentication Profile setup etc.. Please click “AP Control”...

  • Page 26: Batch Setup

    VLAN# : Administrator can select VLAN network to discovery managed Aps  Default Password: Set login system password by managed Aps.  Sort: Administrator can select discovery managed Aps Type. (IP or MAC)  #: Display managed APs items.  Device:Administrator can select all or single for managed Aps.
  • Page 27 The AP control function supports centralized configuration of managed APs. Administrator can change VLAN network / Group and batch setup for managed APs. LAN:When VLAN Tag function is enabled (please refer to Manual 4.1 System VLAN Setup),  administrator can change VLAN tag for managed APs. Group:When AP Groups are created (please refer to Manaul 4.2.4 Group setup), ...
  • Page 28 VLAN:The function can select VLAN (please refer to Configure VLAN Setup) for  managed Aps. VLAN Mode : Administrator can enable or disable VLAN mode of the managed APs.  Access Point 0:Administrator can enable or disable 2.4G radio 0 of the managed ...

  • Page 29: Ap Setup

    Management Setup: Setting system name/ system login port and system log server service  for managed APs. (Please refer to system management) Wireless Batch Setup: Setting Wi-Fi configurations for managed APs. (Please refer to  Wireless Basic Setup) Wireless Advanced Setup: Setting Wi-Fi Advanced settings for managed APs. (Please refer ...

  • Page 30: Group Setup

    4.2.4 Group Setup Administrator can create Groups within the same VLAN. VLAN:Select VLAN.  Create New Group:Click the button to create a new AP Group  Device button:Administrator can select managed APs and import them into the Group.  4.2.5 Map Setup V2.0...
  • Page 31 The Map Setup feature allows administrators to upload a floor plan image to a web server, then use the image URL to import the map into the AP user interface. Once the image is uploaded, administrators can use the Map Setup function to map out the locations of the AP network. reate New Map:Click the button to create map.

  • Page 32: Authentication Profile

    View:Once complete, administrators can click the “View” button to monitor AP statuses and locations. 4.2.6 Authentication Profile V2.0...

  • Page 33: Status

    Administrator can pre-set authentication conditions in the profile, the authentication set can refer to manual “5.2 Authentication”. Create New Profile:Administrator can create authentication profile.  Edit: Click the Authentication button to Enable or Disable authentication  function. For more details, refer to Manaul“5.2 Authentication”. Click Dropdown to set authentication functions.
  • Page 34 VLAN #: Display the virtual local area network information.  System status: Shows the operating status of the managed AP, whether it is offline or online.  System name: Display the name information of the managed AP  IP address: Displays the IP address information of the managed AP. ...

  • Page 35: Man-Mesh Control

    4.3 MAN-Mesh Control 4.3.1 MAN-Mesh Device list Create Man-Mesh device IP address and comment of MAN-Mesh devices to be monitored. Item Action edit the status of the MAN-Mesh Device's IP address, annotations, (root) password, HTTP port number, and delete MAN-Mesh Divice. 4.3.2 MAN-Mesh Status Display the system status, IP address, comment, I{time, firmware version, and firmware release date of the newly added MAN-Mesh Device.

  • Page 36: Access Point Mode

    Access Point mode When AP mode is chosen, the system can be configured as an Access Point. This section provides detailed explanation for users to configure in the AP mode with help of illustrations. In the AP mode, functions listed in the table below are also available from the Web-based GUI interface.
  • Page 37 Default Gateway: Set Gateway IP address.  Port Isolate : When enable web authentication function, administrator can chooses Ethernet port  whether used web authentication.(This function need enable System Authentication function)  Enable: If chooses enable this function then client connection Ethernet port will need ...

  • Page 38: Network Setup

    # Network Setup Network button Administrator can click button to set VLAN network functions. VLAN Mode:Administrator can select Enable or disable for the VLAN Network.  IP Mode:Administrator can select enable or disable function for VLAN IP.  IP Address/ NetMask:Administrator can set IP address and netmask for the VLAN. ...

  • Page 39: Network Pull-Down Menu

    IAPP:Administrator can select radio 2.4G or 5G for IAPP roaming.  VLAN Tag Setup: Set the VLAN used tags.  The IAPP condition must use WPA2-PSK Wi-Fi security and AES algorithm) That if ETH0 is set to use a VLAN tag, you must enter the management interface with the same VLAN as the tag to enter the management settings.
  • Page 40 If there is no DHCP server in the network or if you want to use a second DHCP server to assign IP, the administrator can enable this function to set the network segment to assign IP addresses. If there are two DHCP servers in the network environment, please do not repeat the IP address assignment of the two DHCP servers to avoid causing IP conflicts.

  • Page 41: Bandwidth Control

    Static Lease IP Setup Administrator can set be delivered fixed IP address to the users. Comment : Enter rule description.  IP Address : Enter access point IP.  MAC Address : Enter Client MAC Address of PC network.  Click “Save”...

