Zcom ZAC Series, User Manual

Page 1: ...P 1 IEEE 802 11 a n Outdoor Wireless CPE User s Manual Model name ZAC 1023 5 13 ZAC 502 ZWA 3080 ZN 7200 2AEI L V1 0 May 2014 ...

Page 2: ...to guide professional installer to install the IEEE 802 11n ZAC Wireless CPE series and how to build the infrastructure centered on it It includes procedures to assist you in avoiding unforeseen problems Conventions For your attention on important parts special characters and patterns are used in this manual This indicates an important note that you must pay attention to This indicates a warning o...

Page 3: ... the interference by one of the following measures Reorient or relocate the receiving antenna Increase the separation between the equipment and receiver Connect the equipment into an outlet on a circuit different from that to which the receiver is connected Consult the dealer or an experienced radio TV technician for help Verify that the ambient temperature remains between 0 to 40 C taking into ac...

Page 4: ...t not be co located or operating in conjunction with any other antenna or transmitter The availability of some specific channels and or operational frequency bands are country dependent and are firmware programmed at the factory to match the intended destination The firmware setting is not accessible by the end user 根據低功率電波輻射性電機管理辦法 1 經型式認證合格之低功率射頻電機 非經許可 公司 商號或使用者均不得擅自變更 頻率 加大功率或變更原設計之特性及功能 2 低功率...

Page 5: ...S BUSINESS INTERRUPTION LOSS OF BUSINESS INFORMATION OR ANY OTHER PECUNIARY LOSS OR FROM ANY BREACH OF WARRANTY EVEN IF DISTRIBUTOR HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES IN NO CASE SHALL EXCEED THE AMOUNT YOU PAID FOR THE PRODUCT DO NOT dispose any component of product package if you need any serves please contacting with our service centers or local retailer You can decrease environ...

Page 6: ... Installation 14 Professional Installation Required 14 Safety Precautions 14 Installation Precautions 15 Product Package 15 Pole Mounting Ring 16 Ferrite Suppression Core 16 24VDC Power Cord PoE Injector 16 Hardware Installation 17 Connect up 17 Using the Grounding Wire 18 Mount the AP on a Pole 19 Power Up 20 Connect to the Access Point 21 Connect to the Access Point 21 Chapter 2 Quick Setup Tuto...

Page 7: ... Settings 42 Wireless Networks VAP Profiles Settings 42 Wireless Protocols 46 Access Control 48 Traffic Shaping 49 Radius Settings 50 TCP IP Settings 51 Captive Portal 52 Firewall Settings 54 Management 57 AP Management 57 System Settings 59 Time Settings 61 Firmware Upgrade 61 Backup Retrieve Settings 62 Restore Factory Default Settings 62 Reboot 63 Password Settings 64 Syslog Setting 64 System L...

Page 8: ... Network Flow Statistics 71 View ARP Table 72 View Bridge Table 72 View Active DHCP Client Table 72 View Network Activities 73 System 74 Basic System Settings 74 TCP IP Settings 75 Time Settings 77 RADIUS Settings 78 Firewall Settings 79 UDP Pass Through 82 DMZ 82 Wireless 83 VAP Profile Settings 85 VLAN 89 Advanced Settings 89 Access Control 92 Traffic Shaping 93 ...

Page 9: ...rd 97 Upgrade Firmware 97 Backup Retrieve Settings 98 Restore Factory Default Settings 98 Reboot 99 Remote Management 99 SNMP Management 100 Certificate Settings 102 Tools 103 System Log 103 Ping Watch Dog 103 Appendix A ASCII 105 Appendix B Specification 107 ...

Page 10: ...e managed APs on the network In addition the easy to install ZAC Wireless CPE is also a high performance last mile broadband solution that provides reliable wireless network coverage for broadband application Key Features Centralized configuration control for your network Compliant with IEEE 802 11n standard Support passive PoE supplied with 24V High reliable watertight housing endures almost any ...

Page 11: ...P 11 Hardware Overview Front View Back View ...

Page 12: ...e device has the Ethernet connection Off The device has no Ethernet connection Blinking Transmitting receiving Ethernet packets WLAN Green On The WLAN is active Off The WLAN is inactive Blinking Transmitting receiving wireless packets Signal 3 Green 3 LED On The signal strength is excellent 2 LED On The signal strength is good 1 LED On The signal strength is weak ...

Page 13: ...ing figure illustrates a ZAC wireless network When a thin AP mode joins a wired network it will start to look for a ZAC Wireless CPE in AC mode If the thin AP founds the AP controller on the network it will send the registration request to the AP controller Once the registration is successfully made the AP that acts as the AP controller will add the thin AP to its management list and provides it c...

