1.0   Introduction
1.1   Access Point (AP)
1.2   Radio Basics
        Network Topology
        Cellular Coverage
        The Root AP and Association Process
        IEEE 802.1d Spanning Tree Support
        Site Topography
        Site Surveys
1.3   Access Point Functional Theory
        MAC Layer Bridging
        Filtering and Access Control
        Auto Fallback to Wireless Mode
        DHCP Support
        Media Types
        Bridging Support
        PPP Connection
        Direct Sequence Spread Spectrum
        MU Association Process
        Mobile IP
        Supporting CAM and PSP Stations
        Data Encryption
        HTTP, HTML Web Server Support
        Management Options
        Programmable SNMP Trap Support
        Using SNMP
        Increased MIB Support
        Using the UI
2.0   Configuring the AP
2.1   Gaining Access to the UI
        Using Telnet
        Using Direct Serial Connection
        Using a Dial-Up Connection
        Using a Web Browser
        Setup Network Web Server Help File Access
        Accessing Web Browser UI
        Set Up Network Web Server Help File Access
2.2   Navigating the UI
        Entering Admin Mode
        Changing the Access to the UI
        Configuring for Dial-Up to the UI
        Configuring Serial Port
        Configuring the Dial-Up System
        Hanging Up
        Navigating the UI Using a Web Browser
2.3   Access Point Installation
        Additional Gateways
2.4   Configuring Security Parameters
        System Password Administration
        Encryption Key Setup
2.5   Configuring System Parameters
        Configuring Mobile Home MD5 Key
2.6   Configuring Radio Parameters
2.7   Wireless Operation Parameters
2.8   Configuring the SNMP Agent
        Configure Read Only Community
        Configure Read-Write Community
2.9   Configuring PPP
        PPP Direct
        Establishing Connection
        PPP with Modems
        Originating AP
        Answering AP
        Initiating Modem Connection
2.10 Configuring the ACL
        Ranges of MUs
        Removing Ranges of MUs
        Adding Allowed MUs
        Removing Allowed MUs
        Enable/Disable the ACL
        Removing All Allowed MUs
        Load ACL from MU List
2.11 Configuring Address Filtering
        Adding Disallowed MUs
        Removing Disallowed MUs
        Clearing Disallowed Filters
2.12 Configuring Type Filtering
        Adding Filter Types
        Removing Filter Types
        Controlling Type Filters
2.13 Clearing MUs from the AP
2.14 Updating AP Firmware
        Updating using TFTP
        Update ALL Access Points
2.15 Mobile IP Using MD5 Authentication
2.16 Special Functions
2.17 Saving the Configuration
2.18 Resetting the AP
2.19 Flashing AP LEDs
3.0   Monitoring Statistics
3.1   System Properties
3.2   Interface Statistics
3.3   Forwarding Counts
3.4   EthernetStats
3.5   RF (Radio) Statistics
3.6   Wireless AP Statistics
3.7   Miscellaneous Statistics
3.8   Analyzing Channel Use
3.9   Analyzing Retries
3.10 Known APs
3.11 Mobile Units
3.12 Clearing Statistics
4.0   Hardware Installation
4.1   Precautions
4.2   Package Contents
4.3   Requirements
        Network Connection
        10Base-T UTP
        Single Cell
4.4   Placing the AP
4.5   Power Options
4.6   Mounting the AP
4.7   Connecting the Power Adapter
4.8   LED Indicators
        WLAP Modes - LED Indicators
4.9   Troubleshooting
4.10  Setting Up MUs
A.0   Conventions

Intel® PRO/Wireless 2011 LAN is a spread spectrum cellular network that operates between 2.4 to 2.5 GHz (gigahertz). This technology provides a high capacity network using multiple points within large or small environments.

The Intel access point (AP) is an Intel® PRO/Wireless 2011 LAN direct sequence (DS) product. Intel® PRO/Wireless 2011 LAN products use direct sequence technology to provide a high-capacity, high-data-rate wireless network.

Intel® PRO/Wireless 2011 LAN infrastructure products include:

1.1  Access Point (AP)

The Access Point (AP) provides a bridge between Ethernet wired LANs and Intel® PRO/Wireless 2011 LANs. It provides connectivity between Ethernet wired networks and radio-equipped mobile units (MUs). MUs include the full line of Intel terminals, PC Cards and PCI adapters, bar-code scanners, third-party devices, and other devices.

The AP provides a 11 Mbps data transfer rate on the radio network. It monitors Ethernet traffic and forwards appropriate Ethernet messages to MUs over the Intel® PRO/Wireless 2011 LAN. It also monitors MU radio traffic and forwards MU packets to the Ethernet LAN.

The AP meets the following:

• the regulatory requirements for Europe and many other areas of the world
• FCC part 15 class A with no external shielding
• FCC part 15 class B, ETS 300-339 compliance, including CE mark.

The AP has the following features:

• built-in diagnostics including a power-up self-check
• built-in dual antenna assembly with optional diversity
• wireless MAC interface
• field upgradable Firmware
• 10baseT Ethernet port interface with full-speed filtering
• power supply IEC connector and a country-specific AC power cable
• PC/AT Serial Port Interface
• support for up to 127 mobile units
• data encryption
• increased MIB support
• SNMP support
• Mobile IP support.
• DHCP support
• HTTP Web server support
• short RF preamble
• wireless AP

When properly configured, an MU communicating with an AP appears on the network as a peer to other network devices. The AP receives data from its wired interfaces and forwards the data to the proper interface.

The AP has connections for the wired network and power supply. The AP attaches to a wall or ceiling depending on installation-site requirements.

1.2  Radio Basics

Intel® PRO/Wireless 2011 LAN devices use electromagnetic waves, radio signals, to transmit and receive information without wires. Users communicate with the network by establishing radio links between terminals and APs.

Intel® PRO/Wireless 2011 LAN devices use FM (frequency modulation) to transmit digital data from one device to another. Using FM, a radio signal begins with a carrier signal that provides the base or center frequency. The digital data signal is superimposed on the carrier signal (modulation). The radio signal propagates into the air as electromagnetic waves. A receiving antenna in the path of the waves absorbs the waves as electrical signals. The receiving device demodulates the signal by removing the carrier signal. This demodulation results in the original digital data.

Intel® PRO/Wireless 2011 LAN devices use the environment (the air and certain objects) as the transmission medium. Intel® PRO/Wireless 2011 LAN radio devices transmit in the 2.4 to 2.5-GHz frequency range, a license-free range throughout most of the world. The actual range is country-dependent.

Intel® PRO/Wireless 2011 LAN devices, like other Ethernet devices, have unique, hardware-encoded Media AccessControl (MAC) or IEEE addresses. MAC addresses determine the device sending or receiving data. A MAC address is a 48-bit number written as six hexadecimal bytes separated by colons. For example:

                00:A0:F8:24:9A:C8

To locate the AP MAC address see the bottom of the unit.

Network Topology

The variations possible in Intel® PRO/Wireless 2011 LAN topologies depend on the following factors:

• the AP function in the network
• the data transfer rate
• the wireless AP (WLAP) interface

Select from the following topologies:

• A single AP used without the wired network provides a single-cell wireless network for peer-to-peer MUs.
  
  
  
  
  
  
• A single AP can bridge the Ethernet and radio networks.
  
  
  
  
  
  
• Multiple APs can coexist as separate, individual networks at the same site without interference using different ESS_IDs.
  
  
  
  
  
  
• Multiple APs wired together provide a network with better coverage area and performance when using the same ESS_ID.
  
  

In WLAP mode, a wireless AP-to-AP connection functions:

• as a bridge to connect two Ethernet networks
  
  
  
  
  
  
• as a repeater to extend coverage area without additional network cabling
  
  
  
  
  
  

• A wireless AP network is possible, depending on the network bandwidth and configuration. Each wireless AP can have connections with up to four other wireless APs.
  
