WAS-105R is a Wireless Hotspot Gateway Kit, which compliance with IEEE802.11 standard, and provide data rate up to 300 Mbps.
WAS-105R applies to public access network such as Wireless Hotspot, network management for guest access, hospitality deployments-which require reliability, efficiency, and security. WAS-105 combines an IP Router /Firewall, Multi-WAN /QoS enforcement and Access Controller for use in wireless hotspot environments. One single WAS-105R can serve up to 100 simultaneous users, takes control over authentication, authorization, accounting and routing to the Internet as well as to the operating central. Built-in AAA system allows hotspot owners set up public access services without extra RADIUS server.
With WAS-105R, it provides additional sources of revenues for a better Return on Investment (ROI). Your business or organization can provide customers or guests wireless Internet connection with zero configuration and bandwidth management while protecting your private network.
Technique scope:
Wireless hotspot gateway, Wireless Gateway ,Hotspot Gateway, Visitor Access Gateway, Wireless coverage, Network access control, Indoor ap, in wall ap, in-wall access point, ceiling ap, Ceiling access point, Indoor Wireless Access Point, Secure WLAN Controller, Secure Wireless Office Controller, Enterprise Access Point, access point, managed access point, wireless AP, 802 11, Wireless Mesh Network, Wireless Mesh, Wireless network security,Wireless Management, AM Management WLAN Switch, Management Access Controller, Intelligent Device Server, Intelligent Wireless Switch, Internet Usage Monitor, Internet Monitor, Employee internet monitor, Unified Threat Management, SSL VPN, Firewall VPN, Network Security, Network Management Systems
User Management
ØSupport 100 simultaneous authentication users
ØMax 3069 Accounts
ØSupport Pre-setting authentication users, On-Demand Users and Local Radius Accounts.
ØUsers Session Management
ØConfigurable user Black list (with Time-based control)
ØAllows MAC address and user identity binding for local user authentication
ØSSL protected login portal page
ØSupports multiple login with one single account
ØSession idle timer
ØLogin Session idle time out setting
ØSession and account expiration control
ØNotification email to provide a hyperlink to login portal page
ØUser Log and traffic statistic notification via automatically email service
ØLogin time frame control
ØSession limit
ØReal-Time Online Users Traffic Statistic Reporting
ØSupport local account roaming
ØSeamless Mobility : User-centric networking manages wired and wireless users as they roam between ports or wireless APs
Authentication
ØAuthentication: single sign-on (SSO) client with authentication integrated into the local authentication environment through local/domain, LDAP, RADIUS, MAC authentication, and 802.1x
(1)Customizable Login and Logout Portal Pages
(2)Customizable Advertisement Links on Login Portal Page
ØUser authentication with UAM (Universal Access Method), 802..1x /EAPoLAN ,MAC address
ØAllow MAC address and users identity binding for local user authentication
ØNo.Of Registered RADIUS Servers : 2
ØSupport MAC control list (ACL )
ØSupport auto-expierd guest accounts
ØUsers can be divided into user groups
ØEach Service Domain has its own network properties and bandwidth control
ØMax simulanous user session (TCP/UDP) limit
ØConfigurable user black list
ØExport/Import local users list to/from a text file
ØWeb-based Captive Portal for SSL browser-based authentication
ØAuthentication Type
(1)IEEE802.1X(EAP,LEAP,EAP-TLS,EAP-TTLS,EAP-GTC,EAP-MD5)
(2)RFC2865 RADIUS Authentication
(3)RFC3579 RADIUS Support for EAP
(4)RFC3748 Extensible Authentication Protocol
(5)MAC Adress authentication
(6)Web-based captive portal authentication
Authorization
ØAuthorization: access control to network resource such as protected network with intranet,internet,bandwidth,VPN, and full stateful packet firewall releases
Accounting
ØProvides billing plans for pre-setting accounts
ØProvides billing plans for on-demand accounts
