Apple AirPort Networks
Apple AirPort Networks
1Contents
2
AirPort offers the easiest way to provide wireless Internet access and networking anywhere in the home, classroom, or office.
AirPort is based on the latest Institute of Electrical and Electronics Engineers (IEEE) 802.11n draft specification and provides fast and reliable wireless networking in the home, classroom, or small office. You can enjoy data transfer rates of up to five times faster than data rates provided by the 802.11g standard and more than twice the network range.
The new AirPort Extreme Base Station and the new Time Capsule are based on simultaneous
or 5 GHz spectrum at the same time. And they are 100 percent
AirPort Extreme Base Station and Time Capsule have three additional 10/100/1000Base- T Gigabit Ethernet ports, so you don???t need to include another router in your network.
To set up an AirPort Extreme Base Station, an AirPort Express, or a Time Capsule, you use AirPort Utility, the
If you???re using AirPort Utility version 5.4 or later, you can set up a guest network, in both the 2.4 GHz and 5 GHz bands, so that guests can connect to the Internet using your AirPort network, while you keep your private network secure. You can also choose to set up guest accounts that expire, to grant temporary access to your network; you no longer need to give your network password to visitors in your home or office.
You can even set up accounts with time constraints for the best in parental controls. AirPort Utility supports IPv6 and Bonjour, so you can ???advertise??? network services such as printing and sharing a hard disk over the Wide Area Network (WAN) port.
3
Note: When the features discussed in this document apply to the AirPort Extreme Base Station, AirPort Express, and Time Capsule, the devices are referred to collectively as Apple wireless devices.
With an AirPort Extreme Base Station or a Time Capsule, you can connect a USB hard disk so that everyone on the network can back up, store, and share files. Every
Time Capsule includes an internal AirPort disk, so you don???t need to connect an external one. If you want, you can connect additional USB disks to the USB port on your Time Capsule. You can also connect a USB printer to the USB port on any
Apple wireless device, so that everyone on the network can access the printer or hub.
All Apple wireless devices provide strong, wireless security. They offer a
You can use an Apple wireless device to provide wireless Internet access and share a single Internet connection among several computers in the following ways:
??Set up the device to act as a router and provide Internet Protocol (IP) addresses to computers on the network using Dynamic Host Configuration Protocol (DHCP) and Network Address Translation (NAT). When the wireless device is connected to a DSL or cable modem that is connected to the Internet, it receives webpages and email content from the Internet through its Internet connection, and then sends the content to
??Set up the Apple wireless device to act as a bridge on an existing network that already has Internet access and a router providing IP addresses. The device passes IP addresses and the Internet connection to AirPort or
This document provides information about the latest AirPort Extreme Base Station, AirPort Express, and Time Capsule, and detailed information about designing 802.11n networks with AirPort Utility for computers using Mac OS X v10.5 or later, and Windows Vista or Windows XP with Service Pack 2. If you???re using previous versions of Mac OS X, or are setting up earlier versions of AirPort devices, you???ll find more information at www.apple.com/support/airport.
You can set up an Apple wireless device and connect to the Internet wirelessly in minutes. But because Apple wireless devices are flexible and powerful networking products, you can also create an AirPort network that does much more. If you want to design an AirPort network that provides Internet access to
Note: The images of AirPort Utility in this document are from Mac OS X v10.5. If you???re using a Windows computer, the images you see in this document may be slightly different from what you see on your screen.
Configuring an Apple Wireless Device for Internet Access Using AirPort Utility
Like your computer, Apple wireless devices must be set up with the appropriate hardware and IP networking information to connect to the Internet. Install
AirPort Utility, which came on the CD with your wireless device, and use it to provide Internet configuration information and other network settings.
