![Zyxel WAC6502D-E [134/238] Service access limitations](/img/pdf.png)
Zyxel WAC6502D-E [134/238] Service access limitations
![Zyxel WAC6502D-E [134/238] Service access limitations](/views2/1169035/page134/bg86.png)
Chapter 12 System
NWA5000 / WAC6000 Series User’s Guide
134
Figure 76 Secure and Insecure Service Access From the WAN
12.4.1 Service Access Limitations
A service cannot be used to access the NWA/WAC when you have disabled that service in the
corresponding screen.
12.4.2 System Timeout
There is a lease timeout for administrators. The NWA/WAC automatically logs you out if the
management session remains idle for longer than this timeout period. The management session
does not time out when a statistics screen is polling.
Each user is also forced to log in the NWA/WAC for authentication again when the reauthentication
time expires.
You can change the timeout settings in the User screens.
12.4.3 HTTPS
You can set the NWA/WAC to use HTTP or HTTPS (HTTPS adds security) for Web Configurator
sessions.
HTTPS (HyperText Transfer Protocol over Secure Socket Layer, or HTTP over SSL) is a web protocol
that encrypts and decrypts web pages. Secure Socket Layer (SSL) is an application-level protocol
that enables secure transactions of data by ensuring confidentiality (an unauthorized party cannot
read the transferred data), authentication (one party can identify the other party) and data
integrity (you know if data has been changed).
It relies upon certificates, public keys, and private keys (see Chapter 11 on page 112 for more
information).
HTTPS on the NWA/WAC is used so that you can securely access the NWA/WAC using the Web
Configurator. The SSL protocol specifies that the HTTPS server (the NWA/WAC) must always
authenticate itself to the HTTPS client (the computer which requests the HTTPS connection with the
NWA/WAC), whereas the HTTPS client only should authenticate itself when the HTTPS server
requires it to do so (select Authenticate Client Certificates in the WWW screen). Authenticate
Client Certificates is optional and if selected means the HTTPS client must send the NWA/WAC a
Содержание
- 1 a b g n ac unified access point 1
- Default login details 1
- Nwa5000 wac6000 series 1
- Nwa5121 n nwa5121 ni nwa5123 ac nwa5123 ni nwa5301 nj wac6502d e wac6502d s wac6503d s wac6553d e wac6103d i 1
- Quick start guide 1
- User s guide 1
- Important 2
- Keep this guide for future reference 2
- Note it is recommended you use the web configurator to configure the nwa wac 2
- Read carefully before use 2
- Related documentation 2
- Contents overview 3
- Technical reference 0 3
- User s guide 0 3
- Chapter 1 introduction 11 4
- Chapter 2 the web configurator 8 4
- Contents overview 4
- Part i user s guide 10 4
- Table of contents 4
- Chapter 3 dashboard 1 5
- Chapter 4 monitor 7 5
- Chapter 5 network 9 5
- Chapter 6 wireless 8 5
- Part ii technical reference 40 5
- Chapter 10 wds profile 110 6
- Chapter 7 user 0 6
- Chapter 8 ap profile 7 6
- Chapter 9 mon profile 06 6
- Chapter 11 certificates 112 7
- Chapter 12 system 29 7
- Chapter 13 log and report 54 8
- Chapter 14 file manager 67 8
- Chapter 15 diagnostics 78 8
- Chapter 16 leds 80 8
- Chapter 17 antenna switch 83 8
- Chapter 18 reboot 85 8
- Appendix a importing certificates 95 9
- Appendix b ipv6 08 9
- Appendix c customer support 17 9
- Appendix d legal information 23 9
- Chapter 19 shutdown 86 9
- Chapter 20 troubleshooting 87 9
- Index 33 9
- User s guide 10
- Introduction 11
- Overview 11
- An ap controller uses control and provisioning of wireless access points capwap see rfc 5415 to discover and configure multiple managed aps 12
- Chapter 1 introduction 12
- Features wac6502d e wac6502d s wac6503d s wac6553d e wac6103d i 12
- Management mode 12
- Nwa5000 wac6000 series user s guide 12
- Table 2 wac series comparison table 12
- The nwa wac controls network access with media access control mac address filtering and rogue access point ap detection it also provides a high level of network traffic security supporting ieee 802 x wi fi protected access 2 and wired equivalent privacy wep data encryption 12
- The nwa wac is a unified ap and can work either in standalone ap mode or in managed ap mode if the nwa wac and a zyxel ap controller such as the nxc2500 or nxc5500 are in the same subnet it will be managed by the controller automatically 12
- You can set the nwa wac to operate in either standalone ap or managed ap mode when the nwa wac is in standalone ap mode it can serve as a normal ap as an rf monitor to search for rouge aps to help eliminate network threats if it supports monitor mode and rogue aps detection or even as a root ap or a wireless repeater to establish wireless links with other aps in a wds wireless distribution system a wds is a wireless connection between two or more aps 12
- Your nwa wac is easy to install configure and use the embedded web based configurator enables simple straightforward management and maintenance see the quick start guide for how to make hardware connections 12
- Your nwa wac s business class reliability smb features and centralized wireless management make it ideally suited for advanced service delivery in mission critical networks it uses multiple bssid and vlan to provide simultaneous independent virtual aps additionally innovations in roaming technology and qos features eliminate voice call disruptions 12
- Mbssid 13
- Dual radio 14
- Note a different channel should be configured for each wlan interface to reduce the effects of radio interference 14
- Root ap 15
- Repeater 16
- Command line interface cli 17
- File transfer protocol ftp 17
- Good habits for managing the nwa wac 17
- Hardware connections 17
- Simple network management protocol snmp 17
- Ways to manage the nwa wac 17
- Web configurator 17
- Nwa5301 nj hardware 18
- Phone port 18
- Pin wire color 18
- Punch down block 18
- Uplink port 18
- Console port 19
- Phone port 19
- Rj45 pin wire color db 9 pin 20
- Chapter 1 introduction 21
- Figure 5 wac6500 series leds 21
- Led color status description 21
- Nwa5000 wac6000 series user s guide 21
- Suppression screen 21
- Table 6 wac6500 series leds 21
- The following table describes the leds 21
- Wac6502d e wac6502d s wac6503d s and wac6553d e 21
- Chapter 1 introduction 22
- Led color status description 22
