Wireless Standards and Implementation

SOI Asia IT workshop 2005
Wireless Network Operation

Masafumi OE, PhD masa@fumi.org NAOJ
Introduce myself
My name is Masafumi OE. Im senior researcher in NAOJ.
NAOJ: National Astronomical Observatory of Japan Astronomical Research institute is founded by the government.
Introduce myself
Why the astronomer does teach on this workshop?
Im network professional researcher.
Operate the entire of NAOJ network.
When I was belonging to NAIST, I had a employment opportunity that NAOJ is requesting a researcher of Network area to WIDE Project.
NAOJ Facility location MAP
MIzusawa
Nobeyama Norikura Okayama CHILI MItaka
OKINAWA HAWAII,US
Subaru Telescope
8.2m Primary Mirror located on the summit of Mauna Kea, a dormant volcano on the Big Island of Hawaii. The air is only 60% as thick as at sea level. =>The summit of Mauna Kea is one of the best astronomical observing sites in the world
Introduce yourself
Your name and etc.. Your ability and experience of a wireless. Your aim on this WS.
Quiz
Test your knowledge about wireless technologies. TIME LIMIT is 30MIN.
Your aim
Goal
Participants acquire new experience by absorbing my lecture.
You practice to construct a wireless site. I hope to construct and operate a good wireless site.
Outline of the workshop

DAY1
Introduction of 802.11 Basic usage and configuration of Cisco Aironet access point
DAY2
Advanced configuration Designing of a wireless site
DAY3
Practice
Construct a wireless site on this site.
DAY1
selfintroduce/milestone Introduction of 802.11 11:00 - 12:30 Introduction of 802.11 (2) Install and Initial setup Cisco-APs 13:30 - 15:00 Basic configuration (1) 15:30 - 17:00 Basic configuration (2)
MAY BE RESCADULE ON OUR PROGRESS.
9:00 - 10:30
DAY1 11:00-12:30
Introduction of 802.11
Current state of wireless usage

Everything connects with wireless!
Notebook computer Personal Digital Assistant (PDA) Printer Wireless network printer HP PSC2710 Media player Handheld gaming system etc. Network Media player have built-in wireless device. Handheld Gaming system Buffalo PC-P3LWG Nintendo DS
Background of this trend

Why is wireless installed in any equipment?
This reason as follows. Decrease price of wireless devices by mass production.
At 1997,
PC-card type wireless NIC was $10000/unit. It have no interoperability with other makers wireless products.
Now
wireless PC-card based on 802.11b/g is only $30.
It is able to install wireless device to consumer gaming machines due to low priced wireless chipset.
Nintendo DS is $150, PSP by Sony is $200.
Background of this trend(2)

Miniaturization of wireless devices.
SD card type IEEE802.11b wireless NIC By SanDISK
Wireless functions packaged to one chip IC.

(Not including RF unit)
It becomes easy to develop built-in wireless devices. Various size (type) of NIC released.
ONLY 2.4cm

System technology for mobility by manufacturers
Intel Centrino mobile technology.
It is a mobile platform configured from of Pentium M, Intel 855 chipset and Intel Pro/wireless network connection.
Wireless built-in notebook PC was popularized.

Enrich Hotspot service at public areas.
ISP provides Hotspot service, that is wireless connectivity service at public areas. In Japan, many ISP provide hotspot services at airports, railway stations,STARBACKS, McDonalds, etc. Lufthansa provide in-flight internet service FlyNet by Connection by Boeing.
Hotspot service providers in Japan
->we can make full use of wireless devices at public area.

Wireless release us from a tangled wire world.
In a house, there are a variety of network capable equipment, such as PC, printer, broadband routers, etc.
-> Wireless is able to easy layout of network devices.

It is not restricted by the length of the cable.
->Wire instillation is required to take a lot of time and money to equip.
Technology overview of wirelsss

About 802.11 specifications
10
History of 802.11 standardization

IEEE 802.11 commission is working for standardization of wireless network. IEEE approved 802.11 at 97
Has Infrared (IR) and 2.4GHz-band (microwave) as link carrier. has 1Mbps mode and 2Mbps mode as link speed.
802.11
On 2.4Ghz-band, 802.11 has two types of spectrum spread method.
FH-SS, Frequency Hopping - Spectrum Spread.
Fault tolerance is high, transmission rate is slow. Bluetooth use FHSS.
DS-SS, Direct Sequence - Spectrum Spread.

Fault tolerance is low, transmission rate is fast.
2.4GHz is ISM band.

ISM: Industry Science Medical band can be used without the radio license.
Example) Microwave cooker, Cordless phone
Regulation for ISM-band MAY be different in each country.
11
FHSS on 802.11
Spread-spectrum signals are highly resistant to noise and interference. b: Actual bandwidth
Hopping Hopping T i m e Hopping Radio frequency
DS-SS
Sender
Add PN-Sequence
Receiver
spread-spectrum transmissions
De-Spread
Spread
Decode the digital data from the spectrum
Generate a spectrum from digital data
Spread the spectrum with pseudo noise
De-spread the spread spectrum with pseudo noise
12
802.11b was on stage.

IEEE approved 802.11b at 99 It is CCK that is extension of 802.11 DSSS.
Added 5.5Mbps and 11Mbps as link speed.
11b has the function of dynamically changing link speed to 1, 2, 5.5 and 11Mbps.
The speed is depending on a radio signal condition.
About IEEE802.11a(1)
IEEE approved 802.11a at 1999, too.
Product released at 01. Manufactures released after successful of 802.11b.
802.11a use 5GHz-band

5Ghz is ISM band.
Regulation for ISM-band MAY be different in each country.
5GHz-band may have some effect by rain and snow. 5Ghz of straightness is higher than 2.4GHz of it.
S/N rate is low on furnitures shadow.
13
Link speed is 54Mbps.
802.11a use OFDM (Orthogonal Frequency Division Multiplexing) as modulation. OFDM is able to use a radio bandwidth in efficiently than DSSS in 802.11b. Merit of OFDM is strong in phasing and the multi-pass.
TDMA
Time Division Multiple Access
TIME
Frequency
Ex) 2G Mobile phone
14
FDMA
Frequency Division Multiple Access
TIME
Frequency
Ex) AM Radio
Spectrum of FDMA
Signal Level Frequency bandwidth
Frequency
15
Orthogonal-FDM
Signal Level OFDM
Distributes the data over a large number of carriers that are spaced apart at precise frequencies. This spacing provides the "orthogonally" in this technique
Frequency bandwidth
Frequency
Usage limitation of 802.11a is different each country.
In Japan, Permitted frequency from 5.15GHz to 5.25GHz without a license and also indoor use only.
Because 802.11a interferes in weather observation system, AMEDAS, that use 5GHz-band.
In US, permitted 5.155.25GHz, 5.255.35GHz and 5.7255.825GHz-band.

