Related Manuals for Aruba 501
Summary of Contents for Aruba 501
- Page 1 Aruba 501 802.11ac Wireless Client Bridge Configuration and Administration Guide Part Number: 5200-3856 Published: June 2017 Edition: 1...
- Page 2 © Copyright 2015, 2017 Hewlett Packard Enterprise Development LP Notices The information contained herein is subject to change without notice. The only warranties for Hewlett Packard Enterprise products and services are set forth in the express warranty statements accompanying such products and services.
-
Page 3: Table Of Contents
Connecting wired devices to a wireless network..................Connecting a wired device using MAC address cloning................Connecting a serial device to a wireless network..................Chapter 2 Managing the Aruba 501..............Configuring web server settings.........................7 Web server configuration........................ Administrator login configuration.....................8 Managing HTTP SSL certificates.................... - Page 4 Accessing Hewlett Packard Enterprise Support..................Accessing updates...........................68 Remote support............................Warranty information..........................69 Regulatory information..........................69 Documentation feedback......................... Resetting to factory defaults.................71 Factory reset procedures......................... Using the reset button........................Using the management tool......................Aruba 501 802.11ac Wireless Client Bridge Configuration and Administration Guide...
-
Page 5: Chapter 1 Deploying The Aruba 501
In this scenario, the Aruba 501 connects two wired computers to a private network via a wireless connection. The two computers are connected to a switch that is connected to the Ethernet port on the Aruba 501. A station profile is defined on the Aruba 501 with the name of the wireless network provided by the upstream AP, and the required credentials to log in. -
Page 6: Connecting A Serial Device To A Wireless Network
In this scenario, the Aruba 501 enables a point-of-sale terminal to exchange traffic with a remote host. The point-of-sale terminal is connected to the serial port on the Aruba 501. To connect it to a wireless network, the Aruba 501 converts traffic between the serial data format and TCP/IP. -
Page 7: Chapter 2 Managing The Aruba 501
The Aruba 501 is managed via its web-based management tool using Microsoft Internet Explorer 8 or later or Mozilla Firefox 17 or later. You can access the Aruba 501 management tool using either HTTP or HTTPS. Using HTTPS is more secure but you will see a security warning until you purchase and install your own certificate. With HTTPS, it is acceptable to choose the option that allows you to proceed through the security warning. -
Page 8: Administrator Login Configuration
Managing HTTP SSL certificates When HTTPS access is enabled, the Aruba 501 must be able to present a Secure Sockets Layer (SSL) certificate to the web browser of a computer that attempts access to the management tool. The certificate assures that the browser is accessing the Aruba 501 with the specified IP address. - Page 9 Generate certificate You can generate a new certificate directly using the Aruba 501 management tool, or you can upload a certificate to the Aruba 501 from a computer or network location. To generate a new certificate from the Management tool page, under Generate certificate, click Generate.
-
Page 10: Configuring A Management Access Control List
Configuring a management access control list You can create an access control list (ACL) that lists hosts that are authorized to access the Aruba 501 management tool. If this feature is disabled, anyone can access the management interface from any network client by supplying the correct user name and password. -
Page 11: Configuring Snmp
Configuring SNMPv1 and SNMPv2 The Aruba 501 provides a robust SNMP v1/v2 implementation supporting both industry-standard MIB II objects and Aruba-specific MIB objects. Read-only or read/write access is supported. Select Management > SNMP to open the SNMP configuration page. -
Page 12: System Settings
System settings Under System settings, you can define basic properties of the Aruba 501 as an SNMP managed device. System name Enter a name to identify the Aruba 501 as an SNMP managed device (63 alphanumeric characters maximum). The default SNMP name is the product serial number. -
Page 13: Snmp Configuration
If you have enabled the SNMP source enable setting, specify the hostname or IPv4 address of a device to enable it to execute get and set requests to the Aruba 501. Or, specify a subnet to enable SNMP access for any device on that subnet. -
Page 14: Snmpv3 Configuration
Aruba 501. Trap destinations The Aruba 501 generates and stores data about significant events, such as system errors and configuration changes, in the form of SNMP traps. These traps can be forwarded to up to three SNMP manager devices, which you can configure in the Trap destinations section of the page. - Page 15 Configuring SNMPv3 receivers The Aruba 501 can send SNMP traps to configured SNMPv3 users. The eligible users must be configured on the SNMPv3 users page. On the SNMPv3 receivers page, you provide IP information for the users you select to receive traps.