Page 14: ...If you are installing the ZAC Wireless CPE for the first time for your safety as well as others please seek assistance from a professional installer who has received safety training on the hazards involved 3 Keep safety as well as performance in mind when selecting your installation site especially where there are electric power and phone lines 4 When installing the ZAC Wireless CPE please note th...

Page 15: ...T COVERED UNDER WARRNTY 2 Users MUST use the Power cord PoE Injector shipped in the box with the ZAC Wireless CPE Use of other options will likely cause damage to the unit Product Package The product package you have received should contain the following items If any of them are not included or damaged please contact your local vendor for support IEEE 802 11n ZAC Wireless CPE 1 Pole Mounting Ring ...

Page 16: ...e Suppression Core 24VDC Power Cord PoE Injector Users MUST use the Power cord PoE Injector shipped in the box with the IEEE 802 11n Wireless CPE Use of other options will likely cause damage to the IEEE 802 11n Wireless CPE Warning ...

Page 17: ...C Wireless CPE is a movable cover Grab the cover and pull it back harder to take it out as the figure shown below 2 Plug a standard Ethernet cable into the RJ45 port 3 Slide the cover back and press down the lock button to seal the bottom of the ZAC Wireless CPE ...

Page 18: ...int cables and PoE Injector must be properly connected to earth ground during normal use against surges or ESD 1 Remove the screw on the grounding point at the bottom of the ZAC Wireless CPE 2 Put the grounding wire on the grounding point at the bottom of the ZAC Wireless CPE Then screw the grounding wire to tighten up ...

Page 19: ...E over Put the pole mounting ring through the middle hole of it Note that you should unlock the pole mounting ring with a screw driver before putting it through the device as the following right picture shows 2 Mount the ZAC Wireless CPE steadily to the pole by locking the pole mounting ring tightly ...

Page 20: ... 20 Power Up 1 Connect power cord to the PoE injector as the following right picture shows 2 Connect the Ethernet cable that connects the Access Point to the POE port of the PoE injector as figured below ...

Page 21: ...ect to the Access Point To be able to configure and manage the Access Point please do the followings 1 Open the ferrite core by unsnapping the connector latches The core will open revealing a concave surface 2 Lay the Ethernet cable into the core usually within 2 to 3 inches of the connector You may have to experiment with the final location depending on the effectiveness of the high frequency aba...

Page 22: ...cumstances with severe interference 4 Close the core and snap the halves back together The ferrite is professionally installed and a shrink wrap has been put around the ferrite so the users CAN T take the ferrite off 5 Connect the Ethernet cable with suppression core to the Data In port of the PoE injector Note ...

Page 23: ...P 23 6 Connect the other end of Ethernet cable to a PC or a switch hub The hardware installation is complete ...

Page 24: ...nterface to easily manage the access point Configure the computer with a static IP address of 192 168 1 x as the default IP address of the ZAC Wireless CPE is 192 168 1 1 X cannot be 0 1 nor 255 Open Web browser and enter the IP address Default 192 168 1 1 of the ZAC Wireless CPE into the address field You will see the login page as below ...

Page 25: ... Default admin and password Default password respectively and click Login to login the main page of the ZAC Wireless CPE The username and password are case sensitive and the password should be no more than 19 characters Note ...

Page 26: ...e as AC Thin AP go to Basic Settings From Device Mode drop down list select Virtual AC mode If you would like the Access Point to perform as a virtual controller and access point concurrently please select Virtual AC Thin AP mode Then assign an IP address to the ZAC Wireless CPE and specify subnet mask gateway and DNS address respectively Hit Apply and wait for about 50 seconds to take effect AC T...

Page 27: ...fter the configuration is made click Save to save the settings A dialog message will pop up to remind you changes will also apply to other managed Thin APs Click Apply to apply the configuration immediately To make profile setting on the ZAC Wireless CPE itself take effect you need to reboot the AP in controller mode as well To reboot the ZAC Wireless CPE go to Management Configuration File and cl...

Page 28: ... the rest of managed Access Points to your network with Ethernet cables Power them up respectively They will automatically discover the ZAC Wireless CPE in controller mode and register themselves To check whether the thin APs are successfully registered or not enter the web page of the ZAC Wireless CPE master access controller and go to Management AP Management You will see Registered in Status co...

Page 29: ... 5 Management Page 29 Moving the mouse over MAC address of each managed AP will also display relevant RF information such as channel mode current channel antenna being used together with transmit output power ...