  
  
  
  
  

Using more than two WLAPs to establish a connection slows network performance for all topologies. To increase WLAP performance, disable WNMP Functions and AP-AP State Xchg parameters under the Set System Configuration screen.

To set up an AP for wireless operation automatically, select the /Enabled/ option for the WLAP Mode parameter. To set these values see Configuring Radio Parameters.

Cellular Coverage

The AP establishes an average communication range with MUs called a Basic Service Set (BSS) or cell. When in a particular cell, the MU associates and communicates with the AP of that cell. Each cell has a Basic Service Set Identifier (BSS_ID). In 802.11, the AP MAC address represents the BSS_ID. The MU recognizes the AP it associates with using the BSS_ID. Adding APs to a LAN establishes more cells in an environment, making it an RF Network using the same Net_ID or Extended Service Set (ESS).

APs with the same Net_ID (ESS_ID) define the coverage area. The MU searches for APs with a matching ESS_ID and synchronizes with an AP to establish communications. This allows MUs within the coverage area to move about or roam. As the MU roams from cell to cell, it switches APs. The switch occurs when the MU analyzes the reception quality at a location and decides the AP to communicate with based on the best signal strength and lowest MU load distribution.

If the MU does not find an AP with a workable signal, it performs a scan to find any AP. As MUs switch APs, the AP updates the association table.

The user can configure the ESS_ID. A valid ESS_ID is an alphanumeric, case-sensitive identifier up to 32 characters. Ensure all nodes within one LAN use the same ESS_ID to communicate on the same LAN. Multiple wireless LANs can coexist in a single environment by assigning different ESS_IDs for APs.

The Root AP and Association Process

By default, APs with WLAP Mode enabled and within range of each other automatically associate and configure wireless operation parameters at power up. This association process determines the wireless connection viability and establishes the Root AP and subsequently designated WLAPs.

The root AP maintains the wireless connection among WLAPs by sending outbeacons, sending and receiving configuration BPDU (Bridge Protocol DataUnit) packets between each designated WLAP. The WLAP with the lowestWLAP ID becomes the Root AP. A concatenation of the WLAP Priority valueand the MAC address becomes the WLAP ID. Ensure the WLAPs associatedwith the Root AP use the Root AP channel, DTIM (Delivery TrafficIndication Message) and TIM (Traffic Indication Map) interval.

In this configuration, the WLAP Priority value is the default 8000 Hex. Onconcatenating this value to the MAC addresses of the APs, AP A on Ethernet Ihas the lowest WLAP ID with 800000A0F800181A, making it the Root AP. AP Cuses the AP A channel, DTIM and TIM interval.

If AP D on Ethernet II has data for a device on Ethernet I, it requires a bridgeor a repeater. In this configuration, AP C functions as a repeater. To ensuretransmission to devices on Ethernet I, AP D has to use the AP A hopsequence, DTIM and TIM interval.

To manually designate AP B as the Root AP, assign it a lower WLAP Priorityvalue. Refer to Wireless AP Parameters. Assigning a WLAPPriority value of 7000 Hex to the AP B MAC address 00:A0:F8:11:23:5D causes AP B to become the Root AP by having the lowest WLAP ID 700000A0F811235D.

IEEE 802.1d Spanning Tree Support

This protocol creates a loop-free topography with exactly ONE path betweenevery LAN. This is the shortest path from the Root AP to each AP and LAN. Ifan AP or LAN fails, a new route is calculated and added to the tree. Allpacket forwarding follows the spanning tree. APs have to choose one AP asthe Root AP. The same holds true for WLAPs associating with the root AP oranother AP connected to the Ethernet LAN to prevent forming loops.

Site Topography

For optimal performance, locate MUs and APs away from transformers, heavy-duty motors, fluorescent lights, microwave ovens, refrigerators and other industrial equipment.

Signal loss can occur when metal, concrete, walls or floors block transmission. Locate APs in open areas or add APs as needed to improve coverage.

Site Surveys

A site survey analyzes the installation environment and provides users with recommendations for the equipment and its placement. The optimum placement of 11 Mbps access points differs from 1 or 2 Mbps access points, because the locations andnumber of access points required are different.

1.3  Access Point Functional Theory

To improve AP management and performance, users need to understand basic AP functionality and configuration options. The AP includes features for different interface connections and network management.

The AP provides MAC layer bridging between its interfaces. The AP monitors traffic from its interfaces and, based on frame address, forwards the frames to the proper destination. The AP tracks the frames' sources and destinations to provide intelligent bridging as MUs roam or network topologies change. The AP also handles broadcast and multicast message initiations and responds to MU association requests.

MAC Layer Bridging

The AP listens to all packets on all interfaces and builds an address database using the unique IEEE 48-bit address (MAC address). An address in the database includes the interface media that the device uses to associate with the AP. The AP uses the database to forward packets from one interface to another. The bridge forwards packets addressed to unknown systems to the Default Interface(either Ethernet or PPP).

Each AP stores information on destinations and their interfaces to facilitate forwarding. When a user sends an ARP (Address Resolution Protocol) request packet, the AP forwards it over all enabled interfaces (Ethernet, PPP, radio and WLAP) except over the interface the ARP request packet was received. On receiving the ARP response packet, the AP database keeps a record of the destination address along with the receiving interface. With this information, the AP forwards any directed packet to the correct destination. The AP forwards packets for unknown destinations to the Ethernet interface.

The AP removes from its database destinations or interfaces not used for a specified time. The AP refreshes its database when it transmits or receives data from these destinations and interfaces.

Filtering and Access Control

The AP provides facilities to limit the MUs that associate with it and the data packets that can forward through it. Filters can provide network security or improve performance by eliminating broadcast/multicast packets from the radio network.

The ACL (Access Control List) contains the MAC addresses for MUs allowed to associate with the AP. This provides security by preventing unauthorized access.

The AP uses a disallowed address list of destinations. This feature prevents the AP from communicating with specified destinations. This can include network devices that do not require communication with the AP or its MUs.

Depending on the setting, the AP can keep a list of frame types that it forwards or discards. The Type Filtering option prevents specific frames (indicated by the 16-bit DIX Ethernet Type field) from being processed by the AP. These include certain broadcast frames from devices unimportant to the wireless LAN but which take up bandwidth. Filtering out unnecessary frames can also improve performance.

Auto Fallback to Wireless Mode

The AP supports an Auto Fallback to Wireless when the hardware Ethernet connection fails or becomes broken. The Auto Fallback function operates only with an AP in WLAP Mode and connected to the Ethernet network. The AP resets itself and during initialization attempts to associate with any other WLAP in the network.

Refer to Configuring System Parameters and Wireless Operation Parameters.

DHCP Support

The AP uses Dynamic Host Configuration Protocol (DHCP) to obtain a leased IP address andnetwork configuration information from a remote server. DHCP is based on BOOTP protocol. DHCP can coexist or interoperate with BOOTP. An AP sends out a DHCP request searching for a DHCP server to acquire the network configuration and firmware file names. Because BOOTP and DHCP are interoperable, whichever responds first becomes the server allocating the information. The DHCP client automatically sends a DHCP request every XX hours/days to renew the IP address lease as long as the AP is running. (This parameter is programmed at the DHCP server. Example: Windows NT servers typically are set for 3 days.)

The AP can optionally download two files when a boot takes place, the firmware file and an HTML file.Users can program the DHCP or BOOTP server to transfer these two files when a DHCP request is made.

When the AP receives a network configuration change or is not able to renew theIP address lease the AP sends out an SNMP trap.

Media Types

The AP supports bridging between Ethernet, radio and serial media.

