![D-Link DWC-1000 [71/368] Enableordisablethesecurityoptionsasdesired refertothetablebelow andclick save](/img/pdf.png)
D-Link DWC-1000 [71/368] Enableordisablethesecurityoptionsasdesired refertothetablebelow andclick save
![D-Link DWC-1000 [71/368] Enableordisablethesecurityoptionsasdesired refertothetablebelow andclick save](/views2/1203424/page71/bg47.png)
D-Link DWC-1000 User Manual 71
Section 6 - Securing Your Network
2. Enableordisablethesecurityoptionsasdesired(refertothetablebelow)andclickSave.
Field Description
Administrator Congured
Rogue AP
IfthesourceMACaddressisinthevalid‐APdatabaseonthecontrollerorontheRADIUS
server,andtheAPtypeismarkedasRogue,thentheAPstateisRogue.
Managed SSID from an
Unknown AP
ThistestcheckswhetheranunknownAPisusingthemanagednetworkSSID.Ahacker
maysetupanAPwithmanagedSSIDtofoolusersintoassociatingwiththeAPand
revealing password and other secure information.
Administrators with large networks who are using multiple clusters should either use
dierentnetworknamesineachclusterordisablethistest.Otherwise,ifanAPinthe
rstclusterdetectsAPsinthesecondclustertransmittingthesameSSIDasAPsinthe
rstclusterthentheseAPsarereportedasrogues.
Managed SSID from a Fake
Managed AP
AhackermaysetupanAPwiththesameMACaddressasoneofthemanagedAPsand
congure it to send one of the managed SSIDs. This test checks for a vendor eld in the
beaconswhichisalwaystransmittedbymanagedAPs.Ifthevendoreldisnotpresent,
thentheAPisidentiedasafakeAP.
AP without a SSID
SSIDisanoptionaleldinbeaconframes.ToavoiddetectionahackermaysetupanAP
with the managed network SSID, but disable SSID transmission in the beacon frames.
TheAP wouldstillsend proberesponsestoclientsthatsendproberequestsforthe
managedSSIDfoolingtheclientsintoassociatingwiththehacker’sAP.
ThistestdetectsandagsAPsthattransmitbeaconswithouttheSSIDeld.Thetest
is automatically disabled if any of the radios in the proles are congured not to send
SSID eld, which is not recommended because it does not provide any real security and
disables this test.
Fake Managed AP on an
Invalid Channel
ThistestdetectsrogueAPsthattransmitbeaconsfromthesourceMACaddressofone
ofthemanagedAPs,butondierentchannelfromwhichtheAPissupposedtobe
operating.
Managed SSID Detection with
Incorrect Security
DuringRFScantheAPexaminesbeaconframesreceivedfromotherAPsanddetermines
whetherthedetectedAPisadvertisinganopennetwork,WEP,orWPA.
IftheSSIDreportedintheRFScanisoneofthemanagednetworksanditscongured
securitynotmatchthedetectedsecuritythenthistestmarkstheAPasrogue.
Invalid SSID from a Managed
AP
ThistestcheckswhetheraknownmanagedAPissendinganunexpectedSSID.The
SSIDreportedintheRFScaniscomparedtothelistofallconguredSSIDsthatare
usedbytheproleassignedtothemanagedAP.IfthedetectedSSIDdoesn’tmatchany
conguredSSIDthentheAPismarkedasrogue.
AP is Operating on an Illegal
Channel
The purpose of this test is to detect hackers or incorrectly congured devices that are
operating on channels that are not legal in the country where the wireless system is set up.
Note: In order for the wireless system to detect this threat, the wireless network must contain
one or more radios that operate in sentry mode.
Standalone AP with
Unexpected Conguration
Ifthe APisclassied asaknownstandaloneAP,thenthe controllercheckswhether
the AP is operating with the expected conguration parameters.You congure the
expectedparametersforthestandaloneAPinthelocalorRADIUSValidAPdatabase.
This test may detect network misconguration as well as potential intrusion attempts.
