Reference Guide
Page 4
TOC-2 WS2000 Wireless Switch System Reference Guide 3.2.1 The DHCP Configuration 3-4 3.2.2 Advanced DHCP Settings 3-5 3.3 Configuring Subnet Access 3-6 3.3.1 The Access Overview Table 3-7 3.3.2 The Access Exception Area 3-7 3.4 Advanced Subnet Access Settings 3-9 3.5 Bridge Configuration 3-12 3.6 Virtual LAN (VLAN) Configuration 3-13 3.7 Configuring IP Filtering 3-15 3.8 Port Configuration 3-17 Chapter 4: WAN Configuration 4.1 Configuring the WAN Interface 4-2 4.1.1 Configuring WAN IP Information 4-2 4.1.2 Setting Up...
TOC-2 WS2000 Wireless Switch System Reference Guide 3.2.1 The DHCP Configuration 3-4 3.2.2 Advanced DHCP Settings 3-5 3.3 Configuring Subnet Access 3-6 3.3.1 The Access Overview Table 3-7 3.3.2 The Access Exception Area 3-7 3.4 Advanced Subnet Access Settings 3-9 3.5 Bridge Configuration 3-12 3.6 Virtual LAN (VLAN) Configuration 3-13 3.7 Configuring IP Filtering 3-15 3.8 Port Configuration 3-17 Chapter 4: WAN Configuration 4.1 Configuring the WAN Interface 4-2 4.1.1 Configuring WAN IP Information 4-2 4.1.2 Setting Up...
Reference Guide
Page 35
... set WEP 128 encryption. Open a Web browser and type the IP address: 192.168.0.1. The WS 2000 Switch Management screen should appear. Use the same key as was entered in the...motorola.com) on the WAN. By default, all mobile units can or cannot gain access to the WLAN. Getting Started 2-11 For the connectivity test, set up to allow mobile units to access the LAN. 1. Later on the mobile device... MU Stats screen, recheck the network and WEP settings on , increasing the security level might need to configure the switch and see if the mobile device appears in the WEP Key Setting...
... set WEP 128 encryption. Open a Web browser and type the IP address: 192.168.0.1. The WS 2000 Switch Management screen should appear. Use the same key as was entered in the...motorola.com) on the WAN. By default, all mobile units can or cannot gain access to the WLAN. Getting Started 2-11 For the connectivity test, set up to allow mobile units to access the LAN. 1. Later on the mobile device... MU Stats screen, recheck the network and WEP settings on , increasing the security level might need to configure the switch and see if the mobile device appears in the WEP Key Setting...
Reference Guide
Page 55
WAN Configuration 4.1 Configuring the WAN Interface 4-2 4.1.1 Configuring WAN IP Information 4-2 4.1.2 Setting Up Point-to-Point over Ethernet (PPPoE) Communication 4-3 4.2 Configuring the WS 2000 Firewall 4-5 4.2.1 Disabling the Firewall 4-5 4.2.2 Setting the NAT Timeout 4-5 4.2.3 Configurable Firewall Filters 4-6 4.3 Configuring Network Address Translation (NAT 4-8 4.4 Configuring Static Routes 4-10 4.4.1 Configuring the Default Gateway Interface 4-10 4.4.2 Creating User Defined Routes 4-11 4.4.3 Setting...
WAN Configuration 4.1 Configuring the WAN Interface 4-2 4.1.1 Configuring WAN IP Information 4-2 4.1.2 Setting Up Point-to-Point over Ethernet (PPPoE) Communication 4-3 4.2 Configuring the WS 2000 Firewall 4-5 4.2.1 Disabling the Firewall 4-5 4.2.2 Setting the NAT Timeout 4-5 4.2.3 Configurable Firewall Filters 4-6 4.3 Configuring Network Address Translation (NAT 4-8 4.4 Configuring Static Routes 4-10 4.4.1 Configuring the Default Gateway Interface 4-10 4.4.2 Creating User Defined Routes 4-11 4.4.3 Setting...
Reference Guide
Page 57
...switch's router to use to address the WS 2000 Wireless Switch. • Click the More IP Addresses button to specify additional static IP addresses for high-speed connections. 2. WAN Configuration 4-3 • The IP Address refers to the IP address that the network... default idle time is the mask used for authentication. 1. The pop-up window allows the administrator to enter up to eight WAN IP addresses for the switch.... simple device to enable the PPPoE protocol for the switch. Set the Idle Time to clients on a per-user or per-site basis. Check with the network administrator ...
