ZyXEL G-570S 802.11g Wireless Access Point User’s Guide Version 1.
ZyXEL G-570S User’s Guide Copyright Copyright © 2005 by ZyXEL Communications Corporation. The contents of this publication may not be reproduced in any part or as a whole, transcribed, stored in a retrieval system, translated into any language, or transmitted in any form or by any means, electronic, mechanical, magnetic, optical, chemical, photocopying, manual, or otherwise, without the prior written permission of ZyXEL Communications Corporation. Published by ZyXEL Communications Corporation.
ZyXEL G-570S User’s Guide Interference Statements and Certifications Federal Communications Commission (FCC) Interference Statement This device complies with Part 15 of FCC rules. Operation is subject to the following two conditions: • This device may not cause harmful interference. • This device must accept any interference received, including interference that may cause undesired operations.
ZyXEL G-570S User’s Guide Cet appareil numérique de la classe B est conforme à la norme NMB-003 du Canada. Certifications 1 Go to www.zyxel.com. 2 Select your product from the drop-down list box on the ZyXEL home page to go to that product's page. 3 Select the certification you wish to view from this page.
ZyXEL G-570S User’s Guide Safety Warnings For your safety, be sure to read and follow all warning notices and instructions. • Do NOT open the device or unit. Opening or removing covers can expose you to dangerous high voltage points or other risks. ONLY qualified service personnel can service the device. Please contact your vendor for further information. • Connect the power cord to the right supply voltage (110V AC in North America or 230V AC in Europe).
ZyXEL G-570S User’s Guide ZyXEL Limited Warranty ZyXEL warrants to the original end user (purchaser) that this product is free from any defects in materials or workmanship for a period of up to two years from the date of purchase.
ZyXEL G-570S User’s Guide Customer Support Please have the following information ready when you contact customer support. • • • • Product model and serial number. Warranty Information. Date that you received your device. Brief description of the problem and the steps you took to solve it. METHOD SUPPORT E-MAIL TELEPHONEA WEB SITE FAX FTP SITE REGULAR MAIL LOCATION CORPORATE HEADQUARTERS (WORLDWIDE) CZECH REPUBLIC DENMARK FINLAND SALES E-MAIL support@zyxel.com.tw +886-3-578-3942 sales@zyxel.com.
ZyXEL G-570S User’s Guide TELEPHONEA WEB SITE SALES E-MAIL FAX FTP SITE info@pl.zyxel.com +48-22-5286603 www.pl.zyxel.com ZyXEL Communications ul.Emilli Plater 53 00-113 Warszawa Poland www.zyxel.ru ZyXEL Russia Ostrovityanova 37a Str. Moscow, 117279 Russia www.zyxel.es ZyXEL Communications Alejandro Villegas 33 1º, 28043 Madrid Spain www.zyxel.se ZyXEL Communications A/S Sjöporten 4, 41764 Göteborg Sweden www.ua.zyxel.com ZyXEL Ukraine 13, Pimonenko Str.
ZyXEL G-570S User’s Guide Table of Contents Copyright .................................................................................................................. 2 Interference Statements and Certifications ........................................................... 3 Safety Warnings ....................................................................................................... 5 ZyXEL Limited Warranty..........................................................................................
ZyXEL G-570S User’s Guide Chapter 3 Introducing the Web Configurator........................................................................ 35 3.1 Web Configurator Overview ...............................................................................35 3.2 Accessing the G-570S Web Configurator ..........................................................35 3.3 Configuring the G-570S Using the Wizard .........................................................37 3.3.3.1 Disable ................................
ZyXEL G-570S User’s Guide 6.8 EAP Authentication Overview ............................................................................77 6.9 Dynamic WEP Key Exchange ............................................................................78 6.10 Introduction to WPA and WPA2 ........................................................................78 6.10.1 Encryption ..............................................................................................79 6.10.2 User Authentication ................
ZyXEL G-570S User’s Guide IP Subnetting ........................................................................................................ 151 Index......................................................................................................................
ZyXEL G-570S User’s Guide List of Figures Figure 1 WDS Functionality Example ................................................................................. 22 Figure 2 Internet Access Application ................................................................................... 24 Figure 3 Corporate Network Application ............................................................................. 25 Figure 4 Wireless Client Application ....................................................................
ZyXEL G-570S User’s Guide Figure 39 Bridge Loop: Two Bridges Connected to Hub ..................................................... 67 Figure 40 Bridge Loop: Bridge Connected to Wired LAN ................................................... 67 Figure 41 Wireless Settings: Bridge .................................................................................... 68 Figure 42 Wireless Settings: AP+Repeater ........................................................................
ZyXEL G-570S User’s Guide Figure 82 Windows 95/98/Me: TCP/IP Properties: DNS Configuration .............................. 124 Figure 83 Windows XP: Start Menu .................................................................................... 125 Figure 84 Windows XP: Control Panel ................................................................................ 125 Figure 85 Windows XP: Control Panel: Network Connections: Properties .........................
ZyXEL G-570S User’s Guide 16 List of Figures
ZyXEL G-570S User’s Guide List of Tables Table 1 Front Panel LED Description ................................................................................. 27 Table 2 Factory Defaults .................................................................................................... 33 Table 3 Global Icon Key ..................................................................................................... 44 Table 4 Screens Summary ...................................................................
ZyXEL G-570S User’s Guide Table 39 Classes of IP Addresses ..................................................................................... 151 Table 40 Allowed IP Address Range By Class ................................................................... 152 Table 41 “Natural” Masks .................................................................................................. 152 Table 42 Alternative Subnet Mask Notation .......................................................................
ZyXEL G-570S User’s Guide Preface Congratulations on your purchase from the ZyXEL G-570S 802.11g Wireless Access Point. Note: Register your product online to receive e-mail notices of firmware upgrades and information at www.zyxel.com for global products, or at www.us.zyxel.com for North American products. An access point (AP) acts as a bridge between the wireless and wired networks, extending your existing wired network without any additional wiring.
ZyXEL G-570S User’s Guide Graphics Icons Key 20 G-570S Computer Notebook computer Server Modem Wireless Signal Telephone Switch Router Preface
ZyXEL G-570S User’s Guide CHAPTER 1 Getting to Know Your G-570S This chapter introduces the main features and applications of the G-570S. 1.1 Introducing the G-570S Wireless Access Point The ZyXEL G-570S is a 4-in-1 Access Point with Super G and Turbo G wireless technology. Access Point (AP), repeater, bridge and wireless client functions allow you to use the G-570S in various network deployments. Super G and Turbo G technology boost the wireless data throughput.
ZyXEL G-570S User’s Guide Figure 1 WDS Functionality Example OTIST (One-Touch Intelligent Security Technology) OTIST allows your G-570S to assign its SSID and security settings (WEP or WPA-PSK) to the ZyXEL wireless adapters that support OTIST and are within transmission range. The ZyXEL wireless adapters must also have OTIST enabled.
ZyXEL G-570S User’s Guide WPA2 WPA 2 (IEEE 802.11i) is a wireless security standard that defines stronger encryption, authentication and key management than WPA. SSL Passthrough The G-570S allows SSL connections to go through the G-570S. SSL (Secure Sockets Layer) uses a public key to encrypt data that's transmitted over an SSL connection. Both Netscape Navigator and Internet Explorer support SSL, and many Web sites use the protocol to obtain confidential user information, such as credit card numbers.