The following parameters are checked:
• ChannelNumber
• SSID
• SecurityMode
• WDSMode
• Presenceonawirednetwork
Содержание
- Dwc 1000 1
- User manual 1
- Wireless controller 1
- Manual revisions 2
- Preface 2
- Trademarks 2
- Safety cautions 3
- Safety instructions 3
- Protecting against electrostatic discharge 5
- Table of contents 6
- Introduction 14
- Product overview 14
- Features and benefits 16
- Package contents 17
- Required tools and information 17
- Front panel 18
- Rear panel 18
- Installation 19
- Selecting a location 19
- Unpacking 19
- Rack mount 20
- Connecting the wireless controller 21
- Basic configuration 22
- Log in to the web management interface 23
- Web management interface layout 25
- Standard web management interface features 26
- Basic configuration procedures 27
- Step 1 enable dhcp server optional 28
- Step 2 configure country code 29
- Step 3 select aps to be managed 30
- D link dwc 1000 user manual 31 31
- Field description 31
- Repeatsteps2and3foreachadditionalaccesspointyouwantthewirelesscontrollertomanage 31
- Section 3 basic configuration 31
- Step 4 change the ssid and set up security 32
- Completethesecurityfieldsonthessidprofileconfigurationpage 33
- D link dwc 1000 user manual 33 33
- Field description 33
- Section 3 basic configuration 33
- Table 3 1 wep page settings 33
- D link dwc 1000 user manual 34 34
- Field description 34
- Section 3 basic configuration 34
- Table 3 2 wpa wpa2 page settings 34
- Step 5 select mac authentication mode 37
- Step 6 confirm access point profile is associated 39
- Step 7 configure captive portal settings 40
- C complete the fields in the table below and click save 42
- D link dwc 1000 user manual 42 42
- Field description 42
- Section 3 basic configuration 42
- C complete the fields in the table below and click save the message operation succeeded will appear 46
- D link dwc 1000 user manual 46 46
- Field description general details 46
- Header details 46
- Section 3 basic configuration 46
- Step 8 use ssid with radius sever as authenticator 48
- Step 9 configure guest management 49
- Basic limit by duration 52
- Basic limit by usage 52
- D link dwc 1000 user manual 52 52
- Field description profile details 52
- Section 3 basic configuration 52
- Step 10 configure a byod environment 56
- Where to go from here 62
- Advanced wlan configuration 63
- Wlan general settings 64
- D link dwc 1000 user manual 65 65
- Field description wlan global setup 65
- Section 4 advanced wlan configuration 65
- Country configuration 66
- D link dwc 1000 user manual 66 66
- Field description ap validation 66
- Section 4 advanced wlan configuration 66
- Channel plan and power settings 67
- Configure channel plan 67
- Configure power settings 69
- Configure ap wids settings 70
- D link dwc 1000 user manual 71 71
- Enableordisablethesecurityoptionsasdesired refertothetablebelow andclick save 71
- Field description 71
- Section 6 securing your network 71
- D link dwc 1000 user manual 72 72
- Field description 72
- Section 6 securing your network 72
- Configure client wids settings 73
- D link dwc 1000 user manual 74 74
- Enableordisablethesecurityoptionsasdesired refertothetablebelow andclick save 74
- Field description 74
- Section 6 securing your network 74
- Configure distributed tunnel 75
- Distributed tunnel 75
- Deleting images 76
- Upload images 76
- Wlan visualization 76
- Launch 77
- Ap discovery methods 78
- L2 vlan discovery 78
- Configure l2 vlan discovery 79
- Configure l3 ip discovery 80
- L3 ip discovery 80
- Add a valid ap 81
- Managed aps 81
- D link dwc 1000 user manual 82 82
- Field description 82
- Managedmode 82
- Roguemode 82
- Section 4 advanced wlan configuration 82
- Standalonemode 82
- Add a ap from discovered ap list 83
- Manual change channel and power of managed ap 84
- Configure ap debug mode 85
- Configure ap provisioning 86
- D link dwc 1000 user manual 87 87
- Enterthenewprimaryaddress newbackupaddressandapprofile 4 click save 87
- Section 4 advanced wlan configuration 87
- Ap profiles 88
- Configure ap profile 88
- Complete the fields in the table below and click save 89
- Configure ap profile qos radio 1 89
- Configure ap profile qos radio 2 89
- Configure ap profile radio 1 89
- Configure ap profile radio 2 89
- D link dwc 1000 user manual 89 89
- Field description ap profile global configuration 89
- Section 4 advanced wlan configuration 89
- Configure ap profile radio 90
- Complete the fields in the table below and click save 91
- D link dwc 1000 user manual 91 91
- Field description 91
- Radio configuration 91
- Section 4 advanced wlan configuration 91
- D link dwc 1000 user manual 92 92
- Field description 92
- Section 4 advanced wlan configuration 92
- D link dwc 1000 user manual 93 93
- Field description 93
- Section 4 advanced wlan configuration 93
- D link dwc 1000 user manual 94 94
- Field description 94
- Section 4 advanced wlan configuration 94
- Channel 95
- D link dwc 1000 user manual 95 95
- Field description 95
- Section 4 advanced wlan configuration 95
- Configure ap profile ssid 96
- Configure ap profile qos 97
- Ap edca parameters 98
- Complete the fields below and click save 98
- D link dwc 1000 user manual 98 98
- Field description 98
- Section 4 advanced wlan configuration 98
- D link dwc 1000 user manual 99 99
- Field description 99
- General parameters 99
- Section 4 advanced wlan configuration 99