The Ethernet interface fully complies with Ethernet Rev. 2 and IEEE 802.3 specifications. The AP supports 10Base-T wired connections and full-speed filtering. The data transfer rate over radio waves is 11 Mbps. The Ethernet interface is optional for single-cell or PPP-connected networks.

The radio interface conforms to IEEE 802.11 specification. The interface operates at 11 Mbps using direct sequence radio technology. The AP supports multiple-cell operations with fast roaming between cells. With the direct sequence system, each cell operates independently. Each cell provides an 11 Mbps bandwidth. Adding cells to the network provides increased coverage area and total system capacity. The AP supports MUs operating in Power Save Polling (PSP) mode or Continuously Aware Mode (CAM) without user intervention.

The DB 9-pin RS-232 serial port provides a UI (User Interface) or a (Point to Point Protocol) connection. The UI provides basic management tools for the AP. The PPP provides a link between APs using a serial connection. The serial link supports short haul (direct-serial)or long haul (telephone-line) connections. The AP is a DTE (Data Terminal Equipment) device with male pin connectors for the RS-232 port. Connecting the AP to a PC requires a null modem cable and connecting the AP to a modem requires a straight-through cable.

Bridging Support

The AP PPP (Point to Point Protocol) interface, accessible from the serial port at the rear of the AP, provides two types of bridging operations:

• Data-link bridging between two APs. A network using a data-link bridge provides radio coverage by using a remote AP in a location that is geographically distant from the AP connected to the Ethernet network. The remote AP cannot provide an Ethernet connection to other APs. MUs associating with the remote AP transmit and receive from the Ethernet network through the PPP link.
  
  
  
  
  
  
• Internet Protocol bridging between an AP and a computer. To establish an Internet Protocol bridge with an AP, ensure the computer includes the appropriate Telnet software with PPP and TCP/IP protocols. By using Telnet, a computer at a remote location can connect to any AP on an Ethernet network, as long as data transfers through IP packets.
  
  
  
  
  
  

A PPP link provides the option of using a direct serial link or modem to extend wired Ethernet topologies.

Once in PPP mode, the AP automatically attempts to communicate with the other device using the Data-Link Bridging (DLB) protocol. An AP using DLB communicates on the MAC level, and receives and transmits Ethernet frames.

If the other device does not support DLB, the AP attempts to communicate using Internet Protocol Control Protocol (IPCP). An AP using IPCP communicates on the IP level, and receives and transmits IP (Internet Protocol) packets.

The PPP implementation in the AP uses the Link Control Protocol (LCP) and Network Control Protocol (NCP) as described in:

• RFC 1171: the Point-to-Point Protocol, July 1990.
• RFC 1220: PPP Extensions for Bridging, April 1991.
• RFC 1332: The PPP Internet Protocol Control Protocol, May 1992.
• RFC 1661: The Point-to-Point Protocol, July 1994.

RFCs are Requests For Comments used in Internet Communities.

The AP database dynamically tracks MUs and APs on the PPP interface. Packets forward to the PPP link after the AP determines their destination.

Refer to RFC 1171: The Point to Point Protocol and RFC 1220: PPP Extensions for Bridging for information.

PPP Connection

Connecting two APs with a direct serial link requires a null-modem serial cable.
Connecting two APs with modem devices requires straight-through cables between the APs and modems. Using modems requires using a telephone line for as long as the link remains active.
When using a modem connection, one AP represents the originating AP and the other represents the answering AP. When using a PPP link, do not use the serial port to access the UI. Access to the UI requires establishing a Telnet session with the AP.

Direct Sequence Spread Spectrum

Spread spectrum (broadband) uses a narrowband signal to spread the transmissionover a segment of the radio frequency band or spectrum. Direct sequence is a spread spectrumtechnique where the transmitted signal is spread over a particular frequency range.The Intel® PRO/Wireless 2011 LAN Access Point uses direct sequence spread spectrum (DSSS) forradio communication.

Direct sequence systems communicate by continuously transmitting a redundant pattern of bitscalled a chipping sequence. Each bit of transmitted data is mapped into chips by the accesspoint and rearranged into a pseudorandom spreading code to form the chipping sequence. Thechipping sequence is combined with a transmitted data stream to produce the AP output signal.

Mobile Units receiving a direct sequence transmission use the spreading code to map the chipswithin the chipping sequence back into bits to recreate the original data transmitted by theaccess point. Intercepting and decoding a direct sequence transmission requires a predefinedalgorithm to associate the spreading code used by the transmitting access point to the receivingMU. This algorithm is established when the access point and MU are configured. The bit redundancywithin the chipping sequence enables the receiving MU to recreate the original data pattern, evenif bits in the chipping sequence are corrupted by interference.

The ratio of chips per bit is called the spreading ratio. A high spreading ratio increases theresistance of the signal to interference. A low spreading ratio increases the bandwidth availableto the user. The access point uses two chips per bit among three channels within the 2.4 GHz bandin a pattern avoiding any 1 or 2 Mbps systems operating in the same area. The access point is capable of an 11 Mbps data transmission rate, but the coverage area is less than a 1 or 2 Mbps access point since coverage area decreases as bandwidth increases.

MU Association Process

APs recognize MUs as they associate with the AP. The AP keeps a list of the MUs it services. MUs associate with an AP based on the the following conditions:

• the signal strength between the AP and MU
• MUs currently associated with the AP
• the MUs encryption and authentication capabilities and the type enabled
• the MU supported data rate (1 Mbps, 2 Mbps, 5.5 Mbps or 11 Mbps)

MUs perform preemptive roaming by intermittently scanning for APs and associating with the bestavailable AP. Before roaming and associating with APs, MUs perform full or partial scans to collect AP statistics and determine the direct sequence channel used by the AP.

Scanning is a periodic process where the MU sends out probe messages on all frequencies defined by the country code. The statistics enable an MU to reassociate by synchronizing its frequency to the AP. The MU continues communicating with that AP until it needs to switch cells or roam.

MUs perform full scans at start-up. In a full scan, an MU uses a sequential set of channels as the scan range. For each channel in range, the MU tests for CCA (Clear Channel Assessment). When a transmission-free channel becomes available, the MU broadcasts a probe with the ESS_ID and the broadcast BSS_ID. An AP-directed probe response generates an MU ACK (Mobile Unit Acknowledgment) and the addition of the AP to the AP table with a proximity classification. An unsuccessful AP packet transmission generates another MU probe on the same channel. If the MU fails to receive a response within the time limit, it repeats the probe on the next channel in the sequence. This process continues through all channels in the range.

MUs perform partial scans at programmed intervals, when missing expected beacons or after excessive transmission retries. In a partial scan, the MU scans APs classified as proximate on the AP table. For each channel, the MU tests for CCA. The MU broadcasts a probe with the ESS_ID and broadcast BSS_ID when the channel is transmission-free. It sends an ACK to a directed probe response from the AP, and updates the AP table. An unsuccessful AP packet transmission causes the MU to broadcast another probe on the same channel. The MU classifies an AP as out-of-range in the AP table if it fails to receive a probe response within the time limits. This process continues through all APs classified as proximate on the AP table.

An MU can roam within a coverage area by switching APs. Roaming occurs when:

• an unassociated MU attempts to associate or reassociate with an available AP
• the supported rate changes and the MU finds a better transmit rate with another AP
• the RSSI (received signal strength indicator) of a potential AP exceeds the current AP
• the ratio of good-transmitted packets to attempted-transmitted packets falls below a threshold
• when the MU detects an imbalance in the number of MUs associated with available APs and roams to a less loaded AP

An MU selects the best available AP and adjusts itself to the AP direct sequence channel to begin association. Once associated, the AP begins forwarding any frames it receives addressed to the MU. Each frame contains fields for the current direct sequence channel. The MU uses these fieldsto resynchronize to the AP.