AirPort Utility combines the ease of use of AirPort Setup Assistant and the power of AirPort Admin Utility. It is installed in the Utilities folder in the Applications folder on a Macintosh computer using Mac OS X, and in Start > All Programs > AirPort on computers using Windows. AirPort Utility walks you through the setup process by asking a series of questions to determine how the device???s Internet connection and other interfaces should be set up. Enter the settings you received from your ISP or network administrator for Ethernet, PPP over Ethernet (PPPoE), or your local area network (LAN); give your AirPort network a name and password; set up a device as a wireless bridge to extend the range of your existing AirPort network; and set other options.
When you???ve finished entering the settings, AirPort Utility transfers the settings to your wireless device. Then it connects to the Internet and shares its Internet connection with computers that join its AirPort network.
You can also create an AirPort network that takes advantage of the more advanced networking features of Apple wireless devices. To set more advanced AirPort options, use AirPort Utility to manually set up your wireless device???s configuration, or make quick adjustments to one you???ve already set up. Some of the AirPort advanced networking features can be configured only using the manual setup features in AirPort Utility.
Set up your Apple wireless device manually using AirPort Utility when:
??You want to provide Internet access to computers that connect to the wireless device using Ethernet
??you???ve already set up your device, but you need to change one setting, such as your account information
??You need to configure advanced settings such as channel frequency, advanced security options, closed networks, DHCP lease time, access control, WAN privacy, power controls, or port mapping or other options
For instructions on using AirPort Utility to manually set up your wireless device and network, see ???Using AirPort Utility??? on page 15.
Extending the Range of Your AirPort Network
You can extend the range of your network by using AirPort Utility to set up wireless connections among several devices in your network, or to connect a device using Ethernet to create a roaming network. For more information on extending the range of your network, see ???Connecting Additional Wireless Devices to Your AirPort Network??? on page 41.
Sharing a USB Hard Disk Connected to an AirPort Extreme
Base Station or Time Capsule
If you???re using an AirPort Extreme Base Station or a Time Capsule, you can connect a USB hard disk to it, and computers connected to the
Printing with an Apple Wireless Device
If you have a compatible USB printer connected to your Apple wireless device, computers on the AirPort network can use Bonjour (Apple???s
Sharing Your Computer???s Internet Connection
If your computer is connected to the Internet, you can share your Internet connection with other computers using Mac OS X version 10.2 or later, or Windows XP with Service Pack 2. This is sometimes called using your computer as a software base station.
You can share your Internet connection as long as your computer is connected to the Internet. If your computer goes to sleep or is restarted, or if you lose your Internet connection, you need to restart Internet sharing.
To start Internet sharing on a computer using Mac OS X v10.5 or later:
1 Open System Preferences and click Sharing.
2Choose the port you want to use to share your Internet connection from the ???Share your connection using???
3Select the port you want to use to share your Internet connection in the ???To computers using??? list. You can choose to share your Internet connection with
4 Select Internet Sharing in the Services list.
5If you want to share your Internet connection with computers using AirPort, click AirPort Options to give your network a name and password.
To start Internet sharing on a computer using Windows:
1 Open Control Panel from the Start menu, and then click ???Network and Internet.???
2 Click ???Network and Sharing Center.???
3 Click ???Manage network connections??? in the Tasks list.
4
5Click Sharing and then select ???Allow other network users to connect through this computer???s Internet connection.???
Note: If your Internet connection and your local network use the same port
The following chapters explain AirPort security options, AirPort network design and setup, and other advanced options.
This chapter provides an overview of the security features available in AirPort.
Apple has designed its wireless devices to provide several levels of security, so
you can enjoy peace of mind when you access the Internet, manage online financial transactions, or send and receive email. The AirPort Extreme Base Station and
Time Capsule also include a slot for inserting a lock to deter theft.
For information and instructions for setting up these security features, see ???Setting Up the AirPort Extreme Network??? on page 17.
Security for AirPort Networks at Home
Apple gives you ways to protect your wireless AirPort network as well as the data that travels over it.
NAT Firewall
You can isolate your wireless network with firewall protection. Apple wireless devices have a
Closed Network
Creating a closed network keeps the network name and the very existence of your network private. Prospective users of your network must know the network name and password to access it. Use AirPort Utility, located in the Utilities folder in the Applications folder on a Macintosh computer using Mac OS X, or in Start > All Programs > AirPort on a computer using Windows, to create a closed network.