US has three times of radio band range than Japan.
Country localized products fit each countrys law.

Japan localized 11a card cant associate with US localized access point.
16
Usage limitation of 802.11a is different each country.
In Japan, Permitted frequency from 5.15GHz to 5.25GHz without a license and also indoor use only.
Because 802.11a interferes in weather observation system, AMEDAS, that use 5GHz-band.
In US, permitted 5.155.25GHz, 5.25 5.35GHz and 5.7255.825GHz-band.

US has three times of radio band range than Japan.
About IEEE802.11g
First product was released at 03.
Manufacturers release products while IEEE is finalizing specification of 802.11g from draft.
11g uses same frequency band as 11b.

2.4Ghz-band.
Link speed is up to 54Mbps.

11g use OFDM / PBCC(=Packet Binary Convolution Code) / OFDM-CCK as modulation.
17
Compatibility with 11b(1)

11b and 11g use same 2.4GHz-band with different modulation architecture.
11b cant recognized 11gs OFDM frame.
OFDM
11g client 11b client AP 11b cant recognize OFDM frame.
DATA Collision DATA

CCK
Start sending datas.
Compatibility with 11b(2)

11g use OFDM-CCK modulation to avoid framing collisions between 11b and 11g. OFDM-CCK is send CTS (Clear to send) frame with CCK modulation before OFDM modulation and ACK frame after send.
802.11b clients recognize CTS frame and stop to send data until receiving ACK.
The performance decreases when both of 11g client and 11b client exist in same area because OFDM-CCK has more overhead than OFDM.
CCK
11g client 11b client AP
CTS
OFDM
DATA
CCK
Stop sending data
ACK
OVERHEAD OVERHEAD
18
Channels
Channels and available frequency on 11a/b/g are different each country.
Channel availability of NIC is different by selling region of product. We should pay attention for participant's country.
802.11b Channels
19
Channel ID (x: permitted)
permitted on Mar 2005.
802.11g Channels
Not match channels with other countries
802.11a
20
Three operation mode

IEEE802.11 has three operation mode.
Infrastructure mode ad-hoc mode Repeater mode
Infrastructure mode
Node associate with AP as client. Client communicate via access point(AP). AP works as bridge. This mode is usually used in wireless network.
AP
21
Ad-hoc mode
A node commutates other node without AP. No AP is required
Repeater mode(1)
Connects between LAN and LAN via AP.
AP
AP
ro ad
Bldg A
22
Repeater mode(2)
AP can work as a relay station.
AP AP as a Relay station.
AP
AP
Wireless Interoperability
WECA (Wireless Ethernet Compatibility Alliance) is founded.
WECA established to popularize wireless technologies at 1999.
Founded by Lucent, Intersil, Airnet (now Cisco) .
Authorizes interoperability of 802.11 device.

It is called Wi-Fi Certified.
Defines specification for interoperability.

Wi-Fi System Interoperability Test Plan
tests wireless device to interoperable with IEEE 802.11 specification. Certified Logo
23
Security technology for wireless(1)

WEP: Wired Equivalent Privacy
Encrypts a data link with a shared key. WEP based on RC4 algorism. Private key length is 128bit and 64bit.
128bit key is recommended. The key should be changed at periodic intervals. The risk for leaking the key is proportional to the number of users.
WEP function
Client
XOR operated
Access Point
XOR operated
Encry pted data Encry pted data
data
Pseudo-Random Number Generator
data
Pseudo-Random Number Generator
WEP PASSWORD
WEP PASSWORD
IV: Initialization Vector random number
24
WEP is not so strong.

RC4 with a KEY that is 128bit or 64bit.
XOR operate an original data and KEY that is generated by Pseudo-Random Number Generator with WEP PASSWORD + IV. 128bit WEP= 13 octet=104bit. 64bit WEP = 5 octet=40bit.
Variable bit,IV is only 24bit. IV is transmitted with clear-text.

In 64bit WEP, it is few hours to break the key.

Operate an authentication system for users.
ID/Password authentication on the WEB. MAC address authentication.
Permitted users MAC address is registered. to RADIUS server or to APs local database..
Separate wireless network from secured network.

Operate wireless network with different security policy. Make access control from wireless network to wire network.
25

Operate IEEE802.11i.
802.11i is configured an authentication function and a encryption function. The encryption function on 802.11i is called WPA (WiFi protected access). WPA has more strongly encryption than WEP. The authentication function is based on IEEE802.11x.
Operating 802.11i takes cost though it is very safe.
encryption function of WPA

Client
XOR operated
Access Point
XOR operated
Encry pted data Encry pted data
data
KEY(WEP+IV+MAC) is hashed. WEP is only 128bit. WEP PASSWORD
data
MAC Address
Clients MAC Address
WEP PASSWORD
24bit ->
40bit
Key include clients MAC address. Use different key each client.
26
Summarize(1)
Introduce 802.11b, 11a and 11g.
11g and 11a is up-to 54Mbps. 11b is 11Mbps.
802.11 specifications use ISM band.

802.11b and 802.11g use 2.4GHz. 802.11a use 5Ghz 5Ghz of straightness is higher than 2.4GHz of it. => 5Ghz is difficult to cover under objects shadow.
802.11b use CCK as modulation. 802.11a and 11g use OFDM.

