Allied Telesis Extricom AT-EXMS-1000 Installation And User Manual
  1. Manuals
  2. Brands
  3. Allied Telesis Manuals
  4. Switch
  5. Extricom AT-EXMS-1000
  6. Installation and user manual
Allied Telesis Extricom AT-EXMS-1000 Installation And User Manual

Allied Telesis Extricom AT-EXMS-1000 Installation And User Manual

Wlan
Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
Extricom Series
WLAN System
AT-EXMS-1000
AT-EXLV-2000
AT-EXLS-3000
AT-EXMS-500
AT-EXRP-22n/32n/22En/32EOn
Installation and User Guide
613-002120 Rev. A

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the Extricom AT-EXMS-1000 and is the answer not in the manual?

Questions and answers

Related Manuals for Allied Telesis Extricom AT-EXMS-1000

Summary of Contents for Allied Telesis Extricom AT-EXMS-1000

  • Page 1 Extricom Series WLAN System AT-EXMS-1000  AT-EXLV-2000  AT-EXLS-3000  AT-EXMS-500  AT-EXRP-22n/32n/22En/32EOn  Installation and User Guide 613-002120 Rev. A...
  • Page 2 No part of this publication may be reproduced, stored in a retrieval system or transmitted, in any form or by any means, photocopying, recording or otherwise, without prior written consent of Allied Telesis, Inc. No patent liability is assumed with respect to the use of the information contained herein.
  • Page 3 Operation at distances of less than 20 cm is strictly prohibited. Changes or modification to equipment not expressly approved by Allied Telesis, Inc. is strictly prohibited and could void the user's license to operate the equipment.
  • Page 4 Federal Communication Commission and Industry Canada Interference Statement This equipment has been tested and found to comply with the limits for a Class B digital device, pursuant to Part 15 of the FCC and IC rules. These limits are designed to provide reasonable protection against harmful interference in a residential installation.
  • Page 5 directional applications and multiple co-located transmitters transmitting the same information are prohibited under this high EIRP category. However, remote stations of point-to-multipoint systems shall be permitted to operate at the point-to-point EIRP limit provided that the higher EIRP is achieved by employing higher gain directional antennas and not higher transmitter output powers. Extricom Series WLAN System Installation and User Guide...

  • Page 6: Table Of Contents

    Table of Contents About This Guide....................1 Audience .......................... 1 Conventions ........................1 Safety Precautions ......................1 Chapter 1 Introduction to the Extricom Series Wireless LAN System ......3 Overview of the Extricom Series WLAN System ............3 Feature Highlights ......................5 Overview of the Switch Platforms ..................
  • Page 7 Connecting the AT-EXLS-3000 Switch ................ 29 Range Extenders and Media Converters ............... 32 EXRE-1000 Range Extender ..................32 EXMC-1000 Media Converter ................... 32 Chapter 3 Configuring the Extricom Series WLAN System ..........33 Accessing the Extricom Series Switch GUI ..............33 Using the Extricom Series Web Configuration Pages ...........
  • Page 8 Chapter 5 Configuring the AT-EXLV-2000 System ............97 Advanced Configuration – AT-EXLV-2000 Differences ..........97 Enabling Large Public Venue ..................97 Configuring Honeypot ....................97 Configuring Access Point Parameters ................ 99 Switch Load Balancing ..................... 100 Chapter 6 Troubleshooting ....................102 Chapter 7 Northbound SNMP Traps................

  • Page 9: About This Guide

    About This Guide This guide provides detailed instructions for installing, configuring, and troubleshooting the AT- EXMS-500/1000, AT-EXLV-2000 and AT-EXLS-3000 WLAN switches, AT-EXRP-22n/32n and 22En/32EOn UltraThin™ Access Points (APs), AT-EXRE1000 range extender, and AT- EXMC1000 media converter. Audience This guide is intended for enterprise IT managers and system installers who are familiar with installing and configuring networks.
  • Page 10 CAUTION - Always replace the battery with the same type to avoid the risk of  explosion. Dispose of a used battery according to the instructions provided with the new battery.  About This Guide...

  • Page 11: Introduction To The Extricom Series Wireless Lan System

    Chapter Introduction to the Extricom Series Wireless LAN System A Wireless Local Area Network (WLAN) based on the IEEE 802.11 standard enables laptops, PDAs, phones, and other Wi-Fi equipped devices to wirelessly connect to the enterprise network. However, large-scale deployments of traditional cell-based WLANs, in which each access point (AP) operates on a different channel than that of adjacent APs, have been hindered by issues such as poor coverage, low capacity, high-latency mobility, and expensive interference analysis or site survey and maintenance costs.
  • Page 12 Figure 1: Three-Channel Blanket Coverage The Extricom Series solution is based on a fully centralized WLAN architecture, in which the switch makes all the decisions for packet delivery on the wireless network. In this configuration, the access points (APs) simply function as radios, with no software, storage capability, or IP addresses. Even the basics of connecting are different: clients associate directly with the switch, not with the APs.

