Add

Click this to add a new radio profile.

Edit

Click this to edit the selected radio profile.

Remove

Click this to remove the selected radio profile.

Activate

To turn on an entry, select it and click Activate.

Inactivate

To turn off an entry, select it and click Inactivate.

Object Reference

Click this to view which other objects are linked to the selected radio profile.

#

This field is a sequential value, and it is not associated with a specific user.

Status

This field shows whether or not the entry is activated.

A yellow bulb signifies that this rule is active. A gray bulb signifies that this rule is not active.

Profile Name

This field indicates the name assigned to the radio profile.

Frequency Band

This field indicates the frequency band which this radio profile is configured to use.

Apply

Click Apply to save your changes back to the NWA/WAC.

Reset

Click Reset to return the screen to its last-saved settings.

Hide / Show Advanced Settings

Click this to hide or show the Advanced Settings in this window.

General Settings

Activate

Select this option to make this profile active.

Profile Name

Enter up to 31 alphanumeric characters to be used as this profile’s name. Spaces and underscores are allowed.

802.11 Band

Select the wireless band which this radio profile should use. Not all NWA/WACs support both 2.4 GHz and 5 GHz frequency bands.

2.4 GHz is the frequency used by IEEE 802.11b/g/n wireless clients.

5 GHz is the frequency used by IEEE 802.11ac/a/n wireless clients.

•       11b/g: allows either IEEE 802.11b or IEEE 802.11g compliant WLAN devices to associate with the NWA/WAC. The NWA/WAC adjusts the transmission rate automatically according to the wireless standard supported by the wireless devices.

•       11b/g/n: allows IEEE802.11b, IEEE802.11g and IEEE802.11n compliant WLAN devices to associate with the NWA/WAC. The transmission rate of your NWA/WAC might be reduced.

•       11a: allows only IEEE 802.11a compliant WLAN devices to associate with the NWA/WAC.

•       11a/n: allows both IEEE802.11n and IEEE802.11a compliant WLAN devices to associate with the NWA/WAC. The transmission rate of your NWA/WAC might be reduced.

•       11ac: allows IEEE 802.11ac compliant WLAN devices to associate with the WAC.

Channel Width

Select the channel bandwidth you want to use for your wireless network.

Select 20 MHz if you want to lessen radio interference with other wireless devices in your neighborhood.

Select 20/40 MHz to allow the NWA/WAC to choose the channel bandwidth (20 or 40 MHz) that has least interference.

Select 20/40/80 MHz to allow the NWA/WAC to choose the channel bandwidth (20 or 40 or 80 MHz) that has least interference. This option is available only when you select 11ac in the 802.11 Band field.

Channel Selection

This is the radio channel which the signal will use for broadcasting by this radio profile.

•       DCS: Choose Dynamic Channel Selection to have the NWA/WAC choose a radio channel that has least interference.

•       Manual: Choose from the available radio channels in the list. If your NWA/WAC is outdoor type, be sure to choose non-indoors channels.

DCS Time Interval

Enter a number of minutes. This regulates how often the NWA/WAC surveys the other APs within its broadcast radius. If the channel on which it is currently broadcasting suddenly comes into use by another AP, the NWA/WAC will then dynamically select the next available clean channel or a channel with lower interference.

Enable DCS Client Aware

Select this to have the AP wait until all connected clients have disconnected before switching channels.

If you disable this then the AP switches channels immediately regardless of any client connections. In this instance, clients that are connected to the AP when it switches channels are dropped.

2.4 GHz Channel Selection Method

Select how you want to specify the channels the NWA/WAC switches between for 2.4 GHz operation. This field appears only when you choose 802.11b/g/n mode.

Select auto to have the NWA/WAC display a 2.4 GHz Channel Deployment field you can use to limit channel switching to 3 or 4 channels.

Select manual to select the individual channels the NWA/WAC switches between. Select channels from the Available channels list and use the right arrow button to move them to the Channels selected list.

2.4 GHz Channel Deployment

This is available when the 2.4 GHz Channel Selection Method is set to auto.

Select Three-Channel Deployment to limit channel switching to channels 1,6, and 11, the three channels that are sufficiently attenuated to have almost no impact on one another. In other words, this allows you to minimize channel interference by limiting channel-hopping to these three “safe” channels.