Mobile IP

The Internet Protocol currently identifies the MU point of attachment to a network through its IP address. The host routes packets for the MU according to the location information contained in the IP header. If the MU roams across routers, the following situations occur:

• The MU changes its point of attachment without changing its IP address causing forthcoming packets to become undeliverable.
• The MU changes its IP address when it moves to a new network causing it to lose connection.

Mobile IP enables an MU to communicate with other hosts using only its home IP address after changing its point-of-attachment to the internet/intranet.

Mobile IP is like giving an individual a local post office a forwarding address when leaving home for an extended period. When mail arrives for the individual's home address it is forwarded by the local post office to the individual's current care-of-address. This way only the local post office need be notified of the individual's current address instead of each correspondent. While the example given is the general concept of Mobile IP operation and functionality it does not represent the implementation of Mobile IP used.

A tunnel is the path taken by the original packet encapsulated within the payload portion of a second packet to some destination on the network.

A Home Agent is an AP acting as a router on the MU's home network. The home agent intercepts packets sent to the MU's home address and tunnels the message to the MU at its current location. This happens as long as the MU keeps its home agent informed of its current location on some foreign link.

A Foreign Agent is an AP acting as a router at the MU's location on a foreign link. The foreign agent de-tunnels packets for the MU sent by the MU's home agent. The foreign agent also serves as the default router for packets sent out by the MU connected on the same foreign link.

A care-of-address is the IP address used by the MU visiting a foreign link. This address changes each time the MU moves to another foreign link. It can be viewed as an exit point of a tunnel between the MU's home agent and the MU itself.

The Mobile IP (roaming across routers) feature enables an MU on the Internet to move from one subnet to another while keeping its IP address unchanged.

The scanning and association process continues for active MUs. This allows the MUs to find new APs and discard out-of-range or deactivated APs. By always testing the airwaves, the MUs can choose the best network connection available.

The following diagram illustrates Mobile IP (roaming across routers):

Security has become a concern to mobile users. Enabling the Mobile-Home MD5 key option in System Configuration generates a 16-byte checksum authenticator using an MD5 algorithm. The MU and AP share the checksum, called a key, to authenticate transmitted messages between them. The key is shared between the AP and MU while the MU is visiting a foreign subnet. The MU and AP have to use the same key. If not, the AP refuses to become the Home Agent for the MU. The maximum key length is 13 characters. The AP allows all printable characters.

Supporting CAM and PSP Stations

CAM (Continuously Aware Mode) leave their radios on continuously and hear every beacon and message transmitted. These systems operate without any adjustments by the AP. A beacon is a uniframe system packet broadcasted by the AP to keep the network synchronized. A beacon includes the Net_ID (ESS_ID), the AP address, the Broadcast destination addresses, a time stamp, a DTIM (Delivery Traffic Indication Message), and the TIM (Traffic Indication Map).

PSP (Power Save Polling) stations power off their radios for long periods. When an Intel® PRO/Wireless 2011 LAN MU in PSP mode associates with an AP, it notifies the AP of its activity status. The Intel® PRO/Wireless 2011 LAN access point responds by buffering packets received for the MU. The access point uses a PSP performance index from 1 to 5, where 1 provides the quickest response time and 5 provides the most efficient power consumption. Performance index 0 is reserved for CAM. Using this index, the access point selects an appropriate tuning value for the power save algorithm. The access point firmware switches to CAM when frames are sent or directed frames are received.

The performance index is used to select how long the adapter stays in CAM after transmit or receive activity and to configure the PSP interval when there is no activity. The awake interval in PSP performance index 1 is long enough to allow for round-trip packet response times. The packet response time in PSP performance index 5 is only 25 msec. The adapter goes back to sleep and requires another wake up period to receive data.

When the MU wakes up and sees its bit set in the TIM, it issues a poll request to the AP for packets stored for it. The AP sends them to the MU and the MU goes back to sleep. A DTIM field is a countdown field informing MUs of the next window for listening to broadcast and multicast messages. When the AP has buffered broadcast or multicast messages for associated MUs, it sends the next DTIM with a DTIM Interval value. To prevent a PSP-mode MU from sleeping through a DTIM notification, select a PSP mode value less than or equal to the DTIM value. PSP-mode MUs hear the beacons and awaken to receive the broadcast and multicast messages.

A TIM is a compressed virtual bitmap identifying the AP associated MUs in PSP mode that have buffered directed messages. MUs issue a poll request when APs issue a TIM. A beacon with the broadcast-indicator bit set causes the MU to note DTIM Count field value. The value informs the MU of the beacons remaining before next DTIM. This ensures the MU turns on the receiver for the DTIM and the following BC/MC packet transmissions.

Data Encryption

Intel® PRO/Wireless 2011 LAN devices operating on a wired or wireless network face possible information theft. This occurs when an unauthorized user eavesdrops on someone else to glean information. The absence of a physical connection makes wireless links particularly vulnerable to this form of theft.

Encryption becomes the most efficient method in preventing information theft and improving data security. Encryption entails scrambling and coding of information, typically with mathematical formulas called algorithms, before information is transmitted over any a network. An algorithm is a set of instructions or formula for scrambling the data. A key is the specific code used by the algorithm to encrypt or decrypt the data. Decryption is decoding and unscrambling the received encrypted data.

The same device, host computer or front-end processor, usually performs both encryption and decryption. The data transmit or receive direction determines whether the encryption or decryption function is performed. The device takes plain text, encrypts or scrambles it typically by mathematically combining the key with the plain text as instucted by the algorithm; it then transmits the data over the network. At the receiving end another device takes the encrypted text and decrypts, unscrambles, it revealing the original message. An authorized user can know the algorithm, but cannot interpret the encrypted data without the appropriate key. Only the sender and receiver of the transmitted data know the key.

Intel uses the Wired Equivalent Privacy (WEP) algorithm, specified in IEEE 802.11 section 8, for encryption and decryption. WEP uses the same secret key for both encrypting and decrypting plain text. Typically an external key management service distributes the secret key. Users should change the key often for added security. IEEE 802.11 defines two types of authentication, Open System and Shared Key. Open system authentication is a null authentication algorithm. Shared key authentication is an algorithm where both the AP and the MU share an authentication key to perform a checksum on the original message.

By default, IEEE 802.11 devices operate in an open system network where any wireless device can associate with an AP without authorization. A wireless device with a valid shared key is allowed to associate with the AP. Authentication management messages (packets) are unicast, meaning authentication messages transmit from one AP to one MU only, not broadcast or multicast.

HTTP, HTML Web Server Support

The native language of the Web is Hypertext Transfer Protocol (HTTP). The protocol makes requests from browsers (the user) to servers and responses from servers to browsers. This function provides the user with a web-based format for configuration and firmware download capabilities. Web pages are written in the Hypertext Markup Language (HTML). HTML allows the user to create web pages containing text, graphics and pointers or links to other web pages or elsewhere on the page or document. Pointers are generally known as Uniform Resource Locators (URLs). A URL is essentially the name of the web page. There are three parts to the URL:

• the protocol (sometimes called a scheme)
• the DNS (Domain Name Server) the machine where the page is located
• the local name that identifies the page, usually the File name.

The HTML language describes how to format the document much like a copy editor describes which fonts to use, such as the location, color, header size and text.

Management Options

Managing Intel® PRO/Wireless 2011 LAN includes viewing network statistics and setting configuration options. Statistics track network activity of associated MUs and data transfers on the AP interfaces. Configuration involves setting system operating parameters.

The AP requires one of the following to perform a custom installation or maintain the Intel® PRO/Wireless 2011 LAN:

• SNMP (Simple Network Management Protocol)
• wired LAN workstation with a Telnet client
• terminal or PC with RS-232 connection and ANSI emulation.

