Samsung WEC8500 Operation Manual Download | Manualshive

Page: 403 / 689

background image

CHAPTER 8. Security

© SAMSUNG Electronics Co., Ltd.

page 403 of 689



Managed/Neighbor AP list addition screen

Figure 217. Managed/Neighbor AP List Addition Window

8.2.2.9

Station Allow Limit

The WIDS counts the number of frames and number of authentication failures to

distinguish a station that generates too many management frames in a network or that is

continuously failed for authentication. A threshold value is defined for the count and a

station is recognized as an unauthorized station if the count exceeds the threshold.

Configuration using CLI

1) Go to the configure



wi



device



client configuration mode.

WEC8500# configure terminal
WEC8500/configure# wi
WEC8500/configure/wi# device
WEC8500/configure/wi/device# client
WEC8500/configure/wi/device/client#

2) Configure a threshold.



allowed-limit [OPTION] [COUNT]

Parameter

Description

OPTION

- 80211-auth-req: Authentication requests threshold per second

- 80211-probe-req: Probe requests threshold per second

- 80211-deauth-req: De-authentication requests threshold per second

- 80211-assoc-fail: Association failures threshold per second

- 80211-auth-fail: Authentication failures threshold per second

- 8021x-auth-fail: 802.1x authentication failures threshold per WIDS interval

- web-auth-fail: Web authentication failures threshold that occurs continuously

COUNT

Threshold value of [OPTION] ranging from 3 to 20

«
...
401
402
403
404
405
...
»

Summary of Contents for WEC8500

Page 1: ...Ver 2600 00FK1RGA4 8 0 WEC8500 WEC8050 APC Operation Manual ...

Page 2: ...s Co Ltd TRADEMARKS Product names mentioned in this manual may be trademarks and or registered trademarks of their respective companies This manual should be read and used as a guideline for properly installing and operating the product All reasonable care has been made to ensure that this document is accurate If you have any comments on this manual please contact our documentation centre at the f...

Page 3: ...ernal configuration and service scenario of APC CHAPTER 2 Basic System Configuration This chapter describes how to configure to use Command Line Interface CLI and Web UI CHAPTER 3 Data Network Function This chapter describes how to set up the data network such as interface Virtual Local Area Network VLAN L3 or Quality of Service QoS etc of APC CHAPTER 4 AP Connection Management This chapter descri...

Page 4: ...ocol FTP sFTP or Telnet SSH CHAPTER 10 System Management This chapter describes the various system management functions available in the APC ANNEX A CLI Command Structure Command structure available in the CLI of APC ANNEX B Open Source Announcement WEC8500 WEC8050 Open source list used in the APC and its license notice ANNEX C Open Source Announcement WEA302 WEA303 WEA312 WEA313 WEA403 WEA412 Ope...

Page 5: ...structure Annex B Open Source Announcement WEC8500 WEC8050 Annex B Open Source Announcement WEA300 WEA400 6 0 12 2014 Updated the content overall in accordance with the package version 2 4 0 5 0 05 2014 Updated the content overall in accordance with the package version 2 0 0 4 0 01 2014 Changed contents 1 3 1 WEC8500 Configuration and Functions 4 2 6 3 Tech Support Information 3 0 10 2013 Updated ...

Page 6: ...uration and Service Scenario 33 1 4 1 Basic Configuration 33 1 4 2 Configuration of Multiple APC for Redundancy 34 1 4 3 Clustering Configuration using Multiple APC WEC8500 WEC8050 35 1 4 4 Configuration of Multiple Sites Consisting of Headquarter and Branches 38 1 5 NAT Configuration between AP and APC 40 CHAPTER 2 Basic System Configuration 41 2 1 Basic System Configuration 41 2 1 1 CLI Connecti...

Page 7: ...oup 68 3 3 VLAN Configuration 70 3 3 1 VLAN 70 3 3 2 Bridge 72 3 3 3 Spanning Tree 75 3 4 Layer 3 Protocol Configuration 79 3 4 1 IP Address Configuration 79 3 4 2 Static Routing Configuration 79 3 4 3 IP Multicast Routing Configuration 80 3 4 4 PIM Configuration 81 3 4 5 OSPF Configuration 81 3 4 6 VRRP Configuration 121 3 4 7 Configuring IPWATCHD 124 3 5 QoS 125 3 5 1 ACL Configuration 125 3 5 2...

Page 8: ...PC Redundancy Configuration 164 4 2 AP Management 170 4 2 1 AP Group Configuration 170 4 2 2 Configuring Remote AP Group 191 4 2 3 AP Time Synchronization per Group 200 4 2 4 AP Configuration 202 4 2 5 Information Management 212 4 2 6 Outdoor AP Configuration 215 4 2 7 AP Package Upgrade 216 4 2 8 Remote AP Package Upgrade 221 CHAPTER 5 WLAN Management 231 5 1 WLAN Configuration 231 5 1 1 Basic WL...

Page 9: ... QoS Configuration of Wireless Terminal 290 6 2 2 QoS Configuration of AP 292 6 2 3 Configuring QoS Profile of a Specific Terminal 295 6 2 4 Voice Optimization Configuration 297 6 3 802 11h Configuration 299 6 4 Country Code 301 CHAPTER 7 WLAN Additional Services 305 7 1 Managing Wireless Terminal 305 7 1 1 Information Retrieval Functions 305 7 1 2 Connection History related Configuration 307 7 2 ...

Page 10: ...atistics and Communication Failure Detection 347 7 10 1 Voice Statistics Function 347 7 10 2 Detecting WLAN based Communication Failure 349 7 11 Voice Signal and Media Monitoring 350 7 11 1 Checking Voice Related Wireless Information 350 7 11 2 Checking Voice Related Quality Information 359 7 12 Multicast Stream Admission Control 362 7 12 1 Configuring Admission Control 362 7 13 Wi Fi Band Steerin...

Page 11: ...tion 423 8 3 10 Captive Portal Web Service Configuration 424 8 3 11 Captive Portal Authentication Cache List 424 8 4 NAT and Firewall Configuration 425 8 4 1 Firewall Configuration 425 8 4 2 Access List Configuration 426 8 4 3 NAT Configuration 427 8 5 MAC Filter 431 8 6 Operator Authentication through Interoperation with TACACS Server 435 8 6 1 Configuring External TACACS Server 435 8 6 2 Configu...

Page 12: ...nt Alarm 485 10 4 2 Retrieving History 486 10 4 3 External Transmission Configuration 488 10 4 4 Alarm Filter and Level Configuration 488 10 5 Managing Traffic Performance 490 10 5 1 Managing History Information 490 10 5 2 Managing Real time Information Collection 491 10 6 Managing License Key 492 10 6 1 Managing SLM License Activation Key 492 10 6 2 Managing Old License Key 495 10 7 Syslog Config...

Page 13: ...8 10 12 4 Retrieve File Content 518 10 12 5 File Download and Upload 519 10 12 6 Package File 519 10 12 7 Retrieving Storage Media 521 10 12 8 Managing File in Web UI 522 10 12 9 Statistics Function 525 ANNEX A CLI Command Structure 567 A 1 configure 567 A 2 show 607 A 3 clear 624 A 4 debug 626 A 5 file 629 A 6 Etc 629 ANNEX B Open Source Announcement WEC8500 WEC8050 630 ANNEX C Open Source Announ...

Page 14: ...n for Centralized Clustering Service 37 Figure 15 Example of W EP Wireless LAN System Configuration for Multiple Sites consisting of Headquarter and Branches 38 Figure 16 AP APC NAT Environment Configuration Diagram 40 Figure 17 Web UI Connection Window 46 Figure 18 WEC Main Window 47 Figure 19 Operator Account Management Window 48 Figure 20 Operator Account Addition Window 48 Figure 21 Initial Se...

Page 15: ... is Applied to ACL 126 Figure 53 ACL Interface Configuration Window 1 127 Figure 54 ACL Interface Configuration Window 2 127 Figure 55 Admin ACL Configuration Window 129 Figure 56 Time Profile Configuration Window 1 132 Figure 57 Time Profile Configuration Window 2 133 Figure 58 Applying to ACL 134 Figure 59 IP Multicast Configuration Window 138 Figure 60 PIM SM Configuration Window 1 139 Figure 6...

Page 16: ...for AP Group 176 Figure 92 WLAN Add Remove Window for AP Group 177 Figure 93 802 11a n ac Window for AP Group 178 Figure 94 802 11b g n Window for AP Group 180 Figure 95 AP Group AirMove Configuration 186 Figure 96 AP Group SSL Configuration 189 Figure 97 Advanced Configuration Window for AP Group 190 Figure 98 Remote AP Group Add Remove Window 192 Figure 99 Define Remote AP Group 192 Figure 100 L...

Page 17: ...on 237 Figure 131 Root service management 1 239 Figure 132 Root service management 2 240 Figure 133 MCS by WLAN 802 11a n ac Configuration Management window 242 Figure 134 MCS by WLAN 802 11b g n Configuration Management window 243 Figure 135 Local Switching Configuration Window of WLAN 245 Figure 136 Split ACL Configuration Window of WLAN Allocated to AP 246 Figure 137 IF Group ACL Pre Auth ACL C...

Page 18: ...g voice optimization by each AP Group 298 Figure 168 Configuring voice optimization by each AP 298 Figure 169 Configuring 802 11h 300 Figure 170 Country code window 302 Figure 171 AP Country Code Configuration 303 Figure 172 AP Group Contry Code Configuration 304 Figure 173 Information viewing window 307 Figure 174 Handover window 310 Figure 175 SIP ALG configuration window 312 Figure 176 Admissio...

Page 19: ...08 Configuration Window for Unauthorized AP Detection Option 396 Figure 209 Configuration Window for Unauthorized Station Detection Option 397 Figure 210 Configuration Window for Channel Validation 399 Figure 211 AP blacklist Configuration Window 400 Figure 212 Managed AP Window 401 Figure 213 Station blacklist Search Configuration Window 401 Figure 214 Managed Station Search Window 401 Figure 215...

Page 20: ...n Profile Configuration 442 Figure 248 Derivation Profile Add Configuration 442 Figure 249 Wlan Derivation Profile Configuration 443 Figure 250 Wlan Derivation Profile Configuration 444 Figure 251 Remote IP Acl Configuration 446 Figure 252 Remote IP Acl Add Configuration 446 Figure 253 Remote IP Acl Edit Configuration 446 Figure 254 Remote IP Acl Rule Edit Configuration 447 Figure 255 Remote Acl P...

Page 21: ...istory 487 Figure 277 Configuring alarm filter and level 489 Figure 278 SLM License Search and Configuration Window 494 Figure 279 Old License Installation Check Window 497 Figure 280 Syslog window 499 Figure 281 Package upgrade APC 502 Figure 282 Configuration information save icon 505 Figure 283 DB Backup Restore 505 Figure 284 Configuration Information Initialization window 506 Figure 285 Confi...

Page 22: ...switch or router in a network of enterprise environment and it controls a wireless LAN AP and provides the functions for Wireless LAN WLAN services such as handover and QoS security authentication etc The Samsung WEC8500 provides its services up to 500 APs It can provide its services up to 10 000 connected user devices Meanwhile the WEC8050 can accommodate maximum 75 APs and provides the service t...

Page 23: ...eless Enterprise WLAN Manager WEM The Samsung APC and W EP wireless LAN AP are core devices that provide various services such as user authentication wireless management voice and data service etc in the 802 11 based Wi Fi environment The WEM provides convenient configuration environment various statistics and event information to an operator Term In this manual the WEC8500 WEC8050 and APC commonl...

Page 24: ...C is one of the most important elements related to traffic management and throughput in the W EP environment An APC is typically installed at a position where it can be connected to a backbone switch core switch or router in a network It controls the W EP wireless LAN AP and provides handover QoS and security authentication functions WEM In the W EP wireless LAN environment various services are pr...

Page 25: ... 11a b g n interface such as smart phone tablet PC or notebook computer etc In an Android smart phone an enterprise Voice over IP VoIP application equipped with the Samsung voice engine is called a FMC client The FMC client is an option Wireless additional service In the W EP environment various application services are required as well as basic wireless connection services The Wireless Intrusion ...

Page 26: ...ructure by detecting penetration via unauthorized wireless equipment installed in the internal network the detoured gateway segment of the internal officers and employees who illegally connect to the commercial WLAN service etc and provides the wireless network invasion detection which implements the safe and effective wireless network environment by detecting security vulnerabilities ...

Page 27: ...ng information Figure 4 System LED Configuration LED Status Description SYS Green The system is operating normally Orange The system is now booting Red Preparing the system for booting FAN fan module Green The installed FAN module is operating normally Orange The system is now booting Red Fan module fault has occurred PS1 power module 1 Green Normal operation of installed power module 1 Red Power ...

Page 28: ...s are as follows Baud rate 115200 bps Character size 8 characters Parity None Stop bit 1 Data bit 8 Flow control None Management port 1 GE UTP The WEC8500 provides a 10 100 1000BASE T port RJ 45 for management purpose It is working in 10 100 Mbps half duplex full duplex mode or in 1000 Mbps full duplex mode Because it supports the automatic MDI MDI X function you can use a straight through cable f...

Page 29: ...nector and safe connection without damaged cable sheath The 1000 BASE T standard does not support the forced mode The auto negotiation function must be always used for 1000 BASE T port or trunk connection Optic port It provides two 10 GbE Optic ports and eight 1 GbE Optic ports and the operational status of each port is displayed in LED Figure 6 Optic port configuration Configuration item Port LED...

Page 30: ...n software A typical USB memory stick is supported Power module Figure 7 Power module configuration Configuration item Description Power input connector Connector to connect the power cable to Power switch Switch to turn on off power AC LED Turned on when there is a normal AC power input DC LED Turned on when there is a normal DC power output Power input connector AC LED Power switch DC LED ...

Page 31: ...rious statuses of system Each LED displays the following information Figure 9 Status LED configuration LED Status Description SYS Green The system is operating normally Orange The system is now booting Red Preparing the system for booting FAN Green The installed FAN module is operating normally Orange The system is now booting Red Fan fault PWR Green The power is supplied normally Off The power is...

Page 32: ...CLI Its basic requirements are as follows Default baud rate 115200 bps Character size 8 Characters Parity None Stop bit 1 Data bit 8 Flow control None Ethernet port It has 4 10 100 1000 Base T ports Figure 10 Ethernet Port Configurations LED Status Description ACT Orange blinking Blinking while data exchanging Off No data exchanging LINK Green Link connection display Off No link connection LINK LE...

Page 33: ...rganically manage each element via WEM In addition the IP application servers including authentication server DHCP server or DNS server which is a basic network configuration element in a wire enterprise environment are also interoperated to provide more convenient and various mobile services to users One outstanding example is the FMC service that provides enterprise level VoIP in a wireless LAN ...

Page 34: ...ork change is required to install the W EP wireless LAN AP An AP installed in a user area is located in various local network environments in a wide region Although it is unavoidable to install or expand a PoE switch the modification of local network where wire users are already configured can be minimized Because the APC relays all the user traffics it can restrict a wireless attacker s effects a...

Page 35: ...le APC WEC8500 WEC8050 The W EP environment has various area sizes user density and number of users If only a single APC is required for service and management the complexity of network configuration or management is not high However if the capacity of a single APC is not sufficient multiple APC s must be installed for service The WEC8500 WEC8050 is a Samsung APC model providing the clustering env...

Page 36: ...ckbone configuration in a site or networks are separated for each building It is suitable for a site where several buildings are apart from each other An example of service configuration diagram is shown in the below figure Figure 13 Example of W EP Wireless LAN System Configuration for Distributed Clustering Service PRI Firewall Internet Backbone switch SBC PSTN IP PBX Media G W Loc server WEM AA...

Page 37: ...ss handover service is required using one or more WEC8500 WEC8050s Better performance can be obtained if there is a single backbone network and it is preferable in terms of installation or maintenance because its service configuration is simple An example of service configuration diagram is shown in the below figure Figure 14 Example of W EP Wireless LAN System Configuration for Centralized Cluste...

Page 38: ...is commonly used The branch AP type has the same structure as a basic W EP wireless LAN configuration A single difference is that a W EP wireless LAN AP installed in a branch is located at a remote place The APC in headquarter provides a wireless LAN service in the headquarter building and also provides a wireless LAN service to a remote W EP wireless LAN AP installed in a branch As the APC in hea...

Page 39: ...acket transmission etc Therefore use different operation schemes according to the location of W EP wireless LAN AP in the configuration of headquarter and branches In other words the local W EP wireless LAN AP in a headquarter does traffic tunneling to an APC and the branch AP installed in a branch switches a user traffic directly to a destination address without tunneling to the APC Even at this ...

Page 40: ...g NAT equipment so that it can provide services to APs on the public IP network and APs existing under other NAT networks Using this feature requires that the NAT equipment be applied with the following port settings Service TCP Port UDP Port Description General 20 21 FTP Server 22 Secure Shell 23 Telnet 80 443 HTTP Web Server 123 123 NTP AP APC Connection 5246 5247 CAPWAP An example of service co...

Page 41: ...rt When the booting of APC is completed log into the system as follows 1 For the first connection log in using ID samsung and Password samsung USERNAME samsung PASSWORD samsung THIS IS YOUR FIRST LOGIN AFTER USER ACCOUNT HAS BEEN CREATED YOU MUST CHANGE YOUR PASSWORD ENTER LOGIN PASSWORD samsung ENTER NEW PASSWORD CONFIRM NEW PASSWORD PASSWORD SUCCESSFULLY CHANGED WEC8500 2 After the first login y...

Page 42: ...ete an account are as follows mgmt user USERNAME USERLEVEL description DESCRIPTION Adds a user no mgmt user USERNAME Deletes a user Parameter Description USERNAME User ID USERLEVEL User level DESCRIPTION Adds user information WEC8050 configure mgmt user test 1 description test account PASSWORD CONFIRM PASSWORD USER test CREATED WEC8050 configure no mgmt user test user test deleted Retrieving accou...

Page 43: ...iguration To connect to the web server of APC it is necessary to add Simple Network Management Protocol SNMP community through CLI For more information see 10 1 SNMP Configuration 2 1 5 CLI Basic Usage The CLI is a text command based interface used to change or retrieve the system settings Several users can change the settings at the same time using the CLI of the same system Because privilege per...

Page 44: ... wips Wips command wireless acl list Show wireless acl list wlan Show wlan information WEC8500 Command automatic completion function The CLI supports the command automatic completion function using the TAB key When you press the TAB key after entering the first few characters of a command the rest characters of the command that starts with the entered characters is automatically entered If there a...

Page 45: ...error message is displayed WEC8500 command unknown Error Command command unknown does not exist When a parameter that is not supported by a command is entered an error message according to the situation is displayed WEC8500 configure test Invalid parameter mandatory Command modes When the exit command is entered the mode is changed to the upper command mode ...

Page 46: ...be set up When connecting to the IP address of APC ethernet port in a web browser the below login window is displayed Log in using a default connection account samsung After the first login you go through the course of changing the password If you have changed the password by connecting to the CLI you don t have to go through the course of changing the password Figure 17 Web UI Connection Window ...

Page 47: ... bar consists of the following items Provides detail configuration or retrieval function for each item When you select each item lower menus in the sub menus area are displayed Displays a user login ID Logs out from the WEC Saves the current configuration information into the system Excutes ping test Refreshes the screen Sub menus This provides the detail menus for Monitor Configuration Administra...

Page 48: ...delete a operator account in the WEC Figure 19 Operator Account Management Window 1 To add an account click the Add button Figure 20 Operator Account Addition Window 2 Enter an item according to each parameter description and click the Apply button ID Username to add PASSWORD User s initial password CONFIRM PASSWORD Re enter the initial password LEVEL User privilege 1 Administrator Administrator p...

Page 49: ...EC as web UI at the factory reset state or while there is no WLAN the APC system is connected to the Initial Setup Wizard instead of the general WEC screen Connecting at the factory reset state The connection at the factory reset state is available through the management port 1 Connect the Ethernet cable to the management port and then to the PC 2 The default IP address of the management port is 1...

Page 50: ... Initial Setup Wizard Welcome Screen Press the Next button to move to the configuration step 1 and then start the basic settings Press the Exit button to close the wizard and then move to the general WEC screen Start the wizard and then deactivate all wireless communications of the APC system as well as the function of automatically registering the AP The settings are recovered at the last step of...

Page 51: ... number etc of the system Set up the basic country code and the basic environment Set up the system time and the time zone Click the PC TIME button to change the time of the APC by setting to the time of the PC 2 Interfaces Create interfaces For more information refer to 3 2 1 Interface Management and 3 3 1 VLAN 3 Interface groups Create interface groups and assign the interfaces created at the pr...

Page 52: ...ent If a DNS server is connected to the APC and a UE connected to the APC configures the DNS server as the APC the DNS service can be received 9 NTP If the APC is configured as a NTP client it receives the Coordinated Universal Time UTC information from the configured NTP server and synchronizes the local time 10 Finish Finish the basic settings to configure the WLAN of the APC and then close the ...

Page 53: ... operation It supports only the basic settings to operate the APC and the settings which are additional or are not frequently used are not supported here They must be made through the general WEC screen 2 4 2 WLAN setup Wizard In the menu bar of WEC Main window select Configuration and then select Wizard WLAN menu in the sub menu For step 1 start WLAN Setup Description on the Screen Figure 23 WLAN...

Page 54: ...CHAPTER 2 Basic System Configuration SAMSUNG Electronics Co Ltd page 54 of 689 Figure 24 WLAN Setup Wizard Step 2 Figure 25 WLAN Setup Wizard Step 3 ...

Page 55: ...first step of Setup Wizard Setup Step The WLAN setup wizard consists of the following setup steps After setting up the description desired on each screen click the Next button to apply the modifications to the system 1 Step 1 Enter ID Profile Name SSID of WLAN to create If create new WLAN or there is no existing Interface Group Interface Click Interface Group Interface button to create change 2 St...

Page 56: ... page 56 of 689 2 4 3 NAT Setup Wizard In the menu bar of WEC Main window select Configuration and then select Wizard NAT menu in the sub menu For step 1 start WLAN Setup Description on the Screen Figure 27 NAT Setup Wizard Step 1 Figure 28 NAT Setup Wizard Step 2 ...

Page 57: ... move next setup step Prev button to move previous setup step Finish button to finish setup and move to setup result screen Result screen displays setup information If setup another NAT click a link on the screen then move to first step of Setup Wizard Setup step The NAT setup wizard consists of the following setup steps After setting up the description desired on each screen click the Next button...

Page 58: ... enable 2 Step 2 Setup Firewall Policy 3 Step 3 Setup NAT Pool 4 Display Setup result After finishing all setup displays results 2 4 4 Redundancy Setup Wizard In the menu bar of WEC Main window select Configuration and then select Wizard Redundancy menu in the sub menu For step 1 start WLAN Setup Description on the Screen Figure 31 Redundancy Setup Wizard Step 1 ...

Page 59: ...CHAPTER 2 Basic System Configuration SAMSUNG Electronics Co Ltd page 59 of 689 Figure 32 Redundancy Setup Wizard Step 2 Figure 33 Redundancy Setup Wizard Step 3 ...

Page 60: ...ult screen displays setup information Setup Step The Redundancy setup wizard consists of the following setup steps After setting up the description desired on each screen click the Next button to apply the modifications to the system 1 Step 1 Input APC name and Public IP Port information and create counterpart redundancy APC Enter counterpart APC name Mac address IP information 2 Step 2 Input Fall...

Page 61: ...s not support VLAN and its interface name is mgmt0 The 8 ports at the right side of Management port are 10 100 1000 BASE T ports and their names are GE1 8 To the right side of the 10 100 1000 BASE T ports there are two Gigabit ports i e XE1 and XE2 In case of WEC8050 there is no management mgmt0 port connect the Ethernet cable to the port in one of ports ge1 to ge4 Configuration using CLI To confi...

Page 62: ...1000Mb s half duplex auto nego Set auto negotiation speed duplex admin status This is a command that makes the port not working The no parameter is used to restart the port shutduown no shutdown flow control This is a command that operates flow control to the port The no parameter is used to stop the flow control flowcontrol on no flowcontrol on switch port This is a command that changes the port ...

Page 63: ...port Figure 35 Port Management Window The auto nego speed or duplex can be configured only when the cable type is Copper They cannot be configured if the cable type is Optic The auto nego should always be enabled whether the cable type is copper or optic Port Configuration Change 1 In the Ports initial window click the INTERFACE NAME button to go to port configuration change window 2 In the port c...

Page 64: ...CHAPTER 3 Data Network Function SAMSUNG Electronics Co Ltd page 64 of 689 Figure 36 Port Configuration Change Window ...

Page 65: ...r names are GE1 8 To the right side of the 10 100 1000 BASE T ports there are two Gigabit ports i e XE1 and XE2 Configuration using CLI To configure the interface related function go to the interface mode by entering the interface INTERFACE_NAME command in the configure mode An example of entering into the interface mode of the management port is shown below WEC8500 configure terminal WEC8500 conf...

Page 66: ... You can configure an interface and VLAN The Interface initial window is shown below Figure 37 Interfaces Window 1 Adding VLAN 1 In the Interface initial window click the Add button to go to VLAN creation window 2 Enter an INTERFACE NAME and VLAN ID in the VLAN creation window The INTERFACE NAME describes a VLAN to create and English characters without a space numbers and _ can be used The VLAN ID...

Page 67: ... DHCP SERVER or SECONDARY DHCP SERVER in the DHCP area you can specify the configuration of a DHCP server After configuration click the Apply button to apply it to the system Figure 39 Interfaces Window 3 Deleting VLAN In the Interface initial window click the Delete button to delete a selected VLAN The select VLAN cannot be deleted if it is being used in the system ...

Page 68: ...rface group Use no parameter to delete an interface group if group INTERFACE_GROUP_NAME no if group INTERFACE_GROUP_NAME Adding or deleting Interface This command adds an interface to an interface group being configured Use no parameter to delete an interface add if INTERFACE_IP_ADDRESS no add if INTERFACE_ IP_ADDRESS Retrieving Interface Group Status This command retrieves the configuration statu...

Page 69: ...ure to add an interface group 1 In the Interface group initial window click the Add button 2 Enter information on GROUP NAME and GROUP DESCRIPTION and then add or delete an interface to or from an interface group Figure 41 Interface Group Window 2 3 Click the Apply button to apply the configuration ...

Page 70: ...sed to delete the VLAN configuration switchport access hybrid vlan VLAN_ID switchport mode This command configures the mode of switch port The no parameter is used to delete the configuration switchport mode access hybrid trunk no switchport mode switchport hybrid allowed vlan This command configures the mode of switch port to hybrid The no parameter is used to delete the configuration switchport ...

Page 71: ...retrieves VLAN configuration status show vlan VLAN_ID Displays specific VLAN information show vlan all bridge 1 Displays all the VLAN information show vlan brief Displays all the VLAN information briefly show vlan dynamic bridge 1 Displays dynamic VLAN information show vlan static bridge 1 Displays static VLAN information Typical configuration procedure The typical configuration procedure of VLAN ...

Page 72: ...H HHHH HHHH forward discard forward Configures forward matching frame discard Configures discard matching frame IFNAME Interface name of a bridge bridge ageing time This command configures the age out time of a bridge The no parameter is used to clear the configuration bridge group 1 ageing time AGEINGTIME no bridge group 1 ageing time Parameter Description AGEINGTIME age out time range 10 1000000...

Page 73: ...dynamic This command deletes bridge operation among the filtering database of a default bridge clear mac address table dynamic KIND WORD Parameter Description KIND Filtering database type address vlan interface address Filtering database using a MAC address vlan Filtering database using the VLAN information interface Filtering database using the interface information WORD Option clear mac address ...

Page 74: ... the layer 2 protocol characteristic information of the current VLAN of a switch port show interface switchport bridge BRIDGE_NAME Parameter Description BRIDGE_NAME Bridge name switchport This command configures a switch port i e the layer 2 protocol characteristic information of the current VLAN The no parameter is used for default configuration Go to interface mode and then execute the command s...

Page 75: ...ard time delay range 4 30 s default 15 bridge hello time This command configures the hello time of a bridge The time required when a bridged LAN is changed to Bridge Protocol Data Units BPDUs is called as hello time The no parameter is used for default configuration bridge 1 hello time HELLOTIME no bridge 1 hello time Parameter Description HELLOTIME Hello BPDU interval range 1 10 s bridge instance...

Page 76: ..._COUNT no bridge 1 max hops Parameter Description HOP_COUNT Maximum allowed number of hops bridge multiple spanning tree enable This command configures a MSTP bridge The no parameter is used to clear the configuration bridge 1 multiple spanning tree enable no bridge 1 multiple spanning tree enable bridge rapid spanning tree enable This command configures a RSTP bridge The no parameter is used to c...

Page 77: ...no parameter is used to restart a bridge bridge shutdown 1 32 no bridge shutdown 1 32 Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select the Controller Network MSTP menu in the sub menus The sub menus of the MSTP menu are as follows Config Configures the spanning tree Instance Manages the MSTP VLAN instance Port Manages the MSTP port Configuring Span...

Page 78: ... VLAN Instance list is displayed on the window Click the Add or Delete button to add or delete an instance Figure 43 Spanning Tree Configuration Window 2 Managing MSTP Port When you select the Port menu the configured MSTP Port list is displayed on the window Click the Add or Delete button to add or delete a port Figure 44 Spanning Tree Configuration Window 3 ...

Page 79: ...ocedure for IP address configuration is given below 1 Go to configure interface configuration mode of CLI WEC8500 configure terminal WEC8500 configure interface ge2 2 Set up an IP address WEC8500 configure interface ge2 ip address 100 100 100 1 24 3 Enable the interface WEC8500 configure interface ge2 no shutdown 3 4 2 Static Routing Configuration Configuration using CLI 1 Go to the configure mode...

Page 80: ...rmation is reflected to the list in the Static Route window If the added information is not displayed it means the added routing information is not enabled If the operational status of an interface that will be used as a routing result is not UP check the interface status through CLI or Web UI Because only enabled routing entries are listed in the Web UI you cannot remove a disabled routing entry ...

Page 81: ...ow running config network command To check the multicast routing table use the show ip mroute command WEC8500 show ip mroute 90 90 1 242 224 0 1 1 Iif mgmt0 Oifs pimreg 3 4 5 OSPF Configuration 3 4 5 1 General settings Configuration using CLI 1 Go to configure ospf configuration mode of CLI WEC8500 configure terminal WEC8500 configure router ospf WEC8500 configure router ospf 1 10 OSPF process ID ...

Page 82: ...de of CLI WEC8500 configure terminal WEC8500 configure router ospf WEC8500 configure router ospf 1 10 OSPF process ID WEC8500 configure router ospf 2 WEC8500 configure router ospf 2 2 The detail configuration items of a process ID are as follows WEC8500 configure router ospf 2 area OSPF area parameters auto cost Calculate OSPF interface cost according to bandwidth capability Enable specific OSPF f...

Page 83: ...t routing timers 3 Router ID configuration Enter an IP address to use WEC8500 configure router ospf 2 router id A B C D OSPF router id in IP address format WEC8500 configure router ospf 2 router id 10 10 0 1 cr Parameter Description OSPF router id in IP address Enter an IP address 4 AUTO COST configuration Enter an OSPF cost value 1 4294967 to use WEC8500 configure router ospf 2 auto cost referenc...

Page 84: ...r ospf 2 compatible rfc1583 cr WEC8500 configure router ospf 2 compatible rfc1583 Parameter Description compatible rfc1583 Enabled when the CLI is entered 7 DEFAULT METRIC configuration Enter the DEFAULT METRIC 1 16777214 to use WEC8500 configure router ospf 2 default metric 1 16777214 Default metric WEC8500 configure router ospf 2 default metric 3 cr WEC8500 configure router ospf 2 default metric...