  • Page 42: Radio 0(2.4G)/Radio 1(5G)/Radio 2(5G) Access Point Setup

    Administrator can set total bandwidth used limit in VLAN. QoS Rule List: Administrator can set bandwidth limit by IP/MASK, IP Range, Port(Service), SIP,  RTP/RTSP, WEB protocol , each VLAN can set 10 bandwidth management rule. Click “Save” button to save your changes. Then click Reboot button to activate your changes. 5.1.3 Radio 0(2.4G)/Radio 1(5G)/Radio 2(5G) Access Point Setup Administrator can Enable or Disable Radio 0(2.4G)/Radio 1(5G)/ Radio 2(5G) Wi-Fi.
  • Page 43 Access Point: Administrator can Enable or Disable the Radio 0(2.4G)/Radio 1(5G)/ Radio 2(5G).  ESSID: Administrator can set Wi-Fi SSID name  SSID Visibility: Administrator can select Enable or Disable the Visibility.  Client Isolation: Enable or Disable the client isolation function. ...
  • Page 44 the final output of ciphertext. Each round consists of several processing steps, including one that depends on the encryption key. A set of reverse rounds are applied to transform ciphertext back into the original plaintext using the same encryption key. TKIP is short for “Temporal Key Integrity Protocol”, TKIP scrambles the keys using a hashing algorithm and, by adding an integrity-checking feature, ensures that the keys haven’t been tampered with.

  • Page 45: Mac Filter

    5.1.4 MAC Filter (1 ) Only Deny List MAC:Administrator can add wireless users MAC address in MAC list. The access point will deny connection in MAC address list. (2) Only Allow List MAC:Administrator can add wireless users MAC address in MAC list. The access point will allow connection in MAC address list.

  • Page 46: Fast Roaming Setup

    5.1.5 802.11r Fast Roaming Setup The dual band Access Point supports 802.11r/802.11k function for 2.4G and 5G radio. 802.11r, which is the IEEE standard for fast roaming, introduces a new concept of roaming where the initial handshake with the new AP is done even before the client roams to the target AP. If this feature is enabled when using 802.11r fast roaming, the wireless user equipment must support 802.11k functionality to work properly Mobility Domain: MDID is used to indicate a group of APs (within an ESS, i.e., sharing the same...
  • Page 47 R0 Key Lifetime: Default lifetime of the PMK-RO in minutes, the default is 10000, administrator  can setting 1~65535. Reassoc deadline: Reassociation deadline in time units (TUs / 1.024 ms; range 1000~65535).  The default is 1000. R0/NAS Identifier: PMK-R0 Key Holder identifier. When using IEEE 802.11r, nas_identifier must ...

  • Page 48: Authentication

    MAC Address: Enter the main roaming device MAC address  R1 Identifier: Enter Shared identifier.  128-bit Key: Enter Shared Key of 128 bit.  After the above function is setup, please click "Save" button and reboot system will apply new profile and working normally.

  • Page 49: Enable Authentication Function

    #:Display VLANs number.  VLAN Mode:Displays VLAN on/off status.  Authentication:Displays VLAN# whether enable or disable web authentication.  Action:The function has 2 buttons (Authentication and Dropdown)  5.2.1 Enable Authentication function : By clicking the Authentication button, administrator can enable or disable this function.

  • Page 50: Set Authentication Function

    Local User:Administrator can enable authentication for local user.  RADIUS:Authentication support remote RADIUS Server. Administrator can enter security  information for remote RADIUS Server. Click “Save” button to save your changes. Then click Reboot button to activate your changes. 5.2.2 Set Authentication function : By Clicking the Dropdown button, Administrators can set authentication functions.
  • Page 51 # Guest Administrator can enable or disable guest authentication. If enabled, the administrator can set guest Count Limit / login time and type and flow control. Service:Administrator can select enable or disable this function.  Login Type :  One Time: Login to start counting until the end of time. ...

  • Page 52: Google Oauth2.0 Setup Sample

    # Local User Administrator can create local user account for web login. User Name: Administrator can create users account.  Password:Set account password.  # OAuth2.0 The OAuth2.0 function supports Facebook and Google by default. Users can add additional OAuth2.0 servers through UI settings.
  • Page 53 Please complete the application on the Google website to receive an account ID and password, follow the steps below. Step.1 Please go to the Google Developers Console page and create a project (Reference https://developers.google.com/identity/protocols/OAuth2) Step.2 Click Credentials to create OAuth client ID in the API manager page. Step.3 Select web application in the “Application Type”...
  • Page 54 Step.4 Set Authorized JavaScript origins and Authorized redirect URLs (important) Administrator must set login URL in the device function. After complete set of login URL go to the “Restrictions” function in web page. Follow the steps below to set login URLs Setup login URL in the device.