Make configuration changes to APs individually. Each AP requires an individual IP address.

Programmable SNMP Trap Support

The SNMP protocol defines the method for obtaining information about networks operating characteristics and changing router and gateway parameters. The SNMP protocol consists of four elements:

• Management Stations containing an application suite used for network management, data analysis, fault management and so on.
• Management Agent performing management operations on a configured device for the management station.
• Management Information Base (MIB) defining the structure and contents of a database for the information exchanged between a management station and a management agent.
• Network Management Protocol (SNMP) is the protocol linking the management agent to the management station and specifying the rules for communciation between the two devices.

Nodes can perform as hosts, routers, bridges or other devices that can communicate status information. An SNMP Agent is a node running the SNMP management process to systematically monitor and manage the network. The management station manages the network by running the special management application suite that analyzes network operation.

An SNMP trap is an unsolicited alert to all configured management station indicating some significant event has occurred on the network. The management station queries for details of each specific event, including what, when, where the event took place and the current status of the node or network. The format or structure is defined in the SNMP protocol. The MIB defines and monitors the variables.

Using SNMP

The AP includes SNMP agent versions accessible through a SNMP manager application such as, HP Open View or Cabletron Spectrum MIB browser. The SNMP agent supports SNMP versions 1 and a subset of version 2, MIB II, the 802.11 MIB and one proprietary Intel MIB (Management Information Base). The SNMP agent supports read-write, read-only or disabled modes. The AP supports traps that return to the SNMP manager when certain events occur. The Wireless LAN Installation and Utilities disk packaged with MUs contains the MIB.

Increased MIB Support

The MIB (Management Information Base) defines what the management station needs to understand and which objects the station manages.

Using the UI

The UI (User Interface) is a maintenance tool integrated into the AP. It provides statistical displays, AP configuration options, and firmware upgrades. Access to the UI requires one of the following:

2.0  Configuring the AP

Software configuration requires setting up a connection to the AP and gaining access to the UI (User Interface).

2.1  Gaining Access to the UI

Setting up access to the UI depends on the connection used. Select the setup that best fits the network environment.

Using Telnet

Using a Telnet session to gain access to the UI requires a remote station to have a TCP/IP stack. The remote station can be on the wired or wireless LAN.

To access the AP from the workstation:

1. From the DOS prompt Telnet to the AP using its IP address:
                                                           Telnet xxx.xxx.xxx.xxx
2. At the prompt enter the password:
                                   Intel                       
   

   NOTE:	The password is case-sensitive.

3. Press the ESC key. The AP displays the Main Menu.

• If the session is idle (e.g. no input) for the configured time, the session terminates.
• To manually terminate the session, press CTRL+D.

Set the System Password in the Set System Configuration screen.

Using a Direct Serial Connection

The AP serial port is a DB-9 9-pin male connector. The serial port allows PPP connections to another AP, or a UI connection to a configuration PC. Connecting the AP directly to a PC with a DB 9-pin serial port requires a null modem cable with the following configuration:

The factory-configured AP accepts a direct serial connection to the UI. Configure the AP for the following:

• Enable serial port.
• Set Port Use to UI.
• Disable modem connection.

Assuming the UI and serial port are enabled on the AP:

1. Attach a null modem serial cable from the AP to the terminal or PC serial port.
2. From the terminal, start the communication program such as HyperTerminal for windows.
3. Select the correct COM port along with the following parameters:
   
   

   emulation     ANSI baud rate     19200 bps data bits     8 stop bits     1 parity     none flow control     none

   
   There is no password requirement.
4. Press ESC to refresh the display. The AP displays the Main Menu.
5. Exit the communication program to end the session.

Using a Dial-Up Connection

The AP supports a dial-up connection to the UI. This requires accessing the UI from Telnet or a direct serial connection and changing the serial port configuration. Configure the AP for the following:

• Enable serial port.
• Set serial port for UI.
• Disable any modem connection.
• Set AP to answer mode.

Configure these settings in the Set Serial Port Configuration within the UI. Refer to Configuring for Dial-Up to the UI.

Using a Web Browser

A Web Browser is a program used to view Web documents or pages. The browser retrieves the requested page, interprets its text and displays the page properly formatted on a computer screen.

Using a Web browser to gain access to the UI requires the workstation to have a TCP/IP stack and access to a web browser. Theremote station can be on the wired or wireless LAN.

Set Up Network Web Server Help File Access

A network Web server is required to access the Help file from the Intel® PRO/Wireless 2011 LAN Access Point Configuration Management System web pages. This procedure applies to the Microsoft Internet Information Server. The network Web server can be different; if so, some of the procedures will differ.

To create the Help file on a network Web server:

1. Create a directory on the network Web server for the AP Web Site Help Files to reside. Often this is a subdirectory to C:\InetPub\wwwRoot.
2. Copy the *.gif and *.htm files to this directory/folder. The files are maintained in the x:\firmware\AP\AP Web Site\Help File directory where x is the letter assigned to the computer CDROM drive.
   

   NOTE:	This installation example is for Windows NT 4.0.

3. From the windows Task Bar select Start
4. From the drop down menu select Programs.
5. From this menu select Microsoft Internet Server(common).
6. From this menu select Internet Service Manager to launch the Internet Information Server Service Manager.
   Click on the Web service.
   

   NOTE:	Ensure the server WWW service is running.

7. Select Properties.
8. Select Service Properties to display the WWW service properties for the server.
9. The WWW Service Properties window opens.
10. Select the Directories Tab.
11. Select the Add button to open the Directories window.
12. Type the Directory/Folder path created in step one.
13. Select the Virtual Directory button.
14. Type a folder alias such as WebHelp and select OK.
15. Select the Enable Default Document checkbox.
16. Type WLAAPHLP.HTM as the default document and select Apply.
17. Select OK to exit the window.
18. Test the accessibility to the Help file using a Web browser with a URL similar to: http://xxx.xxx.xxx.xxx/WebHelp where xxx.xxx.xxx.xxx is the IP address of the server.

Accessing Web Browser UI

Using a Web Browser to gain access to the UI requires the workstation to have a TCP/IP stack and access to a Web browser. The remote station can be on the wired or wireless LAN.

To ensure the Web Server option is enabled for the AP:

1. Access the UI using a Serial or Telnet connection.
2. Select the System Configuration screen.
3. Verify the Web Server option on the System Configuration screen is enabled. If not, use the TAB key to select the Web Server option. Use the LEFT/RIGHT ARROW key to toggle the option to Enable.
4. Save the configuration by selecting Save-[F1].

Reset the AP for changes to take effect.

1. Select the Special Functions screen.
2. Select Reset AP.
3. Select Yes at the confirmation prompt.

To enable Help file access, change the Help URL parameter:

1. Select the Special Functions screen.
2. Use the TAB or UP/DOWN ARROW key to select the Alter Filename(s)/HELP URL/TFTP Server/DHCP.
3. Press ENTER.
4. Use the TAB or DOWN ARROW key to select the .HELP URL field.
5. Type the IP address/URL of the Web server and the folder alias for the Help file location: http://xxx.xxx.xxx.xxx/WebHelp where xxx.xxx.xxx.xxx is the IP address of the server.
6. Press ENTER.
7. Use the TAB or DOWN ARROW key to select OK-[CR] and press ENTER.
8. Save the new setting by selecting the Save Configuration option.
9. At the confirmation prompt, select Yes.
10. The Main Menu displays.
11. Reset the AP for changes to take effect. Select the Special Functions screen.
12. Select Reset AP.
13. At the confirmation prompt, select Yes.

To access the AP UI using a Web Browser from a workstation:

1. From the NCPA Properties window set the IP address of the workstation and the subnet mask. The system tells the user to reboot for property changes to take effect.
   

   NOTE:	The workstation, in this case, is the workstation or laptop running the Web browser.