- Station edca parameters 99
- D link dwc 1000 user manual 100 100
- Field description 100
- Section 4 advanced wlan configuration 100
- Configure ssid profiles 101
- Ssid profiles 101
- Complete the fields in the table below and click save 102
- D link dwc 1000 user manual 102 102
- Field description 102
- Section 4 advanced wlan configuration 102
- D link dwc 1000 user manual 103 103
- Field description 103
- Section 4 advanced wlan configuration 103
- D link dwc 1000 user manual 104 104
- Field description 104
- Section 4 advanced wlan configuration 104
- Wireless distribution system wds 105
- Configure wds managed ap 107
- Configure wds managed ap 108
- Click add new wds manage ap 109
- Complete the fields in the table below and click save 109
- D link dwc 1000 user manual 109 109
- Field description 109
- Section 4 advanced wlan configuration 109
- Select the id associated with the group to configure 109
- Configure wds ap link 110
- Configure peer group 111
- Peer group 111
- Click start sync for all peers to synchronize the settings to all controllers or synchronize one of the peer group by right clicking start sync 112
- D link dwc 1000 user manual 112 112
- Peer status peerstatuslistwillappear 112
- Section 4 advanced wlan configuration 112
- Synchronize peer group 112
- Ap firmware download 113
- D link dwc 1000 user manual 114 114
- Field description 114
- Section 4 advanced wlan configuration 114
- Afterthedownloadbegins theapfirmwarestatustabwilldisplayinformationabouttheupgrade refertothe table below 115
- Ap firmware status 115
- Apfirmwarestatus 115
- D link dwc 1000 user manual 115 115
- Field description code download status 115
- Section 4 advanced wlan configuration 115
- Ap firmware status 116
- D link dwc 1000 user manual 116 116
- Section 4 advanced wlan configuration 116
- Advanced network configuration 117
- Ip mode 118
- Ipv4 lan settings 119
- Lan configuration 119
- Complete the fields in the table below and click save 120
- D link dwc 1000 user manual 120 120
- Default route 120
- Dhcp setup 120
- Dns host name mapping 120
- Field description ip address setup 120
- Lan proxy 120
- Section 5 advanced network configuration 120
- Ipv6 lan settings 121
- D link dwc 1000 user manual 122 122
- Field description dhcpv6 122
- If dhcpv6 is enabled on 122
- Section 5 advanced network configuration 122
- Toggleontoenabledhcpv6 itisdisableindefault 122
- Ipv6 address pools 123
- Ipv6 router advertisement 125
- D link dwc 1000 user manual 126 126
- Field description 126
- Section 5 advanced network configuration 126
- Ipv6 advertisement prefixes 127
- Complete the fields from the table below 4 click save 128
- D link dwc 1000 user manual 128 128
- Field description 128
- Section 5 advanced network configuration 128
- Lan dhcp reserved ips 129
- Ip mac binding 130
- Igmp setup 131
- Upnp setup 132
- Configure jumbo frames 133
- Internet 134
- Option 1 settings 134
- D link dwc 1000 user manual 135 135
- Section 5 advanced network configuration 135
- D link dwc 1000 user manual 136 136
- Section 5 advanced network configuration 136
- Option 2 dmz settings 137
- Ipv6 option 1 2 settings 138
- D link dwc 1000 user manual 139 139
- Section 5 advanced network configuration 139
- Option mode 140
- Single option port 140
- Auto rollover using option port 141
- Complete the fields from the table below and click save 141
- D link dwc 1000 user manual 141 141
- Inthismodeoneofyouroptionportsisassignedastheprimaryinternetlinkforallinternettrafficandthe secondary option port is used for redundancy in case the primary link goes down for any reason both option ports primaryandsecondary mustbeconfiguredtoconnecttotherespectiveisp sbeforeenablingthisfeature thesecondaryoptionportwillremainunconnecteduntilafailureisdetectedontheprimarylink eitherport canbeassignedastheprimary intheeventofafailureontheprimaryport allinternettrafficwillberolled over to the backup port when configured in auto failover mode the link status of the primary option port is checked at regular intervals as defined by the failure detection settings 141
- Option mode 141
- Section 5 advanced network configuration 141
- Load balancing 142
- Complete the fields from the table below and click save 143
- D link dwc 1000 user manual 143 143
- Option mode 143
- Round robin 143
- Section 5 advanced network configuration 143
- Complete the fields from the table below and click save 144
- D link dwc 1000 user manual 144 144
- Option mode 144
- Section 5 advanced network configuration 144
- Spillover 144
- Nat or classical 145
- Routing 145
- Transparent 146
- Ip aliasing 147
- Dmz dhcp reserved ips 148
- Dynamic dns 149
- Creating vlans 150
- Complete the fields in the table below and click save 151
- D link dwc 1000 user manual 151 151
- Field description 151
- Section 5 advanced network configuration 151
- Deleting vlans 152
- Editing vlans 152
- Multivlan subnets 153
- D link dwc 1000 user manual 154 154
- Editthesettingsasdesired refertothetablebelow andclick save 154
- Field description multivlan subnet 154
- Lan proxy 154
- Section 5 advanced network configuration 154
- Port vlans 155
- Mac based vlans 156
- Voice vlans 158
- Protocol based vlans 159
- Double vlans 160
- Configure ipv4 static routing 162
- Routing 162
- D link dwc 1000 user manual 163 163
- Field description 163
- Section 5 advanced network configuration 163