11b only client cant understand OFDM frame of 11a/11g.
Summarize(2)
Channel availability is depending on local regulation. IEEE802.11 has three operation mode, Infrastructure mode, ad-hoc mode and Repeater mode. 802.11 has security features to protect a wireless LAN.
WEP, WPA(802.11i) as link-layer.
27
DAY1 13:30-15:00
Touch Cisco Aironet Wireless access point.
What is AP1140AG
You learn a wireless operation with Cisco AP1140AG. Features
Slim and Smart body. Support IEEE802.11b,11g, and 11a. Support one Ethernet port and one serial console port. It works the IOS and support CLI (Command Line Interface).
28
What is AP1140AG
A retail price of AP1140AG in Japan is about US$450.
Including a wall mount kit and POE injector.
Teaching Equipments
Rent equipments
Laptop
With USB Serial
Cisco AP
Fought with CUSTOM officer.
Serial Cable (RJ45-DUB9) PoE Injector UTP (patch cable/Yellow) AC/DC adapter
AC cable (JP type connecter) JP-ID converter plug
Gift for you

CD-ROM
Aironet Manual (PDF)
Subaru postcard
29
AP1130AG
This AP is marketed in Japan.
Then, APs specification fits the law of Japan.
Usable channels, Transmit power
Attention
The base plate of AP is HOT in power-ON.
To access the interfaces, slide (push) top cover.
Interface
Ethernet 100BaseTX or 10BaseT Console RS232C compatible/ 9600bps DC-IN 48V 2 status LEDs POWER The top over (DC-IN) indicator MODE button
Ethernet CONSOLE LEDs
MODE Button
30
The top cover indicator

GREEN: boot up state. White: UP and no client associated. Blue: UP and clients associated
PoE
The AP supports Power Over Ethernet (PoE).
No need wiring a power cable.
Bring DATA and DC power to AP with one UTP cable. The AP supports IEEE802.3af and Cisco inline power (non-standard PoE spec. by Cisco) specification. In Cisco catalyst supporting PoE, Its product code has PS at the end of the product code.
Get more smart connection to AP.
Supplier of PoE is PoE capable switching hub or PoE injector.
Dont supply a power both PoE and DC.
31
Cisco inline power injector
DC Power AP Power and Data PoE injector unit HUB Over UTP Data(ethernet)
PoE capable switching hub
Cisco Catalyst 2916-PS with Catalyst

PoE Switching Hub
AC
32
Configure the AP via CLI

The AP support CLI, Command Line Interface, and WEB to configure. On this workshop, we use CLI.
CLI can access all function of AP on any situation.
When AP has a miss configuration such as IP address, Ethernet media, VLAN and etc., we can fix the configuration via CLI without the factory reset. AP is no answer to TELNET/SSH/WEB connection under heavy load condition. However, AP provide CLI access.
CLI of AP is same as CLI of other Cisco router/switch product.

Also, Concept and Syntax is same as CLI on cisco catalyst IOS.
Lets access your AP.

Connect your serial cable to the console port.
RJ45-RJ232C cable
Start Hyperterminal.
Use the shortcut named Cisco-access.
Serial port is COM4. Speed 9600bps with None parity, 8bit data late, 1 stop bit, non parity and non flow control.
33
How to input/edit on CLI.

Input and edit as shell like.
Edit a command line.
CTRL+A Jump to the top. CTRL+E Jump to the end. CTRL+U Clear the line.
Access the command history with Up (or CTRL+P) and Down (or CTRL+N) key.
How to input/edit on CLI.(2)

Try and get used to CLI.
Edit a line with CTRL+A/E/U UP/DOWN
EXAMPLE Press RETURN to get started! _ is a cursor.
[return]
ap> my name is MASAFUMI. % Invalid input detected at '^' marker. ap>_
34
HELP system
If you forgot the command, use HELP to input ?, TAB key and help command.
EXAMPLE
ap> ?. ap> show <type-? aaa Show AAA values auto Show Automation Template caller Display information about dialup connections . . Ap> show ? Async Async interface BVI Bridge-Group Virtual Interface CTunnel CTunnel interface Dialer Dialer interface
_ is a cursor.
HELP system(2)
complement of command input.
ap> ?. ap> sho <-TAB ap>show ap>
35
CLI has the three mode.

CLI has 3-mode.
User mode
Permit to exec a part of operation commands.
Enable mode (privilege mode)

Permit to exec privileged commands. Mostly use this mode.
Configuration mode
Permit to exec configuration commands
Move the three mode.

USER MODE
enable command disable command
ENABLE MODE
configure command end or exit command
CONFIGURATION MODE
36
Default password information

The password is Cisco. (Username: Cisco)
Configuration mode
Completely enter a configuration command per line.
No interactive input and output.
A command that are entered will be effective at the same time. A configuration is stored on a RAM memory.
To save your configuration to a media, you have to exec write memory command on ENABLE MODE. If you have a miss-configuration, you restart your AP without saving.
37
Example
Name your AP.
hostname [your APs name] Ex) ap(config)# hostname CISCO CISCO(config)#
Example
Set a password for enable mode.
enable secret 0 [your password] Ex) ap(config)# enable secret 0 SOI ap(config)# end ap# disable ap> enable Password: <-enter SOI ap#
38
Do command
Exec enable command with DO under configuration mode.
Ap(config)# do show run.
Omitting
you can omit a command under matching only one exact command.
Ap(config)# show running. Ap(config)# sh run.
39
the factory reset procedure

If you are a situation to do the factory rest, the procedure is as follows.
Forgot the password. Clear the configuration to setup a new site. Etc.
Take care!
The startup configuration is erased.
You get feel easy!

You have miss, then do the factory reset.

1. Turn off the AP. Unplug DCIN or PoE Ethernet cable. 2. Hold MODE button and turn on the AP
40

3. When the AP is under a boot procedure, LED E turns into GREEN immediately.
GREEN

3. LED E turns into UMBER within 2 seconds after power-on. 4. Release MODE button.
GREEN
UMBER
41

5. The procedure is end. APs configuration is recovered from the factory configuration..
Boot message shows button pressed for 1 seconds a successful reset procedure. process_config_recovery: set IP address and config to default 10.0.0.1 Loading "flash:/c1130-k9w7-mx.123-2.JA/c1130-k9w7-mx.123-2.JA"...######### ################################################################
Basic command
COMMIT TO YOUR MEMORY!!
42
Write memory
Write memory(write mem) command can save current running config to startup config.
Copy
Copy X Y
Copy A to B. AP has a flush memory. Destination is flush/tftp/ftp/scp etc..
43
Reboot the AP
Use reload command
Ap# reload System configuration has been modified. Save? [yes/no]: no Proceed with reload? [confirm] <= if you didnt save save.
Show command
Show is one of basic important command.
IF you want to know, type SHOW.
SHOW run Show int Show dot .
44
Show running
Show APs current configuration
Show running
Show startup
Show APs startup configuration
Show interface
show status of the interfaces on AP.
45
Interface naming rule on Cisco

FastEthernet X Interface Name Number(0,1,2..) 1st interface of fastethernet is fastethernet 0 kind of interface FastEthernet dot11radio BVI
Example
Show interface fastethernet 0 SHOW status 1st interface of fastethernet.
46
dot11Radio interface
Dot11radio 0 is for 2.4Ghz band
11b and 11g
Dot11radio 1 is for 5Ghz band

11a
BVI 1 interface
Logical interface
Input and output physical interface are automatically selected.
47
Shutdown
To shutdown a interface, shutdown on interface layer
Show run and check current conf.