Select Four-Channel Deployment to limit channel switching to four channels. Depending on the country domain, if the only allowable channels are 1-11 then the NWA/WAC uses channels 1, 4, 7, 11 in this configuration; otherwise, the NWA/WAC uses channels 1, 5, 9, 13 in this configuration. Four channel deployment expands your pool of possible channels while keeping the channel interference to a minimum.

Enable 5 GHz DFS Aware

Select this if your APs are operating in an area known to have RADAR devices. This allows the devide to downgrade its frequency to below 5 GHz in the event RADAR signal is detected, thus preventing it from interfering with that signal.

Enabling this forces the AP to select a non-DFS channel.

5 GHz Channel Selection Method

Select how you want to specify the channels the NWA/WAC switches between for 5 GHz operation.

Select Auto to have the NWA/WAC automatically select the best channel.

Advanced Settings

Guard Interval

Set the guard interval for this radio profile to either short or long. This option isn’t applicable if you set 802.11 Band to 11a or 11b/g and/or choose 20 MHz channel width.

The guard interval is the gap introduced between data transmission from users in order to reduce interference. Reducing the interval increases data transfer rates but also increases interference. Increasing the interval reduces data transfer rates but also reduces interference.

Enable A-MPDU Aggregation

Select this to enable A-MPDU aggregation. This field is not available if you set 802.11 Band to 11a or 11b/g.

Message Protocol Data Unit (MPDU) aggregation collects Ethernet frames along with their 802.11n headers and wraps them in a 802.11n MAC header. This method is useful for increasing bandwidth throughput in environments that are prone to high error rates.

Enable A-MSDU Aggregation

Select this to enable A-MSDU aggregation. This field is not available if you set 802.11 Band to 11a or 11b/g.

Mac Service Data Unit (MSDU) aggregation collects Ethernet frames without any of their 802.11n headers and wraps the header-less payload in a single 802.11n MAC header. This method is useful for increasing bandwidth throughput. It is also more efficient than A-MPDU except in environments that are prone to high error rates.

RTS/CTS Threshold

Use RTS/CTS to reduce data collisions on the wireless network if you have wireless clients that are associated with the same AP but out of range of one another. When enabled, a wireless client sends an RTS (Request To Send) and then waits for a CTS (Clear To Send) before it transmits. This stops wireless clients from transmitting packets at the same time (and causing data collisions).

A wireless client sends an RTS for all packets larger than the number (of bytes) that you enter here. Set the RTS/CTS equal to or higher than the fragmentation threshold to turn RTS/CTS off.

Beacon Interval

When a wirelessly networked device sends a beacon, it includes with it a beacon interval. This specifies the time period before the device sends the beacon again. The interval tells receiving devices on the network how long they can wait in low-power mode before waking up to handle the beacon. A high value helps save current consumption of the access point.

DTIM

Delivery Traffic Indication Message (DTIM) is the time period after which broadcast and multicast packets are transmitted to mobile clients in the Active Power Management mode. A high DTIM value can cause clients to lose connectivity with the network. This value can be set from 1 to 255.

Enable Signal Threshold

Select the check box to use the signal threshold to ensure wireless clients receive good throughput. This allows only wireless clients with a strong signal to connect to the AP.

Clear the check box to not require wireless clients to have a minimum signal strength to connect to the AP.

Station Signal Threshold

Set a minimum client signal strength. A wireless client is allowed to connect to the AP only when its signal strength is stronger than the specified threshold.

-20 dBm is the strongest signal you can require and -76 is the weakest.

Disassociate Station Threshold

Set a minimum kick-off signal strength. When a wireless client’s signal strength is lower than the specified threshold, the NWA/WAC disconnects the wireless client from the AP.

-20 dBm is the strongest signal you can require and -90 is the weakest.

Allow Station Connection after Multiple Retries

Select this option to allow a wireless client to try to associate with the AP again after it is disconnected due to weak signal strength.

Station Retry Count

Set the maximum number of times a wireless client can attempt to re-connect to the AP

Multicast Settings

Transmission Mode

Specify how the NWA/WAC handles wireless multicast traffic.