9
Password Protection and Encryption
AirPort uses password protection and encryption to deliver a level of security comparable to that of traditional wired networks. Users can be required to enter a password to log in to the AirPort network. When transmitting data and passwords,
the wireless device uses up to
it safe. If you???re setting up an
Note: WPA security is available only to AirPort Extreme wireless devices; AirPort and AirPort Extreme clients using Mac OS X 10.3 or later and AirPort 3.3 or later; and to
Security for AirPort Networks in Businesses and Classrooms
Businesses and schools need to restrict network communications to authorized users and keep data safe from prying eyes. To meet this need, Apple wireless devices and software provide a robust suite of security mechanisms. Use AirPort Utility to set up these advanced security features.
Transmitter Power Control
Because radio waves travel in all directions, they can extend outside the confines of a specific building. The Transmit Power setting in AirPort Utility lets you adjust the transmission range of your device???s network. Only users within the network vicinity have access to the network.
MAC Address Access Control
Every AirPort and wireless card have a unique Media Access Control (MAC) address. For AirPort Cards and AirPort Extreme Cards, the MAC address is sometimes referred to as the AirPort ID. Support for MAC address access control lets administrators set up a list of MAC addresses and restrict access to the network to only those users whose MAC addresses are in the access control list.
RADIUS Support
The Remote Authentication
There has been increasing concern about the vulnerabilities of WEP. In response, the
WPA and WPA2 use specifications that bring together
The main
TKIP provides enhanced data encryption by addressing the WEP encryption vulnerabilities, including the frequency with which keys are used to encrypt the wireless connection. 802.1X and EAP provide the ability to authenticate a user on the wireless network.
802.1X is a
The Message Integrity Check (MIC) is designed to prevent an attacker from capturing data packets, altering them, and resending them. The MIC provides a strong mathematical function in which the receiver and the transmitter each compute and then compare the MIC. If they do not match, the data is assumed to have been tampered with and the packet is dropped. If multiple MIC failures occur, the network may initiate countermeasures.
The EAP protocol known as TLS (Transport Layer Security) presents a user???s information in the form of digital certificates. A user???s digital certificates can comprise user names and passwords, smart cards, secure IDs, or any other identity credentials that the IT administrator is comfortable using. WPA uses a wide variety of
In addition to TKIP, WPA2 supports the
WPA and WPA2 have two modes:
??Personal mode, which relies on the capabilities of TKIP or
??Enterprise mode, which uses a separate server, such as a RADIUS server, for user authentication
WPA and WPA2 Personal
??For home or Small Office/Home Office (SOHO) networks, WPA and WPA2 operates in Personal mode, taking into account that the typical household or small office does not have an authentication server. Instead of authenticating with a RADIUS server, users manually enter a password to log in to the wireless network. When a user enters the password correctly, the wireless device starts the encryption process using TKIP or
WPA and WPA2 Enterprise
WPA is a subset of the draft IEEE 802.11i standard and effectively addresses the wireless local area network (WLAN) security requirements for the enterprise. WPA2 is a full implementation of the ratified IEEE 802.11i standard. In an enterprise with IT resources, WPA should be used in conjunction with an authentication server such as RADIUS to provide centralized access control and management. With this implementation in place, the need for
For more information about setting up a WPA or WPA2 protected network, see ???Using
This chapter provides overview information and instructions for the types of AirPort Extreme networks you can set up, and some of the advanced options of AirPort Extreme.
Use this chapter to design and set up your AirPort Extreme network.
Configuring your Apple wireless device to implement a network design requires three steps:
Step 1: Setting Up the AirPort Extreme Network
Computers communicate with the wireless device over the AirPort wireless network. When you set up the AirPort network created by the wireless device, you can name the wireless network, assign a password that will be needed to join the wireless network, and set other options.