Entering Configuration commands are stored as same as your inputs.
You are able to copy and paste commands on configuration mode.
How to erase a command (configuration)

Exec command with no at the top.
hostname MASA Erase above command as follows no hostname
48
Start the setup
IP address parameter
We are allocated static private address for AP.
10.0.0.91/24 10.0.0.92/24 10.0.0.93/24 10.0.0.94/24 10.0.0.95/24 10.0.0.96/24 Our gateway is 10.0.0.1 .94 .91 .95 .92 Lecturer .96 .93
49
Set IP address
Int bvi 1
Ip address X.X.X.X y.y.y.y X: your IP address. Y: netmask.
Default gateway
Ip default-gateway x.x.x.x x: D.GW.
Shutdown WWW service.

No ip http server
50
Config the wireless interface

SET CHANNEL/POWER/SSID/encryption
channel
Set Channel under dot11radio interface
CHANNEL ALLOCATION
7 1 9 3 Lecturer 11 5
51
Speed
Set a link-media speed.
ap(config)#int dot11Radio 0 ap(config-if)#speed ? 1.0 Allow 1 Mb/s rate 11.0 Allow 11 Mb/s rate 12.0 Allow 12 Mb/s rate 18.0 Allow 18 Mb/s rate 2.0 Allow 2 Mb/s rate 24.0 Allow 24 Mb/s rate 36.0 Allow 36 Mb/s rate 6.0 Allow 6 Mb/s rate 9.0 Allow 9 Mb/s rate basic-1.0 Require 1 Mb/s rate basic-11.0 Require 11 Mb/s rate basic-12.0 Require 12 Mb/s rate
Speed
ap(config-if)#speed basic-1.0 basic-2.0 basic-5.5 basic-11.0 =that is 11b only. ap(config-if)#speed throughput ofdm =Only access OFDM client expect 11b.
52
Power
ap(config-if)#power local cck 30
SET transmit power 30mW
SET transmit power maximum

SET transmit power maximum
Black hole avoidance

ap(config)#int dot 0 ap(config-if)# station-role root fallback shutdown =>Eth is down, Dot11 is also down. station-role root fallback repeater =>work as a repeater client.
53
Sub-layer on a interface.
Interface has sub-layer structure
Dot11radio 0 has SSID. Use EXIT to move to upper layer.
Ap(config)# int dot11radio 0. Ap(config-if)# <-ENTER Interface layer Ap(config-if-ssid)# <-ENTER ssid layer under IF. Ap(config-if-ssid)# exit Ap(config-if)#
Set your SSID

SSID is a network identifier for a wireless LAN. Show run int dot 0
Show interface configuration of dot11radio 0 interface. You see ssid tsunami
It is default configuration on Cisco Aironet.
54
SSID naming
Erase tsunami
How do you erase it?
You name your original SSID on AP.

It is able to identify each AP.
Declare your SSID.
Check your wireless net.

Associate your AP.
With SSID.
Guest-mode
no guest-mode
55
2nd DAY
2nd Day schedule

9:00-10:30
Newcomer orientation and summary 1st day sessions. Advanced configuration(1)
11:00-12:30
Advanced configuration(2)
13:30-15:00
Adv. Configuration(3) Monitoring techniques
15:30-17:00
How to design the wireless site toward to built-up your group work.
56
2nd Day Morning session 1

9:00-10:30
Welcome, Again
Newcomers are arrival.
Please introduce yourself. Your name and etc.. Your ability and experience of a wireless. Your aim on this WS.
57
Introduce myself
My name is Masafumi OE. Im senior researcher in NAOJ.
NAOJ: National Astronomical Observatory of Japan Im network professional researcher.
Operating the entire of NAOJ network. Operated the wireless LAN on IETF-Korea and IETF-Japan.
Quiz
Newcomer, Test your knowledge about wireless technologies. TIME LIMIT is 30MIN.
58
Summarize of 1st DAY

11g and 11a is up-to 54Mbps. 11b is 11Mbps. 802.11b and 802.11g use 2.4GHz. 802.11a use 5Ghz 5Ghz of straightness is higher than 2.4GHz of it.

802.11b use CCK technique as modulation. 802.11a and 11g use OFDM technique as modulation. 11b only client cant understand OFDM frame of 11a/11g.
To avoid a collision, use Protection mode.
59

Channel availability is depending on local regulation.
Channel availability of the AP is fitting to JAPAN regulations.
IEEE802.11 has three operation mode.

Infrastructure mode, ad-hoc mode and Repeater mode.
802.11 has security features to protect a wireless LAN.

WEP, WPA(802.11i) as link-layer.

Our teaching equipments are Cisco AP1130AG and WiFi notebook PC. Access to the AP.
Use CLI to configure your AP via serial. Touch the Cisco IOS that is a firmware of Ciscos AP.
It is similar to the IOS on Catalyst. Command edit is like a UNIX shell.
60

The IOS
3-mode: user/enable/configuration Move between modes with enable/config term/disable.
Learned a basic configuration

To save a configuration, write mem on enable mode. To Exec enable mode commands, DO + command.
Ex) do show int

Learned a basic configuration
You want to know, exec show command.
Show ?
To erase a configuration, NO + command.

Ex) no hostname
The AP has 3 physical interfaces.

FastEthernet 0 for LAN. Dot11radio 0 for 2.4GHz WLAN Dot11radio 1 for 5GHz WLAN
61

Shutdown a interface.
Exec shutdown on interface configuration.
Int dot 1 Shutdown
To enable the shut downed interface,

Int dot 1 No shutdown

Set up the AP
SET IP address to BVI1(logocal interface).
(Config mode) Int bvi1 Ip address X.X.X.X y.y.y.y
62

Learned SPEED/POWER/STATION-ROLL.
Speed mode has basic(require) and optional speed definition between client and AP. Power is a transmit power of the AP. Station-roll is setup a behavior when LAN interfaces state change to DOWN.
Set a channel.
(conf-if)# channel X
Enter N

Clear default SSID tsunami.
Conf)# Int dot11radio 0 Conf-int)# No ssid tsunami
Define your original SSID.