Select Multicast to Unicast to broadcast wireless multicast traffic to all of the wireless clients as unicast traffic. Unicast traffic dynamically changes the data rate based on the application’s bandwidth requirements. The retransmit mechanism of unicast traffic provides more reliable transmission of the multicast traffic, although it also produces duplicate packets.

Select Fixed Multicast Rate to send multicast traffic to all wireless clients at a single data rate. You must know the multicast application’s bandwidth requirements and set it in the following field.

Multicast Rate(Mbps)

If you set Transmission Mode to Fixed Multicast Rate, select a data rate at which the NWA/WAC transmits multicast packets to wireless clients. For example, to deploy 4 Mbps video, select a fixed multicast rate higher than 4 Mbps.

OK

Click OK to save your changes back to the NWA/WAC.

Cancel

Click Cancel to exit this screen without saving your changes.

Add

Click this to add a new SSID profile.

Edit

Click this to edit the selected SSID profile.

Remove

Click this to remove the selected SSID profile.

Object Reference

Click this to view which other objects are linked to the selected SSID profile (for example, radio profile).

#

This field is a sequential value, and it is not associated with a specific user.

Profile Name

This field indicates the name assigned to the SSID profile.

SSID

This field indicates the SSID name as it appears to wireless clients.

Security Profile

This field indicates which (if any) security profile is associated with the SSID profile.

QOS

This field indicates the QoS type associated with the SSID profile.

MAC Filtering Profile

This field indicates which (if any) MAC filter Profile is associated with the SSID profile.

Layer-2 Isolation Profile

This field indicates which (if any) layer-2 isolation Profile is associated with the SSID profile.

VLAN ID

This field indicates the VLAN ID associated with the SSID profile.

Create new Object

Select an object type from the list to create a new one associated with this SSID profile.

Profile Name

Enter up to 31 alphanumeric characters for the profile name. This name is only visible in the Web Configurator and is only for management purposes. Spaces and underscores are allowed.

SSID

Enter the SSID name for this profile. This is the name visible on the network to wireless clients. Enter up to 32 characters, spaces and underscores are allowed.

Security Profile

Select a security profile from this list to associate with this SSID. If none exist, you can use the Create new Object menu to create one.

Note: It is highly recommended that you create security profiles for all of your SSIDs to enhance your network security.

MAC Filtering Profile

Select a MAC filtering profile from the list to associate with this SSID. If none exist, you can use the Create new Object menu to create one.

MAC filtering allows you to limit the wireless clients connecting to your network through a particular SSID by wireless client MAC addresses. Any clients that have MAC addresses not in the MAC filtering profile of allowed addresses are denied connections.

The disable setting means no MAC filtering is used.

Layer-2 Isolation Profile

Select a layer-2 isolation profile from the list to associate with this SSID. If none exist, you can use the Create new Object menu to create one.

Layer-2 isolation allows you to prevent wireless clients associated with your NWA/WAC from communicating with other wireless clients, APs, computers or routers in a network.

The disable setting means no layer-2 isolation is used.

QoS

Select a Quality of Service (QoS) access category to associate with this SSID. Access categories minimize the delay of data packets across a wireless network. Certain categories, such as video or voice, are given a higher priority due to the time sensitive nature of their data packets.

QoS access categories are as follows:

disable: Turns off QoS for this SSID. All data packets are treated equally and not tagged with access categories.

WMM: Enables automatic tagging of data packets. The NWA/WAC assigns access categories to the SSID by examining data as it passes through it and making a best guess effort. If something looks like video traffic, for instance, it is tagged as such.

WMM_VOICE: All wireless traffic to the SSID is tagged as voice data. This is recommended if an SSID is used for activities like placing and receiving VoIP phone calls.

WMM_VIDEO: All wireless traffic to the SSID is tagged as video data. This is recommended for activities like video conferencing.

WMM_BEST_EFFORT: All wireless traffic to the SSID is tagged as “best effort,” meaning the data travels the best route it can without displacing higher priority traffic. This is good for activities that do not require the best bandwidth throughput, such as surfing the Internet.

WMM_BACKGROUND: All wireless traffic to the SSID is tagged as low priority or “background traffic”, meaning all other access categories take precedence over this one. If traffic from an SSID does not have strict throughput requirements, then this access category is recommended. For example, an SSID that only has network printers connected to it.

