The SM’s Network page is used to configure system networking parameters and VLAN parameters. Parameter availability is based on the configuration of the SM Network Page for NAT Mode.
|
Attribute |
Meaning |
|
|
General |
||
|
Network Mode |
NAT: The SM acts as a router and packets are forwarded or filtered based on their IP header (source or destination). Bridge: The SM acts as a switch and packets are forwarded or filtered based on their MAC destination address. Router: The SM acts as a router and packets are forwarded or filtered based on their IP header (source or destination) using specific static routes and IP aliases configured by the operator. |
|
|
Wireless IP Assignment |
Static: Wireless IP addressing is configured manually in fields Wireless IP Address, Wireless IP Subnet Mask, Wireless Gateway IP Address, Preferred DNS IP Address and Alternate DNS IP Address. DHCP: Device management IP addressing (IP address, subnet mask, gateway and DNS server) is assigned via a network DHCP server. |
|
|
Wireless IP Address |
Wireless Internet protocol (IP) address. This address is used by the family of Internet protocols to uniquely identify this unit on a network. |
|
|
Wireless Subnet Mask |
Defines the address range of the connected IP network. For example, if Wireless IP Address is configured to 192.168.2.1 and Wireless IP Subnet Mask is configured to 255.255.255.0, the device wireless interface will belong to subnet 192.168.2.X. |
|
|
Wireless Gateway |
Configure the IP address of a computer on the current network that acts as a gateway. A gateway acts as an entrance and exit to packets from and to other networks. |
|
|
Preferred DNS Server |
Configure The IP address of the preferred server used for DNS resolution. |
|
|
Alternate DNS Server |
Configure The IP address of the alternate server used for DNS resolution. |
|
|
Wireless IPv6 Assignment |
Wireless IPv6 Assignment specifies how the IPv6 address for the wireless interface is obtained. Static: Device management IP addressing is configured manually in fields Wireless IPv6 Address and Wireless IPv6 Gateway. DHCPv6: Device management IP addressing (IP address and gateway) is assigned via a network DHCP server, and parameters Wireless IPv6 Address and Wireless IPv6 Gateway are unused. If the DHCPv6 server is not available previous static IPv6 address will be used as a fallback IPv6 address. If no previous static IPv6 address is available, no IPv6 address will be assigned. DHCPv6 will occur over the wireless interface by default. |
|
|
Wireless IPv6 Address |
Internet protocol version 6 (IPv6) address. This address is used by the family of Internet protocols to uniquely identify this unit (wireless interface) on a network. IPv6 addresses are represented by eight groups of four hexadecimal digits separated by colons. |
|
|
Wireless IPv6 Gateway |
Configure the IPv6 address of the device on the current network that acts as a gateway. A gateway acts as an entrance and exit to packets from and to other networks. |
|
|
Ethernet Port Security |
Disabled: When disabled, any number of devices (MAC Addresses) can connect via the SM’s Ethernet (LAN) port. Enabled: When enabled, the number of devices (MAC Addresses) that can connect via the SM’s Ethernet (LAN) port can be restricted with the fields below. |
|
|
Secure MAC Limit |
Specify the maximum number of unique devices (MAC Addresses) that can connect via the SM’s Ethernet (LAN) port. Range is 1 – 254 devices. |
|
|
MAC Aging Time |
Specify the aging timer in seconds. The aging timer will determine the duration for which the SM will maintain the MAC Address in its bridge table. The timer is restarted any time traffic from a specific MAC address is received on the LAN port. Once the timer expires, the MAC Address is removed from the SM’s bridge table. |
|
|
Ethernet Interface |
||
|
IP Address |
Internet protocol (IP) address. This address is used by the family of Internet protocols to uniquely identify this unit on a network. |
|
|
Subnet Mask |
Defines the address range of the connected IP network. For example, if Device IP Address (LAN) is configured to 192.168.2.1 and IP Subnet Mask (LAN) is configured to 255.255.255.0, the device will belong to subnet 192.168.2.X. |
|
|
IPv6 Address |
Internet protocol version 6 (IPv6) address. This address is used by the family of Internet protocols to uniquely identify this unit (Ethernet interface) on a network. IPv6 addresses are represented by eight groups of four hexadecimal digits separated by colons. |
|
|
Gateway |