ZyXEL G-570S User’s Guide Output Power Management Output Power Management is the ability to set the level of output power. There may be interference or difficulty with channel assignment when there is a high density of APs within a coverage area. In this case you can lower the output power of each access point, thus enabling you to place access points closer together. Limit the Number of Client Connections You may set a maximum number of wireless stations that may connect to the G-570S.
ZyXEL G-570S User’s Guide The following figure depicts a typical application of the G-570S in an enterprise environment. The three computers with wireless adapters are allowed to access the network resource through the G-570S after account validation by the network authentication server. Figure 3 Corporate Network Application 1.3.3 Wireless Client Application The G-570S can function as a wireless client to connect to a network via an Access Point (AP).
ZyXEL G-570S User’s Guide 1.3.4 Bridge / Repeater The G-570S can act as a wireless network bridge and establish wireless links with other APs. The G-570Ss in the following example are using bridge mode with a star configuration. A, B, C and D are connected to independent wired networks and have bridge connections at the same time (B, C and D can communicate with A). Figure 5 Bridge Application A G-570S in bridge mode without an Ethernet connection can function as a repeater.
ZyXEL G-570S User’s Guide 1.3.5 Access Point and Repeater Set the G-570S to AP+Repeater mode to have it simultaneously provide access for wireless clients and use the repeater function. This allows you to extend the coverage of your wireless network without installing Ethernet cable to connect the G-570S. In the following figure, B is in AP+Repeater mode. B functions as an AP for wireless clients C and D. B also repeats traffic between the wireless clients and AP A which is connected to the wired network.
ZyXEL G-570S User’s Guide Table 1 Front Panel LED Description LED COLOR STATUS DESCRIPTION ETHN Green Blinking The G-570S is sending/receiving data. On The G-570S has a successful 10Mbps Ethernet connection. Blinking The G-570S is sending/receiving data. On The G-570S has a successful 100Mbps Ethernet connection. Off The G-570S does not have an Ethernet connection. Blinking The OTIST automatic wireless configuration is in progress. On The OTIST feature is activated on the G-570S.
ZyXEL G-570S User’s Guide CHAPTER 2 Management Computer Setup This chapter describes how to prepare your computer to access the G-570S web configurator. 2.1 Introduction You can connect a computer to the G-570S for management purposes either using an Ethernet connection (recommended for a first time management session) or wirelessly. 2.2 Wired Connection You must prepare your computer/computer network to connect to the G-570S if you are using a wired connection.
ZyXEL G-570S User’s Guide 2.2.1.1 Windows 2000/NT/XP The following example figures use the default Windows XP GUI theme. 1 Click start (Start in Windows 2000/NT) > Settings > Control Panel. 2 In the Control Panel, double-click Network Connections (Network and Dial-up Connections in Windows 2000/NT). Figure 10 Control Panel 3 Right-click Local Area Connection and then Properties. Figure 11 Network Connection 4 Select Internet Protocol (TCP/IP) and then click Properties.
ZyXEL G-570S User’s Guide Figure 12 Local Area Connection Properties 5 Select Use the following IP Address and fill in an IP address (between 192.168.1.3 and 192.168.1.254). • Type 255.255.255.0 as the Subnet mask. • Click Advanced1. Figure 13 Internet Protocol Properties 6 Remove any previously installed gateways in the IP Settings tab and click OK to go back to the Internet Protocol TCP/IP Properties screen. 1. See the appendices for information on configuring DNS server addresses.
ZyXEL G-570S User’s Guide Figure 14 Advanced TCP/IP Settings No gateways configured. 7 Click OK to close the Internet Protocol (TCP/IP) Properties window. 8 Click Close (OK in Windows 2000/NT) to close the Local Area Connection Properties window. 9 Close the Network Connections window (Network and Dial-up Connections in Windows 2000/NT). 2.3 Wireless Connection Ensure that the wireless stations have a compatible wireless card/adapter with the same wireless settings as the G-570S.
ZyXEL G-570S User’s Guide Note: The wireless stations and G-570S must use the same SSID, channel and wireless security settings for wireless communication. If you do not enable any wireless security on your G-570S, your network traffic is visible to any wireless networking device that is within range. 2.4 Restarting the G-570S Press and immediately release the RESET button to restart the G-570S. Note: Holding the RESET button in for five seconds or longer resets the device to the factory-default settings.
ZyXEL G-570S User’s Guide 34 Chapter 2 Management Computer Setup
ZyXEL G-570S User’s Guide CHAPTER 3 Introducing the Web Configurator This chapter describes how to configure the G-570S using the Wizard. 3.1 Web Configurator Overview The web configurator is an HTML-based management interface that allows easy G-570S setup and management via Internet browser. Use Internet Explorer 6.0 and later or Netscape Navigator 7.0 and later versions. The recommended screen resolution is 1024 by 768 pixels.
ZyXEL G-570S User’s Guide Figure 16 Web Configurator Address or 5 Type "1234" (default) as the password and click Login. Figure 17 Login Screen Default password is 1234. 6 Select your language and click Apply. Figure 18 Language Screen 7 The following screen displays. Select Go Wizard Setup and click Apply to use the wizard setup screens for initial configuration (see Section 3.3 on page 37). Select Go Advanced Setup and click Apply to go directly to the advanced screens (see Section 3.4 on page 43).
ZyXEL G-570S User’s Guide Figure 19 Select Wizard or Advanced Setup Screen 3.3 Configuring the G-570S Using the Wizard The wizard consists of a series of screens to help you configure your G-570S for wireless stations to access your wired LAN. Use the following buttons to navigate the Wizard: Back Click Back to return to the previous screen. Next Click Next to continue to the next screen. No configuration changes will be saved to the G-570S until you click Finish. 3.3.
ZyXEL G-570S User’s Guide Figure 20 Wizard: Basic Settings Do not select this unless you have a router that can assign the G-570S an IP address. 3.3.2 Wizard: Wireless Settings Use this wizard screen to set up the wireless LAN. See the chapter on the wireless screens for background information. 1 The SSID is a unique name to identify the device in a wireless network. Enter up to 32 printable characters. Spaces are allowed.
ZyXEL G-570S User’s Guide Figure 21 Wizard: Wireless Settings 3.3.3 Wizard: Security Settings Use this screen to configure security for your wireless LAN. The screen varies depending on what you select in the Encryption Method field. Select Disable to have no wireless security configured, select WEP, or select WPA-PSK if your wireless clients support WPA-PSK. Select WPA2-PSK if your wireless clients support WPA2-PSK Go to SETTINGS > WIRELESS > Security if you want WPA2, WPA or 802.1x.
ZyXEL G-570S User’s Guide Figure 22 Setup Wizard 3: Disable 3.3.3.2 WEP 1 WEP (Wired Equivalent Privacy) encrypts data frames before transmitting over the wireless network. Select 64-bit, 128-bit or 152-bit from the WEP Encryption dropdown list box and then follow the on-screen instructions to set up the WEP keys. 2 Choose an encryption level from the drop-down list. The higher the WEP encryption, the higher the security but the slower the throughput. 3 You can generate or manually enter a WEP key.
ZyXEL G-570S User’s Guide Figure 23 Wizard 3: WEP Use Passphrase to automatically generate keys or manually enter a key in the Key 1 field. 3.3.3.3 WPA(2)-PSK Only select WPA-PSK or WPA2-PSK if your wireless clients support it. Type a pre-shared key from 8 to 63 ASCII characters (including spaces and symbols). This field is case-sensitive.