- Nwa5000 wac6000 series user s guide 22
- Suppression screen 22
- Table 6 wac6500 series leds continued 22
- Wac6103d i 22
- Chapter 1 introduction 23
- Figure 6 wac6103d i leds 23
- Led color status description 23
- Nwa5000 wac6000 series user s guide 23
- Table 7 wac6103d i leds 23
- The following table describes the leds 23
- Chapter 1 introduction 24
- Led color status description 24
- Nwa5000 wac6000 series user s guide 24
- Nwa5301 nj 24
- Table 7 wac6103d i leds continued 24
- The leds automatically turn off when the nwa5301 nj is ready you can press the led on button for one second to turn on the leds again the leds will blink and turn off after two minutes 24
- Chapter 1 introduction 25
- Figure 7 nwa5301 nj leds 25
- Label color status description 25
- Nwa5000 wac6000 series user s guide 25
- Table 8 nwa5301 nj leds 25
- The following are the led descriptions for your nwa5301 nj 25
- Chapter 1 introduction 26
- Color status description 26
- Figure 8 nwa5120 series led 26
- Nwa5000 wac6000 series user s guide 26
- Nwa5121 n nwa5121 ni nwa5123 ac and nwa5123 ni 26
- Table 9 nwa5120 series led 26
- The following are the led descriptions for your nwa5120 series 26
- Chapter 1 introduction 27
- Color status description 27
- Here are some of the ways to start and stop the nwa wac 27
- Method description 27
- Nwa5000 wac6000 series user s guide 27
- Shutdown or the shutdown command before you turn off the nwa wac or remove the power not doing so can cause the firmware to become corrupt 27
- Starting and stopping the nwa wac 27
- Table 10 starting and stopping the nwa wac 27
- Table 9 nwa5120 series led continued 27
- The nwa wac does not stop or start the system processes when you apply configuration files or run shell scripts although you may temporarily lose access to network resources 27
- Access 28
- Overview 28
- The web configurator 28
- Navigating the web configurator 29
- Title bar 30
- Site map 31
- Object reference 32
- Chapter 2 the web configurator 33
- Cli messages 33
- Click clear to remove the currently displayed information 33
- Click cli to look at the cli commands sent by the web configurator these commands appear in a popup window such as the following 33
- Figure 14 cli messages 33
- Label description 33
- Navigation panel 33
- Note see the command reference guide for information about the commands 33
- Nwa5000 wac6000 series user s guide 33
- Table 13 object references 33
- The fields vary with the type of object the following table describes labels that can appear in this screen 33
- Use the menu items on the navigation panel to open screens to configure nwa wac features click the arrow in the middle of the right edge of the navigation panel to hide the navigation panel menus or drag it to resize them the following sections introduce the nwa wac s navigation panel menus and their screens 33
- Chapter 2 the web configurator 34
- Configuration menu 34
- Dashboard 34
- Figure 15 navigation panel 34
- Folder or link tab function 34
- For details on the dashboard s features see chapter 3 on page 41 34
- Monitor menu 34
- Nwa5000 wac6000 series user s guide 34
- Table 14 monitor menu screens summary 34
- Table 15 configuration menu screens summary 34
- The dashboard displays general device information system status system resource usage and interface status in widgets that you can re arrange to suit your needs 34
- The monitor menu screens display status and statistics information 34
- Use the configuration menu screens to configure the nwa wac s features 34
- Chapter 2 the web configurator 35
- Folder or link tab function 35
- Maintenance menu 35
- Nwa5000 wac6000 series user s guide 35
- Table 15 configuration menu screens summary continued 35
- Table 16 maintenance menu screens summary 35
- Use the maintenance menu screens to manage configuration and firmware files run diagnostics and reboot or shut down the nwa wac 35
- Manipulating table display 36
- Tables and lists 36
- Warning messages 36
- Chapter 2 the web configurator 38
- Here are descriptions for the most common table icons 38
- Label description 38
- Nwa5000 wac6000 series user s guide 38
- Table 17 common table icons 38
- Table 18 common table icons 38
- The tables have icons for working with table entries a sample is shown next you can often use the shift or ctrl key to select multiple entries to remove activate or deactivate 38
- Use the icons and fields at the bottom of the table to navigate to different pages of entries and control how many entries display at a time 38
- When a list of available entries displays next to a list of selected entries you can often just double click an entry to move it from one list to the other in some lists you can also use the shift or ctrl key to select multiple entries and then use the arrow button to move them to the other list 38
- Working with lists 38
- Working with table entries 38
- Technical reference 40
- Dashboard 41
- Overview 41
- What you can do in this chapter 41
- Chapter 3 dashboard 42
- Figure 18 dashboard 42
- Label description 42
- Nwa5000 wac6000 series user s guide 42
- Table 19 dashboard 42
- The following table describes the labels in this screen 42
- Chapter 3 dashboard 43
- Label description 43
- Nwa5000 wac6000 series user s guide 43
- Table 19 dashboard continued 43
- Chapter 3 dashboard 44
- Label description 44
- Nwa5000 wac6000 series user s guide 44
- Table 19 dashboard continued 44
- Chapter 3 dashboard 45
- Cpu usage 45
- Label description 45
- Nwa5000 wac6000 series user s guide 45
- Table 19 dashboard continued 45
- Use this screen to look at a chart of the nwa wac s recent cpu usage to access this screen click cpu usage in the dashboard 45
- Memory usage 46
- Monitor 47
- Overview 47
- What you can do in this chapter 47
- What you need to know 47
- Chapter 4 monitor 48
- Label description 48
- Network status 48
- Nwa5000 wac6000 series user s guide 48
- The following table describes the labels in this screen 48
- Chapter 4 monitor 49
- Label description 49
- Network status continued 49
- Nwa5000 wac6000 series user s guide 49
- Radio list 49
- The following table describes the labels in this screen 49
- Ap mode radio information 50
- Chapter 4 monitor 50
- Label description 50
- Nwa5000 wac6000 series user s guide 50
- Radio list continued 50
