Changes
From Free Knowledge Base- The DUCK Project: information for everyone
The following lines were added (+) and removed (-):
== Intel Data ==1.0 IntroductionIntel® PRO/Wireless 2011 LAN is a spread spectrum cellular network that operates between 2.4 to 2.5 GHz (gigahertz). This technology provides a high capacity network using multiple points within large or small environments. The Intel access point (AP) is an Intel® PRO/Wireless 2011 LAN direct sequence (DS) product. Intel® PRO/Wireless 2011 LAN products use direct sequence technology to provide a high-capacity, high-data-rate wireless network. Intel® PRO/Wireless 2011 LAN infrastructure products include: bridging architecture to provide communication between radio and wired multiple network segments a design based on the IEEE 802.11 standard an 11 Mbps data rate for fast operation seamless roaming for mobile users with devices such as laptops, wireless PCs, scanning terminals and other computers with PCMCIA slots.1.1 Access Point (AP)The Access Point (AP) provides a bridge between Ethernet wired LANs and Intel® PRO/Wireless 2011 LANs. It provides connectivity between Ethernet wired networks and radio-equipped mobile units (MUs). MUs include the full line of Intel terminals, PC Cards and PCI adapters, bar-code scanners, third-party devices, and other devices. The AP provides a 11 Mbps data transfer rate on the radio network. It monitors Ethernet traffic and forwards appropriate Ethernet messages to MUs over the Intel® PRO/Wireless 2011 LAN. It also monitors MU radio traffic and forwards MU packets to the Ethernet LAN.The AP meets the following:the regulatory requirements for Europe and many other areas of the world FCC part 15 class A with no external shielding FCC part 15 class B, ETS 300-339 compliance, including CE mark.The AP has the following features:built-in diagnostics including a power-up self-check built-in dual antenna assembly with optional diversity wireless MAC interface field upgradable Firmware 10baseT Ethernet port interface with full-speed filtering power supply IEC connector and a country-specific AC power cable PC/AT Serial Port Interface support for up to 127 mobile units data encryption increased MIB support SNMP support Mobile IP support. DHCP support HTTP Web server support short RF preamble wireless APWhen properly configured, an MU communicating with an AP appears on the network as a peer to other network devices. The AP receives data from its wired interfaces and forwards the data to the proper interface.The AP has connections for the wired network and power supply. The AP attaches to a wall or ceiling depending on installation-site requirements.1.2 Radio BasicsIntel® PRO/Wireless 2011 LAN devices use electromagnetic waves, radio signals, to transmit and receive information without wires. Users communicate with the network by establishing radio links between terminals and APs.Intel® PRO/Wireless 2011 LAN devices use FM (frequency modulation) to transmit digital data from one device to another. Using FM, a radio signal begins with a carrier signal that provides the base or center frequency. The digital data signal is superimposed on the carrier signal (modulation). The radio signal propagates into the air as electromagnetic waves. A receiving antenna in the path of the waves absorbs the waves as electrical signals. The receiving device demodulates the signal by removing the carrier signal. This demodulation results in the original digital data.Intel® PRO/Wireless 2011 LAN devices use the environment (the air and certain objects) as the transmission medium. Intel® PRO/Wireless 2011 LAN radio devices transmit in the 2.4 to 2.5-GHz frequency range, a license-free range throughout most of the world. The actual range is country-dependent.Intel® PRO/Wireless 2011 LAN devices, like other Ethernet devices, have unique, hardware-encoded Media AccessControl (MAC) or IEEE addresses. MAC addresses determine the device sending or receiving data. A MAC address is a 48-bit number written as six hexadecimal bytes separated by colons. For example: 00:A0:F8:24:9A:C8To locate the AP MAC address see the bottom of the unit. Network TopologyThe variations possible in Intel® PRO/Wireless 2011 LAN topologies depend on the following factors:the AP function in the network the data transfer rate the wireless AP (WLAP) interfaceNOTE: A WLAP communicates only with its root AP through the wireless interface as discussed in The Root AP and Association Process.Select from the following topologies:A single AP used without the wired network provides a single-cell wireless network for peer-to-peer MUs.A single AP can bridge the Ethernet and radio networks.Multiple APs can coexist as separate, individual networks at the same site without interference using different ESS_IDs.Multiple APs wired together provide a network with better coverage area and performance when using the same ESS_ID.In WLAP mode, a wireless AP-to-AP connection functions:as a bridge to connect two Ethernet networksas a repeater to extend coverage area without additional network cablingNOTE: When using a wireless AP-to-AP connection, use the optimal antenna configuration for the site. For example, use an omnidirectional antenna when establishing a dedicated wireless bridge or repeater.A wireless AP network is possible, depending on the network bandwidth and configuration. Each wireless AP can have connections with up to four other wireless APs.Using more than two WLAPs to establish a connection slows network performance for all topologies. To increase WLAP performance, disable WNMP Functions and AP-AP State Xchg parameters under the Set System Configuration screen.To set up an AP for wireless operation automatically, select the /Enabled/ option for the WLAP Mode parameter. To set these values see Configuring Radio Parameters.NOTE: The WLAP initialization process length depends on the time specified in the WLAP Forward Delay field. See Wireless AP Setup.Cellular CoverageThe AP establishes an average communication range with MUs called a Basic Service Set (BSS) or cell. When in a particular cell, the MU associates and communicates with the AP of that cell. Each cell has a Basic Service Set Identifier (BSS_ID). In 802.11, the AP MAC address represents the BSS_ID. The MU recognizes the AP it associates with using the BSS_ID. Adding APs to a LAN establishes more cells in an environment, making it an RF Network using the same Net_ID or Extended Service Set (ESS).APs with the same Net_ID (ESS_ID) define the coverage area. The MU searches for APs with a matching ESS_ID and synchronizes with an AP to establish communications. This allows MUs within the coverage area to move about or roam. As the MU roams from cell to cell, it switches APs. The switch occurs when the MU analyzes the reception quality at a location and decides the AP to communicate with based on the best signal strength and lowest MU load distribution.If the MU does not find an AP with a workable signal, it performs a scan to find any AP. As MUs switch APs, the AP updates the association table.The user can configure the ESS_ID. A valid ESS_ID is an alphanumeric, case-sensitive identifier up to 32 characters. Ensure all nodes within one LAN use the same ESS_ID to communicate on the same LAN. Multiple wireless LANs can coexist in a single environment by assigning different ESS_IDs for APs.The Root AP and Association ProcessBy default, APs with WLAP Mode enabled and within range of each other automatically associate and configure wireless operation parameters at power up. This association process determines the wireless connection viability and establishes the Root AP and subsequently designated WLAPs.NOTE: APs communicating wirelessly together require the same Net_ID (ESS), Encryption mode, Data Rate and Short RF Preamble settings.The root AP maintains the wireless connection among WLAPs by sending outbeacons, sending and receiving configuration BPDU (Bridge Protocol DataUnit) packets between each designated WLAP. The WLAP with the lowestWLAP ID becomes the Root AP. A concatenation of the WLAP Priority valueand the MAC address becomes the WLAP ID. Ensure the WLAPs associatedwith the Root AP use the Root AP channel, DTIM (Delivery TrafficIndication Message) and TIM (Traffic Indication Map) interval.In this configuration, the WLAP Priority value is the default 8000 Hex. Onconcatenating this value to the MAC addresses of the APs, AP A on Ethernet Ihas the lowest WLAP ID with 800000A0F800181A, making it the Root AP. AP Cuses the AP A channel, DTIM and TIM interval.If AP D on Ethernet II has data for a device on Ethernet I, it requires a bridgeor a repeater. In this configuration, AP C functions as a repeater. To ensuretransmission to devices on Ethernet I, AP D has to use the AP A hopsequence, DTIM and TIM interval.To manually designate AP B as the Root AP, assign it a lower WLAP Priorityvalue. Refer to Wireless AP Parameters. Assigning a WLAPPriority value of 7000 Hex to the AP B MAC address 00:A0:F8:11:23:5D causes AP B to become the Root AP by having the lowest WLAP ID 700000A0F811235D.IEEE 802.1d Spanning Tree SupportThis protocol creates a loop-free topography with exactly ONE path betweenevery LAN. This is the shortest path from the Root AP to each AP and LAN. Ifan AP or LAN fails, a new route is calculated and added to the tree. Allpacket forwarding follows the spanning tree. APs have to choose one AP asthe Root AP. The same holds true for WLAPs associating with the root AP oranother AP connected to the Ethernet LAN to prevent forming loops.Site TopographyFor optimal performance, locate MUs and APs away from transformers, heavy-duty motors, fluorescent lights, microwave ovens, refrigerators and other industrial equipment.Signal loss can occur when metal, concrete, walls or floors block transmission. Locate APs in open areas or add APs as needed to improve coverage.Site SurveysA site survey analyzes the installation environment and provides users with recommendations for the equipment and its placement. The optimum placement of 11 Mbps access points differs from 1 or 2 Mbps access points, because the locations andnumber of access points required are different. 1.3 Access Point Functional TheoryTo improve AP management and performance, users need to understand basic AP functionality and configuration options. The AP includes features for different interface connections and network management.The AP provides MAC layer bridging between its interfaces. The AP monitors traffic from its interfaces and, based on frame address, forwards the frames to the proper destination. The AP tracks the frames' sources and destinations to provide intelligent bridging as MUs roam or network topologies change. The AP also handles broadcast and multicast message initiations and responds to MU association requests.MAC Layer BridgingThe AP listens to all packets on all interfaces and builds an address database using the unique IEEE 48-bit address (MAC address). An address in the database includes the interface media that the device uses to associate with the AP. The AP uses the database to forward packets from one interface to another. The bridge forwards packets addressed to unknown systems to the Default Interface(either Ethernet or PPP).NOTE: The AP internal stack interface handles all messages directed to the AP.Each AP stores information on destinations and their interfaces to facilitate forwarding. When a user sends an ARP (Address Resolution Protocol) request packet, the AP forwards it over all enabled interfaces (Ethernet, PPP, radio and WLAP) except over the interface the ARP request packet was received. On receiving the ARP response packet, the AP database keeps a record of the destination address along with the receiving interface. With this information, the AP forwards any directed packet to the correct destination. The AP forwards packets for unknown destinations to the Ethernet interface.NOTE: ARP request packets received over radio echo back over radio for other MUs to hear.The AP removes from its database destinations or interfaces not used for a specified time. The AP refreshes its database when it transmits or receives data from these destinations and interfaces.Filtering and Access ControlThe AP provides facilities to limit the MUs that associate with it and the data packets that can forward through it. Filters can provide network security or improve performance by eliminating broadcast/multicast packets from the radio network.The ACL (Access Control List) contains the MAC addresses for MUs allowed to associate with the AP. This provides security by preventing unauthorized access.The AP uses a disallowed address list of destinations. This feature prevents the AP from communicating with specified destinations. This can include network devices that do not require communication with the AP or its MUs.Depending on the setting, the AP can keep a list of frame types that it forwards or discards. The Type Filtering option prevents specific frames (indicated by the 16-bit DIX Ethernet Type field) from being processed by the AP. These include certain broadcast frames from devices unimportant to the wireless LAN but which take up bandwidth. Filtering out unnecessary frames can also improve performance.Auto Fallback to Wireless ModeThe AP supports an Auto Fallback to Wireless when the hardware Ethernet connection fails or becomes broken. The Auto Fallback function operates only with an AP in WLAP Mode and connected to the Ethernet network. The AP resets itself and during initialization attempts to associate with any other WLAP in the network.Refer to Configuring System Parameters and Wireless Operation Parameters.NOTE: To make this feature available set the WLAP Mode to Link Required.DHCP SupportThe AP uses Dynamic Host Configuration Protocol (DHCP) to obtain a leased IP address andnetwork configuration information from a remote server. DHCP is based on BOOTP protocol. DHCP can coexist or interoperate with BOOTP. An AP sends out a DHCP request searching for a DHCP server to acquire the network configuration and firmware file names. Because BOOTP and DHCP are interoperable, whichever responds first becomes the server allocating the information. The DHCP client automatically sends a DHCP request every XX hours/days to renew the IP address lease as long as the AP is running. (This parameter is programmed at the DHCP server. Example: Windows NT servers typically are set for 3 days.)The AP can optionally download two files when a boot takes place, the firmware file and an HTML file.Users can program the DHCP or BOOTP server to transfer these two files when a DHCP request is made.When the AP receives a network configuration change or is not able to renew theIP address lease the AP sends