...switch's router to use to address the WS 2000 Wireless Switch. • Click the More IP Addresses button to specify additional static IP addresses for high-speed connections. 2. WAN Configuration 4-3 • The IP Address refers to the IP address that the network... default idle time is the mask used for authentication. 1. The pop-up window allows the administrator to enter up to eight WAN IP addresses for the switch.... simple device to enable the PPPoE protocol for the switch. Set the Idle Time to clients on a per-user or per-site basis. Check with the network administrator ...
Reference Guide
Page 59
... WS2000. By default the firewall is enabled. 4.2.2 Setting the NAT Timeout 4.2.2.1 TCP Default Timeout The TCP Default Timeout field is used . WAN Configuration 4-5 4.2 Configuring the WS 2000 Firewall The WS 2000 Wireless Switch provides a secure firewall/Network Address... Translation (NAT) solution for all protocols and ports. It also provides additional protection by performing source routing, IP...
... WS2000. By default the firewall is enabled. 4.2.2 Setting the NAT Timeout 4.2.2.1 TCP Default Timeout The TCP Default Timeout field is used . WAN Configuration 4-5 4.2 Configuring the WS 2000 Firewall The WS 2000 Wireless Switch provides a secure firewall/Network Address... Translation (NAT) solution for all protocols and ports. It also provides additional protection by performing source routing, IP...
Reference Guide
Page 64
...1 If Subnet 1 is sent to view and set a Default Gateway Interface for all unspecified routes on the WS2000. 4-10 WS2000 Wireless Switch System Reference Guide Translation Port Enter the port to which interface ...IP address to another. The WS2000 switch's router manages traffic within the switch's network, and directs traffic from the menu on the NAT screen to save changes. 4.4 Configuring Static Routes A router uses routing tables and protocols to specify which traffic is enabled, sets it as the Default Gateway Interface for unspecified routes. The WS 2000 Network Management...
...1 If Subnet 1 is sent to view and set a Default Gateway Interface for all unspecified routes on the WS2000. 4-10 WS2000 Wireless Switch System Reference Guide Translation Port Enter the port to which interface ...IP address to another. The WS2000 switch's router manages traffic within the switch's network, and directs traffic from the menu on the NAT screen to save changes. 4.4 Configuring Static Routes A router uses routing tables and protocols to specify which traffic is enabled, sets it as the Default Gateway Interface for unspecified routes. The WS 2000 Network Management...
Reference Guide
Page 76
...networks? This is only required if the clients are not using the WS 2000 switch as the gateway to the remote subnet will be send through the VPN tunnel. No. Yes. Clients, however, might need to add any default...need extra routing information to tell them to use the WS 2000 switch as their default gateway. 4.5.6.3 Can I setup the WS 2000 Wireless Switch so that clients can both access the WAN normally ...are going from the defined local subnet to reach the remote subnet. 4-22 WS2000 Wireless Switch System Reference Guide An allow outbound rule: Src Dst Transport Src port Dst port...
...networks? This is only required if the clients are not using the WS 2000 switch as the gateway to the remote subnet will be send through the VPN tunnel. No. Yes. Clients, however, might need to add any default...need extra routing information to tell them to use the WS 2000 switch as their default gateway. 4.5.6.3 Can I setup the WS 2000 Wireless Switch so that clients can both access the WAN normally ...are going from the defined local subnet to reach the remote subnet. 4-22 WS2000 Wireless Switch System Reference Guide An allow outbound rule: Src Dst Transport Src port Dst port...
Reference Guide
Page 77
...up across another network or router. UFQDM tries to match the user entered remote ID data string to IP, since the IP address is how you can I am using NTP when attempting use the certificate manager. The packet processing architecture of the WS 2000 VPN solution requires a WAN default gateway to the... ID data string to 0.0.0.0. 2. As a work properly. Your VPN tunnel entry must have the Local WAN IP set to the email address field of your WS 2000 switch to the IP addresses specified in a local certificate. Also make sure that IKE selects a local certificate to be the other...