Page 85: ...figure the SPF TIMER MILLISECONDS value WEC8500 configure router ospf 2 timers spf OSPF SPF timers WEC8500 configure router ospf 2 timers spf exp Use exponential backoff delays WEC8500 configure router ospf 2 timers spf exp 0 2147483647 Minimum Delay between receiving a change to SPF calculation in milliseconds WEC8500 configure router ospf 2 timers spf exp 3 0 2147483647 Maximum Delay between rec...

Page 86: ...iguration and then select the Controller Network OSPF General menu in the sub menus Click a PROCESS ID that user wants to configure The OSPF configuration window is shown below Use the value configured in Configuration using CLI as a user defined value in the below screen The value configured in Configuration using CLI is shown in the below screen ...

Page 87: ...n ALWAYS WEC8500 configure router ospf 2 default information originate always Always advertise default route metric OSPF default metric metric type OSPF metric type for default routes route map Route map reference cr WEC8500 configure router ospf 2 default information originate always cr WEC8500 configure router ospf 2 default information originate always WEC8500 configure router ospf 2 3 Configur...

Page 88: ...mation ROUTE MAP Enter the name of pointer to route map entries WEC8500 configure router ospf 2 default information originate route map WORD Pointer to route map entries WEC8500 configure router ospf 2 default information originate route map AA WEC8500 configure router ospf 2 Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select the Controller Network O...

Page 89: ...spf OSPF Distance WEC8500 configure router ospf 2 distance admin 1 255 OSPF Administrative distance WEC8500 configure router ospf 2 distance admin 100 The OSPF Admin distance is displayed as GENERAL in the Web UI 3 Configuration of EXTERNAL distance ospf Enter the OSPF EXTERNAL distance value WEC8500 configure router ospf 2 distance ospf external External routes inter area Inter area routes intra ...

Page 90: ...nce ospf Enter the OSPF INTRA AREA distance value WEC8500 configure router ospf 2 distance ospf intra area 1 255 1 255 Distance for external inter area intra area routes WEC8500 configure router ospf 2 distance ospf intra area 50 cr WEC8500 configure router ospf 2 distance ospf intra area 50 WEC8500 configure router ospf 2 Configuration using Web UI In the menu bar of WEC Main window select Config...

Page 91: ... ospf 2 overflow database Database WEC8500 configure router ospf 2 overflow database external External link states 0 4294967294 Maximum number of LSAs WEC8500 configure router ospf 2 overflow database external 0 2147483647 Maximum number of LSAs WEC8500 configure router ospf 2 overflow database external 3 0 65535 Time to recover 0 not recover WEC8500 configure router ospf 2 overflow database exter...

Page 92: ...flow database external External link states 0 4294967294 Maximum number of LSAs WEC8500 configure router ospf 2 overflow database 100 hard Hard limit Instance will be shutdown if exceed soft Soft limit Warning will be given if exceed cr WEC8500 configure router ospf 2 overflow database 100 soft cr WEC8500 configure router ospf 2 overflow database 100 soft Configuration using Web UI In the menu bar...

Page 93: ... mode host OSPF stub host entry max concurrent dd Maximum number allowed to process DD concurrently maximum area Maximum number of ospf area neighbor Specify a neighbor router network Enable routing on an IP network ospf OSPF specific commands overflow Control overflow passive interface Suppress routing updates on an interface redistribute Redistribute information from another routing protocol rou...

Page 94: ...0 1 A B C D OSPF wild card bits network mask WEC8500 configure router ospf 2 network 100 100 100 1 255 255 255 0 area Set the OSPF area ID WEC8500 configure router ospf 2 network 100 100 100 1 255 255 255 0 area Set the OSPF area ID WEC8500 configure router ospf 2 network 100 100 100 1 255 255 255 0 area 0 4294967295 OSPF area ID as a decimal value A B C D OSPF area ID in IP address format WEC8500...

Page 95: ...t information default metric Set metric of redistributed routes distance Define an administrative distance distribute list Filter networks in routing updates exit Exit from router mode host OSPF stub host entry max concurrent dd Maximum number allowed to process DD concurrently maximum area Maximum number of ospf area neighbor Specify a neighbor router network Enable routing on an IP network ospf ...

Page 96: ...tatic routes ospf Open Shortest Path First OSPF WEC8500 configure router ospf 2 redistribute connected metric OSPF default metric metric type OSPF metric type for default routes route map Route map reference tag Set tag for routes redistributed into OSPF 2 Metric configuration WEC8500 configure router ospf 2 redistribute connected metric OSPF default metric metric type OSPF metric type for default...

Page 97: ...escription metric type Select 1 or 2 4 Route map configuration WEC8500 configure router ospf 2 redistribute connected route map WORD Pointer to route map entries WEC8500 configure router ospf 2 redistribute connected route map a cr WEC8500 configure router ospf 2 redistribute connected route map a Parameter Description route map entries Enter WORD 5 Tag configuration WEC8500 configure router ospf ...

Page 98: ...EC Main window select Configuration and then select the Controller Network OSPF Redistribute menu in the sub menus After configuring Redistribute default select a PROCESS ID for detail configuration Configuring Redistribute details Configure the details of metric metric type route map or tag etc which is configured in CLI ...

Page 99: ...o not inject inter area routes into stub cr WEC8500 configure router ospf 2 area 1 stub no summary cr WEC8500 configure router ospf 2 area 1 stub no summary Parameter Description no summary Select Stub or No Summary Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select the Controller Network OSPF Area Stub menu in the sub menus In the Stub add page conf...

Page 100: ...ary or translator role details can be configured WEC8500 configure router ospf 1 area 2 nssa default information originate metric OSPF default metric metric type OSPF metric type for default routes no redistribution No redistribution into this NSSA area no summary Do not send summary LSA into NSSA translator role NSSA ABR Translator role cr Metric configuration of NSSA default information originat...

Page 101: ...lt metric metric type OSPF metric type for default routes no redistribution No redistribution into this NSSA area no summary Do not send summary LSA into NSSA translator role NSSA ABR Translator role cr WEC8500 configure router ospf 1 area 2 nssa default information originate no redistribution cr WEC8500 configure router ospf 1 area 2 nssa default information originate no redistribution Parameter ...

Page 102: ...8500 configure router ospf 1 area 2 nssa default information originate translator role candidate no redistribution No redistribution into this NSSA area no summary Do not send summary LSA into NSSA cr WEC8500 configure router ospf 1 area 2 nssa default information originate translator role never no redistribution No redistribution into this NSSA area no summary Do not send summary LSA into NSSA cr...

Page 103: ...nfiguration and then select the Controller Network OSPF Area NSSA menu in the sub menus The default window is shown below The default configuration screen is shown below The NSSA window screen is shown as below after detail configuration is completed If you select a Process ID after NSSA default configuration operator can do detail configuration ...

Page 104: ...ead router detection time hello interval Hello packet interval message digest key Set message digest key retransmit interval LSA retransmit interval transmit delay LSA transmission delay cr To configure the Virtual Link enter an ID router ID of OSPF that is connected via Virtual and configure the detail items The detail items include authentication authentication key dead interval hello interval m...

Page 105: ...area 2 virtual link 10 10 10 1 dead interval 50 WEC8500 configure router ospf 2 Hello interval configuration The default hello interval is 10 seconds In addition operator can change it to a value between 1 second and 65535 seconds WEC8500 configure router ospf 2 area 2 virtual link 10 10 10 1 hello interval 1 65535 Seconds WEC8500 configure router ospf 2 area 2 virtual link 10 10 10 1 hello interv...

Page 106: ...ea 2 virtual link 10 10 10 1 retransmit interval 1 65535 Seconds default 5 WEC8500 configure router ospf 2 area 2 virtual link 10 10 10 1 retransmit interval Transmit delay configuration The default transmit delay is 1 second In addition operator can change it to a value between 1 second and 65535 seconds WEC8500 configure router ospf 2 area 2 virtual link 10 10 10 1 transmit delay 1 65535 Seconds...

Page 107: ...age and Authentication page Start configuration in the General page for the basic configuration of Virtual Link In the default configuration page configure PROCESS ID AREA ID or LINK ID For detail configuration select a PROCESS ID you want Operator can do detail configuration for an item you select The detail configuration page is shown below ...

Page 108: ...below Click the Select Virtual Link button Select a PROCESS ID that you have selected in the General page And then configure Digest Key or Digest Authentication Just like CLI configuration select a digest key between 1 and 255 and enter a key whose length is 16 character or less for digest authentication 4 Range configuration ...

Page 109: ...the range or not Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select the Controller Network OSPF Area Range menu in the sub menus The configuration page is as follows 5 Detail configuration Configuration using CLI This is additional explanations for Area Operator can configure authentication default cost or shortcut WEC8500 configure router ospf 2 are...

Page 110: ...s are configured the following error phrase is displayed The area is neither stub nor NSSA WEC8500 configure router ospf 2 area 0 0 0 1 default cost 0 16777215 Stub s advertised default summary cost WEC8500 configure router ospf 2 area 0 0 0 1 default cost 3 cr WEC8500 configure router ospf 2 area 0 0 0 1 default cost 3 Shortcut configuration For Shortcut configuration operator can select one out ...

Page 111: ...il configuration can not be performed Therefore the below default cost configuration is available only when the Stub or NSSA is configured to the ID 3 4 5 9 Summary Configuration Configuration using CLI WEC8500 configure router ospf 2 summary address A B C D M IP summary prefix WEC8500 configure router ospf 2 summary address 1 1 1 1 16 not advertise Suppress routes that match the prefix tag Set ta...

Page 112: ...and it is 0 WEC8500 configure router ospf 2 summary address 11 1 1 1 16 WEC8500 configure router ospf 2 summary address 11 1 1 1 16 tag 0 4294967295 32 bit tag value WEC8500 configure router ospf 2 summary address 11 1 1 1 16 tag 3 Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select the Controller Network OSPF Summary menu in the sub menus The configu...

Page 113: ...erface ge2 A B C D Address of interface cr Parameter Description Interface Name Enter the name of an interface to use directly A user directly enters an interface name for Passive interface configuration Also a user can enter an address to the interface Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select the Controller Network OSPF Passive Interface m...

Page 114: ...3 4 5 11 Interface General Configuration Configuration using CLI Unlike other OSPF configurations the interface general does not enter into the OSPF mode Perform related configuration at the interface that a user wants Therefore the CLI configuration is as follows 1 Go to configure interface configuration mode of CLI WEC8500 configure terminal WEC8500 configure WEC8500 configure interface ge2 2 Th...

Page 115: ...ng lost link state advertisements transmit delay Link state transmit delay DISABLE OSPF configuration WEC8500 configure interface ge2 ip ospf disable all All functionality WEC8500 configure interface ge2 ip ospf disable all cr WEC8500 configure interface ge2 ip ospf disable all MTU configuration The default does not use Maximum Transmission Unit MTU configuration The range of MTU user configuratio...

Page 116: ...PF Cost configuration Enter a cost value between 1 and 65535 WEC8500 configure interface ge2 ip ospf cost 1 65535 Cost WEC8500 configure interface ge2 ip ospf cost 2 cr DATABASE FILTER configuration WEC8500 configure interface ge2 ip ospf database filter all Filter all LSA WEC8500 configure interface ge2 ip ospf database filter all out Outgoing LSA WEC8500 configure interface ge2 ip ospf database ...

Page 117: ...r can change it to a value between 1 second and 65535 seconds WEC8500 configure interface ge2 ip ospf retransmit interval 1 65535 Seconds default 5 WEC8500 configure interface ge2 ip ospf retransmit interval 100 cr WEC8500 configure interface ge2 ip ospf retransmit interval 100 WEC8500 configure interface ge2 TRANSMIT DELAY configuration The default transmit delay is 1 second In addition operator ...

Page 118: ...Web UI In the menu bar of WEC Main window select Configuration and then select the Controller Network OSPF Interface General menu in the sub menus The configuration page is as follows As shown in the below figure the currently enabled interface items are displayed When you select an interface for detail configuration operator can go to the detail item configuration page The Interface General item ...

Page 119: ... displayed After entering a value that a user wants for the item configured in the above CLI click the Apply button Authentication configuration Just as General configuration click the Authentication configuration in the tab Then the page for authentication related detail configuration is displayed as shown below Select an interface that a user wants to configure and enter the key string 1 255 of ...

Page 120: ...CHAPTER 3 Data Network Function SAMSUNG Electronics Co Ltd page 120 of 689 The verification page after configuration is as follows ...

Page 121: ...e the VRRP related function go to configure router mode of CLI enter a router ID and interface name to go to the VRRP configuration mode WEC8500 configure terminal WEC8500 configure router WEC8500 configure router vrrp WEC8500 configure router vrrp 1 vlan1 10 WEC8500 configure router vrrp The following commands are provided advertisement interval This command configures the advertisement interval ...

Page 122: ...rue Use the preempt mode false Stop using the preempt mode priority This command configures a priority priority PRIORITY Parameter Description PRIORITY Priority setup range 1 255 virtual ip This command configures an IP address to use in the VRRP and configure the IP address as master or backup virtual ip A B C D virtual ip A B C D MODE Parameter Description A B C D IP address MODE IP configuratio...

Page 123: ...click the Enable Disable button you can Enable or disable VRRP In addition when you click the Add or Delete button you can add or delete VRRP configuration Figure 47 VRRP Operation Window Circuit Failover When you click the Circuit Failover menu the VRRP list is displayed on the window Figure 48 VRRP Circuit Failover Window 1 To perform detail configuration select one of VRRP items After selecting...

Page 124: ...o detect an IP address collision Operator can enter a value between 10 and 300 seconds WEC8500 configure terminal WEC8500 configure WEC8500 configure ipwatch defend interval Ipwatch defend interval configuration WEC8500 configure ipwatch defend interval 10 300 Ipwatch defend interval value seconds WEC8500 configure ipwatch defend interval 30 Parameter Description VALUE Enter a defend interval 10 3...

Page 125: ...ion using CLI 1 Go to fqm mode where you can configure the configure rule of CLI APC configure terminal APC configure fqm mode 2 Create an access list by entering the access list command The no parameter is used to delete an access list access list ip ipv6 mac ACL_NAME deny permit time profile seq seq_NUM 1 ahp eigrp esp gre icmp igmp igrp ip nos ospf pcp pim 17 6 tcp udp 1 255 any A B C D A B C D...

Page 126: ...hange You can change the configuration using the Add or Delete button In addition if there is a time profile in an ACL name the IP ALC window is changed as shown below After selecting a time profile click the Apply button to apply the time profile to the ACL Figure 52 Window where a Time Profile is Applied to ACL 3 5 1 2 ACL Rule Configuration Configuration using CLI 1 Go to interface configuratio...

Page 127: ...p fqm in acl1 3 To check the configuration information use the show running config network command Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select the Security Access Control Lists Access Group Interface menu in the sub menus The initial window of WLAN ACL configuration is shown below When you click the Add or Delete button you can add or delete A...

Page 128: ...and ip access group wireless ACL_NAME Parameter Description ACL_NAME ACL name to configure 3 To check the configuration information use the show running config network command 3 5 1 4 Admin ACL Configuring Configuration using CLI 1 Go to the fqm mode to configure the configure ACL rule of CLI APC configure terminal APC configure fqm mode 2 Configure Admin ACL by entering the ip access group wirele...

Page 129: ...ny match type MODE Parameter Description MODE Match mode configuration match all match any 4 Perform detail configuration according to match criteria Match Criteria Description access group match access group ACCESS_GROUP_NAME class match class CLASS_NAME COS match cos COS_VALUE any destination IP range match dst ip range A B C D A B C D IP match ip dscp DSCP_VALUE any match ip precedence IP_PRECE...

Page 130: ...owing command Bandwidth to a class of traffic bandwidth percentage PERCENTAGE_VALUE Configure set action mark cos COS_VALUE mark ip dscp DSCP_VALUE mark ip precedence PRECEDENCE_VALUE mark priority PRIORITY_VALUE Configure police action police trtcm cir 1 1000 cbs 125000 125000000 pir 1 1000 pbs 125000 125000000 conform action drop dscp 0 63 ip 0 7 transmit exceed action drop dscp 0 63 ip 0 7 tran...

Page 131: ... ge2 2 Apply the policy configured in the policy map to an interface The no parameter is used to delete the policy service policy DIRECTION POLICY_NAME no service policy DIRECTION POLICY_NAME Parameter Description DIRECTION Application direction configuration in out POLICY_NAME Policy to apply An example of entering a command is shown below APC configure interface ge2 service policy in p1 APC conf...

Page 132: ...ay stop any YY MM DD THH MM SS time start any HH MM SS time stop any HH MM SS monthdays any 0 31 weekdays any VARIABLE no time profile PROFILE_NAME Parameter Description PROFILE_NAME Name of a time profile to configure 3 To check the configured time profile use the show running config network command Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select...

Page 133: ...gure ACL rule of CLI APC configure terminal APC configure fqm mode 2 Apply a time profile to ACL The no parameter is used to delete a time profile access list ip ACL_NAME time profile PROFILE_NAME no access list ip ACL_NAME time profile PROFILE_NAME Parameter Description ACL_NAME ACL name to configure PROFILE_NAME Name of a time profile to configure An example of applying t1 to acl is shown below ...

Page 134: ...onfiguration using CLI 1 Go to configure interface configuration mode of CLI APC configure terminal APC configure interface ge2 2 Configure ACL to the interface The no parameter is used to delete ACL ip access group MODE DIRECTION ACL_NAME no ip access group fw fqm DIRECTION ACL_NAME Parameter Description MODE Configuration mode fw fqm For ACL rule configuration select fqm The fw is used for firew...

Page 135: ...mode os aware Os aware add operation update Os aware update 2 Set the OS AWARE Use the delete parameter to delete the OS AWARE os aware OS_AWARE NAME dhcp option OPTION_NUM dhcp option OPTION_NUM eq VALUE os type OS_TYPE NAME delete os aware OS_AWARE NAME update os aware OS_AWARE NAME dhcp option OPTION_NUM dhcp option OPTION_NUM eq VALUE os type OS_TYPE NAME Parameter Description OS_AWARE NAME os...

Page 136: ...ME TYPE REFCNT OPTION LENGTH FINGERPRINT OS_TYPE 1 window7 0 0 5 2 1234 windows 3 5 6 2 Applying to ACL Configuration using CLI 1 Go to configure fqm mode to set the ACL rule of CLI APC configure terminal APC configure fqm mode 2 Apply the OS AWARE to ACL Use the no parameter to delete the OS AWARE access list ip ipv6 mac ACL_NAME deny permit time profile seq seq_NUM 1 ahp eigrp esp gre icmp igmp ...

Page 137: ...ption OS_AWARE NAME os aware name to configure An example of applying window7 to acl is as follows APC configure terminal APC configure fqm mode access list ip acl1 permit seq 1 icmp any any os aware window7 3 To check the configuration information use the show running config network command ...

Page 138: ...Disable Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select the Controller Multicast IP Multicast menu in the sub menus After selecting Enable Disable in the IP Multicast window click the Apply button to apply the configuration Figure 59 IP Multicast Configuration Window 3 7 2 PIM Configuration As a multicast layer3 transmission protocol the PIM has t...

Page 139: ...r of WEC Main window select Configuration and then select the Controller Multicast PIM SM menu in the sub menus When you click the Add or Delete button you can add or delete PIM SM configuration Figure 60 PIM SM Configuration Window 1 Follow the below procedure to add a PIM 1 In the PIM SM initial window click the Add button 2 Click the Select Interface button Figure 61 PIM SM Configuration Window...

Page 140: ...ectronics Co Ltd page 140 of 689 3 Select an interface to add Figure 62 PIM SM Configuration Window 3 4 The selected interface is displayed on the window Click the Apply button to apply the configuration Figure 63 PIM SM Configuration Window 4 ...

Page 141: ...of a VLAN interface WEC8500 configure terminal WEC8500 configure interface vlan1 10 WEC8500 configure interface vlan1 10 ip igmp snooping In addition a specific function of the IGMP Snooping functions of a VLAN interface can be enabled or disabled as shown in the below command ip igmp snooping fast leave This command enables or disables the Fast Leave function Default Enable status ip igmp snoopin...

Page 142: ...enus Config Enables or disables the IGMP Snooping function or configures related functions To perform configuration for STATE FAST LEAVE QUERIER STATE or REPORT SUPRESSION STATE select Enable or Disable and click the Apply button Figure 64 IGMP Snooping Config Window Mroute The PIM SM initial window is shown below When you click the Add or Delete button you can add or delete PIM SM configuration F...

Page 143: ...3 of 689 3 Select a VLAN interface that will be added to the Mroute Figure 67 IGMP Snooping Mroute Creation Window 3 4 The selected interface is displayed on the window Click the Apply button to apply the configuration Figure 68 IGMP Snooping Mroute Creation Window 4 ...

Page 144: ...DPI Configuration mode APC configure terminal APC configure dpi APC configure dpi 2 Make a profile and add an application rule APC configure dpi profile NAME APC configure dpi profile NAME rule APPLICATION APC configure dpi profile NAME rule APPLICATION action permit APC configure dpi profile NAME rule APPLICATION mark DSCP APC configure dpi profile NAME rule APPLICATION bw contract upstream BW_CN...

Page 145: ...ameter Description NAME Profile name ID WLAN ID Configuration using Web UI In the menu bar of WEC Main Window select Configuration and then select Wireless QoS Application QoS in the submenus Select Profile Figure 69 Profile Creation Screen Figure 70 Profile Configuration Screen ...

Page 146: ...inal APC configure dpi APC configure dpi 2 Make a group and add an application APC configure dpi app group NAME APC configure dpi app group NAME application APPLICATION Parameter Description NAME Group name APPLICATION Application name Configuration using Web UI In the menu bar of WEC Main Window select Configuration and then select Wireless QoS Application QoS in the submenus Select Application G...

Page 147: ...ry provides statistical information by application WLAN station device os type and group Configuration using CLI 1 Check the statistical information on all applications APC show dpi stat application Accumulated Application Stat ID Application Name Upstream Packet Count Upstream Byte Downstream Packet Count Downstream Byte Upstream Kbps Downstream Kbps Drop Drop Drop Drop ...

Page 148: ... 220 9 VSHARE 0 0 0 0 10 FLASH_YAHOO 0 0 0 0 11 BING 0 0 0 0 12 DNS 0 0 0 0 13 FLASH 0 0 0 0 14 FTP 0 0 0 0 15 GMAIL 0 0 0 0 17 GOOGLE 0 0 0 0 18 GOOGLE_EARTH 0 0 0 0 19 GOOGLE_GROUPS 0 0 0 0 20 GOOGLE_MAPS 0 0 0 0 21 HTTP 0 0 0 0 22 HTTP_SECURE 3 162 3 193 23 TWITTER 0 0 0 0 24 YAHOO_MAIL 0 0 0 0 25 YAHOO_SEARCH 0 0 0 0 26 ORKUT 0 0 0 0 27 FACEBOOK 0 0 0 0 28 LINKEDIN 0 0 0 0 29 VOICETALKSIGNAL 0...

Page 149: ...Byte 1 22 HTTP_SECURE 3 162 3 193 2 8 YOUTUBE 1 54 2 220 APC 2 Check the statistical information on specific applications APC show dpi stat application HTTP_SECURE HTTP_SECURE ID 22 Stat Description Upstream Packet Count 3 packets Upstream Byte 162 bytes Downstream Packet Count 3 packets Downstream Byte 193 bytes Upstream Packet Drop Count 0 packets Upstream Drop Byte 0 bytes Downstream Packet Dro...

Page 150: ...evice types 1 2 3 4 5 6 7 8 9 1 Samsung SM P900 100 00 355 bytes Top 10 OS types 1 2 3 4 5 6 7 8 9 1 Android 4 4 2 100 00 355 bytes APC Parameter Description APPLICATION Application name 3 Check the statistical information on all WLANs APC show dpi stat wlan 4 Check the statistical information on specific WLANs APC show dpi stat wlan ID Parameter Description ID WLAN ID 5 Check the statistical info...

Page 151: ...n all device os types APC show dpi stat device os type 8 Check the statistical information on specific device os types APC show dpi stat device os type TYPE Parameter Description TYPE Device of OS type name 9 Check the statistical information on all application groups APC show dpi stat group 10 Check the statistical information on specific application groups APC show dpi stat group NAME Parameter ...

Page 152: ...on SAMSUNG Electronics Co Ltd page 152 of 689 Configuration using Web UI In the menu bar of WEC Main window select Monitor and then select Application submenu Figure 73 WLAN Device Statistics Screen Figure 74 WLAN Statistics Screen ...

Page 153: ...CHAPTER 3 Data Network Function SAMSUNG Electronics Co Ltd page 153 of 689 Figure 75 Device Statistics Screen ...

Page 154: ...C transmits mDNS Response for mDNS Request instead of APC Configuration using CLI 1 Enable the mDNS Snooping function in the APC system WEC8500 configure ip mdns WEC8500 configure ip mdns snoop WEC8500 configure ip mdns snoop mode bridge WEC8500 configure ip mdns snoop enable 2 Add an mDNS snooping service object WEC8500 configure ip mdns service AirPrint _ipp _tcp WEC8500 configure ip mdns servic...

Page 155: ...re wlan 1 WEC8500 configure wlan 1 mDNS snoop profile mdns_p1 WEC8500 configure wlan 1 exit WEC8500 configure interface vlan1 10 WEC8500 configure interface vlan1 10 mDNS snoop profile mdns_p1 WEC8500 configure interface vlan1 10 exit Parameter Description NAME mDNS snooping profile name Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select the Controll...

Page 156: ...ervice object Select Controller mDNS Snooping Profile Figure 78 mDNS Snooping Profile Configuration Click the Add button to create a new mDNS snooping profile object Figure 79 mDNS Snooping Profile Service Configuration 4 Configure the mDNS snooping profile object in the WLAN and the wired interface Select Configuration WLANs Advanced Select the mDNS snooping profile object created in MDNS SNOOPIN...

Page 157: ...o Ltd page 157 of 689 Figure 80 WLAN mDNS Snooping Profile Object Configuration Select Configuration Interfaces Select the mDNS snooping profile object created in mDNS Snooping Profile for the wired interface Figure 81 mDNS Snooping Profile Configuration ...

Page 158: ...provide the cluster or redundancy function And the APCs added to the APC list are used during cluster or redundancy configuration One APC system that will be saved in the APC list consists of an APC name and Medium Access Control MAC information For the MAC address of another APC system enter the MAC address retrieved from the Monitor Summary Inventory MAC Address menu of system WEC screen By defa...

Page 159: ...ENT_APC_NAME NEW_APC_NAME change mac APC_NAME MAC_ADDRESS Parameter Description APC_NAME APC name CURRENT_APC_NAME Current APC name before change NEW_APC_NAME APC name after change IP_ADDRESS APC MAC address xx xx xx xx xx xx In the APC system enter the system mac address output parameter value of show system info command 4 To check the configured APC list execute the show apc list command Configu...

Page 160: ...configure mode of the CLI WEC8500 configure terminal WEC8500 configure 2 Configure a management interface apc ap mgmt if IP_ADDRESS Parameter Description IP_ADDRESS IP address of APC that is used for communication with a W EP wireless LAN AP 3 To check the configured IP information use the show apc summary command Configuration using Web UI In the menu bar of WEC Main window select Configuration a...

Page 161: ...ket transmission reliability Therefore the re transmission function is not provided and the DTLS function is also optional For CAPWAP configuration execute the following commands 1 Go to configure apc capwap of CLI WEC8500 configure terminal WEC8500 configure apc WEC8500 configure apc capwap 2 Configure the CAPWAP function using the following commands add multicast if VLAN_ID Configure a VLAN ID f...

Page 162: ...maximum number of retransmission when there is no answer for CAPWAP control packet transmission wait dtls timer TIMER Configures the maximum time until the AP waits without receiving the DTLS handshake message from the APC RFC 5415 default 60 seconds wait join timer TIMER Configures the maximum time until the APC receives the Join message after finishing DTLS handshake RFC 5415 default 60 seconds ...

Page 163: ...c capwap WEC8500 configure apc capwap 2 Configure the automatic registration function auto discovery 3 Configure an AP group that will be working after AP automatic registration auto discovery ap group AP_GROUP_ID Parameter Description AP_GROUP_ID ap group that will be working after AP automatic registration 4 To check the configured information use the show apc capwap summary command Configuratio...

Page 164: ...ries tech support max retry COUNT Parameter Description COUNT Number of retries 4 To check the configuration information use the show ap tech support command 4 1 6 APC Redundancy Configuration An operator can add a backup APC to an AP to make the backup APC provide the service even when an APC fault occurs The maximum number of backup APCs that can be registered to one AP per model is as follows A...

Page 165: ...ction And then operator can configure the APCs added to redundancy as the primary secondary or tertiary server of an AP 3 Configure a primary secondary and tertiary server per AP To make an AP operate in redundancy configuration configure the Discovery Type of the AP as APC Referal Use the Multi Set function of WEC to configure several APs at the same time Configuration using CLI 1 By referring to...

Page 166: ...e configure AP configuration mode of CLI and configure a primary secondary and tertiary server To make an AP operate in redundancy configuration configure the Discovery of the AP as apc referal WEC8500 configure terminal WEC8500 configure ap ap_1 WEC8500 configure ap ap_1 discovery apc referal primary apc APC_NAME secondary apc APC_NAME tertiary apc APC_NAME Parameter Description APC_NAME Enter th...

Page 167: ...fallback function Figure 85 Redundancy Configuration Window Parameter Description APC NAME Name of an APC to be added or deleted to from redundancy The APC must be an APC registered in the APC list MAC ADDRESS Because this is a MAC address configured during registration to the APC list an operator does not have to enter this at the redundancy configuration stage IP_ADDRESS IP address of an APC to ...

Page 168: ...input format is as follows Format hh mm hh mm Example 2 00 5 00 Fallback is available between 2pm and 5pm INTERVAL Configures the interval that an AP connected to the backup secondary or tertiary APC attempts fallback second If a specific time is not entered the default is 120 seconds The minimum is 60 seconds and the maximum is 1800 seconds 3 In the menu bar of WEC Main window select Configuratio...

Page 169: ... apc APC that the AP attempts to connect when there is no response from the primary apc DISCOVERY_TYPE Discovery Type ap followed Discovery type is set by AP apc referal Discovery type is set by APC using the backup APC lists To apply the priority of APC to which the AP will be connected operator needs to select the apc referal Auto Discovery type is automatically changed by the AP for automatic c...

Page 170: ...t in the original group The APs deleted in a group are automatically moved to the default group When a new AP group is created it is possible to configure AP information for each group If the Overwrite option is enabled for each setting the respective setting is applied to all APs within the group Generally up to 16 WLANs can be added to an AP group However if a root AP is contained in an AP group...

Page 171: ...annot delete an AP from the group If you delete an AP from other AP groups other than the default group the deleted AP is included into the default AP group add ap AP_NAME no add ap AP_NAME 4 Use the show ap group summary command to check the AP group information Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select the AP Groups menu in the sub menus I...

Page 172: ...Cs are configured for redundancy this configures the discovery type and Primary Secondary Tertiary Controller settings of the AP The APC provides the overwrite option for each AP group setting If the Overwrite option is enabled for each setting the respective setting is applied to all APs within the group For example if the Overwrite option is enabled for AP Mode and AP Mode is set to General all ...

Page 173: ...bled the location information set for the group is applied to all APs within the group LOCATION This is the location information of the AP OVERWRITE IP MODE If overwrite ip is enabled the IP mode information set for the group is applied to all APs within the group IP MODE This is the mode of receiving an IP address by the AP The following modes are available dhcp The AP receives IP address allocat...

Page 174: ...he primary APC the AP attempts to connect to this APC on its second connection attempt TERTIARY APC This is the name of the tertiary APC server If the AP is unable to connect to the secondary APC the AP attempts to connect to this APC on its third connection attempt The WEC8050 model does not support Tertiary APC 5 Use the show ap group detail AP_GROUP_NAME command to check the AP group informatio...

Page 175: ...500 configure 2 Create an AP group or enter the AP group configuration mode ap group AP_GROUP_NAME 3 Add remove an AP to from the AP group Use no parameter in front of the command to delete an AP from the AP group However you cannot delete an AP from a default AP group If you delete an AP from groups other than the default group the deleted AP is then included in the default AP group add ap AP_NAM...