Page 30: ...C Wireless CPE in controller mode and go to Management AP Management the following screen shows up The ZAC Wireless CPE AP in Virtual AC Thin AP mode on the list is highlighted in bold font By selecting it and hitting Radio button you may check radio setting such as channel bandwidth channel antenna and output power ...

Page 31: ...re upgrade you may choose to upgrade the selected managed AP by hitting Upgrade Selected or do the group upgrade by hitting Upgrade All Before upgrading the managed AP you need to locate the new firmware in the ZAC Wireless CPE Go to Management Firmware Upload browse the firmware file where it is located click Upload and Click OK Then go back to Management AP Management to do single or group updat...

Page 32: ...s as well as packets statistics Configure the Fat AP mode Fat AP mode operates as standalone AP that cannot be managed by the ZAC Wireless CPE To switch from Virtual AC mode to Fat AP mode go to Management System Settings From the Device Mode drop down list select Fat AP and hit YES to make the change take effect To switch from default mode Thin AP to Fat AP mode for the first time configuration g...

Page 33: ...For details please refer to the next Chapter AP Mode 1 Choose Wireless Basic Settings The default is AP mode already Here you can change wireless SSID for your public end user After the configuration is made click Apply to save the parameters In the example here we only change the Wireless Network Name SSID as Join_me Note ...

Page 34: ...ication in your application After the configuration is made click Apply to save the parameters 4 To decrease the chances of data retransmission at long distance the ZAC Wireless CPE can automatically adjust proper ACK timeout value by specifying distance between the nodes By specifying the distance go to Wireless Advanced Setting and fill in the number in the Distance field If the distance is belo...

Page 35: ...d click Apply to save the configuration Besides specifying the SSID manually you may select the preferable Access Point to connect by clicking the Site Survey button beside Wireless Mode Once the button is pressed the wireless client will scan all the available access points within coverage Select the one you prefer to connect and click Select AP to establish the connection ...

Page 36: ...sponding authentication and encryption options and click Apply to save configuration 4 To check whether the association with the Access Point has been successfully made go to Status Connections If the connection is established it will display association information of the Access Point including MAC address wireless mode signal strength and connection time ...

Page 37: ...e uses the WDS protocol that is not defined as the standard thus compatibility issues between equipment from different vendors may arise Moreover Tree or Star shape network topology should be used in all WDS use cases i e if AP2 and AP3 are specified as the WDS peers of AP1 AP2 should not be specified as the WDS peer of AP3 and AP3 should not be specified as the WDS peer of AP2 in any case Mesh an...

Page 38: ...ick Apply to save configuration 5 Use ping to check whether the link between the two bridges is OK 6 To check the wireless connectivity go to Status Connections If the connection is established it will display association information of the remote bridge including MAC address wireless mode signal strength and connection time AP Repeater Mode 1 Go to Wireless Basic Settings Choose AP Repeater from ...

Page 39: ...ement Page 39 To establish point to point bridge connection please follow the procedures described in Bridge mode To connect the wireless client to the AP please follow the procedures described in Wireless Client mode ...

Page 40: ...hich is read only Information includes system information IP settings and wireless network setting Click Refresh at the bottom to have the real time information View Managed APs Open Managed APs in Status to check information of managed AP such as device name MAC address IP address numbers of associated clients and uploaded downloaded packets All is read only Click Refresh at the bottom to update ...

Page 41: ...SSID of the managed APs that are associated with signal strength connection up time and uploaded downloaded packets All is read only Click Refresh at the bottom to update the list View DHCP Client Table Open DHCP Clients in Status as below to check the assigned IP address MAC address and lease time for each DHCP client Click Refresh to update the table ...

Page 42: ...o apply on all the other ZAC managed APs Wireless Networks VAP Profiles Settings The IEEE 802 11n ZAC CPE allows up to 8 virtual SSIDs on a single BSSID and to configure different profile settings such as security and VLAN ID to each SSID To create a virtual AP you may check the Enable box of the profile and click on the profile eg Profile 2 to configure wireless and security settings Hit Apply to...

Page 43: ...tion can prevent the communication among associated wireless clients WMM Support WMM Wi Fi Multimedia is a subset of 802 11e It allows wireless communication to define a priority limit on the basis of data type under AP mode only thus those time sensitive data like video audio data may own a higher priority than common one To enable WMM the wireless client should also support it By default it is e...

Page 44: ...S Server AP and wireless client WPA with RADIUS Wi Fi Protected Access WPA is a subset of the IEEE 802 11i standard With warrant username password and etc offered by user this kind of authentication can be realized with specific RADIUS server This is the common way to be adopted in large enterprise network WPA2 with RADIUS WPA2 IEEE 802 11i is a wireless security standard that defines stronger enc...