out an SNMP trap.NOTE: Mobile IP is not available when DHCP is used. Disable DHCP support when configuring an AP and mobile device for Mobile IP.Media TypesThe AP supports bridging between Ethernet, radio and serial media.The Ethernet interface fully complies with Ethernet Rev. 2 and IEEE 802.3 specifications. The AP supports 10Base-T wired connections and full-speed filtering. The data transfer rate over radio waves is 11 Mbps. The Ethernet interface is optional for single-cell or PPP-connected networks.The radio interface conforms to IEEE 802.11 specification. The interface operates at 11 Mbps using direct sequence radio technology. The AP supports multiple-cell operations with fast roaming between cells. With the direct sequence system, each cell operates independently. Each cell provides an 11 Mbps bandwidth. Adding cells to the network provides increased coverage area and total system capacity. The AP supports MUs operating in Power Save Polling (PSP) mode or Continuously Aware Mode (CAM) without user intervention.The DB 9-pin RS-232 serial port provides a UI (User Interface) or a (Point to Point Protocol) connection. The UI provides basic management tools for the AP. The PPP provides a link between APs using a serial connection. The serial link supports short haul (direct-serial)or long haul (telephone-line) connections. The AP is a DTE (Data Terminal Equipment) device with male pin connectors for the RS-232 port. Connecting the AP to a PC requires a null modem cable and connecting the AP to a modem requires a straight-through cable.Bridging SupportThe AP PPP (Point to Point Protocol) interface, accessible from the serial port at the rear of the AP, provides two types of bridging operations:Data-link bridging between two APs. A network using a data-link bridge provides radio coverage by using a remote AP in a location that is geographically distant from the AP connected to the Ethernet network. The remote AP cannot provide an Ethernet connection to other APs. MUs associating with the remote AP transmit and receive from the Ethernet network through the PPP link.Internet Protocol bridging between an AP and a computer. To establish an Internet Protocol bridge with an AP, ensure the computer includes the appropriate Telnet software with PPP and TCP/IP protocols. By using Telnet, a computer at a remote location can connect to any AP on an Ethernet network, as long as data transfers through IP packets.A PPP link provides the option of using a direct serial link or modem to extend wired Ethernet topologies.Once in PPP mode, the AP automatically attempts to communicate with the other device using the Data-Link Bridging (DLB) protocol. An AP using DLB communicates on the MAC level, and receives and transmits Ethernet frames.If the other device does not support DLB, the AP attempts to communicate using Internet Protocol Control Protocol (IPCP). An AP using IPCP communicates on the IP level, and receives and transmits IP (Internet Protocol) packets.The PPP implementation in the AP uses the Link Control Protocol (LCP) and Network Control Protocol (NCP) as described in: RFC 1171: the Point-to-Point Protocol, July 1990. RFC 1220: PPP Extensions for Bridging, April 1991. RFC 1332: The PPP Internet Protocol Control Protocol, May 1992. RFC 1661: The Point-to-Point Protocol, July 1994.RFCs are Requests For Comments used in Internet Communities.The AP database dynamically tracks MUs and APs on the PPP interface. Packets forward to the PPP link after the AP determines their destination.NOTE: The PPP implementation in the AP uses the NCP as described in RFC 1220: PPP Extensions for Bridging to encapsulate packets at the Ethernet level. The PPP provides IP bridging control as defined by RFC 1172 and MAC-level bridging. It provides support for PPP negotiations conforming to RFC 1661. Users cannot plug a non-AP node directly into the AP serial port, only AP-to-AP PPP links.Refer to RFC 1171: The Point to Point Protocol and RFC 1220: PPP Extensions for Bridging for information.PPP ConnectionConnecting two APs with a direct serial link requires a null-modem serial cable. Connecting two APs with modem devices requires straight-through cables between the APs and modems. Using modems requires using a telephone line for as long as the link remains active. When using a modem connection, one AP represents the originating AP and the other represents the answering AP. When using a PPP link, do not use the serial port to access the UI. Access to the UI requires establishing a Telnet session with the AP.Direct Sequence Spread SpectrumSpread spectrum (broadband) uses a narrowband signal to spread the transmissionover a segment of the radio frequency band or spectrum. Direct sequence is a spread spectrumtechnique where the transmitted signal is spread over a particular frequency range.The Intel® PRO/Wireless 2011 LAN Access Point uses direct sequence spread spectrum (DSSS) forradio communication.Direct sequence systems communicate by continuously transmitting a redundant pattern of bitscalled a chipping sequence. Each bit of transmitted data is mapped into chips by the accesspoint and rearranged into a pseudorandom spreading code to form the chipping sequence. Thechipping sequence is combined with a transmitted data stream to produce the AP output signal.NOTE: In the United States, the three non-overlapping direct sequence channels are 1, 6 and 11.Mobile Units receiving a direct sequence transmission use the spreading code to map the chipswithin the chipping sequence back into bits to recreate the original data transmitted by theaccess point. Intercepting and decoding a direct sequence transmission requires a predefinedalgorithm to associate the spreading code used by the transmitting access point to the receivingMU. This algorithm is established when the access point and MU are configured. The bit redundancywithin the chipping sequence enables the receiving MU to recreate the original data pattern, evenif bits in the chipping sequence are corrupted by interference.The ratio of chips per bit is called the spreading ratio. A high spreading ratio increases theresistance of the signal to interference. A low spreading ratio increases the bandwidth availableto the user. The access point uses two chips per bit among three channels within the 2.4 GHz bandin a pattern avoiding any 1 or 2 Mbps systems operating in the same area. The access point is capable of an 11 Mbps data transmission rate, but the coverage area is less than a 1 or 2 Mbps access point since coverage area decreases as bandwidth increases.MU Association ProcessAPs recognize MUs as they associate with the AP. The AP keeps a list of the MUs it services. MUs associate with an AP based on the the following conditions:the signal strength between the AP and MU MUs currently associated with the AP the MUs encryption and authentication capabilities and the type enabled the MU supported data rate (1 Mbps, 2 Mbps, 5.5 Mbps or 11 Mbps)MUs perform preemptive roaming by intermittently scanning for APs and associating with the bestavailable AP. Before roaming and associating with APs, MUs perform full or partial scans to collect AP statistics and determine the direct sequence channel used by the AP.Scanning is a periodic process where the MU sends out probe messages on all frequencies defined by the country code. The statistics enable an MU to reassociate by synchronizing its frequency to the AP. The MU continues communicating with that AP until it needs to switch cells or roam.MUs perform full scans at start-up. In a full scan, an MU uses a sequential set of channels as the scan range. For each channel in range, the MU tests for CCA (Clear Channel Assessment). When a transmission-free channel becomes available, the MU broadcasts a probe with the ESS_ID and the broadcast BSS_ID. An AP-directed probe response generates an MU ACK (Mobile Unit Acknowledgment) and the addition of the AP to the AP table with a proximity classification. An unsuccessful AP packet transmission generates another MU probe on the same channel. If the MU fails to receive a response within the time limit, it repeats the probe on the next channel in the sequence. This process continues through all channels in the range.MUs perform partial scans at programmed intervals, when missing expected beacons or after excessive transmission retries. In a partial scan, the MU scans APs classified as proximate on the AP table. For each channel, the MU tests for CCA. The MU broadcasts a probe with the ESS_ID and broadcast BSS_ID when the channel is transmission-free. It sends an ACK to a directed probe response from the AP, and updates the AP table. An unsuccessful AP packet transmission causes the MU to broadcast another probe on the same channel. The MU classifies an AP as out-of-range in the AP table if it fails to receive a probe response within the time limits. This process continues through all APs classified as proximate on the AP table.An MU can roam within a coverage area by switching APs. Roaming occurs when:an unassociated MU attempts to associate or reassociate with an available AP the supported rate changes and the MU finds a better transmit rate with another AP the RSSI (received signal strength indicator) of a potential AP exceeds the current AP the ratio of good-transmitted packets to attempted-transmitted packets falls below a threshold when the MU detects an imbalance in the number of MUs associated with available APs and roams to a less loaded APAn MU selects the best available AP and adjusts itself to the AP direct sequence channel to begin association. Once associated, the AP begins forwarding any frames it receives addressed to the MU. Each frame contains fields for the current direct sequence channel. The MU uses these fieldsto resynchronize to the AP.Mobile IPThe Internet Protocol currently identifies the MU point of attachment to a network through its IP address. The host routes packets for the MU according to the location information contained in the IP header. If the MU roams across routers, the following situations occur:The MU changes its point of attachment without changing its IP address causing forthcoming packets to become undeliverable. The MU changes its IP address when it moves to a new network causing it to lose connection.Mobile IP enables an MU to communicate with other hosts using only its home IP address after changing its point-of-attachment to the internet/intranet.Mobile IP is like giving an individual a local post office a forwarding address when leaving home for an extended period. When mail arrives for the individual's home address it is forwarded by the local post office to the individual's current care-of-address. This way only the local post office need be notified of the individual's current address instead of each correspondent. While the example given is the general concept of Mobile IP operation and functionality it does not represent the implementation of Mobile IP used. A tunnel is the path taken by the original packet encapsulated within the payload portion of a second packet to some destination on the network.A Home Agent is an AP acting as a router on the MU's home network. The home agent intercepts packets sent to the MU's home address and tunnels the message to the MU at its current location. This happens as long as the MU keeps its home agent informed of its current location on some foreign link.A Foreign Agent is an AP acting as a router at the MU's location on a foreign link. The foreign agent de-tunnels packets for the MU sent by the MU's home agent. The foreign agent also serves as the default router for packets sent out by the MU connected on the same foreign link.A care-of-address is the IP address used by the MU visiting a foreign link. This address changes each time the MU moves to another foreign link. It can be viewed as an exit point of a tunnel between the MU's home agent and the MU itself.The Mobile IP (roaming across routers) feature enables an MU on the Internet to move from one subnet to another while keeping its IP address unchanged.NOTE: To configure this feature, refer to Configuring System Parameters.The scanning and association process continues for active MUs. This allows the MUs to find new APs and discard out-of-range or deactivated APs. By always testing the airwaves, the MUs can choose the best network connection available.The following diagram illustrates Mobile IP (roaming across routers):NOTE: Set the MU for Mobile IP as specified in the MU's user documentation.Security has become a concern to mobile users. Enabling the Mobile-Home MD5 key option in System Configuration generates a 16-byte checksum authenticator using an MD5 algorithm. The MU and AP share the checksum, called a key, to authenticate transmitted messages between them. The key is shared between the AP and MU while the MU is visiting a foreign subnet. The MU and AP have to use the same key. If not, the AP refuses to become the Home Agent for the MU. The maximum key length is 13 characters. The AP allows all printable characters.Supporting CAM and PSP StationsCAM (Continuously Aware Mode) leave their radios on continuously and hear every beacon and message transmitted. These systems operate without any adjustments by the AP. A beacon is a uniframe system packet broadcasted by the AP to keep the network synchronized. A beacon includes the Net_ID (ESS_ID), the AP address, the Broadcast destination addresses, a time stamp, a DTIM (Delivery Traffic Indication Message), and the TIM (Traffic Indication Map).PSP (Power Save Polling) stations power off their radios for long periods. When an Intel® PRO/Wireless 2011 LAN MU in PSP mode associates with an AP, it notifies the AP of its activity status. The Intel® PRO/Wireless 2011 LAN access point responds by buffering packets received for the MU. The access point uses a PSP performance index from 1 to 5, where 1 provides the quickest response time and 5 provides the most efficient power consumption. Performance index 0 is reserved for CAM. Using this index, the access point selects an appropriate tuning value for the power save algorithm. The access point firmware switches to CAM when frames are sent or directed frames are received.The performance index is used to select how long the adapter stays in CAM after transmit or receive activity and to configure the PSP interval when there is no activity. The awake interval in PSP performance index 1 is long enough to allow for round-trip packet response times. The packet response time in PSP performance index 5 is only 25 msec. The adapter goes back to sleep and requires another wake up period to receive data.When the MU wakes up and sees its bit set in the TIM, it issues a poll request to the AP for packets stored for it. The AP sends