  • Page 13: Feature Highlights

    simultaneous data streams. Such technology is capable of increasing data throughput via enhancements such as spatial multiplexing (data streams), 40MHz channel bonding, Block Acknowledgment and frame aggregation, and use of spatial diversity to increase range. Feature Highlights The Extricom Series WLAN system solution offers the following features: ...
  • Page 14  Frame aggregation With MAC-layer aggregation, a station with a number of frames to send can combine them into an aggregate frame (MAC MPDU). The resulting frame contains fewer headers in the overhead than would be the case without aggregating, and because fewer, larger frames are sent, the contention time on the wireless medium is reduced.
  • Page 15 other security methods such as EAP-PEAP. In an enterprise environment, several RADIUS servers may be used for backup and also for serving different geographical locations. Up to four different RADIUS servers can be defined for each ESSID. RADIUS redundancy is based on the assumption that the user database is identical in all RADIUS servers and that users are listed in all servers with the same credentials.

  • Page 16: Overview Of The Switch Platforms

    WMM (based on 802.11e standard) enhances the DCF by defining an Enhanced Distributed Channel Access (EDCA). EDCA specifies different fixed and random wait times for the four prioritization categories to provide more favorable network access for applications that are less tolerant of packet delays.
  • Page 17 Figure 2: AT-EXMS-1000 The AT-EXMS-1000 is equipped with 2 RJ45/SFP GBE Combo port uplinks and 16 GBE PoE (Power over Ethernet) edge-side ports. The AT-EXMS-1000 is capable of performing different wireless and networking functions, depending on the firmware installed on it. Figure 3: AT-EXLV-2000 The AT-EXLV-2000 is equipped with 2 RJ45/SFP GBE Combo port uplinks and 16 GBE PoE (Power over Ethernet) edge-side ports.
  • Page 18 Figure 5: AT-EXMS-500 The AT-EXMS-500 is equipped with 2 RJ45/SFP GBE Combo port uplinks and 8 GBE PoE edge- side ports. The AT-EXMS-500 is capable of performing different wireless and networking functions, depending on the firmware installed in it. Configuring a switch and its associated set of APs is as simple as configuring a single traditional AP, greatly reducing the effort required to deploy and maintain the WLAN.

  • Page 19: Overview Of The Extricom Series Access Points

    Overview of the Extricom Series Access Points Access Points with Internal Integrated Antennas The two-radio AT-EXRP-22n and three-radio AT-EXRP-32n are 802.11n access points with internal antennas for maximum throughput and easy deployment of 802.11n with or without legacy Wi-Fi. The AT-EXRP-22n is equipped with two, and the AT-EXRP-32 - with three, dual-stream radios, each of which can be operated on the 2.4 GHz or 5 GHz band.

  • Page 20: Outdoor Access Points With Connectors For External Antennas

    Figure 7: AT-EXRP-22En AP The AT-EXRP-22En AP is connected to the Extricom Series WLAN Switch via standard Cat5e/6 cables, in exactly the same manner as integrated antenna AP models. The APs are powered by the standard 802.3af Power over Ethernet (PoE), but can be powered by an external power supply if desired.

  • Page 21: A Typical Extricom Series Wireless Network Topology

    Figure 8: AT-EXRP-32EOn AP The AT-EXRP-32EOn connects to the Extricom Series WLAN Switch via standard Cat5e/6 cables, in exactly the same manner as integrated antenna AP models. The APs are powered by the standard 802.3af Power over Ethernet (PoE), but can be powered by an external power supply if desired. An antenna with an N-type plug (male) connector can be connected to the AT-EXRP-32EOn.
  • Page 22 The Extricom Series uses standard WLAN protocols (IEEE 802.11). As a result, any 802.11a/b/g/n standard wireless device can work seamlessly with the Extricom Series system.  Mixing different types of Extricom Series APs on the same switch is only permitted with the following: AT-EXRP-22n, AT-EXRP-32n, AT-EXRP-22En and AT- EXRP-32EOn IMPORTANT NOTE: While these AP configurations are possible, it...

  • Page 23: Switch Cascade

    Switch Cascade Switch Cascade is an Extricom Series topology in which two AT-EXMS-1000 or AT-EXLV-2000 switches are interconnected together to create one larger logical switch with optional enhanced redundancy capabilities. One AT-EXMS-1000 switch serves as the primary, and the other AT- EXMS-1000 switch serves as the secondary.
  • Page 24 Resiliency in Switch Cascade  Switch Cascade Resiliency applies only to the AT-EXMS-1000 and AT-EXLV-2000 switches. The optional Resiliency licensed feature provides enhanced redundancy capabilities. Switch Cascade in Resiliency mode can overcome failures in uplink, switches, or the interconnection between the switches. See the following examples: LAN2 Port Interconnect...
  • Page 25 LAN2 Port Interconnect Primary Switch Secondary Switch Figure 12: Full Redundancy in Switch Cascade Topology In Figure 12 above, a full redundancy configuration is shown, where it is possible to deploy APs interleaved, depending on the degree of service robustness required in the event of a failure. In an AP interleaved deployment, APs are deployed as in Figure 12, with one or more APs from the primary switch placed in the coverage area of the secondary switch, and vice versa.