  • Page 55: Facebook Oauth2.0 Setup Sample

    Step.5 After completing the “Restrictions” setup, click the create button. An OAuth Client page will pop-up with your “client ID” and “client secret”. Administrators must copy and paste their client ID and secret into the OAuth 2.0 Setup page in our software UI. Save and reboot the AP system, complete the setup.
  • Page 56 Step.2 Select WWW function Step.3 Administrator must set www for your information. Step.4 Please click “Setting” and add Platform V2.0...
  • Page 57 Step.5 Select Platform for “Website” Step.6 Enter URL is http://domain0.login.com/login/index.cgi?cgi=CALLBACK Administrator must set login URL in the device function. After complete set of login URL go to the “Facebook function in web page. Follow the steps below to set login URLs Site URL”...
  • Page 58 After complete set of login URL go to the “Facebook function in web page. Copy and Site URL” paste the login URL from the system display into the “ Site URL” page on the Facebook website. Step.7 Click Advanced function to enable the “Native or desktop app?”...

  • Page 59: Pop3/Imap Server

    Client ID and Client Secret setup by third parties such as Facebook and Google are subject to change. The instructions above follow the 2016 setup procedure. Any future changes to the Facebook/Google process may lead to our instructions becoming invalid. 5.2.3 POP3/IMAP Server The purpose of this integrated function is to allow clients to link a POP3 server for receiving emails from a remote server.

  • Page 60: Customize Page

    Host : Define the desired Host server name.  Port : Input the proper port number for the corresponding server.  Connect Type : Select the Connect type with options of “STARTTLS”, “SSL/TTL”, or “None”.  POP3 Server Test : Use this tool to test if the POP3 server is operating correctly with your ...
  • Page 61 When using html and css and other syntax editing, it is recommended that editors have html and css and other editing capabilities. Cerio does not support the use of assisted teaching of grammar. The field must be within 190 lines. If you write the source code...

  • Page 62: Language

    1. This editing html system has a certain length limit, and at the same time, it is not possible to upload the image file to the system, so if there is CSS syntax or image file, it must be uploaded to the web server first, and the image file is linked by hyperlink. 2.

  • Page 63: Walled Garden

    Click “Create New Language” button go to add or edit language for login page. Language: Set description of language.  Default Language: Display default language.  Walled Garden This function provides certain free services or advertisement web pages for users to access the websites listed before login and authentication.

  • Page 64: Profile

    Device Name: Enter Device or Users Name.  IP Address: Enter used IP Address of Device or Users PC.  MAC Address: Enter MAC Address of Device or Users PC.  A list of up to 10 websites can be created in the form. After the above function is setup, please click "Save"...

  • Page 65: Radius Account Setup

    Service:Administrator can select Enable or disable the function.  Radius:Administrator must to set remote RADIUS Server use Port.  Radius Secret:Administrator must to set remote RADIUS Server use Key.  Click “Save” button to save your changes. Then click Reboot button to activate your changes. Account Setup RADIUS When enabled RADIUS Server, administrator can add RADIUS account and password in the function.

  • Page 66: Wireless Configuration

    User Name:Create users name for RADIUS account.  Password:Enter password for user name.  Export User File:Administrator can export account list in RADIUS Server.  Import From PC:Administrator can import account list to the RADIUS Server.  Click “Save” button to save your set function. Then click Reboot button to activate your changes. Wireless Configuration This wireless functions administrator can set Radio 0(2.4G) or Radio 1(5G) or Radio 2(5G) application of the Access Point.
  • Page 67 Slot Timout : You can enter the slot time value here. When the distance is long or short, the  waiting time for packet transmission will be adjusted fast and slow. Distance: When the "Distance" button is clicked, the point-to-point bridge distance can be entered.

  • Page 68: Radio 1(5G) / Radio 2 (5G) Setup

    Shout GI: Short Guard Interval is “Enabled” by default to increase throughput. However, it can  also increase error rate in some installations, due to increased sensitivity to radio-frequency reflections. Select the option that works best for your installation. Aggregation: By default, it's “Enabled”. Select “Disable” to deactivate Aggregation. ...
  • Page 69 Setting Slot Time and ACK Timeout can strengthen the long-distance connection. Changing the value can optimize the setting. If the value is too low, the length transmission will be reduced. If the value is too high, there may be disconnection. HT Physical Mode TX/RX Stream: Administrator can select 1 or 2 TX/RX.

  • Page 70: Advanced Setup

    A part of the 802.11n standard (or draft-standard). It allows sending multiple frames per single access to the medium by combining frames together into one larger frame. It creates the larger frame by combining smaller frames with the same physical source and destination end points and traffic class (i.e.
  • Page 71 which support power saving mode, when to wake up to receive multicast frame. DTIM is necessary and critical in wireless environment as a mechanism to fulfill power-saving synchronization. A DTIM interval is a count of the number of beacon frames that must occur before the access point sends the buffered multicast frames.