- Configure ipv6 static routing 164
- After you add static routes you can edit it if you need to change settings to edit a static route right click the static route you want to edit and click edit 165
- Complete the fields in the table below and click save 165
- D link dwc 1000 user manual 165 165
- Editing deleting static routes 165
- Field description 165
- Section 5 advanced network configuration 165
- To delete a static route right click the static route you want to remove and click delete 165
- Complete the fields in the table below and click save 166
- D link dwc 1000 user manual 166 166
- Dynamic routing using the routing information protocol rip is an interior gateway protocol igp that is commoninlans withripthiscontrollercanexchangeroutinginformationwithothersupportedrouters controllers in the lan and allow for dynamic adjustment of routing tables in order to adapt to modifications in thelanwithoutinterruptingtrafficflow 166
- Section 5 advanced network configuration 166
- D link dwc 1000 user manual 168 168
- Section 5 advanced network configuration 168
- Ospfv3 ipv6 169
- D link dwc 1000 user manual 170 170
- Section 5 advanced network configuration 170
- To 4 tunneling ipv6 171
- Isatap tunnels ipv6 172
- Protocol binding 173
- Qos configuration 174
- Qos priority 174
- Enabling qos mode 175
- Defining dscp and cos on each port 177
- Configuring 802 p priority 178
- Configuring dscp priority 179
- Configure policy based qos 180
- Qos policy 180
- D link dwc 1000 user manual 181 181
- Field description 181
- Section 5 advanced network configuration 181
- Configure flow based control 182
- Configure auto voip qos 183
- Configure queue scheduler 184
- Queue management 185
- Setup cos and dscp marking 186
- Option qos traffic shaping 187
- D link dwc 1000 user manual 189 189
- Field description 189
- Section 5 advanced network configuration 189
- Securing your network 190
- Client management 191
- Viewing adding wireless known clients 191
- Editing deleting clients 193
- Adding user groups 194
- Group management 194
- Click add new group the group configuration pop up page will appear 195
- Complete the fields in the table below and click save 195
- D link dwc 1000 user manual 195 195
- Field description group configuration 195
- Section 6 securing your network 195
- User type 195
- Editing user groups 196
- Deleting user groups 197
- Configuring login policies 198
- Configuring browser policies 199
- Configuring ip policies 200
- Adding users manually 201
- User management 201
- Importing users 202
- Editing users 203
- Deleting users 204
- Guest account usage management 205
- Basic limit by usage 208
- D link dwc 1000 user manual 208 208
- Field description basic limit by duration 208
- Section 6 securing your network 208
- Ticket pricing options 208
- Unit price 208
- Payment gateway 209
- D link dwc 1000 user manual 210 210
- Field description 210
- Paypal 210
- Section 6 securing your network 210
- Customize the captive portal login page 211
- Login profiles 211
- D link dwc 1000 user manual 212 212
- Field description general details 212
- Header details 212
- Section 6 securing your network 212
- D link dwc 1000 user manual 213 213
- External payment gateway 213
- Field description login details 213
- Footer details 213
- Section 6 securing your network 213
- Customize the sla of the captive portal 214
- Upload a custom profile 215
- Configure radius server 216
- External authentication 216
- Completetheradiusserverinformationfromthetablebelowandclick save 217
- D link dwc 1000 user manual 217 217
- Field description 217
- Section 6 securing your network 217
- Configure radius accounting 218
- Configure radius accounting global setting 219
- Configure pop3 server 220
- Configure pop3 trusted ca 221
- Configure ldap server 222
- D link dwc 1000 user manual 223 223
- Field description 223
- Section 6 securing your network 223
- Configure active directory server 224
- Configure nt domain server 225
- Facebook wi fi 226
- Static filtering 227
- Web content filter 227
- Approved urls 228
- Blocked keywords 229
- Firewall 230
- Firewall rules 230
- Complete the fields from the table below and click save 231
- D link dwc 1000 user manual 231 231
- Section 8 security 231
- Schedules 232
- Click the schedules rules tab next to schedule name select the schedule profile you want to configure 233
- D link dwc 1000 user manual 233 233
- Right clickanentryandselecteither edit or delete or to add a new schedule rule click add new schedule 233
- Section 8 security 233
- Blocked clients 234
- Custom services 235
- Smtp algs 237
- Mail filtering 238
- Vpn passthrough 239
- Application rules 240
- Dynamic port forwarding 240
- Click on the application rules status tab to see a list of rules and their status 241
- Complete the fields from the table below and click save 241
- D link dwc 1000 user manual 241 241
- Section 8 security 241
- Additionallycertaindenial of service dos attackscanbeblocked theseattacks ifuninhibited canuseup processingpowerandbandwidthandpreventregularnetworkservicesfromrunningnormally icmppacket flooding syntrafficflooding andechostormthresholdscanbeconfiguredtotemporarilysuspecttrafficfrom theoffendingsource 242
- Attack checks 242
- Attackchecks 242