- This screen allows you to view a selected radio s ssid details wireless traffic statistics and station count for the preceding 24 hours to access this window select a radio and click the more information button in the radio list screen 50
- Chapter 4 monitor 52
- Label description 52
- More information 52
- Nwa5000 wac6000 series user s guide 52
- Station info 52
- Station info to access this screen 52
- Station list 52
- The following table describes the labels in this screen 52
- Chapter 4 monitor 53
- Label description 53
- Nwa5000 wac6000 series user s guide 53
- Station info 53
- The following table describes the labels in this screen 53
- Wds link info 53
- Wds link info to access this screen 53
- Ap management screen in order to detect other wireless devices in its vicinity 54
- Chapter 4 monitor 54
- Detected device 54
- Detected device to access this screen not all nwa wacs support monitor mode and rogue aps detection 54
- Label description 54
- Nwa5000 wac6000 series user s guide 54
- The following table describes the labels in this screen 54
- Wds link info 54
- Chapter 4 monitor 55
- Detected device 55
- Label description 55
- Log messages are stored in two separate logs one for regular log messages and one for debugging messages in the regular log you can look at all the log messages by selecting all logs or you can select a specific category of log messages for example user you can also look at the debugging log by selecting debug log all debugging messages have the same priority 55
- Nwa5000 wac6000 series user s guide 55
- The following table describes the labels in this screen 55
- View log 55
- Note when a log reaches the maximum number of log messages new log messages automatically overwrite existing log messages starting with the oldest existing log message first 56
- Chapter 4 monitor 57
- Label description 57
- Nwa5000 wac6000 series user s guide 57
- The following table describes the labels in this screen 57
- View log 57
- Management mode 59
- Network 59
- Overview 59
- Capwap discovery and management 60
- Managed ap finds the controller 60
- Note the ap controller needs to have a static ip address if it is a dhcp client set the dhcp server to reserve an ip address for the ap controller 60
- Note the nwa wac can be a standalone ap default or a capwap managed ap 60
- Capwap and ip subnets 61
- Notes on capwap 61
- What you can do in this chapter 61
- Chapter 5 network 62
- Each field is described in the following table 62
- Ip setting 62
- Ip setting retake screenshot 62
- Label description 62
- Nwa5000 wac6000 series user s guide 62
- Chapter 5 network 63
- Ip setting continued 63
- Label description 63
- Nwa5000 wac6000 series user s guide 63
- This section discusses how to configure the nwa wac s vlan settings 63
- Ieee 802 q tag 64
- Chapter 5 network 65
- Each field is described in the following table 65
- Label description 65
- Nwa5000 wac6000 series user s guide 65
- Ac ap controller discovery 66
- Ac discovery 66
- Chapter 5 network 66
- Check the ap controller for the nwa wac s ip address and use ftp to upload the default configuration file to the nwa wac you can get the configuration file at conf system default conf you must reboot the device after uploading the configuration file 66
- If you want to return the nwa wac to standalone ap mode you can do one of the two following options 66
- Label description 66
- Nwa5000 wac6000 series user s guide 66
- Press the reset button 66
- This section discusses how to configure the nwa wac s ac discovery ap controller settings you can have the nwa wac managed by an ap controller on your network when you do this the nwa wac can be configured only by the ap controller see section 5 on page 59 for more information on management mode and ap controller 66
- Vlan continued 66
- Ac discovery 67
- Chapter 5 network 67
- Each field is described in the following table 67
- Label description 67
- Nwa5000 wac6000 series user s guide 67
- Overview 68
- What you can do in this chapter 68
- Wireless 68
- Ap management 69
- Dynamic channel selection dcs 69
- Load balancing wireless 69
- Station wireless client 69
- What you need to know 69
- Ap management continued 71
- Chapter 6 wireless 71
- Label description 71
- Note reducing the output power also reduces the nwa wac s effective broadcast radius 71
- Note you can only apply a 2 g ap radio profile to radio 1 otherwise the first radio will not be working 71
- Nwa5000 wac6000 series user s guide 71
- Ap management continued 72
- Chapter 6 wireless 72
- Label description 72
- Mon mode 72
- Note reducing the output power also reduces the nwa wac s effective broadcast radius 72
- Note you can only apply a 5g ap radio profile to radio 2 otherwise the second radio will not be working 72
- Nwa5000 wac6000 series user s guide 72
- Use this screen to assign aps either to the rogue ap list or the friendly ap list a rogue ap is a wireless access point operating in a network s coverage area that is not under the control of the network administrator and which can potentially open up holes in a network s security 72
- Chapter 6 wireless 73
- Each field is described in the following table 73
- Label description 73
- Mon mode 73
- Mon mode to access this screen 73
- Nwa5000 wac6000 series user s guide 73
- Add edit rogue friendly list 74
- Load balancing 74
- Chapter 6 wireless 75
- Each field is described in the following table 75
- Label description 75
- Load balancing 75
- Note if you enable this function you should ensure that there are multiple aps within the broadcast radius that can accept any rejected or kicked wireless clients otherwise a wireless client attempting to connect to an overloaded ap will be disassociated permanently and never be allowed to connect 75
- Nwa5000 wac6000 series user s guide 75
- Disassociating and delaying connections 76
- Dynamic channel selection 77
- Technical reference 77
- Load balancing 78
- Overview 80
- What you can do in this chapter 80
- What you need to know 80
- Add edit user 81
- Chapter 7 user 81
- Enter a user name from 1 to 31 characters 81
- Label description 81
- Nwa5000 wac6000 series user s guide 81
- Rules for user names 81
- The following table describes the labels in this screen 81
- The user add edit screen allows you to create a new user account or edit an existing one 81