  • Page 26: At-Exls-3000

    AT-EXLS-3000 The AT-EXLS-3000 topology consists of two tiers with up to 128 APs connected via 8 edge AT- EXMS-1000 switches to a single AT-EXLS-3000 switch. All 128 APs are interconnected to the AT-EXLS-3000 to create one very large logical switch. A diagram of the AT-EXLS-3000 topology is shown below.

  • Page 27: Installing The Extricom Series Wlan System

    Chapter Installing the Extricom Series WLAN System This chapter provides instructions for unpacking and installing the Extricom Series WLAN system. Unpacking the Extricom Series WLAN System The Extricom Series WLAN Series WLAN System is shipped depending on the customer order. ...

  • Page 28: At-Exre-1000 Range Extender

    AT-EXRE-1000 Range Extender The AT-EXRE-1000 Range Extender shipping box includes one AT-EXRE-1000 Range Extender. AT-EXMC-1000 Media Converter The AT-EXMC-1000 Media Converter shipping box includes the following:  One AT-EXMC-1000  One EXPA-48 AC/DC Adapter Additional Equipment The following additional equipment is required for installing the Extricom Series WLAN system: ...

  • Page 29: Determining The Location Of The Extricom Series Access Points

    Determining the Location of the Extricom Series Access Points Before installing the switch and the APs, create a plan for the placement of the APs. Before permanently mounting the APs, it is recommended to test the network (using a laptop client) to identify potential coverage holes.
  • Page 30 Description Serial connector – only to be used for troubleshooting, support, or Console maintenance by, or as instructed by, Allied Telesis personnel. Refer to the Troubleshooting section for console cable pin-out and serial parameters. 2 GbE RJ45, 2 GbE SFP combo ports – used to connect the switch to LAN1, LAN2 the wired LAN.
  • Page 31 Table 2 below describes the front panel LEDs of Extricom Series Switches. Color Description No power  Power None Blinking - system is loading, final loading phase  Green Solid On - switch is ready/operational  On – loading error or secondary switch not ...

  • Page 32: At-Exrp-22N/32N/22En/32Eon Access Points

    AT-EXRP-22n/32n/22En/32EOn Access Points All Extricom Series APs have two connectors on the front panel of the device: the WLAN connector and the Power connector. The AT-EXRP-22En and AT-EXRP-32EOn have external antenna connectors. The Access Points have an LED located near the LAN port on the front face of the device.

  • Page 33: Access Point Connectors And Leds

    Access Point Connectors and LEDs The tables below describe the Extricom Series Access Point connectors and LEDs. Connectors Description Power External power is not required for most  applications. Power is supplied via the Ethernet cable (PoE). In case of an external power requirement (e.g., when media converters are used and POE is blocked), use a UL Listed Limited Power Source (LPS) or NEC Class II power adapter.

  • Page 34: Mounting The Switches (Optional)

    Mounting the Switches (Optional) Extricom Series WLAN switches can be rack mounted. Two 19 inch rack installation brackets are shipped with the switches. The bracket is shown in Figure 20. Figure 20: Switch Mounting Bracket Mounting the Access Points (Optional) The AT-EXRP-22En/32EOn APs can be mounted on a wall or ceiling.

  • Page 35: Connecting The Switch And The Access Points

    To mount the AT-EXRP-22n/32n Access Points: Place the installation template on the wall where you want to mount the AP: use the drilling card included with the AP (see Figure 22), or refer to Internal Access Point Mounting Template in this guide. Figure 22: AP Drilling Card Mark the "Point for Drilling"...
  • Page 36  Additional APs can be connected or disconnected while the switch is active. If using fiber media converters (ATI/100Mbps, CTC/1000Mbps) to extend switch-to- AP distance:  The switch-side media converter is powered via PoE from the WLAN switch or optional external power supply. ...

  • Page 37: Connecting The At-Exls-3000 Switch

    The maximum length of the primary-to-secondary (AT-EXLS-3000-to-AT-EXMS-1000) switch interconnect is computed according to the following tables: (all distances are in meters) Using CAT-5e/6 100/1000Mbps cable: Distance Between Secondary Switch Max. Switch Interconnect Distance and Its Farthest AP (Copper Interconnect Cable) 150 (with EXRE) Note: Beyond 100 m, copper-based cables require a range extender (EXRE).
  • Page 38 If an AP must be located over 100 meters from the switch, an Extricom Range Extender must be used, which allows up to an additional 50m, for a total switch-to-  AP distance of up to 150m. AP distances of up to 400m can be supported on GbE connections by using Extricom EXMC-1000 media converters.
  • Page 39 The maximum length of the primary-to-secondary switch interconnect is computed according to the following tables: (all distances are in meters). Using CAT-5e/6 100/1000Mbps cable: Distance Between Secondary Switch Max. Switch Interconnect Distance and Its Farthest AP (Copper Interconnect Cable) 150 (with EXRE) Note: Beyond 100 m, copper-based cables require a range extender (EXRE).