- Attacks can be malicious security breaches or unintentional network issues that render the controller unusable attackchecksallowyoutomanagewansecuritythreatssuchascontinualpingrequestsanddiscoveryviaarp scans tcpandudpfloodattackcheckscanbeenabledtomanageextremeusageofwanresources 242
- Complete the fields from the table below and click save 242
- D link dwc 1000 user manual 242 242
- Section 8 security 242
- Ipsec vpn 244
- Policies 244
- D link dwc 1000 user manual 245 245
- Section 7 vpn settings 245
- Tunnel mode 248
- Split dns names 249
- Dhcp range 250
- Certificates 251
- Trusted certificates 251
- Active self certificates 252
- Click new self certificate 3 complete the fields in the table below and click save 253
- D link dwc 1000 user manual 253 253
- Section 7 vpn 253
- Self certificate requests 253
- Torequestaselfcertificatetobesignedbyaca youcangenerateacertificatesigningrequestfromtheswitch by entering identification parameters and passing it along to the ca for signing once signed the ca s trusted certificate and signed certificate from the ca are uploaded to activate the self certificate validating the identity ofthisswitch theselfcertificateisthenusedinipsecandsslconnectionswithpeerstovalidatetheswitch s authenticity 253
- Easy vpn setup 254
- Apptpvpncanbeestablishedthroughthisswitch onceenabledapptpserverisavailableontheswitchfor lanandwanpptpclientuserstoaccess oncethepptpserverisenabled pptpclientsthatarewithintherange ofconfiguredipaddressesofallowedclientscanreachthecontroller spptpserver onceauthenticatedbythe pptpserver thetunnelendpoint pptpclientshaveaccesstothenetworkmanagedbythecontroller 255
- D link dwc 1000 user manual 255 255
- Pptp vpn 255
- Section 7 vpn 255
- Server 255
- Server 2 complete the fields in the table below and click save 255
- Therangeofipaddressesallocatedtopptpclientscancoincidewiththelansubnet aswellthepptpserver willdefaulttolocalpptpuserauthentication butcanbeconfiguredtoemployanexternalauthenticationserver should one be configured 255
- Activevpnspageandestablishpptp vpntunnelclicking connect 256
- Client 256
- Client tab 2 toggle client to on and complete the fields in the table below 256
- D link dwc 1000 user manual 256 256
- Section 7 vpn 256
- Pptp active users list 257
- Al2tpvpncanbeestablishedthroughthisswitch onceenabledal2tpserverisavailableontheswitchforlan andwanl2tpclientuserstoaccess oncethel2tpserverisenabled pptpclientsthatarewithintherangeof configuredipaddressesofallowedclientscanreachthecontroller sl2tpserver onceauthenticatedbythel2tp server thetunnelendpoint l2tpclientshaveaccesstothenetworkmanagedbytheswitch 258
- D link dwc 1000 user manual 258 258
- L2tp vpn 258
- Section 7 vpn 258
- Server 258
- Server 2 complete the fields in the table below and click save 258
- Therangeofipaddressesallocatedtol2tpclientscancoincidewiththelansubnet aswellthel2tpserver willdefaulttolocall2tpuserauthentication butcanbeconfiguredtoemployanexternalauthenticationserver should one be configured 258
- L2tp active users list 259
- Server policies 260
- Ssl vpn 260
- Complete the fields from the table below and click save 261
- D link dwc 1000 user manual 261 261
- Section 7 vpn 261
- Portal layouts 262
- D link dwc 1000 user manual 263 263
- Section 7 vpn 263
- Add new resource 264
- Resources 264
- D link dwc 1000 user manual 265 265
- Section 7 vpn 265
- Port forwarding 266
- Client 267
- Client routes 268
- D link dwc 1000 user manual 269 269
- Open vpn 269
- Openvpnallowspeerstoauthenticateeachotherusingapre sharedsecretkey certificates orusername password when used in a multiclient server configuration it allows the server to release an authentication certificateforeveryclient usingsignatureandcertificateauthority anopenvpncanbeestablishedthrough this controller 269
- Section 7 vpn 269
- Server 269
- Settings 269
- Settings 2 toggle openvpn to on and complete the fields in the table below 269
- You can select server mode client mode or access server client mode in access server client mode the user has todownloadtheautologinprofilefromtheopenvpnaccessserveranduploadthesametoconnect 269
- Client 270
- D link dwc 1000 user manual 270 270
- Section 7 vpn 270
- Settings 2 toggle openvpn to on and complete the fields in the table below 270
- Access server client 271
- D link dwc 1000 user manual 271 271
- Section 7 vpn 271
- Settings 2 toggle openvpn to on and complete the fields in the table below 271
- Local networks 272
- Remote networks 273
- Authentication 274
- Status and statistics 275
- D link dwc 1000 user manual 276 276
- Dashboard 276
- Section 8 viewing status and statistics 276
- Section description 276
- The wireless controller provides a dashboard that displays about the resources the system is using the dashboard page is organized into the following sections 276
- Viewing statistic and utilization 276
- Manage dashboard 277
- Viewing system status 279
- Viewing usb status 280
- Viewing dhcp clients 281
- Viewing captive portal sessions 282
- Viewing active sessions 283
- Viewing vpn sessions 284
- Viewing traffic on interfaces 285
- D link dwc 1000 user manual 286 286
- Section 8 viewing status and statistics 286
- Section description lan info lan 1 4 286
- Vlan info 286
- Wlan info 286
- Controllerstatus this page shows the controller status and information 287
- D link dwc 1000 user manual 287 287
- Field description 287
- Section 8 viewing status and statistics 287
- Viewing controller status and statistics 287
- Controller associated clients 288