...up across another network or router. UFQDM tries to match the user entered remote ID data string to IP, since the IP address is how you can I am using NTP when attempting use the certificate manager. The packet processing architecture of the WS 2000 VPN solution requires a WAN default gateway to the... ID data string to 0.0.0.0. 2. As a work properly. Your VPN tunnel entry must have the Local WAN IP set to the email address field of your WS 2000 switch to the IP addresses specified in a local certificate. Also make sure that IKE selects a local certificate to be the other...
Reference Guide
Page 105
...Apply button to save changes. 5.6 Advanced Access Port Settings The WS 2000 Wireless Switch GUI allows the administrator to let nodes sleep longer and preserve their...long or short preamble for every 10 beacons. Use the long preamble setting (the default) for example, 10 : 100. The DTIM period determines how often the beacon...IP applications are soon to arrive. G only: Only clients that require no acknowledgment, so nodes sometimes miss them. These are jitter-sensitive. for legacy wireless...Network Configuration --> Wireless --> Access Ports from the WLAN's adopted Access Ports.
...Apply button to save changes. 5.6 Advanced Access Port Settings The WS 2000 Wireless Switch GUI allows the administrator to let nodes sleep longer and preserve their...long or short preamble for every 10 beacons. Use the long preamble setting (the default) for example, 10 : 100. The DTIM period determines how often the beacon...IP applications are soon to arrive. G only: Only clients that require no acknowledgment, so nodes sometimes miss them. These are jitter-sensitive. for legacy wireless...Network Configuration --> Wireless --> Access Ports from the WLAN's adopted Access Ports.
Reference Guide
Page 128
...IP addresses associated with the user interface. Choose the types of access to the WS 2000 Wireless Switch. The WS 2000 Access screen allows the administrator to restrict access to perform administration tasks. You can allow by specifying one of access from the WAN port or from a standard Web browser. 6-2 WS2000 Wireless Switch... System Reference Guide 6.1 Configuring Administrator Access The WS 2000 Network Management System allows users to log in to the WS2000 switch from this screen. By default, any settings within the WS 2000 Network Management System...
...IP addresses associated with the user interface. Choose the types of access to the WS 2000 Wireless Switch. The WS 2000 Access screen allows the administrator to restrict access to perform administration tasks. You can allow by specifying one of access from the WAN port or from a standard Web browser. 6-2 WS2000 Wireless Switch... System Reference Guide 6.1 Configuring Administrator Access The WS 2000 Network Management System allows users to log in to the WS2000 switch from this screen. By default, any settings within the WS 2000 Network Management System...
Reference Guide
Page 129
...WS 2000 Management System user interface. The only way the device can then be able to access the switch through a direct serial connection from a PC. Enter a value, in seconds, when a client connected via SSH must reauthenticate in this section are two methods available for Admin Authentication area. The default...Note that maximize the availability, security and effectiveness of a wireless network. If RADIUS is configured in the SSH Client Inactivity ... the wireless switch through the Secure Shell (SSH) protocol of TCP/IP. 161 Allows administrator access to change switch settings ...
...WS 2000 Management System user interface. The only way the device can then be able to access the switch through a direct serial connection from a PC. Enter a value, in seconds, when a client connected via SSH must reauthenticate in this section are two methods available for Admin Authentication area. The default...Note that maximize the availability, security and effectiveness of a wireless network. If RADIUS is configured in the SSH Client Inactivity ... the wireless switch through the Secure Shell (SSH) protocol of TCP/IP. 161 Allows administrator access to change switch settings ...
Reference Guide
Page 151
...allow the WS 2000 Wireless Switch to ...WS 2000 to WAN. 5. Set the Auto Upgrade Interval (in the WS2000's Compact Flash slot. 3. The external DHCP server which Firmware and Configuration updates will be either the WAN port or any of new configurations or firmware updates across the network without manually updating each switch. By default...switch. Verify that the Compact Flash card is firmly seated in seconds) for the WS2000 to facilitate WS2000 for Firmware/Config upgrade parameters. Switch Administration 7-9 2. By default this option to provide TFTP/FTP server IP...