ZyXEL G-570S User’s Guide Figure 24 Wizard 3: WPA(2)-PSK 3.3.4 Wizard: Confirm Your Settings This read-only screen shows the status of the current settings. Use the summary table to check whether what you have configured is correct. Click Finish to complete the wizard configuration and save your settings.
ZyXEL G-570S User’s Guide Figure 25 Wizard: Confirm Your Settings For more detailed background information, see the rest of this User's Guide. 3.4 Navigating the Advanced Screens The STATUS screen is the first advanced screen that displays. This section explains how to navigate the advanced configuration screens. See the chapter on the Status screen for details about the individual screen.
ZyXEL G-570S User’s Guide Figure 26 Status Screen The following table describes the global web configurator icons (in the upper left corner of most screens). Table 3 Global Icon Key ICON DESCRIPTION Click the Wizard icon to open the setup wizard. Click the About icon to view copyright information. Click the Logout icon at any time to exit the web configurator. Make sure you save any changes before you log out. 3.4.
ZyXEL G-570S User’s Guide The following table describes the sub-menus. Table 4 Screens Summary LINK TAB FUNCTION Status This screen shows the Prestige’s general device, system and interface status information. Use this screen to access the wizard, and summary statistics tables. System Use this screen to configure the device name and IP address assignment settings. Wireless Wireless Settings Use this screen to configure wireless LAN.
ZyXEL G-570S User’s Guide 46 Chapter 3 Introducing the Web Configurator
ZyXEL G-570S User’s Guide CHAPTER 4 Status Screens This chapter describes the Status screens. 4.1 System Status Click Status to open the following screen. The Status screen display a snapshot of your device’s settings. You can also view network statistics and a list of wireless stations currently associated with your device. Note that these labels are READ-ONLY and are meant to be used for diagnostic purposes. Figure 27 Status The following table describes the labels in this screen.
ZyXEL G-570S User’s Guide Table 5 Status LABEL DESCRIPTION MAC Address This field displays the MAC address of the device. The MAC (Media Access Control) or Ethernet address on a LAN (Local Area Network) is unique to your computer. A network interface card such as an Ethernet adapter has a hardwired address that is assigned at the factory. This address follows an industry standard that ensures no other adapter has a similar address.
ZyXEL G-570S User’s Guide Figure 28 Status: View Statistics The following table describes the labels in this screen. Table 6 Status: View Statistics LABEL DESCRIPTION Ethernet Packets This row displays the numbers of packets received and transmitted by the Ethernet port. Bytes This row displays the numbers of bytes received and transmitted by the Ethernet port. Wireless Unicast Packets This row displays the numbers of unicast packets received and transmitted by the wireless adapter.
ZyXEL G-570S User’s Guide 4.1.2 Association List Click STATUS and then the View Association List button to display the Association List screen. When the device is not in wireless client mode, this screen displays which wireless stations are currently associated to the device in the Association List screen. Figure 29 Status: View Association List The following table describes the labels in this screen. Table 7 Status: View Association List LABEL DESCRIPTION No.
ZyXEL G-570S User’s Guide The following table describes the labels in this screen. Table 8 Status: View Association List: Wireless Client Mode LABEL DESCRIPTION SSID This field displays the SSID (Service Set IDentifier) of each wireless device that the device detected. BSSID This field displays the BSSID (Basic Service Set IDentifier) of each wireless network that the device detected. Channel This field displays the channel number used by each wireless device.
ZyXEL G-570S User’s Guide 52 Chapter 4 Status Screens
ZyXEL G-570S User’s Guide CHAPTER 5 System Screen This chapter provides information on the System screen. 5.1 TCP/IP Parameters 5.1.1 IP Address Assignment Every computer on the Internet must have a unique IP address. If your networks are isolated from the Internet, for instance, only between your two branch offices, you can assign any IP addresses to the hosts without problems.
ZyXEL G-570S User’s Guide If the ISP did not explicitly give you an IP network number, then most likely you have a single user account and the ISP will assign you a dynamic IP address when the connection is established. The Internet Assigned Number Authority (IANA) reserved this block of addresses specifically for private use; please do not use any other number unless you are told otherwise. Let's say you select 192.168.1.0 as the network number; which covers 254 individual addresses, from 192.168.1.
ZyXEL G-570S User’s Guide Table 10 System Settings LABEL DESCRIPTION Use fixed IP address Select this option to have your device use a static IP address. When you select this option, fill in the fields below. IP Address Enter the IP address of your device in dotted decimal notation. Subnet Mask Enter the subnet mask. Gateway IP Address Type the IP address of the gateway. The gateway is a router or switch on the same network segment as the device.
ZyXEL G-570S User’s Guide 56 Chapter 5 System Screen
ZyXEL G-570S User’s Guide CHAPTER 6 Wireless Screens This chapter discusses how to configure wireless settings and wireless security on your G570S. 6.1 Wireless LAN Overview This section introduces the wireless LAN (WLAN) and some basic scenarios. 6.1.1 IBSS An Independent Basic Service Set (IBSS), also called an Ad-hoc network, is the simplest WLAN configuration.
ZyXEL G-570S User’s Guide Figure 33 Basic Service set 6.1.3 ESS An Extended Service Set (ESS) consists of a series of overlapping BSSs, each containing an access point, with each access point connected together by a wired network. This wired connection between APs is called a Distribution System (DS). An ESSID (ESS IDentification) uniquely identifies each ESS. All access points and their associated wireless stations within the same ESS must have the same ESSID in order to communicate.
ZyXEL G-570S User’s Guide Figure 34 Extended Service Set 6.2 Wireless LAN Basics This section describes the wireless LAN network terms. 6.2.1 Channel A channel is the radio frequency(ies) used by IEEE 802.11b wireless devices. Channels available depend on your geographical area. You may have a choice of channels (for your region) so you should use a different channel than an adjacent AP (access point) to reduce interference.
ZyXEL G-570S User’s Guide 6.2.3 RTS/CTS A hidden node occurs when two stations are within range of the same access point, but are not within range of each other. The following figure illustrates a hidden node. Both stations (STA) are within range of the access point (AP) or wireless gateway, but out-of-range of each other, so they cannot “hear” each other, that is they do not know if the channel is currently being used. Therefore, they are considered hidden from each other.
ZyXEL G-570S User’s Guide 6.2.4 Fragmentation Threshold A Fragmentation Threshold is the maximum data fragment size (between 256 and 2432 bytes) that can be sent in the wireless network before the G-570S will fragment the packet into smaller data frames. A large Fragmentation Threshold is recommended for networks not prone to interference while you should set a smaller threshold for busy networks or networks that are prone to interference.
ZyXEL G-570S User’s Guide Figure 36 Wireless Settings: Access Point The following table describes the labels in this screen. Table 11 Wireless Settings: Access Point LABEL DESCRIPTION Operation Mode Select the operating mode from the drop-down list. The options are Access Point, Wireless Client, Bridge and AP+Repeater. SSID Wireless stations associating to the access point (AP) must have the same SSID. Enter a descriptive name (up to 32 printable characters) for the wireless LAN. Spaces are allowed.
ZyXEL G-570S User’s Guide Table 11 Wireless Settings: Access Point (continued) LABEL DESCRIPTION Wireless Mode Select 802.11b only to allow only IEEE 802.11b compliant WLAN devices to associate with the device. Select 802.11g only to allow only IEEE 802.11g compliant WLAN devices to associate with the device. Select Auto (11g/11b) to allow either IEEE 802.11b or IEEE 802.11g compliant WLAN devices to associate with the device. The transmission rate of your device might be reduced.