- D link dwc 1000 user manual 289 289
- Distributed tunnel 289
- Distributedtunnel theap aptunnelingmodeisusedtosupportl3roamingforwirelessclientswithoutforwardinganydatatraffic to the wireless controller intheap aptunnelingmode whenaclientfirstassociateswithanapinthewirelesssystem theapforwardsthe wirelessclient sdatausingvlanforwardingmode theaptheclientinitiallyassociateswithiscalledthehome ap theaptheclientroamstoiscalledtheassociationap 289
- Field description 289
- Section 8 viewing status and statistics 289
- Peer controller receive status 290
- D link dwc 1000 user manual 291 291
- Last configuration received 291
- Section 8 viewing status and statistics 291
- D link dwc 1000 user manual 292 292
- Field description 292
- Peer controller sent status 292
- Peercontrollersentstatus you can push portion of the controller configuration from one controller to another controller in the cluster the peercontrollersentstatuspagedisplayinformationabouttheconfigurationsentbyapeercontrollerinthe cluster italsoidentifiestheipaddressofeachpeercontrollerthatreceivetheconfigurationinformation 292
- Section 8 viewing status and statistics 292
- D link dwc 1000 user manual 293 293
- Field description 293
- Global status 293
- Globalstatus theapglobalstatuspageshowssummaryinformationaboutmanaged failed androgueaccesspointsthe wireless controller has discovered or detected 293
- Section 8 viewing status and statistics 293
- Viewing access point information 293
- D link dwc 1000 user manual 294 294
- Section 8 viewing status and statistics 294
- All aps 295
- Allaps theallapslistpageshowssummaryinformationaboutmanaged failed androgueaccesspointsthewireless controller has discovered or detected status entries can be deleted manually 295
- D link dwc 1000 user manual 295 295
- Field description 295
- Section 8 viewing status and statistics 295
- D link dwc 1000 user manual 296 296
- Field description 296
- Managed 296
- Section 8 viewing status and statistics 296
- Themanagedaplistpageshowsdetailsaboutthemanagedaccesspoint rightclickingamanagedaccesspoint enables more options 296
- Button description 297
- D link dwc 1000 user manual 297 297
- Section 8 viewing status and statistics 297
- The managed ap statistics page shows information about traffic on the access point s wired and wireless interfaces this information can help diagnose network issues such as throughput problems to view the statisticsforamanagedaccesspoint right clickonitsentryinthemanagedaplistandselect ap statistics radio statistics and vap statistics 297
- D link dwc 1000 user manual 298 298
- Field description 298
- Peer managed 298
- Peermanaged 298
- Section 8 viewing status and statistics 298
- Thepeercontrollermanagedapslistpageprovidesinformationabouttheaccesspointsthateachpeercontroller intheclustermanages eachpeercontrollerisidentifiedbyitsipaddress 298
- An access point can fail due to any of the reasons 299
- An access point might fail to associate to the wireless controller due to errors such as invalid packet format or vendor id or because the access point is not configured as a valid access point with the correct local or radiusauthenticationinformation theauthenticationfailedapslistpageshowsinformationaboutaccess pointsthatfailedtoestablishcommunicationwiththewirelesscontroller right clickonanaptobringup options to manage or to view details 299
- Authentication failed 299
- Authenticationfailed 299
- D link dwc 1000 user manual 299 299
- Failure description 299
- Section 8 viewing status and statistics 299
- D link dwc 1000 user manual 300 300
- Field description 300
- Rf scan 300
- Rfscan 300
- Section 8 viewing status and statistics 300
- Theradio s oneachaccesspointcanscantheradiofrequencyperiodicallytocollectinformationabout other access points and wireless clients that are within range in normal operating mode the access point alwaysscansontheoperationalchannelfortheradio therfscanpageshowsinformationaboutother accesspointsandwirelessclientsthatthewirelesscontrollerhasdetected right clickonanaporclientto bring up options to view details 300
- De authentication attacks 301
- D link dwc 1000 user manual 302 302
- Field description 302
- Section 8 viewing status and statistics 302
- Hardware capability 303
- D link dwc 1000 user manual 304 304
- Field description 304
- Section 8 viewing status and statistics 304
- Associated clients global status 305
- D link dwc 1000 user manual 305 305
- Field description 305
- Globalstatus thispageshowsstatisticinformationaboutalltheclientswhichareconnectedthroughmanagedap 305
- Section 8 viewing status and statistics 305
- Associated clients 306
- Afterright clickingnexttothemacaddress theclientstatisticpageshowsthefieldsinthetableonthenext page thispageshowsinformationaboutthetrafficawirelessclientreceivesandtransmitswhileitisassociated withasingleaccesspoint usethetabletoviewdetailsaboutanassociatedclient eachclientisidentifiedbyits macaddress 307
- D link dwc 1000 user manual 307 307
- Field description 307
- Section 8 viewing status and statistics 307
- D link dwc 1000 user manual 308 308
- Field description 308
- Right clickingnexttothemacaddress thepre authhistorypageshowsthefieldsinthetableonthenextpage 308
- Section 8 viewing status and statistics 308
- Thewlanassociateddetectedclientspre authenticationhistorylistpageshowsdetectedclientsthathave made pre authentication requests and identifies the access points that received the requests 308