-
Page 16: Supported Mibs
SNMP-NOTIFICATION-MIB • UCD-SNMP-MIB • SNMP-TARGET-MIB Private MIBs The Aruba 501 supports a private MIB named HP-WLAN-ACCESS-POINT-MIB, with the following organization and contact information: ORGANIZATION: Hewlett Packard Enterprise CONTACT-INFO: Hewlett Packard Enterprise, 8000 Foothills Blvd. Roseville, CA 95747 Aruba 501 802.11ac Wireless Client Bridge Configuration and Administration Guide... -
Page 17: Automatically Configuring The Aruba 501
5. Copy the configuration file to the TFTP server in the appropriate directory. 6. Connect the Aruba 501 to the same network as the DHCP server via either the Ethernet port or a wireless connection. To use a wireless connection, you must define a station profile that matches the settings on the wireless network. -
Page 18: Setting The System Time
The Aruba 501 uses the Option 43 values to download the new configuration file. d. The Aruba 501 checks that the new configuration file has a different name than the one currently installed, and that it is valid. If so, the Aruba 501 reboots and starts up using the new configuration settings. -
Page 19: Daylight Savings
The first character must be a letter (a to z or A to Z), and the last character cannot be a hyphen. An actual NTP server host name, pool.ntp.org, is configured by default and provides the time when the Aruba 501 is connected to the Internet. -
Page 20: Chapter 3 Wireless Configuration
Interference: Interference is caused by other APs or devices (cordless phones, microwaves) that operate in the same 2.4 GHz frequency band as the Aruba 501 when it is set to a 2.4 GHz mode. Such interference can substantially affect throughput. A smaller, but growing number of devices are potential sources of interference in the 5 GHz band. -
Page 21: Chapter 3 Wireless Configuration
This page enables you to configure the country in which the Aruba 501 operates, basic radio settings such as the radio mode, and advanced radio features. Country The country of operation, also known as the regulatory domain, determines the availability of certain wireless settings on the Aruba 501. -
Page 22: Basic Settings
Auto: The Aruba 501 detects the wireless mode of the upstream AP and automatically selects a compatible mode. When set to Auto mode, the Aruba 501 scans both the 2.4 GHz and 5 GHz bands and is capable of connecting with 802.11a/b/g/n/ac APs. This is the default setting. -
Page 23: Chapter 3 Wireless Configuration
The following examples illustrate the decision process and assume that the Mode is set to Auto. • If the Aruba 501 is currently connected to a 5 GHz AP and the Roam delta is set to 15 dBm, when a signal is detected that falls below the Roam threshold: ◦... - Page 24 The RTS threshold indicates how large a frame must be in order for the Aruba 501 to send an RTS packet. For frames below this value, an RTS/CTS handshake is not performed.
-
Page 25: Using Station Profiles To Establish A Wireless Link
Each profile contains the definitions for a wireless connection. The Aruba 501 supports multiple station profiles, enabling it to automatically connect with different wireless networks. For example: The Aruba 501 uses the profile definitions in the following order when it attempts to find an AP with which to establish a wireless link:... -
Page 26: To Add Or Edit A Station Profile
None: No security options are applied. • Static WEP: The Aruba 501 authenticates using a WEP key configured on the Aruba 501 and the upstream AP. This mode is available only when the configured radio mode does not support 802.11ac or 802.11n. -
Page 27: Chapter 3 Wireless Configuration
In active scanning mode, the Aruba 501 sends out probe request frames in an attempt to solicit responses from APs that are within range. This enables the Aruba 501 to establish a connection with an AP that does not broadcast an SSID. -
Page 28: Security Methods
802.11ac or 802.11n. This method uses a WEP key that is configured on both the Aruba 501 and the upstream AP. It is the least secure method of protecting wireless transmissions. WEP is provided so you can authenticate with an upstream AP that does not support WPA. -
Page 29: Chapter 3 Wireless Configuration
Select one of the following extensible authentication protocol (EAP) methods: • PEAP: With this method, the Aruba 501 username and password credentials are provided to the upstream AP, which forwards them to the authentication server for verification. Specify the following: Username Enter a value from 1 to 64 alphanumeric characters. - Page 30 ◦ An SSL Certificate. This is the resulting certificate that is created when the CA signs your CSR, which will be installed on the Aruba 501 with your Private Key. ◦ A Certificate Chain. This is a text file that contains your CA Certificate, SSL Certificate, and your Private key components in base-64 format, with the .pem file extension.