ZyXEL G-570S User’s Guide Table 11 Wireless Settings: Access Point (continued) LABEL DESCRIPTION Super-G Mode Super-G mode provides higher speed transmissions than regular IEEE 802.11g. The other device must also support super-G mode in order for the device to use it for the wireless connection. This is available when you select a Wireless Mode that includes IEEE 802.11g. Turbo-G Mode Turbo-G mode provides higher speed transmissions than regular IEEE 802.11g or super-G mode.
ZyXEL G-570S User’s Guide The following table describes the labels in this screen. Table 12 Wireless Settings: Wireless Client LABEL DESCRIPTION Operation Mode Select the operating mode from the drop-down list. The options are Access Point, Wireless Client, Bridge and AP+Repeater. SSID Wireless stations associating to the access point (AP) must have the same SSID. Enter a descriptive name (up to 32 printable characters) for the wireless LAN. Spaces are allowed.
ZyXEL G-570S User’s Guide Table 12 Wireless Settings: Wireless Client (continued) LABEL DESCRIPTION Turbo-G Mode Turbo-G mode provides higher speed transmissions than regular IEEE 802.11g or super-G mode. The other device must also support turbo-G mode in order for the device to use it for the wireless connection. This is available when you select a Wireless Mode that includes IEEE 802.11g. Turbo-G uses two channels bonded together in order to achieve its higher transmission rates.
ZyXEL G-570S User’s Guide Be careful to avoid bridge loops when you enable bridging in the G-570S. Bridge loops cause broadcast traffic to circle the network endlessly, resulting in possible throughput degradation and disruption of communications. The following examples show two network topologies that can lead to this problem: If two or more G-570Ss (in bridge mode) are connected to the same hub as shown next.
ZyXEL G-570S User’s Guide Select Bridge as the Operation Mode to have the device act as a wireless bridge only. Figure 41 Wireless Settings: Bridge The following table describes the labels in this screen.
ZyXEL G-570S User’s Guide Table 13 Wireless Settings: Bridge LABEL DESCRIPTION Operation Mode Select the operating mode from the drop-down list. The options are Access Point, Wireless Client, Bridge and AP+Repeater. Note: If you are configuring the device from a computer connected to the wireless LAN and you change the device to use bridge mode, you will lose your wireless connection when you click Apply to save your settings. You must then connect to the device through the wired network.
ZyXEL G-570S User’s Guide Table 13 Wireless Settings: Bridge (continued) LABEL DESCRIPTION Output Power Management Set the output power of the device in this field. If there is a high density of APs within an area, decrease the output power of the device to reduce interference with other APs. The options are Full, 50%, 25%, 12% and Min. Data Rate Management Use this field to select a maximum data rate for the wireless connection(s).
ZyXEL G-570S User’s Guide Figure 42 Wireless Settings: AP+Repeater Chapter 6 Wireless Screens 71
ZyXEL G-570S User’s Guide The following table describes the labels in this screen. Table 14 Wireless Settings: AP + Repeater LABEL DESCRIPTION Operation Mode Select the operating mode from the drop-down list. The options are Access Point, Wireless Client, Bridge and AP+Repeater. SSID Wireless stations associating to the access point (AP) must have the same SSID. Enter a descriptive name (up to 32 printable characters) for the wireless LAN. Spaces are allowed.
ZyXEL G-570S User’s Guide Table 14 Wireless Settings: AP + Repeater (continued) LABEL DESCRIPTION Output Power Management Set the output power of the device in this field. If there is a high density of APs within an area, decrease the device’s output power to reduce interference with other APs. The options are Full, 50%, 25%, 12% and Min. Data Rate Management Use this field to select a maximum data rate for the wireless connection(s).
ZyXEL G-570S User’s Guide The figure below shows the possible wireless security levels on your G-570S. EAP (Extensible Authentication Protocol) is used for authentication and utilizes dynamic WEP key exchange. It requires interaction with a RADIUS (Remote Authentication Dial-In User Service) server either on the WAN or your LAN to provide authentication service for wireless stations.
ZyXEL G-570S User’s Guide 6.4.4 Hide G-570S Identity If you hide the ESSID, then the G-570S cannot be seen when a wireless client scans for local APs. The trade-off for the extra security of “hiding” the G-570S may be inconvenience for some valid WLAN clients. 6.5 WEP Overview WEP (Wired Equivalent Privacy) as specified in the IEEE 802.11 standard provides methods for both data encryption and wireless station authentication. 6.5.
ZyXEL G-570S User’s Guide Open system authentication involves an unencrypted two-message procedure. A wireless station sends an open system authentication request to the AP, which will then automatically accept and connect the wireless station to the network. In effect, open system is not authentication at all as any station can gain access to the network. Shared key authentication involves a four-message procedure.
ZyXEL G-570S User’s Guide • Access-Request Sent by an access point, requesting authentication. • Access-Reject Sent by a RADIUS server rejecting access. • Access-Accept Sent by a RADIUS server allowing access. • Access-Challenge Sent by a RADIUS server requesting more information in order to allow access. The access point sends a proper response from the user and then sends another AccessRequest message.
ZyXEL G-570S User’s Guide Figure 44 EAP Authentication The details below provide a general description of how IEEE 802.1x EAP authentication works. For an example list of EAP-MD5 authentication steps, see the IEEE 802.1x appendix. 1 The wireless station sends a “start” message to the G-570S. 2 The G-570S sends a “request identity” message to the wireless station for identity information. 3 The wireless station replies with identity information, including user name and password.
ZyXEL G-570S User’s Guide Key differences between WPA(2) and WEP are improved data encryption and user authentication. If both an AP and the wireless clients support WPA2 and you have an external RADIUS server, use WPA2 for stronger data encryption. If you don't have an external RADIUS server, you should use WPA2-PSK (WPA2-Pre-Shared Key) that only requires a single (identical) password entered into each access point, wireless gateway and wireless client.
ZyXEL G-570S User’s Guide Figure 45 WPA(2)-PSK Authentication 6.12 WPA(2) with RADIUS Application Example You need the IP address of the RADIUS server, its port number (default is 1812), and the RADIUS shared secret. A WPA(2) application example with an external RADIUS server looks as follows. “A” is the RADIUS server. “DS” is the distribution system. 1 The AP passes the wireless client’s authentication request to the RADIUS server.
ZyXEL G-570S User’s Guide 6.13 Security Parameters Summary Refer to this table to see what other security parameters you should configure for each authentication method/ key management protocol type. You enter manual keys by first selecting 64-bit WEP, 128-bit WEP or 152-bit WEP from the WEP Encryption field and then typing the keys (in ASCII or hexadecimal format) in the key text boxes. MAC address filters are not dependent on how you configure these security features.
ZyXEL G-570S User’s Guide 6.15.1 Wireless Security: Disable If you do not enable any wireless security on your device, your network is accessible to any wireless networking device that is within range. Figure 47 Wireless Security: Disable The following table describes the labels in this screen. Table 17 Wireless Security: Disable LABEL DESCRIPTION Encryption Method Select Disable to have no wireless LAN security configured. Apply Click Apply to save your changes back to the device.
ZyXEL G-570S User’s Guide Figure 48 Wireless Security: WEP The following table describes the labels in this screen. Table 18 Wireless Security: WEP LABEL DESCRIPTION Encryption Method Select WEP if you want to configure WEP encryption parameters. Authentication Type Select Auto, Open or Shared from the drop-down list box. WEP Encryption Select 64 bit WEP, 128 bit WEP or 152 bit WEP to enable data encryption.