2. To verify the connection, ping the AP. At the default DOS prompt, type:
                           Ping -t xxx.xxx.xxx.xxx

   If the ping receives no response, verify that the hardware connections, IP address, gateway address and subnet mask are correct. If correct, contact the site System Administrator for network assistance.

3. Start a Web browser such as Internet Explorer 4.0 or greater or Netscape 3.0 or greater.

   Enter the IP address for the associated AP to access the AP using a Web browser:
                           http://xxx.xxx.xxx.xxx

   The Intel® PRO/Wireless 2011 LAN Access Point Configuration Management System displays.

To view configuration, function, or option changes on the Web page(s) turn off the caching function for the browser used.

• For Netscape, from the menu bar select Edit, Properties, Advanced, Cache. Select Document in cache is compared to document on network: Every time.
• For Internet Explorer from the menu bar select View, Internet Options, Settings.
  • From the Temporary Internet files element, select Check for newer versions of stored pages: Every visit to the page.
  • Select OK.

To access help from any Intel® PRO/Wireless 2011 LAN Access Point Configuration Management System web page, select the Help button always located in the top right corner of the right frame on each page.

For access to the Easy Setup and Configuration pages a popup dialog box appears.Nothing needs to be entered for the User Name. Then enter the default Password:
                                                Intel

To manually terminate the session, exit the browser.

2.2  Navigating the UI

The following conventions apply:

• The left frame displays a menu tree of the Intel® PRO/Wireless 2011 LAN Access Point web management system. Click the icons to expand or collapse the tree. The document nodes allow you to view and manipulate information in the Access Point. The right frame shows the selected page.
• In the menu tree click on the icon to view a page.
• Some pages are 'refreshable' every five seconds. Select the Start Refresh button. Theicon in the upper right of the screen is active when refresh has been selected.
• To stop automatic refresh select 'Stop Refresh'. The icon in the upper right of the screenstops moving and the page no longer updates.
• Pages which accept entries will validate those entries when Save Settings isselected. If an entry is incorrect it will be flagged with a red arrow on the left and an error message at the top of the screen. No parameters are updated until all entries are valid.
• To clear entries instead of saving them select Clear Entries.

Entering Admin Mode

The UI defaults to User mode that allows read-only access to the AP's functions (e.g., view statistics). To access configuration:

1. Select Configuration|Security from the Access Point menu tree. A prompt for User Name and Password appears.
2. The User Name entry may be ignored. Enter the default System Password.
                                                   Intel

   NOTE:	The password is case sensitive.

   If the password is correct, the AP displays the selected page.
   If the password is incorrect, the AP rerequests the User Name and Password.

   NOTE:	Set the System Password in the Security Setup page.

Changing the Access to the UI

To prevent unauthorized access, change the configuration access to the UI. This includes enabling or disabling the Telnet Logins or changing the System Password.

To change Telnet access to the AP:

1. Select Configuration|Security from the Access Point menu tree.
2. Select Enabled or Disabled for Telnet Logins.
3. Select Save Settings at the bottom of the page.

To change the System Password:

1. Select Configuration|Security from the Access Point menu tree.
2. Select Modify|System Password.
3. Type in the new password to the right of System Password.
4. Type in the new password to the right of Confirm System Password.
5. Select Save Settings at the bottom of the page.

Configuring for Dial-Up to the UI

A dial-up connection to gain access to the UI requires a straight-through cable between the modem and the AP. The remote PC requires a modem and a communication program (e.g. Microsoft Windows Terminal program).

Configuring Serial Port

To enable and configure the serial port connection on the AP:

1. Select Configuration|PPP/Modem from the Access Point menu tree.
2. Set the Serial Port Use parameter to PPP.
3. Set the Modem Connected parameter to Yes.
4. Configure the other settings as required on the AP.
   
   

   Answer Wait Time     The time waiting for a remote connection before dropping the attempt. The default is 60 seconds from a 5 to 255 second range. Modem Speaker     AP sends a command to the modem to enable/disable the modem speaker. The default is Enabled. Inactivity Timeout     The inactivity time on the UI that causes the AP to terminate the connection while using a modem. The default is 5 minutes from a 0 to 255 minute range. The zero (0) value indicates no time-out.

   
   
5. Select Save Settings at the bottom of the page.

Configuring the Dial-Up System

Assuming the PPP, serial port and answer mode are enabled on the AP:

1. Attach a straight-through serial cable from the AP to the modem.
2. Verify modem connects to the telephone line and has power. Refer to modem documentation.
3. From the remote terminal, start the communication program.
4. Select the correct serial port along with the following parameters.
   
   

   emulation     ANSI baud rate     19200 bps data bits     8 stop bits     1 parity     none flow control     none

   
   
5. Dial out to the AP with the correct telephone number. No password required.
6. Press ESC to refresh the display. The AP displays the Main Menu.

Hanging Up

To hang up from the UI while connected:

1. Select the Configuration|PPP/Modem from the Main Menu.
2. Check Modem Hangup.
3. Select Save Settings at the bottom of the page.

Navigating the UI Using a Web Browser

Refer to the online help file for information on Web Browser navigation andbasic functionality. For file download instructions and the associated file(s)refer to http://support.intel.com and select Intel® PRO/Wireless 2011 LAN® - 1 and 2 Mbps FH Firmware, Software, Drivers, Tools and ....

2.3  Access Point Installation

The AP UI includes an Easy Setup page to set basic parameters for an Intel® PRO/Wireless 2011 LAN. These parameters include designating gateway addresses that provide the ability to forward messages across routers on the wired Ethernet.

To install an AP:

1. Select Easy Setup from the Access Point menu tree.
2. If prompted enter the password.
3. The Easy Setup page is displayed where:
   
   

   Unit Name     identifies the AP name IP Address     the network-assigned Internet Protocol address of the AP Gateway IP Address     IP address of a router the AP uses on the Ethernet Subnet Mask     The first two sets of numbers specify the network domain, the next set specifies the subset of hosts within a larger network, and the final set specifies an individual computer. These values help divide a network into sub networks and simplify routing and data transmission. The subnet mask defines the size of the subnet. DHCP     The AP uses DHCP to obtain a leased IP address and network configuration information from a remote server. Help URL     Web address of the AP Configuration Management Help file ESS_ID     the unique 32-character, alphanumeric, case-sensitive network identifier of the AP Diversity     enables selection of antenna diversity (Primary Only, On) Additional Gateways     The IP addresses of the additional gateways used. Access up to seven additional gateways.

   
   
   
4. Verify the values set reflect the network environment. Change them as needed.
5. Select Save Settings to register settings or Clear Entries to return to the original values.

Additional Gateways

To add or modify an Additional Gateway:

1. Select Easy Setup from the Access Point menu tree.
2. Select Add/Delete Gateways to access the Easy Setup - Add/Delete Gateways page.
3. Select a field to the right of one of the Gateways.
4. Enter the IP address of a gateway.
5. Select Save Settings to register settings or Clear Entries to return to the original values.

2.4  Configuring Security Parameters

The AP provides configuration options for how the unit operates including security access and interface control. Some parameters do not require modification.