- The user name can only contain the following characters 81
- User summary 81
- Add edit a user 82
- Alphanumeric a z 0 9 there is no unicode support 82
- Chapter 7 user 82
- Dashes 82
- Here are the reserved user names 82
- Nwa5000 wac6000 series user s guide 82
- The first character must be alphabetical a z a z an underscore _ or a dash other limitations on user names are 82
- To access this screen go to the user screen and click add or edit 82
- User names are case sensitive if you enter a user bob but use bob when connecting via cifs or ftp it will use the account settings used for bob not bob 82
- User names have to be different than user group names 82
- _ underscores 82
- Add edit a user 83
- Chapter 7 user 83
- Label description 83
- Nwa5000 wac6000 series user s guide 83
- Setting 83
- The following table describes the labels in this screen 83
- This screen controls default settings login settings lockout settings and other user settings for the nwa wac 83
- Chapter 7 user 84
- Label description 84
- Nwa5000 wac6000 series user s guide 84
- Setting 84
- The following table describes the labels in this screen 84
- Chapter 7 user 85
- Edit user authentication timeout settings 85
- Label description 85
- Nwa5000 wac6000 series user s guide 85
- Setting continued 85
- Setting screen select one of the default authentication timeout settings entry and click the edit icon 85
- This screen allows you to set the default authentication timeout settings for the selected type of user account these default authentication timeout settings also control the settings for any existing user accounts that are set to use the default settings you can still manually configure any user account s authentication timeout settings 85
- Chapter 7 user 86
- Edit user authentication timeout settings 86
- Label description 86
- Nwa5000 wac6000 series user s guide 86
- The following table describes the labels in this screen 86
- Ap profile 87
- Overview 87
- What you can do in this chapter 87
- What you need to know 87
- Ieee 802 x 88
- Note you can have a maximum of 32 radio profiles on the nwa wac 88
- Add edit radio profile 89
- Chapter 8 ap profile 89
- Label description 89
- Nwa5000 wac6000 series user s guide 89
- Radio continued 89
- This screen allows you to create a new radio profile or edit an existing one to access this screen click the add button or select a radio profile from the list and click the edit button 89
- Add edit profile 90
- Chapter 8 ap profile 90
- Label description 90
- Nwa5000 wac6000 series user s guide 90
- The following table describes the labels in this screen 90
- Add edit profile continued 91
- Chapter 8 ap profile 91
- Label description 91
- Nwa5000 wac6000 series user s guide 91
- Add edit profile continued 92
- Chapter 8 ap profile 92
- Label description 92
- Nwa5000 wac6000 series user s guide 92
- Add edit profile continued 93
- Chapter 8 ap profile 93
- Label description 93
- Nwa5000 wac6000 series user s guide 93
- Ssid list 93
- The ssid screens allow you to configure three different types of profiles for your networked aps an ssid list which can assign specific ssid configurations to your aps a security list which can assign specific encryption methods to the aps when allowing wireless clients to connect to them and a mac filter list which can limit connections to an ap based on wireless clients mac addresses 93
- This screen allows you to create and manage ssid configurations that can be used by the aps an ssid or service set identifier is basically the name of the wireless network to which a wireless 93
- Add edit ssid profile 94
- Chapter 8 ap profile 94
- Client can connect the ssid appears as readable text to any device capable of scanning for wireless frequencies such as the wifi adapter in a laptop and is displayed as the wireless network name when a person makes a connection to it 94
- Label description 94
- Note you can have a maximum of 32 ssid profiles on the nwa wac 94
- Nwa5000 wac6000 series user s guide 94
- Ssid list 94
- The following table describes the labels in this screen 94
- This screen allows you to create a new ssid profile or edit an existing one to access this screen click the add button or select a ssid profile from the list and click the edit button 94
- Add edit ssid profile 95
- Chapter 8 ap profile 95
- Label description 95
- Note it is highly recommended that you create security profiles for all of your ssids to enhance your network security 95
- Nwa5000 wac6000 series user s guide 95
- The following table describes the labels in this screen 95
- Add edit ssid profile continued 96
- Chapter 8 ap profile 96
- Label description 96
- Note you can have a maximum of 32 security profiles on the nwa wac 96
- Nwa5000 wac6000 series user s guide 96
- Security list 96
- This screen allows you to manage wireless security configurations that can be used by your ssids wireless security is implemented strictly between the ap broadcasting the ssid and the stations that are connected to it 96
- Add edit security profile 97
- Note this screen s options change based on the security mode selected only the default screen is displayed here 97
- Add edit security profile 99
- Chapter 8 ap profile 99
- Label description 99
- Nwa5000 wac6000 series user s guide 99
- The following table describes the labels in this screen 99
- Add edit security profile continued 100
- Chapter 8 ap profile 100
- Label description 100
- Nwa5000 wac6000 series user s guide 100
- Add edit mac filter profile 101
- Mac filter list 101
- Note each mac filtering profile can include a maximum of 512 mac addresses 101
- Note you can have a maximum of 32 mac filtering profiles on the nwa wac 101
- Add edit mac filter profile 102
- Chapter 8 ap profile 102
- Label description 102
- Layer 2 isolation is used to prevent wireless clients associated with your nwa wac from communicating with other wireless clients aps computers or routers in a network 102
- Layer 2 isolation list 102
- Nwa5000 wac6000 series user s guide 102
- The following table describes the labels in this screen 102
- Note intra bss traffic blocking is activated when you enable layer 2 isolation 103
- Add edit layer 2 isolation profile 104
- Chapter 8 ap profile 104
- Label description 104
- Layer 2 isolation list continued 104