them to the MU and the MU goes back to sleep. A DTIM field is a countdown field informing MUs of the next window for listening to broadcast and multicast messages. When the AP has buffered broadcast or multicast messages for associated MUs, it sends the next DTIM with a DTIM Interval value. To prevent a PSP-mode MU from sleeping through a DTIM notification, select a PSP mode value less than or equal to the DTIM value. PSP-mode MUs hear the beacons and awaken to receive the broadcast and multicast messages.A TIM is a compressed virtual bitmap identifying the AP associated MUs in PSP mode that have buffered directed messages. MUs issue a poll request when APs issue a TIM. A beacon with the broadcast-indicator bit set causes the MU to note DTIM Count field value. The value informs the MU of the beacons remaining before next DTIM. This ensures the MU turns on the receiver for the DTIM and the following BC/MC packet transmissions.Data EncryptionIntel® PRO/Wireless 2011 LAN devices operating on a wired or wireless network face possible information theft. This occurs when an unauthorized user eavesdrops on someone else to glean information. The absence of a physical connection makes wireless links particularly vulnerable to this form of theft.Encryption becomes the most efficient method in preventing information theft and improving data security. Encryption entails scrambling and coding of information, typically with mathematical formulas called algorithms, before information is transmitted over any a network. An algorithm is a set of instructions or formula for scrambling the data. A key is the specific code used by the algorithm to encrypt or decrypt the data. Decryption is decoding and unscrambling the received encrypted data.The same device, host computer or front-end processor, usually performs both encryption and decryption. The data transmit or receive direction determines whether the encryption or decryption function is performed. The device takes plain text, encrypts or scrambles it typically by mathematically combining the key with the plain text as instucted by the algorithm; it then transmits the data over the network. At the receiving end another device takes the encrypted text and decrypts, unscrambles, it revealing the original message. An authorized user can know the algorithm, but cannot interpret the encrypted data without the appropriate key. Only the sender and receiver of the transmitted data know the key.Intel uses the Wired Equivalent Privacy (WEP) algorithm, specified in IEEE 802.11 section 8, for encryption and decryption. WEP uses the same secret key for both encrypting and decrypting plain text. Typically an external key management service distributes the secret key. Users should change the key often for added security. IEEE 802.11 defines two types of authentication, Open System and Shared Key. Open system authentication is a null authentication algorithm. Shared key authentication is an algorithm where both the AP and the MU share an authentication key to perform a checksum on the original message.By default, IEEE 802.11 devices operate in an open system network where any wireless device can associate with an AP without authorization. A wireless device with a valid shared key is allowed to associate with the AP. Authentication management messages (packets) are unicast, meaning authentication messages transmit from one AP to one MU only, not broadcast or multicast.HTTP, HTML Web Server SupportThe native language of the Web is Hypertext Transfer Protocol (HTTP). The protocol makes requests from browsers (the user) to servers and responses from servers to browsers. This function provides the user with a web-based format for configuration and firmware download capabilities. Web pages are written in the Hypertext Markup Language (HTML). HTML allows the user to create web pages containing text, graphics and pointers or links to other web pages or elsewhere on the page or document. Pointers are generally known as Uniform Resource Locators (URLs). A URL is essentially the name of the web page. There are three parts to the URL:the protocol (sometimes called a scheme) the DNS (Domain Name Server) the machine where the page is located the local name that identifies the page, usually the File name.The HTML language describes how to format the document much like a copy editor describes which fonts to use, such as the location, color, header size and text. Management OptionsManaging Intel® PRO/Wireless 2011 LAN includes viewing network statistics and setting configuration options. Statistics track network activity of associated MUs and data transfers on the AP interfaces. Configuration involves setting system operating parameters.The AP requires one of the following to perform a custom installation or maintain the Intel® PRO/Wireless 2011 LAN:SNMP (Simple Network Management Protocol) wired LAN workstation with a Telnet client terminal or PC with RS-232 connection and ANSI emulation.Make configuration changes to APs individually. Each AP requires an individual IP address.Programmable SNMP Trap SupportThe SNMP protocol defines the method for obtaining information about networks operating characteristics and changing router and gateway parameters. The SNMP protocol consists of four elements:Management Stations containing an application suite used for network management, data analysis, fault management and so on. Management Agent performing management operations on a configured device for the management station. Management Information Base (MIB) defining the structure and contents of a database for the information exchanged between a management station and a management agent. Network Management Protocol (SNMP) is the protocol linking the management agent to the management station and specifying the rules for communciation between the two devices.Nodes can perform as hosts, routers, bridges or other devices that can communicate status information. An SNMP Agent is a node running the SNMP management process to systematically monitor and manage the network. The management station manages the network by running the special management application suite that analyzes network operation.An SNMP trap is an unsolicited alert to all configured management station indicating some significant event has occurred on the network. The management station queries for details of each specific event, including what, when, where the event took place and the current status of the node or network. The format or structure is defined in the SNMP protocol. The MIB defines and monitors the variables.Using SNMPThe AP includes SNMP agent versions accessible through a SNMP manager application such as, HP Open View or Cabletron Spectrum MIB browser. The SNMP agent supports SNMP versions 1 and a subset of version 2, MIB II, the 802.11 MIB and one proprietary Intel MIB (Management Information Base). The SNMP agent supports read-write, read-only or disabled modes. The AP supports traps that return to the SNMP manager when certain events occur. The Wireless LAN Installation and Utilities disk packaged with MUs contains the MIB.Increased MIB SupportThe MIB (Management Information Base) defines what the management station needs to understand and which objects the station manages.Using the UIThe UI (User Interface) is a maintenance tool integrated into the AP. It provides statistical displays, AP configuration options, and firmware upgrades. Access to the UI requires one of the following:Telnet Client Access to the AP built-in Telnet server from any AP interface includes remote Ethernet connections. Refer to Using Telnet.Direct Serial Connection The AP acts as a DTE device to connect directly to a DTE device with a null-modem serial cable. The direct serial access method requires a communication program with ANSI emulation. Refer to Using Direct Serial Connection.Dial Up Access The dial-up access method requires a communication program with ANSI emulation on the remote terminal or PC. The terminal or PC dials to an AP with a modem connection. The AP supports connection to a Hayes-compatible 28,800-baud or faster modem. Refer to Using a Dial-Up Connection.SNMP Using a MIB Browser Access to the AP SNMP function using a MIB Browser. Typically a Network Manager uses this feature. However, Intel does not recommend AP access using this interface method. Refer to the MIB Browser documentation for usage.Web Browser Access to the AP built-in Web server from any AP interface including Ethernet connections. Refer to Using a Web Browser.2.0 Configuring the APSoftware configuration requires setting up a connection to the AP and gaining access to the UI (User Interface).2.1 Gaining Access to the UISetting up access to the UI depends on the connection used. Select the setup that best fits the network environment.Using TelnetUsing a Telnet session to gain access to the UI requires a remote station to have a TCP/IP stack. The remote station can be on the wired or wireless LAN.To access the AP from the workstation:From the DOS prompt Telnet to the AP using its IP address: Telnet xxx.xxx.xxx.xxx At the prompt enter the password: Intel NOTE: The password is case-sensitive.Press the ESC key. The AP displays the Main Menu.If the session is idle (e.g. no input) for the configured time, the session terminates. To manually terminate the session, press CTRL+D.Set the System Password in the Set System Configuration screen.Using a Direct Serial ConnectionThe AP serial port is a DB-9 9-pin male connector. The serial port allows PPP connections to another AP, or a UI connection to a configuration PC. Connecting the AP directly to a PC with a DB 9-pin serial port requires a null modem cable with the following configuration: The factory-configured AP accepts a direct serial connection to the UI. Configure the AP for the following:Enable serial port. Set Port Use to UI. Disable modem connection.NOTE: Configure these settings in the Set Serial Port Configuration screen within the UI. Refer to Configuring for Dial-Up to the UI.Assuming the UI and serial port are enabled on the AP:Attach a null modem serial cable from the AP to the terminal or PC serial port. From the terminal, start the communication program such as HyperTerminal for windows. Select the correct COM port along with the following parameters:emulation ANSIbaud rate 19200 bpsdata bits 8stop bits 1parity noneflow control noneThere is no password requirement. Press ESC to refresh the display. The AP displays the Main Menu. Exit the communication program to end the session.Using a Dial-Up ConnectionThe AP supports a dial-up connection to the UI. This requires accessing the UI from Telnet or a direct serial connection and changing the serial port configuration. Configure the AP for the following:Enable serial port. Set serial port for UI. Disable any modem connection. Set AP to answer mode.Configure these settings in the Set Serial Port Configuration within the UI. Refer to Configuring for Dial-Up to the UI.Using a Web BrowserA Web Browser is a program used to view Web documents or pages. The browser retrieves the requested page, interprets its text and displays the page properly formatted on a computer screen.Using a Web browser to gain access to the UI requires the workstation to have a TCP/IP stack and access to a web browser. Theremote station can be on the wired or wireless LAN.NOTE: To use this feature the Web browser must support JavaScript as do Internet Explorer 4.0 and higher or Netscape.Set Up Network Web Server Help File AccessA network Web server is required to access the Help file from the Intel® PRO/Wireless 2011 LAN Access Point Configuration Management System web pages. This procedure applies to the Microsoft Internet Information Server. The network Web server can be different; if so, some of the procedures will differ.NOTE: This procedure is for Network or System Administration personnel only.To create the Help file on a network Web server:Create a directory on the network Web server for the AP Web Site Help Files to reside. Often this is a subdirectory to C:\InetPub\wwwRoot. Copy the *.gif and *.htm files to this directory/folder. The files are maintained in the x:\firmware\AP\AP Web Site\Help File directory where x is the letter assigned to the computer CDROM drive.NOTE: This installation example is for Windows NT 4.0.From the windows Task Bar select Start From the drop down menu select Programs. From this menu select Microsoft Internet Server(common). From this menu select Internet Service Manager to launch the Internet Information Server Service Manager.Click on the Web service.NOTE: Ensure the server WWW service is running.Select Properties. Select Service Properties to display the WWW service properties for the server. The WWW Service Properties window opens. Select the Directories Tab. Select the Add button to open the Directories window. Type the Directory/Folder path created in step one. Select the Virtual Directory button. Type a folder alias such as WebHelp and select OK. Select the Enable Default Document checkbox. Type WLAAPHLP.HTM as the default document and select Apply. Select OK to exit the window. Test the accessibility to the Help file using a Web browser with a URL similar to: http://xxx.xxx.xxx.xxx/WebHelp where xxx.xxx.xxx.xxx is the IP address of the server.Accessing Web Browser UIUsing a Web Browser to gain access to the UI requires the workstation to have a TCP/IP stack and access to a Web browser. The remote station can be on the wired or wireless LAN.To ensure the Web Server option is enabled for the AP:Access the UI using a Serial or Telnet connection. Select the System Configuration screen. Verify the Web Server option on the System Configuration screen is enabled. If not, use the TAB key to select the Web Server option. Use the LEFT/RIGHT ARROW key to toggle the option to Enable. Save the configuration by selecting Save-[F1].Reset the AP for changes to take effect.Select the Special Functions screen. Select Reset AP. Select Yes at the confirmation prompt.To enable Help file access, change the Help URL parameter:Select the Special Functions screen. Use the TAB or UP/DOWN ARROW key to select the Alter Filename(s)/HELP URL/TFTP Server/DHCP. Press ENTER. Use the TAB or DOWN ARROW key to select the .HELP URL field. Type the IP address/URL of the Web server and the folder alias for the Help file location: http://xxx.xxx.xxx.xxx/WebHelp where xxx.xxx.xxx.xxx is the IP address of the server. Press ENTER. Use the TAB or DOWN ARROW key to select OK-[CR] and press ENTER. Save the new setting by selecting the Save Configuration option. At the confirmation prompt, select Yes. The Main Menu displays. Reset the AP for changes to take effect. Select the Special Functions screen. Select Reset AP. At the confirmation