Configure the IP address of a computer on the current network that acts as a gateway. A gateway acts as an entrance and exit to packets from and to other networks. |
|
|
DHCP Server |
Disabled: Use this setting when SM is in NAT mode, if there is an existing DHCP Server below the SM handing out IP Addresses or if all devices below the SM will be configured with static IP Addresses. Enabled: Use this setting when SM is in NAT mode, to use the SM’s local/onboard DHCP server to hand out IP addresses to its clients. |
|
|
DHCP Start IP |
Configure the first address which will be issued to a DHCP client. Upon additional DHCP requests, the DHCP Start IP is incremented until Local DHCP End IP is reached. |
|
|
DHCP End IP |
Configure the highest IP address in the DHCP pool that can be issued to a DHCP client. |
|
|
Preferred DHCP DNS Server |
Configure the primary DNS Server IP address which will be used to configure DHCP clients (if Local DHCP Server is set to Enabled). |
|
|
Alternate DHCP DNS Server |
Configure the secondary DNS Server IP address which will be used to configure DHCP clients (if Local DHCP Server is set to Enabled). |
|
|
DHCP Lease Time |
Configure the time for which a DHCP IP address is leased. When the lease time expires, the DHCP client must renew IP addressing via DHCP request. |
|
|
DHCP Clients |
The DHCP Client List table identifies hardware situated below the SM which shall be issued DHCP IP addressing information. The SM acts as a DHCP server, responding to requests from hardware connected to the SM. |
|
|
MAC |
Configure the physical address of the device which will retrieve DHCP IP addressing information from the SM. |
|
|
IP |
Configure the IP address which will be assigned to the device. |
|
|
Name |
Configure a logical name for the device configured (i.e. VoIP Phone1, or Network Camera1). |
|
|
Separate Wireless Management Interface |
||
|
Separate Management IP |
Disabled: When disabled, the Wireless IP is the management interface for the SM. Enabled: When enabled, the IP Address below is the management interface for the SM. |
|
|
IP Assignment |
Static: Separate Wireless Management Interface is configured manually in fields IP Address, Subnet Mask and Gateway. DHCP: Management IP addressing (IP address, subnet mask, gateway and DNS server) is assigned via a network DHCP server. |
|
|
IP Address |
Configure the IP address that will be used to access the SM’s management interface when in NAT mode. The Wireless IP (public IP) will not allow management access. |
|
|
Subnet Mask |
Defines the address range of the connected IP network. For example, if IP Address is configured to 192.168.2.1 and Subnet Mask is configured to 255.255.255.0, the device wireless interface will belong to subnet 192.168.2.X. |
|
|
Gateway |
Configure the IP address of a computer on the current network that acts as a gateway. A gateway acts as an entrance and exit to packets from and to other networks. |
|
|
IPv6 Assignment |
IPv6 Assignment specifies how the IPv6 address for the separate wireless interface is obtained. Static: Device management IP addressing is configured manually in fields IPv6 Address and IPv6 Gateway. DHCPv6: Device management IP addressing (IP address and gateway) is assigned via a network DHCP server, and parameters IPv6 Address and IPv6 Gateway are unused. If the DHCPv6 server is not available previous static IPv6 address will be used as a fallback IPv6 address. If no previous static IPv6 address is available, no IPv6 address will be assigned. DHCPv6 will occur over the wireless interface by default. |
|
|
IPv6 Address |
Internet protocol version 6 (IPv6) address. This address is used by the family of Internet protocols to uniquely identify this unit (separate wireless interface) on a network. IPv6 addresses are represented by eight groups of four hexadecimal digits separated by colons. |
|
|
IPv6 Gateway |
Configure the IPv6 address of the device on the current network that acts as a gateway. A gateway acts as an entrance and exit to packets from and to other networks. |
|
|
Separate Management VLAN |
Enabled: A VLAN configuration establishes a logical group within the network. Each computer in the VLAN, regardless of initial or eventual physical location, has access to the same data based on the VLAN architecture. For the network operator, this provides flexibility in network segmentation, simpler management and enhanced security. When the SM is in NAT mode, the Separate Wireless Management VLAN configuration is applicable to management data. Disabled: When disabled, the SM does not have a unique management VLAN. |