VLAN ID

Enter a VLAN ID for the NWA/WAC to use to tag traffic originating from this SSID.

Hidden SSID

Select this if you want to “hide” your SSID from wireless clients. This tells any wireless clients in the vicinity of the AP using this SSID profile not to display its SSID name as a potential connection. Not all wireless clients respect this flag and display it anyway.

When a SSID is “hidden” and a wireless client cannot see it, the only way you can connect to the SSID is by manually entering the SSID name in your wireless connection setup screen(s) (these vary by client, client connectivity software, and operating system).

Enable Intra-BSS Traffic Blocking

Select this option to prevent crossover traffic from within the same SSID on the NWA/WAC.

OK

Click OK to save your changes back to the NWA/WAC.

Cancel

Click Cancel to exit this screen without saving your changes.

Add

Click this to add a new security profile.

Edit

Click this to edit the selected security profile.

Remove

Click this to remove the selected security profile.

Object Reference

Click this to view which other objects are linked to the selected security profile (for example, SSID profile).

#

This field is a sequential value, and it is not associated with a specific user.

Profile Name

This field indicates the name assigned to the security profile.

Security Mode

This field indicates this profile’s security mode (if any).

Profile Name

Enter up to 31 alphanumeric characters for the profile name. This name is only visible in the Web Configurator and is only for management purposes. Spaces and underscores are allowed.

Security Mode

Select a security mode from the list: none, wep, wpa2, or wpa2-mix.

Radius Server Type

This shows External and the NWA/WAC uses an external RADIUS server for authentication.

Primary / Secondary Radius Server Activate

Select this to have the NWA/WAC use the specified RADIUS server.

Radius Server IP Address

Enter the IP address of the RADIUS server to be used for authentication.

Radius Server Port

Enter the port number of the RADIUS server to be used for authentication.

Radius Server Secret

Enter the shared secret password of the RADIUS server to be used for authentication.

Primary / Secondary Accounting Server Activate

Select the check box to enable user accounting through an external authentication server.

Accounting Server IP Address

Enter the IP address of the external accounting server in dotted decimal notation.

Accounting Server Port

Enter the port number of the external accounting server. The default port number is 1813. You need not change this value unless your network administrator instructs you to do so with additional information.

Accounting Share Secret

Enter a password (up to 128 alphanumeric characters) as the key to be shared between the external accounting server and the NWA/WAC. The key must be the same on the external accounting server and your NWA/WAC. The key is not sent over the network.

Accounting Interim Update

This field is available only when you enable user accounting through an external authentication server.

Select this to have the NWA/WAC send subscriber status updates to the accounting server at the interval you specify.

Interim Update Interval

Specify the time interval for how often the NWA/WAC is to send a subscriber status update to the accounting server.

802.1X

Select this to enable 802.1x secure authentication.

ReAuthentication Timer

Enter the interval (in seconds) between authentication requests. Enter a 0 for unlimited requests.

WEP Authentication Settings

Idle Timeout

Enter the idle interval (in seconds) that a client can be idle before authentication is discontinued.

Authentication Type

Select a WEP authentication method. Choices are Open or Share key. Share key is only available if you are not using 802.1x.

Key Length

Select the bit-length of the encryption key to be used in WEP connections.

If you select WEP-64:

•       Enter 10 hexadecimal digits in the range of “A-F”, “a-f” and “0-9” (for example, 0x11AA22BB33) for each Key used.

or

•       Enter 5 ASCII characters (case sensitive) ranging from “a-z”, “A-Z” and “0-9” (for example, MyKey) for each Key used.

If you select WEP-128:

•       Enter 26 hexadecimal digits in the range of “A-F”, “a-f” and “0-9” (for example, 0x00112233445566778899AABBCC) for each Key used.

or

•       Enter 13 ASCII characters (case sensitive) ranging from “a-z”, “A-Z” and “0-9” (for example, MyKey12345678) for each Key used.

Key 1~4

Based on your Key Length selection, enter the appropriate length hexadecimal or ASCII key.

WPA2/WPA2-Mix Authentication Settings

PSK

This field is available when you select the wpa2, or wpa2-mix security mode.

Select this option to use a Pre-Shared Key with WPA2 encryption.