prompt, select Yes.To access the AP UI using a Web Browser from a workstation:From the NCPA Properties window set the IP address of the workstation and the subnet mask. The system tells the user to reboot for property changes to take effect.NOTE: The workstation, in this case, is the workstation or laptop running the Web browser.To verify the connection, ping the AP. At the default DOS prompt, type: Ping -t xxx.xxx.xxx.xxx If the ping receives no response, verify that the hardware connections, IP address, gateway address and subnet mask are correct. If correct, contact the site System Administrator for network assistance.Start a Web browser such as Internet Explorer 4.0 or greater or Netscape 3.0 or greater. Enter the IP address for the associated AP to access the AP using a Web browser: http://xxx.xxx.xxx.xxx The Intel® PRO/Wireless 2011 LAN Access Point Configuration Management System displays.NOTE: The Web pages look different than the Telnet or Direct Serial or Dial-Up Connections. Access the different pages using the nodes located in the left frame. Refer to the online help for Web page navigation, page content and parameter use.To view configuration, function, or option changes on the Web page(s) turn off the caching function for the browser used. For Netscape, from the menu bar select Edit, Properties, Advanced, Cache. Select Document in cache is compared to document on network: Every time. For Internet Explorer from the menu bar select View, Internet Options, Settings. From the Temporary Internet files element, select Check for newer versions of stored pages: Every visit to the page. Select OK.NOTE: If this property/option is not turned off the brower returns the previous view of the page without the changes. To ensure the latest version of a web page is viewed set this option in the browser.To access help from any Intel® PRO/Wireless 2011 LAN Access Point Configuration Management System web page, select the Help button always located in the top right corner of the right frame on each page. For access to the Easy Setup and Configuration pages a popup dialog box appears.Nothing needs to be entered for the User Name. Then enter the default Password: IntelNOTE: The password is case sensitive.To manually terminate the session, exit the browser.2.2 Navigating the UIThe following conventions apply:The left frame displays a menu tree of the Intel® PRO/Wireless 2011 LAN Access Point web management system. Click the icons to expand or collapse the tree. The document nodes allow you to view and manipulate information in the Access Point. The right frame shows the selected page. In the menu tree click on the icon to view a page. Some pages are 'refreshable' every five seconds. Select the Start Refresh button. Theicon in the upper right of the screen is active when refresh has been selected. To stop automatic refresh select 'Stop Refresh'. The icon in the upper right of the screenstops moving and the page no longer updates. Pages which accept entries will validate those entries when Save Settings isselected. If an entry is incorrect it will be flagged with a red arrow on the left and an error message at the top of the screen. No parameters are updated until all entries are valid. To clear entries instead of saving them select Clear Entries.Entering Admin ModeThe UI defaults to User mode that allows read-only access to the AP's functions (e.g., view statistics). To access configuration:Select Configuration|Security from the Access Point menu tree. A prompt for User Name and Password appears. The User Name entry may be ignored. Enter the default System Password. Intel NOTE: The password is case sensitive.If the password is correct, the AP displays the selected page.If the password is incorrect, the AP rerequests the User Name and Password. NOTE: Set the System Password in the Security Setup page.Changing the Access to the UITo prevent unauthorized access, change the configuration access to the UI. This includes enabling or disabling the Telnet Logins or changing the System Password.To change Telnet access to the AP:Select Configuration|Security from the Access Point menu tree. Select Enabled or Disabled for Telnet Logins. Select Save Settings at the bottom of the page.To change the System Password:Select Configuration|Security from the Access Point menu tree. Select Modify|System Password. Type in the new password to the right of System Password. Type in the new password to the right of Confirm System Password. Select Save Settings at the bottom of the page.Configuring for Dial-Up to the UIA dial-up connection to gain access to the UI requires a straight-through cable between the modem and the AP. The remote PC requires a modem and a communication program (e.g. Microsoft Windows Terminal program).NOTE: Refer to Supported Modems for modems supported by the AP.Configuring Serial PortTo enable and configure the serial port connection on the AP:Select Configuration|PPP/Modem from the Access Point menu tree. Set the Serial Port Use parameter to PPP. Set the Modem Connected parameter to Yes. Configure the other settings as required on the AP.Answer Wait Time The time waiting for a remote connection before dropping the attempt. The default is 60 seconds from a 5 to 255 second range.Modem Speaker AP sends a command to the modem to enable/disable the modem speaker. The default is Enabled.Inactivity Timeout The inactivity time on the UI that causes the AP to terminate the connection while using a modem. The default is 5 minutes from a 0 to 255 minute range. The zero (0) value indicates no time-out.Select Save Settings at the bottom of the page.Configuring the Dial-Up SystemAssuming the PPP, serial port and answer mode are enabled on the AP: Attach a straight-through serial cable from the AP to the modem. Verify modem connects to the telephone line and has power. Refer to modem documentation. From the remote terminal, start the communication program. Select the correct serial port along with the following parameters.emulation ANSIbaud rate 19200 bpsdata bits 8stop bits 1parity noneflow control noneDial out to the AP with the correct telephone number. No password required. Press ESC to refresh the display. The AP displays the Main Menu.Hanging UpTo hang up from the UI while connected:Select the Configuration|PPP/Modem from the Main Menu. Check Modem Hangup. Select Save Settings at the bottom of the page.Navigating the UI Using a Web BrowserRefer to the online help file for information on Web Browser navigation andbasic functionality. For file download instructions and the associated file(s)refer to http://support.intel.com and select Intel® PRO/Wireless 2011 LAN® - 1 and 2 Mbps FH Firmware, Software, Drivers, Tools and ....2.3 Access Point InstallationThe AP UI includes an Easy Setup page to set basic parameters for an Intel® PRO/Wireless 2011 LAN. These parameters include designating gateway addresses that provide the ability to forward messages across routers on the wired Ethernet.To install an AP:Select Easy Setup from the Access Point menu tree. If prompted enter the password. The Easy Setup page is displayed where:Unit Name identifies the AP nameIP Address the network-assigned Internet Protocol address of the APGateway IP Address IP address of a router the AP uses on the EthernetSubnet Mask The first two sets of numbers specify the network domain, the next set specifies the subset of hosts within a larger network, and the final set specifies an individual computer. These values help divide a network into sub networks and simplify routing and data transmission. The subnet mask defines the size of the subnet.DHCP The AP uses DHCP to obtain a leased IP address and network configuration information from a remote server.Help URL Web address of the AP Configuration Management Help fileESS_ID the unique 32-character, alphanumeric, case-sensitive network identifier of the APDiversity enables selection of antenna diversity (Primary Only, On)Additional Gateways The IP addresses of the additional gateways used. Access up to seven additional gateways.Verify the values set reflect the network environment. Change them as needed. Select Save Settings to register settings or Clear Entries to return to the original values.Additional GatewaysTo add or modify an Additional Gateway:Select Easy Setup from the Access Point menu tree. Select Add/Delete Gateways to access the Easy Setup - Add/Delete Gateways page. Select a field to the right of one of the Gateways. Enter the IP address of a gateway. Select Save Settings to register settings or Clear Entries to return to the original values.2.4 Configuring Security ParametersThe AP provides configuration options for how the unit operates including security access and interface control. Some parameters do not require modification.Select Configuration|Security from the Access Point menu tree to display the Security Setup page. Configure the AP system settings as required:Telnet Logins Specifies if the AP accepts or rejects Telnet Logins. The default value is Enabled.System Password Select Modify. For administrative access, select any alphanumeric, case-sensitive entry up to 13 characters for a password. Make the same entry for System Password and Confirm System Password. Select Save Settings. The default System Password is Intel.Access Control Specifies enabling or disabling the access control feature. If enabled, the ACL (Access Control List) specifies the MAC addresses of MUs that can associate with this AP. The default is Disabled.Allowed Mobile Units View/Add/Delete MU entries by individual MAC address in the Access Control List (ACL)..Ranges of Allowed Mobile Units View/Add/Delete MU entries by a range of MAC addresses in the Access Control List.Disallowed Mobile Units View/Add/Delete MUs not allowed to associate with the AP.Encryption Administration Indicates which interface can change the encryption keys and encryption key index.Any Interface allows users to change encryption keys through any interface.Serial Only allows users to change the encryption parameters only through the serial port.Default is Any Interface.Strong Encryption Allows access to and use of the 128 bit encryption keys. Some countries will not have access to 128 bit encryption due to encryption export restrictions. To access the 128 bit encryption key screen contact the Intel Customer Support (http://support.intel.com) for a unique access code to enable this feature.WEP (Privacy) Enables or disables the use of the WEP algorithm. The default is Disabled.WEP Algorithm Defines the number of bits and type of WEP algorithm. Default is 40 bit shared key. 128 bit shared key is an alternate choice.Encryption Key Allows the user to select the Active Key (1-4) used to transmit data packets.Encryption Key Setup Select View/Modify to configure the encryption keys. The selected WEP Algorithm determines the screen displayed for the user. Two screens are possible, one for the 40 bit encryption and one for the 128 bit encryption. Refer to Encryption Key Setup.Verify the values set reflect the network environment. Change them as needed. Select Save Settings to register settings or Clear Entries to return to the original values.System Password AdministrationThis page allows the network administrator to configure the password for the AP.Select Configuration|Security from the Access Point menu tree. Select Modify|System Password. Configure the AP password settings as required:System Password Select any alphanumeric, case-sensitive entry of up to 13 characters. The characters selected are displayed as asterisks. Changing this passowrd changes the Read/Write Community password found in the SNMP Configuration screen. The default password is Intel.Confirm System Password Select the same alphanumeric, case-sensitive entry of up to 13 characters as System Password. The characters selected are displayed as asterisks.Select Save Settings at the bottom of the page.Encryption Key SetupTwo pages allow the user to configure the encryption keys used for the site network. WEP Algorithm determines the screen displayed for the user, either 40 bit or 128 bit encryption. These two pages are view only if Encryption Administration is Serial Only. To enable the Open System option, select Disabled for WEP (Privacy) on Security Setup.This table shows the AP association capability with the selected WEP Algorithm.AP Selected WEPAlgorithm MU Selected WEPAlgorithm Association StatusOpen (disable) Open AssociatedOpen (disable) 40 No AssociationOpen (disable) 128 No Association40 Open No Association40 40 Associated40 128 Associated, but can'ttransmit data128 Open No Association128 40 Associated, but can'ttransmit data128 128 AssociatedEach 40 bit encryption key is a subset of the respective 128 bit encryptionkey. The first 40 bits of each encryption key is the same for the respective 40bit and 128 bit encryption keys. When a 40 bit encryption key is changedthe first 40 bits of the respective 128 bit key is also changed. Consequently,when a 128 bit encryption key is changed the first 40 bits of the 40 bitencryption key is changed. Moreover, configuring the encryption Keys usingthe SNMP Trap Manager overrides the Key value(s) for the AP(s) accessed bythe SNMP Trap Manager. Intel provides a total of four Encryption Keys. Each key enablesencryption between the AP and an associated MU with the same encryptionKey and Key value.Considerable care is required when assigning keys. Keys have to be in thesame order with the same value per key for the AP and MU to authenticatedata transmission using encryption.Example: An AP uses Key 1 with a value of 1011121314. The associated MUrequires the same Key 1 to have the value 1011121314.NOTE: Some countries do not have access to the 128 bit encryption screens due to imposed encryption export restrictions. To access the 128 bit encryption screen contact Intel Customer Support (http://support.intel.com) for the unique access code to enable this feature.Select Configuration|Security from the Access Point menu tree to display the Security Setup page. Select View/Modify | Encryption Key Setup to display the 40 or 128 Bit Shared Key Encryption Setup page. For 40 Bit Shared Key Encryption, each of the four keys has 40 bits available to the user for configuration displayed in 2 twenty bit segments. The remaining 24 IV (initialization vector) bits are factory set and not user configurable. For 128 Bit Shared Key Encryption, each of the four keys has 124 bits available to the user for configuration displayed in two 20 bit segments and four 16 bit segments. The remaining 24 IV bits are factory set and not user configurable. Configure the settings as required:Selected Key The default is 1. Select the appropriate radio button to change the selected Encryption Key.Key 1 to 4 