Page 176: ...s To allows the same WLAN services to be provided to the APs allocated to each group the APC allows addition removal of WLANs to from each AP group Configuration using CLI 1 Go to the configure mode of the CLI WEC8500 configure terminal WEC8500 configure 2 Create an AP group or enter the AP group configuration mode ap group AP_GROUP_NAME 3 Add remove an WLAN to from the AP group Use no parameter i...

Page 177: ...f 689 Configuration using Web UI In the menu bar of WEC Main Window select Configuration select AP Groups in the submenu and then select an AP group to configure Under the WLANs tab of the AP group WLANs can be added or removed Figure 92 WLAN Add Remove Window for AP Group ...

Page 178: ...n select an AP group to configure Settings can be configured under the 802 11a n ac tab of the AP group Figure 93 802 11a n ac Window for AP Group The configuration items are as follows Service Configuration of AP Group SERVICE Enable or disable the radio service OPERATIONAL TYPE Enable or disable the 11n ac OPTIONS Guard interval 11ac select short or long for Guard interval 20 40 80 Mhz Beamformi...

Page 179: ...TX CURRENT POWER TX power range 3 30 TX POWER FIX The configured TX power is configured as fixed and it is not affected by automatic adjustment functions such as RRM When the Monitor Access Points Radio 802 11a n ac menu is selected the TxPower value is shown as optional To check the configured channel and TX power information go to Monitor Access Points Radio 802 11a n ac General BANDWIDTH select...

Page 180: ...then select an AP group to configure Settings can be configured under the 802 11b g n tab of the AP group Figure 94 802 11b g n Window for AP Group The configuration items are as follows Service Configuration of AP Group SERVICE Enable or disable the radio service OPERATIONAL TYPE Enable or disable of 11n service OPTIONS Guard interval 11n select short long for Guard interval 20 40 Mhz Beamforming...

Page 181: ...cted the TxPower value is shown as optional To check the configured channel and TX power information go to Monitor Access Points Radio 802 11b g n General Max Allowed Stations on an AP Define max allowed stationsfor each Radio CONTROLLED VOICE OPTIMIZATION set voice optimization Multi antenna Mode set Dynamic Static 4 2 1 6 Advanced Configuration In order to provide the same services to the APs al...

Page 182: ...console enable no console enable overwrite dtls no overwrite dtls dtls policy overwrite led control no overwrite led control led config overwrite vlan no overwrite vlan vlan support no vlan support native vlanId no native vlanId overwrite poe type no overwrite poe type overwrite uplink bandwidth no overwrite uplink bandwidth uplink qos overwrite temperature alarm no overwrite temperature alarm tem...

Page 183: ...eceived from the AP for as long as double the length of the echo interval the APC judges that the AP is down unit seconds MAX ECHO RETRANSMIT The APC waits for this length of time before retransmitting an echo request message when there is no response The APC sets double the length of echo interval as the echo timeout time If no echo message is received from the AP for as long as double the length...

Page 184: ...all APs in the group TEMPERATURE ALARM ON LEVEL If the temperature of the AP exceeds the Temperature Alarm On Level the temperature alarm occurs The default is 98 and possible to set between 50 and 130 TEMPERATURE ALARM OFF LEVEL If the temperature of the AP is less than the Temperature Alarm Off Level the temperature alarm is cleared The default is 90 and possible to set between 50 and 130 TEMPER...

Page 185: ... terminal WEC8500 configure ap group default GroupName default WEC8500 configure ap group default airmove WEC8500 configure ap group default airmove decision delta Set delta value for handover decision enable Airmove enable exit Exit from airmove mode number of channel Set the number of channel required during one time scanning number of proreq Set the number of probe request required during one t...

Page 186: ...he trigger level dBm WEC8500 configure ap group default airmove target ap all All keep ap config Keep ap config WEC8500 configure ap group default airmove end 5 Use the show airmove group ap_group_name command to check the AP group information WEC8500 show airmove group default Airmove Group Configurations Airmove State Disable Target AP Keep Ap Config Scan trigger level 70 dBm Scanning time for o...

Page 187: ...value of the group applied to them WEC8500 configure terminal WEC8500 configure ap group default GroupName default WEC8500 configure ap group default sta ssl WEC8500 configure ap group default sta ssl decision delta Set delta value for handover decision enable sta ssl enable number of channel Set the number of channel required during one time scanning number of proreq Set the number of probe reque...

Page 188: ...ure ap group default sta ssl scan trigger level 128 0 Enter the trigger level dBm WEC8500 configure ap group default sta ssl target ap all All keep ap config Keep ap config WEC8500 configure ap group default sta ssl end 5 To check the AP group information use the show stats report conf ap_group_name command WEC8500 show sta ssl group default SSL Group Configurations Sta SSL State Disable Target AP...

Page 189: ...oup ip sec 4 Configure the IPSec function for the AP group overwrite ip sec enable primary ip right subnet right subnet mask auth mode ike version ike lifetime ipsec lifetime Parameter Description OVERWRITE IP SEC If overwrite ip sec is enabled the ip sec information set for the AP group is applied to all APs within the group ENABLE Enables disables the IPSec function PRIMARY IP Configures the add...

Page 190: ...IME Configures the IKE SA validity Unit hours IPSEC LIFETIME Configures the IPSec SA validity Unit minutes Configuration using Web UI In the menu bar of WEC Main Window select Configuration select AP Groups in the submenu and then select an AP group to configure Advanced settings and AirMove settings of the AP group can be changed under the Advanced tab of AP Group Figure 97 Advanced Configuration...

Page 191: ...r List Possible to add or delete a user station to be managed in the remote AP Role Based Access Control Possible to apply the ACL profile Tunnel Forwarding Possible to add the split tunnel ACL settings of the WLAN set with the tunneling mode Local Bridging Forwarding Possible to add settings of VLAN ID ACL and Pre Auth ACL of the WLAN set with the local bridging mode DHCP Can use AP which is incl...

Page 192: ...dd or Delete button to add or delete a group Figure 98 Remote AP Group Add Remove Window If you creat AP Group by click Add button this group is created for Remote AP Group by checking Remote AP Group Figure 99 Define Remote AP Group 4 2 2 2 Local Authentication Configuration for Remote AP Group Users stations accessing the remote AP and the Radius server which authenticates such users can be conf...

Page 193: ...e primary radius RADIUS_SERVER_INDEX remote secondary radius RADIUS_SERVER_INDEX no remote secondary radius RADIUS_SERVER_INDEX remote tertiary radius RADIUS_SERVER_INDEX no remote tertiary radius RADIUS_SERVER_INDEX 3 Add or delete users stations connecting to the remote AP add user USER NAME no add user USER NAME 4 Execute the show remote ap group detail REMOTE AP GROUP NAME command to check the...

Page 194: ...de in the Role Based Access Control chapter 4 2 2 4 Configuring Tunneling Forwarding of Remote AP Group Possible to configure the split ACL to a WLAN set with tunneling among WLANs included in the remote AP group Configuration using CLI To configure the split ACL of the remote AP group perform the command as follows 1 Go to configure Remote AP Group configuration mode of CLI WEC8500 configure term...

Page 195: ... Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select the AP Groups menu in the sub menus After selecting the name of the remote AP group you can configure Tunneling Forwarding in the ACL Profile item of the Remote AP Group tab In addition you can click the Send To APs button to send the information on ACL Profile Tunnel Forwarding and Local Bridging F...

Page 196: ...the show ap group remote forwarding REMOTE AP GROUP NAME command to check the AP group information 4 Use the send remote acl to ap profile only command to send the ACL Profile information of the remote AP group to APs 5 Use the send remote acl to ap all command to send the information on the ACL Profile Tunneling Forwarding and Local Bridging Forwarding of the remote AP group to APs Configuration ...

Page 197: ...ess at a specific MAC address or supports IP address range which will be assigned to DHCP Server Lease Time Configuration using CLI Excutes following commands to configure Remote AP Group s DHCP 1 Enter configure Remote AP Group DHCP setup mode using CLI WEC8500 configure terminal WEC8500 configure WEC8500 configure ap group remote ap group name WEC8500 configure ap group remote ap group name remo...

Page 198: ...RST NTP SERVER ADDRESS ntp second SECOND NTP SERVER ADDRESS ntp third THIRD NTP SERVER ADDRESS dns dns first FIRST DNS SERVER ADDRESS dns second SECOND DNS SERVER ADDRESS dns third THIRD DNS SERVER ADDRESS 6 Enable or disable DHCP Server operation enable no enable 7 Add or delete fixed IP fixed ip FIXED IP ADDRESS MAC ADDRESS no fixed ip FIXED IP ADDRESS Configuration using Web UI In the menu bar ...

Page 199: ...8500 configure terminal WEC8500 configure WEC8500 configure ap group remote ap group name WEC8500 configure ap group remote ap group name remote interface 2 Add or delete VLAN vlan VLAN ID no vlan VLAN ID 3 Can check VLAN information using show ap group remote interface vlan REMOTE AP GROUP NAME command 4 Add or delete Interface Group if group INTERFACE GROUP NAME no if group INTERFACE GROUP NAME ...

Page 200: ...r information is transmitted to an AP and the AP synchronizes the time with the NTP server A NTP server list must be created to transmit the NTP server information to an AP and maximum 10 lists can be added The ntp interval 2 N is the interval when an AP receives the time information from the NTP server For example if the ntp interval is set to 6 an AP receives the time information from the NTP se...

Page 201: ...t to an AP Maximum 10 NTP server information can be added To delete the configured NTP server information enter no parameter in front of the command add ntp NTP_SERVER_ADDRESS no add ntp NTP_SERVER_ADDRESS ntp interval NUMBER 3 Configure the method of transmitting the time information to an AP as ntp mode ntp 4 Use the show apc ap time config command to check the configured information Configurati...

Page 202: ...e name WEC8500 configure ap ap_1 If there exists the same AP when entering ap profile name you are guided to the mode where operator can configure the AP If there is no same AP the new AP information is created 2 Register the MAC address of the AP profile mac MAC_ADDRESS 3 To check the information of a configured AP use the show ap summary config command Configuration using Web UI In the menu bar ...

Page 203: ...ole access to the AP discovery ap followed apc referal multicast broadcast DHCP Configures the discovery type of an AP to find APC ap followed Finds the APC using the discovery type and discovery list configured in an AP apc referal Uses the APC list information configured in an APC as the discovery list DHCP Uses the APC list information that is received through DHCP option 138 IPv4 or option 52 ...

Page 204: ...ng WLAN ACL and Pre Authentication ACL of Captive Portal for each remote AP vlan id Configures a VLAN ID to allocate to the Local Switching WLAN acl name Configures an ACL name to allocate to the Local Switching WLAN for packet allowance blocking pre auth name Configures a Pre Authentication ACL name for Captive Portal operation of the Local Switching WLAN location STRING Configures the informatio...

Page 205: ...af poe 8023af preferred band normal 5GHz 24GHz Configure radio band which has priority uplink qos Configure DSCP value of AP Uplink link test Configure whether to confirm connected WAN link at AP booting Link aggregation The 11ac AP model provides 2 uplink Ethernet ports The 2 Ethernet ports can be configured for link aggregation If link aggregation is enabled the following modes can be configured...

Page 206: ...KI IKE VERSION Configures the IKE version 1 2 IKE LIFETIME Configures the IKE SA validity Unit hours IPSEC LIFETIME Configures the IPSec SA validity Unit minutes Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select the Access Points AP selection General menu in the sub menus The setting options in the General tab are as follows Click the Apply button t...

Page 207: ...COVERY TYPE AP discovery type ADMIN STATUS AP administrative status OPER STATUS Current AP operational status PRIMARY CONTROLLER NAME SECONDARY CONTROLLER NAME TERTIARY CONTROLLER NAME Redundancy mode For WEC8050 the TERTIARY CONTROLLER NAME is not supported IP SEC set IPSec service related function In the menu bar of WEC Main window select Configuration and then select the Access Points AP Advanc...

Page 208: ... ap_1 profile 2 Configure the AP mode ap mode MODE Parameter Description MODE AP operation mode generalAp rootAp repeaterAp snifferAp relayAP generalAp Typical operation mode Default value rootAp AP mode where a repeater AP can be connected repeasterAp AP mode that is connected to a wireless area and the APC through the root AP snifferAp AP mode where the packets operating in a wireless environmen...

Page 209: ... one remaining account it cannot be deleted While each account may be in any of the three available levels Administrator Operator Monitor there are currently no functional differences for the APs Configuration using CLI Execute the following commands to configure the AP access account 1 Go to configure APC mode of CLI WEC8500 configure terminal WEC8500 configure apc WEC8500 configure apc 2 Add an ...

Page 210: ...ccount Add Remove Window 4 2 4 5 AP SNMP Agent Configuration The APC operator can configure SNMP Agent settings for all APs Configuration using CLI Execute the following commands to configure the SNMP Agent settings of the AP 1 Go to configure snmp ap mode of CLI WEC8500 configure terminal WEC8500 configure snmp WEC8500 configure snmp ap WEC8500 configure snmp ap 2 Configure the snap agent informa...

Page 211: ...pe Either of the following two can be selected MD5 SHA AUTHENTICATION KEY A number in the range of 8 to 20 can be entered PRIVATE PROTOCOL Either of the following two can be selected DES AES PRIVATE KEY A number in the range of 8 to 20 can be entered 3 Use the show snmp ap command to retrieve the agent information configured for the AP Configuration using Web UI In the menu bar of WEC Main Window ...

Page 212: ... the information in its internal DB An operator can retrieve the information by using CLI or WEC AP Tech Support If there occurs a problem with a specific AP an operator can download the Tech Support information from the AP Execute the following command to use the function The Tech Support from an AP includes the following information System log message file System crash information file System re...

Page 213: ...w ap if stats AP_NAME command Configuration using Web UI In the menu bar of WEC Main window select Monitor and then select the Statistics AP Ports menu in the sub menus As shown below you can retrieve the real time interface statistics of the AP Select an item in the list and then you can check detail information Figure 113 AP Ports window Figure 114 AP Ports detail information window ...

Page 214: ...1 tech support get coredump system radio coredump 3 Request the crashfile of the AP WEC8500 configure ap ap_1 tech support get crash file system radio coredump 4 Request the log file of the AP WEC8500 configure ap ap_1 tech support get log file 5 Use show ap tech support command to check the Tech Support file information of APs Operator can use FTP or sFTP to download Tech Support files Configurat...

Page 215: ...P count 1 Outdoor APs are not included in the AP count of the APC license 2 Outdoor APs are not included in the ordinary AP count 3 The maximum up ported outdoor AP count is 300 for the WEC8500 model and 75 for the WEC8050 model 4 The APC system can retrieve the total up down outdoor AP count using the WEC or CLI 4 2 6 1 Outdoor AP Addition Removal The APC system allows creation deletion of outdoo...

Page 216: ...pgrade function execute the command as follows 1 Go to configure AP configuration mode of CLI WEC8500 configure terminal WEC8500 configure ap ap_1 2 Request the image file of an AP to upgrade WEC8500 configure ap ap_1 upgrade request weafama_1 2 4 R bin WARNING AP will be upgrade Are you sure you want to continue y n y WEC8500 configure ap ap_1 3 To check the upgrade file information of the reques...

Page 217: ...entire AP upgrade upon an operator s request predownload AP image that is referred to download AP image to AP during entire AP upgrade FILE_NAME Image file name that will be used for AP upgrade target During entire upgrade you can select whether to maintain individual configured AP version of an AP or perform upgrade Target AP UPGRADE TARGET Parameter Description UPGRADE TARGET Upgrade target all ...

Page 218: ...ange 1 10 default 3 start This command provides the entire AP upgrade function start UPGRADE_TYPE Parameter Description UPGRADE_TYPE Configures upgrade type quick upgrade predownload quick upgrade Perform entire ap upgrade upon an operator s request predownload Download ap image to ap first during entire ap upgrade If you perform package upgrade after configuring AP upgrade type to predownload res...

Page 219: ... can perform AP upgrade in the AP Upgrade tab and configure upgrade related environment in the Advanced tab AP Upgrade tab AP Upgrade tab upgrades all the APs or a specific AP Figure 117 AP upgrade The procedure of entire AP upgrade is as follows 1 In the AP Upgrade window click the Global button 2 The Global area is displayed on the window After configuring each item click the Apply button Figure...

Page 220: ...he SCOPE setup is Predownload upgrade you must restart the AP once download is completed After selecting the Administration Reboot AP menu select Reboot All with Upgrade to restart the AP To upgrade a specific AP follow the below procedure 1 In the AP Upgrade window click the Individual button 2 The individual area is displayed on the window After configuring each item click the Apply button Figur...

Page 221: ... 8 Remote AP Package Upgrade APs in a remote group can be upgraded by downloading an AP package from a specific AP This is useful for efficient management of APC AP bandwidth A master AP can be selected for each AP package model After downloading an AP package from the APC the master AP allows the AP package to be downloaded to other APs in the remote group The operator can manage AP upgrade of th...

Page 222: ...pgrade no enable CLI for checking configuration WEC8500 show remote ap group upgrade config rUpgrade Remote Ap Group Upgrade Config Group Name rUpgrade Enable Enable Type Default Mode FTP Path package ap PortNum 21 MAXretries 3 ForceOption Disable weafama APID 0 IP 0 0 0 0 weafamb APID 0 IP 0 0 0 0 WEC8500 show remote ap group upgrade list rUpgrade RC FR RC RetryCount FailReason RebootCause AP_ID ...

Page 223: ...agement SAMSUNG Electronics Co Ltd page 223 of 689 Configuration using Web UI Administration Package Upgrade Remote AP Group Example Figure 121 Remote AP Group Upgrade Activation_1 Figure 122 Remote AP Group Upgrade Activation_2 ...

Page 224: ... upgrade select masterAP ap_1 WEC8500 configure ap group rUpgrade remote upgrade delete masterAP weafama weafamb CLI for checking configuration WEC8500 show remote ap group upgrade config rUpgrade Remote Ap Group Upgrade Config Group Name rUpgrade Enable Enable Type Default Mode FTP Path package ap PortNum 21 MAXretries 3 ForceOption Disable weafama ap_1 APID 1 IP 10 10 10 160 weafamb APID 0 IP 0 ...

Page 225: ... Management SAMSUNG Electronics Co Ltd page 225 of 689 Configuration using Web UI Administration Package Upgrade Remote AP Group Example Figure 123 Checking Master AP Configuration Figure 124 Checking Master AP Configuration ...

Page 226: ...igure ap group rUpgrade remote upgrade WEC8500 configure ap group rUpgrade remote upgrade select package weafama weafama_1 7 0 U bin WEC8500 configure ap group rUpgrade remote upgrade delete package weafama weafamb CLI for checking configuration WEC8500 show remote ap group upgrade config rUpgrade Remote Ap Group Upgrade Config Group Name rUpgrade Enable Enable Type Default Mode FTP Path package a...

Page 227: ...group Configuration using CLI Example WEC8500 configure terminal WEC8500 configure ap group rUpgrade WEC8500 configure ap group rUpgrade remote WEC8500 configure ap group rUpgrade remote upgrade WEC8500 configure ap group rUpgrade remote upgrade start WEC8500 configure ap group rUpgrade remote upgrade stop CLI for checking configuration WEC8500 show remote ap group upgrade config rUpgrade Remote A...

Page 228: ... WEC8500 show remote ap group upgrade list rUpgrade RC FR RC RetryCount FailReason RebootCause AP_ID Model Version config current Status RC FR RC MasterAp 1 WEA303i Remote 1 7 0 U2 DownloadSuccess 0 0 128 MasterApCfg 2 WEA312i Remote 1 7 0 U2 DownloadSuccess 0 0 146 3 WEA303i Remote 1 7 0 U2 DownloadSuccess 0 0 146 Configuration using Web UI Administration Package Upgrade Remote AP Group Example F...

Page 229: ... upgrade CLI for checking configuration WEC8500 show remote ap group upgrade config rUpgrade Remote Ap Group Upgrade Config Group Name rUpgrade Enable Enable Type Default Mode FTP Path package ap PortNum 21 MAXretries 3 ForceOption Disable weafama ap_1 APID 1 IP 10 10 10 160 weafama_1 7 0 U bin 1 7 0 U weafamb APID 0 IP 0 0 0 0 WEC8500 show remote ap group upgrade list rUpgrade RC FR RC RetryCount...

Page 230: ...CHAPTER 4 AP Connection Management SAMSUNG Electronics Co Ltd page 230 of 689 Configuration using Web UI Administration Package Upgrade Remote AP Group Example Figure 127 Restarting and Upgrading AP ...

Page 231: ...rvice Set Identifier SSID Configuration using CLI Go to the wlan configuration mode from the configure mode of CLI WEC8500 configure terminal WEC8500 configure wlan WLAN ID Parameter Description WLAN_ID WLAN ID range 1 255 The WLAN configuration procedures are as follows 1 Go to configure wlan configuration mode of CLI WEC8500 configure terminal WEC8500 configure wlan 1 WEC8500 configure wlan 1 2 ...

Page 232: ...rfaces can be added to an interface group and the WLAN service is available only through the interface if group INTERFACE_GROUP_NAME 4 Configure a SSID The SSID is an ID used to connect to each wireless terminal to provide the WLAN service Make sure to configure a SSID to use the WLAN service ssid SSID_NAME 5 Configure radio by selecting 2 4G 5G or All 2 4G 5G radio Radio ID 1 5 GHz 2 2 4 GHz 3 AL...

Page 233: ...of WEC Main window select Configuration and then select the WLANs menu in the sub menus Select a WLAN ID to change in the WLANs screen and go to the General tab In the screen you can use various functions such as adding or deleting a WLAN Figure 128 WLAN basic configuration 1 Figure 129 WLAN basic configuration 2 ...

Page 234: ...imits the number of users per WLAN ADMIN STATUS Enables or disables the function 5 1 2 WLAN Additional Configuration Each wireless terminal can receive a differentiated service according to the WLAN configuration The procedure of configuring the WLAN additional function is as follows Configuration using CLI 1 Go to configure wlan configuration mode of CLI WEC8500 configure terminal WEC8500 configu...

Page 235: ...hen other devices do searching suppress ssid 8 Select the tunnel mode tunnel mode TUNNEL_MODE Parameter Description TUNNEL_MODE LocalBridging Make all the user traffics are bridged at the AP 8023Tunnel Make all the user traffics are transmitted in the 802 3 format Not supported if the MAC type is split mac 9 Broadcast packets can be forwarded to the WLAN The default value is disable WEC8500 config...

Page 236: ...he WLANs menu in the sub menus For more information about configuration see 5 1 Basic WLAN Configuration 5 1 3 WLAN based ACL Configuration To configure ACL to apply to the WLAN service define IP based ACL first and then configure it to the WLAN Configuration using CLI The procedures for configuration are as follows 1 Before applying ACL retrieve ACL that is configured as WLAN ACL WEC8500 show run...

Page 237: ... in the sub menus Select a WLAN ID to change in the WLANs screen and go to the Advanced tab Figure 130 WLAN based ACL configuration ACL RULE Configures the WLAN based ACL function STATIC ADDRESS DISALLOWED DHCP OVERRIDE DHCP SERVER Enter a DHCP server IP address WMM Configures the WiFi Multimedia WMM mode DTIM Enter a Delivery Traffic Indication Message DTIM value 1 255 STATION IDLE TIMEOUT Enter ...

Page 238: ...ich belongs to AP Group that have 16 WLAN can not be changed to Root AP mode Configuration using CLI 1 Go to configure apc configuration mode of CLI WEC8500 configure terminal WEC8500 configure apc WEC8500 configure apc 2 Enable or disable the repeater service The repeater service must be enabled for the repeater AP to connect to the root AP repeater service Enabled no repeater service Disabled 3 ...

Page 239: ...configure show ap summary 3 Go to AP configuration mode of an AP that will be changed to a Repeater AP WEC8500 configure ap ap_2 4 Configure it to a Repeat AP WEC8500 configure ap ap_2 profile ap mode repeaterAp 5 Restart the configured AP Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select the Controller General menu in the sub menus To enable repeat...

Page 240: ...age 240 of 689 In the menu bar of WEC Main window select Configuration and then select the Access Points AP selection General menu in the sub menus After selecting AP MODE item click the Apply button and restart the AP Figure 132 Root service management 2 ...

Page 241: ...re WEC8500 configure wlan 1 80211a WEC8500 configure wlan 1 80211a 3 Configure the data rate The settings described as shown below can be made only when the corresponding WLAN is set to be disabled WEC8500 configure wlan 1 80211a rate MODE RATE Parameter Description Mode Mode basic supported Basic Basic rate supported for a terminal to access to an AP Supported A connected terminal that supports t...

Page 242: ...he maximum MCS 7 enter the maximum MCS 7 9 for 3 spatial stream s 7 the maximum MCS 7 Wlan 1 Radio 5GHz number of SS 3 max mcs 7 7 7 Enable 6 You can check the configuration with the show wlan detail command WEC8500 show wlan detail 1 Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select the WLANs menu in the sub menus Select the WLAN ID to change in th...

Page 243: ...CHAPTER 5 WLAN Management SAMSUNG Electronics Co Ltd page 243 of 689 Figure 134 MCS by WLAN 802 11b g n Configuration Management window ...

Page 244: ...local switching WLAN is forwarded by the AP with the configured VLAN tag 2 ACL Packet filtering ACL is performed for the wireless device traffic connected to the configured local switching WLAN 3 Preauthetication ACL of Captive Portal Web preauthentication packet forwarding ACL is processed for the wireless device traffic connected to the local switching WLAN configured for captive portal 4 Split ...

Page 245: ..._AUTH_ACL_NAME ACL name to configure for pre authentication of the WLAN only for options set in IP ACL 4 Operator can check the configuration information by executing the show remote ap group summary show wlan detail show ap local bridging AP_PROFILE_ NAME command Configuration using Web UI By referring to the Configuring Remote AP Group add an AP to a remote AP group In the menu bar of WEC Main w...

Page 246: ...reen select an AP to change and go to the Remote AP tab Select the WLAN set with tunneling and enter the split ACL before clicking the Add button Figure 136 Split ACL Configuration Window of WLAN Allocated to AP Select the WLAN set with local bridging and then enter IF Group ACL Pre Auth ACL before clicking the Add button Figure 137 IF Group ACL Pre Auth ACL Configuration Window of WLAN Allocated ...

Page 247: ...ure the security function 5 3 1 Initialization of WLAN Security Function This is a procedure to disable WLAN where the security function is configured to the initial status Configuration using CLI An example of initializing the security function of wlan 1 is show below 1 Go to configure wlan configuration mode of CLI WEC8500 configure terminal WEC8500 configure wlan 1 2 After entering into the sec...

Page 248: ...WEP security function 802 1x Dynamic WEP Dynamic WEP security function Static WEP 802 1x Dynamic WEP Static Dynamic WEP security function WPA WPA2 WPA WPA2 PSK 802 1x security function WPA POLICY WPA WPA Version 1 function is enabled when selected ENCRYPTION TYPE Encryption type TKIP TKIP type CCMP AES CCMP type Both TKIP AES CCMP type WPA2 POLICY WPA2 The WPA Version 2 function is always enabled ...

Page 249: ...er function Disabled Disable a function Optional Enable a function and permit to connect a phone which does not use this function Required Enable a function and permit to connect a phone which uses this function STATIC WEP WEP KEY FORMAT key input format ASCII ASCII character string HEX Hexadecimal value WEP KEY SIZE Key length 40 40 bit 5 byte 104 104 bit 13 byte STATIC WEP WEP KEY INDEX Key inde...

Page 250: ...E Parameter Description WPA_TYPE WPA type wpa wpa2 WPA Version 2 must be enabled at all times wpa WPA Version 1 wpa2 WPA Version 2 4 Configure the PSK key WEC8500 configure wlan 1 security psk KEY_TYPE KEY_STRING Parameter Description KEY_TYPE PSK key input format ascii hex ASCII ASCII character string HEX Hexadecimal value KEY_STRING PSK key 5 Configure the encryption type WEC8500 configure wlan ...

Page 251: ... keymgmt ieee8021x 8 Disable the 802 1x authentication WEC8500 configure wlan 1 security no ieee8021x 9 After applying the changed configuration exit the security configuration mode WEC8500 configure wlan 1 security apply WEC8500 configure wlan 1 security exit 10 To check the configuration information use the following command WEC8500 configure show wlan security summary Configuration using Web UI...

Page 252: ... such as a Remote Authentication Dial In User Service RADIUS server To configure WPA WPA2 802 1x to WLAN execute the command as follows As the 802 1x authentication needs interoperation with a RADIUS server the RADIUS server required for the WLAN security configuration must be configured first For more information about RADIUS server configuration see 8 1 RADIUS Server Configuration Configuration ...

Page 253: ...ll times wpa WPA Version 1 wpa2 WPA Version 2 ENC_TYPE Encryption type tkip ccmp tkip TKIP type TKIP cannot be configured for WPA Version 2 ccmp AES CCMP type 5 Disable the PSK key management algorithm WEC8500 configure wlan 1 security no keymgmt psk 6 Configure the key management algorithm to 802 1x WEC8500 configure wlan 1 security keymgmt ieee8021x 7 Enable the 802 1x authentication WEC8500 con...

Page 254: ...US_SERVER_ID_LIST RADIUS server ID list Up to 3 IDs can be configured 10 After applying the changed configuration exit the security configuration mode WEC8500 configure wlan 1 security apply WEC8500 configure wlan 1 security exit 11 To check the configuration information use the following command WEC8500 configure show wlan security summary 12 To check configuration information use the show wlan s...

Page 255: ...ACCOUNTI NG SERVER Enable Disable Whether the accounting function is enabled Enable The accounting function is enabled Disable The accounting function is disabled RADIUS SERVER 1 Accounting server that will be used as the first priority Can select one out of pre configured RADIUS servers RADIUS SERVER 2 Accounting server that will be used as the second priority Can select one out of pre configured...

Page 256: ... override etc To use an internal RADIUS server select Internal when selecting a RADIUS server during authentication server configuration 2 Click the L2 tab Figure 141 WPA WPA2 802 1x Configuration 2 Select the L2 Security Type as WPA WPA2 and AUTH KEY MGMT as 802 1x After configuring the rest values as required click the Apply button For more information about detail configuration item of L2 tab s...

Page 257: ...on mode of CLI WEC8500 configure terminal WEC8500 configure wlan 1 2 Go to security configuration mode and initialize the configuration WEC8500 configure wlan 1 security WEC8500 configure wlan 1 security setDefault 3 Disable WPA1 WPA2 and 802 1x authentication WEC8500 configure wlan 1 security no wpa WEC8500 configure wlan 1 security no wpa2 WEC8500 configure wlan 1 security no ieee8021x 4 Enable ...

Page 258: ...lan 1 security apply WEC8500 configure wlan 1 security exit 8 To check configuration information use the show wlan security summary command Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select the WLANs menu in the sub menus Select a WLAN ID to change in the WLANs screen and go to the Security L2 tab Figure 142 Static WEP configuration Select the L2 Se...

Page 259: ...re terminal WEC8500 configure wlan 1 2 Go to security configuration mode and initialize the configuration WEC8500 configure wlan 1 security WEC8500 configure wlan 1 security setDefault 3 Enable the 802 1x authentication WEC8500 configure wlan 1 security ieee8021x 4 To configure the length of a cryptographic key of dynamic WEP execute the following command WEC8500 configure wlan 1 security ieee8021...

Page 260: ...igured 7 After applying the changed configuration exit the security configuration mode WEC8500 configure wlan 1 security apply WEC8500 configure wlan 1 security exit 8 To check the configuration information execute the following command WEC8500 configure show wlan security summary 9 To check configuration information execute the show wlan security summary command Configuration using Web UI In the ...