  • Page 72: Wmm Setup

    Band Streeing: When 2.4GHz and 5GHz network cards coexist, the 5GHz network cable is  automatically used as the main connection to improve the performance. The threshold for connecting RSSI can be set, that is, when the signal value of the wireless user and the AP is better, the local machine will automatically interrupt the 2.4G user and force the use of 5G.
  • Page 73 AC Type:  Data Transmitted Queue Priority Description AP to Clients AC_BK Background High throughput. Bulk data that requires maximum throughput and is not time-sensitive is sent to this queue (FTP data, for example). AC_BE Best Effort Medium Medium throughput and delay. Most traditional IP data is sent to this queue.

  • Page 74: Wds Setup

    is reached. Once the Maximum Contention Window size is reached, retries will continue until a maximum number of retries allowed is reached. Valid values for the "cwmax" are 1, 3, 7, 15, 31, 63, 127, 255, 511, or 1024. The value for "cwmax" must be higher than the value for "cwmin".。...
  • Page 75 V2.0...

  • Page 76: Wds Status

    WDS Setup: Administrator can select Enable or Disable.  Security Type: Enable or Disable AES 128bit encryption function.  Pass Phrase : AES encryption custom key can input 0 ~ 9 numbers or A ~ Z uppercase and  lowercase English format, it can support 8 ~ 32 characters key encryption algorithm in each WDS connecting each other with secure encrypted transmission.
  • Page 77 MAC Address:Display connected MAC Address.。  Rate(TX/RX):Display Tx/Rx rate of the point to point。  RSSI: Display signal connection value of RSSI  Click “Save” button to save your set function. Then click “Reboot” button to activate your changes. V2.0...

  • Page 78: Client Bridge Mode

    6. Client Bridge Mode When Client Bridge is chosen, the system can be configured as a Client Bridge and support Repeater AP function. This can setup VLAN and DHCP server in the system menu. This section provides detailed explanation for users to configure in the Client Bridge Mode and Repeater AP function with help of illustrations.
  • Page 79 Mode: Administrator can select the IP used Static or Dynamic IP address.  Static IP : A set of fixed IP addresses can be manually set for the system to use.  Dynamic IP : If there is a DHCP server on the top, you can use the dynamic IP address to let ...

  • Page 80: Configure Dhcp Setup

    referred to as STP, is defined in the IEEE Standard 802.1d. DHCP Forward: When the AP Mode device and Client Bridge AP are linked, and DHCP Service is  “Enabled”, the Client Bridge AP must also enable DHCP Forward to allow connecting clients to receive the IP Address from the source AP (AP Mode Device).
  • Page 81 Start IP / End IP: Specify the range of IP addresses to be used by the DHCP server when assigning IP  address to clients. Netmask: The netmask default is 255.255.255.0.  Gateway: Enter source gateway IP address.  DNS1: Enter IP address of the first DNS server; this field is required. ...

  • Page 82: Wireless General Setup

    Action: Kicked user button.  Static Lease IP Setup: Administrator can set as static IP address for users. Comment: Enter description for the information.  IP Address: Set static IP address for users.  MAC Address: Set MAC address of user device. ...

  • Page 83: Radio 0(2.4G) Basic Setup

    6.3.1 Radio 0(2.4G) Basic Setup Administrator can change the data transmission, channel and output power settings for the system. Station Mode: If Client Bridge want to use 2.4G link to Access Point then administrator can  enable the function (radio 0). Country: Administrator can select country used channel by US and EU.
  • Page 84 Setting Slot Time and ACK Timeout can strengthen the long-distance connection. Changing the value can optimize the setting. If the value is too low, the length transmission will be reduced. If the value is too high, there may be disconnection. HT Physical Mode TX/RX Stream: Build in 2.4GHz 2 antennas and support 2TX/2RX streams.

  • Page 85: Radio 1 (5G) / Radio 2 (5G) Basic Setup

    is 32. recommends use default value is 500000. Aggregation Size: Set aggregation size, the size  Click “Save” button to save your set function. Then click “Reboot” button to activate your changes. 6.3.2 Radio 1 (5G) / Radio 2 (5G) Basic Setup MAC Address: Display Radio 1(5G) or Radio 2(5G) used MAC address.
  • Page 86 Setting Slot Time and ACK Timeout can strengthen the long-distance connection. Changing the value can optimize the setting. If the value is too low, the length transmission will be reduced. If the value is too high, there may be disconnection. HT Physical Mode TX/RX Stream: supporting 2TX/2RX streams.