- Note you need to know the mac address of each wireless client ap computer or router that you want to allow to communicate with the nwa wac s wireless clients 104
- Nwa5000 wac6000 series user s guide 104
- The following table describes the labels in this screen 104
- This screen allows you to create a new layer 2 isolation profile or edit an existing one to access this screen click the add button or select a layer 2 isolation profile from the list and click the edit button 104
- Add edit layer 2 isolation profile continued 105
- Chapter 8 ap profile 105
- Label description 105
- Nwa5000 wac6000 series user s guide 105
- Mon profile 106
- Overview 106
- What you can do in this chapter 106
- Add edit mon profile 107
- Chapter 9 mon profile 107
- Label description 107
- Mon profile continued 107
- Nwa5000 wac6000 series user s guide 107
- This screen allows you to create a new monitor mode profile or edit an existing one to access this screen click the add button or select and existing monitor mode profile and click the edit button 107
- Add edit mon profile 108
- Chapter 9 mon profile 108
- Label description 108
- Nwa5000 wac6000 series user s guide 108
- Rogue aps 108
- Rogue aps are wireless access points operating in a network s coverage area that are not under the control of the network s administrators and can open up holes in a network s security attackers can take advantage of a rogue ap s weaker or non existent security to gain access to the network or set up their own rogue aps in order to capture information from wireless clients if a scan reveals a rogue ap you can use commercially available software to physically locate it 108
- Technical reference 108
- The following section contains additional technical information about the features described in this chapter 108
- The following table describes the labels in this screen 108
- Friendly aps 109
- Overview 110
- Wds profile 110
- What you can do in this chapter 110
- Add edit wds profile 111
- Chapter 10 wds profile 111
- Label description 111
- Nwa5000 wac6000 series user s guide 111
- The following table describes the labels in this screen 111
- This screen allows you to create a new wds profile or edit an existing one to access this screen click the add button or select and existing profile and click the edit button 111
- Certificates 112
- Overview 112
- What you can do in this chapter 112
- What you need to know 112
- Advantages of certificates 113
- Certificate file formats 113
- Factory default certificate 113
- Self signed certificates 113
- Note be careful not to convert a binary file to text during the transfer process it is easy for this to occur since many programs use text files by default 114
- Verifying a certificate 114
- Chapter 11 certificates 115
- Label description 115
- My certificates 115
- My certificates to open this screen this is the nwa wac s summary list of certificates and certification requests 115
- Nwa5000 wac6000 series user s guide 115
- The following table describes the labels in this screen 115
- Add my certificates 116
- Chapter 11 certificates 116
- Label description 116
- My certificates and then the add icon to open the add my certificates screen use this screen to have the nwa wac create a self signed certificate enroll a certificate with a certification authority or generate a certification request 116
- My certificates continued 116
- Nwa5000 wac6000 series user s guide 116
- Chapter 11 certificates 118
- Label description 118
- Nwa5000 wac6000 series user s guide 118
- The following table describes the labels in this screen 118
- Add continued 119
- Chapter 11 certificates 119
- If you configured the add my certificates screen to have the nwa wac enroll a certificate and the certificate enrollment is not successful you see a screen with a return button that takes you back to the add my certificates screen click return and check your information in the add my certificates screen make sure that the certification authority information is correct and that your internet connection is working properly if you want the nwa wac to enroll a certificate online 119
- Label description 119
- Nwa5000 wac6000 series user s guide 119
- Edit my certificates 120
- Chapter 11 certificates 121
- Label description 121
- Nwa5000 wac6000 series user s guide 121
- The following table describes the labels in this screen 121
- Chapter 11 certificates 122
- Import certificates 122
- Import to open the my certificate import screen follow the instructions in this screen to save an existing certificate to the nwa wac 122
- Label description 122
- Note you can import a certificate that matches a corresponding certification request that was generated by the nwa wac you can also import a certificate in pkcs 12 format including the certificate s public and private keys 122
- Nwa5000 wac6000 series user s guide 122
- The certificate you import replaces the corresponding request in the my certificates screen 122
- You must remove any spaces in the certificate s filename before you can import it 122
- Chapter 11 certificates 123
- Import 123
- Label description 123
- Nwa5000 wac6000 series user s guide 123
- The following table describes the labels in this screen 123
- Trusted certificates 123
- Trusted certificates to open the trusted certificates screen this screen displays a summary list of certificates that you have set the nwa wac to accept as trusted the nwa wac also accepts any valid certificate signed by a certificate on this list as being trustworthy thus you do not need to import any certificate that is signed by one of these certificates 123
- Chapter 11 certificates 124
- Label description 124
- Nwa5000 wac6000 series user s guide 124
- The following table describes the labels in this screen 124
- Trusted certificates 124
- Edit trusted certificates 125
- Chapter 11 certificates 126
- Label description 126
- Nwa5000 wac6000 series user s guide 126
- The following table describes the labels in this screen 126
- Chapter 11 certificates 127
- Edit continued 127
- Import to open the import trusted certificates screen follow the instructions in this screen to save a trusted certificate to the nwa wac 127
- Import trusted certificates 127
- Label description 127
- Note you must remove any spaces from the certificate s filename before you can import the certificate 127