Page 261: ...Co Ltd page 261 of 689 Select the L2 Security Type as Dynamic WEP After configuring the rest values as required click the Apply button For more information about detail configuration item of L2 tab see 5 3 1 Initialization of WLAN Security Function ...

Page 262: ...8500 configure terminal WEC8500 configure 2 To enable or disable the DHCP server enter the ip dhcp command Use no in front of the command to disable the configuration ip dhcp enable no ip dhcp enable 3 To check configuration information use the show ip dhcp command Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select the DHCP Internal Server menu in th...

Page 263: ...ME no ip dhcp pool POOL_NAME 3 To check configuration information use the show ip dhcp command To configure the DHCP Pool related function execute the command as follows to go to the DHCP pool mode WEC8500 configure terminal WEC8500 configure ip dhcp pool test WEC8500 configure ip dhcp pool test Configuring IP address Before configuring a DHCP pool you should configure a network first If the netwo...

Page 264: ..._ADDRESS Gateway IP address Configuring DNS Server Up to 3 IP addresses can be configured for a DNS server Enter no parameter to delete a configured DNS server The lower command all is used to delete all the IP addresses of a configured DNS server dns server IP_ADDRESS no dns server IP_ADDRESS no dns server all Parameter Description IP_ADDRESS DNS Server s IP address Configuring Domain Name This c...

Page 265: ... wireless terminal whose MAC address is 11 22 33 44 55 66 WEC8500 configure ip dhcp pool test fix address 11 22 33 44 55 66 100 100 100 10 Configuring IPAddress Lease Time Configure the time when a wireless terminal receives an IP address The lease infinite command configures the time infinitely If no parameter is entered in front of the command it is configured to 24 hours default lease TIME leas...

Page 266: ...ge IP_ADDRESS no range IP_ADDRESS1 IP_ADDRESS2 no range all Parameter Description IP_ADDRESS IP address Use to configure one IP address IP_ADDRESS1 Start address of IP address range IP_ADDRESS2 Last address of IP address range Capwap Access Controller Address Configuration Up to three IP addresses for a Capwap controller can be configured or deleted Also all Capwap controller addresses can be dele...

Page 267: ... user option 1 254 uint unsigned integer active passive no user option 1 254 int16 16 bit integer active passive no user option 1 254 uint16 16 bit unsigned integer active passive no user option 1 254 ipaddress A B C D active passive Deletes a configured option no user option all Deletes all the configured options A usage example is given below WEC8500 configure ip dhcp pool test user option 3 str...

Page 268: ... Web UI In the menu bar of WEC Main window select Configuration and then select the DHCP Internal Server menu in the sub menus Click the Add or Delete button to add or delete a DHCP pool Figure 145 DHCP Pool 1 The window where a DHCP pool can be added is shown below Figure 146 DHCP Pool 2 ...

Page 269: ...nge Pool Configures the range of IP address that will be leased to a DHCP client Enter an IP address into the Start IP Address IP box and End Ip Address IP box each and then click the Add button to create a list In addition select one in the created list and click the Delete button to delete it The IP address range cannot be overlapped with the IP address in a network bandwidth and also the IP add...

Page 270: ...LI The procedure of changing to the DHCP relay is as follows 1 Go to the configure mode of the CLI WEC8500 configure terminal 2 Switch to the DHCP relay The relay and proxy are operating in the switching mode If a proxy is not used it is operating in the relay mode WEC8500 configure no ip dhcp proxy enable 3 To check the configured DHCP information use the show ip dhcp proxy command Configuration ...

Page 271: ...o check the configured information use the show ip dhcp proxy command 4 Use the below command to check an IP address that is leased through the DHCP proxy WEC8500t show ip dhcp proxy lease IP address Server IP MAC address Lease Expiration time 10 10 10 100 1 1 1 1 00 1c bf c1 50 28 2012 08 31 12 00 24 Configuration using Web UI In the menu bar of WEC Main window select Configuration and then selec...

Page 272: ...sid The character string of SSID is added to the data of AP MAC The length is variable ap mac ssid Ethernet MAC data of the AP The length is 12 byte To configure Option 82 related functions go to the interface mode by executing the following command WEC8500 configure terminal WEC8500 configure interface vlan10 WEC8500 configure interface vlan10 Configuration using CLI Configuring Option 82 This co...

Page 273: ...e the page where you can change the Option 82 Figure 149 Option 82 configuration 1 Select an item in the list and perform detail configuration Figure 150 Option 82 configuration 2 After unchecking the GLOBAL USE check box in the DHCP part configure OPTION 82 STATE and OPTION 82 TYPE and then click the Apply button In the OPTION 82 STATE configure Enable Disable for Option 82 and configure ap mac a...

Page 274: ...t enter the information of a secondary server dhcp server primary A B C D secondary A B C D Configures both primary secondary servers dhcp server primary A B C D Configures only a primary server no dhcp server primary A B C D secondary A B C D Deletes both primary secondary servers no dhcp server primary A B C D Deletes a primary server Configuration at Global 1 Go to the configure mode of the CLI...

Page 275: ...terfaces menu in the sub menus In the interface you can see the page where you can change the Option 82 Figure 151 Primary Secondary server configuration 1 Select an item in the list and perform detail configuration Figure 152 Primary Secondary server configuration 2 After unchecking the GLOBAL USE checkbox in the DHCP part configure PRIMARY DHCP SERVER and SECONDARY DHCP SERVER and then click the...

Page 276: ...ion and then select the DHCP Proxy menu in the sub menus Configure the PRIMARY SERVER and SECONDARY SERVER of the Global Parameter If you does Global configuration the configuration is applied to all the interfaces whose GLOBAL USE checkbox is checked in the DHCP configuration of APC interface Figure 153 Primary Secondary server configuration 3 ...

Page 277: ...C configure wlan radio service 2 Configure whether to enable or disable WMM wmm mode WLAN_ID MODE Parameter Description WLAN_ID WLAN ID range 1 240 MODE WMM configuration mode disable enable 3 Configure DTIM dtim WLAN_ID DTIM Parameter Description WLAN_ID WLAN ID range 1 240 DTIM Beacon DTIM 1 255 default 1 4 Configure station idle timeout sta idle timeout WLAN_ID TIMEOUT Parameter Description WLA...

Page 278: ... WLANS menu in the sub menus Select a WLAN ID to change in the WLANs screen and go to the Advanced tab Figure 154 Radio service configuration After configuring the below items click the Apply button WMM Configures the WMM mode DTIM Enter a DTIM value 1 255 STATION IDLE TIMEOUT Enter a station idle timeout value The value range is 30 3600 and it must be the multiple of 15 ...

Page 279: ... Go to configure radio mode to configure of CLI The radio mode can be either 80211a or 80211bg An example of entering into 80211a is shown below APC configure terminal APC configure 80211a APC configure 80211a 2 Configure the channel of an AP channel CHANNEL ap AP_ID Configures the channel of an AP channel CHANNEL ap AP_ID fixed A channel is designed to be fixed and it is not affected by the autom...

Page 280: ... of an AP txPower POWER ap AP_ID Configures a TX power txPower POWER ap AP_ID fixed The TX power is configured as fixed and it is not affected by the automatic adjustment function such as RRM When executing the show 80211a summary or show 80211bg summary the channel value is displayed in Parameter Description POWER TX power value range 3 30 AP_ID AP ID range 1 3000 5 Configure TX power of multiple...

Page 281: ... AP beacon period PERIOD global Parameter Description PERIOD Beacon period range 40 3500 8 Configure the fragmentation threshold of an AP threshold fragmentation THRESHOLD global Parameter Description THRESHOLD Fragmentation threshold range 256 8000 9 Configure the data rate of an AP rate MODE RATE global Parameter Description MODE Mode basic supported basic Basic rate at which a terminal connects...

Page 282: ...NDWIDTH 20 20 MHz 40 40 MHz 80 80 MHz 160 160 MHz to be supported in the future 8080 80 80 MHz to be supported in the future AP_ID ID of the AP range 1 3000 GROUP_ID ID of the AP group all ap Applies to all APs in the group active ap Applies to all live APs in the group Configuration using Web UI In the menu bar of WEC Main window select CONFIGURATION and then select the ACCESS POINTS 802 11a n or...

Page 283: ...nction such as RRM When selecting the Monitor Access Points Radio 802 11a n ac or 802 11b g n menu the Tx power value is displayed as Optional To check the configured channel and TX power information go to Monitor Access Points Radio 802 11a n ac or 802 11b g n In the menu bar of WEC Main window select Configuration and then select the Radio 802 11a n ac or 802 11b g n 802 11h menu in the sub menu...

Page 284: ...ed rate Data Rates data rate Range for 80211a 6 9 12 18 24 36 48 or 54 Mbps Range for 80211bg 1 2 5 5 6 9 11 12 18 24 36 48 or 54 Mbps Select Configuration in the menu bar of WEC Main Window and select WLANs WLANs 802 11a n ac or 802 11b g n in submenus to configure Data Rates Select Configuration in the menu bar of WEC Main Window and select Radio 802 11a n ac or 802 11b g n in submenus to config...

Page 285: ...WEC8500 configure 80211a 11n support enable AP_ID GROUP_ID all ap active ap global Parameter Description AP_ID AP ID range 1 500 GROUP_ID ID of the AP group all ap Applies to all APs in the group active ap Applies to all live APs in the group 4 Configure the Modulation and Coding Scheme MCS rate WEC8500 configure 80211a 11n support mcs RATE global Parameter Description RATE MSC rate range 0 23 5 T...

Page 286: ...s Select Configuration in the menu bar of WEC Main Window and select WLANs WLANs 802 11a n ac or 802 11b g n in submenus to configure MCS Setting Select Configuration in the menu bar of WEC Main Window and select AP Groups 802 11a n ac or 802 11b g n in submenus to configure Operational Type Options An example of selecting 802 11b g n is shown below Figure 158 802 11 b g n Operational Type Options...

Page 287: ... property WEC8500 configure 80211a 11ac support enable AP_ID GROUP_ID all ap active ap global Parameter Description AP_ID ID of the AP range 1 500 GROUP_ID ID of the AP group all ap Applies to all APs in the group active ap Applies to all live APs in the group 4 Configure the Modulation and Coding Scheme MCS rate WEC8500 configure 80211a 11ac support mcs num ss SPATIAL STREAM global Parameter Desc...

Page 288: ...figuration in the menu bar of WEC Main Window and select WLANs WLANs 802 11a n ac or 802 11b g n in submenus to configure MCS Setting Select Configuration in the menu bar of WEC Main Window and select AP Groups 802 11a n ac or 802 11b g n in submenus to configure Operational Type Options An example of selecting 802 11a n ac is shown below Figure 160 802 11a n ac Operational Type OptionsWindow Figu...

Page 289: ...tial stream count Example maximum of seven MCS for one spatial stream maximum of eight MCS for two spatial streams and maximum of nine MCS for three spatial streams 1 spatial stream 7 2 spatial streams 8 3 spatial streams 9 OPTIONS Guard interval 11n Select short long for Guard interval 20 40 Mhz respectively Guard interval 11ac Select short long for Guard interval 20 40 80 Mhz respectively Beamfo...

Page 290: ...ws 1 Go to configure radio mode to configure of CLI APC configure terminal APC configure 80211a 80211bg 2 Apply the EDCA profile edca parameters PROFILE station Parameter Description PROFILE Configures each EDCA profile wmm_default_sta wmm_default_ap edca_user1 edca_user2 3 To check the application status of a configured EDCA profile use the show 80211a 80211bg qos edca parameters wmm_default_sta ...

Page 291: ...HAPTER 6 Wi Fi Configuration SAMSUNG Electronics Co Ltd page 291 of 689 Wired tab Figure 162 QoS configuration of a wireless terminal 1 Wireless tab Figure 163 QoS configuration of a wireless terminal 2 ...

Page 292: ..._1P DSCP Policy enable policy DSCP_OUTER DSCP_INNER Parameter Description enable Enables 802 1p or DSCP marking 802_1P 802 1p configuration user_priority default user_priority Marks the 802 1p or User Priority value of an incoming packet into the 802 1p field default Marks pre configured basic value to the 802 1p field DSCP_OUTER DSCP Outer configuration inner_packet default inner_packet Marks the...

Page 293: ...ut value is 6 or 7 and the input range of DSCP value is 46 63 Also if the packet type is video the 802 1p input value is 4 or 5 and the input range of DSCP value is 24 45 802 1p DSCP Packet type 6 7 46 63 voice 4 5 24 45 video 0 3 0 7 16 23 best effort 1 2 8 15 background 6 To check the configured policy and QoS parameter information per packet use the show 80211a 80211bg qos policy command Config...

Page 294: ...re QoS mode of a wireless section of CLI APC configure terminal APC configure 80211a 80211bg qos APC configure 80211a qos 2 Configure 802 1p or DSCP tag value to use for a packet type ap tags PACKET_TYPE 802 1P TAG DSCP TAG Parameter Description PACKET_TYPE Packet type configuration voice video best_effort background 802 1P_TAG 802 1p configuration DSCP_TAG DSCP tag configuration 3 To check the Qo...

Page 295: ...configure qos profile name APC configure qos Samsung 2 Configure 802 1p and a DSCP value that will be used for each access category ac AC 802 1P_TAG DSCP_TAG Parameter Description AC Access Category AC_VO AC_VI AC_BE AC_BK 802 1P_TAG 802 1p configuration range 0 7 DSCP_TAG DSCP tag configuration range 0 63 3 Configure the brief information of a profile description DESCRIPTION Parameter Description...

Page 296: ...y entering each QoS parameter you can configure the QoS profile of a specific terminal or configure the usage control function for each user Figure 165 Configuring QoS profile of a specific terminal ID ID range 1 16 PROFILE NAME Profile name DESCRIPTION Profile description MAX DOT1P TAG Maximum allowed 802 1p tag range 0 7 PER USER UPSTREAM BANDWIDTH CONTRACT Maximum upward usage range 0 450000 PE...

Page 297: ...o APC configure 80211a cvo 2 Enable or disable the function no enable ap AP ID global group group ID Parameter Description AP ID ID of AP range 1 3000 group ID ID of AP group range 1 3000 3 To check the configured information use the show 80211a 80211bg cvo config ap AP ID group group ID global command Configuration using Web UI 1 Configure for each Radio In the menu bar of WEC Main window select ...

Page 298: ...in the sub menus Figure 167 Configuring voice optimization by each AP Group 3 Configure for each AP In the menu bar of WEC Main window select CONFIGURATION and then select the ACCESS POINTS 802 11a n or 802 11b g n General menu in the sub menus Figure 168 Configuring voice optimization by each AP To enable Controlled Voice Optimization CVO select Enable in the CONTROLLED VOICE OPTIMIZATION To disa...

Page 299: ...mand as follows 1 Go to configure 80211h configuration mode of CLI APC configure terminal APC configure 80211h APC configure 80211h 2 Configure the 802 11h information channel switch MODE RESTRICTION SWITCH COUNT Parameter Description MODE Whether the switching announcement function is enabled disabled RESTRICTION Whether the channel packet transmission restriction mode is enabled disable enable S...

Page 300: ... then select the RADIO 802 11a n 802 11h menu in the sub menus Figure 169 Configuring 802 11h POWER CONSTRAINT Power constraint value 0 100 CHANNEL SWITCH Enables channel switch announcement RESTRICTION MODE Configures transmission restriction CHANNEL SWTICH COUNT Enter a waiting time until channel switching announcement Target Beacon Transmission Times TBTT ...

Page 301: ... the same time The command is shown below set global COUNTRY_CODE VALUE Parameter Description COUNTRY_CODE Country code to configure VALUE Environment configuration both outdoor indoor none To check the configuration information use the show country global config command AP Country Code Configuration To configure a country code execute the command as follows set ap AP_ID COUNTRY_CODE VALUE Paramet...

Page 302: ... group config AP group ID command Editing Country Code You can add or delete an operation channel per country and change maximum transmission power per channel To check the configuration information use the show country information COUNTRY_ CODE command Parameter Description COUNTRY_CODE Country code to configure Configuration using Web UI In the menu bar of WEC Main window select CONFIGURATION an...

Page 303: ...erminal operation environment is outdoor Indoor The terminal operation environment is indoor Non country A terminal is operating under non country entity 3 Click the Apply button to apply AP Country Code Configuration In the menu bar of WEC Main window select CONFIGURATION and then select the ACCESS POINTS Advanced menu in the sub menus Figure 171 AP Country Code Configuration After selecting COUN...

Page 304: ...CHAPTER 6 Wi Fi Configuration SAMSUNG Electronics Co Ltd page 304 of 689 Figure 172 AP Group Contry Code Configuration ...

Page 305: ...ou can retrieve the information of a wireless terminal being serviced by the APC 1 Check connected station information show station summary OPTION 파라미터 설명 OPTION ap AP_ID show station information by AP bssid BSSID_ID show station information by BSSID wlan WLAN_ID show station information by WLAN cr show all station information for a APC 2 The detail information of a wireless terminal that has a sp...

Page 306: ... terminal that has a specific MAC address is retrieved show station association history MAC_ADDRESS 파라미터 설명 MAC ADDRESS Wireless station MAC address 5 The debug statistics information of a wireless terminal is retrieved show stats OPTION all 파라미터 설명 OPTION debug all bug statistics information management_frame all bug statistics of wireless station management frame ...

Page 307: ...yed in the window To check the detail information of a specific station click the MAC information of the specific station in the Stations window list Figure 173 Information viewing window 7 1 2 Connection History related Configuration You can configure maximum value for the connection history of a wireless terminal that will be managed in the APC station number of assoc tracking COUNT Parameter De...

Page 308: ...terminals compatible with the APC Therefore the packet loss or handover time is optimized Some Samsung smartphones such as Galaxy S2 or S3 etc provide the AirMove function Configuration using CLI To configure the AirMove related function execute the following command to go to the handover configuration mode WEC8500 configure terminal WEC8500 configure handover Handover Option Configuration handove...

Page 309: ...ION_DETAIL Number of channels scan trigger level RSSI intensity at which a wireless terminal starts channel scanning OPTION trigger level OPTION_DETAIL RSSI dBm station decision delta Configures the threshold of RSSI difference measured in a wireless terminal between a serving AP and a target AP If the threshold is exceeded a wireless terminal performs its handover OPTION station decision delta OP...

Page 310: ...r disable the intra handover function by selecting Enable Disable in the INTERAPC HAND OVER item After configuring a value click the Apply button to apply 7 2 3 Inter APC Handover Configuration The Inter APC handover is a technology that supports handover among several APC systems Depending on network configuration the Inter APC L3 handover and Inter APC L2 handover services are provided By using ...

Page 311: ...lls is exceeded Disable default No response for a received call connection request message The received message is not forwarded to the called side Enable Rejects by transmitting 503 Service Unavailable SIP response for a received call connection request message The received message is not forwarded to a called side sipalg sip detect long call enable SIP DETECT LONG DURATION CALL Configures whethe...

Page 312: ...ration information use the show sipalg configuration command Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select the Controller General menu in the sub menus Figure 175 SIP ALG configuration window After configuring SIP ALG that is a voice CAC related configuration in the SIP ALG click the Apply button ...

Page 313: ...of CLI APC configure terminal APC configure 80211a 80211bg cac voice APC configure 80211a cac voice 2 Enable or disable the voice CAC function acm MODE Parameter Description MODE Enables or disables the voice CAC function enable Enable disable Disable 3 Configure maximum allowed number of voice calls max calls VALUE Parameter Description VALUE Maximum allowed number of voice calls 4 Configure the ...

Page 314: ...below item in the Call Admission Control click the Apply button ADMISSION CONTROL Configures the CAC function MAX CALLS Maximum number of allowed calls range 2 30 HANDOVER CALLS Number of marginal calls considering handover range 0 10 The number of allowed calls is MAX CALLS HANDOVER CALLS MINOR ALARM THRESHOLD Configures a threshold that generates a Minor alarm range 0 15 Enter 0 to prevent the a...

Page 315: ...nal APC configure 80211a 80211bg cac video APC configure 80211a cac video 2 Enable or disable the video CAC function acm MODE Parameter Description Mode Enables or disables the CAC function enable Enable disable Disable 3 Select a video CAC method method method Parameter Description method Select a video CAC method static chan_util static Based on video calls chan_util Based on channel usage 4 Con...

Page 316: ... handover 8 You can view the video CAC information you configured by executing the show 80211a 80211bg cac video configuration command Configuration using Web UI From the menu bar of WEC Main Window select CONFIGURATION and then select RADIO 802 11a n or 802 11b g n Admission Control in the submenus Figure 177 Admission Control Configuration Window After configuring the items below in the Call Adm...

Page 317: ...er of marginal calls with consideration for handover range 0 8 The maximum allowed number of calls becomes MAX CALLS HANDOVER CALLS MAX CHANNEL UTILIZATION Maximum allowed usage of channels range 5 85 HANDOVER CHANNEL UTILIZATION Usage of marginal channels with consideration for handover range 0 25 ...

Page 318: ...igure rrm configuration mode of CLI WEC8500 configure terminal WEC8500 configure rrm 2 Enable RRM The no parameter is used to disable RRM DCS DPC and CHDC which are functions of RRM can run only if the RRM is enabled WEC8500 configure rrm enable 3 In the cluster environment set the same RF Group Name to all the connected APCs A name must consist of up to 15 characters WEC8500 configure rrm rf grou...

Page 319: ...m of the menu Figure 178 RRM configuration window 7 4 2 DPC Configuration This section describes the setting options of the DPC function which automatically sets the Tx Power of the AP Configuration using CLI 1 Go to configure rrm configuration mode of CLI WEC8500 configure terminal WEC8500 configure rrm 2 Go to the wireless section where you want to change the settings WEC8500 configure rrm 80211...

Page 320: ...Execute the following command to change the execution interval The default value is 600 seconds WEC8500 configure rrm 80211a dpc periodic interval value 7 Execute the following command to change the Tx Power range which is automatically set by DPC The default minimum is 3 and the default maximum is 30 for both 80211a and 80211b WEC8500 configure rrm 80211a dpc txPower min value max value 8 Check t...

Page 321: ...the RRM is set to Enable WEC8500 configure rrm 80211a dcs WEC8500 configure rrm 80211a dcs enable 4 Configure whether to apply the DCS DPC joint algorithm If the no parameter is selected the configuration is cleared WEC8500 configure rrm 80211a dcs joint algo enable 5 Execute the following command to change the execution interval The default value is 120 seconds WEC8500 configure rrm 80211a dcs pe...

Page 322: ...nge instead of changing it immediately when a channel becomes busy due to channel utilization If the anchor time is not configured the default value is used at 4 o clock WEC8500 configure rrm 80211a dcs delayed channel change 11 To use the Aware Option function execute the following command To disable the configuration enter the no parameter The Aware Option does not change a channel if there is a...

Page 323: ...igure rrm configuration mode of CLI WEC8500 configure terminal WEC8500 configure rrm 2 Go to the wireless section where you want to change the settings WEC8500 configure rrm 80211a 3 Set the CHDC function Enter the chdc setting mode and enable it Use the no parameter to disable the mode The function operates only when the RRM is enabled WEC8500 configure rrm 80211a chdc WEC8500 configure rrm 80211...

Page 324: ... parameter WEC8500 configure rrm 80211a chdc statsActionEnable Success DBI set for DPC 11A Stats Action Enable 1 7 Configure the minimum value of statistics Failed Client Count for the pre alarm function It can be 1 75 WEC8500 configure rrm 80211a chdc min failed client count 70 CHDC 802 11a Set Minimum Failed Client Count Success 8 Configure the percentage of statistics Failed Client Count for th...

Page 325: ...e rrm 80211a chdc show rrm config summary RRM Status Enabled Rf Group Name Group 80211a n 80211b g n Dynamic Power Control DPC Enable Enabled Enabled Periodic Interval follow DCS follow DCS RSSI Threshold for Neighbor AP 70 70 RSSI Threshold for Station 70 70 TX Power Min Max 17 20 14 20 Minimum Number of AP 2 2 Elapsed Time After Last Run 36 7 Dynamic Channel Selection DCS Enable Enabled Enabled ...

Page 326: ...me out Count 10 10 Statistics Collect Interval 120 60 Neighbor List Management WLAN Neighbor Priority Handover Handover Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select the Radio 802 11a n ac or 802 11b g n RRM menu in the sub menus In the Coverage Hole Detection Control window operator can enable or disable the CHDC and configure the values using ...

Page 327: ...liday and consequently the sleeping cell detection is not performed WEC8500 configure rrm sleep cell detect apc threshold 3 AP Threshold Minimum number of users connected to an AP for sleeping cell detection If the number of STA associations of an AP is equal to or smaller than the AP threshold a silent alarm occurs WEC8500 configure rrm sleep cell detect ap threshold 4 PERIOD_1ST Start and end ti...

Page 328: ...dditional Services SAMSUNG Electronics Co Ltd page 328 of 689 Configuration using Web UI From the menu bar of WEC Main Window select Configuration and then select Radio Advanced Sleeping Cell Detection in the submenus ...

Page 329: ...g Disable function not performing WEC8500 configure rrm energy saving group 1 WEC8500 configure rrm energy saving group 1 enable 2 APC Threshold Maximum number of connected users throughout the whole APC for energy saving detection If the total number of STA associations is equal to or smaller than the APC threshold the day is judged as a holiday and the energy saving function is performed accordi...

Page 330: ...in ON status if STA is connected WEC8500 configure rrm energy saving group 1 radio_off_unconditionally 8 NEIGHBOR AP ON Configure whether to set on when 3 AP radio around AP which is connected to STA are set off neighbor ap on Set on around 3 AP radio no neighbor ap on Don t set on around 3 AP radio This function can be used by CLI only WEC8500 configure rrm energy saving group 1 neighbor ap on Co...

Page 331: ...and Energy Saving Auto Classification functions can be used by mixture In short as shown in the existing method only Energy Saving Groups or only Energy Saving Auto Classification or both can be used Configuration using CLI 1 Enable Disable Check the configuration of whether the Energy Saving Auto Classification function operates Enable Function operation Disable No function operation WEC8500 conf...

Page 332: ...ected keep the state ON configure rrm energy saving auto class radio_off_unconditionally 6 NEIGHBOR AP ON Configure whether to set on when 3 AP radio around AP which is connected to STA are set off neighbor ap on Set on around 3 AP radio no neighbor ap on Don t set on around 3 AP radio This function can be used by CLI only configure rrm energy saving auto class neighbor ap on Configuration using W...

Page 333: ...ing Scan 1 When applying the location tracking scan information to the APC the method varies according to type A method of applying the scan information can be selected using the following command scan result type TYPE Parameter Description TYPE 0 Applies scan information to all channels 1 Applies AP information using the same SSID 2 Transmits the previously scanned information first and then appl...

Page 334: ...le Enabled Algorithm type 4 Expiry date of history files 0 Scan Result Type 0 Number of ap list for report 0 scan report interval 10 count number of scan or report 0 7 5 3 Configures Location Tracking Scan 1 Configure the MAC address of a wireless terminal for which the tracking function will be executed station MAC_ADDRESS 2 To check the location information of a wireless terminal to track execut...

Page 335: ...LI The procedure of configuring a usage to a profile is as follows 1 Go to the configure mode of the CLI APC configure terminal 2 Create a QoS profile APC configure qos PROFILE_NAME APC configure qos samsung Parameter Description PROFILE_NAME Name of a QoS profile to create 3 Configure the downward usage in kbps bw contract downstream VALUE Parameter Description VALUE Downward usage 4 Configure th...

Page 336: ...S parameters By entering each QoS parameter you can configure the QoS profile of a specific terminal or configure the usage control function for each user Figure 182 Controlling Usage per User ID ID range 1 16 PROFILE NAME Profile name DESCRIPTION Profile description MAX DOT1P TAG Maximum allowed 802 1p tag range 0 7 PER USER UPSTREAM BANDWIDTH CONTRACT Maximum upward usage range 0 450000 PER USER...

Page 337: ... configure pcap config filter enable station mac INDEX Parameter Description MAC_ADDRESS MAC address 11 22 33 44 55 66 format INDEX Index number of MAC address range 1 10 Configuring AP MAC address Configure the MAC address of an AP whose packets will be captured APC configure pcap config filter APC configure pcap config filter ap mac MAC_ADDRESS APC configure pcap config filter enable ap mac INDE...

Page 338: ...rieve the remote packet capture configuration information APC show pcap current config detail Current status Idle Filtering mode station only Configured AP s MAC Information No MAC Addr Filtering Matched Count Inbound Rate Outbound Rate 1 F4 D9 FB 23 66 00 ON 0 0 0 0 0 ID Prf AP Name IPv4 Addr 2 ap_2 AP_f4d9fb236600 10 10 10 20 Configured Station s MAC Information No MAC Addr Filtering Matched Cou...

Page 339: ...ocedure Maximum 12 WEC8500 can be grouped in a cluster Maximum 2 WEC8050 can be grouped in a cluster 1 Go to the configure mode of the CLI WEC8500 configure terminal WEC8500 configure 2 Set the interval and the number of retries to transmit the Keep alive messages between APCs in the cluster cluster keep alive interval INTERVAL cluster keep alive retry count RETRY_COUNT Parameter Description INTER...

Page 340: ...ion APC_NAME APC name to be added to the APC list MAC_ADDRESS MAC address of the APC to be added to the APC list system mac address output parameter value of the show system info command in the APC Adding APC to cluster After adding APC to the APC list the APC must be added to a cluster 1 Go to the configure mode of the CLI WEC8500 configure terminal WEC8500 configure 2 Add the APC to a cluster cl...

Page 341: ...al WEC8500 configure 2 Delete an APC from the cluster To delete all the APC systems in a cluster enter the cluster del apc all command cluster del apc INDEX cluster del apc all Parameter Description INDEX Index in cluster range 1 12 Retrieving APC information added in cluster You can check the added APC information using the show cluster list apc command WEC8500 show cluster list apc INDEX APC NAM...

Page 342: ...ng menu in the sub menus The Clustering window is shown below Figure 183 Clustering window Configure a clustering configuration value in the Information item and then click the Apply button to apply The Clustering Members item shows all the clustering members Click the Add or Delete button to add or delete a clustering member The clustering addition window is shown below Figure 184 Clustering addi...

Page 343: ...enter the global parameter at the end connection limitation is applied to all the APs RADIO max associated stations MAX_STATION TARGET AP_ID Configures connection limitation to a specific AP RADIO max associated stations MAX_STATION group AP group ID Configures connection limitation to a specific AP group Parameter Description RADIO Wireless area to configure 80211bg 80211a 80211bg 2 4 GHz area 80...

Page 344: ...ck the Apply button Configures per AP Group In the menu bar of WEC Main window select Configuration and then select the AP Group 802 11a n or 802 11b g n menu in the sub menus Figure 186 Configuring connection limitation per AP Group After configuring MAX CLIENT COUNTS click the Apply button Configures per AP In the menu bar of WEC Main window select Configuration and then select the Access Points...

Page 345: ...nfiguration mode of CLI APC configure terminal APC configure wlan 1 APC configure wlan 1 2 Disable the WLAN APC configure wlan 1 no enable 3 Configure connection limitation max associated stations MAX STATION Parameter Description MAX STATION Maximum number of wireless terminals that can be connected default 127 4 Enable the WLAN APC configure wlan 1 enable 5 To check the configured connection lim...

Page 346: ...46 of 689 Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select the WLANs WLANs General menu in the sub menus Figure 188 Configuring connection limitation per WLAN After configuring MAXIMUM CONNECTIONS click the Apply button ...

Page 347: ...mmunication and call time When the CAC function is enabled the CAC statistics is also provided Configuration using CLI Use the following command to check voice statistics APC show 80211bg voip stats ap 2 VoIP Stats Cumulative Number of Calls 4 Cumulative Time of Calls 0 0 23 Number of Active Calls 2 CAC Stats Calls In Progress 2 Handover Calls In Progress 0 Calls Since AP Joined 4 Handover Calls S...

Page 348: ...SAMSUNG Electronics Co Ltd page 348 of 689 Configuration using Web UI In the menu bar of WEC Main window select MONITOR and then select the ACCESS POINTS RADIO 802 11a n or 802 11b g n AP menu in the sub menus Figure 189 Voice statistics ...