  • Page 87: Advanced Setup

    Aggregation: By default, it's “Enable”. To “Disable” to deactivated Aggregation.  A part of the 802.11n standard(or draft-standard). It allows sending multiple frames per single access to the medium by combining frames together into one larger frame. It creates the larger frame by combining smaller frames with the same physical source and destination end points and traffic class (i.e.
  • Page 88 interval, which increases the rate of beacons. This will make the association and roaming process very responsive; however, the network will incur additional overhead and throughput will go down. DTIM Interval: The DTIM interval is in the range of 1~255. The default is 1. ...

  • Page 89: Wmm Setup

    not need them and thus controls which ports receive specific multicast traffic. Greenfield: In wireless WLAN technology, greenfield mode is a feature of major components of  the 802.11n specification. The greenfield mode feature is designed to improve efficiency by eliminating support for 802.11b/g devices in an all draft-n network.
  • Page 90 wait times. AC Type:  Data Transmitted Queue Priority Description AP to Clients AC_BK Background High throughput. Bulk data that requires maximum throughput and is not time-sensitive is sent to this queue (FTP data, for example). AC_BE Best Effort Medium Medium throughput and delay.

  • Page 91: Station Setup

    Minimum Contention Window. This parameter is input to the algorithm that determines the initial random backoff wait time ("window") for retry of a transmission. The value specified here in the Minimum Contention Window is the upper limit (in milliseconds) of a range from which the initial random backoff wait time is determined.。...
  • Page 92 The functions setting functions include Client Bridge link to AP station. Administrator can used “site survey” function to Search for AP stations. MAC Address List: The function can discovery AP Station and select want to link the AP station,  please click site survey button.

  • Page 93: Repeater Ap Setup

    Security: After site survey AP station complete will list all AP station, when click AP station  setup button then AP station information (ESSID/Security type) will display on page. PassPhrase Settings: Administrator need manual set correct ESSID security/Cipher type and ...
  • Page 94 ESSID: Enter the Repeater AP of ESSID name.  SSID Visibility: The default it’s Enable. When select Disable the SSID will not is discovered.  Client Isolation: This function is Disabled by default. All clients will be isolated from each other, ...

  • Page 95: Mac Filter Setup

    hashing algorithm and, by adding an integrity-checking feature, ensures that the keys haven’t been tampered with.  Group Key Update Interval: This time interval for re-keying GTK (broadcast/multicast encryption keys) in seconds. Enter the time-length required; the default time is 600 seconds.

  • Page 96: Fast Roaming Setup

    Allow or Reject. Only Allow List MAC: Define certain wireless clients in the list which will have granted  access to the Access Point while the access will be denied for all the remaining clients – Action Type is set to “Only Allow List MAC”. Only Deny List MAC: Define certain wireless clients in the list which will have denied ...
  • Page 97 Mobility Domain: MDID is used to indicate a group of APs (within an ESS, i.e., sharing the  same SSID) between which a STA can use Fast BSS Transition. Please enter 2-octet identifier as a hex string. R0 Key Lifetime: Default lifetime of the PMK-RO in minutes, the default is 10000, ...
  • Page 98 NAS Identifier: Enter 1~48 octets of network domain name.  Shared Key of 128 bit. 128-bit Key: Enter  R0 Key Holder List: After setting "R0 Key holders" function the information will appear in list. R1 Key Holder List: Enter a unified set of R1 Key Holder identification certification. MAC Address: Enter the main roaming device MAC address ...

  • Page 99: Wisp Mode

    7. WISP Mode WISP Mode is a router function, if the Telecom company permits wireless connection to their WAN, administrators can change the CenOS 5.0 AP to WISP Mode to connect to the wifi network. The WISP Mode support PPPoE / Static IP / Dynamic IP and PPTP for WAN, and support Repeater AP function.
  • Page 100 Static IP: Users can manually setup the WAN IP address with a static IP provided by WISP.  IP Address: The IP address of the WAN port.  IP Netmask: The Subnet mask of the WAN port.  IP Gateway: The default gateway of the WAN port. ...
  • Page 101 Password : Enter Password for PPPoE connection  MTU: By default, MTU is set to 1492 bytes. MTU stands for Maximum Transmission Unit.  Consult with WISP for a correct MTU setting. Reconnect Mode: Administrator can select three function for Always On / On Demand / ...
  • Page 102 virtual private network (VPN) connections. 128-bit key (strong) and 40-bit key (standard) MPPE encryption schemes are supported. MPPE provides data security for the PPTP connection that is between the VPN client and the VPN server. Reconnect Mode: Administrator can select three function for Always On / On Demand / ...

  • Page 103: Configure Lan Setup

    7.2 Configure LAN Setup Here are the instructions for how to setup the local IP Address and Netmask. Please click on System -> LAN and follow the below setting. Mode: Administrator can select the IP used Static or Dynamic IP address. ...
  • Page 104  IP address: The IP address is 192.168.2.254  Netmask: The default Netmask is 255.255.255.0  Gateway: The default Gateway IP Address is 192.168.2.1, Please check your Gateway IP and change. DNS: Enter IP address of domain name service.  ...