ZyXEL G-570S User’s Guide 6.15.3 Wireless Security: WPA(2)-PSK Select WPA-PSK, WPA2-PSK or WPA-PSK & WPA2-PSK in the Encryption Method drop down list-box to display the screen displays as next. Figure 49 Wireless Security: WPA(2)-PSK The following table describes the labels in this screen. Table 19 Wireless Security: WPA-PSK LABEL DESCRIPTION Encryption Method Select WPA-PSK, WPA2-PSK or WPA-PSK & WPA2-PSK if you want to configure a pre-shared key.
ZyXEL G-570S User’s Guide Figure 50 Wireless Security: WPA(2) The following table describes the labels in this screen. Table 20 Wireless Security: WPA(2) LABEL DESCRIPTION Encryption Method Select WPA, WPA2 or WPA & WPA2 to configure user authentication and improved data encryption. Note: WPA, WPA2 and IEEE 802.1x wireless security are not available when you use Wireless Client, Bridge or AP+Repeater mode. You can only use WEP keys to encrypt traffic between APs.
ZyXEL G-570S User’s Guide Table 20 Wireless Security: WPA(2) (continued) LABEL DESCRIPTION Global-Key Update This is how often the AP sends a new group key out to all clients. The re-keying process is the WPA equivalent of automatically changing the WEP key for an AP and all stations in a WLAN on a periodic basis. Specify an interval either in seconds or thousands of packets that the device sends. Apply Click Apply to save your changes back to the device.
ZyXEL G-570S User’s Guide The following table describes the labels in this screen. Table 21 Wireless Security: 802.1x LABEL DESCRIPTION Encryption Method Select 802.1X to configure authentication of wireless stations and encryption key management. Note: WPA, WPA2 and IEEE 802.1x wireless security are not available when you use Bridge or AP+Repeater mode. You can only use WEP keys to encrypt traffic between APs.
ZyXEL G-570S User’s Guide The following applies if you set the device to client mode and want to connect to an AP that uses a MAC filter. After the device turns on in client mode, it clones the MAC address of the first packets that it receives from devices connected to the Ethernet port. It uses this MAC address on the packets that it sends to an AP. All of the packets that the device sends to an AP will appear to be from the first device that connected to the Ethernet port.
ZyXEL G-570S User’s Guide The following table describes the labels in this screen. Table 22 MAC Filter LABEL DESCRIPTION Active Select the check box to enable MAC address filtering and define the filter action for the list of MAC addresses in the MAC address filter table. Select Allow the following MAC address to associate to permit access to the device, MAC addresses not listed will be denied access to the device.
ZyXEL G-570S User’s Guide Hold in the OTIST button for one or two seconds. 6.17.1.1.2 Web Configurator Click WIRELESS > SETTINGS > OTIST to configure and enable OTIST. The screen appears as shown. Note: At the time of writing the device does not support OTIST in the wireless client mode. Figure 53 OTIST The following table describes the labels in this screen. Table 23 OTIST LABEL DESCRIPTION One-Touch Intelligent Security Technology Setup Key Enter the setup key of up to eight printable characters.
ZyXEL G-570S User’s Guide Figure 54 Example Wireless Client OTIST Screen 6.17.2 Starting OTIST Note: You must click Start in the AP OTIST web configurator screen and in the wireless client(s) Adapter screen all within three minutes (at the time of writing). You can start OTIST in the wireless clients and AP in any order but they must all be within range and have OTIST enabled. 1 In the AP, a web configurator screen pops up showing you the security settings to transfer.
ZyXEL G-570S User’s Guide 2 This screen appears while OTIST settings are being transferred. It closes when the transfer is complete. Figure 56 OTIST in Progress (AP) Figure 57 OTIST in Progress (Client) • In the wireless client, you see this screen if it can't find an OTIST-enabled AP (with the sameSetupkey).ClickOKtogobacktotheZyXELutilitymainscreen.
ZyXEL G-570S User’s Guide Figure 59 Start OTIST? 2 If an OTIST-enabled wireless client loses its wireless connection for more than ten seconds, it will search for an OTIST-enabled AP for up to one minute. (If you manually have the wireless client search for an OTIST-enabled AP, there is no timeout; click Cancel in the OTIST progress screen to stop the search.
ZyXEL G-570S User’s Guide 94 Chapter 6 Wireless Screens
ZyXEL G-570S User’s Guide CHAPTER 7 Management Screens This chapter describes the Maintenance screens. 7.1 Maintenance Overview Use these maintenance screens to change the password, view logs, back up or restore the G570S configuration and change the web configurator language. 7.2 Password To change your device's password (recommended), click SETTINGS > MANAGEMENT. The screen appears as shown. This screen allows you to change the device's password.
ZyXEL G-570S User’s Guide Table 24 Management: Password (continued) LABEL DESCRIPTION Apply Click Apply to save your changes back to the device. Cancel Click Cancel to reload the previous configuration for this screen. 7.3 Logs Click SETTINGS > MANAGEMENT > Logs to open the Logs screen. You can view logs and alert messages in this screen. Once the log table is full, old logs are deleted as new logs are created. Click a column heading to sort the entries.
ZyXEL G-570S User’s Guide Table 25 Management: Logs (continued) LABEL DESCRIPTION Source This field lists the source IP address and the port number of the incoming packet that caused the log. Destination This field lists the destination IP address and the port number of the outgoing packet that caused the log. Note This field displays additional information about the log entry. 7.
ZyXEL G-570S User’s Guide 7.4.1 Backup Configuration Backup configuration allows you to back up (save) the device's current configuration to a file on your computer. Once your device is configured and functioning properly, it is highly recommended that you back up your configuration file before making configuration changes. The backup configuration file will be useful in case you need to return to your previous settings. Click Backup to save the device's current configuration to your computer. 7.4.
ZyXEL G-570S User’s Guide Figure 64 Network Temporarily Disconnected If you uploaded the default configuration file you may need to change the IP address of your computer to be in the same subnet as that of the default device IP address (192.168.1.2). If the upload was not successful, the following screen will appear. Click Return to go back to the Configuration File screen. Figure 65 Configuration Upload Error 7.4.
ZyXEL G-570S User’s Guide Click SETTINGS > MANAGEMENT > F/W Upload to display the screen as shown. Follow the instructions in this screen to upload firmware to your device. Figure 67 Management: F/W Upload The following table describes the labels in this screen. Table 27 Management: F/W Upload LABEL DESCRIPTION File Path Type in the location of the file you want to upload in this field or click Browse ... to find it. Browse... Click Browse... to find the .rmt file you want to upload.
ZyXEL G-570S User’s Guide Figure 69 Network Temporarily Disconnected After two minutes, log in again and check your new firmware version in the System Status screen. If the upload was not successful, the following status message displays at the bottom of the screen.
ZyXEL G-570S User’s Guide 102 Chapter 7 Management Screens
ZyXEL G-570S User’s Guide CHAPTER 8 Troubleshooting This chapter covers potential problems and possible remedies. After each problem description, some instructions are provided to help you to diagnose and to solve the problem. 8.1 Problems Starting Up the G-570S Table 28 Troubleshooting the Start-Up of Your G-570S PROBLEM CORRECTIVE ACTION None of the LEDs turn on when I plug in the power adaptor.