Four separate Encryption Keys maximum. Each key enables encryption between the AP and an associated MU with the same encryption key and value.Note: Keys have to be in the same order with the same value per key for the AP and MU to authenticate data transmission using encryption. Example: AP uses 40 Bit Shared Key 1 with a value of 1011121314. The associated MU requires the same Key 1 with a value of 1011121314.Verify the values set reflect the network environment. Change them as needed. Select Save Settings to register settings or Clear Entries to return to the original values.2.5 Configuring System ParametersThe AP provides configuration options for how the unit operates including interface control. Some parameters do not require modification.Select Configuration|System from the Access Point menu tree to display the System Setup page. Configure the AP system settings as required:Unit Name Identifies the AP name.Channel The direct sequence channel used by the access point. Frequency Number of Channels Country 2412-2470 1-11 United States2430-2447 5-8 Israel2457-2463 10-11 Spain2458-2472 10-13 France2483-2485 14 JapanMobile IP If enabled, this feature allows MUs to roam across routers.MU-MU Disallowed If enabled, mobile units associated with the same AP are not allowed to communicate with each other. The default is disabled.Mobile Home MD5 Key Select Modify to change the secret key used for Mobile-Home registration and authentication.Ethernet Timeout Disables the radio interface if there is no activity detected on the Ethernet line after the seconds indicated (30-255). The AP disassociates MUs and prevents further associations until it detects Ethernet activity again. The default is disabled.10-BaseT Timeout detects if the 10Base-T line goes down.If the value is Send WLAP Alive and the WLAP has connected to the Root AP, the WLAP sends a WLAP Alive BPDU on the Ethernet line every WLAP Hello Time seconds to allow WLAPs on the Ethernet line to detect its existence.If the value is Timeout WLAP Alive the WLAP tracks the WLAP Alive BPDU. If the BPDU is missing for WLAP Hello Time seconds, the WLAP state changes to WLAP Lost on Ethernet. Once the WLAP Alive BPDU is detected, the WLAP resets and starts over.When the Ethernet connection is broken, the AP clears the MU table and disables the RF interface until the Ethernet connection comes up.Agent Ad Interval Specifies the time in seconds between the mobility agent advertisement transmissions.AP-AP State Xchg Specifies AP-to-AP communication exchanged. If Disabled, prevents AP load leveling function.WNMP Functions Specifies if this AP can perform WNMP functions. The default value is Enabled.Ethernet Interface Enables or disables wired Ethernet. The default value is Enabled.RF Interface Enables or disables radio. The default value is On.Default Interface Specifies the default interface (Ethernet, PPP or WLAP) to which the AP forwards a frame if it cannot find the address in its forwarding database. The default interface is Ethernet.Verify the values set reflect the network environment. Change them as needed. Select Save Settings to register settings or Clear Entries to return to the original values.Configuring Mobile Home MD5 KeyThis page allows the network administrator to configure the secret key used for Mobile Home registration and authentication.Select Configuration|System from the Access Point menu tree. Select Modify|Mobile Home MD5 Key. Configure the Mobile Home MD5 Key setting as required:Mobile Home MD5 Key Select any alphanumeric, case-sensitive entry of up to 13 characters.Confirm Mobile Home MD5 Key Select the same alphanumeric, case-sensitive entry of up to 13 characters as Mobile Home MD5 Key.Select Save Settings at the bottom of the page.2.6 Configuring Radio ParametersThe AP auto configures most radio parameters. Only advanced users, Intel trained users, or Intel representatives should configure radio parameters for the AP. Options in the RF Setup and WLAP Setup screens fine-tune the radio functions.Select Configuration|RF from the Access Point menu tree to display the RF Setup page. Configure the settings as required:BC/MC Queue Max Determines the memory allocated for the queue used in the AP to temporarily hold broadcast/multicast messages. Unit measure is in packets and corresponds to maximum-sized Ethernet packets. The default is 10.Max Retries (data) The maximum allowed retries before aborting a single data packet transmission. The default is 15. Do not modify.Max Retries (voice) The maximum allowed retries before aborting a single data packet transmission. The default is 5. Do not modify.Multicast Mask (data) Supports broadcast download protocols for Point-of-Sale terminals that load a new operating image over the network instead of using a local nonvolatile drive. The multicast mask for RF data packets is the top 32 bits of the MAC address and allows for a series of MAC addresses to receive multicast messages. The AP transmits these messages immediately and does not queue them for processing at DTIM intervals.Multicast Mask (voice) Supports broadcast, or part-line, voice communication. All multicast downstream data packets that match the top 32 bits of the multicast mask are forwarded immediately instead of being queued for transmission at the next DTIM interval.Beacon Interval The time between beacons in Kilo-microseconds. The default is 100. Avoid changing this parameter because it can adversely affect PSP-mode terminal performance.Accept Broadcast ESS_ID Allows the AP to respond to any station sending probe packets with the industry-standard broadcast ESS_ID. If Enabled, this feature allows industry-standard devices interoperability. The AP probe response includes the ESS_ID and information about the network. By default, this feature is Disabled and the AP responds only to stations that know the ESS_ID. This helps preserve network security. MUs require using Broadcast ESS_ID to utilize this function.MU Inactivity Timeout Allows industry-standard devices interoperability by specifying the time the AP allows for MU inactivity. An Intel® PRO/Wireless 2011 LAN AP recognizes MU activity through data packet transmission and reception, and through scanning. Intel® PRO/Wireless 2011 LAN MUs conduct active scanning. Other industry-standard MUs might conduct passive scans and an AP can classify them as inactive..Rate Control (Mb/s) Defines the data transmission rate. The defaults are:11 Mb/sec - Optional 5.5 Mb/sec - Optional 2 Mb/sec - Optional 1 Mb/sec - Required The defaults allow the AP to automatically select the the best transmit rate allowed by the conditions. These settings allow a mixture of 1 Mb/sec, 2 Mb/sec, 5.5 Mb/sec, and 11 Mb/sec radios in the same network.Different combinations of the data rates can be selected as Optional, Required or Not Used; but, it is essential to set the lowest selected rate to Required.All IEEE 802.11 broadcast and management frames are sent out on the lowest required data rate. RTS Threshold Request to Send threshold (256 - 2347). Allows the AP to use RTS (Request To Send) on frames longer than the specified length. The default is 2347 bytes. (Not configurable)Short RF Preamble Determines whether the AP uses a short or long preamble. The preamble is approximately 8 bytes of the packet header generated by the AP and attached to the packet prior to transmission. The preamble length is transmission data rate dependant. The short preamble is 50% shorter than the long preamble.This feature is only available to version 2.0 radio hardware. Equipment without the version 2.0 radios cannot enable the short preamble function and cannot see, receive or acknowledge messages from short preamble enabled version 2.0 hardware. Disable this feature in a mixed hardware network and use the long preamble. MUs and APs are required to have the same Short RF Preamble settings for interoperability. The default is Enabled.Verify the values set reflect the network environment. Change them as needed. Select Save Settings to register settings or Clear Entries to return to the original values.2.7 Wireless Operation ParametersThe AP supports up to four WLAP interfaces. Intel recommends using one WLAP as an interface on high traffic networks and for low traffic networks no more than two WLAPs because excessive channel contention causes the WLAP to miss beacons from the Root AP shown in the example.Refer to LED Indicators for indication of AP status. If more than two WLAPs operate in a repeater configuration, Intel recommends the WLAPs with the lowest WLAP IDs be placed on the wired network.To avoid forming a loop, per the IEEE 802.1d Spanning Tree Protocol, the Wireless WLAP associates with only one wired WLAP.Set the default interface for AP A to Ethernet. Set the default interface for AP B to Ethernet. Set the default interface for AP C to WLAP.This allows the MUs to roam and transmit data between AP B and C.If an AP functions as a bridge between wired LANs, Intel recommends one LAN contain the lower WLAP IDs.To configure the AP for wireless operation:Select Configuration|Wireless AP from the Access Point menu tree. Configure the settings as required.WLAP Mode Specifies the AP's wireless-AP operation status.Enabled, the AP sets up automatically for wireless operation. The AP can operate in any of these configurations: Wireless, Repeater or Ethernet Bridge.Disabled, no wireless operation possible. Default setting.Link Required. At power up:If the WLAP is the Root AP, an Ethernet connection is required. If the WLAP is a designated WLAP, association to the Root AP is required.During normal operation: If the Ethernet connection is lost, the Root AP resets. If the WLAP association is lost, the designated AP resets. WLAP Priority Allows a user to determine the Root and the Designated WLAP in wireless operation. Concatenate the priority value as the most significant portion of the MAC address. An AP with a lower numerical value for priority is more likely to become the root AP. The default is 8000 hex from the 0 - 0xFFFF range.WLAP Manual BSS ID Specifies the BSS_ID of a particular WLAP and forces the current AP to associate only with that WLAP.If setting the WLAP Manual BSS_ID to the current BSS_ID, the current AP jumps into Functional State immediately and waits for an Association Request from the other WLAP. Refer to Radio Statistics. This feature speeds up the association process and minimizes confusion when more than two WLAPs try to associate with each other.WLAP Hello Time Sets the time lapse, in seconds, between Config BPDU packets sent to the Root AP by a designated WLAP. The default is 20 seconds. If the Root AP fails to hear from the designated WLAP within the WLAP Max Age time, it removes the designated WLAP from its interface table.The WLAP Hello Time of the Root AP overwrites the WLAP Hello Time of designated WLAPs. The WLAP Hello Time does not refer to the time lapse between beacons sent by the Root AP. If a designated WLAP fails to receive a beacon, it knows that its Root WLAP has lost the Root status.WLAP Max Age Defines time, in seconds, before discarding aged configuration messages. This causes a disconnection between the two WLAPs. The recommended value is a multiple of the WLAP Hello Time. The default is 100 seconds.The WLAP Max Age of the Root AP overwrites the WLAP Max Age of designated WLAPs.WLAP Forward Delay Specifies the time, in seconds, to prevent an AP from forwarding data packets to and from an interface during initialization. The WLAPs involved and the wireless operation state, refer to Radio Statistics, affect the WLAP Forward Delay time. This delay ensures that all WLAP nodes are heard. The default is five seconds per wireless operation state.The WLAP Forward Delay of the Root AP overwrites the WLAP Forward Delay of designated WLAPs.Select Save Settings to register settings or Clear Entries to return to the original values.2.8 Configuring the SNMP AgentAn SNMP manager application gains access to the AP SNMP agent if it has the AP IP address. An AP can be accessed through the SNMP Trap Manager to configure settings and parameters. Intel does not recomment this process. NOTE: Configuring the encryption Keys using the SNMP Trap Manager overrides the Key values for the AP or APs accessed by the SNMP Trap Manager.The agent configures as read-only, read-write or disabled to provide security when using SNMP. The AP sends specific traps for some conditions. Ensure the SNMP trap manager recognizes how to manage these traps. NOTE: Refer to the Intel MIB on the Wireless LAN Installation disk for specific entries.The AP supports SNMP V1, MIB-II, and the INTEL.MIB.Select Configuration|SNMP from the Access Point menu tree. Configure the settings as required.SNMP Agent Mode Defines the SNMP agent mode:Disabled disables SNMP functions.Read Only allows get and trap operations.Read-Write (default) allows get, set and trap operations.Read Only Community User-defined password string up to 31 characters identifying users with read-only privileges. Select Modify to change.Read-Write Community User-defined password up to 13 characters for users with read and write privileges. The password used matches the System Password used to gain access to the configuration screens. Select Modify to change.Trap Host 1 IP Address Trap manager 1 IP address. The default is 0.0.0.0 Trap Host 2 IP Address Trap manager 2 IP address. The default is 0.0.0.0 All SNMP Traps Enables selected or disables all trap operations. The default value is Disable All.Cold Boot Send a trap to manager when the AP cold boots. The default value is Deselected. Other choices are Trap Host 1, Trap Host 2 and Both Trap Hosts.Authentication Failure Indicates that community strings other than those specified for the Read-Only Community and the Read-Write Community were submitted. The default value is Deselected. Other choices are Trap Host 1, Trap Host 2 and Both Trap Hosts.Radio Restart Send a trap to manager for radio restart. The default value is Deselected. Other choices are Trap Host 1, Trap Host 2 and Both Trap Hosts.Access Control Violation Send a trap to manager when an ACL violation occurs. The default value is Deselected. Other choices are Trap Host 1, Trap Host 2 and Both Trap Hosts.DHCP Change If selected and enabled, this trap generates the following enterprise-specific traps:Gateway Address Change - Indicates the gateway address for the router has changed. IP Address Change - Indicates the IP address for the AP has changed. IP Address Lease - Informs the user the IP address leased from the DHCP server is about to expire.The default value is Deselected. Other choices are Trap Host 1, Trap Host 2 and Both Trap Hosts.WLAP Connection Change If selected and enabled, this trap generates the following