  • Page 105: Configure Dhcp Setup

    receive the IP Address from the source AP (AP Mode Device). By default, DHCP Forward is disabled in Client Bridge devices. This function must be enabled to allow clients connecting to the Client Bridge device to receive IP Addresses from the source AP. Click “Save”...
  • Page 106 Start IP / End IP: Specify the range of IP addresses to be used by the DHCP server when assigning IP  address to clients. Netmask: The netmask default is 255.255.255.0.  Gateway: Enter source gateway IP address.  DNS1: Enter IP address of the first DNS server; this field is required. ...

  • Page 107: Wireless General Setup

    Click “Save” button to save your set function. Then click “Reboot” button to activate your changes. 7.4 Wireless General Setup The main setup Client Bridge connection to AP Station and Repeater AP functions setting, MAC filter, WMM and 802.11r/802.11k Fast Roaming etc in wireless menu. When the upper limit of the 2.4G frequency is used, the repeater AP will only be able to use the other two 5G extension Repeater AP APs.
  • Page 108 Station Mode: If Client Bridge want to use 2.4G link to Access Point then administrator can  enable the function (radio 0). Country: Administrator can select country used channel by US and EU.  Band Mode: Select an appropriate wireless band; bands available are 801.11 b/g/n mixed ...

  • Page 109: Radio 1 (5G) / Radio 2 (5G) Basic Setup

    The 2.4Ghz antenna of this product thinks that it has a built-in 2x2. The default is already set to 2T2R. If there is no special requirement, please keep the setting.. Channel Bandwidth: The "20/40” MHz option is usually best. The other option is available for ...
  • Page 110 MAC Address: Display Radio 1(5G) or Radio 2(5G) used MAC address.  Country: Administrator can select country used channel by US / EU and Taiwan.  Band Mode: If Client Bridge want to use 5G link to Access Point then administrator can enable ...

  • Page 111: Advanced Setup

    When the device's wireless signal requires only a single antenna 1T1R, the main signal output location is ANT1, and ANT2 will have no signal output. Please refer to the manual 1.1 "Device & Antenna appearance of the action position when 1T1R. Channel Bandwidth: The "20/40 and 802.11ac 80”...
  • Page 112 Beacon Interval: Beacon Interval is in the range of 40~3500 and set in unit of millisecond. The  default value is 100 msec. Access Point (AP) in IEEE 802.11 will send out a special approximated 50-byte frame, called “Beacon”. Beacon is broadcast to all the stations, provides the basic information of AP such as SSID, channel, encryption keys, signal strength, time stamp, support data rate.

  • Page 113: Wmm Setup

    due to hidden wireless clients. RTS in AP will be enabled automatically if the packet size is larger than the Threshold value. By default, RTS is disabled in a normal environment supports non-jumbo frames. Short Preamble: By default, this function is “Enabled”. Disabling will automatically use the ...
  • Page 114 As an Example, time-sensitive Voice & Video, and multimedia are given effectively higher priority for transmission (lower wait times for channel access), while other applications and traditional IP data which are less time-sensitive but often more data-intensive are expected to tolerate longer wait times.
  • Page 115 AC Type:  Data Transmitted Queue Priority Description  AP to Clients AC_BK Background High throughput. Bulk data that requires maximum throughput and is not time-sensitive is sent to this queue (FTP data, for example). AC_BE Best Effort Medium Medium throughput and delay. Most traditional :...

  • Page 116: Station Setup

    received packets during wireless packet exchange. This policy is suitable in the environment where communication quality is fine and interference is weak. While the No ACK policy helps improve transmission efficiency, it can cause increased packet loss when communication quality deteriorates. This is because when this policy is used, a sender does not retransmit packets that have not been received by the recipient.
  • Page 117 MAC Address List: The function can discovery AP Station and select want to link the AP station,  please click site survey button. If want to discovery 2.4G station then administrator need to enable station mode in Radio 0 (2.4G) function page (reference manual 7.3.1 “Radio 0 Basic Setup”). Same practice if want to discovery 5G station will need to enable station mode in Radio 1(5G)/ Radio 2(5G) function page (reference manual 7.3.2 “Radio 1(5G) / Radio 2(5G) Basic Setup”).

  • Page 118: Repeater Ap Setup

    7.4.6 Repeater AP Setup Administrators can configure ESSID, SSID broadcasting, Maximum number of client associations. 4. If want to use Repeater AP function then Clinet Bridge must determine connection to Access Point then Repeater AP can operate normally. 5. The default is enabling of Repeater AP. If want to used pure Client Bridge will can disable it.
  • Page 119  Open System: Data are not unencrypted during transmission when this option is selected.  WPA/WPA2 Personal: WPA/WPA2 is short for W-Fi Protected Access-Pre-Shared Key. WPA/WPA2 uses the same encryption way with WPA, and the only difference between them is that WPA/WPA2 recreates a simple shared key, instead of using the user’s certification.