  • Page 40: Range Extenders And Media Converters

    Range Extenders and Media Converters EXRE-1000 Range Extender The EXRE-1000 Power Over Ethernet Gigabit (PoE) Range Extender doubles the standard range of PoE, from the baseline 100 meters to a full 150 meters, all while enabling full gigabit speed. It can be used both as a standalone product, to extend the reach of PoE installations, and as a complement to the Extricom Series WLAN System.

  • Page 41: Configuring The Extricom Series Wlan System

    Chapter Configuring the Extricom Series WLAN System Accessing the Extricom Series Switch GUI After connecting the switch and APs, configure the Extricom Series WLAN system through the Extricom Series web configuration GUI using a terminal or PC connected to the same LAN as the switch.

  • Page 42: Using The Extricom Series Web Configuration Pages

    Figure 23: Login Page Enter the user name and password of the system integrator and click OK. The Summary page appears. If you did not receive a user name and password with your switch, use the following factory default user name and password: ...
  • Page 43 Configuration Display, Work Area (for some screens) Navigation Tree Event and Alarm Area Figure 24: Typical Web Configuration Page The navigation tree provides access to the Overview display, as well as the following Extricom Series Web configuration pages:  Quick Setup – wizard used to quickly set up a basic switch configuration. ...

  • Page 44: Overview Of The Configuration

    If you change the IP address of the switch, and the new IP address is accessible from your computer, you will not lose the connection session. If however, the new IP  address is on a different subnet which is inaccessible from your computer, the connection session will be lost.
  • Page 45 Field Description Firmware Version Displays the firmware version number installed Licensed AP ports Displays the number of licensed ports configured Application Type Displays one of the switch configuration options: WLAN Switch/WLAN Secondary Switch/ WLAN primary Switch LAN Configuration Main IP address of the switch Network mask IP address of the default gateway WLAN Configuration...

  • Page 46: Configuring Lan Parameters

    Configuring LAN Parameters To configure LAN parameters: Click LAN Settings in the navigation tree. The LAN Settings page appears (see Figure 26). Figure 26: LAN Settings Page Configure the LAN parameters. Refer to Table 6 for a description of the LAN parameters. Field Description LAN IP Address...
  • Page 47 Field Description Switch Name Alphanumeric descriptor of the switch. Maximum length is 64 characters. Port Redundancy Drop-down menu with the following options:  Disabled  Enabled When enabled, the GbE RJ45/SFP combo ports function as a redundant pair, consisting of the primary SFP port and the secondary RJ45 port.

  • Page 48: Configuring Wlan Settings

    Configuring WLAN Settings The WLAN Settings section is subdivided into three menu subsections:  ESSID Definition – refer to Configuring ESSID Definition.  Radios – refer to Configuring WLAN Radios.  Assignments – refer to ESSID Assignment. Configuring ESSID Definition An ESSID (Extended Service Set Identifier) is a name of a network, which is defined by a set of privileges, settings, and limitations (such as security definitions, access privileges, VLAN assignments).
  • Page 49 Figure 27: WLAN ESSID Definition Page - ESSID Settings Tab Field Description ESSID Select ESSID Select an ESSID from the list. Once selected (highlighted), you may add or rename it by clicking on either the Rename or the Delete & Save button on the right. New ESSID Type in the new ESSID name string and click on the Add &...
  • Page 50 Field Description Display ESSID in This option provides an additional (though limited) level of Beacon security. The AP sends out a beacon with information about the network. If this option is enabled, the ESSID appears in the beacon. If disabled, the ESSID does not appear in the beacon. Allow Store &...
  • Page 51 Field Description MAC ACL This option, when enabled, allows a user to add a MAC access list to the specific ESSID. Only clients with a MAC address included in this list are allowed to access the network if the MAC ACL mode is set to Whitelist.
  • Page 52 Field Description In Band Management Select this option if you wish to allow management of the switch via the wireless media through this ESSID. In-band management ESSIDs are assigned to the same VLAN as the VLAN that has been set up for the switch management. Once you set this option, the VLAN setting will be automatically updated to the management VLAN as set in the LAN Configuration web page.
  • Page 53 Configuring Security Definitions In the Encryption section of the ESSID Settings configuration page, the following security definitions can be configured:  Method of encryption.  Type of authentication. With some configurations, you can use encryption without authentication. For a higher level of security, however, it is recommended to use both encryption and ...
  • Page 54 Field Description Choose the method of encryption with or without authentication. Encryption A combination of encryption and authentication methods may be selected from the Method drop-down list. There are eight options available: None – no authentication.  WEP64– Wired Equivalent Privacy (802.11 encryption protocol). ...
  • Page 55 Field Description In addition, there are two types of encryption ciphers available: AES – Advanced Encryption Standard (Cipher Block Chaining  Message Authentication Code Protocol) is currently the most advanced and secured method of Wi-Fi encryption and is part of 802.11i (WPA2) standard. TKIP –...
  • Page 56 Field Description The WEP Keys area is only enabled if the cipher selected in the WEP Keys Method field of the Encryption area is either WEP64, WEP128, WEP64 & 802.1X Authentication, or WEP128 & 802.1X Authentication. In the WEP Keys area, you define the WEP Transmission Key that is used for encrypting or decrypting.
  • Page 57 Field Description Define the RADIUS Authentication Server(s) by selecting one (or RADIUS Authentication more, up to four) from the drop-down list if: Servers The WEP64/WEP128 encryption with the 802.1x  authentication method is selected, or The WPA/WPA2 - Enterprise or WPA/WPA2 - Enterprise & ...
  • Page 58 Figure 28: MAC ACL Configuration Tab 1. Select one of the configured ESSIDs from the ESSID: drop-down list. 2. Select a MAC address from the list in the All MACs field. 3. Use the right arrow to add this MAC address to the ESSID: field (use the left arrow to remove a MAC address from the ESSID: field).
  • Page 59 Figure 29: MAC ACL Scheduler Configuration Tab MAC ACL schedule may be activated by selecting the MAC Access List Scheduler checkbox at the top of the work area. Also: 1. To add a new ACL schedule, click New Task. An entry named New Task will appear in the Tasks field.