Step 2: Configuring and Sharing Internet Access
When computers access the Internet through the AirPort Extreme network, the wireless device connects to the Internet and transmits information to the computers over the AirPort Extreme network. You provide the wireless device with settings appropriate for your ISP and configure how the device shares this connection with other computers.
Step 3: Setting Advanced Options
These settings are optional for most users. They include using the Apple wireless device as a bridge between your AirPort Extreme network and an Ethernet network, setting advanced security options, extending the AirPort network to other wireless devices, and
For specific instructions on all these steps, refer to the sections later in this chapter.
You can do most of your setup and configuration tasks using AirPort Utility, and following the onscreen instructions to enter your ISP and network information. To set advanced options, you need to use AirPort Utility to manually set up your Apple wireless device and AirPort network.
14
Using AirPort Utility
To set up and configure your computer or Apple wireless device to use AirPort Extreme for basic wireless networking and Internet access, use AirPort Utility and answer
a series of questions about your Internet settings and how you would like to set up your network.
1Open AirPort Utility, located in the Utilities folder in the Applications folder on a Mac, or in Start > All Programs > AirPort on a Windows computer.
2Select your device in the list on the left if there is more than one device in your network. Click Continue, and then follow the onscreen instructions to enter the settings from your ISP or network administrator for the type of network you want to set up. See the network diagrams later in this chapter for the types of networks you can set up using AirPort Utility.
To set up a more complicated network, or to make adjustments to a network you???ve already set up, use the manual setup features in AirPort Utility.
Setting AirPort preferences
Use AirPort preferences to set up your wireless device to alert you when there are updates available for your device. You can also set it up to notify you if there are problems detected, and to provide instructions to help solve the problems.
To set AirPort preferences:
1Open AirPort Utility, located in the Utilities folder inside the Applications folder on a Mac, and in Start > All Programs > AirPort on a Windows computer.
2Do one of the following:
??On a Mac, choose AirPort Utility > Preferences
??On a Windows computer, choose File > Preferences
Select from the following checkboxes:
??Select ???Check for Updates when opening AirPort Utility??? to automatically check the Apple website for software and firmware updates each time you open AirPort Utility.
??Select the ???Check for updates??? checkbox, and then choose a time interval from the
??Select ???Monitor Apple wireless devices for problems??? to investigate problems that may cause the device???s status light to blink amber. With the checkbox selected, AirPort Utility opens if a problem is detected, and then provides instructions to help resolve the problem. This option monitors all of the wireless devices on the network.
??Select ???Only Apple wireless devices that I have configured??? to monitor only the devices you???ve set up using this computer.
Monitoring devices for problems requires an AirPort wireless device that supports firmware version 7.0 or later.
To set up your wireless device manually:
1Open AirPort Utility, located in the Utilities folder in the Applications folder on a Mac, or in Start > All Programs > AirPort on a Windows computer.
2 Select your device in the list.
3 Choose Base Station > Manual Setup and enter the password if necessary. The default device password is public.
If you don???t see your wireless device in the list:
1 Open the AirPort status menu in the menu bar on a Mac and make sure that you???ve joined the AirPort network created by your wireless device. On a Windows computer, hover the cursor over the wireless network icon in the status tray to make sure the computer is connected to the correct network.
The default network name for an Apple wireless device is AirPort Network XXXXXX, where XXXXXX is replaced with the last six digits of the AirPort ID, (or MAC address). The AirPort ID is printed on the bottom of Apple wireless devices.
2Make sure your computer???s network and TCP/IP settings are configured properly.
On a computer using Mac OS X, choose AirPort from the Show
On a computer using Windows,
If you can???t open the wireless device settings:
1Make sure your network and TCP/IP settings are configured properly.
On a computer using Mac OS X, select AirPort from the network connection services list in the Network pane of System Preferences. Click Advanced, and then choose Using DHCP from the Configure IPv4
On a computer using Windows,
2Make sure you entered the wireless device password correctly. The default password is public. If you???ve forgotten the device password, you can reset it to public by resetting the device.