ØEnables session expiration control for On-demand accounts by time(Hours) and volume
ØDetailed per-user traffic history based on time and data volume for both local and on-demand accounts
ØSupport local on-demand and external RADIUS server
ØContain 10 configurable billing plans for on-demand accounts
ØSupport credit card billing system by Authorize.net and PayPal
ØProvide session expiration control for on-demand accounts
ØSupport automatic email network traffic history
Wireless
ØTransmission power control : 7 Levels
ØChannel selection : Manual or Auto
ØNo.of associated clients per AP : 32
ØSetting for max no associated clients : Yes
ØNo.of BBSID (Virtual AP) : 8
ØNo.of Max. WDS setting : 4 (8)
ØPreamble setting : Short / Long
ØSetting for 802.11b/g/n mix, 802.11b only or 802.11g only or 802.11n only
ØSetting fortransmission speed
ØIEEE802.11f IAPP (Inter Access Point Protocol),hand over users to another AP
ØIEEE802.11i Preauth (PMSKA Cache)
ØIEEE802.11d Multi country roaming
ØAutomatic channel assignment
ØSecure wireless bridge connects access points without wire
ØMonitoring and reporting
ØIP-Based monitoring of network devices
ØTX Power Control
ØAuto channel selection by hardware push button
Security
ØLayer 2 User Isolation
ØBlocks client to client discovery within a specified VLAN
ØSetting for TKIP/CCMP/AES key's refreshing periodically
ØHidden ESSID support
ØSetting for "Deny Any" connection request
ØMAC Address Filtering (MAC ACL)
ØSupport Data Encryption : WEP(64/128-bit),WAP,WAP2
ØSupport various authentication methods : WPA-PSK,WPA-RADIUS,IEEE802.1X
ØSupport VPN pass-thourgh
ØEncryption Type
(1)WEP:64 and 128 bit
(2)WAP-TKIP,WPA-PSK-TKIP,WPA-AES,WPS-PSK-AES
(3)WAP2/802.11i :WPA2-AES,WAP2-PSK-AES,WAP2-TKIP,WPA-PSK-TKIP
(4)Secure Socket Layer (SSL) and TLS:RC4 128-bit and RSA1024-bit and 2048-bit
ISP Domain
ØThe network is divided into maximum 8 group, each defined by a pair of VLAN tag and ESSID
ØEach Domain has its own (1) login portal page (2) authentication options (3) LAN interface IP address range (4)Session number limit control (5)Traffic shaping
ØSupport VLAN Tag over WDS
Dual WAN
ØLoad Balancing
(1)Outbound Fault Tolerance
(2)Outbound Loadbalance
(3)Multiple Domain Support
(4)By Traffic
ØBandwidth Management by individual and users group
ØWAN Connection Detection
QoS Enforcement
ØPacket classification via DSCP (Differentiated Services code Point )
ØTraffic Analysis and Statistics
ØDiff/TOS
ØIEEE 802.1Q Tag VLAN priority control
ØIEEE 802.11e WMM
ØAutomatic mapping of WMM priorities to 802.1p and IP DSCP
ØU-APSD(Unscheduled Automatic Power Save Delivery)
ØIGMP Snooping for efficient multicast delivery
ØUpload and Download Traffic Management
ØSupport WMM Multiple Priority Level
ØScheduled Policies
Network
ØSupport static IP, Dynamic IP(DHCP Client ),
PPPoE on WAN connection
ØDHCP Server Per VLAN; Multiple DHCP Networks
Ø802.3 Bridging
ØProxy DNS/Dynamic DNS
ØSupport NAT
(1)IP/Port destination redirection
(2)DMZ server mapping
(3)Virtual server mapping
(4)H.323, SIP,PPTP pass-through
ØBuilt-in with DHCP server
ØNTP Client
ØVitual DMZ
ØVirtual Server (IP /Port Forwarding)
ØBinding VLAN with Ethernet and Wireless interface
ØSupport MAC Filter
ØSupport IP Filter
ØTime-based AP access control
ØSupport Walled garden (free surfing zone)
ØSupport MAC address and IP address pass through
System Administration
ØIntuitive Web Management Interface
ØTwo administrator accounts
ØProvide customizable login and logout portal page
ØCLI access (Remote Management) via Telnet and SSH
ØRemote firmware upgrade (via Web)
ØUtilities to backup and restore the system configuration
ØRemote Link Test�VDisplay connect statistics
ØFull Statistics and Status Reporting
ØReal time traffic monitor
ØPing Watchdog
ØTraffic history report via email to administrator
ØUsers' session log can be sent by email
ØEven Syslog
ØRemote Syslog reporting to external server
ØSNMP v1,v2c ,v3
ØSNMP Traps to a list of IP Address
ØSupport MIB-II
ØSpanning Tree Protocol
ØNTP Time Synchronization
ØAdministrative Access : HTTP / HTTPS