ZyXEL G-570S User’s Guide 8.3 Problems with the WLAN Interface Table 30 Troubleshooting the WLAN Interface PROBLEM CORRECTIVE ACTION Cannot access the G-570S from the WLAN. Make sure the wireless adapter on the wireless station is working properly. Check that both the G-570S and your wireless station are using the same ESSID, channel and security settings. I cannot ping any computer on the WLAN. Make sure the wireless adapter on the wireless station(s) is working properly.
ZyXEL G-570S User’s Guide Table 31 Troubleshooting the Ethernet Interface (continued) PROBLEM CORRECTIVE ACTION Cannot access the web configurator. Your computer’s and the G-570S’s IP addresses must be on the same subnet for LAN access. If you changed the G-570S’s IP address, then enter the new one as the URL. If you don’t know the G-570S’s IP address, type the device name of your G570S as the URL. ZyXELXXXX is the default where “XXXX” is the last four digits of the MAC address.
ZyXEL G-570S User’s Guide 8.4.1.1.1 Disable pop-up Blockers 1 In Internet Explorer, select Tools, Pop-up Blocker and then select Turn Off Pop-up Blocker. Figure 71 Pop-up Blocker You can also check if pop-up blocking is disabled in the Pop-up Blocker section in the Privacy tab. 1 In Internet Explorer, select Tools, Internet Options, Privacy. 2 Clear the Block pop-ups check box in the Pop-up Blocker section of the screen. This disables any web pop-up blockers you may have enabled.
ZyXEL G-570S User’s Guide 8.4.1.1.2 Enable pop-up Blockers with Exceptions Alternatively, if you only want to allow pop-up windows from your device, see the following steps. 1 In Internet Explorer, select Tools, Internet Options and then the Privacy tab. 2 Select Settings…to open the Pop-up Blocker Settings screen. Figure 73 Internet Options 3 Type the IP address of your device (the web page that you do not want to have blocked) with the prefix “http://”. For example, http://192.168.1.1.
ZyXEL G-570S User’s Guide Figure 74 Pop-up Blocker Settings 5 Click Close to return to the Privacy screen. 6 Click Apply to save this setting. 8.4.1.2 JavaScripts If pages of the web configurator do not display properly in Internet Explorer, check that JavaScripts are allowed. 1 In Internet Explorer, click Tools, Internet Options and then the Security tab.
ZyXEL G-570S User’s Guide Figure 75 Internet Options 2 Click the Custom Level... button. 3 Scroll down to Scripting. 4 Under Active scripting make sure that Enable is selected (the default). 5 Under Scripting of Java applets make sure that Enable is selected (the default). 6 Click OK to close the window.
ZyXEL G-570S User’s Guide Figure 76 Security Settings - Java Scripting 8.4.1.3 Java Permissions 1 From Internet Explorer, click Tools, Internet Options and then the Security tab. 2 Click the Custom Level... button. 3 Scroll down to Microsoft VM. 4 Under Java permissions make sure that a safety level is selected. 5 Click OK to close the window.
ZyXEL G-570S User’s Guide Figure 77 Security Settings - Java 8.4.1.3.1 JAVA (Sun) 1 From Internet Explorer, click Tools, Internet Options and then the Advanced tab. 2 make sure that Use Java 2 for
ZyXEL G-570S User’s Guide Figure 78 Java (Sun) 8.5 Testing the Connection to the G-570S 1 Click Start, (All) Programs, Accessories and then Command Prompt. 2 In the Command Prompt window, type “ping” followed by a space and the IP address of the G-570S (192.168.1.2 is the default). 3 Press ENTER. The following screen displays. Figure 79 Pinging the G-650 C:\>ping 192.168.1.2 Pinging 192.168.1.2 with 32 bytes of data: Reply Reply Reply Reply from from from from 192.168.1.2: 192.168.1.2: 192.168.1.2: 192.
ZyXEL G-570S User’s Guide Chapter 8 Troubleshooting 113
ZyXEL G-570S User’s Guide 114 Chapter 8 Troubleshooting
ZyXEL G-570S User’s Guide APPENDIX A Product Specifications See also the introduction chapter for a general overview of the key features. Specification Tables Table 32 Device Specifications Default IP Address 192.168.1.2 Default Subnet Mask 255.255.255.0 (24 bits) Default Password 1234 Dimensions 112 mm (Wide) × 106 mm (Deep) × 28.
ZyXEL G-570S User’s Guide Table 33 Feature Specifications (continued) Operating Modes Access Point Client Bridge Access Point and Repeater Wireless Links Up to four bridge links. Two or more repeater links are supported. It is suggested that you only use up to three repeater links. Management Embedded Web Configurator Command-line interface Telnet support (Password-protected telnet access to internal configuration manager). FTP//Web for firmware downloading and configuration backup and restore.
ZyXEL G-570S User’s Guide Table 34 Wireless RF Specifications Security Wired Equivalent Privacy (WEP) data encryption Dynamic WEP key exchange WiFi Protected Access (WPA) IEEE 802.1x RF frequency range 2.412~2.462GHz: North America 2.412MHz~2.484 GHz: Japan 2.412-2.472 GHz: Europe ETSI Data modulation type OFDM/BPSK/QPSK/CCK/PBCC/DQPSK/DBPSK Output Powera 11b : 18+/-2dBm @ 11/5.5/2/1Mbps. 11g : 16+/-2dBm @ 54Mbps.
ZyXEL G-570S User’s Guide Table 35 Approvals (continued) VOLTAGE DIPS/ INTERRUPTION EN61000-4-11 EM FIELD FROM DIGITAL TELEPHONES ENV50204 LAN COMPATIBILITY SmartBit FCC Part15C, Sec15.
ZyXEL G-570S User’s Guide Table 36 Power Adaptor Specifications (continued) Power Consumption 12 Watts Safety Standards CE mark, EN60950 (2001) Appendix A Product Specifications 119
ZyXEL G-570S User’s Guide 120 Appendix A Product Specifications
ZyXEL G-570S User’s Guide APPENDIX B Setting up Your Computer’s IP Address All computers must have a 10M or 100M Ethernet adapter card and TCP/IP installed. Windows 95/98/Me/NT/2000/XP, Macintosh OS 7 and later operating systems and all versions of UNIX/LINUX include the software components you need to install and use TCP/ IP on your computer. Windows 3.1 requires the purchase of a third-party TCP/IP application package.
ZyXEL G-570S User’s Guide Figure 80 WIndows 95/98/Me: Network: Configuration Installing Components The Network window Configuration tab displays a list of installed components. You need a network adapter, the TCP/IP protocol and Client for Microsoft Networks. If you need the adapter: 1 In the Network window, click Add. 2 Select Adapter and then click Add. 3 Select the manufacturer and model of your network adapter and then click OK. If you need TCP/IP: 1 In the Network window, click Add.
ZyXEL G-570S User’s Guide 3 Select Microsoft from the list of manufacturers. 4 Select Client for Microsoft Networks from the list of network clients and then click OK. 5 Restart your computer so the changes you made take effect. Configuring 1 In the Network window Configuration tab, select your network adapter's TCP/IP entry and click Properties 2 Click the IP Address tab. • • If your IP address is dynamic, select Obtain an IP address automatically.
ZyXEL G-570S User’s Guide Figure 82 Windows 95/98/Me: TCP/IP Properties: DNS Configuration 4 Click the Gateway tab. • • If you do not know your gateway’s IP address, remove previously installed gateways. If you have a gateway IP address, type it in the New gateway field and click Add. 5 Click OK to save and close the TCP/IP Properties window. 6 Click OK to close the Network window. Insert the Windows CD if prompted. 7 Turn on your G-570S and restart your computer when prompted.