Conf-int)# ssid WIDE Conf-int)# association open
63

Check SSID advertising with
Guest-mode : the AP broadcasts SSID. No Guest-mode: The AP is No advertise SSID. Ex) conf-if-ssid)# guest-mode conf-if-ssid)# no guest-mode
Interface
For newcomers
Ethernet 100BaseTX or 10BaseT Console RS232C compatible/ 9600bps DC-IN 48V 2 status LEDs POWER The top over (DC-IN) indicator MODE button
Ethernet CONSOLE LEDs
MODE Button
64

1. Turn off the AP. Unplug DCIN or PoE Ethernet cable. 2. Hold MODE button and turn on the AP
For newcomers

3. When the AP is under a boot procedure, LED E turns into GREEN immediately.
For newcomers
GREEN
65

3. LED E turns into UMBER within 2 seconds after power-on. 4. Release MODE button.
For newcomers
GREEN
UMBER

5. The procedure is end. APs configuration is recovered from the factory configuration..
Boot message shows button pressed for 1 seconds a successful reset procedure. process_config_recovery: set IP address and config to default 10.0.0.1 Loading "flash:/c1130-k9w7-mx.123-2.JA/c1130-k9w7-mx.123-2.JA"...######### ################################################################
For newcomers
66
IP address parameter
We are allocated static private address for AP.
10.0.0.91/24 10.0.0.92/24 10.0.0.93/24 10.0.0.94/24 10.0.0.95/24 10.0.0.96/24 Our gateway is 10.0.0.1 .94 .91 .95 .92 Lecturer .96 .93
For newcomers
channel
For newcomers
Set Channel under dot11radio interface

CHANNEL ALLOCATION
7 1 9 3 Lecturer 11 5
67
Go to next stage
Ready for connect your AP?

Check list is as follows.
IP address SSID Channel Stop the web server.
No ip http server
68
Connect to LAN
Connect your AP to LAN
Use a UTP cable that is wired to your table. Connect the UTP cable to Network port on the injector.
And you try to associate your laptop to your AP with your SSID.
If you success, you get IP address from the DHCP server via YOUR AP.
Practice
1) 2)
Try to make an association Check your laptop is pingable or not.
69
2nd Day Session 2

11:00-12:30
Management from LAN.

AP has following service for management operation.
CLI
SSH TELNET Serial
WEB SNMP
Make an access control for AP.
70
Create a user account

To operate a AP form a network, you make user account and setup a login configuration. Create account
Default is Cisco/Cisco as username and password. username Cisco password 7 032752180500 Erace and making your new account. ap(config)# no username Cisco ap(config)# username WIDE password 0 WIDE! Or Set privilege parameter. (15is MAX) username WIDE privilege 15 password 0 WIDE! =>start with enable mode.
Try Telnet access

Open command prompt on XP.
telnet X.X.X.X <= APs IP ADDRESS ->login
71
Practice
1)
2)
Create your account and erase the default account. Try access to your AP via Telnet.
Make an access filter

If you want to make restriction for access host.
Permit from 10.0.0.99.
ap(config)# access-list 90 permit 10.0.0.99 0.0.0.0 log ap(config)# access-list 90 remark ***COMMENT***
72
Added to a list
ap(config)# access-list 90 permit 192.168.0.0 0.0.0.255 ap(config)# do show access-list 90 Standard IP access list 90 10 permit 192.168.0.0, wildcard bits 0.0.0.255 ap(config)# access-list 90 permit 192.168.11.0 0.0.0.255 ap(config)# access-list 90 deny any ap(config)# do show access-list 90 Standard IP access list 90 10 permit 192.168.0.0, wildcard bits 0.0.0.255 20 permit 192.168.11.0, wildcard bits 0.0.0.255 30 deny any Ap(config) no access-list 90 < erace.
Set the access list to Login I/F.

ap(config)# line vty 0 15 ap(config-config)# access-class 90 in TEST(config)#no access-list 90 permit 10.0.0.98 0.0.0.0 log TEST(config)#access-list 90 permit 10.0.0.98 0.0.0.0 log TEST(config)# Access is permited from 10.0.0.99 to 10.0.0.98
73
Practice
1)
2) 3)
Make an access list to only permit from your Laptop's IP. Set the access list to vty. Check an accessibility.
Get status of your AP

show dot11 associations
Display association client under the AP.
74
Clear association
Clear dot client is able to disassociate the client. Clear dot client X.X.X
X.X.X = the clients MAC address
WEP setting
Try to set WEP key.
(config-if)#encryption key 1 size 128bit 0 [HEXDATA] You prepare HEX code of WEP key. W I D E ! =0x5749444521 =40bit. To Enable WEP mode, type as follows. (config-if)#encryption mode wep mandatory
75
Practice
1) 2) 3)
MAKE your SSID. SET WEP CHECK AND ASSOCIATE WITH YOUR AP.
2nd Day Session 3

13:30-15:00
76
Setup a tftp server.

Open Solarwinds TFTP server from START menu on your laptop.
Open configuration from file menu.
Check TFTP servers root directory. Default is c:TFTP-Root Select transmit and receive files on Security tab.
Check a connectivity to TFTP server with ping. ping [target IP] on enable mode. if you are operating a firewall, disable or open UDP port for TFTP server.
Try to use
Backup a running configuration to TFTP server. Copy running tftp://10.0.0.x/run-conf
Copy progress.
AP#copy running-config tftp://10.0.0.99/run-config Address or name of remote host [10.0.0.99]? Destination filename [run-config]? !! 2085 bytes copied in 0.098 secs (21276 bytes/sec) ap#
77
Check and edit, then upload

Open the uploaded file with WordPad.
Edit hostname HOGE to TEST.
Copy from tftp to running-config. HOGE#copy tftp://10.0.0.99/test run HOGE#copy tftp://10.0.0.99/test running-config Destination filename [running-config]? Accessing tftp://10.0.0.99/test... Loading test from 10.0.0.99 (via BVI1): ! [OK - 2186 bytes] 2186 bytes copied in 9.341 secs (234 bytes/sec) TEST# TEST#
If you should setup a lot of AP

You generate AP configurations form a sample configuration and AP download the configuration from TFTP server.
I set up over 30 access point with config generation script and tftp download.
Generator Config Config File-A Config File-A Config File-A Config File-A File AP AP AP AP AP TFTP
78
Sample
Perl script
Tips
no ip domain-lookup ip name-server 10.0.0.1
79
Update APs firmware