To temporarily reset the device password to public, hold down the reset button for one second. To reset the device back to its default settings, hold the reset button for five full seconds.
If you???re on an Ethernet network that has other devices, or you???re using Ethernet to connect to the device:
AirPort Utility scans the Ethernet network to create the list of devices. As a result, when you open AirPort Utility, you may see devices that you cannot configure.
Setting Up the AirPort Extreme Network
The first step in configuring your Apple wireless device is setting up the device and the network it will create. You can set up most features using AirPort Utility and following the onscreen instructions to enter the information from your ISP or network administrator.
To configure a network manually or set advanced options, open your wireless device???s configuration in AirPort Utility and manually set up your device and network.
1Choose the network of the wireless device you want to configure from the AirPort status menu on a computer using Mac OS X, or from the wireless connection icon in the status tray on a computer using Windows.
2Open AirPort Utility and select the wireless device from the list. If you don???t see the device you want to configure, click Rescan to scan for available wireless devices, and then select the one you want from the list.
3Choose Base Station > Manual Setup and enter the password if necessary. The default device password is public.
You can also
If the wireless device reports a problem, the status icon turns yellow. Click Base Station Status to display the problem and suggestions to resolve it.
Wireless Device Settings
Click the AirPort button, and then click Base Station or Time Capsule, depending on the device you???re setting up, to enter information about the wireless device.
Give the Device a Name
Give the device an easily identifiable name. This makes it easy for administrators to locate a specific device on an Ethernet network with several devices.
Change the Device Password
The device password protects its configuration so that only the administrator can modify it. The default password is public. It is a good idea to change the device password to prevent unauthorized changes to it.
If the password is not changed from public, you???ll not be prompted for a password when you select it from the list and click Configure.
Other Information
??Allow configuration over the WAN port. This allows you to administer the wireless device remotely.
??Advertise the wireless device over the Internet using Bonjour. If you have an account with a dynamic DNS service, you can connect to it over the Internet.
??Set the device time automatically. If you have access to a Network Time Protocol server, whether on your network or on the Internet, choose it from the
Set Device Options
Click Base Station Options and set the following:
??Enter a contact name and location for the wireless device. The name and location are included in some logs the device generates. The contact and location fields may be helpful if you???ve more than one wireless device on your network.
??Set status light behavior to either Always On or Flash On Activity. If you choose Flash On Activity, the device status light blinks when there is network traffic.
??If your wireless device supports it, select ???Check for firmware updates??? and choose an increment, such as Daily from the
Wireless Network Settings
Click Wireless, and enter the network name, radio mode, and other wireless information.
Setting the Wireless Mode
AirPort Extreme supports two wireless modes:
??Create a wireless network. Choose this option if you???re creating a new AirPort Extreme network.
??Extend a wireless network. Choose this option if you plan to connect another Apple wireless device to the network you???re setting up.
Naming the AirPort Extreme Network
Give your AirPort network a name. This name appears in the AirPort status menu on the
Choosing the Radio Mode
Choose 802.11a/n - 802.11b/g from the Radio Mode
Choose 802.11n - 802.11b/g if only computers with 802.11n, 802.11b, or 802.11g compatible wireless cards will join the network.
Note: If you don???t want to use an 802.11n radio mode, hold down the Option key and chose a radio mode that doesn???t include 802.11n.
Changing the Channel
The ???channel??? is the radio frequency over which your wireless device communicates. If you use only one device (for example, at home), you probably won???t need to change the channel frequency. If you set up several wireless devices in a school or office,
use different channel frequencies for devices that are within approximately 150 feet of each other.
Adjacent wireless devices should have at least 4 channels between their channel frequencies. So if device A is set to channel 1, device B should be set to channel 6 or 11. For best results, use channels 1, 6, or 11 when operating your device in the 2.4 GHz range.
Choose Manually from the Radio Channel Selection
To
??None: Choosing this option turns off all password protection for the network. Any computer with a wireless adapter or card can join the network, unless the network is set up to use access control. See ???Setting Up Access Control??? on page 47.
