Apple Airport Extreme Base Station V4.0.8 Firmware: Version 5.4

Similar documents
Chapter 4 Management. Viewing the Activity Log

AP6511 First Time Configuration Procedure

Web Authentication Proxy on a Wireless LAN Controller Configuration Example

Chapter 3 Management. Remote Management

Ruckus Wireless ZoneDirector Command Line Interface

GregSowell.com. Mikrotik Basics

Wireless Local Area Networks (WLANs)

MIMOTEC GigaLink AC. User Manual. Version 1.5 (8 January 2014) MIMOTEC, Norway & Sweden

Enabling Multiple Wireless Networks on RV320 VPN Router, WAP321 Wireless-N Access Point, and Sx300 Series Switches

RAP Installation - Updated

Access Point Configuration

NWA1120 Series. User s Guide. Quick Start Guide. Wireless LAN Ceiling Mountable PoE Access Point. Default Login Details

Chapter 1 Configuring Internet Connectivity

Lab Configuring Access Policies and DMZ Settings

FWS WiTDM Series KWA-O8800-I User Manual

Unified Access Point Administrator's Guide

CCT vs. CCENT Skill Set Comparison

Lab Organizing CCENT Objectives by OSI Layer

Step-by-Step Setup Guide Wireless File Transmitter FTP Mode

Chapter 4 Managing Your Network

IS SERIES. QuikStart Programming Guide. IP Network Direct System. Programming Videos

NBG2105. User s Guide. Quick Start Guide. Wireless Mini Travel Router. Default Login Details. Version 1.00 Edition 1, 11/2012

FSM73xx GSM73xx GMS72xxR Shared access to the Internet across Multiple routing VLANs using a Prosafe Firewall

WiFi-SB-L3 300M WiFi Router WiFi Bridge WiFi Repeater. WiFi Router WiFi Repeater WiFi Bridge WiFi-SB-L3 Quick Setting Guide

SOHO 6 Wireless Installation Procedure Windows 95/98/ME with Internet Explorer 5.x & 6.0

IEEE a/ac/n/b/g Enterprise Access Points ECW5320 ECWO5320. Management Guide. Software Release v

Configure WorkGroup Bridge on the WAP131 Access Point

This guide is intended to help you troubleshoot problems connecting a wireless device to the Gogo Biz network.

estadium Project Lab 8: Wireless Mesh Network Setup with DD WRT

Configuring Settings on the Cisco Unified Wireless IP Phone 7925G

Configuration Guide. How to Configure the AP Profile on the DWC Overview

Unified Access Point Administrator s Guide

Packet Capture. Document Scope. SonicOS Enhanced Packet Capture

Quick Start Guide. WRV210 Wireless-G VPN Router with RangeBooster. Cisco Small Business

Integrating a Hitachi IP5000 Wireless IP Phone

Avaya Wireless AP Device Manager User Guide

Chapter 2 Configuring Your Wireless Network and Security Settings

Cisco Certified Network Associate Exam. Operation of IP Data Networks. LAN Switching Technologies. IP addressing (IPv4 / IPv6)

Quick Installation Guide

WRE6505. User s Guide. Quick Start Guide. Wireless AC750 Range Extender. Default Login Details. Version 1.00 Edition 1,

UTM - VPN: Configuring a Site to Site VPN Policy using Main Mode (Static IP address on both sites) i...

Configuring Switch Ports and VLAN Interfaces for the Cisco ASA 5505 Adaptive Security Appliance

Using Cisco UC320W with Windows Small Business Server

Configuring Network Address Translation (NAT)

STATIC IP SET UP GUIDE VERIZON 7500 WIRELESS ROUTER/MODEM

ProSafe Wireless-N Access Point WNAP210

Initial Access and Basic IPv4 Internet Configuration

Management Software. Web Browser User s Guide AT-S106. For the AT-GS950/48 Gigabit Ethernet Smart Switch. Version Rev.

A Division of Cisco Systems, Inc. GHz g. Wireless-G. Access Point with SRX. User Guide WIRELESS WAP54GX. Model No.

Apple AirPort Extreme (ME918ZP/A) Router Guide (MAC OS version)

UIP1868P User Interface Guide

Chapter 6 Using Network Monitoring Tools

VLANs. Application Note

300Mbps Wireless N Gigabit Ceilling Mount Access Point

TotalCloud Phone System

Chapter 6 Configuring the SSL VPN Tunnel Client and Port Forwarding

Movie Cube. User s Guide to Wireless Function

Firewall VPN Router. Quick Installation Guide M73-APO09-380

How To. Simply Connected. XWR-1750 Basic Configuration INTRODUCTION

Edgewater Routers User Guide

Building Secure Network Infrastructure For LANs

LevelOne WAP User s Manual. 108 Mbps Wireless Access Point

TECHNICAL NOTE. GoFree WIFI-1 web interface settings. Revision Comment Author Date 0.0a First release James Zhang 10/09/2012

SonicWALL PCI 1.1 Implementation Guide

Lab Configuring Access Policies and DMZ Settings

Vocera Infrastructure Planning Summary. B3000n Compatible

Chapter 1 Configuring Basic Connectivity

Linksys WAP300N. User Guide

Creating your fi rst CloudTrax network

United States Trustee Program s Wireless LAN Security Checklist

How To Understand and Configure Your Network for IntraVUE

How To Check If Your Router Is Working Properly On A Nr854T Router (Wnr854) On A Pc Or Mac) On Your Computer Or Ipad (Netbook) On An Ipad Or Ipa (Networking

ADMINISTRATION GUIDE Cisco Small Business

Edgewater Routers User Guide

Quick Installation Guide DAP Wireless N 300 Access Point & Router

VPN Configuration Guide. ZyWALL USG Series / ZyWALL 1050

Management Software AT-WA7400/NA. User s Guide Rev. B

LOHU 4951L Outdoor Wireless Access Point / Bridge

Deploying Windows Streaming Media Servers NLB Cluster and metasan

Chapter 6 Using Network Monitoring Tools

HRG Performance Series DVR DDNS Support Application Note (hrgddns)

Preparing the Computers for TCP/IP Networking

Network-Enabled Devices, AOS v.5.x.x. Content and Purpose of This Guide...1 User Management...2 Types of user accounts2

FortiGate High Availability Overview Technical Note

How To Check If Your Router Is Working Properly

PIXMA MX920. series. Setup Guide

OSBRiDGE 5XLi. Configuration Manual. Firmware 3.10R

Design and Implementation Guide. Apple iphone Compatibility

Quick Start Guide NVR DS-7104NI-SL/W NVR. First Choice For Security Professionals

A Division of Cisco Systems, Inc. GHz g. Wireless-G. User Guide. Access Point with Power Over Ethernet WIRELESS WAP54GP. Model No.

D-Link DAP-1360 Repeater Mode Configuration

PRILINK PRI Management System

Unified Access Point (AP) Administrator s Guide

Table of Contents. Cisco Wi Fi Protected Access 2 (WPA 2) Configuration Example

Agenda. What is Hybrid AP Fat AP vs. Thin AP Benefits of ZyXEL Hybrid AP How Managed AP finds the Controller AP Web GUI

Installing Cable Modem Software Drivers

Chapter 1 Connecting the Router to the Internet

Packet Monitor in SonicOS 5.8

Deploying Cisco Basic Wireless LANs WDBWL v1.1; 3 days, Instructor-led

Transcription:

1. APPLE AIRPORT EXTREME 1.1 Product Description The following are device specific configuration settings for the Apple Airport Extreme. Navigation through the management screens will be similar but may vary across specific products in this vendor s family of routers. See the vendor s website for more information about wireless configuration at www.apple.com/airportextreme/. The following equipment was used in the test case: Device: Apple Airport Extreme Base Station V4.0.8 Firmware: Version 5.4 An administration utility is provided by the manufacturer, which assists the user in configuring the access point. Start the utility and click on the Show All Settings button to begin configuration of the recommended settings as shown in Figures 4-1 and 4-2. Figure 1-1. Apple: Configuration Summary Screen

Figure 1-2. Apple: Show All Settings Screen 1.2 Configuration of Recommended Security Policies 2.3.1.010 Use layer 2 or 3 encryption with AES Not available in tested product. 2.3.1.020 Choose products that support a network level security management solution. Set SNMP and VLAN setting as described in policy 2.3.1.030.

2.3.1.030 Disable management ports on network devices when not in use. In its simplest configuration, the services screen should be configured as follows: - Telnet/SSH: Enabled Enables secure shell tunneling to AP for management purposes (CLI). For secure deployments, SSH should be enabled and Telnet should be disabled. - CDP: Disable Cisco Discovery Protocol. CDP can be disabled, but may adversely impact Power over Ethernet negotiation with the AP, as well as limit the ability for Switch port shutdown of rogue AP s. - Filters: Enabled (optionally, these can be individually enabled if needed). Filters/Access lists can be enabled on the AP to only allow critical services such as DHCP, DNS and VPN services to further control traffic. - CDP: Disable Cisco Discovery Protocol. - Filters: Enabled (optionally, these can be individually enabled if needed). - SNMP: Enabled Allows network management and monitoring devices to access the AP (but over an OOB management VLAN described later). - VLAN: Enabled Allows multiple virtual LANs to be configured to the AP from network. - Hot Standby: Disabled - DNS: Disabled - HTTP: Enabled Allows browser access to the AP for configuration. Caution, this access should only be allowed over a secure channel, since the communication is not HTTPS. - QoS: Disabled (unless applications require this feature) - NTP: Enable for network Managements best practice this will provide a way to help correlate events if the need arises for Network Troubleshooting. - ARP Caching: Disabled (enable to decrease wireless broadcast traffic and increase security) 2.3.1.040 Use OOB management across a specially configured VLAN for network administration/management Set VLAN setting as described in policy 2.3.1.030. 2.3.1.050 WLAN must have session timeout capability and must be set to 15 min or less No setting available on this AP. Must be set on client devices. 2.3.1.060 Set AP transmit power to lowest possible to attain signal strength required - From the Show All Settings, Airport menu tab (Figure 4-2) - Select the Wireless Options button. - Select the best combination of Interface Robustness, Multicast Rate and Transmit Power that reaches to the furthest required point of the WLAN. This process will require repeated testing using a secured client.

2.3.1.070 Password-protect AP beyond manufacturer s default setting - From the Show All Settings, Airport menu tab (Figure 4-2) - Click the Change password button - In the popup window that appears, change the base station password - Use sound password policies such as minimum 8 characters, one digit, one capital letter, and one special character - To check the strength of your password, you may use the Apple Keychains application, which features a built-in strength tester that provides a password strength score 2.3.1.080 Change default SSID From the Show All Settings, Airport menu tab (Figure 4-2) Under the AirPort Network section, in the field labeled Name, type a name for the base station. This will be the SSID of the base station NOTE: The Base Station, Name field also listed on this screen, is for administration purposes only and will not set the SSID. 2.3.1.090 Disable SSID broadcast mode Not tested.

2.3.1.100 Enable MAC address filtering - From the Show All Settings menu (Figure 4-2), - Select the Access Control tab (Figure 4.4). Note the window where client Airport IDs (MAC addresses) and client descriptions can be entered - Click on the + button to the right of this window to add clients - Exporting this list to other Airport Extreme base stations is a simple process Figure 1-3. Apple: MAC Address Filtering 2.3.1.110 Backup system configuration settings Not tested. See vendor website. 2.3.1.120 Enable Wireless Client Isolation Not tested

2.3.1.130 Enable and configure logging - From the Show All Settings, Airport tab (Figure 4-2) - Click the Base Station Options button - Select Logging Level 5 from the drop down menu (default) - Click the Send Base Station Logging checkbox - Enter the IP address of the device you wish to receive the Syslog stream Figure 1-4. Apple: Logging

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information