The Latest firmware for AP1130AG is IOS 12.3(7)JA.
Show version
ROM: Bootstrap program is C1130 boot loader BOOTLDR: C1130 Boot Loader (C1130-BOOT-M) Version 12.3(2)JA, RELEASE SOFTWARE (fc2) You are in 12.3(2)JA
Upgrade APs firmware

Get the latest version of IOS. Put the IOS firmware file to TFTP servers root. Type archive to Upgrade
TEST#archive download-sw /overwrite tftp://10.0.0.99/[FILENAME] Loading c1100-k9w7-tar.123-7.JA.tar from 10.0.0.99 (via BVI1): ! extracting info (271 bytes)!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!
Chek your IOS version

How to ?
80
SSID syntax changed

Global SSID
dot11 ssid masa guest-mode authen open
Interface SSID
Virtual LAN config

Operate Multiple-SSID on a wireless LAN.
Guest
Research divistion
Marketing
81
Tagging
On LAN
802.11q tagged vlan.
On Wireless
Multiple SSID
Create Logical Interface

Both fastethernet 0 and dot11radio 0.
Fastethernet 0.X
X: Logical interface number. SET vlan ID.
Map SSID and VLAN ID
82
Create Logical Interface(2)

Dot11radio 0.[
RADIUS authentication
83
2nd Day Morning session 4

15:30-17:00
How to design a wireless site
84
Design points
Wireless network design is quite different from a wire network design. Understand characteristics of wireless.
Cover range of a access point. Interference with between channels.
How to design a wireless LAN

Fix policy from purposes, requirement
of a wireless network. Who use the wireless network? How long is life of the wireless network? What is security level? etc.
85
How to design a wireless LAN

A design of a wireless network is different according to a operation purpose.
Operation wireless network on a campus. Operation wireless network on an enterprise. Operation temporary network on a conference.
Your balance sense of a policy is important.
Understanding Trade-off.
Operate wireless network with high security level.
It is possible to construct it with 802.11i/WPA etc. We can enjoy a safe network. HOWEVER
86
Understanding Trade-off.
Management side needs an account work of each user. And require to support user side.
Assistant settings, distributing account, etc.
User side is required to install security future capable OS.

Linux/FreeBSD/NetBSD support 802.11i? Guys can enjoy the high security wireless network? Only a part of OS supports new security technologies, such as WPA, 802.11i(11x).
In the compensation for safety, the operation cost is large.
Security level and operation costs(1) Operate a wireless network with WEP
We can prevent to tapping of the wireless network from unauthorized users. We need to provide the parameter information, such as WEP key to authorized users.
Management cost is UP.
87
Security level and operation costs(2)

Operate 802.11i/WPA on a wireless network for high security.
Its good for a enterprise network.
Information leakages and unlawful computer accesses have to prevented on a enterprise.
It is easy to install this security feature in a enterprise network because users and type of clients are limited.
MAY NOT CARE UNIX CLIENTS on WLAN.

WEP or 11x are not good for a temporary network on conference.
When the distributing information is required to operate secure wireless network,
a human cost is also required.
We have to care to various OS.

Participants use various OS.
Can we correspond to the trouble at participant's clients?

The workload of the help desk is very large. It might be impossible!
When the distributing information is required by a wireless network, a human cost is also required.
88

We have to design a wireless network with thinking profits of both user side and manager side.
There is a right design in the right design.
802.11b/g Channel allocation

Channel configuration of 802.11b is
2.412GHz(1ch)- 2.484GHz(14ch) The interval of the channel is 5MHz.
Bandwidth per channel is about 22MHz.

22Mhz
Ch1 2 3 4 5 6 7 8 9 10 11 12 13 14
2401 2405 2411 2416 2421 2426 2431 2436 2441 2446 2451 2456 2461
2473
2496
2412MHz
Frequency MHz
89
802.11b Channel allocation(2)

Combination of channels without interference is limited.
The spacing of the channel frequency should be larger than 22Mhz.
Example for channel combination. Channel 1(2.412GHz) - 6(2.437GHz) - 11(2.462GHz) - 14(2.484GHz) *)channel 14 is only use in Japan.
Location of access point is decided to avoid overlapping of combination of channels. Example on next slide. Ch1 2 3 4 5 6 7 8 9 10 11 12 13 14
2401 2405 2411 2416 2421 2426 2431 2436 2441 2446 2451 2456 2461
2473
2496
Frequency MHz
Example-1
Decide each position of access point to avoid overlapping.
Wireless Access Point
1ch
11ch
6ch
90
Example-2: Overlap (BEFORE)

It is Overlapped!
11ch 6ch 1ch 1ch 11ch OVERLAP
Example-2: Overlap (AFTER)

Swap the position of access points.
11ch 6ch 1ch 11ch
1ch The overlaps removed.
91
Techniques for setting up APs

Use PoE, Power over Ethernet, to supply power to AP.
PoE specifications are existed.
IEEE 802.3af Cisco In-Line Power (Cisco original)
Use PoE adapter or PoE capable Ethernet switching to supply.

Such as Cisco Catalyst series, Foundry, etc..
Benefit for AP with PoE

The cable wiring for a power supply is unnecessary.
PoE decreases the restriction of APs location at the installation site. Decrease installation cost.
92
Class of access point(1)

AP for consumer usages
Retail price is about $100. Management functions are poor.

Most AP supports WEB interface only.
The performance of access point is low.

Maximum capacity of client under AP is about 30- clients.
Class of access point(1)

AP for enterprise/campus usages
Retail price is about $500.

Cisco aironet AP1130AG including 11a/b/g interfaces.
AP has high performance CPU and tuned software.

Maximum capacity of client is up to 120 clients.
AP has SNMP/WEB/CLI management i/f. Wireless LAN switch system

Able to manage entire of wireless APs on wireless switch. It is convenient in a large-scale wireless network.
Wireless switch system manufacture is Aruba/Meru/AeroSwitch etc..
93
Estimation for number of wireless clients

AP has the maximum capacity of users.
The capacity is depending on the performance of access point.
AP A is for consumer use can handle 20 users per AP. AP B is for enterprise use can handle 120+ users per AP.
Estimate maximum number of users.