-
Page 31: Configuring Wireless Bridging Features
The Aruba 501 supports cloning the MAC address of a single connected wired device, thereby minimizing the impact on the network configuration when the device is converted to wireless by the addition of the Aruba 501. MAC cloning is useful when the upstream AP does not accept requests for more than one IP address per wireless MAC address. -
Page 32: Redirecting Unsupported Traffic
Redirecting unsupported traffic The Aruba 501 sends and receives only IPv4 traffic on the wireless link. By default, all other traffic is unsupported and is dropped. In some cases, you might want to forward the unsupported traffic to a wired device connected to the Ethernet port. -
Page 33: Viewing Wireless Information
As a result, the Aruba 501 cannot route incoming IPv4 wireless traffic to these devices. When the IP forwarding option is enabled, the Aruba 501 sends an ARP request on the Ethernet port whenever a packet with an unknown destination IP address is received on the wireless interface. After receiving an ARP response from the device on the Ethernet port, the Aruba 501 can forward the packet to the intended device. -
Page 34: Viewing Wireless Statistics For The Radio
(which varies by country and radio mode). If a scan is initiated while the Aruba 501 is in the process of associating with an AP, or while it is roaming to associate with another AP, the scan request may be ignored. Start Scan is disabled when the radio is disabled or when AP profiles are configured but in a disconnected state. -
Page 35: Viewing The Mac Translation Table
Field Description Fragments received Count of successfully received MPDU frames of type data or management. Fragments transmitted Number of transmitted MPDU with an individual address or an MPDU with a multicast address of type data or management. Multicast frames received Count of MSDU frames received with the multicast bit set in the destination MAC address. - Page 36 The IP address of the client on the wired network. Tx/Rx packets Total packets transmitted from the Aruba 501 to the client or received by the Aruba 501 from the client. Click Clear MAC table to delete all entries from the list.
-
Page 37: Chapter 4 Network Configuration
Automatically assigning an IP address (default method) By default, Connection type is set to DHCP and the Aruba 501 operates as a DHCP client. This means that if the wired or wireless network has a DHCP server, the Aruba 501 automatically receives a new IP address in place of its default IP address (192.168.1.1) upon connecting to the network. -
Page 38: Ipv6 Configuration
Select Static IP from the list to manually configure an IPv4 Ethernet address. Static IP address Set an address that is on the same subnet as the network to which the Aruba 501 will connect when installed. Respect any DHCP server-mandated static address ranges. -
Page 39: Manual Link Speed Settings
Dynamic, be sure to enable DHCPv6 functionality in the field below. If you select Manual, enter up to two IPv6 addresses in the text boxes provided. Static IPv6 address status The operational status of the static IPv6 address assigned to the Aruba 501 management interface. The possible values are as follows: •... -
Page 40: Network 802.1X Feature Descriptions
Full duplex with the exception of 1000 Mbps which can only be set to Full duplex. Network 802.1X feature descriptions The Aruba 501 features a built-in 802.1X authenticator for authenticating wired devices connected to the Ethernet port. When enabled, a wired device will not be given access to the upstream AP network without first successfully completing an 802.1X authentication exchange. -
Page 41: Viewing Ethernet Statistics
TCP connection The Aruba 501 has an external serial port which can be used to enable a device with a serial connection to communicate with a remote host over the wireless network. This is useful for devices that do not have wireless or Ethernet functionality. -
Page 42: Serial Port Settings
TCP port and is destined for the remote TCP server. • Server: The Aruba 501 acts as a TCP server and listens for an incoming connection from a TCP client on the specified TCP port. When TCP is enabled, this mode is the default. -
Page 43: Viewing Tcp Serial Status And Statistics
Software flow control Select one of the following values: • None: The Aruba 501 does not provide flow control. Instead, flow control is performed end-to-end by the remote TCP device and the locally connected serial device. This is the default value. •... -
Page 44: Lldp Configuration
• Listen: When the TCP Mode is set to Server, this value indicates that the Aruba 501 is waiting for the remote TCP client to establish the connection. • Connecting: When the TCP Mode is set to Client, this value indicates that the Aruba 501 is attempting to establish a connection with the remote TCP server. -
Page 45: Loop Protection
When enabled, the software periodically sends loop protection packets to a reserved multicast address on the wireless interface. If the multicast packet comes back to the Aruba 501 on the Ethernet interface (with a source MAC addresses that identifies the wireless interface) within a specified time, the software determines that a loop has occurred. - Page 46 Loop detection count The total number of loops detected since the Aruba 501 was last reset. Time of last loop detection The date and time of the most recent detected loop. Aruba 501 802.11ac Wireless Client Bridge Configuration and Administration Guide...