Pre-Shared Key

Enter a pre-shared key of between 8 and 63 case-sensitive ASCII characters (including spaces and symbols) or 64 hexadecimal characters.

Cipher Type

Select an encryption cipher type from the list.

•       auto - This automatically chooses the best available cipher based on the cipher in use by the wireless client that is attempting to make a connection.

•       aes - This is the Advanced Encryption Standard encryption method. It is a more recent development over TKIP and considerably more robust. Not all wireless clients may support this.

Idle Timeout

Enter the interval (in seconds) that a client can be idle before authentication is discontinued.

Group Key Update Timer

Enter the interval (in seconds) at which the AP updates the group WPA2 encryption key.

Management Frame Protection

This field is available only when you select wpa2 in the Security Mode field and set Cipher Type to aes.

Data frames in 802.11 WLANs can be encrypted and authenticated with WEP, WPA or WPA2. But 802.11 management frames, such as beacon/probe response, association request, association response, de-authentication and disassociation are always unauthenticated and unencrypted. IEEE 802.11w Protected Management Frames allows APs to use the existing security mechanisms (encryption and authentication methods defined in IEEE 802.11i WPA/WPA2) to protect management frames. This helps prevent wireless DoS attacks.

Select the check box to enable management frame protection (MFP) to add security to 802.11 management frames.

Select Optional if you do not require the wireless clients to support MFP. Management frames will be encrypted if the clients support MFP.

Select Required and wireless clients must support MFP in order to join the NWA/WAC’s wireless network.

OK

Click OK to save your changes back to the NWA/WAC.

Cancel

Click Cancel to exit this screen without saving your changes.

Add

Click this to add a new MAC filtering profile.

Edit

Click this to edit the selected MAC filtering profile.

Remove

Click this to remove the selected MAC filtering profile.

Object Reference

Click this to view which other objects are linked to the selected MAC filtering profile (for example, SSID profile).

#

This field is a sequential value, and it is not associated with a specific user.

Profile Name

This field indicates the name assigned to the MAC filtering profile.

Filter Action

This field indicates this profile’s filter action (if any).

Profile Name

Enter up to 31 alphanumeric characters for the profile name. This name is only visible in the Web Configurator and is only for management purposes. Spaces and underscores are allowed.

Filter Action

Select allow to permit the wireless client with the MAC addresses in this profile to connect to the network through the associated SSID; select deny to block the wireless clients with the specified MAC addresses.

Add

Click this to add a MAC address to the profile’s list.

Edit

Click this to edit the selected MAC address in the profile’s list.

Remove

Click this to remove the selected MAC address from the profile’s list.

#

This field is a sequential value, and it is not associated with a specific user.

MAC

This field specifies a MAC address associated with this profile. You can click the MAC address to make it editable.

Description

This field displays a description for the MAC address associated with this profile. You can click the description to make it editable. Enter up to 60 characters, spaces and underscores allowed.

OK

Click OK to save your changes back to the NWA/WAC.

Cancel

Click Cancel to exit this screen without saving your changes.

Add

Click this to add a new MAC filtering profile.

Edit

Click this to edit the selected MAC filtering profile.

Remove

Click this to remove the selected MAC filtering profile.

Object Reference

Click this to view which other objects are linked to the selected MAC filtering profile (for example, SSID profile).

#

This field is a sequential value, and it is not associated with a specific user.

Profile Name

This field indicates the name assigned to the layer-2 isolation profile.

Profile Name

Enter up to 31 alphanumeric characters for the profile name. This name is only visible in the Web Configurator and is only for management purposes. Spaces and underscores are allowed.

Add

Click this to add a MAC address to the profile’s list.

Edit

Click this to edit the selected MAC address in the profile’s list.

Remove

Click this to remove the selected MAC address from the profile’s list.

#

This field is a sequential value, and it is not associated with a specific user.

MAC

This field specifies a MAC address associated with this profile. You can click the MAC address to make it editable.

Description

This field displays a description for the MAC address associated with this profile. You can click the description to make it editable. Enter up to 60 characters, spaces and underscores allowed.

OK

Click OK to save your changes back to the NWA/WAC.

Cancel

Click Cancel to exit this screen without saving your changes.