11b can use three channels per room to avoid interference.
If you construct wireless network with AP A,
Maximum capacity is 60 users.
If you construct wireless network with AP B,

Maximum capacity is 360 users.
POINT: A model of AP is selected expecting the number of users.
Example
A plenary session at IETF meeting, the number of users is up to 500+.
If you choose AP B, You have a lot of troubles.
Case study
94
Threat of AP overload condition

When the number of clients under AP exceeds the limitation of the base station,
The following troubles will occur.
Connection to CLI/WEB is refused.
New associating clients are rejected by AP. Cant manage the AP. reboot Halt, need to restart in manually. Crash with damaged configuration files.
(Its are based on my experience.)
need to re-setup access point.
No one knows what happens.
Case study: Chain of failure

At IETF54 Yokohama conference room.
Operate three access point in the room.
1ch AP1 has 100 users. 11ch AP2:150 users
400 clients existed in the room 6ch AP3:150 users Conference room
95
Case study from IETF54

AP3 was halted due to overload.
1ch AP1: 100 clients 11ch AP2: 150 clients
1. Halt with overload.
6ch

Clients under AP3 lost signal from AP3, then search and associate with other APs.
1ch AP1: 100 clients 11ch AP2: 150 clients
2.Clients under AP3 do handover to other APs. 6ch AP3: under rebooting
96

AP1 and AP2 should handle the clients under AP3.
1ch AP1: Up to 150 clinets 11ch AP2: Up to 200 clients 3. AP1 and AP2 had to handle all of client inside the room. APs were becoming overload state. 6ch AP3: under rebooting

Also, AP1 and AP2 halted due to overload.
1ch AP1/2: under rebooting 11ch
4. Both of APs halted due to overload. 6ch AP3: under rebooting
97

AP3 was up but halted again due to associate all of client inside the room.
1ch AP1/2: under rebooting 11ch
5. Cllents under AP1/2 associated with AP3 6ch
AP3 is UP! and HALT.

Wireless service had been terminited until the end of session.
1ch 11ch
ALL OF AP are UP and REBOOT. 6. Wireless service terminated until session end. 6ch
98

How to protect from this stuation?
Set association limit of clients per AP.
Some products support for association limit.
Max-association [association limit] command for cisco Aironet/IOS.
We used Orinoco AP1000 and Cisco Aironet at IETF54(2001).

Both of them didnt support limitation function.
Case study: Worm infected nodes.

Blaster worm generate many network traffic.
It use ICMP Echo-request and reply to search active nodes. Many nodes infected Blaster worm connected to wireless network.
Some user didn't understand infection. Some user infected on wireless network due to forget applying security patches.
Infected nodes consume wireless resource.

Throughput of Wireless is going down. The load of AP is going up.
99
Case study: unofficial DHCP server

Client with enabled DHCP server function was existed.
Ex) At home, a user enable enable Internet Connection Sharing(ICS) service on the notebook to share a connectivity to the Internet. ->ICS enable, DHCP Server service start, too. The notebook connect to the wireless network, then, it start to provide un-official DHCP server service.
Other clients is confused, because two or more DHCP server exists on same network. Disassociate illegal clients from network immediately.
Case study: IETF59

IETF59(Seoul) held 2004.03 at Lotte Hotel Seoul. Provided wireless service to three floors. Total number of AP was 32.
I used Cisco Aironet 1220 with PoE
100
2nd Floor
6 EPS 1 Note: another AP is right below covering lobby lounge MTG1 (60) Gardenia A2 Note: another AP are right up and down the escalator 11 Fiber runs from Jade to NOC Cat5 runs from Jade to SW/AP Multicast Desks Storage Jade
11 MTG3 (200) Emerald 1
Router Big Distribution Switch Distribution Switch Access Switch AP Server PDP 802.11b channels 1 6 11 6 MTG7 (500) Crystal 1,2 1
11 6 MTG4 (300) Crystal 3
11
3rd Floor
This no longer is Topaz
IESG Topaz 6 MTG2 (100) Sapphire 1 MTG5 (300) Sapphire 2,3 MTG6 (300) Sapphire 4 6 11
11
Dist. SWs Access SWs APs PDP 802.11b channels 1 6 11
101
Operate a monitoring system

I developed and operated the wireless monitoring system. This system can monitor all of AP status.
Record association number of clients, associating clients MAC address, load average, etc.
This system has a function to disassociate a client from entire of wireless network.
Illegal clients such as worm infected, un-official dhcp server, RA server and etc are forced out.
Result: Number of 802.11b users

524
2/29Sun 21:00
2/30 9:00
3/1 9:00
3/2 9:00 3/3 9:00
3/4 9:00
102
Result: Number of 802.11a users

Session ->Lunch->coffee break -> session
It is synchronous to living.
2/29Sun 21:00
2/30 9:00
3/1 9:00
3/2 9:00 3/3 9:00
3/4 9:00
Results
Total unique client was 1297. Peek of 11b clients was 524.
Recorded at 2004/3/1 15:51:21
Peek of 11a clients was 46
103
Results
10 nodes were shut out from the wireless network.
Number of wire-wireless bridging enabled node is 5. Worm infected node : 3 RA enabled node : 1 DHCP enabled node : 1
It was success in wireless operation.
3rd Day Session 1

9:00-10:30
104
Now, It is your side!
Task for group work

Design the wireless site based on this floor.
Your mission
You built-up a wireless service on this site, 3rd floor.
I prepared the items to you.

MAP We have UTP cable between this room,ROOM2 and ROOM5.
105
Group work schedule

9:00-10:30
Design a plan Present your plan to me and discuss the plan
11:00-12:30
Construct a wireless site
You know how to mount a AP.
13:30-15:00
Site survey, tuning and monitoring the site.
15:30-17:00
Advance configuration and withdraw the wireless site.
Hints (1)
You remember the case studies on yesterday session. You have to fix ..
POSITION of access points
Design a wire plan. Channel allocation
802.11 parameter
SSID NAME LINK SPEED/TRANSMIT POWER Security features
Then you write out on the MAP and make the configuration information.
106
Hints (2)
You make the configuration file for APs form the plan. Mount the APs to the planed position.
Cabling, mounting
Check you wireless site.

Survey with wireless tools. -> If need, reconfigure the APs.
Request to you
It is group work, cooperate with each other. You should operate multiple SSID. You support WEP and no WEP service with different SSID. Serve 11g/b as link-media. It is Manageable from a LAN. Share account and password among yours.
For smoothly operation.
107
3rd Day Session 1

9:00-10:30
START your group work

Design and Discuss
108
Present your plan!!
3rd Day Session 2

11:00-12:30
109
Mounting
Mount an AP on a high position.
This AP are mounted at the upper part of door
This AP are mounted on the pole stand
Configuration procedure
1.
Set initial configuration to APs.