- To help authenticated clients roam without losing sessions and needing to re authenticate wireless clients can try to authenticate to other access points within range of the client for successful pre authentication the target accesspointmusthaveavapwithanssidandsecurityconfigurationthatmatchtheclient includingmac authentication encryptionmethod andpre sharedkeyorradiusparameters theaccesspointthattheclient is associated with captures all pre authentication requests and sends them to the controller 308
- D link dwc 1000 user manual 309 309
- Field description 309
- Right clickingnexttothemacaddress theroamhistorypageshowsthefieldsinthetablebelow 309
- Section 8 viewing status and statistics 309
- The wireless system keeps a record of clients as they roam from one managed access point to another and displaysthisinformationonthewlanassociateddetectedclientsroamhistorylist 309
- Ad hoc clients 310
- Adhocclients 310
- An ad hoc client is a wireless client that gains access to the wlan through a wireless client that is associated with anaccesspoint theadhocclientdoesnotcommunicatedirectlywiththeap adhocnetworksareaparticular concernbecausetheyconsumerfbandwidthandcanpresentasecurityrisk 310
- D link dwc 1000 user manual 310 310
- Field description 310
- Right clickcommandsonthewlanassociatedadhocclientslist 310
- Section 8 viewing status and statistics 310
- D link dwc 1000 user manual 311 311
- Detected clients 311
- Detectedclients 311
- Field description 311
- Fieldsonthedetectedclientstatuspageareshowninthetablebelow 311
- Section 8 viewing status and statistics 311
- Wireless clients are detected by the wireless system either when the clients attempt to interact with the system orwhenthesystemdetectstrafficfromtheclients thedetectedclientstatuspageshowsinformationabout clients that have authenticated with an access point as well information about clients that disassociate and are no longer connected to the system 311
- D link dwc 1000 user manual 312 312
- Field description 312
- Right clickcommandsonthewlandetectedclientslistarelistedbelow 312
- Section 8 viewing status and statistics 312
- Clustering 313
- Connected peer controllers 313
- D link dwc 1000 user manual 313 313
- Field description cluster information 313
- One wireless controller in a cluster is elected as a cluster controller the cluster controller collects status and statistics from the other controllers in the cluster including information about the access point s peer controller and the clients associated to those access points 313
- Section 8 viewing status and statistics 313
- Theclusterinformationpageshowsinformationaboutotherwirelesscontrollersinthenetwork peerwireless controllers within the same cluster exchange data about themselves their managed access points and their clients the wireless controller maintains a database with this data so you can view information about a peer suchasitsipaddressandsoftwareversion ifthewirelesscontrollerlosescontactwithapeer allofthedatafor that peer is deleted 313
- Viewing cluster information 313
- Viewing wds group status 314
- D link dwc 1000 user manual 315 315
- Field description 315
- Section 8 viewing status and statistics 315
- Thewdsapgroupstatuspagedisplaysdetailedinformationabouttheconfiguredapsandlinksinthewds group from this page you can also send a new password to group members 315
- Wds group ap status 315
- Wdsgroupapstatus 315
- D link dwc 1000 user manual 316 316
- Section 8 viewing status and statistics 316
- D link dwc 1000 user manual 317 317
- Field description 317
- Section 8 viewing status and statistics 317
- Thewdsapgroupstatuspagedisplayssummaryinformationabouttheapsinaconfiguredwdsgroup 317
- Viewing wds ap status 317
- Wdsapstatus 317
- D link dwc 1000 user manual 318 318
- Field description 318
- Section 8 viewing status and statistics 318
- Thewdsaplinkstatuspagedisplayssummaryinformationaboutthelinkconfigurationandlinkstateinawds group 318
- Viewing wds link status 318
- Wdslinkstatus 318
- D link dwc 1000 user manual 319 319
- Field description 319
- Section 8 viewing status and statistics 319
- The wds group link statistics page displays summary information about the packets sent and received on the wds links 319
- Viewing wds link statistics 319
- Wdslinkstatistics 319
- Maintenance 320
- Set system date and time 321
- Set system name 321
- System settings 321
- Set login session timeout 322
- Set usb share ports 322
- Activating licenses 323
- Remote management 324
- Power saving settings 325
- Configure snmp v3 user list 326
- Using snmp 326
- Configure snmp trap list 327
- Configure snmp access control list 328
- Configure snmp system info 329
- Configure wireless snmp info 329
- D link dwc 1000 user manual 330 330
- Enablethetrapasdesired refertothetablebelow 3 click save 330
- Field description 330
- Section 9 maintenance 330
- D link dwc 1000 user manual 331 331
- Field description 331
- Section 9 maintenance 331
- Backup configuration settings 332
- Restoring configuration settings 333
- Restoring factory default settings 334
- Rebooting the wireless controller 335
- Upgrading firmware 336
- Wireless controller firmware upgrade 336
- Using the command line interface 338
- Troubleshooting 339
- Lan port leds not on 340
- Led troubleshooting 340
- Power led is off 340
- Web management interface 340