  • Page 60: Configuring Radius

    3. To apply the selected ACL task to the specified MAC addresses, proceed to the MAC Assignments area of the configuration screen. Here, you may move various MAC addresses between the Unassigned and Assigned fields by using the left and the right arrow keys.
  • Page 61 Field Description Timeout The time (in seconds) during which the Extricom Series switch will wait for the RADIUS server response, before it stops transmitting and switches to the next failover RADIUS server (if configured). Allow Auth. Click to allow the RADIUS attributes to determine the length of time a user can be connected to the wireless network.

  • Page 62: Configuring Wlan Radios

    Configuring WLAN Radios To configure the WLAN radios, select Radios under WLAN Settings in the navigation tree. On this configuration page, you will find the following three configuration tabs:  WLAN Wizard  Radios  Configuring Radios Using WLAN Wizard Figure 31: WLAN Wizard Configuration Page Using the step-by-step WLAN Wizard facility, and starting with either the Current Configuration or a new one (Start Over), you may simplify the process of configuring the radios, following the...
  • Page 63 Configuring Radios Manually To configure each radio manually, click on the Radios tab to access the Radios configuration screen. The radio settings configured on the Radios tab apply to all access points connected to the switch. That is, each radio can be configured differently in the Radios tab on a switch; however, these radio settings will be the same on each access point connected to the switch.
  • Page 64 Field Description Channel Options WLAN Mode Select the WLAN mode from the drop-down menu. Options are: Disable - choose this option to disable the radio  802.11a  802.11b  802.11g  802.11 Mixed b/g  802.11n/a  802.11n/g  802.11n/g/b ...
  • Page 65 Field Description Enable Load Check this box if you want to enable load balancing. By using Balancing load balancing, mobile devices connect to the least-loaded Basic Service Set Identifier (BSSID) among all BSSIDs sharing the mobile devices’ SSID. The number of connected users defines the metric that is used to determine the load.

  • Page 66: Configuring Wmm

    Field Description 802.11a/b/g Rate Data rate configuration is only applicable to 802.11a/b/g Configuration Channel Blankets. For each of the data rates listed, select whether the rate is Basic, Optional, or Disabled. When configuring the data rates, you should consider the data rate capabilities of the wireless devices in your enterprise.
  • Page 67 Figure 33: WMM Configuration Tab Field Description CWmin From the drop-down menu, select Min Contention Window (time slots) for each access category. Available values are: 3, 7, 15, 31, 63, 127, 255, 511, and 1023. The default values for the following categories are: Voice –...
  • Page 68 If the packets are tagged on the wire using 802.1p, the 802.11 QoS priority code is determined from the maximum between the priority code derived from the WMM static mapping value (2, 0, 5, or 7) and the 802.1p priority code. WMM Access Category Static 802.11 QoS Value Priority...

  • Page 69: Essid Assignment

    ESSID Assignment To assign specific radios to individual ESSIDs, select Assignments under WLAN Settings in the navigation tree. Figure 34: ESSID Assignment Page The web page displays a cross-reference table of previously defined ESSIDs and radios (up to 4). Check the box for each ESSID you wish to assign to any of the four radios.

  • Page 70: Access Points

    Access Points The only AP configuration required in the Extricom Series WLAN architecture is powering of the AP ports on or off. To configure AP PoE status: Click on Access Points in the navigation tree. Under the PoE & Radio Controls tab: ...
  • Page 71 Figure 36: Port Naming Window Type in the names for the ports, click Save, then Close. To see which ports of the AP are up or down, click on the AP Status tab. To display the most up-to- date information, click on the Refresh button on the right side of the screen. Figure 37: Access Points Status Page APs of Cascaded Switches When two switches have been cascaded together as primary and secondary (refer to the Switch...
  • Page 72 Figure 38: Access Point Configuration Window - Secondary Switch Selective Radio Activation Toggle an individual radio in a specific AP on or off by clicking on its image. The radio image will turn either green or grey, depending on whether it has been powered on or off, respectively. To immediately activate your selection, click the Apply button on the right side of the configuration screen.