- Nwa5000 wac6000 series user s guide 127
- Technical reference 128
- Host name 129
- Overview 129
- System 129
- What you can do in this chapter 129
- Date and time 130
- Chapter 12 system 131
- Date time 131
- Label description 131
- Nwa5000 wac6000 series user s guide 131
- The following table describes the labels in this screen 131
- Chapter 12 system 132
- Click the sync now button to get the time and date from the time server you specified in the time server address field 132
- Date time continued 132
- Figure 75 loading 132
- Label description 132
- Nwa5000 wac6000 series user s guide 132
- Pre defined ntp time servers list 132
- Table 65 default time servers 132
- The nwa wac continues to use the following pre defined list of ntp time servers if you do not specify a time server or it cannot synchronize with the time server you specified 132
- Time server synchronization 132
- When the loading message appears you may have to wait up to one minute 132
- When the nwa wac uses the pre defined list of ntp time servers it randomly selects one server and tries to synchronize with it if the synchronization fails then the nwa wac goes through the rest of the list in order from the first one tried until either it is successful or all the pre defined ntp time servers have been tried 132
- When you turn on the nwa wac for the first time the date and time start at 2003 01 01 00 00 00 the nwa wac then attempts to synchronize with one of the following pre defined list of network time protocol ntp time servers 132
- Www overview 133
- Service access limitations 134
- System timeout 134
- Configuring www service control 135
- Note if you disable http in the www screen then the nwa wac blocks all http connection attempts 135
- Chapter 12 system 136
- Https example 136
- If you haven t changed the default https port on the nwa wac then in your browser enter https nwa wac ip address as the web site address where nwa wac ip address is the ip address or domain name of the nwa wac you wish to access 136
- Internet explorer warning messages 136
- Label description 136
- Nwa5000 wac6000 series user s guide 136
- Service control 136
- The following table describes the labels in this screen 136
- When you attempt to access the nwa wac https server you will see the error message shown in the following screen 136
- Mozilla firefox warning messages 137
- Avoiding browser warning messages 138
- Enrolling and importing ssl client certificates 139
- Installing a personal certificate 140
- Installing the ca s certificate 140
- Using a certificate when accessing the nwa wac 143
- How ssh works 144
- Ssh implementation on the nwa wac 145
- Chapter 12 system 146
- Configuring ssh 146
- Examples of secure telnet using ssh 146
- Label description 146
- Note it is recommended that you disable telnet and ftp when you configure ssh for secure connections 146
- Nwa5000 wac6000 series user s guide 146
- Requirements for using ssh 146
- Ssh to open the following screen use this screen to configure your nwa wac s secure shell settings 146
- The following table describes the labels in this screen 146
- This section shows two examples using a command interface and a graphical interface ssh client program to remotely access the nwa wac the configuration and connection steps are similar for most ssh client programs refer to your ssh client program user s guide 146
- You must install an ssh client program on a client computer windows or linux operating system that is used to connect to the nwa wac over ssh 146
- Example 1 microsoft windows 147
- Example 2 linux 147
- Telnet 148
- Chapter 12 system 149
- Label description 149
- Nwa5000 wac6000 series user s guide 149
- Simple network management protocol is a protocol used for exchanging management information between network devices your nwa wac supports snmp agent functionality which allows a manager station to manage and monitor the nwa wac through the network the nwa wac supports snmp version one snmpv1 version two snmpv2c and version three snmpv3 the next figure illustrates an snmp management operation 149
- The following table describes the labels in this screen 149
- Supported mibs 150
- Configuring snmp 151
- Snmp traps 151
- Adding or editing an snmpv3 user profile 152
- Chapter 12 system 152
- Label description 152
- Nwa5000 wac6000 series user s guide 152
- Snmp screen s add button or select a snmpv3 user profile from the list and click the edit button 152
- The following table describes the labels in this screen 152
- Chapter 12 system 153
- Label description 153
- Nwa5000 wac6000 series user s guide 153
- The following table describes the labels in this screen 153
- Email daily report 154
- Log and report 154
- Overview 154
- What you can do in this chapter 154
- Chapter 13 log and report 156
- Email daily report 156
- Label description 156
- Log setting 156
- Nwa5000 wac6000 series user s guide 156
- The following table describes the labels in this screen 156
- The nwa wac provides a system log and supports e mail profiles and remote syslog servers the system log is available on the view log screen the e mail profiles are used to mail log messages to the specified destinations and the other four logs are stored on specified syslog servers 156
- View log screen or regular e mailing later and an alert is e mailed immediately usually alerts are used for events that require more serious attention such as system errors and attacks 156
- Log setting 157
- Chapter 13 log and report 158
- Edit system log settings 158
- Label description 158
- Log setting continued 158
- Nwa5000 wac6000 series user s guide 158
- This screen controls the detailed settings for each log in the system log which includes the e mail profiles select a system log entry in the log setting screen and click the edit icon 158
- Chapter 13 log and report 159
- Edit system log setting 159
- Label description 159
- Nwa5000 wac6000 series user s guide 159
- The following table describes the labels in this screen 159
- Chapter 13 log and report 160
- Edit system log setting continued 160
- Label description 160
- Nwa5000 wac6000 series user s guide 160
- Chapter 13 log and report 161
- Edit remote server 161
- Edit system log setting continued 161
- Label description 161