...allow the WS 2000 Wireless Switch to ...WS 2000 to WAN. 5. Set the Auto Upgrade Interval (in the WS2000's Compact Flash slot. 3. The external DHCP server which Firmware and Configuration updates will be either the WAN port or any of new configurations or firmware updates across the network without manually updating each switch. By default...switch. Verify that the Compact Flash card is firmly seated in seconds) for the WS2000 to facilitate WS2000 for Firmware/Config upgrade parameters. Switch Administration 7-9 2. By default this option to provide TFTP/FTP server IP...
Reference Guide
Page 152
... server, you are setting up the automatic firmware download or configuration settings download. 7-10 WS2000 Wireless Switch System Reference Guide Auto FW/Config upgrade. Navigate to the IP address of the server what will need to be imported or exported. Also set the ...; It can speed the switch setup process significantly at sites using multiple WS2000 wireless switches. • It allows an administrator to "backup" the current switch configuration before making significant changes, before restoring the default configuration, or for the WS 2000 Wireless Switch can be written to or...
... server, you are setting up the automatic firmware download or configuration settings download. 7-10 WS2000 Wireless Switch System Reference Guide Auto FW/Config upgrade. Navigate to the IP address of the server what will need to be imported or exported. Also set the ...; It can speed the switch setup process significantly at sites using multiple WS2000 wireless switches. • It allows an administrator to "backup" the current switch configuration before making significant changes, before restoring the default configuration, or for the WS 2000 Wireless Switch can be written to or...
Reference Guide
Page 170
... set time manually. 4. To enable time service on the switch, check the Enable NTP on WS 2000 checkbox and continue with the rest of the Current Time area displays what the switch believes is 123. Specify a Synchronization Interval (in minutes). ...default, the switch will go out to the network to update that time. If an NTP server is of uninterrupted time synchronization. 6. The more NTP servers specified, the greatest assurance there is configured, the switch will synchronize the time every 15 minutes. 7. Click the Apply button to enable NTP. 7-28 WS2000 Wireless Switch...
... set time manually. 4. To enable time service on the switch, check the Enable NTP on WS 2000 checkbox and continue with the rest of the Current Time area displays what the switch believes is 123. Specify a Synchronization Interval (in minutes). ...default, the switch will go out to the network to update that time. If an NTP server is of uninterrupted time synchronization. 6. The more NTP servers specified, the greatest assurance there is configured, the switch will synchronize the time every 15 minutes. 7. Click the Apply button to enable NTP. 7-28 WS2000 Wireless Switch...
Reference Guide
Page 171
...log.txt file. Specify the Syslog server IP address for the administrator password. Check the Enable logging in to an external syslog server checkbox to store events. Switch Administration 7-29 7.11 Setting Up and Viewing the System Log The WS 2000 Network Management System keeps a log of the events ...that will store the log. Viewing the log file with buttons to be displayed with Notepad, the default text file view on the Switch To save the file. After the password has ...
...log.txt file. Specify the Syslog server IP address for the administrator password. Check the Enable logging in to an external syslog server checkbox to store events. Switch Administration 7-29 7.11 Setting Up and Viewing the System Log The WS 2000 Network Management System keeps a log of the events ...that will store the log. Viewing the log file with buttons to be displayed with Notepad, the default text file view on the Switch To save the file. After the password has ...
Reference Guide
Page 213
...the Wireless Switch 12-4 12.3.1 Entering the Basic System Settings 12-5 12.3.2 Setting Access Control 12-6 12.3.3 The IP Address Plan 12-7 12.4 Configuring POS Subnet 12-8 12.5 Configuring the Printer Subnet 12-9 12.6 Configuring the Cafe Subnet 12-11 12.7 Configuring the WAN Interface 12-12 12.8 Configuring Network Address... Translation (NAT 12-13 12.9 Inspecting the Firewall 12-14 12.10 Configuring the Access Ports 12-15 12.10.1 Setting Access Port Defaults 12-15 12.10.2 Naming the POS Access Port 12-17...
...the Wireless Switch 12-4 12.3.1 Entering the Basic System Settings 12-5 12.3.2 Setting Access Control 12-6 12.3.3 The IP Address Plan 12-7 12.4 Configuring POS Subnet 12-8 12.5 Configuring the Printer Subnet 12-9 12.6 Configuring the Cafe Subnet 12-11 12.7 Configuring the WAN Interface 12-12 12.8 Configuring Network Address... Translation (NAT 12-13 12.9 Inspecting the Firewall 12-14 12.10 Configuring the Access Ports 12-15 12.10.1 Setting Access Port Defaults 12-15 12.10.2 Naming the POS Access Port 12-17...