BE able to access AP from a LAN. you can up/download a configuration to your TFTP server. Define of access list is better.
2.
Mount APs
Wire UTP cabling and monitor boot-up at Serial port.
3.
Upload a configuration to AP.

You generate all of config for the APes on your PC.
110
Construction
3rd Day Session 3

13:30-15:00
111
Knowledge is power.
Site survey Mounting Setup procedure
Site survey tool

Site survey is surveying a wireless condition of the site.
Channel availability, S/N rate, Number of AP, Media protocols
Netstumpler and AirMagnet
112
AirMagnet
AirMagnet
It is a market product A retail price is over 8000$!!
Software for Windows XP with Special NICs..
The most powerful tool for a wireless site survey.
Live monitor funtion.
113
Decode wireless frames
What is Netstumpler
It is free and useful. You can download from the site. http://www.netstumbler.com/
114
Netstumpler (1)
If it is no working, Select NDIS driver.
You can save your observation.

And play back.
Netstumpler (2)
Start and stop.
115
Netstumpler (3)
SSID list
Netstumpler (4)
Display APes per channel.
116
Netstumpler (5)
Display AP.
Netstumpler (6)
Display S/N signal graph per node.
117
Check your site

Is it work fine?
Check overlapping channels.

This site already has wireless equipments.
You make efforts to reassign the channel to avoid an overlapping condition. USE Netstumpler to find overlaps.
Tune power.
Check S/N rate with Netstumpler. If you find too much covered by an AP. ->Change a transmit power on the IOS int dot 0 power local cck [-1,2,5,8,11,14] power local ofdm [-1,2,5,8,11,14] ->Change a position of AP.
118
Start tuning
You survey your site on a live field. and you discuss and change configurations.
3rd Day Session 4

15:30-17:00
119
Operation request
Search and find mission

You find PC that has X:X:X:X:X:X on your wireless site. show dot assoc or access MIB.
120
Change both WEP and SSID

Start SSID testing and WEP JCSAT.
You operate Wireless site instead of BU. J C S A T =0x4a43534154 (5octets)
Terminate 11g service

Only supply 11b as link-media.
Stop 11g. Hint: you limit a link speed that is defined on 802.11b spec.
121
Examination / Quiz
What is tests?
I set questions for all participants.
The content of question is you configure your AP in accordance with requirement.
TIME LIMIT IS 20MIN.
122
Common requirements
Set your original name as hostname. Set your assigned IP address to AP. Take care about account and enable password. Stop disused service. To submit your answer, Upload your configuration to tftp://10.0.0.99/[your name]
Requirements
Group A
Create two SSID, yama and kawa. yama has 128bit WEP. kawa has no WEP and is broadcasting SSID.
WEP key is 0x00010203040506070809101112.
Both of SSIDs is bridged to native vlan (bridge group1).
Group B
Create apple as broadcast SSID. Only Provide 802.11b. Not 11g. Install an access control.
You allow an access from 10.0.0.193~10.0.0.222.
Group C
Create AI3 as SSID with no Broadcast. Only Provide 802.11g. Not 11b. Install an access control.
You allow an access from 10.0.0.1~10.0.0.126.
123
ANS
Common
To broadcast a SSID, add guest-mode on the SSID section. No ip http server Set IP address to BVI1. Change secret and erase default username and create new one.
A
Dot 0.1 and dot 0.x are joined to same bridge group 1 and use native vlan ( vlan=1 ).
B
To limit 11b, set 11bs speed.
speed 1.0 2.0 5.5 11.0
C
To limit 11g clinet, set channel as follows.
speed basic-6.0 1.0 2.0 11.0 12.0 18.0 24.0 36 48.0 5.5 54 9 basic-6 = OFDM channel support is required = 11g
End
Do you want to get AP? Your AP become to your friend
124

Wireless Standards and Implementation

Uploaded by

Document Information

Original Description:

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Wireless Standards and Implementation

Uploaded by

Copyright:

Available Formats

SOI Asia IT workshop 2005

Wireless Network Operation

NAOJ Facility location MAP

Nobeyama Norikura Okayama CHILI MItaka

Outline of the workshop

Current state of wireless usage

Background of this trend

Background of this trend(2)

Wireless functions packaged to one chip IC.

Background of this trend(3)

Wireless built-in notebook PC was popularized.

Background of this trend(4)

Hotspot service providers in Japan

->we can make full use of wireless devices at public area.

Background of this trend(5)

-> Wireless is able to easy layout of network devices.

->Wire instillation is required to take a lot of time and money to equip.

Technology overview of wirelsss

History of 802.11 standardization

DS-SS, Direct Sequence - Spectrum Spread.

2.4GHz is ISM band.

Regulation for ISM-band MAY be different in each country.

Generate a spectrum from digital data

Spread the spectrum with pseudo noise

De-spread the spread spectrum with pseudo noise

802.11b was on stage.

802.11a use 5GHz-band

Ex) 2G Mobile phone

In US, permitted 5.155.25GHz, 5.255.35GHz and 5.7255.825GHz-band.

Country localized products fit each countrys law.

In US, permitted 5.155.25GHz, 5.25 5.35GHz and 5.7255.825GHz-band.

11g uses same frequency band as 11b.

Link speed is up to 54Mbps.

Compatibility with 11b(1)

11g client 11b client AP 11b cant recognize OFDM frame.

DATA Collision DATA

Start sending datas.

Compatibility with 11b(2)

11g client 11b client AP

Stop sending data

Channel ID (x: permitted)

permitted on Mar 2005.

Not match channels with other countries

Three operation mode

Authorizes interoperability of 802.11 device.

Defines specification for interoperability.

Security technology for wireless(1)

IV: Initialization Vector random number

WEP is not so strong.

Variable bit,IV is only 24bit. IV is transmitted with clear-text.

Security technology for wireless(2)

Separate wireless network from secured network.

Security technology for wireless(3)

Operating 802.11i takes cost though it is very safe.

encryption function of WPA

Clients MAC Address

802.11 specifications use ISM band.

802.11b use CCK as modulation. 802.11a and 11g use OFDM.

Gift for you

To access the interfaces, slide (push) top cover.

Ethernet CONSOLE LEDs

The top cover indicator

Supplier of PoE is PoE capable switching hub or PoE injector.