-
Page 47: Chapter 5 Maintenance
Chapter 5 Maintenance Configuration file management The configuration file contains all the settings that customize the operation of the Aruba 501. You can save and restore the configuration file by selecting Maintenance > Config file management. Reset See Resetting to factory defaults on page 71 for information about restoring the factory default configuration. -
Page 48: Software Updates
Software information The Aruba 501 maintains both an active software image and a backup image. The Aruba 501 always tries to boot with the active image. If it fails to load, the backup image is used. Whenever such a failover occurs, the system creates a log message to help you troubleshoot the software failure. -
Page 49: System Information
The Aruba 501 reboots with the new image. The process can take several minutes, during which time the Aruba 501 is unavailable. Do not power down the Aruba 501 while the image switch is in progress. When the image switch is complete, the Aruba 501 restarts. The Aruba 501 resumes normal operation with the same configuration settings it had before the upgrade. -
Page 50: Chapter 6 Tools
You can also configure the Aruba 501 to store up to 512 messages in nonvolatile memory (flash). When full, the oldest log message gets overwritten by the new log message. Logged messages often indicate severe errors in Aruba 501 operation, and they can prove useful in diagnosing system crashes. -
Page 51: Remote Syslog Configuration
Then, you can configure the Aruba 501 to send syslog messages to the remote server. The Severity level setting configured in the System log configuration section determines which messages are stored in RAM and are available for relay to a remote syslog server. -
Page 52: Events
Aruba 501. The log shows the date the event occurred, its severity level, the software program or process that caused the event message, and the message text. You can click Refresh to display the most recent data from the Aruba 501, or Clear All to remove all entries from the list. - Page 53 The RSSI log shows the date of each RSSI entry, the MAC address of the remote AP, the channel on which the signal was detected, and the RSSI value. Click Refresh to display the latest data from the Aruba 501.
-
Page 54: Syslog Message List
Syslog message list The following table lists the syslog messages generated by the Aruba 501. The MAC address of the Aruba 501 is automatically added to the beginning of every syslog entry. Message Description Severity The AP startup configuration was... - Page 55 Message Description Severity TSB: Connection established with TCP TCP serial connection established. Informational xx at IP xx port xx. TSB: Disconnection from TCP TCP xx TCP serial connection terminated. Informational xx port xx. TSB: Idle timeout on TCP xx, xx TCP serial connection disconnected due to idle Informational disconnected.