enterprise-specific traps:Root WLAP Up - Indicates that the Root WLAP connection is setup and ready to forward data. Root WLAP Lost - If the current WLAP fails to receive a Beacon packet from its Root WLAP within one second, it considers the Root WLAP lost. The WLAP eventually resets itself to reestablish the network topology. Designated WLAP Up - Indicates that the Designated WLAP connection is setup and ready to forward data. Designated WLAP Lost - If the current WLAP fails to receive a Config BPDU packet from its Designated WLAP for MAX AGE time, it considers the Designated WLAP lost.The default value is Deselected.Select Save Settings to register settings or Clear Entries to return to the original values.Configure Read Only CommunityThis page allows the network administrator to configure the Read Only Community password for the AP.Select Configuration|SNMP from the Access Point menu tree. Select Modify|Read Only Community. Configure the Read Only Community password settings as required:Read Only Community Select any alphanumeric, case-sensitive entry of up to 31 characters.Confirm Read Only Community Select the same alphanumeric, case-sensitive entry of up to 31 characters as Read Only Community.Select Save Settings at the bottom of the page.Configure Read-Write CommunityThis page allows the network administrator to configure the Read-Write Community password for the AP. Note that this password matches the System Password used to gain access to any System Configuration page.Select Configuration|SNMP from the Access Point menu tree. Select Modify|Read-Write Community. Configure the Read-Write Community password settings as required:Read-Write Community Select any alphanumeric, case-sensitive entry of up to 13 characters.Confirm Read-Write Community Select the same alphanumeric, case-sensitive entry of up to 13 characters as Read-Write Community.Select Save Settings at the bottom of the page.2.9 Configuring PPPTo use a PPP connection, choose the hardware connection, direct or modem, and verify the enabled status of serial port (default) in the PPP-Modem Setup page.PPP DirectA direct null modem serial cable connection between two APs.From the UI:Select Configuration|PPP/Modem from the Access Point menu tree. Set the Serial Port Use parameter to PPP. Verify the Modem Connected parameter setting is No. Set the Modem Connect Mode parameter to Answer. Select Save Settings to register settings. Repeat for the other AP. Set the other AP's Modem Connect Mode to Originate.Establishing ConnectionTo establish the PPP port connection on both APs:Select Configuration|PPP/Modem from the Access Point menu tree. Set the PPP Interface to Enabled. Select Save Settings.PPP with ModemsThe PPP interface provides a connection using modems over a telephone line. Connect modems to the APs with straight-through serial cables. Designate one AP as the Originating AP and the other as the Answering AP. Configure the Originating AP with dial-out information to the answering AP. The answering AP waits for the originating AP to dial into it. Refer to Supported Modems for modems supported by the AP. Dial out manually through the Special Functions menu or dial out automatically on boot. Originating APFrom the originating APs UI:Select Configuration|PPP/Modem from the Access Point menu tree. Set the Serial Port Use parameter to PPP. Set the Modem Connected parameter to Yes. Set the Modem Connect Mode to Originate. Select Dialout Number and enter the dial out telephone number for the answering AP, maximum 31 characters. This string is the same as what follows a typical Hayes Smartmodem ATDT command. Possible characters include pauses, numbers and letters. Refer to the modem documentation. Set the Dialout Mode to Auto. Configure the other settings as required.PPP Interface Enables or disables serial PPP. The default value is Disabled.Modem Speaker Sends a command to the modem to turn on or off the modem speaker. The default is Enabled.Answer Wait Time Time in seconds waiting for a remote connection before dropping attempt. The default is 60 from a 5 to 255-second range.PPP Inactivity Timeout Controls the time out between issuing a PPP packet and expecting a reply. This is necessary if the serial connection has long delay periods. The 0 value indicates no time out. The default is 3 from a 0 to 255-second range.Maximum PPP Terminates .Controls the number of PPP terminate requests the AP issues when a PPP-linked AP does not respond to a terminate request. The AP closes the PPP connection after making the maximum requests. The default is 10 from a 0 to 255-terminate request range.Select Save Settings to register settings.Answering APFrom the answering APs UI:Select Configuration|PPP/Modem from the Access Point menu tree. Set the Serial Port Use parameter to PPP. Set the Modem Connected parameter to Yes. Set the Modem Connect Mode to Answer. Configure the other required settings as on the originating AP. Select Save Settings to register settings.Initiating Modem ConnectionTo manually initiate dial-out from the originating AP to the answering AP:Select the Configuration|PPP/Modem from the Access Point menu tree. Select Modem Dialout. Select Save Settings to register settings.The AP dials out and attempts to make connection according to parameters set in Port Configuration. If dial-out fails, the AP switches to manual dial-out.For automatic dial-out:Select the Configuration|PPP/Modem from the Access Point menu tree. Set Dialout Mode to Auto. Select Save Settings to register settings. Select Configuration|Special Functions from the Access Point menu tree. Check Reset AP. Select Perform Function.The AP Leds flash as if powering up and the AP returns to a STATUS-flashing state.To hang up:Select the Configuration|PPP/Modem from the Access Point menu tree. Select Modem Hangup. Select Save Settings to register settings.2.10 Configuring the ACLThe ACL supports adding MU entries by range of MAC addresses or by individual MAC address.Ranges of MUsTo select a range of MAC addresses:Select the Configuration|Security option from the Access Point menu tree. Select View/Add/Delete to the right of Ranges of Allowed Mobile Units. Type in the minimum MAC address as the left value. Type in the maximum MAC address as the right value. Select Add Range to accept the values.When the Access Control option is enabled on the Security Setup page, all MUs within the range specified can associate with the AP. Specify up to eight ranges as needed or add to the ACL using individual address entries.Removing Ranges of MUsThe Access Control List - Add/Delete Ranges of Mobile Units page provides a facility toremove ranges of MUs from the ACL.Select the Configuration|Security option from the Access Point menu tree. Select View/Add/Delete to the right of Allowed Ranges of Mobile Units. Select the range of MAC addresses to be deleted. Select Delete Range to remove.Adding Allowed MUsThe Access Control List - Add/Delete Allowed Mobile Units page provides a facility to add up to 512 (allowed or disallowed) MUs to the ACL.Select the Configuration|Security option from the Access Point menu tree. Select View/Add/Delete to the right of Allowed Mobile Units. Type in the MAC address to the left of Add MU. Select Add MU to accept the value.NOTE: Users can enter MAC addresses without colons.Removing Allowed MUsThe Access Control List - Add/Delete Allowed Mobile Units page provides a facility toremove MUs from the ACL.Select the Configuration|Security option from the Access Point menu tree. Select View/Add/Delete to the right of Allowed Mobile Units. Under Mobile Units select the MAC address to be deleted. Select Delete MU to remove the value.Enable/Disable the ACLTo switch between enable and disable locate Access Control in the Security Setup page.Select the Configuration|Security option from the Access Point menu tree. Select Enabled or Disabled to the right of Access Control. Select Save Settings to register the new setting.Removing All Allowed MUsThe AP provides a facility to remove all MUs from the ACL.Select the Configuration|Special Functions from the Access Point menu tree. Check Clear Access Control List (ACL)-Individual or Clear Access Control List(ACL)-Range or both. Select Perform Function to remove the MUs.Load ACL from MU ListThis option from the Configuration|Special Functions menu takes all associated MUs and creates an ACL from them. This builds an ACL without having to manually enter addresses. Edit the ACL using the add and delete functions.Select Configuration|Special Functions from the Access Point menu tree. Check Load ACL from MU List to add addresses for associated MUs tothe ACL. Select Perform Function.2.11 Configuring Address FilteringThe AP can keep a list of MAC addresses for MUs not allowed to associate with it. The Disallowed Addresses provides security by preventing unauthorized access by known devices. Use it for preferred association of MUs to APs.Select Configuration|Security from the Access Point menu tree. Select View/Add/Delete to the right of Disallowed Mobile Units.Adding Disallowed MUsThe Access Control List - Add/Delete Disallowed Mobile Units page provides a facility to add up to 512 (disallowed or allowed) MUs to the list.Type in the MAC address to the left of Add Disallowed MU. Select Add Disallowed MU to accept the value.NOTE: Users can enter MAC addresses without colons.Removing Disallowed MUsThe Access Control List - Add/Delete Disallowed Mobile Units page provides a facility toremove MUs from the list:Under Disallowed MU Address select the MAC address to be deleted. Select Delete Disallowed MU to remove the value.Clearing Disallowed FiltersClear all disallowed MUs from the list by:Select Configuration|Special Functions from the Access Point menu tree. Check Clear Address Filters. Select Perform Function.The AP clears all disallowed MUs.2.12 Configuring Type FilteringPacket types supported for the type filtering function include the 16-bit DIX Ethernet types. The list can include up to 16 types.Adding Filter TypesThe Filtering Setup page provides a facility to add types to the list.Select Configuration|Filtering from the Access Point menu tree. Type in the 4 hex digits of address to the left of Add filter. Select Add Filter to accept the value.Removing Filter TypesThe Filtering Setup page provides a facility to remove types from the list.Select Configuration|Filtering from the Access Point menu tree. Select the 4 hex digits of address to delete to the left of Delete filter. Select Delete Filter to remove the type.Controlling Type FiltersSet the type filters to Disabled, Forward or Discard. The default value is Disabled. To control the type filtering mode:Select Configuration|Filtering from the Access Point menu tree. Select Forward, Discard or Disabled for Type Filtering. Select Save Settings.NOTE: Users can only enable one type filtering option at a time.2.13 Clearing MUs from the APClear the MU association table for diagnostic purposes. This is necessary if the AP has many MU associations no longer in use. Use this option to ensure that MUs associating with the AP are active.To clear MUs associated with the AP:Select Configuration|Special Functions from the Access Point menu tree. Check Clear MU Table. Select Perform Function.The AP removes MUs associated with it. MUs cleared from one AP try to reassociate with the AP or another nearby AP.2.14 Updating AP FirmwareTo update Access Points with firmware and HTML file versions older than 1.50, the user must update the AP firmware and HTML files to version 1.50 first, then update the firmware and HTML files to version 2.00. Conversely, if the user wanted to downgrade the firmware and HTML files from version 2.00 to version 1.00, the user would need to downgrade the firmware and HTML files to version 1.50 first, then downgrade the firmware and HTML files to version 1.00. When updating or downgrading the HTML files the user is required to use the Both option under the function heading Use XMODEM to Update Access Point's or Use TFTP to update Access Point's on the serial interface or check Firmware and HTML File by TFTP update THIS Access Point's on the web interface. Both the firmware and HTML files are required to be loaded on the TFTP server or users hard disk.Options for updating the firmware:A TFTP host Any computer using the Xmodem file transfer protocol.The default files for firmware updates are DSAP_FW.BIN and intl_htm.bin.Updating using TFTPThe Ethernet TFTP upgrade method requires a connection between the AP and PC on the same Ethernet segment. Verify the PC has a TFTP server running on it. Running the server requires third party software like FTP PC/TCP for DOS or OnNet for Windows. The wireless TFTP upgrade method requires a connection between the AP and a TFTP server. The TFTP server can be running on an Intel device.Updating the firmware requires a TFTP server running in the background.To update the AP firmware:Copy the firmware files DSAP_FW.BIN and intl_htm.bin to the PC hard disk. Select Configuration|Firmware from the Access Point menu tree. Enter the firmware file name in the Firmware Filename field.NOTE: Change this only if a new file name is desired. The defaults are DSAP_FW.BIN and intl_htm.bin unless the user changed the names.NOTE: Verify the path for the file name is accurate.Enter the TFTP Server IP address in the TFTP Server field. Select Perform Function to save new settings before the update is performed. Check TFTP update THIS Access Point's Firmware and/or TFTP update THIS Access Point's HTML File. Select Perform Function. A confirmation window appears. Select OK to continue.NOTE: The WIRED LAN ACTIVITY indicator on the AP does NOT flash.NOTE: To view the file transfer log, switch to the TFTP application.The AP resets when the file transfer and flash programming completes.Select Statistics|System Properties from the Access Point menu tree. Verify the version numbers are correct on the System Properties screen. Repeat process for other APs in the network.Update ALL Access PointsThe TFTP Update ALL Access Points' option up/downgrades the firmware for all associated APs with the same ESS_ID on the same subnet and includes all recognized hardware platforms regardless of firmware version. The initiating AP is responsible for sending the correct file name for each Intel platform. The initiating AP does not send update commands to non-Intel platforms. Users can find the specific APs that have firmware up/downgraded on the Known APs screen. The time interval between the WNMP update firmware commands for updating each AP is 2 seconds. This interval prevents more than one AP at a time from accessing the TFTP server and causing network congestion. The Ethernet TFTP upgrade method requires a conection between the AP and