|
|
VLAN ID |
Configure this parameter to include the device’s management traffic on a separate VLAN network. |
|
|
VLAN Priority |
ePMP radios can prioritize VLAN traffic based on the eight priorities described in the IEEE 802.1p specification. Data VLAN Priority represents the VLAN Priority or Class of Service (CoS). Operators may use this prioritization field to give precedence to device management data. This parameter only takes effect if the Separate Wireless Management VLAN parameter is enabled. Configure this parameter to set the value of the Priority code point field in the 802.1q tag for management traffic on the configured VLAN ID originating from the SM. The default value is 0. |
|
|
Virtual Local Area Management (VLAN) |
||
|
VLAN (Management + Data) |
Enabled: A VLAN configuration establishes a logical group within the network. Each computer in the VLAN, regardless of initial or eventual physical location, has access to the same data based on the VLAN architecture. For the network operator, this provides flexibility in network segmentation, simpler management and enhanced security. When the SM is in NAT or Router mode, the VLAN configuration is applicable to both management and user data. Disabled: When disabled, all IP management and data traffic is allowed to the device. |
|
|
VLAN ID |
Configure this parameter to include the device’s management and user traffic on a separate VLAN network. |
|
|
VLAN Priority |
ePMP radios can prioritize VLAN traffic based on the eight priorities described in the IEEE 802.1p specification. Data VLAN Priority represents the VLAN Priority or Class of Service (CoS). Operators may use this prioritization field to give precedence to device user and management data. This parameter only takes effect if the VLAN parameter is enabled. Configure this parameter to set the value of the Priority code point field in the 802.1q tag for traffic on the configured VLAN ID originating from the SM. The default value is 0. |
|
|
Ethernet Port |
||
|
Ethernet MTU |
Maximum Transmission Unit; the size in bytes of the largest data unit that the device is configured to process. Larger MTU configurations can enable the network to operate with greater efficiency, but in the case of retransmissions due to packet errors, efficiency is reduced since large packets must be resent in the event of an error. |
|
|
Ethernet Port |
Disabled: The primary Ethernet port is disabled Enabled: The primary Ethernet port is enabled |
|
|
Port Setting |
Manual: The LAN Ethernet port speed and duplex mode can be manually configured. Auto-negotiate: The AP auto negotiates the LAN Ethernet port speed and duplex mode with the device connected to it. |
|
|
Port Speed |
With “Ethernet Port Configuration” set to Manual, the LAN Ethernet port speed can be forced to 1000 Mbps (only GPS Synchronized radio), 100 Mbps or 10 Mbps. |
|
|
Port Duplex Mode |
With “Ethernet Port Configuration” set to Manual, the LAN Ethernet port duplex mode can be forced to Full or Half. |
|
|
Auxiliary Port |
Disabled: When disabled, the LAN Auxiliary port on the SM is shut down. Enabled: When enabled, LAN Auxiliary port on the SM is up and able to bridge traffic with the primary Ethernet port. Default value is Enabled. |
|
|
Auxiliary Port Setting |
Manual: The LAN Auxiliary port speed and duplex mode can be manually configured. Auto-negotiate: The AP auto negotiates the LAN Auxiliary port speed and duplex mode with the device connected to it. |
|
|
Auxiliary Port Speed |
With “Auxiliary Port Configuration” set to Manual, the LAN Auxiliary port speed can be forced to 1000 Mbps (only GPS Synchronized radio), 100 Mbps or 10 Mbps. |
|
|
Auxiliary Port Duplex Mode |
With “Auxiliary Port Configuration” set to Manual, the LAN Auxiliary port duplex mode can be forced to Full or Half. |
|
|
Auxiliary Port PoE |
Disabled: When disabled, the LAN Auxiliary port on the SM will not provide proprietary PoE out. Default value is Disabled. Enabled: When enabled, LAN Auxiliary port on the SM will provide proprietary PoE out to power external PoE devices such as another ePMP radio or a PoE camera. |
|
|
Port Forwarding |
||
|
Port Forwarding |
The SM port forwarding functionality may be used to configure the SM to route external network services to an internal IP address so that end devices (situated below the SM) are reachable from external networks. Caution Opening ports for forwarding may introduce a network security risk. |
|
|
UPnP IGD |