ZyXEL G-570S User’s Guide Figure 83 Windows XP: Start Menu 2 In the Control Panel, double-click Network Connections (Network and Dial-up Connections in Windows 2000/NT). Figure 84 Windows XP: Control Panel 3 Right-click Local Area Connection and then click Properties.
ZyXEL G-570S User’s Guide Figure 85 Windows XP: Control Panel: Network Connections: Properties 4 Select Internet Protocol (TCP/IP) (under the General tab in Win XP) and then click Properties. Figure 86 Windows XP: Local Area Connection Properties 5 The Internet Protocol TCP/IP Properties window opens (the General tab in Windows XP). • 126 If you have a dynamic IP address click Obtain an IP address automatically.
ZyXEL G-570S User’s Guide • • If you have a static IP address click Use the following IP Address and fill in the IP address, Subnet mask, and Default gateway fields. Click Advanced. Figure 87 Windows XP: Internet Protocol (TCP/IP) Properties 6 If you do not know your gateway's IP address, remove any previously installed gateways in the IP Settings tab and click OK.
ZyXEL G-570S User’s Guide Figure 88 Windows XP: Advanced TCP/IP Properties 7 In the Internet Protocol TCP/IP Properties window (the General tab in Windows XP): • • Click Obtain DNS server address automatically if you do not know your DNS server IP address(es). If you know your DNS server IP address(es), click Use the following DNS server addresses, and type them in the Preferred DNS server and Alternate DNS server fields.
ZyXEL G-570S User’s Guide Figure 89 Windows XP: Internet Protocol (TCP/IP) Properties 8 Click OK to close the Internet Protocol (TCP/IP) Properties window. 9 Click Close (OK in Windows 2000/NT) to close the Local Area Connection Properties window. 10 Close the Network Connections window (Network and Dial-up Connections in Windows 2000/NT). 11Turn on your G-570S and restart your computer (if prompted). Verifying Settings 1 Click Start, All Programs, Accessories and then Command Prompt.
ZyXEL G-570S User’s Guide Figure 90 Macintosh OS 8/9: Apple Menu 2 Select Ethernet built-in from the Connect via list. Figure 91 Macintosh OS 8/9: TCP/IP 3 For dynamically assigned settings, select Using DHCP Server from the Configure: list.
ZyXEL G-570S User’s Guide 4 For statically assigned settings, do the following: • • • • From the Configure box, select Manually. Type your IP address in the IP Address box. Type your subnet mask in the Subnet mask box. Type the IP address of your G-570S in the Router address box. 5 Close the TCP/IP Control Panel. 6 Click Save if prompted, to save changes to your configuration. 7 Turn on your G-570S and restart your computer (if prompted).
ZyXEL G-570S User’s Guide Figure 93 Macintosh OS X: Network 4 For statically assigned settings, do the following: • • • • From the Configure box, select Manually. Type your IP address in the IP Address box. Type your subnet mask in the Subnet mask box. Type the IP address of your G-570S in the Router address box. 5 Click Apply Now and close the window. 6 Turn on your G-570S and restart your computer (if prompted). Verifying Settings Check your TCP/IP properties in the Network window.
ZyXEL G-570S User’s Guide Note: Make sure you are logged in as the root administrator. Using the K Desktop Environment (KDE) Follow the steps below to configure your computer IP address using the KDE. 1 Click the Red Hat button (located on the bottom left corner), select System Setting and click Network. Figure 94 Red Hat 9.0: KDE: Network Configuration: Devices 2 Double-click on the profile of the network card you wish to configure. The Ethernet Device General screen displays as shown.
ZyXEL G-570S User’s Guide • • If you have a dynamic IP address, click Automatically obtain IP address settings with and select dhcp from the drop down list. If you have a static IP address, click Statically set IP Addresses and fill in the Address, Subnet mask, and Default Gateway Address fields. 3 Click OK to save the changes and close the Ethernet Device General screen. 4 If you know your DNS server IP address(es), click the DNS tab in the Network Configuration screen.
ZyXEL G-570S User’s Guide 1 Assuming that you have only one network card on the computer, locate the ifconfigeth0 configuration file (where eth0 is the name of the Ethernet card). Open the configuration file with any plain text editor. • If you have a dynamic IP address, enter dhcp in the BOOTPROTO= field. The following figure shows an example. Figure 98 Red Hat 9.
ZyXEL G-570S User’s Guide Figure 101 Red Hat 9.0: Restart Ethernet Card [root@localhost init.d]# network restart Shutting down interface eth0: Shutting down loopback interface: Setting network parameters: Bringing up loopback interface: Bringing up interface eth0: [OK] [OK] [OK] [OK] [OK] Verifying Settings Enter ifconfig in a terminal screen to check your TCP/IP properties. Figure 102 Red Hat 9.
ZyXEL G-570S User’s Guide APPENDIX C Wireless LANs Wireless LAN Topologies This section discusses ad-hoc and infrastructure wireless LAN topologies. Ad-hoc Wireless LAN Configuration The simplest WLAN configuration is an independent (Ad-hoc) WLAN that connects a set of computers with wireless stations (A, B, C).
ZyXEL G-570S User’s Guide Figure 104 Basic Service Set ESS An Extended Service Set (ESS) consists of a series of overlapping BSSs, each containing an access point, with each access point connected together by a wired network. This wired connection between APs is called a Distribution System (DS). This type of wireless LAN topology is called an Infrastructure WLAN. The Access Points not only provide communication with the wired network but also mediate wireless network traffic in the immediate neighborhood.
ZyXEL G-570S User’s Guide Figure 105 Infrastructure WLAN Channel A channel is the radio frequency(ies) used by IEEE 802.11a/b/g wireless devices. Channels available depend on your geographical area. You may have a choice of channels (for your region) so you should use a different channel than an adjacent AP (access point) to reduce interference. Interference occurs when radio signals from different access points overlap causing interference and degrading performance.
ZyXEL G-570S User’s Guide Figure 106 RTS/CTS When station A sends data to the AP, it might not know that the station B is already using the channel. If these two stations send data at the same time, collisions may occur when both sets of data arrive at the AP at the same time, resulting in a loss of messages for both stations. RTS/CTS is designed to prevent collisions due to hidden nodes.
ZyXEL G-570S User’s Guide A large Fragmentation Threshold is recommended for networks not prone to interference while you should set a smaller threshold for busy networks or networks that are prone to interference. If the Fragmentation Threshold value is smaller than the RTS/CTS value (see previously) you set then the RTS (Request To Send)/CTS (Clear to Send) handshake will never occur as data frames will be fragmented before they reach RTS/CTS size. IEEE 802.11g Wireless LAN IEEE 802.
ZyXEL G-570S User’s Guide • Authentication Determines the identity of the users. • Authorization Determines the network services available to authenticated users once they are connected to the network. • Accounting Keeps track of the client’s network activity. RADIUS is a simple package exchange in which your AP acts as a message relay between the wireless station and the network RADIUS server.
ZyXEL G-570S User’s Guide EAP Authentication EAP (Extensible Authentication Protocol) is an authentication protocol that runs on top of the IEEE802.1x transport mechanism in order to support multiple types of user authentication. By using EAP to interact with an EAP-compatible RADIUS server, the access point helps a wireless station and a RADIUS server perform authentication. The type of authentication you use depends on the RADIUS server or the AP.