PC on the same Ethernet segment. Verify the PC has a TFTP server running on it. Running the server requires third party software like FTP PC/TCP for DOS or OnNet for Windows. The wireless TFTP upgrade method requires a connection between the AP and a TFTP server. The TFTP server can be running on an Intel device. Updating the firmware requires a TFTP server running in the background.To update the AP firmware:Copy the Firmware files DSAP_FW.BIN and intl_htm.bin to the PC hard disk. Select Configuration|Firmware from the Access Point menu tree. Enter the firmware file name in the Firmware Filename field. Enter the HTML file name in the HTML Filename field.NOTE: Change this only if a new file name is desired. The defaults are DSAP_FW.BIN and intl_htm.bin unless the user changed the names.NOTE: Verify the path for the file name is accurate.Enter the TFTP Server IP address in the TFTP Server field. Select Perform Function to save new settings. Check TFTP update ALL Access Points' Firmware and/or TFTP update ALL Access Points' HTML File. Select Perform Function to save the settings before the update is performed. NOTE: The WIRED LAN ACTIVITY indicator on the AP does NOT flash.NOTE: To view the file transfer log, switch to the TFTP application.The AP resets when the file transfer and flash programming completes.Select Statistics|System Properties from the Access Point menu tree. Verify the version number is correct on the System Properties screen.2.15 Mobile IP Using MD5 AuthenticationUsers can achieve true authentication by using the MD5 algorithm with a shared key configured into the AP and its MU. MD5 is a message-digest algorithm that takes an arbitrarily long message and computes a fixed-length digest version, consisting of 16 bytes (128 bits), of the original message. Users can think of the message-digest as a fingerprint of the original message. Since the message-digest is computed using a mathematical formula or algorithm, this makes the probability of its reproduction the equivalent of two people having the same fingerprints. The message-digest is the authentication checksum of a message from a mobile MU to an AP during the Home Agent registration process. The MD5 algorithm's purpose, therefore, prevents an MU from inpersonating an authenticated MU.2.16 Special FunctionsThe AP supports several specific functions.Select Configuration|Special Functions from the Access Point menu tree. Check one or more of the functions.Clear All Statistics Clear MU Table Clear Access Control List(ACL) - Individual Clear Access Control List(ACL) - Range Clear Address Filters Load ACL from MU List Start Flashing AP LEDs Reset AP Save Configuration to All APs Select Perform Function.2.17 Saving the ConfigurationThe AP keeps only saved configuration changes after a reset. To make configuration changes permanent, save as needed. To save all changes to all APs:Select Configuration|Special Functions from the Access Point menu tree. Check Save Configuration to All APs. Select Perform Function.2.18 Resetting the APResetting an AP clears statistics and restores the last saved configuration information. If changes are made without being saved, the AP clears those changes on reset. If changes are never saved, a reset restores the last saved configuration.Select Configuration|Special Functions from the Access Point menu tree. Check Reset AP. Select Perform Function.The AP flashes its LEDs as if powering up and returns to a STATUS - flashing state.2.19 Flashing AP LEDsFlashing all of the AP LEDs simultaneously allows visual confirmation of location. To start flashing the LEDs:Select Configuration|Special Functions from the Access Point menu tree. Check Start Flashing AP LEDs. Select Perform Function.The AP flashes all of its LEDs on and off. The selection on the Special Functions page is Stop Flashing AP LEDs. To stop flashing the LEDs:Select Configuration|Special Functions from the Access Point menu tree. Check Stop Flashing AP LEDs. Select Perform Function.3.0 Monitoring StatisticsThe AP keeps statistics of its transactions during operation. These statistics indicate traffic,transmission success and the existence of other radio network devices. Clear statistics as needed.3.1 System PropertiesThe System Properties screen displays information about the AP's configuration.To view information about the AP configuration select Statistics|System Properties from the Access Point menu tree.Information includes:Unit Name Identifies the AP name.MAC Address (BSS) Identifies the unique 48-bit, hard-coded Media Access Control address.IP Address Identifies the network-assigned Internet Protocol address. ESS_ID Identifies the unique 32-character, alphanumeric, case-sensitive network identifier.Channel The direct sequence algorithm used for the operating country.Country Identifies AP country code that in turn determines the AP direct sequence channel and channel range.Diversity Indicates whether the AP is configured for single (Primary Only) or dual antenna (On) mode.Rate control 11 Mb/sec 5.5 Mb/sec 2 Mb/sec 1 Mb/sec Defines the data transmission rate. Default is 11, 5.5 and 2 Mb/sec Optional and 1 Mb/sec Required.WEP (Privacy) Enables or disables the use of the WEP algorithm. The default is Disabled.WEP Algorithm Defines the number of bits and type of WEP algorithm use. The default is 40 Bit Shared Key.Access Control Specifies if the access control feature is enabled or disabled. If enabled, the ACL (Access Control List) specifies the MAC addresses of the MUs that can associate with this AP.CCA Mode Clear Channel Assessment (CCA) Mode is the method used to detect transmissions from other sources. The access point uses the Carrier Sense form of CCA.CCA Threshold The energy threshold or level above which the airwaves are considered busy.Model Number Identifies the model number.Serial Number States the APs unique identifier.Hardware Revision Specifies the hardware version.Manufacture Date Specifies the date of manufacture of the AP.AP Firmware Version Specifies the firmware version.RF Firmware Version Specifies the radio firmware version.HTML File Version Specifies the HTML file version.Current MUs Specifies the current number of MUs associated with this AP.Total Associations Specifies the total MU associations handled by this AP.System Up Time Specifies how long the system has been operational.3.2 Interface StatisticsSelect Statistics|Interface from the Access Point menu tree to display the Interface Statistics screen. This screen provides:packet forwarding statistics for each interface (Ethernet, PPP, RF) performance information for each interface in packets per second and bytes per second.The AP interface indicates packets sent to the AP protocol stack (e.g. configuration requests, SNMP, Telnet).To update the values once reselect the Interface icon. To have the AP automatically update the display every five seconds select Start Refresh.3.3 Forwarding CountsSelect Statistics|Forwarding Counts from the Access Point menu tree to display the Forwarding Counts screen. Forwarding Counts provides information on packets transmitted from one interface to another (Ethernet, PPP, RF(radio), AP). Forwarding Counts also displays the broadcast packets transmitted from the AP.To update the values once select the Forwarding Counts icon. To have the AP automatically update the display every five seconds select Start Refresh.3.4 Ethernet StatisticsThe AP keeps Ethernet performance statistics including packet transmission and data retries until reset. The display also includes information used only by Intel Customer Support.Select Statistics|Ethernet from the Access Point menu tree.Displayed for ethernet statistical units:Packets Seen packets received on Ethernet interfacePackets Forwarded packets forwarded from Ethernet interface toother interfacesDiscarded/NoMatch packets discarded because of unknown destinations (destinations not in the known list of database entries)Discarded/Forced packets discarded because of the applied address filtersDiscarded/Buffer packets discarded because insufficient buffers in APDiscarded/CRC packets discarded because of data errorsBroadcast/Multicast total broadcast or multicast packets receivedIndividual Address packets received with designated individual addressesPackets Sent total packets sent outAny Collision packets affected by at least one collision1 + Collisions packets affected by more than one collisionMaximum Collisions packets affected by the maximum number of collisionsLate Collisions collisions occurring after the first 64 bytesDefers the times the AP had to defer transmit requests on the Ethernet because of a busy mediumTo update the values once reselect Ethernet.To have the AP automatically update the display every five seconds select Start Refresh.3.5 RF (Radio) StatisticsThe AP keeps radio performance statistics including packet and communication information.To view RF statistics select Statistics|RF from the Access Point menu ree.Radio performance statistics include:Data Packets Sent total data packets transmittedEncrypted Packets Sent total encrypted packets transmittedData Bytes Sent total data packets transmitted in bytesBC/MC Packets Sent broadcast/multicast user data packets successfully transmittedBC/MC Bytes Sent broadcast/multicast user data bytes successfully transmittedSystem Packets Sent system packets successfully transmittedSBC/MC Packets Sent broadcast/multicast system packets successfully transmittedSuccessfully Transmitted Fragmented Packets fragmented packets successfully transmitted Unsuccessfully Transmitted Fragmented Packets fragmented packets unsuccessfully transmittedFragments Sent packet fragments transmittedPackets without Retries transmitted packets not affected by retriesPackets with Retries transmitted packets affected by retriesPackets with Maximum Retries transmitted packets affected by the maximum limit of retriesTotal Retries retries occurring on the interface. A retry occurs if the device fails to receive an acknowledgment (ACK) from a destination.Data Packets Received total data packets receivedEncrypted Packets Received total encrypted packets receivedData Bytes Received total data packets received in bytesBC/MC Packets Received broadcast/multicast user data packets successfully receivedBC/MC Bytes Received broadcast/multicast user data bytes successfully receivedSystem Packets Received system packets successfully receivedSBC/MC Packets Received broadcast/multicast system packets successfully receivedSuccessfully ReassembledFragmented Packets packets successfully reassembledUnsuccessfully ReassembledFragmented Packets packets unsuccessfully reassembledFragments Received packet fragments receivedReceived Duplicate Packets duplicate packets received by the AP. This indicates the AP sent an ACK, but the MU didn't receive it and transmitted the packet again.Undecryptable Packets total data packets that could not be decryptedReceived CRC Errors packets received that contained CRC (Cyclic Redundancy Check) errors. An MU transmitted a corrupt data packet and failed to pass the CRC verification. Ensure that any acknowledgment of the data packet contains the correct CRC word. An incorrect CRC causes the AP to discard the data packet.Received ICV Errors packets received that contained ICV (Identity Check Value) errors. An MU transmitted a corrupt data packet and failed to pass the ICV verification. Ensure that any acknowledgment of the data packet contains the correct ICV checksum.To update the values once reselect RF.To have the AP automatically update the display every five seconds select Start Refresh.3.6 Wireless AP StatisticsThe AP keeps wireless AP performance statistics including packet and communication information.To view Wireless AP statistics select Statistics|Wireless AP from the Access Point menu tree.Wireless AP performance statistics include:Current # WLAP Interfaces Refers to the current Wireless AP interfaces in use from a 1-4 range.Current State On initialization, the AP can be in any of the following states of wireless operation:starting the initializing process: Initializing Sending Probe Send Assoc Req (association request) Send Cfg BPDU (configuration Bridge Protocol Data Unit) Wait for Probe Send Probe Rsp (probe response) Send Assoc Rsp (association response) Send Cfg Rsp (configuration response) Received Root Rsp (Root response)operating in wireless mode: Root WLAP lost Disabled FunctionalQuick Wireless AP Setup provides an explanation of a Root AP.Priority States the WLAP priority value assigned to the AP. See Configuring Radio Parameters.Root Interface States the interface leading to the Root APRoot Priority States the priority value of the Root APRoot IEEE Address States the MAC address of the Root APRoot Path Cost Indicates the hops between the current WLAP and the Root APThe Wireless AP interface table shows for each interface:Itf ID Identifies the wireless interface on which this AP communicates with another.WLAP Interface IEEE Address States the MAC address of the associated WLAP.Interface State Identifies the state of the interface from: Disabled - the interface is disabled Listen - the AP listens for information Learn - the AP learns the information Forward - the AP forwards data Block - the AP blocks transmission.Path Cost An abstract unit added to the Root Path Cost field in the Config BPDU received on this interface. The unit represents a hop on the path to the Root AP.Designated Root ID An ID designated by the Root AP. APs in WLAP mode negotiate the position of Root AP at power up. The AP with the lowest Root ID, path and WLAP ID becomes the Root AP. Both the Root ID and the WLAP ID are 16-digit numbers. The first 4 digits represent the Priority value and the remaining 12 digits represent the MAC address of the AP.Designated Cost A path cost designated by the Root AP.Designated WLAP ID A WLAP ID assigned by the Root AP.Designated Itf ID An Itf ID assigned by the Root AP.To update the values once reselect Wireless AP.To have the AP automatically update the display every five seconds select Start Refresh.3.7 Miscellaneous StatisticsThe AP keeps statistics on WNMP and SNMP packets, filtering violations, serial port use, and mobile IPs. The Miscellaneous Statistics screen shows grouped statistics.Select Statistics|Miscellaneous from the Access Point menu tree. WNMP statistics are:Echoes echo requests received by the APPings ping requests received by the APPassthrough Echoes echoes for MUs associated with the APSNMP statistics are:Requests configuration requests received from the SNMP managerTraps AP messages sent to the SNMP managerFilter statistics are:ACL Violations attempts by MU, not in ACL list to associate with this APAddress packets discarded by address filterType packets discarded