Page 349: ...on failure detection no call fail detect WLAN_ID Parameter Description WLAN_ID WLAN ID range 1 240 3 To check the configured connection limitation information use the show voip config WLAN_ID command Configuration using Web UI In the menu bar of WEC Main window select CONFIGURATION and then select the WLANS menu in the sub menus Select a WLAN ID to change in the WLANs screen and go to the Advanced...

Page 350: ...IP Address Tel no AP BSS WLAN Proto Server IP Reg Call 50 01 BB FD 96 E1 10 10 10 5 9922 3 F4 D9 FB 24 C8 C2 1 SIP UDP 90 90 1 100 Registered Established 78 47 1D C2 18 11 10 10 10 10 9907 3 F4 D9 FB 24 C8 D1 1 SIP UDP 90 90 1 100 Registered Not calling WEC8500 2 Check the connection status of an active call WEC8500 show voice active call summary MAC Address IP Address Tel No AP BSS WLAN Caller Ca...

Page 351: ... 23143 POOR 3 21 2 92 3 44 244 756 Callee 3C 8B FE 2E 6F 6A 10 10 10 193 10617 POOR 1 97 1 66 2 68 240 800 4 Check the voice signal related log WEC8500 configure show voice sipmsg log Time MAC Address Msg Type Dir SRC IP DST IP AP BSS WLAN Contents 2013 05 12 21 26 45 c8 19 f7 70 89 04 INVITE SEND 10 10 10 65 90 90 1 100 3 f4 d9 fb 24 c8 c2 1 F 9922 T 995 0 RTP 10 10 10 65 21120 2013 05 12 21 26 4...

Page 352: ...8 47 1D C2 18 11 3 F4 D9 FB 24 C8 D1 1 2013 05 12 21 21 47 caller 9907 callee 9950 duration 6 sec CallConnect 78 47 1D C2 18 11 3 F4 D9 FB 24 C8 D1 1 2013 05 12 21 21 47 caller 9907 callee 9950 6 Check the voice related statistics WEC8500 show voice statistics radio RADIO 5G Voice Statistis Type Total Success Failed Active UpstreamTime Downstream Calls Call Call Call MOS Jitter Delay MOS Jitter De...

Page 353: ...ll Call Call MOS Jitter Delay MOS Jitter Delay Total 8 6 0 2 0 0 0 0 0 0 0 0 5 Min 0 0 0 0 0 0 0 0 0 0 0 0 15 Min 0 0 0 0 0 0 0 0 0 0 0 0 1 Hour 0 0 0 0 0 0 0 0 0 0 0 0 1 Day 8 6 0 2 0 0 0 0 0 0 0 0 WEC8500 Configures Device Type Statistics by device requires that a device type be specified for devices to monitor 1 Go to the configure mode of the CLI WEC8500 configure terminal WEC8500 configure 2 ...

Page 354: ...KSJMH3 11 SHV E210L 4 3 E210LKLUGNA1 12 SHW M250K 4 1 2 M250KKKJML1 13 SHW M440S 4 1 2 M440SKSJMC4 14 SHV E330K 4 3 E330KKKUBMK4 15 SHV E300K 4 2 2 E300KKSANMH3 16 SHV E210K 4 1 2 E210KKKJMK1 17 SHW M440S 4 3 M440SKSUGND1 18 SHV E300S 4 2 2 E300SKSANMH2 19 SHW M250S 4 0 4 UH07 20 SHV E160K 4 1 2 E160KKKJMB1 21 SHW M250K 4 1 2 M250KKKJMG1 Configuration using Web UI Checking a voice wireless termina...

Page 355: ...d page 355 of 689 Figure 191 VoIP Stations Retrieval Screen 2 Check the connection status of an active call In the menu bar of WEC Main window select Monitor and then select the VoIP Call Active Calls menu in the sub menus Figure 192 Active Call Retrieval Screen ...

Page 356: ...NG Electronics Co Ltd page 356 of 689 3 Check the information of a completed call In the menu bar of WEC Main window select Monitor and then select the VoIP Call Complete Calls menu in the sub menus Figure 193 Complete Calls Retrieval Screen ...

Page 357: ...AN Additional Services SAMSUNG Electronics Co Ltd page 357 of 689 Configures Device Type 1 In the menu bar of WEC Main window select Statistics and then select the Network Quality Device Types menu in the sub menus ...

Page 358: ...HAPTER 7 WLAN Additional Services SAMSUNG Electronics Co Ltd page 358 of 689 2 Configure the Registration screen in the top left corner and enter a model name and an OS version for the devices to monitor ...

Page 359: ...3 95 MOS PQ 3 89 WEC8500 2 Operator can check the voice quality analysis information of a wireless terminal that has a completed call WEC8500 show voice vqm history stats brief CONN 1 Start Time 2013 7 19 14 47 27 Duration 75 sec s Station Mac 78 47 1d c5 4c 85 fc a1 3e 47 59 e7 startBssid f4 d9 fb 23 66 10 f4 d9 fb 23 66 10 endBssid f4 d9 fb 23 66 10 f4 d9 fb 23 66 10 ssid Ajay_2_2_4G Ajay_2_2_4G...

Page 360: ... I F ge4 Call ID 65031276 a4dd 4b1c a718 4ed3188e44a5 ug1 scm com Phone No 9910 IP 20 20 20 25 25407 RTP Flow Quality Metrics Flow 1 DIR Forward Quality Ratings Poor MOS LQ 3 25 MOS CQ 2 96 MOS PQ 3 47 RTP Flow Quality Metrics Flow 2 DIR Reverse Quality Ratings Fair MOS LQ 3 65 MOS CQ 3 57 MOS PQ 3 68 WEC8500 3 Operator can check the call statistics information WEC8500 show voice vqm summary stats...

Page 361: ...2e12b889d Dst Call Id ca371fce 6e10 401a 9a4e dd53678804c6 ug1 scm com Session 0 Direction Forward Type Low Quality Excessive Burst Excessive delay Direction Reverse Type Excessive Burst Excessive delay ALARMS REPORTED Src Call Id 035be38a40032eb8edb0b94e944d58d4 Dst Call Id 917a913e 83ae 497f ad84 bf0ee80edf36 ug1 scm com Session 1 Direction Forward Type Excessive Burst Direction Reverse Type Exc...

Page 362: ...eaming requests once the maximum number of streams or the maximum usage of channels is reached You can set the number of marginal streams or the usage of channels with consideration for handover Configuration using CLI To set multicast stream admission control execute the following commands 1 Configuration mode of CLI enter the multicast stream admission control mode of the desired wireless sectio...

Page 363: ...rginal streams with consideration for handover 6 Configure the usage of marginal channels with consideration for handover reserved ho chan util VALUE Parameter Description VALUE Usage of marginal channels with consideration for handover 7 You can view the information you configured by using the show 80211a 80211bg msac configuration command Configuration using Web UI From the menu bar of WEC Main ...

Page 364: ...OD Select the method of admission control MAX STREAMS Maximum allowed number of streams range 1 20 HANDOVER STREAMS Number of marginal streams with consideration for handover range 0 6 The maximum allowed number of streams becomes MAX STREAMS HANDOVER STREAMS MAX CHANNEL UTILIZATION Maximum allowed usage of channels range 5 85 HANDOVER CHANNEL UTILIZATION Usage of marginal channels with considerat...

Page 365: ...mand as follows 1 Configure a specific WLAN which requires the steering band APC configure terminal APC configure wlan 1 APC configure wlan 1 2 Activate or deactivate the Band Steering function band steering MODE Parameter Description Mode Whether to configure the Band Steering function enable Setting disable Release by default WEC8500 configure wlan 1 band steering enable WLAN 1 band steering is ...

Page 366: ...ss WEC8500 configure wlan 1 band steering delete station 00 00 00 00 00 01 Deleted 6 Delete all entries from the dual band station database band steering delete all WEC8500 configure wlan 1 band steering delete all WLAN 1 all stations are deleted Configure using Proportional Band Steering CLI 1 Enable or disable Proportional Band Steering function band steering bi direction MODE Parameter Descript...

Page 367: ...ription VALUE 1 100 Station count default 10 5 Configure Flag that Band Steering has a priority for Handover band steering bi direction prior to handover MODE Parameter Description MODE Enable Band Steering 이 Handover 를 우선함 Default Disabled 6 Configure a Possession ratio band steering bi direction proportion ratio VALUE Parameter Description VALUE 50 99 Possession default 90 Configuration Proporti...

Page 368: ...onics Co Ltd page 368 of 689 Figure 194 Configure on off for Proportional Band Steering function Configuration using Web UI WLAN Advanced BAND STEERING Disable 2 4 GHz preferred 5 GHz preferred Figure 195 Band Steering Function On Off and Band Setting ...

Page 369: ...with the threshold value and the maximum denial count value based on station count Configuration using CLI For the load balancing function execute the command as follows 1 Configure a specific WLAN which requires load balancing APC configure terminal APC configure wlan 1 APC configure wlan 1 2 Activate or deactivate the Load Balancing function load balancing MODE Parameter Description Mode Whether...

Page 370: ... maximum denial count value load balancing denial_count VALUE Parameter Description VALUE 1 10 2 by default WEC8500 configure wlan 1 load balancing denial_count 4 Wi Fi Load Balancing MAX denial count 4 Configuration using Web UI Configure WLAN Advanced LOAD BALANCING Enable Disable WLAN Advanced THRESHOLD Value WLAN Advanced MAXIMUM DENIAL COUNT Value Figure 196 Configuring Load Balancing Functio...

Page 371: ...asic functions and configures options applied to the overall function operation Configuration using CLI To configure the basic function execute the commands as follows 1 Go to the configure load balancing configuration mode of CLI APC configure terminal APC configure load balancing APC configure load balancing 2 Activate the Station based Adaptive Load Balancing function enable 3 If a function of ...

Page 372: ...ting AP Group Parameter Station based Adaptive Load Balancing must set operating parameters to the radio of the corresponding AP group because it operates in a radio unit of the AP group Configuration using CLI To set AP group parameters execute the command as follows 1 Go to the load balancing configuration mode in configure AP Group of CLI APC configure terminal APC configure ap group lb APC con...

Page 373: ...tion which performs load balancing to connect to a specific AP set the probe response limit time to other APs no probe timeout NUMBER Parameter Description NUMBER Probe response limit time 0 100 sec 8 The rssi high value is a criterion for excluding candidates for load balancing to be selected The station with the RSSI value higher than the set value does not attempt at load balancing In case of t...

Page 374: ...PC configure ap ap_1 APC configure ap ap_1 load balancing APC configure ap ap_1 load balancing 2 Go to the radio to perform the Station based Adaptive Load Balancing function APC configure ap ap_1 load balancing radio 1 APC configure ap ap_1 load balancing radio 1 3 Activate load balancing in the corresponding radio enable 4 Set the station threshold to perform the Load Balancing function interval...

Page 375: ...ue is a criterion for excluding candidates for load balancing to be selected The station with the RSSI value higher than the set value does not attempt at load balancing In case of the active mode N A rssi high NUMBER Parameter Description NUMBER Probe response limit time 0 100 sec 9 The rssi high value is a criterion for excluding candidates for load balancing to be selected The station with the ...

Page 376: ...d authentication function by interoperating with an external RADIUS server The WEC8050 also provides the internal RADIUS server function 8 1 1 External RADIUS Server The W EP wireless LAN system provides the security and authentication function by interoperating with an external RADIUS server Follow the below procedure to interoperate with a RADIUS server 8 1 1 1 Basic Settings The basic steps for...

Page 377: ...adius 1 acct PORT_NUMBER Parameter Description PORT_NUMBER Accounting port number of a RADIUS server range 1 65535 default 1813 5 Configure the authentication port number of a RADIUS server WEC8500 configure security radius 1 auth PORT_NUMBER Parameter Description PORT_NUMBER Accounting port number of a RADIUS server range 1 65535 default 1812 6 Configure the items related to retransmissions in RA...

Page 378: ...value 3 7 Enable or disable CoA Change of Authorization WEC8500 configure security radius 1 no coa 8 Exit RADIUS server configuration and security configuration mode WEC8500 configure security radius 1 exit WEC8500 configure security exit 9 To check the configuration information use the show security radius server summary command Configuration using Web UI In the menu bar of WEC Main window select...

Page 379: ...ber of the communication port for RADIUS server accounting range 1 65 535 default value 1 813 RETRANSMIT INTERVAL Retransmission interval for a RADIUS message range 1 60 default value 2 unit seconds TOTAL RETRANSMIT COUNT Maximum retransmission count of a RADIUS message range 1 20 default value 10 RETRANSMIT COUNT FAILOVER Maximum retransmission count of a RADIUS message before a RADIUS server fai...

Page 380: ...th delimiter DELIMITER_TYPE Parameter Description DELIMITER_TYPE Type of the MAC string separator default none none no separator xxxxxxxxxxxx colon Uses as a separator xx xx xx xx xx xx hyphen Uses as a separator xx xx xx xx xx xx single hyphen Uses only one in the middle xxxxxx xxxxxx 4 Configure whether to use lowercase characters or uppercase characters for the device s MAC string that will be ...

Page 381: ...PASSWORD TYPE Password type MAC Address MAC address of the UE The string in a type same to the MAC string used as a user ID upon the authentication of the MAC of the UE APC Shared Secret The shared key between the APC and the RADIUS server MAC DELIMITER MAC string delimiter type No Delimiter No delimiter xxxxxxxxxxxx Colon used as delimiter xx xx xx xx xx xx Hyphen used as delimiter xx xx xx xx xx...

Page 382: ... WEC8050 configure terminal WEC8050 configure radiuscm Operator can execute various commands for Local Net Users Adding User To add a user to the Local Net Users execute the following command Add local userdb username password name email department home_phone work_phone mobile_phone Parameter Description Username Login ID of a user Character varying 1 63 MANDATORY Korean is not allowed Special cha...

Page 383: ...ters cannot be used Mobile_phone Mobile phone number Character varying 1 63 OPTIONAL Korean is not allowed Special characters cannot be used Modifying User To modify a user from the Local Net Users execute the following command modify local userdb username password name email department home_phone work_phone mobile_phone Deleting User To delete one user from the Local Net Users execute the followi...

Page 384: ...t Users list file execute the following command Export local userdb filename Parameter Description Filename File to export CSV file format Filename 1 512 Checking User To check one local net user execute the following command Show radiuscm username username To check all the local net users execute the following command Show radiuscm all user Configuration using Web UI In the menu bar of WEC Main w...

Page 385: ...ser s name option DEPARTMENT User s department information option WORK PHONE Office phone number option MOBILE PHONE Mobile phone number option HOME PHONE Home phone number option E MAIL email option 2 Importing a local net user list Operator can import or export the list of local users The user list is in the CSV format An existing data is deleted if there is new importing 3 Exporting a local net...

Page 386: ...y be attacked in some ways Therefore it is important to manage the risk 8 2 1 Enabling Detection Function The procedure of enabling the unauthorized AP and terminal detection function is shown below Configuration using CLI 1 Go to the configure mode of the CLI WEC8500 configure terminal 2 Enable the detection function WEC8500 configure wi enable 3 To check the configured information use the follow...

Page 387: ...t can be used maliciously Configures the unmanaged AP classification policy An administrator can classify a specific AP as a unmanaged AP among the manually detected unauthorized APs 8 2 2 1 Configuring the managed AP classification policy To configure the managed type authorized AP classification policy execute the command as follows Configuration using CLI 1 Go to configure wi device configurati...

Page 388: ...ion using Web UI In the menu bar of WEC Main window select Configuration and then select the Wireless Intrusion Policy User Defined Rule menu in the sub menus And then select Managed at the upper tab 1 By using Add Delete or Change operator can add delete or change user defined rules Figure 200 Managed Rule Configuration Window 2 In the rule addition screen operator can add a rule by entering the ...

Page 389: ...ifies as a unmanaged unauthorized AP when any one of the detection criteria entered thereafter is satisfied MIN_RSSI Minimum RSSI When the RSSI value is higher than this value it is classified as a unmanaged unauthorized AP MIN_DURATION Minimum lasting time unit s When the signal lasting time is higher than this value it is classified as a unmanaged unauthorized AP NO_OF_MIN_ASSOCCL IENTS Minimum ...

Page 390: ...t Configuration and then select the Wireless Intrusion Policy User Defined Rule menu in the sub menus And then select Unmanaged at the upper tab 1 By using Add Delete or Change operator can add delete or change user defined rules Figure 202 Unmanaged Rule Configuration Window 2 In the rule addition screen operator can add a rule by entering the information and click Apply Figure 203 Unmanaged Rule...

Page 391: ...o change execute the move command move MAC FROM TO Parameter Description MAC MAC address of a detected AP FROM Previous classification of a MAC TO Classification to change 3 To check the changed configuration use the following command show wi device ap list managed show wi device ap list unmanaged Configuration using Web UI In the menu bar of WEC Main window select Monitor and then select the Wire...

Page 392: ...screen go to the detail view screen by clicking a MAC address Figure 204 List Window to Manually Change Classification 2 In the AP detail screen change the classification and click Apply then the configuration is changed Figure 205 Classification Change Window in AP Detail Screen ...

Page 393: ... MAC Parameter Description MAC MAC address of an unauthorized AP 3 To check the changed configuration use the following command show wi device ap list removed Configuration using Web UI In the menu bar of WEC Main window select Monitor and then select the Wireless Intrusion AP menu in the sub menus And when the AP list is displayed check a desired MAC in the list and click the Remove button to man...

Page 394: ...ble the AP detection option pre defined in the system Configuration using CLI 1 Go to configure wi device ap configuration mode WEC8500 configure terminal WEC8500 configure wi WEC8500 configure wi device WEC8500 configure wi device ap WEC8500 configure wi device ap 2 Using the following command configure the unauthorized AP detection option OPTION NOTI_TYPE Parameter Description OPTION Unauthorize...

Page 395: ...he ssid whitelist among the APs that use a managed MAC and its UIC is valid invalid channel Allocates Rogue ID 908 by checking the association status between an unauthorized AP and a managed client adhoc connection Allocates ID 911 for Adhoc managed ap valid channel Allocates ID 912 by checking AP which is in the channel validatation list unclassified Allocates Id 913 for not assigned AP invalid u...

Page 396: ...terminal WEC8500 configure wi WEC8500 configure wi rogue WEC8500 configure wi device client WEC8500 configure wi device client 2 Configure the unauthorized client detection option by using the following command OPTION NOTI_TYPE Parameter Description OPTION Rogue Client detect option NOTI_TYPE Event save option notify Notify the state with alarm detect Save the state with sys log The description of...

Page 397: ...threshold as an unauthorized client probe request det Classifies a client that exceeds the probe request threshold as an unauthorized client webauth fail det Classifies a client that exceeds the WEB authentication fail threshold as an unauthorized client Unclassified Unclassified station 3 To check the changed configuration use the following command show wi device client current config Configurati...

Page 398: ...dation 2 Enable the unauthorized channel validation function WEC8500 configure wi channel validation enable 3 Configure an authorized channel add CHANNEL Parameter Description CHANNEL Authorized channel number e g add 2 3 4 4 To check the changed configuration execute the following command show wi current config Configuration using Web UI In the menu bar of WEC Main window select Configuration and...

Page 399: ...anaged Station Managed SSID are automatically configured and can be used only for search Configuration using CLI 1 Go to the configure wids configuration mode of CLI WEC8500 configure terminal WEC8500 configure wids WEC8500 configure wids lists 2 Configure the AP black list ap blacklist MAC Parameter Description MAC MAC address that will be used as AP black list 3 Configure the station black list ...

Page 400: ...tion execute the following command show wi lists managed ap show wi lists ap blacklist show wi lists managed stat show wi lists client blacklist show wi lists managed ssid show wi lists oui list show wi lists neighbor ap Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select the Wireless Intrusion Classifiation menu in the sub menus And then operator can...

Page 401: ...e 212 Managed AP Window 3 In the Station Blacklist tab operator can add a station blacklist by entering a MAC and click Add Operator can also delete it by using Delete Figure 213 Station blacklist Search Configuration Window 4 In the Managed Station tab operator can search Managed Station Figure 214 Managed Station Search Window ...

Page 402: ... 6 In the Managed SSID tab you can check the SSID that the WLAN is using Figure 215 Managed SSID Window 7 If you click Add in the Managed Neighbor AP tab operator can go to the Managed Neighbor AP list addition screen and can add a Managed Neighbor AP list Operator can also delete it by using Delete Managed Neighbor AP tab main screen Figure 216 Managed Neighbor AP Search Configuration Window ...

Page 403: ...re wi device client configuration mode WEC8500 configure terminal WEC8500 configure wi WEC8500 configure wi device WEC8500 configure wi device client WEC8500 configure wi device client 2 Configure a threshold allowed limit OPTION COUNT Parameter Description OPTION 80211 auth req Authentication requests threshold per second 80211 probe req Probe requests threshold per second 80211 deauth req De aut...

Page 404: ...Web UI In the menu bar of WEC Main window select Configuration and then select the Wireless Intrusion Station Allow Limit menu in the sub menus And then enter a threshold value and click Apply to configure the value in the screen Figure 218 Station Allowed Limit Configuration Window ...

Page 405: ...the menu bar of WEC Main window select Configuration and then select Wireless Intrusion Containment General menus in the sub menus Select Enable and Disable and press Apply to activate and deactivate the wireless intrusion blocking policy Figure 219 Wireless Intrusion Containment General Configuration Window 8 2 4 Blocking The W EP WLAN system performs blocking to the detected AP and the wireless ...

Page 406: ...ure wids containment 2 Configure manual blocking manual TARGET enable MAC Parameter Description TARGET Select either AP or station which is the target for manual blocking MAC MAC address of the target for manual blocking Configuration using Web UI In the menu bar of WEC Main window select Monitor and then select Wireless Intrusion menu in the sub menus Select the target and perform containment to ...

Page 407: ... wids containment WEC8500 configure wids containment 2 Configure automatic blocking auto OPTION The description of OPTION parameter is as follows Parameter Description adhoc connection If adhoc is detected it is automatically blocked neighbor ap associated with managed station If the managed station and the neighbor AP are connected it is automatically blocked unmanaged ap associated with managed ...

Page 408: ...use the following command show wids containment current config Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select Wireless Intrusion Containment menus in the sub menus Select the target and press Apply to configure automatic blocking Figure 222 Automatic Blocking Configuration Window ...

Page 409: ...and execute the command 1 Go to configure security captive portal configuration mode of CLI APC configure terminal APC configure security APC configure security captive portal APC configure security captive portal 2 The command to add a web authentication user is as follows Web auth users add ID PASSWD START_TIME END_TIME Parameter Description ID Login ID of a user PASSWD Password START_TIME Start...

Page 410: ...dow select Configuration and then select Security AAA Local Net Users Web Authentication Users menus in the sub menus Figure 223 Web Certification User Configuration Window The operator can check and delete a Web Certification User created in the Web Certification Users menu Figure 224 Web Certification User List Window ...

Page 411: ...re WEC8500 configure fqm mode access list ip guest_acl permit seq 2 tcp 192 168 20 10 255 255 255 255 eq 80 any eq os aware WEC8500 configure fqm mode access list ip guest_acl permit seq 3 tcp any eq 192 168 20 10 255 255 255 255 eq 80 os aware WEC8500 configure fqm mode access list ip guest_acl permit seq 4 tcp 90 90 100 120 255 255 255 255 eq 80 any eq os aware WEC8500 configure fqm mode access ...

Page 412: ...CHAPTER 8 Security SAMSUNG Electronics Co Ltd page 412 of 689 Figure 225 Access List Addition Window Figure 226 Access List Entry Addition Window ...

Page 413: ...WEC8500 configure wlan 1 security WEC8500 configure wlan 1 security layer3 WEC8500 configure wlan 1 security layer3 3 Enable the WEB authentication default disabled web policy authentication WEC8500 configure wlan 1 security layer3 web policy authentication 4 Configure the Pre Authentication ACL pre auth acl ACL Parameter Description ACL ACL applied before authenticated 5 Configures Web Page Type ...

Page 414: ...s ID used for authentication 1 48 255 internal server 8 Configure the Cache Duration cache duration Days Parameter Description Days Cache validity since authentication 9 Configure the After Authentication Type after auth Auth Type Parameter Description Auth Type Operation after authentication redirect Redirect to a specified URL request Redirect to a requested URL after auth redirect url URL Param...

Page 415: ...he Web Authentication option and specify the Pre Auth ACL configured in the ACL for PRE AUTHENTICATION ACL Specify a web page type to authenticate Select Server Type and select a Radius server to perform authentication from Primary Secondary Radius Server Enable the operation after authentication and configure URL For details on Derivation Profile Name configuration see the section on 8 7 2 Deriva...

Page 416: ...nfiguration To configure Web Authentication on MAC Authentication Failure in the WLAN execute the command as follows 1 Go to configure WLAN configuration mode of CLI WEC8500 configure terminal WEC8500 configure wlan 1 2 Go to configure WLAN security layer 3 configuration mode of CLI WEC8500 configure wlan 1 security WEC8500 configure wlan 1 security layer3 WEC8500 configure wlan 1 security layer3 ...

Page 417: ... menus In the WLANs screen select WLAN ID and go to the L2 of the Security tab Enable MAC AUTHENTICATION Figure 228 WLAN Layer 2 Security Configuration Window Go to the L3 of the Security tab Enable WEB POLICY and select the Web Authentication on MAC Authentication Failure Next step refer to Configures Web UI at 8 3 2 Web Authentification Figure 229 WLAN Web Policy Configuration Window ...

Page 418: ...security layer 3 configuration mode of CLI WEC8500 configure wlan 1 security WEC8500 configure wlan 1 security layer3 WEC8500 configure wlan 1 security layer3 3 Enable the WEB authentication default disabled web policy pass through WEC8500 configure wlan 1 security layer3 web policy pass through 4 Configure the Pre Authentication ACL pre auth acl ACL Parameter Description ACL ACL for occurrence of...

Page 419: ...how wlan security detail 1 Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select the WLANs menu in the sub menus In the WLANs screen select WLAN ID move to Security L3 enable the WEB POLICY option select Web PassThrough enable OVERRIDING REDIRECT URL set URL Figure 230 Web Pass through Configuration Window ...

Page 420: ...onfiguration mode of CLI WEC8500 configure wlan 1 security WEC8500 configure wlan 1 security layer3 WEC8500 configure wlan 1 security layer3 3 Enable the WEB authentication default disabled web policy oneTimeRedirection WEC8500 configure wlan 1 security layer3 web policy oneTimeRedirection 4 Configure the Pre Authentication ACL pre auth acl ACL Parameter Description ACL ACL to perform redirection ...

Page 421: ...etail 1 Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select the WLANs menu in the sub menus In the WLANs screen select WLAN ID and go to the L3 of the Security tab Enable WEB POLICY and select One Time Redirection Enable OVERRIDING REDIRECT URL and configure URL Figure 231 One Time Redirection Configuration Window ...

Page 422: ...command 1 Change captive portal http service port using CLI configure mode WEC8050 configure terminal WEC8050 configure http cpm port 81 Captive portal http redirect port is changed to 81 2 Change captive potarl http service port using CLI configure mode WEC8050 configure terminal WEC8050 configure https cpm port 444 Captive portal https redirect port is changed to 444 Configuration using Web UI I...

Page 423: ...ve when the OS Aware function is configured model_name Model information of the station effective in case of the FMC station os_version OS version of the station effective in case of the FMC station build_num OS build number of the station effective in case of the FMC station 8 3 9 Captive Portal Web Page Configuration The Captive Portal allows the user to access the Internet using an ID and a pas...

Page 424: ...red is displayed on the Captive Portal web browser so that the IP address is not shown in tunnel mode A domain name and a matching IP address can be configured If no IP address is entered the AP Management IP address is used by default When in Local Bridge mode since domain names cannot be used the address entered in IP ADDRESS is shown as the internal web server address of the system Ports allowe...

Page 425: ... Configuration using Access List 1 Go to the configure mode of the CLI WEC8500 configure terminal 2 Create an access list WEC8500 configure access list fw fw4 deny tcp any any eq 23 3 Configure a firewall to the interface using an access list WEC8500 configure interface vlan1 10 WEC8500 configure interface vlan1 10 ip access group fw forward fw4 WEC8500 configure interface vlan1 10 exit Configurat...

Page 426: ... to the configure mode of the CLI WEC8500 configure terminal WEC8500 configure 2 Create an access list access list fw ACL_NAME ACTION SRC_ADDRESS SRC_PORT DST_ADDRESS DST_PORT PROTOCOL Parameter Description ACL_NAME ACL name to configure ACTION Action configuration deny permit SRC_ADDRESS SRC_PORT Source IP address and port DST_ADDRESS DST_PORT Destination IP address and port PROTOCOL Protocol Con...

Page 427: ... the CLI WEC8500 configure terminal 2 Create an access list WEC8500 configure access list fw fw1 deny any 10 10 10 10 32 any 3 Create a NAT pool WEC8500 configure ip nat pool pool1 30 30 30 1 30 30 30 1 255 255 255 0 4 Configure a NAT to the interface WEC8500 configure interface vlan1 30 WEC8500 configure interface vlan1 30 ip nat inside WEC8500 configure interface vlan1 30 exit 5 Add the NAT rule...

Page 428: ...IP WEC8500 configure ip nat outside source static 10 10 10 10 30 30 30 1 DNAT Configuration using Access List To add Destination NAT DNAT using an access list execute the command as follows 1 Go to the configure mode of the CLI WEC8500 configure terminal 2 Create a NAT pool WEC8500 configure ip nat pool pool2 10 10 10 10 10 10 10 10 255 255 255 0 3 Configure a NAT to the interface WEC8500 configur...

Page 429: ...utside WEC8500 configure interface vlan1 30 exit 3 Configure a NAT rule using a static IP A port can be also specified for DNAT WEC8500 configure ip nat outside destination static tcp 10 10 10 1 4300 30 30 30 2 23 Checking NAT Configuration To check the created NAT use the following command WEC8500 configure show nat Configuration using Web UI 1 In the menu bar of WEC Main window select Configurat...

Page 430: ...ule window and configure the Translation Rule Select NAT TYPE as either SNAT or DANT Select STATIC checkbox to configure Static and configure the values of Original IP Addr Port and Translated IP Addr Port Figure 236 NAT configuration 2 To proceed with NAT configuration you must create an access list first ...

Page 431: ...figure terminal WEC8500 configure security 2 Creates a MAC filter list WEC8500 configure security mac filter ID Parameter Description ID MAC filter list table ID range 1 20 3 Configure the filtering policy WEC8500 configure security mac filter 1 policy POLICY Parameter Description POLICY Table policy of MAC filtering list 4 Configure a MAC entry WEC8500 configure security mac filter 1 mac MAC_ADDR...

Page 432: ...n the menu bar of WEC Main window select Configuration and then select the Security MAC Filter menu in the sub menus You can create a MAC filter table for station access control by clicking the Add button Figure 237 MAC configuration The procedure for MAC entry configuration is given below 1 In the MAC Filter initial window select an INDEX item to switch to the Edit screen and then click the Add b...

Page 433: ...CHAPTER 8 Security SAMSUNG Electronics Co Ltd page 433 of 689 2 Configure the policy in the Edit configuration screen by selecting the index of MAC filter list Figure 239 MAC entry configuration 2 ...

Page 434: ...s Co Ltd page 434 of 689 3 Select a WLAN for which the MAC filter will be applied Check a MAC FILTER ID to apply in the Security L2 configuration screen To apply the configuration click the Apply button Figure 240 MAC entry configuration 3 ...

Page 435: ...ings The default configuration of the TACACS server is as follows Configuration using CLI 1 Go to configure security tacacs configuration mode of CLI WEC8500 configure terminal WEC8500 configure security WEC8500 configure security tacacs 1 WEC8500 configure security tacacs 1 2 Configure the IP address of the TACACS server WEC8500 configure security tacacs 1 server ip IP_ADDRESS Parameter Descripti...