  • Page 120: Mac Filter Setup

    7.4.7 MAC Filter Setup Administrator can setup allow or reject WiFi clients(MAC address) to access Repeater AP. Rule: Select the desired access control type from the drop-down list; the options are Disable,  Allow or Reject. Only Allow List MAC: Define certain wireless clients in the list which will have granted ...

  • Page 121: Fast Roaming Setup

    Action Type is set to “Only Allow List MAC”. Only Deny List MAC: Define certain wireless clients in the list which will have denied  access to the Access Point while the access will be granted for all the remaining clients - Action Type is set to “Only Deny List MAC”.
  • Page 122 Mobility Domain: MDID is used to indicate a group of APs (within an ESS, i.e., sharing the  same SSID) between which a STA can use Fast BSS Transition. Please enter 2-octet identifier as a hex string. R0 Key Lifetime: Default lifetime of the PMK-RO in minutes, the default is 10000, ...
  • Page 123 Enter a unified set of R1 Key Holder identification certification. MAC Address: Enter the main roaming device MAC address  R1 Identifier: Enter Shared identifier.  128-bit Key: Enter Shared Key of 128 bit.  R1 Key Holder List: After setting "R1 Key holders" function the information will appear in list. Click “Save”...

  • Page 124: Advanced Setup

    7.5 Advanced Setup Administrator can set basic routing security functions, including DMZ / IP and MAC filtering / virtual servers and access control management (basic firewall rules) in Advance memu. 7.5.1 DMZ DMZ is commonly work with the NAT functionality as an alternative of Virtual Server(Port Forwarding) while wanting all ports of DMZ host visible to Internet users.

  • Page 125: Ip Filter

    7.5.2 IP Filter Can allow or deny filter ingress or egress packets from specific source and/or to destination IP address on wired (LAN) or Wireless (WAN) ports. Filter rules could be used to filter unicast or multicast packets on different protocols as shown in the IP Filter Setup. Important to note that IP filter rules has precedence over Virtual server rules.

  • Page 126: Mac Filter

    Interface: The interface that a filter rule applies.  Schedule: Can choose to use rule by “Time Policy”.  All packets are allowed by default. Deny rules could be added to the filter list to filter out unwanted packets and leave remaining allowed. Click “Save”...

  • Page 127: Virtual Server

    7.5.4 Virtual Server The “Virtual Server” can also referred to as “Port Forward” as well and used interchangeably. Resources in the network can be exposed to the Internet users in a controlled manner including on-line gaming, video conferencing or others via Virtual Server setup. Don’t repeat ports’ usage to avoid confusion.

  • Page 128: Access Control

    Private IP Address: Enter corresponding IP address for internal.  Private Port: Enter internal service port No. for private.  Schedule : Administrator can select to used rule of “Time Policy”  Click “Save” button to save your set function. Then click “Reboot” button to activate your changes.
  • Page 129 # Access control rules: Active:Administrator can select Enable or Disable for the Access control rule.  Comment:Administrator can enter comment for the role.  Protocol:Administrator can to select management protocol by TCP/UDP/ICMP/Content  Filter/Application and Domain Filter. ANY: Select "Any" is all deny Protocol, administrator can filter local IP / IP range go to ...

  • Page 130: Utilities

    8. Utilities Administrator can backup or restore system configuration / firmware Upgrade / ping tools and system reset to default or reboot system. 8.1 Profile Setting This Functions purpose is to backup current configuration, restore prior configuration or reset back to factory default configurations.

  • Page 131: System Upgrade

    Save Settings to PC: Click Save button to save the current configuration to a local disk.  Load Settings from PC: Click Browse button to locate a configuration file to restore, and then click  Upload button to upload. Reset To Factory Default: Click Default button to reset back to the factory default settings and ...
  • Page 132 Select File: Administrator can select Firmware file in Local PC.  Upgrade Via Local PC and TFTP Server: The upgrade firmware will support via local PC and TFTP Server and HTTP URL to upgrade system. We strongly recommend that you perform the firmware update by following these steps: 1.

  • Page 133: Man-Mesh Activation

    8.3 MAN-Mesh Activation Note that this is a MAN-Mesh upgrade by optional. The authorized activation code can be enabled after entering it. If there is no activation requirement, please skip this item. If you want to purchase and upgrade to MAN-Mesh, please purchase the MAN-Mesh authorized activation code from the dealer or our company first, and then enter the authorization code to start MAN-Mesh.

  • Page 134: Reboot

    IP/Domain: Enter desired domain name, i.e. www.google.com, or IP address of the  destination, and click ping button to proceed. The ping result will be shown in the Result field. Count: By default, its 5 and the range is from 1 to 50. It indicates number of connectivity ...

  • Page 135: Status

    9. Status The status mainly displays system related information, including system network information, wireless AP information, and wireless user connection information. 9.1 Overview Detailed information on System, Network can be reviewed via this page. V2.0...
  • Page 136 Overview : It mainly displays the current mode, name, time, firmware version, network card address and related network settings. Information : Shows the performance / memory usage of the total CPU space used by the current system and the current number of connected wireless users.。 Radio 0 / Radio 1 / Radio 2 wireless Information : Displays the basic operating mode information of the current Radio 0 (2.4GHz) / Radio 1 (5GHz) / Radio 2 (5GHz) wireless AP.

  • Page 137: Wireless Client

    9.2 Wireless Client The page can be display Wireless user information link to access point. Administrator can monitor MAC In addition to CAP mode) address / rate and RSSI for the wireless users. ( V2.0...

  • Page 138: Online Users

    Radio:Display information for wireless client connection Radio 0 or 1  MAC Address:Display information of clients Wi-Fi MAC address  Rata(Tx/Rx):Display information of clients Wi-Fi connection data rete.  RSSI:Display information of clients Wi-Fi connection signal strong and weak.  9.3 Online Users This function works in the wireless AP mode.

  • Page 139: Authentication Log

    IP Address:Display IP address for user.  MAC Address:Display MAC address for user.  Download Packets:Display total download packets amount information by user.  Upload Packets:Display total upload packets amount information by user.  Download Bytes:Display total download flow information by user. ...
  • Page 140 The system log displays system events when system is up and running. Also, it becomes very useful as a troubleshooting tool when issues are experienced in system. Time:The date and time when the event occurred.  Facility:It helps users to identify source of events such “System” or “User” ...

  • Page 141: Other Technical Documents]

    10. [ Other technical documents] Point to Point / Multi-Point for WDS settings 10.1 The WDS function is applied in the wireless AP mode. This function is mainly used for point-to-point wireless AP bridging. For the setting method,You can refer to the manual 5.5.5 “WDS Setting”. This document mainly guides the key WDS procedures.

  • Page 142: Apply Cerio Web Authentication Login

    10.2 Apply CERIO web authentication login page sample If the device uses our company's wireless AP CenOS5.0, and the web authentication function is enabled, you will be able to customize the web authentication page. You can follow the steps below to easily complete the sample login page.
  • Page 143 Step 3 : Please go to the pull-down function button of the authentication function, and enter the “User Name” and “password” , See as follows. 特別補充: * If want to use the system preset page, please refer to step * If want to apply our template, please refer to below for step 5, * If want to edit the webpage by yourself, please refer to step...
  • Page 144 Step 6 : Go to the company's Cerio website to download the sample file first. And open your download sample, select all the HTML syntax and copy it, then paste it on the custom edit page of the system and save it.
  • Page 145 Close "Template" first, then copy the sample html_code syntax and replace it in the HTML source code edit “ Customize HTML Source code” bar. After clearing the HTML source code content, then paste all the downloaded source code into the field, save and restart the device, and you can finish editing the login page. Login page for template below : V2.0...
  • Page 146 V2.0...
  • Page 147 This part must be within 190 lines. If the written HTML / CSS and other source code exceeds a certain line, it is recommended to save the CSS source code to the remote Web server, and then enter the IP address of the remote web server. Within Walled Garden. (Please refer to the manual 5.2.4 "Walled Garden"...
  • Page 148 Add <style> .form-signin-heading {display: none;} </ style> in the head to hide the description “Please Sign in” as shown in the figure below, and find the Please Sign in word disappeared, and so on. V2.0...

  • Page 149: Appendix A. Web Gui Valid Characters

    Appendix A. WEB GUI Valid Characters Table B WEB GUI Valid Characters Block Field Valid Characters IP Address IP Format; 1-254 IP Netmask 128.0.0.0 ~ 255.255.255.252 IP Gateway IP Format; 1-254 Primary DNS IP Format; 1-254 Secondary DNS IP Format; 1-254 Hostname Length : 32 0-9, A-Z, a-z...
  • Page 150 Block Field Valid Characters SNMP RO/RW community Length : 32 0-9, A-Z, a-z ~ ! @ # $ % ^ * ( ) _ + - { } | : < > ? [ ] ; ` , . = RO/RW user Length : 31 0-9, A-Z, a-z...
  • Page 151 Block Field Valid Characters Radius Server IP IP Format; 1-254 Radius Port 1 ~ 65535 Shared Secret 8 ~ 64 characters Session Timeout >= 60 seconds; 0 is disable WDS Setup AES Key 8 ~ 63 ASCII chars; 64 HEX chars Peer's MAC Address 12 HEX chars Description...

Table of Contents