1. Select Configuration|Security from the Access Point menu tree to display the Security Setup page.
2. Configure the AP system settings as required:
   
   

   Telnet Logins     Specifies if the AP accepts or rejects Telnet Logins. The default value is Enabled. System Password     Select Modify. For administrative access, select any alphanumeric, case-sensitive entry up to 13 characters for a password. Make the same entry for System Password and Confirm System Password. Select Save Settings. The default System Password is Intel. Access Control     Specifies enabling or disabling the access control feature. If enabled, the ACL (Access Control List) specifies the MAC addresses of MUs that can associate with this AP. The default is Disabled. Allowed Mobile Units     View/Add/Delete MU entries by individual MAC address in the Access Control List (ACL). .Ranges of Allowed Mobile Units     View/Add/Delete MU entries by a range of MAC addresses in the Access Control List. Disallowed Mobile Units     View/Add/Delete MUs not allowed to associate with the AP. Encryption Administration     Indicates which interface can change the encryption keys and encryption key index. Any Interface allows users to change encryption keys through any interface. Serial Only allows users to change the encryption parameters only through the serial port. Default is Any Interface. Strong Encryption     Allows access to and use of the 128 bit encryption keys. Some countries will not have access to 128 bit encryption due to encryption export restrictions. To access the 128 bit encryption key screen contact the Intel Customer Support (http://support.intel.com) for a unique access code to enable this feature. WEP (Privacy)     Enables or disables the use of the WEP algorithm. The default is Disabled. WEP Algorithm     Defines the number of bits and type of WEP algorithm. Default is 40 bit shared key. 128 bit shared key is an alternate choice. Encryption Key     Allows the user to select the Active Key (1-4) used to transmit data packets. Encryption Key Setup     Select View/Modify to configure the encryption keys. The selected WEP Algorithm determines the screen displayed for the user. Two screens are possible, one for the 40 bit encryption and one for the 128 bit encryption. Refer to Encryption Key Setup.

   
   
3. Verify the values set reflect the network environment. Change them as needed.
4. Select Save Settings to register settings or Clear Entries to return to the original values.

System Password Administration

This page allows the network administrator to configure the password for the AP.

1. Select Configuration|Security from the Access Point menu tree.
2. Select Modify|System Password.
3. Configure the AP password settings as required:
   

   System Password     Select any alphanumeric, case-sensitive entry of up to 13 characters. The characters selected are displayed as asterisks. Changing this passowrd changes the Read/Write Community password found in the SNMP Configuration screen. The default password is Intel. Confirm System Password     Select the same alphanumeric, case-sensitive entry of up to 13 characters as System Password. The characters selected are displayed as asterisks.

   
   
4. Select Save Settings at the bottom of the page.

Encryption Key Setup

Two pages allow the user to configure the encryption keys used for the site network. WEP Algorithm determines the screen displayed for the user, either 40 bit or 128 bit encryption. These two pages are view only if Encryption Administration is Serial Only. To enable the Open System option, select Disabled for WEP (Privacy) on Security Setup.

This table shows the AP association capability with the selected WEP Algorithm.

Each 40 bit encryption key is a subset of the respective 128 bit encryptionkey. The first 40 bits of each encryption key is the same for the respective 40bit and 128 bit encryption keys. When a 40 bit encryption key is changedthe first 40 bits of the respective 128 bit key is also changed. Consequently,when a 128 bit encryption key is changed the first 40 bits of the 40 bitencryption key is changed. Moreover, configuring the encryption Keys usingthe SNMP Trap Manager overrides the Key value(s) for the AP(s) accessed bythe SNMP Trap Manager.

Intel provides a total of four Encryption Keys. Each key enablesencryption between the AP and an associated MU with the same encryptionKey and Key value.

Considerable care is required when assigning keys. Keys have to be in thesame order with the same value per key for the AP and MU to authenticatedata transmission using encryption.

Example: An AP uses Key 1 with a value of 1011121314. The associated MUrequires the same Key 1 to have the value 1011121314.

1. Select Configuration|Security from the Access Point menu tree to display the Security Setup page.
2. Select View/Modify | Encryption Key Setup to display the 40 or 128 Bit Shared Key Encryption Setup page. For 40 Bit Shared Key Encryption, each of the four keys has 40 bits available to the user for configuration displayed in 2 twenty bit segments. The remaining 24 IV (initialization vector) bits are factory set and not user configurable. For 128 Bit Shared Key Encryption, each of the four keys has 124 bits available to the user for configuration displayed in two 20 bit segments and four 16 bit segments. The remaining 24 IV bits are factory set and not user configurable.
3. Configure the settings as required:
   
   

   Selected Key     The default is 1. Select the appropriate radio button to change the selected Encryption Key. Key 1 to 4     Four separate Encryption Keys maximum. Each key enables encryption between the AP and an associated MU with the same encryption key and value. Note: Keys have to be in the same order with the same value per key for the AP and MU to authenticate data transmission using encryption. Example: AP uses 40 Bit Shared Key 1 with a value of 1011121314. The associated MU requires the same Key 1 with a value of 1011121314.

   
   
4. Verify the values set reflect the network environment. Change them as needed.
5. Select Save Settings to register settings or Clear Entries to return to the original values.

2.5  Configuring System Parameters

The AP provides configuration options for how the unit operates including interface control. Some parameters do not require modification.

1. Select Configuration|System from the Access Point menu tree to display the System Setup page.
2. Configure the AP system settings as required:
   
   

   Unit Name     Identifies the AP name. Channel     The direct sequence channel used by the access point. Frequency Number of Channels Country 2412-2470 1-11 United States 2430-2447 5-8 Israel 2457-2463 10-11 Spain 2458-2472 10-13 France 2483-2485 14 Japan Mobile IP     If enabled, this feature allows MUs to roam across routers. MU-MU Disallowed     If enabled, mobile units associated with the same AP are not allowed to communicate with each other. The default is disabled. Mobile Home MD5 Key     Select Modify to change the secret key used for Mobile-Home registration and authentication. Ethernet Timeout     Disables the radio interface if there is no activity detected on the Ethernet line after the seconds indicated (30-255). The AP disassociates MUs and prevents further associations until it detects Ethernet activity again. The default is disabled. 10-BaseT Timeout detects if the 10Base-T line goes down. If the value is Send WLAP Alive and the WLAP has connected to the Root AP, the WLAP sends a WLAP Alive BPDU on the Ethernet line every WLAP Hello Time seconds to allow WLAPs on the Ethernet line to detect its existence. If the value is Timeout WLAP Alive the WLAP tracks the WLAP Alive BPDU. If the BPDU is missing for WLAP Hello Time seconds, the WLAP state changes to WLAP Lost on Ethernet. Once the WLAP Alive BPDU is detected, the WLAP resets and starts over. When the Ethernet connection is broken, the AP clears the MU table and disables the RF interface until the Ethernet connection comes up. Agent Ad Interval     Specifies the time in seconds between the mobility agent advertisement transmissions. AP-AP State Xchg     Specifies AP-to-AP communication exchanged. If Disabled, prevents AP load leveling function. WNMP Functions     Specifies if this AP can perform WNMP functions. The default value is Enabled. Ethernet Interface     Enables or disables wired Ethernet. The default value is Enabled. RF Interface     Enables or disables radio. The default value is On. Default Interface     Specifies the default interface (Ethernet, PPP or WLAP) to which the AP forwards a frame if it cannot find the address in its forwarding database. The default interface is Ethernet.

   
   
3. Verify the values set reflect the network environment. Change them as needed.
4. Select Save Settings to register settings or Clear Entries to return to the original values.

Configuring Mobile Home MD5 Key

This page allows the network administrator to configure the secret key used for Mobile Home registration and authentication.

1. Select Configuration|System from the Access Point menu tree.
2. Select Modify|Mobile Home MD5 Key.
3. Configure the Mobile Home MD5 Key setting as required:
   

   Mobile Home MD5 Key     Select any alphanumeric, case-sensitive entry of up to 13 characters. Confirm Mobile Home MD5 Key     Select the same alphanumeric, case-sensitive entry of up to 13 characters as Mobile Home MD5 Key.

   
   
4. Select Save Settings at the bottom of the page.

2.6  Configuring Radio Parameters

The AP auto configures most radio parameters. Only advanced users, Intel trained users, or Intel representatives should configure radio parameters for the AP. Options in the RF Setup and WLAP Setup screens fine-tune the radio functions.