Page 436: ...ion count before a TACACS server failover is attempted range 0 3 default value 2 6 If necessary configure the source IP address of the TACACS message WEC8500 configure security tacacs 1 source ip IP_ADDRESS Parameter Description IP_ADDRESS Source IP address of the TACACS message Note it must be one of the IP addresses configured in the W EP wireless LAN system 7 Configure whether to transfer packe...

Page 437: ...S server configurations IP ADDRESS IP address of the TACACS server SHARED SECRET Public key of the TACACS server CONFIRM SHARED SECRET Re enters the key for TACACS server communications for confirmation PORT NUMBER Communication port number of the TACACS server range 1 65 535 default value 49 RETRANSMIT INTERVAL Retransmission interval for a TACACS message range 1 5 default value 2 unit seconds RE...

Page 438: ...tication is performed using the database stored inside tacacs Authentication is performed using the TACACS server local tacacs Authentication is performed using the database stored inside first and failing that an authentication request is transmitted to the TACACS server tacacs local An authentication request is transmitted to the TACACS server first and failing that authentication is performed u...

Page 439: ...file are as follows Configuration using CLI Example WEC8500 configure terminal WEC8500 configure rbac WEC8500 configure rbac role profile role_01 WEC8500 configure rbac role profile role_01 acl acl1 WEC8500 configure rbac role profile role_01 qos 1 WEC8500 configure rbac role profile role_01 vlan 10 WEC8500 configure rbac role profile role_01 url http www role1 WEC8500 configure rbac role profile ...

Page 440: ...ing on the edited conditions 8 7 2 1 Configuring Profile The basic settings of the derivation profile are as follows Configuration using CLI Example WEC8500 configure terminal WEC8500 configure rbac WEC8500 configure rbac derivation profile derivation_1 WEC8500 configure rbac derivation profile derivation_1 condition priority 11 user equal derivationUser role role_1 WEC8500 configure rbac derivati...

Page 441: ...0 configure rbac WEC8500 configure rbac no derivation profile derivation_2 WEC8500 configure rbac end CLI for confirming configuration WEC8500 show rbac derivation profile summary derivation profile derivation_1 condition priority 11 user equal derivationUser role role_1 condition priority 12 user start with derivation role role_2 condition priority 13 user contain vation role role_3 condition pri...

Page 442: ...guration using CLI Example WEC8500 configure terminal WEC8500 configure wlan 1 WEC8500 configure wlan 1 derivation profile ieee8021x derivation_1 WEC8500 configure wlan 1 exit WEC8500 configure wlan 2 WEC8500 configure wlan 2 derivation profile web auth derivation_2 WEC8500 configure wlan 2 end CLI for confirming configuration WEC8500 show rbac wlan derivation config RbacDerivationConfigForWlan Wl...

Page 443: ...SUNG Electronics Co Ltd page 443 of 689 1 CaptivePotal 0 2 Global 0 2 Open 0 2 Radius 0 2 CaptivePotal 2 Configuration using Web UI Configuration WLANs Security Radius Example Figure 249 Wlan Derivation Profile Configuration ...

Page 444: ...d page 444 of 689 Configuration WLANs Security L3 Example Figure 250 Wlan Derivation Profile Configuration 8 7 3 Configuring ACL Profile The W EP WLAN system can manage ACL to apply to a user if the AP of the remote group operates as local bridge ...

Page 445: ...C8500 configure rbac remote WEC8500 configure rbac remote access list ip acl1 permit seq 1 any any os aware WEC8500 configure rbac remote access list ip acl2 permit seq 2 any any os aware WEC8050 configure rbac remote update access list ip acl1 permit seq 1 tcp any eq any eq os aware WEC8500 configure rbac remote end WEC8500 configure terminal WEC8500 configure rbac WEC8500 configure rbac remote W...

Page 446: ...Ltd page 446 of 689 Configuration using Web UI Configuration Security Role Based Access Control Remote IP ACL Example Figure 251 Remote IP Acl Configuration Figure 252 Remote IP Acl Add Configuration Figure 253 Remote IP Acl Edit Configuration ...

Page 447: ...not be deleted So if you want to delete Acl which is used in Remote Acl Group you have to delete this Acl in Acl list of Remote Acl Group Configuring by CLI Example WEC8500 configure terminal WEC8500 configure rbac WEC8500 configure rbac remote WEC8500 configure rbac remote acl profile aclPro_1 WEC8500 configure rbac remote acl profile aclPro_1 add acl acl1 WEC8500 configure rbac remote acl profil...

Page 448: ...0 configure rbac remote end CLI for confirming configuration WEC8500 show rbac remote acl profile summary LocalSwAclProfile Id ProfileName TotalRuleCnt AclCnt RmtCnt 1 aclPro_ 1 2 2 0 Configuring by Web UI Configuration Security Role Based Access Control Remote Acl Profile Example Figure 255 Remote Acl Profile Configuration Figure 256 Remote Acl Profile Add Configuration ...

Page 449: ..._1 remote WEC8500 configure ap group apg_1 remote acl profile aclPro_1 WEC8500 configure ap group apg_1 remote end CLI for confirming configuration WEC8500 show rbac remote group summary GRP_ID GRP_NAME PRO_ID Role Config File Name 2 apg_1 1 etc rmtapgrp rbac_cfg_rmtapgrp2_XXXX tar Configuring by Web UI Configuration AP Groups Remote AP Group ACL Profile After changing ACL PROFILE NAME click Apply...

Page 450: ...nized If AP and CAPWAP run the configuration of the ACL is automatically synchronized but if the operator changes the ACL of the APC the synchronization of ACL configuration must be performed as follows Configuration using CLI The synchronization of the AP of the remote group uses the following CLI WEC8500 configure terminal WEC8500 configure rbac WEC8500 configure rbac sync config acl profile Syn...

Page 451: ... name Performs synchronization only for a specific AP CLI only Synchronization can be confirmed as follows WEC8500 show rbac remote group summary GRP_ID GRP_NAME PRO_ID Role Config File Name 2 rmt_grp_01 1 etc rmtapgrp rbac_cfg_20140305094752849046 tar Configuration using Web UI Configuration Security Role Based Access Control Remote ACL Profile Send To All APs Figure 259 Remote IP ACL Configurati...

Page 452: ...ge 452 of 689 Configuration AP Groups Remote AP Group ACL Profile Send To APs Figure 260 Remote IP ACL Configuration Synchronization Remote Group Configuration Access Points Remote AP Send To AP Figure 261 ACL Configuration Synchronization Remote AP ...

Page 453: ...urity byod of CLI WEC8500 configure terminal WEC8500 configure security byod 2 Enter the IP address of the BYOD server WEC8500 configure security byod address1 10 10 10 20 To interoperate with AirCuve BYOD Suite enter Airfront IP in address1 and Byfront IP in address2 3 Enable the function of interoperating with the external BYOD server WEC8500 configure security byod enable 4 Configure a HTTPS re...

Page 454: ...eroperation with AirCuve BYOD Suite 4 Requested URL It is necessary to update the list of all authentications upon the interoperation with AirCuve BYOD Suite Basically use the set value and enter a new URL if change is required 5 SYNC Status Display the result value of updating the list of all authentications The status value has one of the following four items 0 Idle 1 In progress 2 Success 3 Fai...

Page 455: ...p preauth permit seq 3 tcp any eq 192 168 20 10 255 255 255 255 eq 80 os aware WEC8500 configure fqm mode access list ip preauth permit seq 4 tcp 90 90 100 120 255 255 255 255 eq 80 any eq os aware WEC8500 configure fqm mode access list ip preauth permit seq 5 tcp any eq 90 90 100 120 255 255 255 255 eq 80 os aware WEC8500 configure fqm mode ip access group wireless preauth WEC8500 configure wlan ...

Page 456: ...TTP port to DNS and web servers 2 Configuring WLAN To use the Captive Portal function enable a web policy in Security of WLAN L3 tab and select Web Authentication Designate the pre set ACL for Captive Portal as PRE AUTHENTICATION ACL on the bottom Select External for WEB PAGE TYPE the address of the web page redirect for URL and External BYOD for SERVER Type and then click Apply ...

Page 457: ...s a DNS server it can receive the DNS service If a DNS server is connected to the APC and a DNS proxy is configured a station connected to the APC can receive the DNS service by configuring the APC as a DNS server 9 1 1 DNS Client Configuration Configuration using CLI 1 Go to the configure mode of the CLI WEC8500 configure terminal 2 Configure a DNS client ip dns client enable Enable no ip dns cli...

Page 458: ...NS Proxy Configuration You can configure the DNS relay function or a cache for relay The cache is a temporary space where the APC saves the DNS information obtained from a DNS server You can configure maximum number of entries as 10000 100000 The DNS relay is related to the DNS client configuration If you disable the DNS client function or delete all the name servers the DNS relay function is not ...

Page 459: ...configures the cache to 20000 ip dns relay enable no cache Configures a DNS relay and disables the cache settings Configuration using Web UI In the menu bar of WEC Main window select Configuration and then select the DNS menu in the sub menus Figure 264 DNS proxy The DNS Relay item supports DNS Proxy configuration In the SERVICE you can enable or disable a DNS proxy and configure the cache size of...

Page 460: ...on a domain name and IP address But if it is working based on a domain name there must be a configured DNS server 1 Go to the configure mode of the CLI WEC8500 configure terminal 2 Enable or disable a NTP client ntp client enable Enable no ntp client enable Disable 3 Configure the interval of a NTP client ntp client interval INTERVAL Configures an interval no ntp client interval Disables an interv...

Page 461: ...1 5 Disable Configure the version of a server that a NTP client will refer to Use a default value 1 if it is not configured ntp client server addr ip A B C D version 1 4 no ntp client server addr ip A B C D version 1 4 You can proceed with configurations simultaneously as shown below ntp client server addr hostname WORD index 1 5 version 1 4 ntp client server addr hostname WORD version 1 4 index 1...

Page 462: ...lect Configuration and then select the NTP menu in the sub menus The NTP initial window is shown below Figure 265 NTP client configuration The Enable Disable of a NTP server can be performed using a radio box You can configure polling interval enable disable of a NTP client and also configure the polling interval during enabling The range of polling interval is 16 131072 Click the Add or Delete bu...

Page 463: ...ver enable Enable no sftp server enable Disable 3 Enter as follows to change a user s ID and password sftp server chguser ID PASSWORD Parameter Description ID User ID of a server PASSWORD User password of a server alphabet special letters number combination more than 8 characters 4 To check the status of sFTP server enter the show sftp server command FTP Server Configuration 1 Go to the configure ...

Page 464: ...r enter the show ftp server command Using as Client Using the following commands you can download or upload a file using a FTP sFTP client file download file upload A usage example is provided below File download using a sFTP client WEC8500 file download samsung Samsung 90 90 21 108 wec8500 wec8500 sftp File upload using a sFTP client WEC8500 file upload samsung Samsung 90 90 21 108 wec8500 wec850...

Page 465: ...ure 266 FTP SFTP server configuration The FTP and SFTP can be configured using the Enable Disable radio box For FTP you can configure a port number that will be used for FTP by using PORT and can change the user name and password of a FTP server by entering USER PASSWORD or CONFIRM PASSWORD Enter an idle timeout value in IDLE TIMEOUT Also for SFTP you can change the user name and password of a SFT...

Page 466: ...the configure mode of the CLI WEC8500 configure terminal 2 Enable or disable the telnet service If you configure the telnet service you can use the APC as a telnet server telnet server enable Enable no telnet server enable Disable 3 If you configure the telnet service specify the port number of telnet server telnet server port PORT_NUMBER Parameter Description PORT_NUMBER Port number to configure ...

Page 467: ...S IP address or domain name of a server to connect ID login ID PORT_NUMBER Port number range 1 65535 If the port number is not entered its default is shown below telnet 23 ssh 22 Configuration using Web UI To configure the Telnet SSH server configuration in the menu bar of WEC Main window select Administrator and then select the Telnet SSH menu in the sub menus Figure 267 Telnet SSH server configu...

Page 468: ...rovides the functions such as ping traceroute or tcpdump to check a network and its problems ping Used to check network connection status ping IP_ADDRESS traceroute Used to check a route path traceroute IP_ADDRESS tcpdump Used to check the packet of a specific interface tcpdump INTERFACE_NAME ...

Page 469: ...g CLI When creating the SNMP community you can restrict configuration privilege by allocating the access right such as read only or read write and can also restrict an IP to connect You can configure maximum 10 SNMP communities Configuration using CLI To add a SNMP community execute the command as follows 1 Go to the configure mode of the CLI WEC8500 configure terminal WEC8500 configure 2 Use the ...

Page 470: ...ap Therefore to receive a system alarm from an external management server the server address must be registered as a trap target The trap supports v1 v2 Configuration using CLI To add a SNMP trap target execute the command as follows 1 Go to the configure mode of the CLI WEC8500 configure terminal WEC8500 configure 2 Add a SNMP trap target snmp trap TRAP_VERSION COMMUNITY_NAME IP_VERSION IP_ADDRES...

Page 471: ...v3 User configuration you can assign access rights of read only or read write for each users and limit configuration rights Configuration using CLI To add SNMP v3 User excute following command 1 Enter to configure mode of CLI WEC8500 configure terminal WEC8500 configure 2 Add SNMP v3 User snmp user USER_NAME ACCESS AUTH_PROTOCOL AUTH_KEY PRIV_PROTOCOL PRIV_KEY Parameter Description USER_NAME SNMP ...

Page 472: ...v3 User by using show snmp user command Configuration using Web UI In the menu bar of WEC Main window select Administrator and then select the SNMP APC v3 User menu in the sub menus Click Add button on the v3 User window then created SNMP v3 User window is displayed Input configuration value and click Apply button then it is applied Figure 270 SNMP v3 User configuration window ...

Page 473: ...s etc The execution results of the command in WEC8500 are as follows WEC8500 configure show system info Item System Info System Info model type WEC8500 system description Samsung AP Controller board version 0 1 cpld version 0 5 system mac address 00 7e 37 00 1e 70 system total memory 16046580 KBytes system total disk 13520032 KBytes Temperature Sensor Status cpu upside sensor OK cpu downside senso...

Page 474: ...sor Status CPU sensor1 OK CPU sensor2 OK Fan Status fan 0 OK fan 1 OK The descriptions of the output parameters are as follows System Info Parameter Description model type Product model name system description Product type board version Hardware version of a board cpld version System cpld version system mac address System MAC address system total memory System total memory capacity system total di...

Page 475: ... Fan 0 1 Fan operation status OK NOK Power Supply Status The WEC8500 has dual detachable power module as shown below Parameter Description Power Supply 0 1 Whether a power module is equipped Equipped Not Equipped Status Power module operation status OK NOK The WEC8050 has only one power module as shown below Parameter Description Power Supply Status Power module operation status OK NOK ...

Page 476: ...trieving with Web UI In the menu bar of WEC Main window select Monitor and then select the DASHBOARD Summary menu in the sub menus It provides a wide range of information status retrieving event and alarm retrieving function of the WEC8500 system Figure 271 System information ...

Page 477: ...CHAPTER 10 System Management SAMSUNG Electronics Co Ltd page 477 of 689 It provides various information status retrieving event and alarm retrieving function of the WEC8050 system ...

Page 478: ...rvation is completed the system is rebooted after a specified time HH MM SS WEC8500 reboot in 12 00 00 Do you want to save the configuration y n y Do you want to restart the system y n y Notice The system WILL reboot in 12 00 00 WEC8500 show reboot schedule The reboot has scheduled in 11 58 41 To cancel the reservation enter the no reboot command WEC8500 no reboot Configuration using Web UI To con...

Page 479: ...CHAPTER 10 System Management SAMSUNG Electronics Co Ltd page 479 of 689 APC Figure 272 Reboot APC AP Figure 273 Reboot AP ...

Page 480: ... 3 show system temp Retrieves system temperature C The result of system status retrieval using each command is as follows CPU Load The retrieving CLI execution result of WEC8500 is as follows WEC8500 show system cpu Average CPU usage control plane 3 84 data plane 0 00 WEC8500 show system cpu detail Average CPU usage control plane 2 12 data plane 0 00 Detail CPU usage control plane 10 00 04 23 00 0...

Page 481: ...16092 KBytes Reserved Memory 8900608 Kbytes Disk usage WEC8500 show system disk Total Disk 13520032 KBytes Used Disk 4338296 KBytes Free Disk 9181736 KBytes Fan RPM Level The retrieving CLI execution result of WEC8500 is as follows WEC8500 show system fan FAN ID rpm Level 0 3 FAN 0 1 level FAN 1 1 level FAN 2 1 level FAN 3 1 level The retrieving CLI execution result of WEC8050 is as follows WEC805...

Page 482: ...re CPU sensor 1 33 CPU sensor 2 38 Board 29 The retrieving CLI execution result of WEC8050 is as follows WEC8050 show system temp Sensor Location Temperature C CPU sensor 1 45 CPU sensor 2 52 Retrieving with Web UI In the menu bar of WEC Main window select Monitor and then select the DASHBOARD Summary menu in the sub menus For more information about detail window see 10 2 1 Retrieving System Infor...

Page 483: ...em temperature C To change a threshold related to CPU load or memory usage enter the command as follows system monitor cpu threshold THRESHOLD Configures the CPU load threshold system monitor memory threshold THRESHOLD Configures the memory usage threshold Parameter Description THRESHOLD Threshold to configure Configuration using Web UI In the menu bar of WEC Main window select Administrator and t...

Page 484: ...es performance monitoring alarm or event ap Retrieves AP related alarm or event wlan Retrieves WLAN related alarm or event wifi Retrieves WI FI related alarm or event security Retrieves security related alarm or event network Retrieves network related alarm or event interface Retrieves interface related alarm or event se Retrieves system engine related alarm or event list Retrieves alarm or event ...

Page 485: ...e1 1301 NET Link dn AdminStatus up OperStatus down 3 network 2012 12 17 09 56 13 MAJ APC xe2 1301 NET Link dn AdminStatus up OperStatus down To selectively retrieve a group or level execute the command as follows WEC8500 show alarm list group network 1 network 2012 12 17 09 56 13 MAJ APC ge8 1301 NET Link dn AdminStatus up OperStatus down WEC8500 show alarm history level major 1 network 2012 12 17...

Page 486: ...ieve it selectively using the following command WEC8500 show alarm history group system 1 system 2012 12 21 17 49 45 MAJ APC core2 CPU Load Alarm Declare LOAD 100 00 WEC8500 show alarm history level major 1 system 2012 12 21 17 49 45 MAJ APC core 2 CPU Load Alarm Declare LOAD 100 00 Event History You can retrieve event information using the following command WEC8500 show event 1 system 2012 08 31 ...

Page 487: ...tronics Co Ltd page 487 of 689 Configuration using Web UI In the menu bar of WEC Main window select Monitor and then select the Summary menu in the sub menus It provides status retrieving event and alarm retrieving function Figure 276 History ...

Page 488: ...ilter and Level Configuration An alarm filter can be configured per group or level severity The filtered alarms are transmitted to an external server through the SNMP trap and syslog Configuration using CLI The procedure of alarm filter configuration is as follows 1 Go to the configure mode of the CLI WEC8500 configure terminal 2 Configure group information WEC8500 configure alarm group system 3 C...

Page 489: ...iguration using Web UI In the menu bar of WEC Main window select Administrator and then select the SNMP Trap Control Alarm Information menu in the sub menus You can retrieve the configuration related to alarm filter and alarm level Figure 277 Configuring alarm filter and level ...

Page 490: ...8500 configure terminal WEC8500 configure 2 Configure the traffic performance information WEC8500 configure stats report enable 3 Configure a FTP server to transmit history information stats report target ip IP_ADDRESS port PORT_NUMBER id ID password PASSWORD path PATH Parameter Description IP_ADDRESS IP address of a target server PORT_NUMBER Port number of a target server ID User ID of a target s...

Page 491: ...ation will be collected stats report current stats INTERFACE_NAME STATE Parameter Description INTERFACE_NAME Name of an interface to collect or stop collection STATE Status of real time information start stop start Starts real time information collection stop Stops or initializes the real time information collection 3 To check the entered information use the show stats report conf command 4 To che...

Page 492: ...g reissuing After an upgrade APC Version 1 4 or below Install the old license Install the old license Re use the old license APC 1 5 or higher Install the SLM license Install the SLM license Re use the SLM license If an APC system is shipped out without a license installed only the following services are offered System Model Number of APs VQM Firewall WEC8050 5 units connected Not provided Not pro...

Page 493: ... mode WEC8500 configure terminal WEC8500 configure system license WEC8500 configure system license Installing Activation Key When the system is shipped out there is no registered license key Therefore you must install the license key you received immediately after the first system installation You can install a license key directly or remotely using CLI activate key Fullpath filename Registers an ...

Page 494: ...allation and application statuses of SLM activation keys In the License Control section the operator can select an activation key stored in their PC and install it in the system In addition the operator can also deactivate an installed activation key The operator can clear an installed activation key by selecting Deactivation in License Control and then entering the license key shown in SLM Licens...

Page 495: ... use period and the period can be 1 30 or 60 day Apply A license key becomes active only after system rebooting after the key is installed or deleted Configuration using CLI To configure a license key related function go to license mode by executing the following command WEC8500 configure terminal WEC8500 configure system license WEC8500 configure system license Installing License Key When the sys...

Page 496: ...ation To check the license key information use the show system license key command Current System Status Number of APs 2 VQM Disabled Firewall Disabled License Information Old License Official License Key License Key YNHSHPWP 5MNMTE04 UJHKDO4U A2WGSBGX OJZ2MJ5R 7Z5DBYMT MAC Address F4D9FB236C01 System Model Any Lifetime Permanet Number of APs 75 VQM Eanbed Firewall Eanbed Installation Time 00 Anal...

Page 497: ... the APC Version 1 5 and later in respect of old license keys the web UI does not provide input deletion functions and shows only whether they are installed properly In the figure below License Key Status is the section that shows whether old license keys are installed properly and Current System Status shows license information currently applied to the system Figure 279 Old License Installation C...

Page 498: ...er Configuration using CLI To transmit an alarm event and system log to the syslog server executes the command as follows 1 Go to the configure mode of the CLI WEC8500 configure terminal 2 To transmit an alarm event and system log information to the syslog server specify enable as a parameter WEC8500 configure syslog enable 3 Configure the IP address and UDP port of a target syslog server The defa...

Page 499: ... page 499 of 689 Configuration using Web UI In the menu bar of WEC Main window select Administrator and then select the Logs SysLog Configuration menu in the sub menus It provides syslog related configuration and retrieving function Figure 280 Syslog window ...

Page 500: ...r 1 4 4 R buildTime Fri Sep 6 06 08 35 2013 builder apcbuild buildDir home2 apcbuild release wec8500_1 4 4 Backup ver 1 4 4 R buildTime Fri Sep 6 06 08 35 2013 builder apcbuild buildDir home2 apcbuild release wec8500_1 4 4 Boot rom version information ver GC15 10 8 2 System Upgrade The APC does system upgrade using CLI and Web UI Configuration using CLI Apply a new package to the system by using t...

Page 501: ... use it y n y Package Validation check success Package Upgrade done Success 3 If package upgrade fails upgrade is cancelled Possible causes and the troubleshooting methods are described below Possible Cause Error Message Troubleshooting File does not exist Error no exist wec8500_ 1 3 11 R bin file Download the package to be upgraded again as the package error has occurred during the package downlo...

Page 502: ...ersion information Primary currently running ver 0 7 1 R buildTime Mon Aug 20 11 35 43 2012 builder gampul buildDir data nome ymkim apc_0817 Backup ver 0 7 1 R buildTime Mon Aug 20 11 35 43 2012 builder gampul buildDir data nome ymkim apc_0817 Boot rom version information ver unknown Configuration using Web UI In the menu bar of WEC Main window select Administrator and then select the Package Upgr...

Page 503: ...e current configuration information in the system to outside execute the command as follows When you execute the command the configuration information is compressed into the entered FILENAME as a file WEC8500 export FILENAME Import Configuration information In addition to apply a file FILENAME from outside to the current system execute the command as follows WEC8500 import FILENAME Periodic backup...

Page 504: ...e upload cycle schedule cycle date weekday hour minute Parameter Description Cycle Upload cycl monthly weekly daily Date Every upload date for if you select Monthly Weekday Every weekday if you select Weekly Hour Upload time hour minute Upload time minute 4 Enable or disable periodic upload function enable no enable Initialize Configuration information To initialize the current configuration infor...

Page 505: ...select Administrator and then select the DB backup restore menu in the sub menus Figure 283 DB Backup Restore In the DB backup restore window enter FILE NAME and click the Apply button to create the configuration information as a file or apply an external configuration information file The STATUS shows the execution results of backup restore function Initialize Configuration information In the men...

Page 506: ...CHAPTER 10 System Management SAMSUNG Electronics Co Ltd page 506 of 689 Figure 284 Configuration Information Initialization window ...

Page 507: ...1 Configuration Information Synchronization Configuration using CLI Adding APC to APC List Add APCs to synchronize to the APC list by referring to APC List Management Adding APC to Sync List After adding APCs to the APC list APCs to synchronize must be added to the Sync List 1 Go to the configure mode of the CLI WEC8500 configure terminal WEC8500 configure configuration sync WEC8500 configure conf...

Page 508: ...guration Available synchronization roles include Master Slave and Standalone Only one Master is allowed within a synchronization domain When there is an existing Master and a new APC s role is changed to Master the new APC s synchronization role changes to Master and the existing master APC s role automatically changes to Slave WEC8500 configure configuration sync activeactive role master Master s...

Page 509: ... and set IP address to communicate to other system If add yourself you have to include Role field Figure 285 Configuration Synchronization Role Configuration The top APC of Sync Members means your APC If click APC NAME of your APC you can change your Role at the Role config menu Figure 286 Add Sync Members Window 10 10 2 Audit Configuration Information synchronization Audit Configuration Informati...

Page 510: ... number of mismatching configurations Click the count to view details 2 Periodic retrieval of mismatching configuration information Monthly weekly daily audits can be performed for mismatching configuration information a Monthly configuration information retrieval Enter date and time information b Weekly configuration information retrieval Enter day of week and time information c Daily configurati...

Page 511: ... 47 34 up S 0 5 pcap 1839 2012 08 31 13 47 34 up S 0 6 filemgr 1840 2012 08 31 13 47 34 up S 0 7 filemib 1841 2012 08 31 13 47 34 up S 0 8 cm 1846 2012 08 31 13 47 34 up S 0 9 iim 1847 2012 08 31 13 47 34 up S 0 10 iimp 1850 2012 08 31 13 47 34 up S 0 11 nsm 1902 2012 08 31 13 47 35 up S 0 12 mstpd 1903 2012 08 31 13 47 35 up S 0 13 pimd 1904 2012 08 31 13 47 35 up S 0 14 ripd 1905 2012 08 31 13 4...

Page 512: ...fm 2417 SIGTERM 15 traced signal 2517 2012 12 21 15 59 50 httprd 2379 SIGTERM 15 traced signal 2518 2012 12 21 15 59 50 fqm 1882 SIGTERM 15 traced signal 2519 2012 12 21 15 59 50 irfm 2297 SIGTERM 15 traced signal 2520 2012 12 21 15 59 50 filemib 1770 SIGTERM 15 traced signal 2520 2012 12 21 15 59 50 pm 2376 SIGTERM 15 traced signal 2521 2012 12 21 15 59 50 salh 2415 SIGTERM 15 traced signal 2522 ...

Page 513: ...information Retrieving Summarized CDR History Information To retrieve the entire history information for all the rebooting including rebooting due to a crash enter the show debug reboot summary command show debug reboot summary WEC8500 show debug reboot summary ID EVENT_NAME EVENT_DESCRIPTION REBOOT_TIME 0001 DIE DIE_VAL 1 Unhandled kernel unaligned access 03 56 00 Aug 22 2012 0000 PANIC softlocku...

Page 514: ...D 8 1 Exporting CDR history information The crash information of system can be extracted to text file for post analysis By entering the show debug reboot export command you can send the system crash information created in a text file to outside using the transfer command show debug reboot export Deleting CDR history information To delete CDR information remaining in a device execute the following ...

Page 515: ...core dump WEC8500 show debug coredump summary CORE_DUMP enable DUMP_QUOTA 1024 MB CORE_SIZE 204800 KB POLL_PERIOD 60 sec THRESHOLD 80 PROCESS SIGNAL TIME CORE_FILE eqm Segmentation fault Wed Aug 22 03 05 16 2012 core eqm 11 1345572316 2437 gz hostapd Aborted Wed Aug 22 03 06 02 2012 core hostapd 6 1345572362 2436 gz nsm Bus error Wed Aug 22 03 07 21 2012 core nsm 10 1345572441 2013 gz ...

Page 516: ...ia connected to the system download Downloads a file using FTP protocol dump Shows the content of a file ls Retrieves the list of files or directories in a specified path move Changes the name of a file pwd Shows the current directory remove Deletes a file upload Uploads a file using FTP protocol verify Checks the integrity of a package file and shows the result version Shows the information of a ...

Page 517: ...R command A usage example is provided below WEC8500 file ls Current working directory disk directory 4 0K Jul 5 13 49 49 etc directory 16K Jan 1 09 00 39 lost found directory 4 0K Jun 9 15 36 02 opt directory 4 0K Jun 9 16 46 59 stats directory 4 0K Jun 12 01 11 01 var WEC8500 file ls etc Current working directory disk directory 4 0K Jun 9 15 36 02 ap directory 4 0K Jun 9 15 36 02 config directory...

Page 518: ... below command the test file is changed to test2 WEC8500 file move test test2 10 12 4 Retrieve File Content To retrieve the content of a file use the dump command It can be displayed in the hexa or ascii format WEC8500 file dump test2 0000000 7f45 4c46 0202 0100 0000 0000 0000 0000 ELF 0000010 0002 0008 0000 0001 0000 0001 2000 4950 IP 0000020 0000 0000 0000 0040 0000 0000 0002 9600 0000030 808d 0...

Page 519: ... of uploading the disk uploadtest file to 192 168 1 1 is shown below WEC8500 file upload guest guest 192 168 1 1 disk uploadtest uploadtest Following is example of file uploading to 3ffe 500 862b 2bff fe6d 2199 WEC8500 file upload guest guest 3ffe 500 862b 2bff fe6d 2199 disk uploadtest uploadtest 10 12 6 Package File You can use a package file by downloading it from a network or copying it from a...

Page 520: ...n etc To check the content of a package file use the version command Retrieving the information of APC package file WEC8500 file version package wec8500_0 3 0 R bin Model WEC8500 Version 0 3 0 R Build Date Sat Jun 30 15 57 09 2012 Builder apcbuild Build Path home2 apcbuild release apc MD5SUM b715450abf1be81616fd7e6391e12cee Retrieving the information of AP package file WEC8500 file version package...

Page 521: ...ice Path Description Disk disk Uses the system disk as a storage media basic path USB memory usb N Uses a USB memory as a storage media N represents a partition number in a USB memory The check the information of a storage media connected to the APC use the df command WEC8500 file df Device disk Filesystem ext4 Total size 12 9G Free space 11 3G Device usb1 Filesystem vfat Total size 7 4G Free spac...

Page 522: ...ge Select this to retrieve an APC package file AP Package Select this to retrieve an AP package file Log Select this to retrieve a log file Stats Select this to retrieve a statistics file USBN Select this to retrieve a file in a USB memory connected to the APC The N represents a partition number in a USB memory Copying a file After selecting the checkbox of a file to copy click the Copy button The...

Page 523: ...selecting the checkbox of a package file to retrieve click the Package Verify button The result of checking the integrity of a package file is displayed in the popup window 10 12 8 2 Configuring Language for Imported and Exported Files The APC system provides a function of exporting information set in the APC to a PC or importing from a PC to the system by using the WEC The operator can export and...