Page 45: ...P AES and the passphrase is required Data Encryption If data encryption is enabled the key is required and only sharing the same key with other wireless devices can the communication be established None Available only when the authentication type is open system 64 bits WEP It is made up of 10 hexadecimal numbers 128 bits WEP It is made up of 26 hexadecimal numbers 152 bits WEP It is made up of 32 ...

Page 46: ...includes Bridge and Router When switch to Router mode the LAN IP address for web page access will become 192 168 0 99 Wireless Protocols Allow the user to change 802 11 mode and other advanced parameters for the ZAC Wireless CPE For the country region FCC domain will support United States only ...

Page 47: ...ansmit rate for compromise of a long distance by fixing the data rate Advanced Settings A MPDU A MSDU Aggregation The data rate of your AP except wireless client mode could be enhanced greatly with this option enabled however if your wireless clients don t support A MPDU A MSDU aggregation it is not recommended to enable it Short GI Under 802 11n mode enable it to obtain better data rate if there ...

Page 48: ... before data is fragmented into multiple packets Setting it too low may result in poor network performance Leave it at its default of 2346 is recommended Beacon Interval Specify the frequency interval to broadcast packets Enter a value between 20 and 1024 DTIM Interval DTIM which stands for Delivery Traffic Indication Message is contained in the data packets It is for enhancing the wireless transm...

Page 49: ...s selected those wireless clients on the list will not be able to connect the AP MAC Address Enter the MAC address of the wireless client that you would like to list into the access control list click Apply then it will be added into the table at the bottom Delete Selected All Check the box before one or more MAC addresses of wireless client s that you would like to cancel and click Delete Selecte...

Page 50: ...ault value there and then the connection will be bound to the traffic shaping rule at all times You may decrease it to smaller value if the incoming traffic limit is smaller Radius Settings RADIUS Remote Authentication Dial In User Service is a server for remote user authentication and accounting playing a central role in the network in providing the capabilities of authenticating authorizing acco...

Page 51: ...dius Server Shared Secret This secret which is composed of no more than 31 characters is shared by the IEEE 802 11n ZAC Wireless CPE and RADIUS during authentication Global Key Update Check this option and specify the time interval between two global key updates Default is 3600 seconds TCP IP Settings When the Router mode is activated the TCP IP Settings will show up in Wireless Settings for user ...

Page 52: ... 15 44640 minutes for the ZAC managed Access Point For wireless clients who want to access the unit s web page in Router mode please type the IP address here in the browser s address bar to enter the web page Captive Portal Captive portal is a management which allows WLAN users to easily and securely access the Internet Under Router mode when captive portal is enabled the IEEE 802 11n ZAC Wireless...

Page 53: ...t Enter the port number for authentication Radius Acct Port Enter the port number for billing Radius Shared Secret Enter the secret key of the radius server Radius NAS ID Enter the name of the radius server if any Radius Administrative User Radius Admin Username Enter the username of the Radius Administrator Radius Admin Password Enter the password of the Radius Administrator Captive Portal UAM Po...

Page 54: ...well as DMZ This is available only under Router Mode Source IP Filtering You may create and activate a rule that filters a packet based on the source IP address from your local network to Internet Check Enable Source IP Filtering to activate rule Local IP Address Enter the IP address you would like to restrict Comment Make comments to record your filtering rule Click Apply and the IP address will ...

Page 55: ...the IP address will be added in the list To delete the IP address from filtering click Select checkbox of the designated destination IP address and click the Delete Selected button You may delete all the IP addresses in the list by clicking Delete All Source Port Filtering You may create and activate a rule that filters a packet based on the source port from your local network to Internet Check En...

Page 56: ...filters a packet based on the destination port from your local network to Internet Check Enable Destination Port Filtering to activate rule Port Range Enter the port range you would like to restrict Protocol Select port protocol Both TCP UDP Comment Make comments to record your filtering rule Click Apply and the IP address will be added in the list To delete the restricted destination ports click ...

Page 57: ...or mail server on the private local network behind IEEE 802 11n Wireless ZAC Wireless CPE s NAT firewall Management The IEEE 802 11n ZAC Wireless CPEs can manage up to 20 ZAC managed APs The ZAC Wireless CPE provides thin AP management for editing the ZAC managed AP settings upgrading the firmware and monitoring etc AP Management AP Management allows you to configure and upgrade the ZAC managed AP...

Page 58: ... obtain the IP address from ZAC Wireless CPE in AC mode Default is DHCP client Radio To display the current radio settings such as channel bandwidth operating channel antenna and output power for the selected ZAC managed Access Point From the AP Management list move the mouse cursor to the MAC address of the selected ZAC managed AP the screen will pop up radio configuration information ...

Page 59: ...Mode Three modes are provided AC Thin AP Thin AP FAT AP Select AC Thin AP to have the device act as virtual access controller to manage other ZAC managed APs on your network Select Thin AP to have the ZAC Wireless CPE managed by the ZAC AP in AC mode Select FAT AP to perform as a standalone AP neither managing nor managed by other ZAC APs Device Name Specify the device name which is composed of no...

Page 60: ...1n ZAC Access Pioint is able to obtain IP settings automatically from the DHCP server Use Fixed IP Address Check this option You have to specify a static IP address subnet mask default gateway and DNS server for the ZAC Wireless CPE manually Make sure the specified IP address is unique on your network in order to prevent IP conflict DHCP Server The ZAC Wireless CPE in AC mode can perform a DHCP se...

Page 61: ...Server Select the time server from the NTP Server dropdown list or manually input the IP address of available time server into Manual IP Firmware Upgrade Besides upgrading firmware for the ZAC Wireless CPE in AC mode it also provides firmware update for the ZAC managed APs Upload AC Firmware Allows the network administrator to upgrade firmware for the ZAC Access Point in AC mode Upload TAP Firmwar...

Page 62: ...port the configuration file of ZAC Wireless CPE in AC mode Then the configuration file ac cfg will be generated and saved to the specified location Save TAP Settings to File Click Save to export the configuration file of ZAC managed AP Then the configuration file tap cfg will be generated and saved to the specified location Load Settings from File Import ac cfg load into the ZAC Wireless CPE in AC...

Page 63: ...ware reset via the reset button Press and hold the button for at least 5 seconds and then release it until the PWR LED gives a blink The hardware reset will take about 2 minutes to complete Reboot You can software reboot your ZAC Wireless CPE from Configuration File in Management as below Click Reboot and hit Yes upon the appeared prompt to start reboot process This takes a few minutes ...

Page 64: ...assword Confirm Password Enter the new password again for confirmation The password is case sensitive and its length cannot exceed 19 characters Syslog Setting The ZAC Wireless CPE provides remote syslog management by sending logs to an external syslog server The log can be also sent through Email Remote Syslog Server Enable Remote Syslog Enable to send log to remote syslog server Note ...

Page 65: ...to send the log Time for Sending Log Specify the time of the day to send the log Clear Log To clear log after sending logs via email check the After Sending Mail checkbox Mail Server Setting Send Log From Enter the email address of the mail server Mail Subject Type a title to be presented in the subject line of the log email message SMTP Server Enter the IP address of the SMTP sever SMTP Authentic...

Page 66: ... ZAC managed AP in this page Once the log entries are all used the log will wrap around and the old logs will be deleted You may click Clear to delete logs manually as well Tools The IEEE 802 11n ZAC Wireless CPEs provide two tools to test the link status with other ZAC managed Access Points or anyone on the network Ping ...

Page 67: ...t Enter the number of pings Packet Size Specify ping packet size Trace Route This tool is used to discover the routes that packets take when traveling to the destination destination Destination IP Address Enter IP address of the remote destination and click Start to start ...

Page 68: ...y see some ZAC managed AP s basic information such as model name firmware version MAC address current up time registration status as well as MAC address Basic Settings Allows you to configure device and IP settings for the ZAC managed AP ...

Page 69: ...signment Obtain IP Address Automatically If a DHCP server exists in your network you can check this option thus the IEEE 802 11n ZAC Access Pioint is able to obtain IP settings automatically from the DHCP server Use Fixed IP Address Check this option You have to specify a static IP address subnet mask default gateway and DNS server for the ZAC Wireless CPE manually Make sure the specified IP addre...

Page 70: ...face status Click Refresh at the bottom to have the real time information View Association List Open Connections in Status to check the information of associated wireless devices such as MAC address signal strength connection time IP address etc All is read only Click Refresh at the bottom to update the current association list By clicking on the MAC address of the selected device on the web you m...

Page 71: ...Flow Statistics Open Statistics in Status to check the data packets received on and transmitted from the wireless and Ethernet ports Click Refresh to view current statistics Poll Interval Specify the refresh time interval in the box beside Poll Interval and click Set Interval to save settings Stop helps to stop the auto refresh of network flow statistics ...

Page 72: ...iew Bridge Table Open Bridge Table in Status as below Click Refresh to view current connected status View Active DHCP Client Table Open DHCP Clients in Status as below to check the assigned IP address MAC address and time expired for each DHCP leased client Click Refresh to view current table ...

Page 73: ...t Wireless and Ethernet TX RX data traffic in graphical and numerical form on the Web of the Skyport The chart scale and throughput dimension Bps Kbps Mbps changes dynamically according to the mean throughput value Throughput statistics can be updated manually using the Refresh button ...

Page 74: ...s in Bridge Mode however users must pay extra attention to the way they configure the device when it is set to Router Mode For details please refer to TCP IP Settings Ethernet Data Rate Specify the transmission rate of data for Ethernet Default is Auto Country Region For FCC domain the default country is United States only Spanning Tree Spanning Tree Protocol STP is a link management protocol for ...

Page 75: ...AC Wireless CPE is able to obtain IP settings automatically from that DHCP server When the IP address of the ZAC Wireless CPE is changed the clients on the network often need to wait for a while or even reboot before they can access the new IP address For an immediate access to the bridge please flush the netbios cache on the client computer by running the nbtstat r command before using the device...

Page 76: ... for the ZAC WIRELESS CPE manually Make sure the specified IP address is unique on your network in order to prevent IP conflict When DHCP Server is enabled users may specify DHCP IP Address Range DHCP Subnet Mask DHCP Gateway and Lease Time 15 44640 minutes A DHCP relay agents is used to forward DHCP requests and replies between clients and servers when they are not on the same physical subnet To ...

Page 77: ...Thus users must also connect the ZAC Wireless CPE with another wireless device before it is set to Router mode and access the ZAC Wireless CPE via the connected wireless device Time Settings Compliant with NTP the IEEE 802 11n ZAC Wireless CPE is capable of keeping its time in accord with the Internet time To use this feature check Enable NTP Client Update in advance Current Time Display the prese...

Page 78: ...ed to configure radius settings Open RADIUS Settings in System to make RADIUS configuration Authentication RADIUS Server This is for RADIUS authentication It can communicate with RADIUS through IP Address Port and Shared Secret IP Address Enter the IP address of the Radius Server Port Enter the port number of the Radius Server Shared Secret This secret which is composed of no more than 31 characte...

Page 79: ...able only under Router Mode Source IP Filtering You may create and activate a rule that filters a packet based on the source IP address from your local network to Internet Check Enable Source IP Filtering to activate rule Local IP Address Enter the IP address you would like to restrict Comment Make comments to record your filtering rule Click Apply and the IP address will be added in the list To d...

Page 80: ...lick the Delete Selected button You may delete all the IP addresses in the list by clicking Delete All Source Port Filtering You may create and activate a rule that filters a packet based on the source port from your local network to Internet Check Enable Source Port Filtering to activate rule Port Range Enter the port range you would like to restrict Protocol Select port protocol Both TCP UDP Com...

Page 81: ...e added in the list To delete the restricted destination ports click Select checkbox of the designated ports and click the Delete Selected button You may delete all the IP addresses in the list by clicking Delete All Port Forwarding The port forwarding allows you to automatically redirect common network services to a specific machine behind the NAT firewall These settings ne are only necessary if ...

Page 82: ...ss through the firewall Note that opening all the UDP ports will be very likely to expose the network to intruders DMZ A Demilitarized Zone is used to provide Internet services without sacrificing unauthorized access to its local private network Typically the DMZ host contains devices accessible to the Internet traffic such as Web HTTP servers FTP servers SMTP e mail servers and DNS servers To act...

Page 83: ...11n ZAC Wireless CPE establishes a wireless coverage and receives connectivity from other wireless devices Wireless Client The IEEE 802 11n ZAC Wireless CPE is able to connect to the AP and thus join the wireless network around it Bridge The IEEE 802 11n ZAC Wireless CPE establishes wireless connectivity with other APs by keying in remote MAC address Please refer to the WDS Settings for detailed c...

Page 84: ...vided into HT STA and Non HT STA among which the one with HT protect enabled gets higher throughput Frequency Channel Channel varies much as the available band differs from country to country Extension Channel Only applicable to AP AP Repeater and 40MHz channel width indicates the use of channel bonding that allows the IEEE 802 11n ZAC Wireless CPE to use two channels at once Two options are avail...

Page 85: ...dress of the AP while displays the one of associated wireless client or the MAC address designated manually Site Survey Under wireless client mode the IEEE 802 11n ZAC Wireless CPE is able to perform site survey through which information on the available access points will be detected Open Basic Settings in Wireless by clicking the Site Survey button beside Wireless Mode option the wireless site s...

Page 86: ...Wireless Network Name Enter the virtual SSID for the VAP Broadcast SSID In AP mode hiding network name is necessary when you are in a wireless environment that may have potential risk By disabling broadcast SSID the STA cannot scan and find the IEEE 802 11n ZAC Wireless CPE so that malicious attack by some illegal STA could be avoided Wireless Separation Wireless separation is an ideal way to enha...

Page 87: ...ystem It allows any device to join the network without performing any security check Shared Key Data encryption and key are required for wireless authentication Not available in Bridge AP Repeater mode Legacy 802 1x It provides the rights to access the wireless network and wired Ethernet With User and PC identity centralized authentication as well as dynamic key management it controls the security...

Page 88: ...ncryption can only be TKIP AES and the passphrase is required Data Encryption If data encryption is enabled the key is required and only sharing the same key with other wireless devices can the communication be established None Available only when the authentication type is open system 64 bits WEP It is made up of 10 hexadecimal numbers 128 bits WEP It is made up of 26 hexadecimal numbers 152 bits...

Page 89: ...EEE 802 11a n ZAC Wireless CPE you need to enable Enable 802 1Q VLAN and assign a management VLAN ID for your device Make sure the assigned management VLAN ID is identical to your network VLAN ID to avoid failures of accessing the Web page of the IEEE 802 11n ZAC Wireless CPE Advanced Settings Open Advanced Settings in Wireless to make advanced wireless settings A MPDU A MSDU Aggregation ...

Page 90: ...d be enhanced greatly with this option enabled however if your wireless clients don t support A MPDU A MSDU aggregation it is not recommended to enable it Short GI Under 802 11n mode enable it to obtain better data rate if there is no negative compatibility issue ...

Page 91: ... Delivery Traffic Indication Message is contained in the data packets It is for enhancing the wireless transmission efficiency The default is set to 1 Enter a value between 1 and 255 Preamble Type It defines some details on the 802 11 physical layer Long and Auto are available IGMP Snooping Available in AP Router mode IGMP snooping is the process of listening to IGMP network traffic By enabling IG...

Page 92: ...ong distance the IEEE 802 11n ZAC Wireless CPE can automatically adjust proper ACK timeout value by specifying distance of the two nodes Flow Control It allows the administrator to specify the incoming and outgoing traffic limit by checking Enable Traffic Shaping This is only available in Router mode We strongly recommend you leave most advanced settings at their defaults except Distance in Meters...

Page 93: ...e list will not be able to connect the AP MAC Address Enter the MAC address of the wireless client that you would like to list into the access control list click Apply then it will be added into the table at the bottom Delete Selected All Check the box before one or more MAC addresses of wireless client s that you would like to cancel and click Delete Selected or Delete All to cancel that access c...

Page 94: ...ic Shaping Check this box to control the overall bandwidth for a specific VAP network Incoming Traffic Limit To specify maximum incoming bandwidth to a certain rate in kbit s Incoming Traffic Burst To specify the buffer size for incoming traffic that can be sent within a given unit of time The suggested value is 20KBytes You may just leave the default value there and then the connection will be bo...

Page 95: ...port number for authentication Radius Acct Port Enter the port number for billing Radius Shared Secret Enter the secret key of the radius server Radius NAS ID Enter the name of the radius server if any Radius Administrative User Radius Admin Username Enter the username of the Radius Administrator Radius Admin Password Enter the password of the Radius Administrator Captive Portal UAM Portal URL Ent...

Page 96: ...ngs WDS Settings is available only under Bridge and AP Repeater Mode Bridge uses the WDS protocol that is not defined as the standard thus compatibility issues between equipment from different vendors may arise Moreover Tree or Star shape network topology should be used in all WDS use cases i e if AP2 and AP3 are specified as the WDS peers of AP1 AP2 should not be specified as the WDS peer of AP3 ...

Page 97: ...word again for confirmation The password is case sensitive and its length cannot exceed 19 characters Upgrade Firmware Open Firmware Upload in Management and follow the steps below to upgrade firmware locally or remotely through IEEE 802 11n ZAC Wireless CPE s Web Click Browse to select the firmware file you would like to load Click Upload to start the upload process Wait a few minutes the ZAC Wir...

Page 98: ...ve a dialog box will pop up Save it then the configuration file ap cfg will be generated and saved to your local computer Load Settings from File By clicking Browse a file selection menu will appear select the file you want to load like ap cfg Click Upload to load the file After automatically rebooting new settings are applied Restore Factory Default Settings The IEEE 802 11n ZAC Wireless CPE prov...