-
Page 56: Email Alert
Aruba 501 is currently connected. Email alert The Email alert feature allows the Aruba 501 to automatically send email messages when an event at or above the configured severity level occurs. To configure email alert settings, select Tools > Email alert. -
Page 57: General Email Alert Configuration
AP23@company.com. It is recommended that you use an email address that exits on your own network, so that the address is notified if an email from the Aruba 501 is undeliverable, and to prevent spam filters on the network from blocking the sending or delivery of emails from the Aruba 501. -
Page 58: Mail Server Configuration
Specify the text to be displayed in the subject line of the email alert message. The subject can contain up to 255 alphanumeric characters. The default subject is "Log message from WCB". Sending a test message To validate the configured email server credentials, click Test Mail. Aruba 501 802.11ac Wireless Client Bridge Configuration and Administration Guide... -
Page 59: Viewing Email Alert Status
• Packet file trace mode: Captured packets are stored in a file on the Aruba 501. The Aruba 501 can transfer the file to a local PC or network location using HTTP or to a TFTP server. The file is formatted in pcap format and can be examined using tools such as Wireshark and OmniPeek. -
Page 60: Packet File Trace
Packet file trace In packet file trace mode, the Aruba 501 stores captured packets internally in a file. Upon activation, the packet trace proceeds until one of the following occurs: •... -
Page 61: Remote Packet Trace
Setting up Wireshark sessions You can trace up to five interfaces on the Aruba 501 at the same time. However, you must start a separate Wireshark session for each interface. You can configure the IP port number used for connecting Wireshark to the Aruba 501. - Page 62 To trace packets on the Ethernet interface of the Aruba 501 and on the radio interface using IP port 58000, start two Wireshark sessions and specify the following interfaces: rpcap://192.168.1.10:58000/eth0 rpcap://192.168.1.10:58000/radio1 When you are capturing traffic on the radio interface, you can disable beacon trace, but other 802.11 control frames are still sent to Wireshark.
-
Page 63: Packet Trace Status
Click Refresh to see the updated trace time. You can click Stop Trace to stop a trace before the specified duration has elapsed. Packet trace status This section enables you to view the status of the packet trace on the Aruba 501. Current trace status Whether a packet trace is running or is stopped. -
Page 64: Ping
Click Download. A progress bar displays to indicate download status. Ping The Aruba 501 supports ping functionality to enable basic diagnostics of network devices. To ping another device, select Tools > Ping. Aruba 501 802.11ac Wireless Client Bridge Configuration and Administration Guide... -
Page 65: Iperf
Iperf The Aruba 501 supports Iperf for testing the performance of a network connection. The Aruba 501 can function as either an Iperf client or Iperf server. - Page 66 Iperf client When operating as an Iperf client, the Aruba 501 establishes a connection to an Ipserf server. Remote Iperf server address Specify the IPv4 or IPv6 address of the Iperf server. Default: 0.0.0.0. Test duration Specify the test duration in seconds. Range: 1 to 1800 seconds. Default: 15 seconds.
-
Page 67: Chapter 7 Websites
Chapter 7 Websites General websites Hewlett Packard Enterprise Information Library www.hpe.com/info/EIL Single Point of Connectivity Knowledge (SPOCK) Storage compatibility matrix www.hpe.com/storage/spock Storage white papers and analyst reports www.hpe.com/storage/whitepapers For additional websites, see Support and other resources. Chapter 7 Websites... -
Page 68: Chapter 8 Support And Other Resources
Remote support is available with supported devices as part of your warranty or contractual support agreement. It provides intelligent event diagnosis, and automatic, secure submission of hardware event notifications to Hewlett Aruba 501 802.11ac Wireless Client Bridge Configuration and Administration Guide... -
Page 69: Warranty Information
Packard Enterprise, which will initiate a fast and accurate resolution based on your product's service level. Hewlett Packard Enterprise strongly recommends that you register your device for remote support. If your product includes additional remote support details, use search to locate that information. Remote support and Proactive Care information HPE Get Connected www.hpe.com/services/getconnected... -
Page 70: Documentation Feedback
For online help content, include the product name, product version, help edition, and publication date located on the legal notices page. Aruba 501 802.11ac Wireless Client Bridge Configuration and Administration Guide... -
Page 71: Resetting To Factory Defaults
Resetting to factory defaults Factory reset procedures To force the Aruba 501 into its factory default state, follow one of the procedures in this section. Resetting the Aruba 501 to factory defaults deletes all configuration settings, resets the manager user name and password to admin, and enables the DHCP client on the Ethernet port. If no DHCP server assigns an address to the Aruba 501, its address defaults to 192.168.1.1.
Need help?
Do you have a question about the 501 and is the answer not in the manual?
Questions and answers