Page 524: ...e file and allows the exported file to the WEC to be properly displayed in the PC In addition if the file stored in the PC is imported to the system through the WEC it is properly processed in the system To configure an encoding method it is possible to select Administration in the menu bar of WEC Main window and then configure in File Management Character Encoding in the sub menus ...

Page 525: ... Statistics WEC8500 configure network stats statistics voip enable 2 If the call setup call drop and MoS values of specific APs are monitored for a specific time and such values fail to reach the reference values an event can be generated ex call setup If the call setup success rate is less than 50 an event is generated network stats alert voip call setup enable network stats alert voip call setup...

Page 526: ... WEC8500 show network stats statistics voip wlan 8 Retrieve call statistics by device type WEC8500 show network stats statistics voip device Configuration using Web UI In the menu bar of WEC Main window select Monitoring and then select Statistics Network Quality by Radio 802 11a n ac VoIP in the sub menus ...

Page 527: ...or Channel Utilization and Air Quality and by radio for Rx Tx Utilization and Noise Level They show the minimum maximum and average values and error count exceeding the threshold by 5 min one hour 24 hours and total period If the error count exceeds the threshold by each period an alert occurs Configuration using CLI 1 Enable Disable Configure whether to operate RF Statistics Enable Function opera...

Page 528: ...80211a air quality 90 4 count alert An error count threshold to generate an alert in RF Statistics If the error count is greater than the threshold by statistical period due to the RF values exceeding the threshold an alert occurs If the value is 0 the alert of the corresponding period does not occur ex error count threshold per day 720 network stats alert rf value count alert day1 threshold 720 5...

Page 529: ...s 802 11a n ac RF in the sub menus Data Traffic Statistics Data traffic statistics on the air section Possible to retrieve in a unit of AP The statistics provide information on Control User Data Tx Rx Unicast Muticast Broadcast Background Best Effort Video Voice and Peak rate Kbps as detailed items They also provide statistical information on Real time Transport Protocol RTP as voice traffic as we...

Page 530: ...00 show network stats statistics data ap stat 1 rtp 4 To retrieve the statistical information of all APs enter as follows WEC8500 show network stats statistics data apc stat 5 To retrieve the statistical information of RTP of all APs give a RTP option as follows WEC8500 show network stats statistics data apc stat rtp 6 To generate a packet loss alert from the AP enter as follows WEC8500 configure ...

Page 531: ...od by WLAN AP Radio and Device Type Configuration using CLI 1 Enable or disable station network statistics network stats statistics station MODE Parameter Description Mode Whether to configure network statistics enable Setting disable Release by default APC configure terminal APC configure network stats statistics station enable Enabled Station Net Stats APC configure no network stats statistics s...

Page 532: ...E 10 90 default 30 APC configure network stats alert station alert assoc rate 50 Assoc Success Rate Alert Threshold 50 5 Configure the alert boundary value of the assoc RSSI network stats alert station alert assoc rssi VALUE Parameter Description VALUE 100 50 dBm default 85 dBm APC configure network stats alert station alert assoc rssi 90 Assoc Reassoc RSSI Alert Threshold 90 6 Configure the alert...

Page 533: ...er Description VALUE 10 90 default 50 APC configure network stats alert station alert handover rate 50 Handover Rate Alert Threshold 50 9 Configure the alert boundary value of the handover attempt count network stats alert station alert handover try VALUE Parameter Description VALUE 10 1000 default 30 APC configure network stats alert station alert handover try 40 Handover Try Alert Threshold 40 1...

Page 534: ... Minimum 0 ms Station Association Latency Maximum 0 ms Station Association Latency Average 0 ms Station Association Latency Total Count 0 1 Hour Station Association Latency Minimum 0 ms Station Association Latency Maximum 0 ms Station Association Latency Average 0 ms Station Association Latency Total Count 0 1 Day Station Association Latency Minimum 0 ms Station Association Latency Maximum 0 ms St...

Page 535: ...0 0 INVALID_IE 0 0 0 0 MICHAEL_MIC_FAILURE 0 0 0 0 4WAY_HANDSHAKE_TIMEOUT 0 0 0 0 GROUP_KEY_UPDATE_TIMEOUT 0 0 0 0 IE_IN_4WAY_DIFFERS 0 0 0 0 GROUP_CIPHER_NOT_VALID 0 0 0 0 PAIRWISE_CIPHER_NOT_VALID 0 0 0 0 AKMP_NOT_VALID 0 0 0 0 UNSUPPORTED_RSN_IE_VERSION 0 0 0 0 INVALID_RSN_IE_CAPAB 0 0 0 0 IEEE_802_1X_AUTH_FAILED 0 0 0 0 CIPHER_SUITE_REJECTED 0 0 0 0 TDLS_TEARDOWN_UNREACHABLE 0 0 0 0 TDLS_TEARD...

Page 536: ...tion Association Succ Try 0 Station Association Succ Success 0 Station Association Succ Failure 0 Station Association Succ Rate 0 000000 5 Min Station Association Succ Try 0 Station Association Succ Success 0 Station Association Succ Failure 0 Station Association Succ Rate 0 000000 1 Hour Station Association Succ Try 0 Station Association Succ Success 0 Station Association Succ Failure 0 Station A...

Page 537: ...g_RxCount Reason Total 5Min 1Hour 1Day 802 11b g_1M 0 0 0 0 802 11b g_2M 0 0 0 0 802 11b g_5 5M 0 0 0 0 802 11b g_11M 0 0 0 0 802 11g_TxCount Reason Total 5Min 1Hour 1Day 802 11g_6M 0 0 0 0 802 11g_9M 0 0 0 0 802 11g_12M 0 0 0 0 802 11g_18M 0 0 0 0 802 11g_24M 0 0 0 0 802 11g_36M 0 0 0 0 802 11g_48M 0 0 0 0 802 11g_54M 0 0 0 0 802 11g_TxFailedCount Reason Total 5Min 1Hour 1Day 802 11g_6M 0 0 0 0 8...

Page 538: ...al 5Min 1Hour 1Day MCS_0 0 0 0 0 MCS_1 0 0 0 0 MCS_2 0 0 0 0 MCS_3 0 0 0 0 MCS_4 0 0 0 0 MCS_5 0 0 0 0 MCS_6 0 0 0 0 MCS_7 0 0 0 0 MCS_8 0 0 0 0 MCS_9 0 0 0 0 MCS_10 0 0 0 0 MCS_11 0 0 0 0 MCS_12 0 0 0 0 MCS_13 0 0 0 0 MCS_14 0 0 0 0 MCS_15 0 0 0 0 MCS_16 0 0 0 0 MCS_17 0 0 0 0 MCS_18 0 0 0 0 MCS_19 0 0 0 0 MCS_20 0 0 0 0 MCS_21 0 0 0 0 MCS_22 0 0 0 0 MCS_23 0 0 0 0 TxHtMcsFailed Reason Total 5Min...

Page 539: ...S_20 0 0 0 0 MCS_21 0 0 0 0 MCS_22 0 0 0 0 MCS_23 0 0 0 0 RxHtMcs Reason Total 5Min 1Hour 1Day MCS_0 0 0 0 0 MCS_1 0 0 0 0 MCS_2 0 0 0 0 MCS_3 0 0 0 0 MCS_4 0 0 0 0 MCS_5 0 0 0 0 MCS_6 0 0 0 0 MCS_7 0 0 0 0 MCS_8 0 0 0 0 MCS_9 0 0 0 0 MCS_10 0 0 0 0 MCS_11 0 0 0 0 MCS_12 0 0 0 0 MCS_13 0 0 0 0 MCS_14 0 0 0 0 MCS_15 0 0 0 0 MCS_16 0 0 0 0 MCS_17 0 0 0 0 MCS_18 0 0 0 0 MCS_19 0 0 0 0 MCS_20 0 0 0 0 ...

Page 540: ...11AC_MCS 1 8 0 0 0 0 11AC_MCS 1 9 0 0 0 0 11AC_MCS 2 0 0 0 0 0 11AC_MCS 2 1 0 0 0 0 11AC_MCS 2 2 0 0 0 0 11AC_MCS 2 3 0 0 0 0 11AC_MCS 2 4 0 0 0 0 11AC_MCS 2 5 0 0 0 0 11AC_MCS 2 6 0 0 0 0 11AC_MCS 2 7 0 0 0 0 11AC_MCS 2 8 0 0 0 0 11AC_MCS 2 9 0 0 0 0 TxVhtMcsFailed Reason Total 5Min 1Hour 1Day 11AC_MCS 0 0 0 0 0 0 11AC_MCS 0 1 0 0 0 0 11AC_MCS 0 2 0 0 0 0 11AC_MCS 0 3 0 0 0 0 11AC_MCS 0 4 0 0 0 0...

Page 541: ...0 0 0 11AC_MCS 0 3 0 0 0 0 11AC_MCS 0 4 0 0 0 0 11AC_MCS 0 5 0 0 0 0 11AC_MCS 0 6 0 0 0 0 11AC_MCS 0 7 0 0 0 0 11AC_MCS 0 8 0 0 0 0 11AC_MCS 0 9 0 0 0 0 11AC_MCS 1 0 0 0 0 0 11AC_MCS 1 1 0 0 0 0 11AC_MCS 1 2 0 0 0 0 11AC_MCS 1 3 0 0 0 0 11AC_MCS 1 4 0 0 0 0 11AC_MCS 1 5 0 0 0 0 11AC_MCS 1 6 0 0 0 0 11AC_MCS 1 7 0 0 0 0 11AC_MCS 1 8 0 0 0 0 11AC_MCS 1 9 0 0 0 0 11AC_MCS 2 0 0 0 0 0 11AC_MCS 2 1 0 0...

Page 542: ...on Total 5Min 1Hour 1Day 802 11b g_1M 0 0 0 0 802 11b g_2M 0 0 0 0 802 11b g_5 5M 0 0 0 0 802 11b g_11M 0 0 0 0 802 11g_TxCount Reason Total 5Min 1Hour 1Day 802 11g_6M 0 0 0 0 802 11g_9M 0 0 0 0 802 11g_12M 0 0 0 0 802 11g_18M 0 0 0 0 802 11g_24M 0 0 0 0 802 11g_36M 0 0 0 0 802 11g_48M 0 0 0 0 802 11g_54M 0 0 0 0 802 11g_TxFailedCount Reason Total 5Min 1Hour 1Day 802 11g_6M 0 0 0 0 802 11g_9M 0 0 ...

Page 543: ...son Total 5Min 1Hour 1Day MCS_0 0 0 0 0 MCS_1 0 0 0 0 MCS_2 0 0 0 0 MCS_3 0 0 0 0 MCS_4 0 0 0 0 MCS_5 0 0 0 0 MCS_6 0 0 0 0 MCS_7 0 0 0 0 MCS_8 0 0 0 0 MCS_9 0 0 0 0 MCS_10 0 0 0 0 MCS_11 0 0 0 0 MCS_12 0 0 0 0 MCS_13 0 0 0 0 MCS_14 0 0 0 0 MCS_15 0 0 0 0 MCS_16 0 0 0 0 MCS_17 0 0 0 0 MCS_18 0 0 0 0 MCS_19 0 0 0 0 MCS_20 0 0 0 0 MCS_21 0 0 0 0 MCS_22 0 0 0 0 MCS_23 0 0 0 0 TxHtMcsFailed Reason Tot...

Page 544: ... 0 0 MCS_20 0 0 0 0 MCS_21 0 0 0 0 MCS_22 0 0 0 0 MCS_23 0 0 0 0 RxHtMcs Reason Total 5Min 1Hour 1Day MCS_0 0 0 0 0 MCS_1 0 0 0 0 MCS_2 0 0 0 0 MCS_3 0 0 0 0 MCS_4 0 0 0 0 MCS_5 0 0 0 0 MCS_6 0 0 0 0 MCS_7 0 0 0 0 MCS_8 0 0 0 0 MCS_9 0 0 0 0 MCS_10 0 0 0 0 MCS_11 0 0 0 0 MCS_12 0 0 0 0 MCS_13 0 0 0 0 MCS_14 0 0 0 0 MCS_15 0 0 0 0 MCS_16 0 0 0 0 MCS_17 0 0 0 0 MCS_18 0 0 0 0 MCS_19 0 0 0 0 MCS_20 0...

Page 545: ...11AC_MCS 1 7 0 0 0 0 11AC_MCS 1 8 0 0 0 0 11AC_MCS 1 9 0 0 0 0 11AC_MCS 2 0 0 0 0 0 11AC_MCS 2 1 0 0 0 0 11AC_MCS 2 2 0 0 0 0 11AC_MCS 2 3 0 0 0 0 11AC_MCS 2 4 0 0 0 0 11AC_MCS 2 5 0 0 0 0 11AC_MCS 2 6 0 0 0 0 11AC_MCS 2 7 0 0 0 0 11AC_MCS 2 8 0 0 0 0 11AC_MCS 2 9 0 0 0 0 TxVhtMcsFailed Reason Total 5Min 1Hour 1Day 11AC_MCS 0 0 0 0 0 0 11AC_MCS 0 1 0 0 0 0 11AC_MCS 0 2 0 0 0 0 11AC_MCS 0 3 0 0 0 0...

Page 546: ...1AC_MCS 0 0 0 0 0 0 11AC_MCS 0 1 0 0 0 0 11AC_MCS 0 2 0 0 0 0 11AC_MCS 0 3 0 0 0 0 11AC_MCS 0 4 0 0 0 0 11AC_MCS 0 5 0 0 0 0 11AC_MCS 0 6 0 0 0 0 11AC_MCS 0 7 0 0 0 0 11AC_MCS 0 8 0 0 0 0 11AC_MCS 0 9 0 0 0 0 11AC_MCS 1 0 0 0 0 0 11AC_MCS 1 1 0 0 0 0 11AC_MCS 1 2 0 0 0 0 11AC_MCS 1 3 0 0 0 0 11AC_MCS 1 4 0 0 0 0 11AC_MCS 1 5 0 0 0 0 11AC_MCS 1 6 0 0 0 0 11AC_MCS 1 7 0 0 0 0 11AC_MCS 1 8 0 0 0 0 11...

Page 547: ...3_FRAME_FROM_NONASSOC_STA 0 0 0 0 DISASSOC_STA_HAS_LEFT 0 0 0 0 STA_REQ_ASSOC_WITHOUT_AUTH 0 0 0 0 PWR_CAPABILITY_NOT_VALID 0 0 0 0 SUPPORTED_CHANNEL_NOT_VALID 0 0 0 0 INVALID_IE 0 0 0 0 MICHAEL_MIC_FAILURE 0 0 0 0 4WAY_HANDSHAKE_TIMEOUT 0 0 0 0 GROUP_KEY_UPDATE_TIMEOUT 0 0 0 0 IE_IN_4WAY_DIFFERS 0 0 0 0 GROUP_CIPHER_NOT_VALID 0 0 0 0 PAIRWISE_CIPHER_NOT_VALID 0 0 0 0 AKMP_NOT_VALID 0 0 0 0 UNSUPP...

Page 548: ...OT_VALID 0 0 0 0 SUPPORTED_CHANNEL_NOT_VALID 0 0 0 0 INVALID_IE 0 0 0 0 MICHAEL_MIC_FAILURE 0 0 0 0 4WAY_HANDSHAKE_TIMEOUT 0 0 0 0 GROUP_KEY_UPDATE_TIMEOUT 0 0 0 0 IE_IN_4WAY_DIFFERS 0 0 0 0 GROUP_CIPHER_NOT_VALID 0 0 0 0 PAIRWISE_CIPHER_NOT_VALID 0 0 0 0 AKMP_NOT_VALID 0 0 0 0 UNSUPPORTED_RSN_IE_VERSION 0 0 0 0 INVALID_RSN_IE_CAPAB 0 0 0 0 IEEE_802_1X_AUTH_FAILED 0 0 0 0 CIPHER_SUITE_REJECTED 0 0...

Page 549: ...HANDSHAKE_TIMEOUT 0 0 0 0 GROUP_KEY_UPDATE_TIMEOUT 0 0 0 0 IE_IN_4WAY_DIFFERS 0 0 0 0 GROUP_CIPHER_NOT_VALID 0 0 0 0 PAIRWISE_CIPHER_NOT_VALID 0 0 0 0 AKMP_NOT_VALID 0 0 0 0 UNSUPPORTED_RSN_IE_VERSION 0 0 0 0 INVALID_RSN_IE_CAPAB 0 0 0 0 IEEE_802_1X_AUTH_FAILED 0 0 0 0 CIPHER_SUITE_REJECTED 0 0 0 0 TDLS_TEARDOWN_UNREACHABLE 0 0 0 0 TDLS_TEARDOWN_UNSPECIFIED 0 0 0 0 TOO_MANY 0 0 0 0 STAION_RETRY_TH...

Page 550: ..._4WAY_DIFFERS 0 0 0 0 GROUP_CIPHER_NOT_VALID 0 0 0 0 PAIRWISE_CIPHER_NOT_VALID 0 0 0 0 AKMP_NOT_VALID 0 0 0 0 UNSUPPORTED_RSN_IE_VERSION 0 0 0 0 INVALID_RSN_IE_CAPAB 0 0 0 0 IEEE_802_1X_AUTH_FAILED 0 0 0 0 CIPHER_SUITE_REJECTED 0 0 0 0 TDLS_TEARDOWN_UNREACHABLE 0 0 0 0 TDLS_TEARDOWN_UNSPECIFIED 0 0 0 0 TOO_MANY 0 0 0 0 STAION_RETRY_THRESHOLD 0 0 0 0 ACL_KICKOUT 0 0 0 0 AUTH_IDLE_TIMEOUT 0 0 0 0 AU...

Page 551: ...UNKNOWN 0 0 0 0 AUTH 0 0 0 0 AUTH_SUCCESS 0 0 0 0 AUTH_FAILURE 0 0 0 0 IPFAIL 0 0 0 0 NORMAL 0 0 0 0 DeauthStateOutReason Reason Total 5Min 1Hour 1Day UNKNOWN 0 0 0 0 AUTH 0 0 0 0 AUTH_SUCCESS 0 0 0 0 AUTH_FAILURE 0 0 0 0 IPFAIL 0 0 0 0 NORMAL 0 0 0 0 8 Check the station handover latency by AP Device Radio WLAN ex by WLAN APC show network stats statistics station hand over latency wlan 1 Station H...

Page 552: ...k the station handover attempt count by AP Device Radio WLAN ex by WLAN APC show network stats statistics station hand over num of attempt ho wlan 1 WLAN ID 1 Reason Total 5Min 1Hour 1Day HandoverAttempt 0 0 0 0 10 Check the statistics by station handover failure reason by AP Device Radio WLAN ex by WLAN APC show network stats statistics station hand over num of fail by reason wlan 1 WLAN ID 1 Rea...

Page 553: ...N_UNREACHABLE 0 0 0 0 TDLS_TEARDOWN_UNSPECIFIED 0 0 0 0 TOO_MANY 0 0 0 0 STAION_RETRY_THRESHOLD 0 0 0 0 ACL_KICKOUT 0 0 0 0 AUTH_IDLE_TIMEOUT 0 0 0 0 AUTH_IN_ASSOC_STATE 0 0 0 0 WRONG_STA 0 0 0 0 EXPIRED_SERVICE_TIME 0 0 0 0 MAC_AUTH_TIMEOUT 0 0 0 0 MAC_AUTH_REJECT 0 0 0 0 MANUAL_KICKOUT 0 0 0 0 MALICIOUS_STA_STATISTICS 0 0 0 0 KICKOUT_MAC_FILTER 0 0 0 0 KICKOUT_INVALID_IP 0 0 0 0 KICKOUT_ACL 0 0 ...

Page 554: ...ion H O Succ Success 0 Station H O Succ Failure 0 Station H O Succ Rate 0 000000 13 Check the statistics of station handover path tracking by AP Radio ex by AP Radio APC show network stats statistics station hand over trace 1 AP ID 1 Radio 5 GHz Reason Total 5Min 1Hour 1Day destAp 1 destAp statsCnt 0 0 0 0 0 0 0 0 destAp 2 destAp statsCnt 0 0 0 0 0 0 0 0 destAp 3 destAp statsCnt 0 0 0 0 0 0 0 0 de...

Page 555: ...t 0 0 0 0 0 0 0 0 destAp 3 destAp statsCnt 0 0 0 0 0 0 0 0 destAp 4 destAp statsCnt 0 0 0 0 0 0 0 0 destAp 5 destAp statsCnt 0 0 0 0 0 0 0 0 destAp 6 destAp statsCnt 0 0 0 0 0 0 0 0 destAp 7 destAp statsCnt 0 0 0 0 0 0 0 0 destAp 8 destAp statsCnt 0 0 0 0 0 0 0 0 destAp 9 destAp statsCnt 0 0 0 0 0 0 0 0 destAp 10 destAp statsCnt 0 0 0 0 0 0 0 0 destAp 11 destAp statsCnt 0 0 0 0 0 0 0 0 destAp 12 d...

Page 556: ... 1 AP ID 1 Radio 5 GHz Reason Total 5Min 1Hour 1Day retryCount 0 0 0 0 exceedConsecutiveRetryCount 0 0 0 0 stationKickOutCount 0 0 0 0 AP ID 1 Radio 2 4 GHz Reason Total 5Min 1Hour 1Day retryCount 0 0 0 0 exceedConsecutiveRetryCount 0 0 0 0 stationKickOutCount 0 0 0 0 15 Check the number of users connecting with the station MIN MAX AVG by AP Radio WLAN ex by WLAN APC show network stats statistics ...

Page 557: ...Count 0 AP Packet Loss Tx Retry Succes Count 0 AP Packet Loss Tx Success Count 0 AP Packet Loss Tx Fail Rate 0 000000 AP Packet Loss Tx Retry Rate 0 000000 RADIO 2 4 GHz AP Packet Loss Tx Failure Count 0 AP Packet Loss Tx Retry Succes Count 0 AP Packet Loss Tx Success Count 0 AP Packet Loss Tx Fail Rate 0 000000 AP Packet Loss Tx Retry Rate 0 000000 18 Check the AP packet loss raw data statistics ...

Page 558: ...Data Frame Count 0 AP Total Transmission Failure Data Frame Count 0 AP Total Retry Success Data Frame Count 0 AP Total Transmitted Success Mgmt Frame Count 0 AP Total Transmission Failure Mgmt Frame Count 0 AP Total Retry Success Mgmt Frame Count 0 Checking and Configuring Using Web UI Configure and check an alert Alert configuration Configuration Management Statistics Network Quality Association ...

Page 559: ... Network Quality Alert List Checking Statistical Value of Network Network Statistics Root Path Monitoring Statistics Network Quality 1 Check the station association latency and success rate by AP Device Radio WLAN ex by WLAN Monitoring Statistics Network Quality by WLAN Association Handover General ...

Page 560: ...onitoring Statistics Network Quality by WLAN Association Handover Management Frame 3 Check the station handover latency and success rate by AP Device Radio WLAN ex by WLAN Monitoring Statistics Network Quality by WLAN Association Handover General 4 Check the number of users connecting to the station by AP Radio WLAN ex by WLAN Monitoring Statistics Network Quality by WLAN Association Handover Gene...

Page 561: ...e Radio WLAN ex by WLAN Monitoring Statistics Network Quality by WLAN Association Handover RSSI SKO 6 Check the statistics by cause of station association and handover failure by AP Device Radio WLAN ex by WLAN Monitoring Statistics Network Quality by WLAN Association Handover Cause of Failure Check the association handover statistics by using the tab on the top of the right ...

Page 562: ...e 562 of 689 7 Check the statistics of disassoc by AP Device Radio WLAN ex by WLAN Monitoring Statistics Network Quality by WLAN Association Handover Disassoc Deauth Check the disassoc deauth statistics by station system by using the tab on the top of the right ...

Page 563: ...8 Check the statistics of disassoc count of the UE by status by AP Device Radio WLAN ex by WLAN Monitoring Statistics Network Quality by WLAN Association Handover Disassoc Deauth Check the disassoc deauth statistics by station system by using the tab on the top of the right ...

Page 564: ... 564 of 689 9 Check the statistics of disassoc count of the UE by status by AP Radio ex by AP Radio Monitoring Statistics Network Quality by AP 802 11a n ac Transmission Speed To change a radio press Convert Radio button by using the tab on the top of the right ...

Page 565: ...ge 565 of 689 10 Check the statistics of disassoc count of the UE by status by AP Radio ex by AP Radio Monitoring Statistics Network Quality by AP 802 11a n ac Handover Trace To change a radio press Convert Radio button by using the tab on the top of the right ...

Page 566: ... on the top of the right 12 Check the statistics of extracted UEs by AP Radio ex by AP Radio Monitoring Statistics Network Quality by AP 802 11a n ac Association Handover RSSI SKO To change a radio press Convert Radio button by using the tab on the top of the right 13 Check the statistics of wireless packet loss by AP Radio ex by AP Radio Monitoring Statistics Network Quality by AP 802 11a n ac Da...

Page 567: ...e video_camera dsss_wireless_phone narrow_wireless_jammer wide_band_jammer possible_interference 80211b bluetooth microwave_oven continuous_transmitter cordless_phone video_camera zigbee dsss_wireless_phone narrow_band_jammer wide_band_jammer inverter_microwave_oven xbox_controller wireless_analog_phone baby_monitor s_band_motion_detector possible_interference unknown hostname call fail detect mgm...

Page 568: ...tem monitor cpu threshold memory threshold license install key analyze key activate analyze qos description max dot1p ac bw contract downstream bw contract upstream dpi profile rule action mark bw contract enable app group application description country set global set ap set group handover time ho decision command scan suppress mode opmode ...

Page 569: ...lan assignment staticip ssl ssl roam param control security radius auth acct serverIp secret fo retransmit count retransmit count retransmit interval use vip internal server mac auth pw type mac auth delimiter mac auth case coa advanced eap retransmit interval eap retransmit count eap key retransmit interval eap key retransmit interval 1st eap key retransmit count allow last eap key timeout rsn ie...

Page 570: ...timeout radius coa flag radius coa time window radius coa nas check pmf for legacy ap hs deauth req timeout captive portal web auth users add delete detail fullname company email phone max allowed stations enable comment sponsor name department email phone comments web page title content footer color self registration enable fullname phone company custom label email lifetime web auth cache list de...

Page 571: ...malicious station time abnormal station abnormal station time ext wips enable interval primary secondary port user password tacacs server ip server port shared secret retransmit count retransmit interval source ip enable byod enable address1 address2 https requrl db sync ap group add wlan add ap remote group mesh group profile overwrite 8023af mode poe 8023af monitor ...

Page 572: ...smit interval max retransmit echo retransmit interval max echo retransmit telnet enable ssh enable console enable dtls policy led config poe type vlan support native vlanId overwrite ap mode overwrite location overwrite ip mode overwrite state overwrite redundancy overwrite apc ap timer overwrite telnet ssh overwrite console overwrite dtls overwrite led control overwrite poe type overwrite vlan ov...

Page 573: ... enable target ap scan trigger level scan time channel scan time service scan time interleave number of proreq number of channel decision delta ip sec overwrite ip sec enable primary ip right subnet right subnet mask ike version ike lifetime ipsec lifetime auth mode load balancing radio enable threshold rssi high rssi low interval kickout timeout no probe timeout sticky interval remote interface v...

Page 574: ...l to ap primary radius secondary radius tertiary radius overwrite localbridging local bridging overwrite tunnel forwarding tunnel forwarding delete user add user send user list acl profile upgrade enable start stop force max retry select package delete package select masterAP delete masterAP reboot mesh station service allow bridge service allow max node max hop diag connection allow overwrite fla...

Page 575: ...ver max denial count max denial time preferred band add station delete station delete all enable load balancing multicast to unicast enable discard enable radio ssid security apply wpa psk wpa2 ieee8021x keymgmt wep okc dynamicVlan setDefault grpRekeyTime pmkLifeTime radius server auth servers acct servers eapReauthTime eapolVersion radiusPrimaryRetryInterval acct_interim_interval ...

Page 576: ...ct URL override cache duration server type web page type internal download customized external radius servers after auth after auth redirect url mac authentication mac filter iuts mode latency queue length filter mode codec list if group if group os acl aaa override tunnel mode qos class ext wips suppress ssid local vlan max associated stations hotspot mode interworking service roaming consortium ...

Page 577: ... operator name venue name network auth type domain ip type availability wan tetrics connection capability osu provider osu ssid provider list provider friendly name server uri method list icon list osu nai description icon width height language file type file name gas 80211a rate basic supported mcs 11n mcs 11ac 80211b rate basic supported mcs 11n vdm ...

Page 578: ... mux skip limit station queue limit packet lifetime pifs access tx rate retry ratio update period stop threshold stop interval start rssi seq list size nack interval rx timeout sds weight dhcp override ampdu reject probe mode broadcast enable multicast enable static address disallowed dpi profile bandwidth management enable bw contract upstream bw contract downstream mode derivation profile prefer...

Page 579: ... dynamic poe 8023af preferred band dtls policy poe type discovery mac location name echo interval discovery interval report interval statistics timer retransmit interval max retransmit echo retransmit interval max echo retransmit ap mode ip mode static ip primary apc secondary apc tertiary apc ap stats history enable vlan support native vlanId console enable telnet enable ssh enable led config edg...

Page 580: ...eboot upgrade request tech support get all get crash file get coredump get log file get system report syslog config shutdown airmove config priority scan trigger level scan time channel scan time service scan time interleave number of proreq number of channel decision delta sta ssl config priority scan trigger level scan time channel scan time service scan time interleave number of proreq number o...

Page 581: ...ky interval ip sec enable primary ip right subnet right subnet mask ike version ike lifetime ipsec lifetime auth mode ap all upgrade transfer protocol start stop max retry max download select package delete package target reboot apc apc list add apc del apc change name change mac ap mgmt if capwap ctr src port window size change state pending timer data check timer dtls session delete ...

Page 582: ...ery by broadcast auto discovery auto discovery ap group tech support mode max retry ap stats history mode period max retry enable ap if stats period ap time config add ntp ntp interval mode ac stamp interval ap account repeater service public port ftp sftp http https redundancy fallback enable fallback interval add apc del apc 80211a max associated stations edca parameters qos protocol edca profil...

Page 583: ...ag dscp tag ap tags qap missing ack retry limit edca avg period reset edca profiles cac voice acm reserved ho calls max calls alarming count video acm method reserved ho calls reserved ho chan util max calls max chan util msac acm method max streams max chan util reserved ho streams reserved ho chan util multi antenna mode default comb rate basic supported txPower ...

Page 584: ...tbc rx stbc beamforming tx mcs set protection spatial stream retry limit short long threshold rts fragmentation msdu lifetime tx rx beacon period ofdm channel width channel starting factor ti threshold enable cvo enable local call enable set profile rate control voice max rate probe interval weight threshold video max rate probe interval weight ...

Page 585: ...brid mode hybrid mode home channel time off channel dwell time max off channel scan time scan interleave time traffic idle time hybrid sa mode hybrid sa mode hybrid sa time sa home channel time sa off channel dwell time 80211bg max associated stations edca parameters qos protocol edca profile cw min cw max aifsn txop limit msdu lifetime policy dot1p enable policy dscp enable policy dot1p tag dscp ...

Page 586: ...lls alarming count video acm method reserved ho calls reserved ho chan util max calls max chan util msac acm method max streams max chan util reserved ho streams reserved ho chan util multi antenna mode default comb rate basic supported txPower channel 11n support enable mcs guard interval rifs phy format ldpc tx stbc rx stbc beamforming tx mcs set protection spatial stream ...

Page 587: ...cca mode threshold enable cvo enable local call enable set profile rate control voice max rate probe interval weight threshold video max rate probe interval weight threshold antenna station kickout extra features peak detector external antenna gain hybrid mode hybrid mode home channel time off channel dwell time max off channel scan time scan interleave time traffic idle time ...

Page 588: ...switch power constraint alarm level group logsize logcount dump stdout current terminal event filter enable web service port wireless multicast proxy ipv6 route neighbor station valid check ip dhcp pool network range lease domain name dns server default router fix address ntp server user option ping check capwap dhcp option enable server ip dhcp proxy timeout default dhcp server ...