  • Page 73: System Tools Configuration

    System Tools Configuration Apply Use this tab to apply the new configuration changes. In some cases, after using the Apply button, a system reboot is required, however, most parameters can be changed, and the changes take effect immediately. A system reboot is required after a change in the application type or firmware and license upgrades.

  • Page 74: Maintenance

    Rebooting before applying the changes will discard those changes. Maintenance Use the tab to:  Save the current configuration to a disk.  Upload a configuration to the switch.  Restore the switch to factory default configuration.  Undo configuration changes and return to the last applied configuration. Figure 40: Maintenance Configuration Tab Field Description...
  • Page 75 To upload a configuration, check the appropriate configuration elements in the “Browse” pop-up window, then click Upload: Figure 41: Pop-up Window - Configuration Elements to Upload To restore the factory default parameters, check the appropriate boxes in the “Browse” pop-up window, then click Restore: Figure 42: Pop-up Window - Configuration Elements to Restore Extricom Series WLAN System Installation and User Guide...

  • Page 76: Time & Date

    Time & Date Use this configuration tab to set the time and date on the switch. The Extricom Series system supports two ways of setting the time and the date - manually or using the NTP protocol. Figure 43: Time & Date Configuration Tab To manually set the time and date on your Extricom Series Switch: Select the Manually radio button.

  • Page 77: Passwords

     maintenance and service purposes. Changing these passwords should be performed only by an Allied Telesis-authorized engineer. For security purposes, it is important that all the passwords (including operator and root passwords) be changed from the default values when the switch is first installed, as well as periodically updated.

  • Page 78: Upgrade

    Download the upgrade file to your computer from the CD supplied with your purchase. Obtain an upgrade file from your authorized Allied Telesis reseller or distributor. Create a backup of the current configuration as described under the Save option of the Maintenance configuration section.

  • Page 79: Certificate

    Certificate The first time that a Captive Portal user logs into the SSL (https) version of the portal from his browser, he will receive a notice about a problem with the switch security certificate, such as “There is a problem with the website’s security certificate. At that point, the user simply clicks on “Continue to this website (not recommended)”...

  • Page 80: License

    Figure 46: Application Configuration Tab License To install the license and activate the switch, click on the License configuration tab. Browse to the location of the License file on your computer. Click Install & Reboot to finish activating the switch. The switch reboots, and the license details are displayed in the Installed License Details section of the License Configuration tab.

  • Page 81: Advanced Configuration

    Advanced Configuration To configure advanced features, select Advanced from the navigation tree. Under this configuration category, you will find the following configuration tabs: Cascade Resiliency The Resiliency tab will only appear on a switch that has the Resiliency parameter on the License installed.
  • Page 82 Field Description Enable Cascade Check box to enable Cascade Resiliency. Resiliency Reference IP IP address of a reference device on the LAN. This is used to test connectivity to the LAN. The reference device must be operational and respond to pings. Keep Alive Timeout Interval in seconds between keep-alive packets sent to the reference IP.

  • Page 83: Rogue

    Notes: 1. Traffic interruption time during a failover depends on the link and switch core monitoring parameters chosen (see Table 17 above). 2. √ = Full service 3. X = Not in service 4. The cascaded switches contain the same configuration file, so in the event of a primary or secondary failure, the same configuration file is used by the operational switch.

  • Page 84: System Logging

    Field Description Rogue AP Whitelist Add BSSID Add a BSSID (MAC address) of an AP that you permit to operate in your network Edit Edit the list of legal BSSIDs Remove Remove a BSSID from the white list Table 18: Rogue Configuration Tab Parameters System Logging By default, the event logging is turned off.
  • Page 85  Client disassociation  Client ignore MTU  EAPOL key error  Edge connected  Edge disconnected  Edge mode switchover  Firmware Upgrade done  Firmware Upgrade failed  Firmware Upgrade progress  Firmware Upgrade startup  Intrusion detection association flood attack ...

  • Page 86: Snmp

     Redundancy Keep alive Connection Up  Redundancy Peer Connection Down  Redundancy Peer Connection Up  Redundancy Status Down  Redundancy Status Up  Rogue AP Found  Rogue AP Lost  Rogue AP Update  Set Client IP ...

  • Page 87: Snmp Traps

    Figure 51: SNMP Configuration Tab SNMP Traps Traps can be sent by the switch over its northbound interface to network management devices. To begin sending SNMP traps over the northbound interface, configure the SNMP Traps section under the SNMP tab as follows: Select the Enable Traps checkbox.

  • Page 88: Ids

    Enter the IP address of a device, along with the Get-Request and Set-Request passwords in the Read Community and Write Community fields, respectively. Click Add. Enter as many ACLs as needed. Before navigating away from this configuration screen, do not forget to save the changes you made by clicking the Save button on the right.
  • Page 89 Field Description Enable Enables Intrusion detection Duration Attack WLAN devices reserve the channel for a particular period of time and then start using the radio channel. This time period is the Network Allocation Vector (NAV) in 802.11. By using high NAV values, an attacker can prevent other WLAN devices from utilizing the wireless network.