- Nwa5000 wac6000 series user s guide 161
- This screen controls the settings for each log in the remote server syslog select a remote server entry in the log setting screen and click the edit icon 161
- Active log summary 163
- Chapter 13 log and report 163
- Edit remote server 163
- Label description 163
- Nwa5000 wac6000 series user s guide 163
- The following table describes the labels in this screen 163
- This screen allows you to view and to edit what information is included in the system log e mail profiles and remote servers at the same time it does not let you change other log settings for example where and how often log information is e mailed or remote server names to access this screen go to the log setting screen and click the active log summary button 163
- Active log summary 165
- Chapter 13 log and report 165
- Label description 165
- Nwa5000 wac6000 series user s guide 165
- The following table describes the fields in this screen 165
- Active log summary continued 166
- Chapter 13 log and report 166
- Label description 166
- Nwa5000 wac6000 series user s guide 166
- File manager 167
- Overview 167
- What you can do in this chapter 167
- What you need to know 167
- Comments in configuration files or shell scripts 168
- Note exit or must follow sub commands if it is to make the nwa wac exit sub command mode 168
- Configuration file 169
- Configuration file flow at restart 169
- Errors in configuration files or shell scripts 169
- Chapter 14 file manager 170
- Configuration file 170
- Do not turn off the nwa wac while configuration file upload is in progress 170
- Label description 170
- Nwa5000 wac6000 series user s guide 170
- The following table describes the labels in this screen 170
- Chapter 14 file manager 171
- Configuration file continued 171
- Label description 171
- Nwa5000 wac6000 series user s guide 171
- Chapter 14 file manager 172
- Configuration file continued 172
- Connect your computer to the nwa wac 172
- Enter your password as requested 172
- Enter your user name when prompted 172
- Example of configuration file download using ftp 172
- Label description 172
- Nwa5000 wac6000 series user s guide 172
- The following example gets a configuration file named startup config conf from the nwa wac and saves it on the computer 172
- The ftp server ip address of the nwa wac in standalone ap mode is 192 68 so set your computer to use a static ip address from 192 68 192 68 54 172
- Use an ftp client on your computer to connect to the nwa wac for example in the windows command prompt type ftp 192 68 keep the console session connected in order to see when the firmware recovery finishes 172
- Firmware package 173
- Note the web configurator is the recommended method for uploading firmware you only need to use the command line interface if you need to recover the firmware see the cli reference guide for how to determine if you need to recover the firmware and how to recover it 173
- After five minutes log in again and check your new firmware version in the dashboard screen 174
- After you see the firmware upload in process screen wait two minutes before logging into the nwa wac again 174
- Chapter 14 file manager 174
- Figure 102 network temporarily disconnected 174
- Firmware package 174
- Label description 174
- Note the nwa wac automatically reboots after a successful upload 174
- Nwa5000 wac6000 series user s guide 174
- The firmware update can take up to five minutes do not turn off or reset the nwa wac while the firmware update is in progress 174
- The following table describes the labels in this screen 174
- The nwa wac automatically restarts causing a temporary network disconnect in some operating systems you may see the following icon on your desktop 174
- Example of firmware upload using ftp 175
- Shell script 175
- Chapter 14 file manager 176
- Each field is described in the following table 176
- Label description 176
- Note you should include write commands in your scripts if you do not use the write command the changes will be lost when the nwa wac restarts you could use multiple write commands in a long script 176
- Nwa5000 wac6000 series user s guide 176
- Shell script 176
- Shell script to open this screen use the shell script screen to store name download upload and run shell script files you can store multiple shell script files on the nwa wac at the same time 176
- Chapter 14 file manager 177
- Label description 177
- Nwa5000 wac6000 series user s guide 177
- Shell script continued 177
- Diagnostics 178
- Overview 178
- What you can do in this chapter 178
- Chapter 15 diagnostics 179
- Diagnostics 179
- Label description 179
- Nwa5000 wac6000 series user s guide 179
- The following table describes the labels in this screen 179
- Overview 180
- Suppression screen 180
- What you can do in this chapter 180
- Locator screen 181
- Note the locator feature is not affected by the suppression setting 181
- Chapter 16 leds 182
- Label description 182
- Locator 182
- Nwa5000 wac6000 series user s guide 182
- The following table describes fields in the above screen 182
- Antenna switch 183
- Antenna switch screen 183
- Overview 183
- What you need to know 183
- Overview 185
- Reboot 185
- What you need to know 185
- Overview 186
- Shutdown 186
- What you need to know 186
- Overview 187
- Power hardware connections and led 187
- Troubleshooting 187
- I cannot see or access the login screen in the web configurator 188
- I forgot the ip address for the nwa wac 188
- Nwa wac access and login 188
- I can see the login screen but i cannot log in to the nwa wac 189
- I cannot access the internet 189
- I cannot use ftp to upload download the configuration file i cannot use ftp to upload new firmware 189
- I forgot the password 189
- Internet access 189
- I cannot access the internet anymore i had access to the internet with the nwa wac but my internet connection is not available anymore 190
- The internet connection is slow or intermittent 190
- Hackers have accessed my wep encrypted wireless lan 191
- I cannot access the nwa wac or ping any computer from the wlan 191
- I cannot get a certificate to import into the nwa wac 191
- The wireless security is not following the re authentication timer setting i specified 191
- Wireless connections 191
- I can only see newer logs older logs are missing 192