Page 589: ...ticast routing pim accept register anycast rp bsr candidate cisco register checksum crp cisco prefix ignore rp set priority jp timer register rate limit register rp reachability register source register suppression rp address rp register kat spt threshold rp candidate interval priority group list nat mdns snoop enable mode service profile service access list http http ...

Page 590: ...arp firewall wlan arp mode package upgrade stats report enable upload check target target current stats telnet server enable port ssh server enable port sftp server enable chguser ftp server enable port chguser idle timeout clock set timezone ntp server enable client enable interval server addr ip hostname syslog ...

Page 591: ...address discard vlan forward vlan max age forward time hello time instance max hops spanning tree enable errdisable timeout enable interval portfast bpdu filter bpdu guard rapid spanning tree enable multiple spanning tree enable priority transmit holdcount spanning tree bridge instance vlan region revision vlan vlan interface switchport ...

Page 592: ...static channel group channel group flowcontrol storm control level bridge group instance path cost priority priority path cost mirror interface direction ip address igmp ra option access group immediate leave last member query count last member query interval limit except mroute proxy querier timeout query interval query max response time robustness variable ...

Page 593: ... dr priority exclude genid hello holdtime hello interval neighbor filter propagation delay unicast bsm access group nat proxy arp tcp adjust mss ospf address authentication authentication key cost database filter dead interval hello interval message digest key md5 mtu ignore priority retransmit interval transmit delay authentication authentication key cost database filter dead interval hello inter...

Page 594: ...address nd dad attempts suppress ra ra interval ra interval min ns interval curhoplimit linkmtu ra lifetime reachable time managed config flag other config flag prefix enable shutdown traffic shape service policy dhcp server option 82 arp ageing timeout speed duplex mtu spanning tree autoedge edgeport force version guard hello time instance path cost priority restricted role ...

Page 595: ...op profile vrrp router ospf area authentication default cost filter list nssa default information originate metric metric type no redistribution no summary translator role no redistribution no summary translator role range shortcut stub virtual link authentication authentication key dead interval hello interval message digest key md5 retransmit interval transmit delay auto cost capability opaque c...

Page 596: ...ospf distribute list in out host area max concurrent dd maximum area neighbor cost poll interval priority network area ospf abr type router id overflow database passive interface redistribute metric metric type tag router id summary address timers spf exp vrrp advertisement interval circuit failover disable enable preempt mode preempt delay priority ...

Page 597: ...ete update ipwatch ftp stationtracking station on off fqm mode access list class map match access group class cos dst ip dscp precedence tos protocol src match type policy map class police cir mark cos ip dscp precdence priority bandwidth shape peak queue limit ip time profile day start update access list ...

Page 598: ...rssi threshold for stn txPower dcs enable periodic interval anchor time interference level threshold channel utilization threshold my utilization threshold channel aware option delayed channel change joint algo enable chdc enable statsCollectEnable statsWarningEnable statsActionEnable statsCollectInterval rssi threshold min failed client count percent failed client count min idle timeout count nei...

Page 599: ...hannel change joint algo enable chdc enable statsCollectEnable statsWarningEnable statsActionEnable statsCollectInterval rssi threshold min failed client count percent failed client count min idle timeout count neighbor list wlan neighbor priority rf group name sub channel group sleep cell detect enable apc threshold ap threshold period_1st period_2nd period_all energy saving group enable apc thre...

Page 600: ...ive interval keep alive retry count enable add apc del apc del apc all wids enable device remove move modify state ap ap blacklist check invalid security invalid channel managed ap valid channel adhoc connection honeypot hidden ssid invalid channel fake ap mac spoofing honeypot with unmanaged station invalid uic fake ap user_defined_managed unclassified station auth request det probe request det d...

Page 601: ... modify unmanaged lists channel validation enable add delete ap blacklist station blacklist managed oui managed neighbor ap containment enable auto unmanaged ap uses managed ssid adhoc connection unmanaged ap associated with managed station unmanaged ap neighbor ap associated with managed station manual expiration timeout monitor radio scan interval periodic interval snmp ap enable ro community rw...

Page 602: ...ing config filter station mac enable station mac enable ap mac ap mac config ftp ipv4 address stop current forcibly remote file path login id network broadcast enable acl name multicast enable acl name dhcp snooping wlan radio service sta idle timeout wmm mode dtim default qos preferred calls add del locationtrack autotrace algorithm enable ap station rogueap roguestation expiryhistory ...

Page 603: ...e vqm connection limit reporting mode rtp port range alarm enable enable packet capture threshold upload enable server interval mode user login target directory file size immediate upload filter prefix router id radiuscm add local userdb modify local userdb delete local userdb export local userdb import local userdb remove all local userdb rbac role profile acl qos vlan url dpi remote ...

Page 604: ...fig all remote ap group ap derivation profile condition airinsight add station del station set network stats statistics voip enable rf value enable station enable data enable alert voip call setup enable interval threshold drop call enable interval threshold voice quality enable interval threshold rf value threshold 80211a channel utilization ...

Page 605: ...nel utilization air quality noise level count alert min5 threshold hour1 threshold day1 threshold station kick out scan enable assoc success blacklist ho success blacklist alert duration alert assoc rate alert handover rate alert assoc try alert disassoc try alert handover try alert assoc rssi alert max db data packet loss alert enable interval threshold packet retry alert enable interval threshol...

Page 606: ...hedule load balancing calibration pc moblie others enable active interval allow channel idle station idle station time max target ssl ho wips group enable group disable group size group threshold upload info enable target delete data collection enable interval onetime redirect flood protect arp icmp enable ...

Page 607: ...mmary detail summary group detail ap station stats debug stats wlan http redirection summary profile station air quality count interferers worst interferers mgmt users configuration sync conf current stats all current stats apc list apc summary stats all summary stats apc command log cli idle timeout cli sessions country global config ap config group config ...

Page 608: ...c voice configuration video configuration msac configuration stats multi antenna summary qos policy ac profile edca parameters radio configuration radio config voip stats cvo profile config extra features hybrid mode hybrid sa mode 80211bg cac voice configuration video configuration msac configuration stats multi antenna summary qos policy ac profile ...

Page 609: ...s cvo profile config extra features hybrid mode hybrid sa mode 80211h configuration prohibit channels qos profile wlan radio service config handover airmove ap group sta ssl ap group station stats management_frame all airmove all IAHO all debug all ap 80211 stats SSL all association history mgmtframe rate limit all summary ap bssid ...

Page 610: ...an assignment staticip system info uptime load cpu memory disk fan temp threshold cpu memory disk fan temp fancontrol license key remote ap group summary user state detail groupname upgrade config list ap group remote dhcp summary pool detail pool fixed ip interface vlan if group forwarding mesh detail tree summary ...

Page 611: ...t summary resource packet capture detail remote forwarding stats history if stats join stats capwap stats radio stats tech support time config syslog config load balancing ip sec apc summary list capwap summary ap if stats ap account ap time config public port redundancy summary priority list wlan summary hotspot general roaming consortium nai realm ...

Page 612: ...rovider osu provider summary osu provider detail osu provider icon summary osu provider icon detail traffic stats if group os detail voice enterprise 80211k security summary detail preferred vlan info qos map vap if group alarm info conf list all level group history all level group backup event running config system cli idle timeout alarm network snmp wifim vqm voice vqm ...

Page 613: ...security tech support version timezone clock uptime system cpu load memory disk process processlog processmemory coredump crash swm log alarm event filter debug cluster redundancy cli idle timeout network snmp wifim vqm apc capwap if group wlan wlan security rrm alarmhistory event wids ip dhcp pool lease ...

Page 614: ...oups interface snooping mroute statistics ssm map route interface protocols nat access list filter pim sparse mode bsr router interface local members mroute neighbor nexthop rp rp hash ospf border routers database adv router asbr summary external max age network nssa external opaque area opaque as opaque link router self originate summary ...

Page 615: ...ce profile summary detail wlan interface service cache ipv6 route interface neighbors station stats traffic count station count summary detail config access list arp wireless acl list multi2uni list interface vlan mirror reboot processes status log memory version syslog debug coredump summary reboot info summary export ...

Page 616: ...l all level module backup conf keyword before after start time before after start time rate swm log processes license backup file invalid file uptime code book ssh server telnet server ftp server filter filter stats policy map class map firewall sftp server ntp timezone clock event filter security radius server summary ...

Page 617: ...uth cache list web auth users summary detail mac filter summary detail ext wips config list tacacs config detail byod configuration list vrrp static channel group bridge etherchannel spanning tree mst config detail interface instance interface interface interface sipalg configuration rrm config summary help neighbor list channel status rrm history ...

Page 618: ...tion group locationtrack help config ap floor station rogueap roguestation debugging lacp port lacp http https snmp community user trap ap pcap current config network current status cluster config current stats all current stats apc help list apc list station summary stats all summary stats apc wids help statistics current config lists managed ap ap blacklist ...

Page 619: ...fig list detail station current config allow limit list detail adhoc list detail rule managed unmanaged containment current config stats report conf current stats periodic backup stationtracking station conf lbs tracking station preferred calls vdm config policy for station config files rate control tx power range os aware os aware all onetime redirect monitor radio voice ...

Page 620: ...e tel no active call summary detail mac ip user name tel no complete call summary detail mac ip user name tel no vqm help current config summary stats debug stats current stats history stats alarms statistics ap radio wlan device station event sipmsg log device bss if radiuscm username all user rbac role profile ...

Page 621: ...oup summary derivation profile summary detail station summary wlan derivation config airinsight network stats statistics voip configuration ap radio wlan device rf value summary channel utilization air quality rx utilization tx utilization noise level station association num of attempt assoc ap wlan radio device num of fail by reason ap wlan radio device ...

Page 622: ...lan radio device success rate ap wlan radio device latency ap wlan radio device hand over num of attempt ho ap wlan radio device ho type num of fail by reason ap wlan radio device ho type rssi ap wlan radio device success rate ap wlan radio device ho type latency ap wlan radio device ...

Page 623: ...ssoc deauth ap wlan radio device configuration peak count scan kick out data rate data current config ap stat apc stat alert voip configuration rf value threshold enable alert count alert history upload info wips ap summary group config group summary upload info data collection upload status upload list flood protect status dpi wlan bandwidth mgt acl dns query ...

Page 624: ... count interferers stats station globally individually sta ssl globally interference report ip igmp group interface pim sparse mode dhcp lease nat ospf mdns ipv6 neighbors spanning tree bridge interface cli session interface arp cache voice vqm all history stats summary stats current stats history file debug stats event ...

Page 625: ...of 689 sipmsg log pcap stat security radius server stats hapd stats hapd ap stats captive portal stats cluster clear all clear apc log debug current all detail current all alarm actalarm alarminfo vrrp network stats statistics station data wlan bandwidth mgt dpi stat ...

Page 626: ...ebug debug processes config crash igmp lacp fqm acl function message qos nsm all events kernel mcast packet mstp all cli packet protocol timer traceroute tcpdump ipwatch virtual if msho irfm module rfsgw wids locationtracking log level logsize logcount on off detail level logsize ...

Page 627: ... of 689 logcount on off mstdout module level on off rate dhcp info apm wlan reject probe rssi time swxray swm db logd evm license filemgr filemib cm eqm rbac apccluster m2u_mng awmb awfb wssm apm apd capwap hostapd radiuscm wids cpm irfm rfsgw apclt pm httprd sipalg ...

Page 628: ...ANNEX A CLI Command Structure SAMSUNG Electronics Co Ltd page 628 of 689 vem agsm snmpd WebAgent salbm bifm cgc mdns filter packet service cache ...

Page 629: ... SAMSUNG Electronics Co Ltd page 629 of 689 A 5 file file download upload copy remove move ls pwd cd dump df verify version A 6 Etc password reboot save local factory reset export import ping traceroute ping6 traceroute6 telnet ssh ...

Page 630: ...nding Source code from us for a period of three years after our last shipment of this product by sending email to oss request samsung com If you want to obtain the complete Corresponding Source code in the physical medium such as CD ROM the cost of physically performing source distribution may be charged You may also find a copy of the source at http www samsungnetwork com Home Opensource This off...

Page 631: ...Proxy GPL 2 0 IPwatchD GPL 2 0 Traceroute for Linux GPL 2 0 Sys V Init GPL 2 0 linux 2 6 GPL 2 0 linux netfilter modules GPL 2 0 NetHogs net top per process GPL 2 0 gzip GPL 2 0 Linux Kernel GPL 2 0 Das U Boot Universal Bootloader GPL 2 0 GNU Core Utils GPL 2 0 Avahi LGPL 2 1 libnl Netlink Library LGPL 2 1 OSIP Library LGPL 2 1 FTP Lib Alt LGPL 2 1 Linux Kernel SCTP LGPL 2 1 GNU C Library glibc LG...

Page 632: ...l mean an individual or Legal Entity exercising permissions granted by this License Source form shall mean the preferred form for making modifications including but not limited to software source code documentation source and configuration files Object form shall mean any form resulting from mechanical transformation or translation of a Source form including but not limited to compiled object code...

Page 633: ...ble copyright license to reproduce prepare Derivative Works of publicly display publicly perform sublicense and distribute the Work and such Derivative Works in Source or Object form 3 Grant of Patent License Subject to the terms and conditions of this License each Contributor hereby grants to You a perpetual worldwide non exclusive no charge royalty free irrevocable except as stated in this secti...

Page 634: ...d provide additional or different license terms and conditions use reproduction or distribution of Your modifications or any such Derivative Works as a whole provided Your use roduction and distribution of the Work otherwise complies with the conditions stated in this License 5 Submission of Contributions Unless You explicitly state otherwise Contribution intentionally submitted for inclusion in t...

Page 635: ...y not on behalf of any other Contributor and only if You agree to indemnify defend and hold each Contributor harmless for any liability incurred by or claims asserted against such Contributor by reason of your accepting any such warranty or additional liability END OF TERMS AND CONDITIONS APPENDIX How to apply the Apache License to your work To apply the Apache License to your work attach the foll...

Page 636: ...TWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS AS IS AND ANY EXPRESS OR IMPLIED WARRANTIES INCLUDING BUT NOT LIMITED TO THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT INDIRECT INCIDENTAL SPECIAL EXEMPLARY OR CONSEQUENTIAL DAMAGES INCLUDING BUT NOT LIMITED TO PR...

Page 637: ...1996 2003 by Internet Software Consortium Permission to use copy modify and distribute this software for any purpose with or without fee is hereby granted provided that the above copyright notice and this permission notice appear in all copies THE SOFTWARE IS PROVIDED AS IS AND ISC DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS...

Page 638: ...render the rights These restrictions translate to certain responsibilities for you if you distribute copies of the software or if you modify it For example if you distribute copies of such a program whether gratis or for a fee you must give the recipients all the rights that you have You must make sure that they too receive or can get the source code And you must show them these terms so they know...

Page 639: ...t of transferring a copy and you may at your option offer warranty protection in exchange for a fee 2 You may modify your copy or copies of the Program or any portion of it thus forming a work based on the Program and copy and distribute such modifications or work under the terms of Section 1 above provided that you also meet all of these conditions a You must cause the modified files to carry pro...

Page 640: ...r c Accompany it with the information you received as to the offer to distribute corresponding source code This alternative is allowed only for noncommercial distribution and only if you received the program in object code or executable form with such an offer in accord with Subsection b above The source code for a work means the preferred form of the work for making modifications to it For an exe...

Page 641: ...at all For example if a patent license would not permit royalty free redistribution of the Program by all those who receive copies directly or indirectly through you then the only way you could satisfy both it and this License would be to refrain entirely from distribution of the Program If any portion of this section is held invalid or unenforceable under any particular circumstance the balance o...

Page 642: ...the free status of all derivatives of our free software and of promoting the sharing and reuse of software generally NO WARRANTY 11 BECAUSE THE PROGRAM IS LICENSED FREE OF CHARGE THERE IS NO WARRANTY FOR THE PROGRAM TO THE EXTENT PERMITTED BY APPLICABLE LAW EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND OR OTHER PARTIES PROVIDE THE PROGRAM AS IS WITHOUT WARRANTY OF ANY KIND EITH...

Page 643: ...der the terms of the GNU General Public License as published by the Free Software Foundation either version 2 of the License or at your option any later version This program is distributed in the hope that it will be useful but WITHOUT ANY WARRANTY without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE See the GNU General Public License for more details You should...

Page 644: ...WEVER CAUSED AND ON ANY THEORY OF LIABILITY WHETHER IN CONTRACT STRICT LIABILITY OR TORT INCLUDING NEGLIGENCE OR OTHERWISE ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE GNU LESSER GENERAL PUBLIC LICENSE Version 2 1 February 1999 Copyright c 1991 1999 Free Software Foundation Inc 51 Franklin Street Fifth Floor Boston MA 02110 1301 USA Everyone ...

Page 645: ... and passed on the recipients should know that what they have is not the original version so that the original author s reputation will not be affected by problems that might be introduced by others Finally software patents pose a constant threat to the existence of any free program We wish to make sure that a company cannot effectively restrict the users of a free program by obtaining a restricti...

Page 646: ...ICATION 0 This License Agreement applies to any software library or other program which contains a notice placed by the copyright holder or other authorized party saying it may be distributed under the terms of this Lesser General Public License also called this License Each licensee is addressed as you A library means a collection of software functions and or data prepared so as to be convenientl...

Page 647: ...ood faith effort to ensure that in the event an application does not supply such function or table the facility still operates and performs whatever part of its purpose remains meaningful For example a function in a library to compute square roots has a purpose that is entirely well defined independent of the application Therefore Subsection 2d requires that any application supplied function or ta...

Page 648: ...arties are not compelled to copy the source along with the object code 5 A program that contains no derivative of any portion of the Library but is designed to work with the Library by being compiled or linked with it is called a work that uses the Library Such a work in isolation is not a derivative work of the Library and therefore falls outside the scope of this License However linking a work t...

Page 649: ...the modified definitions b Use a suitable shared library mechanism for linking with the Library A suitable mechanism is one that 1 uses at run time a copy of the library already present on the user s computer system rather than copying library functions into the executable and 2 will operate properly with a modified version of the library if the user installs one as long as the modified version is...

Page 650: ...by law if you do not accept this License Therefore by modifying or distributing the Library or any work based on the Library you indicate your acceptance of this License to do so and all its terms and conditions for copying distributing or modifying the Library or works based on it 10 Each time you redistribute the Library or any work based on the Library the recipient automatically receives a lic...

Page 651: ...ill be similar in spirit to the present version but may differ in detail to address new problems or concerns Each version is given a distinguishing version number If the Library specifies a version number of this License which applies to it and any later version you have the option of following the terms and conditions either of that version or of any later version published by the Free Software F...

Page 652: ... terms attach the following notices to the library It is safest to attach them to the start of each source file to most effectively convey the exclusion of warranty and each file should have at least the copyright line and a pointer to where the full notice is found one line to give the library s name and an idea of what it does Copyright c year name of author This library is free software you can...

Page 653: ... the authorized uses Modifications to this software may be copyrighted by their authors and need not follow the licensing terms described here provided that the new terms are clearly indicated on the first page of each file where they apply IN NO EVENT SHALL THE AUTHORS OR DISTRIBUTORS BE LIABLE TO ANY PARTY FOR DIRECT INDIRECT SPECIAL INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE USE OF ...

Page 654: ...ising or otherwise to promote the sale use or other dealings in this Software without prior written authorization from him MIT v2 with Ad Clause License Permission is hereby granted free of charge to any person obtaining a copy of this software and associated documentation files the Software to deal in the Software without restriction including without limitation the rights to use copy modify merg...

Page 655: ...1998 2004 The OpenSSL Project All rights reserved Redistribution and use in source and binary forms with or without modification are permitted provided that the following conditions are met 1 Redistributions of source code must retain the above copyright notice this list of conditions and the following disclaimer 2 Redistributions in binary form must reproduce the above copyright notice this list ...

Page 656: ...s written so as to conform with Netscapes SSL This library is free for commercial and non commercial use as long as the following conditions are adheared to The following conditions apply to all code found in this distribution be it the RC4 RSA lhash DES etc code not just the SSL code The SSL documentation included with this distribution is covered by the same copyright terms except that the holde...

Page 657: ...D TO THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT INDIRECT INCIDENTAL SPECIAL EXEMPLARY OR CONSEQUENTIAL DAMAGES INCLUDING BUT NOT LIMITED TO PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES LOSS OF USE DATA OR PROFITS OR BUSINESS INTERRUPTION HOWEVER CAUSED AND ON ANY THEORY OF LIABIL...

Page 658: ... period of three years after our last shipment of this product by sending email to oss request samsung com If you want to obtain the complete Corresponding Source code in the physical medium such as CD ROM the cost of physically performing source distribution may be charged You may also find a copy of the source at http www samsungnetwork com Home Opensource This offer is valid to anyone in receip...

Page 659: ... Core Utils GNU General Public License v2 0 GAwk GNU General Public License v2 0 gdb GNU General Public License v2 0 GNU grep GNU General Public License v2 0 mtd utils GNU General Public License v2 0 linux net tools GNU General Public License v2 0 NMAP GNU General Public License v2 0 ntpclient GNU General Public License v2 0 OProfile GNU General Public License v2 0 procps GNU General Public Licens...

Page 660: ...n Vim VIM Licenese Popt XConsortium License zlib zlib Licnese ACM Software License Agreement All software both binary and source published by the Association for Computing Machinery hereafter Software is copyrighted by the Association hereafter ACM and ownership of all right title and interest in and to the Software remains with ACM By using or copying the Software User agrees to abide by the term...

Page 661: ...lty free non exclusive license to use copy modify and redistribute these modifications to the Software made by the User and distributed to third parties as a derivative work under this agreement 6 This agreement will terminate immediately upon User s breach of or non compliance with any of its terms User may be held liable for any copyright infringement or the infringement of any other proprietary...

Page 662: ...IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS AS IS AND ANY EXPRESS OR IMPLIED WARRANTIES INCLUDING BUT NOT LIMITED TO THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT INDIRECT INCIDENTAL SPECIAL EXEMPLARY OR CONSEQUENTIAL DAMAGES INCLUDING BUT NOT LIMITED TO PROCUREM...

Page 663: ...ed States Government has rights in this work pursuant to contract no DE AC03 76SF00098 between the United States Department of Energy and the University of California Redistribution and use in source and binary forms with or without modification are permitted provided that 1 source distributions retain this entire copyright notice and comment and 2 distributions including binaries display the foll...

Page 664: ... new free programs and that you know you can do these things To protect your rights we need to make restrictions that forbid anyone to deny you these rights or to ask you to surrender the rights These restrictions translate to certain responsibilities for you if you distribute copies of the software or if you modify it For example if you distribute copies of such a program whether gratis or for a ...

Page 665: ...nd disclaimer of warranty keep intact all the notices that refer to this License and to the absence of any warranty and give any other recipients of the Program a copy of this License along with the Program You may charge a fee for the physical act of transferring a copy and you may at your option offer warranty protection in exchange for a fee 2 You may modify your copy or copies of the Program o...

Page 666: ... 2 above on a medium customarily used for software interchange or b Accompany it with a written offer valid for at least three years to give any third party for a charge no more than your cost of physically performing source distribution a complete machine readable copy of the corresponding source code to be distributed under the terms of Sections 1 and 2 above on a medium customarily used for sof...

Page 667: ...e conditions of this License If you cannot distribute so as to satisfy simultaneously your obligations under this License and any other pertinent obligations then as a consequence you may not distribute the Program at all For example if a patent license would not permit royalty free redistribution of the Program by all those who receive copies directly or indirectly through you then the only way y...

Page 668: ...ng the free status of all derivatives of our free software and of promoting the sharing and reuse of software generally NO WARRANTY 11 BECAUSE THE PROGRAM IS LICENSED FREE OF CHARGE THERE IS NO WARRANTY FOR THE PROGRAM TO THE EXTENT PERMITTED BY APPLICABLE LAW EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND OR OTHER PARTIES PROVIDE THE PROGRAM AS IS WITHOUT WARRANTY OF ANY KIND E...

Page 669: ...on any later version This program is distributed in the hope that it will be useful but WITHOUT ANY WARRANTY without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE See the GNU General Public License for more details You should have received a copy of the GNU General Public License along with this program if not write to the Free Software Foundation Inc 51 Franklin...

Page 670: ...s or to ask you to surrender these rights These restrictions translate to certain responsibilities for you if you distribute copies of the library or if you modify it For example if you distribute copies of the library whether gratis or for a fee you must give the recipients all the rights that we gave you You must make sure that they too receive or can get the source code If you link other code w...

Page 671: ...hat a free library does the same job as widely used non free libraries In this case there is little to gain by limiting the free library to free software only so we use the Lesser General Public License In other cases permission to use a particular library in non free programs enables a greater number of people to use a large body of free software For example permission to use the GNU C Library in...

Page 672: ...y and distribute a copy of this License along with the Library You may charge a fee for the physical act of transferring a copy and you may at your option offer warranty protection in exchange for a fee 2 You may modify your copy or copies of the Library or any portion of it thus forming a work based on the Library and copy and distribute such modifications or work under the terms of Section 1 abo...

Page 673: ...opy part of the code of the Library into a program that is not a library 4 You may copy and distribute the Library or a portion or derivative of it under Section 2 in object code or executable form under the terms of Sections 1 and 2 above provided that you accompany it with the complete corresponding machine readable source code which must be distributed under the terms of Sections 1 and 2 above ...

Page 674: ...em as well as a reference directing the user to the copy of this License Also you must do one of these things a Accompany the work with the complete corresponding machine readable source code for the Library including whatever changes were used in the work which must be distributed under Sections 1 and 2 above and if the work is an executable linked with the Library with the complete machine reada...

Page 675: ... any other library facilities This must be distributed under the terms of the Sections above b Give prominent notice with the combined library of the fact that part of it is a work based on the Library and explaining where to find the accompanying uncombined form of the same work 8 You may not copy modify sublicense link with or distribute the Library except as expressly provided under this Licens...

Page 676: ...ibute software through any other system and a licensee cannot impose that choice This section is intended to make thoroughly clear what is believed to be a consequence of the rest of this License 12 If the distribution and or use of the Library is restricted in certain countries either by patents or by copyrighted interfaces the original copyright holder who places the Library under this License m...

Page 677: ...ITED TO LOSS OF DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD PARTIES OR A FAILURE OF THE LIBRARY TO OPERATE WITH ANY OTHER SOFTWARE EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES END OF TERMS AND CONDITIONS How to Apply These Terms to Your New Libraries If you develop a new library and you want it to be of the greatest possible ...

Page 678: ...eby disclaims all copyright interest in the library Frob a library for tweaking knobs written by James Random Hacker Signature of Ty Coon 1 April 1990 Ty Coon President of Vice That s all there is to it Iperf License Copyright c 1999 2007 The Board of Trustees of the University of Illinois All Rights Reserved Iperf performance test Mark Gates Ajay Tirumala Jim Ferguson Jon Dugan Feng Qin Kevin Gib...

Page 679: ...se with or without fee is hereby granted provided that the above copyright notice appears in all copies and that both the copyright notice and this permission notice appear in supporting documentation and that the name University of Delaware not be used in advertising or publicity pertaining to distribution of the software without specific written prior permission University of Delaware makes no r...

Page 680: ... INCIDENTAL SPECIAL EXEMPLARY OR CONSEQUENTIAL DAMAGES INCLUDING BUT NOT LIMITED TO PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES LOSS OF USE DATA OR PROFITS OR BUSINESS INTERRUPTION HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY WHETHER IN CONTRACT STRICT LIABILITY OR TORT INCLUDING NEGLIGENCE OR OTHERWISE ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE EVEN IF ADVISED OF THE POSSIBILITY OF SUCH ...

Page 681: ...cludes software written by Tim Hudson tjh cryptsoft com THIS SOFTWARE IS PROVIDED BY ERIC YOUNG AS IS AND ANY EXPRESS OR IMPLIED WARRANTIES INCLUDING BUT NOT LIMITED TO THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT INDIRECT INCIDENTAL SPECIAL EXEMPLARY OR CONSEQUENTIAL DAMAGES INCL...

Page 682: ...under a applies to those changes iii Provide all the changes including source code with every copy of the modified Vim you distribute This may be done in the form of a context diff You can choose what license to use for new code you add The changes and their license must not restrict others from making their own changes to the official version of Vim iv When you have a modified Vim which includes ...

Page 683: ...o deal in the Software without restriction including without limitation the rights to use copy modify merge publish distribute sublicense and or sell copies of the Software and to permit persons to whom the Software is furnished to do so subject to the following conditions The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software ...

Page 684: ...he following restrictions 1 The origin of this software must not be misrepresented you must not claim that you wrote the original software If you use this software in a product an acknowledgment in the product documentation would be appreciated but is not required 2 Altered source versions must be plainly marked as such and must not be misrepresented as being the original software 3 This notice ma...

Page 685: ... with CBC MAC Protocol CCTV Closed Circuit Television CDR Crash Detect and Report CHDC Coverage Hole Detection and Control CLI Command Line Interface CSMA CD Carrier Sense Multiple Access Collision Detect CVO Controlled Voice Optimization D DCS Dynamic Channel Selection DECT Digital Enhanced Cordless Telecommunications DFS Dynamic Frequency Selection DHCP Dynamic Host Configuration Protocol DNAT D...

Page 686: ...al H HO Handover I IGMP Internet Group Management Protocol IP Internet Protocol IPWATCHD IP WATCH Deamon IV Initial Vector L LACP Link Aggregation Control Protocol LAN Local Area Network LED Light Emitting Diode LSA Link State Advertisement M MAC Medium Access Control MCS Modulation and Coding Scheme MIB Management Information Base MIMO Multiple Input Multiple Output MSTP Multiple Spanning Tree Pr...

Page 687: ...ice RF Radio Frequency RPM Revolution Per Minute RRM Radio Resource Management RSSI Received Signal Strength Indication RSTP Rapid Spanning Tree Protocol RTP Real time Transport Protocol S SDS Samsung Downlink Scheduler SIP Session Initiation Protocol SNAT Source NAT SNMP Simple Network Management Protocol SNR Signal to Noise Ratio SSH Secure Shell SSID Service Set Identifier STP Signaling Transfe...

Page 688: ... Quality Monitoring VRRP Virtual Router Redundancy Protocol W WAN Wide Area Network WDS Wireless Distribution Service WEM Wireless Enterprise WLAN Manager WEP Wired Equivalent Privacy Wi Fi Wireless Fidelity WIDS Wireless Intrusion Detection System WIPS Wireless Intrusion Prevention System WLAN Wireless Local Area Network WMM WiFi Multimedia WPA Wi Fi Protected Access WPA2 Wi Fi Protected Access V...

Page 689: ...ronics Co Ltd All rights reserved Information in this manual is proprietary to SAMSUNG Electronics Co Ltd No information contained here may be copied translated transcribed or duplicated by any form without the prior written consent of SAMSUNG Information in this manual is subject to change without notice ...

Reviews:

No comments

Related manuals for WEC8500

Brand: Laird Pages: 24

Brand: Laird Pages: 6

Brand: Gainstrong Pages: 14

AirLive WMM-3000R

Brand: Ovislink Pages: 97

Brand: Pakedge Pages: 10

Brand: Arris Pages: 4

RUCKUS ZoneDirector 1200

Brand: Arris Pages: 2

Brand: Alvarion Pages: 9

Brand: Ubiquiti Pages: 20

air force one 2 lite

Brand: Kozumi Pages: 35

Wi-Fi Bubble SpitFire

Brand: NAUTITECH Pages: 22

Brand: TRENDnet Pages: 18

airBridge TOTAL

Brand: SmartBridges Pages: 21

Brand: Billion Pages: 12

Brand: Xirrus Pages: 3

Brand: ZyXEL Communications Pages: 144

Brand: ZyXEL Communications Pages: 206

Brand: ZyXEL Communications Pages: 225

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands