Cisco 870-Series Router Manual PDF (Setup & Configuration Guide)

Home

Manuals

Cisco

870-Series

Page 96 / 196 Scroll up to view Page 91 - 95

8-6

Cisco 850 Series and Cisco 870 Series Access Routers Software Configuration Guide

OL-5332-01

Chapter 8

Configuring a Simple Firewall

Configuration Example

Page 97 / 196

C H A P T E R

9-1

Cisco 850 Series and Cisco 870 Series Access Routers Software Configuration Guide

OL-5332-01

Configuring a Wireless LAN Connection

The Cisco 850 and Cisco 870 series routers support a secure, affordable, and easy-to-use wireless LAN

solution that combines mobility and flexibility with the enterprise-class features required by networking

professionals. With a management system based on Cisco IOS software, the Cisco routers act as access

points, and are Wi-Fi certified, IEEE 802.11a/b/g-compliant wireless LAN transceivers.

You can configure and monitor the routers using the command-line interface (CLI), the browser-based

management system, or Simple Network Management Protocol (SNMP). This chapter describes how to

configure the router using the CLI. Use the

interface dot11radio

global configuration CLI command to

place the device into radio configuration mode.

See the

Cisco Access Router Wireless Configuration Guide

for more detailed information about

configuring these Cisco routers in a wireless LAN application.

Figure 9-1

shows a wireless network deployment.

Figure 9-1

Wireless Connection to the Cisco Router

129282

Wireless LAN (with multiple networked devices)

Cisco 850 or Cisco 870 series access router connected to the Internet

VLAN 1

VLAN 2

In the configuration example that follows, a remote user is accessing the Cisco 850 or Cisco 870 series

access router using a wireless connection. Each remote user has his own VLAN.

Page 98 / 196

9-2

Cisco 850 Series and Cisco 870 Series Access Routers Software Configuration Guide

OL-5332-01

Chapter 9

Configuring a Wireless LAN Connection

Configure the Root Radio Station

Configuration Tasks

Perform the following tasks to configure this network scenario:

•

Configure the Root Radio Station

•

Configure Bridging on VLANs

•

Configure Radio Station Subinterfaces

A configuration example showing the results of these configuration tasks is provided in the

“Configuration Example” section on page 9-7

Note

The procedures in this chapter assume that you have already configured basic router features as well as

PPPoE or PPPoA with NAT. If you have not performed these configurations tasks, see

Chapter 1, “Basic

Router Configuration,” Chapter 3, “Configuring PPP over Ethernet with NAT,”

and

Chapter 4,

“Configuring PPP over ATM with NAT,”

as appropriate for your router. You may have also configured

DHCP, VLANs, and secure tunnels.

Configure the Root Radio Station

Perform these steps to create and configure the root radio station for your wireless LAN, beginning in

global configuration mode:

Command

Purpose

Step 1

interface

name number

Example:

Router(config)#

interface dot11radio 0

Router(config-if)#

Enters interface configuration mode for the

radio interface.

Step 2

broadcast-key

[

vlan

vlan-id

]

change

seconds

Example:

Router(config-if)#

broadcast-key vlan 1

change 45

Router(config-if)#

Specifies the time interval, in seconds, between

rotations of the broadcast encryption key used

for clients.

Note

Client devices using static Wired

Equivalent Privacy (WEP) cannot use

the access point when you enable

broadcast key rotation—only wireless

client devices using 802.1x

authentication (such as Light Extensible

Authentication Protocol [LEAP],

Extensible Authentication

Protocol–Transport Layer Security

[EAP-TLS], or Protected Extensible

Authentication Protocol [PEAP]) can

use the access point.

Note

This command is not supported on

bridges.

See the

Cisco IOS Commands for Access Points

and Bridges

for more details.

Page 99 / 196

9-3

Cisco 850 Series and Cisco 870 Series Access Routers Software Configuration Guide

OL-5332-01

Chapter 9

Configuring a Wireless LAN Connection

Configure the Root Radio Station

Step 3

encryption

method

algorithm

key

Example:

Router(config-if)#

encryption vlan 1 mode

ciphers tkip

Router(config-if)#

Specifies the encryption method, algorithm, and

key used to access the wireless interface.

The example uses the VLAN with optional

encryption method of data ciphers.

Step 4

ssid

name

Example:

Router(config-if)#

ssid cisco

Router(config-if-ssid)#

Creates a Service Set ID (SSID), the public

name of a wireless network.

Note

All of the wireless devices on a WLAN

must employ the same SSID to

communicate with each other.

Step 5

vlan

number

Example:

Router(config-if-ssid)#

vlan 1

Router(config-if-ssid)#

Binds the SSID with a VLAN.

Step 6

authentication

type

Example:

Router(config-if-ssid)#

authentication open

Router(config-if-ssid)#

authentication

network-eap eap_methods

Router(config-if-ssid)#

authentication

key-management wpa

Sets the permitted authentication methods for a

user attempting access to the wireless LAN.

More than one method can be specified, as

shown in the example.

Step 7

exit

Example:

Router(config-if-ssid)#

exit

Router(config-if)#

Exits SSID configuration mode, and enters

interface configuration mode for the radio

interface.

Step 8

speed

rate

Example:

Router(config-if)#

basic-1.0 basic-2.0

basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0

36.0 48.0 54.0

Router(config-if)#

(Optional) Specifies the required and allowed

rates, in Mbps, for traffic over the wireless

connection.

Step 9

rts

[

retries

threshold

]

Example:

Router(config-if)#

rts threshold 2312

Router(config-if)#

(Optional) Specifies the Request to Send (RTS)

threshold or the number of times to send a

request before determining the wireless LAN is

unreachable.

Command

Purpose

Page 100 / 196

9-4

Cisco 850 Series and Cisco 870 Series Access Routers Software Configuration Guide

OL-5332-01

Chapter 9

Configuring a Wireless LAN Connection

Configure Bridging on VLANs

Perform these steps to configure integrated routing and bridging on VLANs, beginning in global

configuration mode:

Step 10

power

[

client

local

]

[

cck

[

number

maximum

] |

ofdm

[

number

maximum

]]

Example:

Router(config-if)#

power local cck 50

Router(config-if)#

power local ofdm 30

Router(config-if)#

(Optional) Specifies the radio transmitter power

level.

See the

Cisco Access Router Wireless

Configuration Guide

for available power level

values.

Step 11

channel

[

number

least-congested

]

Example:

Router(config-if)#

channel 2462

Router(config-if)#

(Optional) Specifies the channel on which

communication occurs.

See the

Cisco Access Router Wireless

Configuration Guide

for available channel

numbers.

Step 12

station-role

[

repeater

root

]

Example:

Router(config-if)#

station-role root

Router(config-if)#

(Optional) Specifies the role of this radio

interface.

You must specify at least one root interface.

Step 13

exit

Example:

Router(config-if)#

exit

Router(config)#

Exits interface configuration mode, and enters

global configuration mode.

Command

Purpose

Command or Action

Purpose

Step 1

bridge

[

number

crb

irb

mac-address-table

]

Example:

Router(config)#

bridge irb

Router(config)#

Specifies the type of bridging.

The example specifies integrated routing and

bridging.

Step 2

interface

name number

Example:

Router(config)#

interface vlan 1

Router(config)#

Enters interface configuration mode.

We want to set up bridging on the VLANs, so the

example enters the VLAN interface

configuration mode.

Rate

Popular Cisco Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share