Page 99: ... and then release it until the PWR LED gives a blink Reboot You can reboot your IEEE 802 11n ZAC Wireless CPE from Configuration File in Management as below Click Reboot and hit Yes upon the appeared prompt to start reboot process This takes a few minutes Remote Management The IEEE 802 11n ZAC Wireless CPE provides a variety of remotes managements including Telnet SNMP FTP SSH HTTPS and exclusive ...

Page 100: ...eless CPE and the SNMP manager The IEEE 802 11n ZAC Wireless CPE supports SNMP v2 v3 Server Port Change the server port for a service if needed however you have to use the same port to use that service for remote management Get Community Specify the password for the incoming Get and GetNext requests from the management station By default it is set to public and allows all requests Set Community Sp...

Page 101: ...rying this user name are allowed to access the IEEE 802 11n ZAC Wireless CPE Password Specify a password for the SNMPv3 administrator or user Only the SNMP commands carrying this password are allowed to access the IEEE 802 11n Wireless ZAC Wireless CPE Confirm Password Input that password again to make sure it is your desired one Access Type Select Read Only or Read and Write accordingly Authentic...

Page 102: ...o trust The Server can trust all certificates issued by a given CA To import a user certificate from Import User Certificates click Browse and specify the location where the user certificate is placed Click Import Delete User Certificate Delete the selected user certificate Import User Certificates Imported the user certificate ...

Page 103: ... System Log in Tools as below Remote Syslog Server Enable Remote Syslog Enable System log to alert remote server IP Address Specify the IP address of the remote server Port Specify the port number of the remote server Ping Watch Dog If you mess your connection up and cut off your ability the log in to the unit the ping watchdog has a chance to reboot due to loss of connectivity ...

Page 104: ...remote unit to ping Ping Interval Specify the interval time to ping the remote unit Startup Delay Specify the startup delay time to prevent reboot before the IEEE 802 11n ZAC Wireless CPE is fully initialized Failure Count To Reboot If the ping timeout packets reached the value the IEEE 802 11n ZAC Wireless CPE will reboot automatically ...

Page 105: ...quivalent ASCII Character Hex Equivalent ASCII Character Hex Equivalent ASCII Character Hex Equivalent 21 9 39 Q 51 i 69 22 3A R 52 j 6A 23 3B S 53 k 6B 24 3C T 54 l 6C 25 3D U 55 m 6D 26 3E V 56 n 6E 27 3F W 57 o 6F 28 40 X 58 p 70 29 A 41 Y 59 q 71 2A B 42 Z 5A r 72 2B C 43 5B s 73 2C D 44 5C t 74 2D E 45 5D u 75 2E F 46 5E v 76 2F G 47 _ 5F w 77 0 30 H 48 60 x 78 1 31 I 49 a 61 y 79 2 32 J 4A b...

Page 106: ...P 106 ...

Page 107: ...ne E Plane 20º Antenna Configuration 2 2 2 Tx 2 Rx LAN port 1port Reset Button Reset to factory default Ground Ground terminal x1 System Update Capability Support Web UI upgrade via Ethernet port or wireless network Support TFTP upgrade via Ethernet port LED Definition Power Single color LED x1 Green On Power system on Green Off power system off LAN Single color LED x1 Off No Ethernet connection d...

Page 108: ... Rate Frequency 5150 5725 MHz 5725 5850 MHz MCS0 MCS8 23dBm 20 dBm MCS1 MCS2 MCS3 MCS9 MCS10 MCS11 23 dBm 20 dBm MCS4 MCS12 22 dBm 20 dBm MCS5 MCS13 21 dBm 20 dBm MCS6 MCS14 20 dBm 20 dBm MCS7 MCS15 19 dBm 19 dBm 1 Disable 5600 5650MHz due to Environment Canada weather satellites operating in the band are protected 2 Disable 5250 5350MHz 5470 5725MHz due to DFS band at FCC domain 3 The listed valu...

Page 109: ... MCS12 21 dBm 20 dBm MCS5 MCS13 21 dBm 20 dBm MCS6 MCS14 20 dBm 20 dBm MCS7 MCS15 19 dBm 19 dBm Sensitivity at single chain Mode 11a 11n HT20 11n HT40 6Mbps 89 9Mbps 88 12Mbps 85 18Mbps 83 24Mbps 80 36Mbps 76 48Mbps 71 54Mbps 70 MCS 0 8 83 80 MCS 1 9 80 77 MCS 2 10 78 75 MCS 3 11 75 72 MCS 4 12 71 68 MCS 5 13 67 64 MCS 6 14 66 63 MCS 7 15 65 62 ...