ZyXEL G-570S User’s Guide However, MD5 authentication has some weaknesses. Since the authentication server needs to get the plaintext passwords, the passwords must be stored. Thus someone other than the authentication server may access the password file. In addition, it is possible to impersonate an authentication server as MD5 authentication method does not perform mutual authentication. Finally, MD5 authentication method does not support data encryption with dynamic session key.
ZyXEL G-570S User’s Guide WEP Authentication Steps Three different methods can be used to authenticate wireless stations to the network: Open System, Shared Key, and Auto. The following figure illustrates the steps involved. Figure 108 WEP Authentication Steps Open system authentication involves an unencrypted two-message procedure. A wireless station sends an open system authentication request to the AP, which will then automatically accept and connect the wireless station to the network.
ZyXEL G-570S User’s Guide Dynamic WEP Key Exchange The AP maps a unique key that is generated with the RADIUS server. This key expires when the wireless connection times out, disconnects or reauthentication times out. A new WEP key is generated each time reauthentication is performed. If this feature is enabled, it is not necessary to configure a default encryption key in the Wireless screen. You may still configure and store keys here, but they will not be used while Dynamic WEP is enabled.
ZyXEL G-570S User’s Guide TKIP uses 128-bit keys that are dynamically generated and distributed by the authentication server. It includes a per-packet key mixing function, a Message Integrity Check (MIC) named Michael, an extended initialization vector (IV) with sequencing rules, and a re-keying mechanism. TKIP regularly changes and rotates the encryption keys so that the same encryption key is never used twice.
ZyXEL G-570S User’s Guide If the roaming feature is not enabled on the access points, information is not communicated between the access points when a wireless station moves between coverage areas. The wireless station may not be able to communicate with other wireless stations on the network and vice versa. Figure 109 Roaming Example The steps below describe the roaming process.
ZyXEL G-570S User’s Guide 5 The access points must be connected to the Ethernet and be able to get IP addresses from a DHCP server if using dynamic IP address assignment.
ZyXEL G-570S User’s Guide 150 Appendix C Wireless LANs
ZyXEL G-570S User’s Guide APPENDIX D IP Subnetting IP Addressing Routers “route” based on the network number. The router that delivers the data packet to the correct destination host uses the host ID. IP Classes An IP address is made up of four octets (eight bits), written in dotted decimal notation, for example, 192.168.1.1. IP addresses are categorized into different classes. The class of an address depends on the value of its first octet. • Class “A” addresses have a 0 in the left most bit.
ZyXEL G-570S User’s Guide Since the first octet of a class “A” IP address must contain a “0”, the first octet of a class “A” address can have a value of 0 to 127. Similarly the first octet of a class “B” must begin with “10”, therefore the first octet of a class “B” address has a valid range of 128 to 191. The first octet of a class “C” address begins with “110”, and therefore has a range of 192 to 223.
ZyXEL G-570S User’s Guide Since the mask is always a continuous number of ones beginning from the left, followed by a continuous number of zeros for the remainder of the 32 bit mask, you can simply specify the number of ones instead of writing the value of each octet. This is usually specified by writing a “/” followed by the number of bits in the mask after the address. For example, 192.1.1.0 /25 is equivalent to saying 192.1.1.0 with mask 255.255.255.128.
ZyXEL G-570S User’s Guide Note: In the following charts, shaded/bolded last octet bit values indicate host ID bits “borrowed” to form network ID bits. The number of “borrowed” host ID bits determines the number of subnets you can have. The remaining number of host ID bits (after “borrowing”) determines the number of hosts you can have on each subnet. Table 44 Subnet 1 NETWORK NUMBER LAST OCTET BIT VALUE IP Address 192.168.1. 0 IP Address (Binary) 11000000.10101000.00000001.
ZyXEL G-570S User’s Guide Example: Four Subnets The above example illustrated using a 25-bit subnet mask to divide a class “C” address space into two subnets. Similarly to divide a class “C” address into four subnets, you need to “borrow” two host ID bits to give four possible combinations of 00, 01, 10 and 11. The subnet mask is 26 bits (11111111.11111111.11111111.11000000) or 255.255.255.192.
ZyXEL G-570S User’s Guide Table 49 Subnet 4 NETWORK NUMBER LAST OCTET BIT VALUE IP Address 192.168.1. 192 IP Address (Binary) 11000000.10101000.00000001. 11000000 Subnet Mask (Binary) 11111111.11111111.11111111. 11000000 Subnet Address: 192.168.1.192 Lowest Host ID: 192.168.1.193 Broadcast Address: 192.168.1.255 Highest Host ID: 192.168.1.254 Example Eight Subnets Similarly use a 27-bit mask to create 8 subnets (001, 010, 011, 100, 101, 110).
ZyXEL G-570S User’s Guide Subnetting With Class A and Class B Networks. For class “A” and class “B” addresses the subnet mask also determines which bits are part of the network number and which are part of the host ID. A class “B” address has two host ID octets available for subnetting and a class “A” address has three host ID octets (see Table 39 on page 151) available for subnetting. The following table is a summary for class “B” subnet planning. Table 52 Class B Subnet Planning NO.
ZyXEL G-570S User’s Guide 158 Appendix D IP Subnetting
ZyXEL G-570S User’s Guide Index Numerics 110V AC 5 230V AC 5 A Abnormal Working Conditions 6 AC 5 Accessories 5 Acts of God 6 Address Assignment 53 Ad-hoc 57 Advanced Encryption Standard 146 Airflow 5 Alternative Subnet Mask Notation 153 AP (access point) 139 Association List 50 Authentication 75, 145 Authority 3 Auto MDI/MDI-X 115 Auto-negotiating 115 B Basement 5 Basic Service Set 57 BSS 57, 137 C CA 144 Cables, Connecting 5 Certificate Authority 144 Certifications 4 Changes or Modifications 3 Channel
ZyXEL G-570S User’s Guide E EAP 74, 77, 79 EAP Authentication 143 Electric Shock 5 Electrical Pipes 5 Encryption 79, 146 Equal Value 6 ESS 58, 138 ESS IDentification 58 Ethernet Ports 115 Europe 5 European Plug Standards 118 Exposure 5 Extended Service Set 58, 138 Extensible Authentication Protocol 79 Host IDs 151 I IBSS 57, 137 IEEE 802.
ZyXEL G-570S User’s Guide North American Plug Standards 118 Norway, Contact Information 7 O Open System 76 Opening 5 Operating Condition 6 Operation Humidity 115 Operation Temperature 115 Out-dated Warranty 6 Outlet 3 P Pairwise Master Key (PMK) 147 Parts 6 Password 115 Patent 2 Permission 2 Photocopying 2 Pipes 5 Pool 5 Postage Prepaid.
ZyXEL G-570S User’s Guide Service 5, 6 Service Personnel 5 Service Set Identity 59 Shared Key 76 Shipping 6 Shock, Electric 5 signal strength 50, 51 Spain, Contact Information 8 SSID 51, 59 Statistics 48 Storage Humidity 115 Storage Temperature 115 Subnet Mask 53 Subnet Mask, Default 115 Subnet Masks 152 Subnetting 152 Supply Voltage 5 Support E-mail 7 Supporting Disk 19 Sweden, Contact Information 8 Swimming Pool 5 Syntax Conventions 19 System Status 47 V Value 6 Vendor 5 Ventilation Slots 5 Viewing Cert