Universal Plug and Play (UPnP) is a set of networking protocols that permits networked devices, such as personal computers, printers, Internet gateways, Wi-Fi access points and mobile devices to seamlessly discover each other's presence on the network and establish functional network services for data sharing, communications, and entertainment. UPnP is intended primarily for residential networks without enterprise-class devices. With UPnP IGD and PCP protocols ePMP will support explicit dynamic port mappings. Enable UPnP IGD (Internet Gateway Device) to allow the ePMP device to use IGD profile for UPnP support. |
|
|
NAT PMP (PCP) |
The PCP (Port Control Protocol) allows an IPv6 or IPv4 host to control how incoming IPv6 or IPv4 packets are translated and forwarded by a Network Address Translator (NAT) or simple firewall, and also allows a host to optimize its outgoing NAT keepalive messages. PCP was standardized as a successor to the NAT Port Mapping Protocol (NAT-PMP), with which it shares similar protocol concepts and packet formats. Enable this parameter to allow the ePMP device to use PCP protocol for UPnP support. |
|
|
Data Port Forwarding |
The Data Port Forwarding Table is used to define which range of wireless ports that are forwarded to a LAN (SM local network) IP address below the SM. |
|
|
Protocol |
UDP: Packet forwarding decisions are based on UDP packets. TCP: Packet forwarding decisions are based on TCP packets. |
|
|
Port Begin |
Configure the beginning of the range of wireless ports to match for forwarding to LAN IP. |
|
|
Port End |
Configure the end of the range of wireless ports to match for forwarding to LAN IP. |
|
|
Forwarding IP |
Configure the LAN IP of the device situated below the SM which receives the packets forwarded based on the Separate Management IP Port Forwarding Table configuration. |
|
|
Mapped Port |
Configure the port of the device situated below the SM which receives the packets forwarded based on the Data Port Forwarding Table configuration. |
|
|
Separate Management IP Port Forwarding |
The Separate Management IP Port Forwarding Table is used to define which range of wireless ports from which Management traffic on the Separate Management IP is forwarded to a LAN (SM local network) IP address below the SM. |
|
|
Protocol |
UDP: Packet forwarding decisions are based on UDP packets. TCP: Packet forwarding decisions are based on TCP packets. |
|
|
Port Begin |
Configure the beginning of the range of wireless ports to match for forwarding to LAN IP. |
|
|
Port End |
Configure the end of the range of wireless ports to match for forwarding to LAN IP. |
|
|
Forwarding IP |
Configure the LAN IP of the device situated below the SM which receives the packets forwarded based on the Separate Management IP Port Forwarding Table configuration. |
|
|
Mapped Port |
Configure the port of the device situated below the SM which receives the packets forwarded based on the Separate Management IP Port Forwarding Table configuration. |
|
|
Point-to-Point Protocol over Ethernet (PPPoE) |
||
|
PPPoE |
Point-to-Point Protocol over Ethernet: Used for Encapsulating PPP frames inside Ethernet frames. |
|
|
Service Name |
An optional entry to set a specific service name to connect to for the PPPoE session. If this is left blank the SM accepts the first service option that comes back from the Access Concentrator specified below, if any. This is limited to 32 characters. |
|
|
Access Concentrator |
An optional entry to set a specific Access Concentrator to connect to for the PPPoE session. If this is blank, the SM accepts the first Access Concentrator which matches the service name (if specified). This is limited to 32 characters. |
|
|
Authentication |
ALL: This means that CHAP authentication will be attempted first, then PAP authentication. The same password is used for both types. CHAP: This means that CHAP authentication will be attempted. PAP: This means that PAP authentication will be attempted. |
|
|
Username |
This is the CHAP/PAP username that is used. This is limited to 32 characters. |
|
|
Password |
This is the CHAP/PAP password that is used. This is limited to 32 characters. |
|
|
MTU Size |
Maximum Transmission Unit; the size in bytes of the largest data unit that the device is configured to process inside the PPPoE tunnel. This field allows the operator to specify the largest MTU value to use in the PPPoE session, if PPPoE MSS Clamping is Enabled. The user will be able to enter an MTU value up to 1492. However, if the MTU determined in LCP negotiations is less than this user-specified value, the SM uses the smaller value as its MTU for the PPPoE link. |
|
|
Keep Alive Time |
Configure the Keep Alive Time to allow the radio to keep the PPPoE session up after establishment. As an example, if this field is set to 5, the PPPoE client will send a keep alive message to the PPPoE server every 5 seconds. If there is no acknowledgement, it sends the ‘Keep alive’ message to the server 4 more times (for a total or 5 times) before tearing down the PPPoE session. Setting this to 12 will mean the keep alive message will be sent every 12 seconds and when there is no acknowledgement, the client will try for a total of 12 times every 12 seconds before tearing down the PPPoE session. |
|
|
MSS Clamping |
Disabled: The SM PPPoE session allows any MTU size determined by other devices in the PPPoE session during the LCP negotiations. Enabled: The SM PPPoE session enforces a max MTU size determined by the PPPoE MTU Size setting for all devices in the PPPoE session during the LCP negotiations, unless one of the devices enforces a MTU setting that is smaller in value. |
|
|
De-Militarized Zone (DMZ) |
||
|
DMZ |
Disabled: Packets arriving on the Wireless Interface destined for the Ethernet side of the network are dropped if a session does not exist between the Source IP (Wireless) and Destination IP (Ethernet). By default NAT requires the sessions to be initiated from the Ethernet side before a packet is accepted from the Wireless to the Wired side." Enabled: Any packets with an unknown destination port (not associated to an existing session or not defined in the port forwarding rules) is automatically sent to the device configured with DMZ IP Address." |
|
|
IP Address |
Configure the IP address of an SM connected device which is allowed to provide network services to the wide-area network. |
|
|
Advanced |
||
|
IPv6 Support |
Systemwide IPv6 Protocol Support. When enabled, appropriate IPv6 modules and services will be loaded. |
|
|
ARP-NAT |
ARP-NAT or Wireless Client Bridging is a special MAC address translation mechanism. It is similar to NAT for IP networks, except it works one layer deeper. Instead of translating IP network addresses, the ePMP device translates between the MAC hardware addresses on both sides of the interface. If a device on the wired side of the router makes an ARP request for the MAC address of an IP on the wireless side, then the ePMP device forwards the request as if it came from the ePMP device. When the response comes back, it translates the address again. Instead of passing back the real MAC (which resides on the wireless network), the ePMP device gives its own wired MAC address. Then, when it receives frames for IP addresses on the wireless network, it forwards them through (conducted on both sides of the bridge). ARP-NAT is configured on the SM in section Configuration > Network > Advanced.
|
|
|
Spanning Tree Protocol |
Disabled: When disabled, Spanning Tree Protocol (802.1d) functionality is disabled at the SM. Enabled: When enabled, Spanning Tree Protocol (802.1d) functionality is enabled at the SM, allowing for the prevention of Ethernet bridge loops. |
|
|
DHCP Server Below SM |
Disabled: This blocks DHCP servers connected to the SM’s LAN side from handing out IP addresses to DHCP clients above the SM (wireless side). Enabled: This allows DHCP servers connected to the SM’s LAN side to assign IP addresses to DHCP clients above the SM (wireless side). This configuration is typical in PTP links. |
|
|
NAT Helper For SIP |
Disabled: When disabled, the SM does not perform any deep packet manipulation on the SIP request packet from a SIP Client. Enabled: When enabled, the SM in NAT mode replaces the Source IP within the SIP request to the Wireless IP of the SM. Please note that this translation is often times handled by the SIP server so this option may not always be needed. |
|
|
LLDP |
The Link Layer Discovery Protocol (LLDP) is a vendor-neutral link layer protocol (as specified in IEEE 802.1AB) used by ePMP for advertising its identity, capabilities, and neighbors on the Ethernet/wired interface. Disabled: ePMP does not Receive or Transmit LLDP packets from/to its neighbors. Enabled: ePMP can Receive LLDP packets from its neighbors and Send LLDP packets to its neighbors, depending on the LLDP Mode configuration below. |
|
|
LLDP Mode |
Receive and Transmit: ePMP sends and receives LLDP packets to/from its neighbors on the Ethernet/LAN interface. Receive Only: ePMP receives LLDP packets from its neighbors on the Ethernet/LAN interface and discovers them. |