by type filterModem statistics for the serial port are:Number of Dialouts dial out attempts by the APDialout Failures dial out failures by the APNumber of Answers answer attempts by the APCurrent Call Time current connection session length in secondsLast Call Time last connection session length in secondsMobile IP statistics are:Agent Ad Sent number of agent advertisements sent from this APRegistration Request Received number of mobile IP registration requests receivedRegistration Reply Sent number of mobile IP registration replies sentTo update the values once reselect Miscellaneous. To have the AP automatically update the display every five seconds select Refresh.3.8 Analyzing Channel UseThe AP keeps statistics for individual channels (frequencies). These identify channels that have difficulty transmitting or receiving due to retries.To view statistics for individual channels:Select Statistics|Frequency Retries from the Access Point menu tree. The display shows counters for the packets sent, received and retries for each channel.3.9 Analyzing RetriesThe AP keeps statistics of packets with multiple retries. Use these statistics to identify severe occurrences of retries. Retries occur when the transmitting station fails to receive an acknowledgment for a transmitted packet. This lack of acknowledgment can result from:two or more stations transmitting simultaneously and causing collisions the receiving station moving out of range the receiving station being powered off.Any one of these results causes both devices to back off and retry at random times. Too many retries can indicate a system problem.To view retry severity:Select Statistics|Retry Histogram from the Access Point menu tree. The display indicates the packets that experience retries (up to 15 retries).3.10 Known APsThis display shows a list of the known APs derived from AP-to-AP communication. The list includes the MAC and IP addresses and configuration information for each AP. The first AP on the list is the AP providing the information. Other APs listed in subsequent lines are recognized by the AP. A broadcast message to APs every 12 seconds determines this list.NOTE: The TFTP update ALL Access Points' Firmware and/or TFTP update ALL Access Points' HTML File functions in Configuration|Firmware configure firmware and HTML File for each AP shown in the Known APs menu. Users can perform these options only among the same hardware platforms and firmware version.Select Statistics|Known APs from the Access Point menu tree.The AP displays for each known AP:MAC Address The unique 48-bit, hard-coded Media Access Control address, is also known as the station identifier of the device.IP Address The network-assigned Internet Protocol addressChannel The direct sequence channel used by the AP.MUS The MUs associated with the AP.KBIOS The data traffic handled by the AP in kilobytes in and out per second.Firmware The firmware version used by the AP.Away Determines if the AP is a functional part of the network or away. Away indicates the last known transmission took place 12 or more seconds.3.11 Mobile UnitsMobile Units statistics provide information on MUs associated with the AP. These include information on data sent and received, activity and association. An MU shows only in the Home/Foreign Agents screens when an MU has roamed to another AP on a different subnet. Once an MU has roamed, the MU IP Address displays on the Home Agents screen of the MU "home" AP with the IP Address of the Foreign Agent to tell the "home" AP where to forward packets.The MU IP Address is also shown in the Foreign Agents table and Known Mobile Units screens of the new "foreign" AP to tell the new AP where to expect packets from for newly associated MUs. The AP Known Mobile Units screen shows only the MUs associated "locally" on the same subnet.Select Mobile Units|Known Mobile Units from the Access Point menu tree. The display shows the currently associated MUs listed by MAC address. An entry in the list appears as follows: addr [p:i#eV]where:addr MU's MAC address in xx:xx:xx:xx:xx:xx formatp MU's power mode: P for PSP, C for CAM. An unassociated MU does not display any character.i MU location on AP interfaces. R for radio, P for PPP. MUs with an A were associated with the AP in the past, but no longer associate with it at time of verifying status.# APs current Radio transmit rate for the messages sent to the MU. (1, 2, 5 for 5.5, and 11)e Encryption is enabled for this mobile unit.V Indicates an Intel Voice enabled device.To update the known MUs automatically select Start Refresh.To bring up more detailed information on an MU, select Stats to the right of the listing. Information displayed includes:Interface The AP interface shows the MU connection (RF, Ethernet, PPP or AP)State The connection state between the AP and the MU: Host indicates the unit is on the AP or PPP interface. Associated indicates current association on the radio interface. Away indicates the unit is no longer associated with the AP.Power Mode The MU power mode (CAM, PSP or N/A).Station ID The IEEE 802.11 specification requires that each AP assign a station ID to all associated MUs, regardless of the MU power mode (PSP or CAM).Begin Current Association The time the current association begins in hours, minutes and seconds.Supported Rates Data transmission rates the station supports.Current Transmit Rate The current rate the AP transmits data to the station.Priority Indicates whether the MU is a voice or data type device. Voice indicates packet delivery is high priority. Normal indicates packet delivery in not time critical. Encryption MU encryption support: On or Off.Packets Sent The packets sent by the AP to the MU.Packets Received The packets received by the AP from the MU.Bytes Sent The bytes sent by the AP to the MU.Bytes Received The bytes received by the AP from the MU.Discard Pkts/CRC The packets discarded because of data error.Last Activity The time in hours, minutes and seconds since the last communication with the MU.Last Data Activity The time in hours, minutes and seconds since the last data transfer.To update the values once select Refresh.Home Agents and Foreign Agents display the mapping of MUs to mobility agents. Refer to Roaming Across Routers.3.12 Clearing StatisticsTo clear statistics:Select Configuration|Special Functions from the Access Point menu tree. Check Clear ALL Statistics. Select Perform Function.The AP zeroes all statistics.NOTE: Resetting the AP also clears statistics.4.0 Hardware InstallationAP installation includes connecting the AP to the wired network, attaching antennas, AP placement and power up. Installation procedures vary for different environments.4.1 PrecautionsBefore installing the AP verify the following:The location for the unit is dry and dust free. Do not install in wet or dusty areas without additional protection. Contact an Intel representative for more information. Verify the environment has a temperature range between -20° C to 55° C. If attaching to a wired Ethernet, keep AP on the same subnet.4.2 Package ContentsCheck package contents for:AP power adapterNOTE: Report missing or malfunctioning items to Intel Customer Support.Verify the AP model indicated on the bottom of the unit and packaging. 4.3 RequirementsThe minimum installation requirements for a single-cell, peer-to-peer network are:a power outlet an antennaThe AP supports a 10Base-T unshielded twisted pair (UTP) standard. Users can order a null-modem cable, part number 61383-00-0, for direct serial connections by contacting an Intel sales representative.NOTE: Use and test the radio network with an MU.Network ConnectionLocate connectors for Ethernet and power on the back of the AP.Ethernet configurations vary according to the environment. Determine the Ethernet wiring to connect the AP, 10Base-T or single cell.NOTE: the site survey determines the number of APs to install and their location.10Base-T UTPUse a 10Base-T connection for an AP attached to a wired UTP Ethernet hub. Normal 10Base-T limitations apply.Plug the data cable RJ-45 connector into the AP RJ-45 connector. Plug the other end of the data cable into the LAN access port (possibly a hub or wall connection).Single CellThe single-cell connection option allows a single AP to bridge MUs without a wired network. MUs appear as peers as in any Ethernet environment.4.4 Placing the APAP antenna coverage resembles lighting in that an area lit from far away might not be bright enough. An area lit sharply with few lights minimizes coverage and creates dark areas where no light exists. Even AP placement (like even placement of light bulbs) provides even, efficient coverage.Place an AP using the following guidelines:Install the AP as high as practical. Orient the AP vertically for best reception. Point the AP antenna downward if attaching the AP to the ceiling.The dual antenna assembly provides diversity that can improve performance and signal reception.Intel continues to add antenna options for Intel® PRO/Wireless 2011 LAN devices. Contact an Intel sales representative for available antenna options. 4.5 Power OptionsStandard 24 volt, 1 amp power supply 115/230VAC, 50/60 Hz. (Part Number: 50-24000-024) US line cord (Part Number: 23844-00-00)NOTE: A BIAS-T system can also be used to combine low-voltage DC with Ethernet data in a single cable connecting to an access point.4.6 Mounting the APThe AP rests on a flat surface or attaches to a wall, or any hard, flat, stable surface. Use the standard-mounting kit provided with the Intel® PRO/Wireless 2011 LAN Access Point.Choose one of the options based on environment.Resting flat Rests on the four rubber pads on the underside of the AP. Place on a surface clear of debris and away from traffic.Attaching on the wall Rests on screws. Orient the AP in a downward position on the wall so the LEDs face the floor.4.7 Connecting the Power AdapterThe power adapter connects to the rear of the AP and to a power outlet. Verify the power adapter is correct according to the country. Plug the power adapter cable into the socket at the back of the AP. Plug the adapter into an outlet. The AP is functional when the Status indicator on the front of the AP reaches a consistent flashing and the Wireless LAN Activity indicator begins flickering. This indicates that the AP is ready for MUs to associate with it. The AP works without user intervention after setup. Refer to the AP LED indicators to verify that the unit operates properly.4.8 LED IndicatorsThe top panel LED indicators provide a status display indicating power and activity. The indicators are: Power Flashing indicates AP initialization.Steady Green during operation. Wired LAN Activity Flashing indicates data transfers on wired connection. Wireless LAN Activity Flickering indicates beacons and data transfers with MUs.WLAP Modes - LED IndicatorsWhen in the WLAP mode this chart signifies the APs LED indicator status. For the IEEE 802.11 protocol and APs using firmware version 4.00-20 or above only.After power up, system initialization begins:LED State Status Blinks Wired LAN Activity Blinks if activity occurs Wireless LAN Activity OffWhen a WLAP begins a full scan :LED State Status On Wired LAN Activity Off Wireless LAN Activity Blinks slowlyWhen one or more WLAPs are found, but still in full scan state:LED State Status On Wired LAN Activity Off Wireless LAN Activity Blinks slowlyWhen the WLAP is in functional state, but one or more WLAP connections are not in Forward state:LED State Status Blinks regularly Wired LAN Activity Blinks if activity occurs Wireless LAN Activity Blinks slowlyWhen all WLAP connections are in Forward state:LED State Status Blinks regularly Wired LAN Activity Blinks if activity occurs Wireless LAN Activity Blinks if activity occursSpecial cases:If the WLAP manual BSS_ID is NOT set and no other WLAP is found the WLAP goes to the functional state. If the WLAP manual BSS_ID is set and the specified WLAP not found, the WLAP remains in FULL Scan state permenantly. The LEDs have the following indicator status permenantly:LED State Status On Wired LAN Activity Off Wireless LAN Activity Blinks slowlyIf the WLAP manual BSS_ID is set with the broadcast bit ON (i.e.: the first Byte is 01) and the specified WLAP not found, the WLAP tries to associate with another WLAP. If it still cannot find another WLAP it goes to Functional State. If the RF interface is disabled the LED indicator status displays:LED State Status On Wired LAN Activity Blinks slowly Wireless LAN Activity Off4.9 TroubleshootingCheck the following symptoms and their possible causes before contacting the Intel Customer Support.Ensure wired network is operating.Verify AP operation:AP does not power up: faulty AP power supply failed AC supply Electrical Management System (EMS) operating outlet.After the AP resets and hardware is initialized, it performs an SRAM test. If the test passes, all three LEDs turn on. If the test fails, the LEDs all turn off and the AP resets.Identify wired network problems: No operation: Verify AP configuration through Telnet, PPP or UI. Review procedures for Ethernet and serial connection of the AP. Review AP firmware revisions and update procedures. Verify network configuration by ensuring that there are no duplicate IP addresses.Power down the device in question and ping the assigned address of the device. Ensure no other device responds to that address.AP powered on but has no connection to the wired network: Check connections for proper wiring.Verify network wiring and topology for proper configuration: Check that the cables used have proper pinouts and connectors. Verify router configuration and filtration setting. Check that network band use does not exceed 37% of bandwidth. Verify MU operations. Confirm AP operation. Confirm AP and MU Net_ID (ESS_ID). Check that the radio driver loaded properly. Check that the MU PROTOCOL.INI or NET.CFG file is compatible with the network operating system.Slow or erratic performance: Check MU and RF communications range. Check antenna, connectors and cabling. Verify the AP is using the primary antenna connection for single antenna use. Verify that antenna diversity setting for AP is appropriate. If using one antenna, the setting is Primary Only; if using two antennas, the setting is Primary and Secondary. Verify network traffic does not exceed 37% of bandwidth. Check to see that the wired network does not exceed 10 broadcast messages per second. Verify wired network topology and configuration.4.10 Setting Up MUsRefer to MU documentation for installing drivers, client software and testing. Use the default values for the Net_ID (ESS_ID) and other configuration parameters until network connection verification.MUs attach to the network and interact with the AP transparently.