1. Select Configuration|RF from the Access Point menu tree to display the RF Setup page.
2. Configure the settings as required:
   
   

   BC/MC Queue Max     Determines the memory allocated for the queue used in the AP to temporarily hold broadcast/multicast messages. Unit measure is in packets and corresponds to maximum-sized Ethernet packets. The default is 10. Max Retries (data)     The maximum allowed retries before aborting a single data packet transmission. The default is 15. Do not modify. Max Retries (voice)     The maximum allowed retries before aborting a single data packet transmission. The default is 5. Do not modify. Multicast Mask (data)     Supports broadcast download protocols for Point-of-Sale terminals that load a new operating image over the network instead of using a local nonvolatile drive. The multicast mask for RF data packets is the top 32 bits of the MAC address and allows for a series of MAC addresses to receive multicast messages. The AP transmits these messages immediately and does not queue them for processing at DTIM intervals. Multicast Mask (voice)     Supports broadcast, or part-line, voice communication. All multicast downstream data packets that match the top 32 bits of the multicast mask are forwarded immediately instead of being queued for transmission at the next DTIM interval. Beacon Interval     The time between beacons in Kilo-microseconds. The default is 100. Avoid changing this parameter because it can adversely affect PSP-mode terminal performance. Accept Broadcast ESS_ID     Allows the AP to respond to any station sending probe packets with the industry-standard broadcast ESS_ID. If Enabled, this feature allows industry-standard devices interoperability. The AP probe response includes the ESS_ID and information about the network. By default, this feature is Disabled and the AP responds only to stations that know the ESS_ID. This helps preserve network security. MUs require using Broadcast ESS_ID to utilize this function. MU Inactivity Timeout     Allows industry-standard devices interoperability by specifying the time the AP allows for MU inactivity. An Intel® PRO/Wireless 2011 LAN AP recognizes MU activity through data packet transmission and reception, and through scanning. Intel® PRO/Wireless 2011 LAN MUs conduct active scanning. Other industry-standard MUs might conduct passive scans and an AP can classify them as inactive. .Rate Control  (Mb/s)   Defines the data transmission rate. The defaults are: 11 Mb/sec - Optional 5.5 Mb/sec - Optional 2 Mb/sec - Optional 1 Mb/sec - Required The defaults allow the AP to automatically select the the best transmit rate allowed by the conditions. These settings allow a mixture of 1 Mb/sec, 2 Mb/sec, 5.5 Mb/sec, and 11 Mb/sec radios in the same network. Different combinations of the data rates can be selected as Optional, Required or Not Used; but, it is essential to set the lowest selected rate to Required. All IEEE 802.11 broadcast and management frames are sent out on the lowest required data rate. RTS Threshold     Request to Send threshold (256 - 2347). Allows the AP to use RTS (Request To Send) on frames longer than the specified length. The default is 2347 bytes. (Not configurable) Short RF Preamble     Determines whether the AP uses a short or long preamble. The preamble is approximately 8 bytes of the packet header generated by the AP and attached to the packet prior to transmission. The preamble length is transmission data rate dependant. The short preamble is 50% shorter than the long preamble. This feature is only available to version 2.0 radio hardware. Equipment without the version 2.0 radios cannot enable the short preamble function and cannot see, receive or acknowledge messages from short preamble enabled version 2.0 hardware. Disable this feature in a mixed hardware network and use the long preamble. MUs and APs are required to have the same Short RF Preamble settings for interoperability. The default is Enabled.

   
   
3. Verify the values set reflect the network environment. Change them as needed.
4. Select Save Settings to register settings or Clear Entries to return to the original values.

2.7  Wireless Operation Parameters

The AP supports up to four WLAP interfaces. Intel recommends using one WLAP as an interface on high traffic networks and for low traffic networks no more than two WLAPs because excessive channel contention causes the WLAP to miss beacons from the Root AP shown in the example.

Refer to LED Indicators for indication of AP status. If more than two WLAPs operate in a repeater configuration, Intel recommends the WLAPs with the lowest WLAP IDs be placed on the wired network.

To avoid forming a loop, per the IEEE 802.1d Spanning Tree Protocol, the Wireless WLAP associates with only one wired WLAP.

1. Set the default interface for AP A to Ethernet.
2. Set the default interface for AP B to Ethernet.
3. Set the default interface for AP C to WLAP.
   This allows the MUs to roam and transmit data between AP B and C.

If an AP functions as a bridge between wired LANs, Intel recommends one LAN contain the lower WLAP IDs.

To configure the AP for wireless operation:

1. Select Configuration|Wireless AP from the Access Point menu tree.
2. Configure the settings as required.
   
   

   WLAP Mode     Specifies the AP's wireless-AP operation status. Enabled, the AP sets up automatically for wireless operation. The AP can operate in any of these configurations: Wireless, Repeater or Ethernet Bridge. Disabled, no wireless operation possible. Default setting. Link Required. At power up: If the WLAP is the Root AP, an Ethernet connection is required. If the WLAP is a designated WLAP, association to the Root AP is required. During normal operation: If the Ethernet connection is lost, the Root AP resets. If the WLAP association is lost, the designated AP resets. WLAP Priority     Allows a user to determine the Root and the Designated WLAP in wireless operation. Concatenate the priority value as the most significant portion of the MAC address. An AP with a lower numerical value for priority is more likely to become the root AP. The default is 8000 hex from the 0 - 0xFFFF range. WLAP Manual BSS ID     Specifies the BSS_ID of a particular WLAP and forces the current AP to associate only with that WLAP. If setting the WLAP Manual BSS_ID to the current BSS_ID, the current AP jumps into Functional State immediately and waits for an Association Request from the other WLAP. Refer to Radio Statistics. This feature speeds up the association process and minimizes confusion when more than two WLAPs try to associate with each other. WLAP Hello Time     Sets the time lapse, in seconds, between Config BPDU packets sent to the Root AP by a designated WLAP. The default is 20 seconds. If the Root AP fails to hear from the designated WLAP within the WLAP Max Age time, it removes the designated WLAP from its interface table. The WLAP Hello Time of the Root AP overwrites the WLAP Hello Time of designated WLAPs. The WLAP Hello Time does not refer to the time lapse between beacons sent by the Root AP. If a designated WLAP fails to receive a beacon, it knows that its Root WLAP has lost the Root status. WLAP Max Age     Defines time, in seconds, before discarding aged configuration messages. This causes a disconnection between the two WLAPs. The recommended value is a multiple of the WLAP Hello Time. The default is 100 seconds. The WLAP Max Age of the Root AP overwrites the WLAP Max Age of designated WLAPs. WLAP Forward Delay     Specifies the time, in seconds, to prevent an AP from forwarding data packets to and from an interface during initialization. The WLAPs involved and the wireless operation state, refer to Radio Statistics, affect the WLAP Forward Delay time. This delay ensures that all WLAP nodes are heard. The default is five seconds per wireless operation state. The WLAP Forward Delay of the Root AP overwrites the WLAP Forward Delay of designated WLAPs.

   
   
3. Select Save Settings to register settings or Clear Entries to return to the original values.

2.8  Configuring the SNMP Agent

An SNMP manager application gains access to the AP SNMP agent if it has the AP IP address. An AP can be accessed through the SNMP Trap Manager to configure settings and parameters. Intel does not recomment this process.

The AP supports SNMP V1, MIB-II, and the INTEL.MIB.

1. Select Configuration|SNMP from the Access Point menu tree.
2. Configure the settings as required.
   
   

   SNMP Agent Mode     Defines the SNMP agent mode: Disabled disables SNMP functions. Read Only allows get and trap operations. Read-Write (default) allows get, set and trap operations. Read Only Community     User-defined password string up to 31 characters identifying users with read-only privileges. Select Modify to change.