- I cannot get the firmware uploaded using the commands 192
- Note be careful not to convert a binary file to text during the transfer process it is easy for this to occur since many programs use text files by default 192
- Note exit or must follow sub commands if it is to make the nwa wac exit sub command mode 192
- The commands in my configuration file or shell script are not working properly 192
- Wireless clients are not being load balanced among my aps 192
- How do i remove the wac6500 series indoor ap from its mounting bracket 193
- Radio list screen there is no load balancing indicator associated with any aps assigned to the load balancing task 193
- Getting more troubleshooting help 194
- Note this procedure removes the current configuration 194
- Resetting the nwa wac 194
- Importing certificates 195
- Ppendi 195
- Installing a stand alone certificate file in internet explorer 200
- Removing a certificate in internet explorer 201
- Firefox 203
- Installing a stand alone certificate file in firefox 204
- Removing a certificate in firefox 205
- Ppendi 208
- Global address 209
- Loopback address 209
- Multicast address 209
- Unspecified address 209
- Eui 64 210
- Interface id 210
- Stateless autoconfiguration 210
- Subnet masking 210
- Dhcp relay agent 211
- Dhcpv6 211
- Identity association 211
- Rebind 211
- Renew rebind 211
- Renew to s1 211
- Icmpv6 212
- Ipv6 cache 212
- Neighbor discovery protocol ndp 212
- Prefix delegation 212
- Mld messages 213
- Multicast listener discovery 213
- Example enabling dhcpv6 on windows xp 214
- Example enabling ipv6 on windows xp 2003 vista 214
- Example enabling ipv6 on windows 7 215
- Customer support 217
- Ppendi 217
- Austria 218
- Belarus 218
- Europe 218
- Malaysia 218
- Pakistan 218
- Philippines 218
- Singapore 218
- Taiwan 218
- Thailand 218
- Vietnam 218
- Belgium 219
- Bulgaria 219
- Czech republic 219
- Denmark 219
- Estonia 219
- Finland 219
- France 219
- Germany 219
- Hungary 219
- Latvia 220
- Lithuania 220
- Netherlands 220
- Norway 220
- Poland 220
- Romania 220
- Russia 220
- Slovakia 220
- Sweden 220
- Switzerland 220
- Argentina 221
- Brazil 221
- Ecuador 221
- Israel 221
- Latin america 221
- Middle east 221
- Turkey 221
- Ukraine 221
- Africa 222
- Australia 222
- North america 222
- Oceania 222
- South africa 222
- Legal information 223
- Ppendi 223
- Appendix d legal information 224
- Can ices 3 b nmb 3 b 224
- Cet équipement est conforme aux limites d exposition aux rayonnements ic établies pour un environnement non contrôlé cet équipement doit être installé et utilisé avec un minimum de 20 cm nwa5123 ac wac6553d e de distance entre la source de rayonnement et votre corps 224
- Déclaration d exposition aux radiations 224
- Industry canada ices statement 224
- Industry canada radiation exposure statement 224
- Industry canada rss gen rss 247 statement 224
- Nwa5000 wac6000 series user s guide 224
- This device complies with industry canada license exempt rss standard s operation is subject to the following two conditions 1 this device may not cause interference and 2 this device must accept any interference including interference that may cause undesired operation of the device under industry canada regulations this radio transmitter may only operate using an antenna of a type and maximum or lesser gain approved for the transmitter by industry canada to reduce potential radio interference to other users the antenna type and its gain should be so chosen that the equivalent isotropically radiated power e i r p is not more than that necessary for successful communication this radio transmitter 2468c nwa5123ac nwa5123 ac 2468c wac6502d e wac6502d s wac6502d e 2468c wac6503d s wac6503d s 2468c wac6553d e wac6553d e 2468c wac6103di wac6103d i has been approved by industry canada to operate with the antenna types listed below with the maximum permissible gain and required antenna impeda 224
- This equipment complies with ic radiation exposure limits set forth for an uncontrolled environment this equipment should be installed and operated with a minimum distance of 20 cm nwa5123 ac wac6553d e between the radiator and your body 224
- Appendix d legal information 225
- Avertissement 225
- Caution 225
- Declaration of conformity with regard to eu directive 1999 5 ec r tte directive 225
- European union 225
- Nwa5000 wac6000 series user s guide 225
- Appendix d legal information 226
- National restrictions 226
- Nwa5000 wac6000 series user s guide 226
- Appendix d legal information 227
- Instructions d installation professionnelle wac6553d e 227
- List of national codes 227
- Nwa5000 wac6000 series user s guide 227
- Professional installation instruction wac6553d e 227
- Appendix d legal information 228
- Environment statement 228
- Erp energy related products 228
- European union disposal and recycling information 228
- Nwa5000 wac6000 series user s guide 228
- Safety warnings 228
- Weee directive 228
- Appendix d legal information 229
- Nwa5000 wac6000 series user s guide 229
- Environmental product declaration 230
- Appendix d legal information 231
- Nwa5000 wac6000 series user s guide 231
- Viewing certifications 231
- 台灣 231
- Appendix d legal information 232
- Nwa5000 wac6000 series user s guide 232
- Open source licenses 232
- Registration 232
- Zyxel limited warranty 232
- Symbols 233
Похожие устройства
- Zyxel WAC6502D-E Инструкция по установке
- Zyxel WAC6502D-E Технические характеристики
- Zyxel WAC6553D-E Инструкция по эксплуатации
- Zyxel WAC6553D-E Технические характеристики
- Zyxel WAC6553D-E Инструкция по установке
- Zyxel NWA1123-AC Инструкция по эксплуатации
- Zyxel NWA1123-AC Инструкция по установке
- Zyxel NWA1123-AC Технические характеристики
- Zyxel NWA1123-NI Инструкция по эксплуатации
- Zyxel NWA1123-NI Технические характеристики
- Zyxel NWA1123-NI Инструкция по установке
- Zyxel NWA1121-NI Инструкция по эксплуатации
- Zyxel NWA1121-NI Инструкция по установке
- Zyxel NWA1121-NI Технические характеристики
- HP color laserjet enterprise 700 m750dn Инструкция по эксплуатации
- HP 15-d001sr, f7r84ea Инструкция по эксплуатации
- HP envy 15-j152sr, f7s86ea Инструкция по эксплуатации
- HP dl160gen8 Инструкция по эксплуатации
- HP dl380egen8 Инструкция по эксплуатации
- HP officejet pro 8620 (a7f65a) Инструкция по эксплуатации