  • Page 90: Portal (Captive Portal)

    Portal (Captive Portal) The Captive Portal mechanism restricts user Internet access by redirecting user web access requests to a Captive Portal web page. There are two Captive Portal web page types:  SSL-based Secured Logging: In Secured Logging, a user is initially authenticated before allowed internet access.
  • Page 91 Field Description Enable captive portal You must enable this option system-wide if you want to configure Captive Portal on any ESSID. VLAN Set the Captive Portal VLAN. When ESSID is set to be Captive Portal restricted, the ESSID VLAN is automatically set to this VLAN. Secured Login Set the type of authentication - either None, Remote, or Local.

  • Page 92: Multicast

    Figure 54: Extricom Series Default Captive Portal Web Page Multicast Under the Multicast configuration tab, you may limit the amount of time the system is busy with sending Multicast traffic: this feature mostly applies to specific applications communicating mostly via multicast traffic. ...

  • Page 93: Lbs

    Real Time Location Services (RTLS) support third-party Location-Based Service (LBS) tab: RTLS solution vendors to provide high-accuracy location-based services for WLAN mobile clients. Figure 56: LBS Configuration Tab Expert Under the Expert tab, Expert User mode provides advanced configuration options which are not visible via the basic settings.
  • Page 94  Select the MAC Authentication checkbox if you wish to enable this option.  Select the Beacon Rate Control checkbox if you wish to enable this option.  Select the In Band Management checkbox if you wish to enable this option (this is a general enabling of the option and requires per ESSID configuration).

  • Page 95: Viewing Events And Reports

    Band Steering A technique called "Band Steering" is used to divert 802.11 clients to the 5 GHz band. Band steering works by recognizing that a client is 5Ghz capable and then responding to its association requests only in the 5 GHz band and not the 2.4 GHz band. The client then associates in the 5 GHz band.

  • Page 96: System Events

    Figure 60: Events & Reports - Client Events Tab System Events The System Events tab lists system messages that were generated by the switch as event notifications. Date & Time of occurrence, as well as the Severity of the event are also displayed. Clients Events The Clients Events tab lets you view client association and disassociation events only.
  • Page 97 Figure 61: Events Filter Configuration Tab Refer to Northbound SNMP Traps for event descriptions. Reports The Reports window, shown below, provides a wide range of per-radio-channel-based and per- switch-based statistics. Figure 62: Reports Tab The following table describes the information available on this page: Field Description Downlink...
  • Page 98 Field Description Available only if TrueReuse is enabled. Ranges from 1-3. TrueReuse Factor Indicates the current downlink throughput relative to what the downlink throughput would have been if TrueReuse were not enabled. Computes the average number of downlinks transmitting simultaneously per radio channel. The average is computed based on several snapshots taken during several one-second time intervals.
  • Page 99 Figure 63: Diagnostics Tab Field Description Wire Statistics LAN Statistics Click Get Statistics to get information about the transmit (TX) and receive (RX) traffic on the LAN, in packets and in bytes. You also receive information on traffic, such as, errors, drops, and overruns.
  • Page 100 Field Description Initiates a data transfer to measure the drop-packets threshold. Cable Test The recommended duration for the cable test is 1200 seconds. Initiates all three tests - CCA Percentage, CRC Errors, and Cable Overall Test Test. The results are displayed in the right portion of the screen. Table 22: Diagnostics Tab Parameters and Tests Configuring the Extricom Series WLAN System...

  • Page 101: Configuring The At-Exls-3000 System

    Chapter Configuring the AT-EXLS-3000 System Powering Edge Switches The Edge switches are independently powered and supply power to the Access Points via PoE. The PoE output from the AT-EXLS-3000 unit provides the power for the EXMC-1000 Media Converters, which can be used to provide a fiber optical connection between the AT-EXLS-3000 and the AT-EXMS-1000 switches.

  • Page 102: Advanced Configuration - At-Exls-3000 Differences

    Figure 64: Access Points PoE & Radio Controls Page  In the above image, the AT-EXLS-3000 is displayed as “Mega Switch”. For information on configuring the system tools, refer to System Tools Configuration on page 65. Advanced Configuration – AT-EXLS-3000 Differences To configure advanced features, select Advanced from the navigation tree.
  • Page 103 Redundancy is only available if an appropriate license is installed. To check whether redundancy has been installed, refer to License on page 72. If it is not available, contact your Allied Telesis distributor. Extricom Series WLAN System Installation and User Guide...
  • Page 104 Redundancy Fields for Primary Switch Table 23 lists all available options under the Redundancy configuration screen fields. Field Description Enable Mega Select this field to enable redundancy. Redundancy Mega Peer IP IP address of the AT-EXLS-3000 device on the LAN. Reference IP IP address of a reference device on the LAN.

  • Page 105: Configuring The At-Exlv-2000 System

    Chapter Configuring the AT-EXLV-2000 System Advanced Configuration – AT-EXLV-2000 Differences To configure advanced features, select Advanced from the navigation tree. For more detailed information, refer to Advanced Configuration on page 73. Figure 66: LV Settings Enabling Large Public Venue Enabling this option provides for the enhanced functionality to provide the IEEE 802.11 service within large public venue sites.
  • Page 106 Figure 67: Honeypot Field Description Honeypot ESSID Select one ESSID from the Drop-down menu:  None – if there is no need for Honeypot on the configured WLAN switch.  ‘Honeypot-Name’ – Select the ESSID, which has been configured to be the honeypot. See below for honeypot ESSID configuration.