Reference Guide
Page 216
... switch comes up a direct network link between her laptop to each WLAN. So, as far as this connection is the store server and two wired POS terminals. She also sets the gateway IP address to the Internet through a DSL line. 12.3 Contacting the Wireless Switch... Clarissa sets up with the POS terminals. Clarissa will put them on the WS 2000. 12-4 WS2000 Wireless Switch System Reference Guide This plan covers all the LAN ports on the first subnet and that subnet having all the wireless devices...
... switch comes up a direct network link between her laptop to each WLAN. So, as far as this connection is the store server and two wired POS terminals. She also sets the gateway IP address to the Internet through a DSL line. 12.3 Contacting the Wireless Switch... Clarissa sets up with the POS terminals. Clarissa will put them on the WS 2000. 12-4 WS2000 Wireless Switch System Reference Guide This plan covers all the LAN ports on the first subnet and that subnet having all the wireless devices...
Reference Guide
Page 221
...then gives it at the default and clicks Ok to save her changes. This is no more activity. Clarissa fills in the left menu. The DHCP Lease Time is already set to the subnet address. The only devices on this subnet are the wireless printers. She leave it an IP address of 192.168....1.1 and a subnet mask of 255.255.255.0. She renames this subnet. WS 2000 Use Cases 12-9 The Default Gateway is the time an IP address will also be supplied to the ...
...then gives it at the default and clicks Ok to save her changes. This is no more activity. Clarissa fills in the left menu. The DHCP Lease Time is already set to the subnet address. The only devices on this subnet are the wireless printers. She leave it an IP address of 192.168....1.1 and a subnet mask of 255.255.255.0. She renames this subnet. WS 2000 Use Cases 12-9 The Default Gateway is the time an IP address will also be supplied to the ...
Reference Guide
Page 223
The Default Gateway is inactive on this subnet, and activates the DHCP server with an IP address range of 255.255.255.0. However, Clarissa expects the cafe patrons to 192.168.2.254. Using the Interfaces section of the screen, she will give up its IP address if it the IP address 192.168.2.1 ...half an hour. WS 2000 Use Cases 12-11 12.6 Configuring the Cafe Subnet Clarissa selects the third subnet in the LAN menu list under Network Configuration in the cafe. This means that she reduces the IP address lease time to an hour. The only devices on the network for the usage patterns...
The Default Gateway is inactive on this subnet, and activates the DHCP server with an IP address range of 255.255.255.0. However, Clarissa expects the cafe patrons to 192.168.2.254. Using the Interfaces section of the screen, she will give up its IP address if it the IP address 192.168.2.1 ...half an hour. WS 2000 Use Cases 12-11 12.6 Configuring the Cafe Subnet Clarissa selects the third subnet in the LAN menu list under Network Configuration in the cafe. This means that she reduces the IP address lease time to an hour. The only devices on the network for the usage patterns...
Reference Guide
Page 243
... one of 192.168.0.1. Leo starts with a direct network link between his laptop and the switch, plugging the cable into one WLAN and two Access Ports. The only exception is concerned, the switch comes up a communication link to the switch. The switch defaults to having all the LAN ports on the first subnet..., ports. WS 2000 Use Cases 12-31 To keep things simple, he will be restricted to just HTTP, SMTP, and POP access to the WAN. 12.18 Configuring the System Settings 12.18.1 Contacting the Wireless Switch To begin configuration of the switch, Leo sets up with an initial IP address of the...
... one of 192.168.0.1. Leo starts with a direct network link between his laptop and the switch, plugging the cable into one WLAN and two Access Ports. The only exception is concerned, the switch comes up a communication link to the switch. The switch defaults to having all the LAN ports on the first subnet..., ports. WS 2000 Use Cases 12-31 To keep things simple, he will be restricted to just HTTP, SMTP, and POP access to the WAN. 12.18 Configuring the System Settings 12.18.1 Contacting the Wireless Switch To begin configuration of the switch, Leo sets up with an initial IP address of the...