- Discovery problems with access points 341
- Problems with date and time 341
- Using the reset button to restore default settings 341
- Connection problems 342
- Network performance and rogue access point detection 342
- Ping an ip address 343
- Using diagnostic tools on the wireless controller 343
- Using traceroute 344
- Performing dns lookups 345
- Capturing log packets 346
- Conducting a system check 347
- Defining what to log 348
- Log settings 348
- Current logs oraremotesyslogserverforlaterreview e maillogs discussedinasubsequentsection followthesame configuration as logs configured for a syslog server 349
- D link dwc 1000 user manual 349 349
- Foreachfacility thefollowingevents inorderofseverity canbelogged 349
- Section 10 troubleshooting 349
- Severity description 349
- Tracking traffic routing logs 350
- D link dwc 1000 user manual 351 351
- Routing logs 351
- Section 10 troubleshooting 351
- System logging 351
- Systemlogs 351
- Thesystemlogspageletsyouselectthetypeoftrafficpassingthroughthewirelesscontrollerthatyouwantto logfordisplayinsyslog e mailedlogs ortheeventviewer thispagehelpsyoucapturesuspiciousactivitysuch as denial of service attacks general attack information login attempts dropped packets and similar events trafficcanbetrackedbasedonwhetherthepacketwasacceptedordroppedbythefirewall 351
- D link dwc 1000 user manual 352 352
- Option description log options 352
- Remote logging 352
- Remotelogs 352
- Routing logs 352
- Section 10 troubleshooting 352
- Thewirelesscontrollercanbeconfiguredtosendlogstoanemailaddress emaillogscanbesentoutbasedon a defined schedule by first choosing the frequency hourly daily or weekly the wireless controller lets you send configuration logs to three email recipients 352
- D link dwc 1000 user manual 353 353
- Option description 353
- Section 10 troubleshooting 353
- Send e mail logs by schedule 353
- An external syslog server is often used by network administrator to collect and store logs from the wireless controller thisremotedevicetypicallyhaslessmemoryconstraintsthanthelocaleventvieweronthewireless controller s web management interface therefore a number of logs can be collected over a sustained period thisisusefulfordebuggingnetworkissuesortomonitorcontrollertrafficoveralongduration 354
- D link dwc 1000 user manual 354 354
- Section 10 troubleshooting 354
- Syslog server configuration 354
- Syslogserver 354
- Thewirelesscontrollersupports8concurrentsyslogservers eachservercanbeconfiguredtoreceivedifferentlog facilitymessagesofvaryingseverityusingtheremoteloggingpage thispagealsoletsyousendconfiguration logs to three email recipients 354
- Event log 355
- Current logs 356
- Wlan logs 357
- Firewall logs 358
- Ipsec vpn logs 359
- Ssl vpn logs 360
- Wcf logs 361
- Captive portal logs 362
- Appendix a basic planning worksheet 363
- Access point planning 364
- Appendix a basic planning worksheet 364
- Change the wireless controller default password and record it here 364
- Configure your time zone and record it here___________________ 364
- D link dwc 1000 user manual 364 364
- Profilename ___________________________________________ clients ________________________________________________ modesavailable 802 1 b g 802 1 n 802 1 b g n 802 1 a 5 ghz only 802 1 a n 5 ghz only 364
- Step task completed site planning 364
- Usewirelesscontrollerasadhcpserver yes hostnameandipaddressshouldbeassigneddynamically no usedhcprelayorconfigurestaticipaddressesandrecordthembelow ipaddress ipsubnetmask gatewayipaddress primarydnsserver secondary dns server 364
- Wireless controller planning 364
- Appendix a basic planning worksheet 365
- Confirm and record firmware levels for the wireless controller and all access points dwc 1000 wireless controller dwl 2600apaccesspoint dwl 3600apaccesspoint dwl 6600apaccesspoint dwl 8600apaccesspoint dwl 8610apaccesspoint 365
- D link dwc 1000 user manual 365 365
- Dwc 1000 wireless controller 365
- Dwl 2600apaccesspoint s 365
- Dwl 3600apaccesspoint s dwl 3600apaccesspoint s 365
- Dwl 6600apaccesspoint s 365
- Dwl 8600apaccesspoint s dwl 8600apaccesspoint s 365
- Dwl 8610apaccesspoint s dwl 8610apaccesspoint s 365
- Recordmacaddressesforthewirelesscontrollerandallaccesspoints 365
- Appendix b factory default settings 366
- D link dwc 1000 user manual 366 366
- Feature description default setting 366
- Ipaddress 192 68 0 ipv4subnetmask 255 55 55 366
- Loginpassword casesensitive 366
- Time zone adjusted for daylight savings time 366
- Username casesensitive 366
- Appendix c glossary 367
Похожие устройства
- D-Link DWC-2000 Брошюра
- D-Link DWC-2000 Руководство пользователя _CLI_
- D-Link DWC-2000 Руководство пользователя
- D-Link DWL-2600AP Брошюра
- D-Link DWL-2600AP Краткое руководство по установке
- D-Link DWL-2600AP Руководство пользователя версии 4.0
- D-Link DWL-2600AP Руководство пользователя версии 3.0
- D-Link DWL-3600AP Брошюра
- D-Link DWL-3600AP Руководство пользователя
- D-Link DWL-6600AP Брошюра
- D-Link DWL-6600AP Руководство пользователя
- Xiaomi Yi Action Camera Инструкция по эксплуатации
- Xiaomi Yi Action Camera Руководство пользователя
- D-Link DWL-6610AP Брошюра
- D-Link DWL-6610AP Руководство пользователя
- Xiaomi Yi Home Camera Инструкция по эксплуатации
- Xiaomi Yi 360° Home Camera Инструкция по эксплуатации
- D-Link DWL-6700AP Брошюра
- D-Link DWL-6700AP Руководство пользователя
- D-Link DWL-8610AP Брошюра