  • Page 107: Configuring Access Point Parameters

    The Honeypot ESSID should be configured as follow: Field Value Description ESSID Name <Name> Any Alpha-Numeric name Allow Default ESSID Enable Allow connection without requesting specific ESSID Display ESSID in Beacon Disable ESSID does not appear in Beacon Allow Store & forward Disable All traffic goes through the WLAN switch Allow Inter-ESS forward...

  • Page 108: Switch Load Balancing

    Select the Tx power of all the radios at all the access points from the drop-down menu:  Highest: Highest available power of the radio (15 dbm).  High: Lower (3 db) power mode of the radio (12 dbm).  Normal: Lower (3 db) power mode of the radio (9 dbm).
  • Page 109 Figure 69: LV Switch Load Balancing Field Description Allow Load Balancing Enables the Switch Load Balancing feature on this switch. Enable Whole Switch Configures that the load be balanced for the entire switch. Enable Per ESSID Configures that the load be balanced per SSID. Switches Group Name of the group within the load will be balanced.

  • Page 110: Chapter 6 Troubleshooting

    Chapter Troubleshooting Table 27 lists problems you may encounter with your WLAN and provides possible solutions. If after trying the solutions you are still experiencing difficulties, contact Allied Telesis Customer Support. Problem Solution The AP Power LED Verify that the AP Ethernet cable is connected to the switch and to ...
  • Page 111 Problem Solution Cannot access the Verify that the workstation on which the web browser is running is  switch’s web connected to the same LAN as the switch. configuration GUI https Verify that the URL entered for the switch begins with ...

  • Page 112: Northbound Snmp Traps

    Chapter Northbound SNMP Traps The table below lists and describes the SNMP Traps sent by the Extricom Series Switch over the northbound interface. SNMP Traps will only be sent if enabled in the switch configuration. Furthermore, some traps will only be sent if a specific feature is configured (for example, traps 28-30 will only be sent if Rogue AP Detection is configured on the switch).
  • Page 113 Trap Trap Name Description AP Off One or more APs have been disabled. The AP Ethernet cable has either been physically disconnected from the switch or PoE has been turned off. The AP number corresponds to the port number on the switch to which the AP is connected. Redundancy When using "Normal"...
  • Page 114 Trap Trap Name Description Rogue AP lost Available only when Rogue AP Detection is enabled. This trap indicates that a previously discovered rogue network has stopped transmitting. The trap details if the rogue network was an AP or ad-hoc, the relevant BSSID and ESSID, what channel the rogue was transmitting on, which Extricom Series AP on the switch was closest to the rogue AP, and approximately how...
  • Page 115 Trap Trap Name Description Intrusion Available only when Intrusion Detection is detection enabled. Indicates that the switch has detected an Authentication Authentication Flood attack. The trap details how Failure attack many associations were received and in what time interval. Intrusion Available only when Intrusion Detection is detection enabled.
  • Page 116 RADIUS server list. RF localization The switch localization lock is missing or corrupt. failed Contact an Allied Telesis representative. Firmware Switch firmware upgrade has started. upgrade startup Firmware Switch firmware upgrade has ended.
  • Page 117 Trap Trap Name Description Edge Mode The secondary switch in a switch cascade is Switchover changing to standalone mode. This trap is sent from the secondary switch and details the reason for the switchover. Reconfigure Switch reconfigure has started. started Edge A secondary switch of a switch cascade has Connected...
  • Page 118 Trap Trap Name Description POE reset An AP was reset, but is still not working properly. The AP was power-booted via PoE. The trap details which AP was PoE reset. Table 28: SNMP Traps Northbound SNMP Traps...

  • Page 119: Appendix A Internal Access Point Mounting Template

    Appendix Internal Access Point Mounting Template 4.25 inches 10.8 cm. Important Note: Due to variations in printers, when printing this page, printer Page Scaling should be set to “None” or diagram may be automatically reduced in size. As a double-check, make sure the distance between drill points is as indicated above.

  • Page 120: Appendix B Certifications

    Appendix Certifications The following lists compliance certifications of Extricom Series access points and switches. Access Points ETSI EN 301 489-1V1.9.2:2011 FCC Part 15 Class B Safety EN 60950-1:2006+A11+A12+A1 / UL 60950-1 / IEC 60950-1 RoHS ROHS2 2011/65/EU Radio FCC Part 15 Class C and Part 15 Class E VCCI Technical Requirements V-3/2001.04 EN 300 328 (V1.8.1) EN 301 893 (1.7.1)

This manual is also suitable for:

Extricom at-exlv-2000Extricom at-exrp-22nExtricom at-exrp-32nExtricom at-exrp-22enExtricom at-exrp-32eonExtricom at-exls-3000 ... Show all

Table of Contents