??WEP: If your device supports it, choose this option and enter a password to protect your network with a Wired Equivalent Privacy (WEP) password. Your Apple wireless device supports
??WPA/WPA2 Personal: Choose this option to protect your network with
??WPA/WPA2 Enterprise: Choose this option if you???re setting up a network that includes an authentication server, such as a RADIUS server, with individual user accounts. Enter the IP address and port number for the primary and optional secondary server, and enter a ???shared secret,??? which is the password for the server. Choose WPA2 Enterprise if you want only computers that support WPA2 to join the network.
??WEP (Transitional Security Network): If your device supports it, you can use this option to allow computers using WPA or WPA2 to join the network. Computers or devices that use WEP can also join the network. WEP (Transitional Security Network) supports
For more information and instructions for setting up WPA or WPA2 on your network, see ???Using
Setting Wireless Options
Click Wireless Options to set additional options for your network.
Setting Additional Wireless Options
Use the Wireless Options pane to set the following:
??5 GHz network name: Provide a name for the 5 GHz segment of the
??Country: Choose the country for the location of your network from the Country
??Multicast rate: Choose a multicast rate from the
??Transmit power: Choose a setting from the Transmit Power
??WPA Group Key Timeout: Enter a number in the text field, and choose an increment from the
??Use Wide Channels: If you set up your network to use the 5 GHz frequency range, you can use wide channels to provide higher network throughput.
Note: Using wide channels is not permitted in some countries.
??Create a closed network: Selecting a closed network hides the name of the network so that users must enter the exact network name and password to join the AirPort Extreme network.
??Use interference robustness: Interference robustness can solve interference problems caused by other devices or networks.
To set more advanced security options, see ???Keeping Your Network Secure??? on page 45.
Setting up a Guest Network
Click Guest Network and then enter the network name and other options for the guest network. When you set up a guest network, a portion of your connection to the Internet is reserved for ???guests???, wireless clients that can join the guest network and connect to the Internet without accessing your private network.
Select ???Allow guest network clients to communicate with each other??? to allow client computers to share files and services with each other while they???re connected to the guest network. Make sure sharing services are set up on the client computers.
Configuring and Sharing Internet Access
The next step is setting up your wireless device???s Internet connection and sharing its Internet access with client computers. The following sections tell you what to do, depending on how your device connects to the Internet.
You???re Using a DSL or Cable Modem
In most cases, you can implement this network design using AirPort Utility and following the onscreen instructions to set up your wireless device and network. You need to use AirPort Utility to manually set up your device only if you want to set up or adjust optional advanced settings.
What It Looks Like
to Ethernet port
2.4 or 5 GHz
Time Capsule
to Internet
How It Works
??The Apple wireless device (in this example, a Time Capsule) connects to the Internet through its Internet WAN (<) connection to your DSL or cable modem.
??Computers using AirPort or computers connected to the wireless device???s Ethernet LAN port (G) connect to the Internet through the device.
??The device is set up to use a single, public IP address to connect to the Internet, and uses DHCP and NAT to share the Internet connection with computers on the network using private IP addresses.
??AirPort computers and Ethernet computers communicate with one another through the wireless device.
Important: Connect Ethernet computers that are not connected to the Internet to the device???s LAN port (G) only. Since the device can provide network services, you must set it up carefully to avoid interfering with other services on your Ethernet network.
What You Need for a DSL or Cable Modem Connection
Internet account with DSL or cable modem service provider
Does your service provider use a static IP or DHCP configuration?
You can get this information from your service provider or the Network preferences pane on the computer you use to access the Internet through this service provider.
Apple wireless device (an AirPort Extreme Base Station, an AirPort Express, or a Time Capsule)
Place the device near your DSL or cable modem.
What to Do
If you???re using AirPort Utility to assist you with configuring the Apple wireless device for Internet access:
1Open AirPort Utility, located in the Utilities folder in the Applications folder on a Mac, or in Start > All Programs > AirPort on a Windows computer.
2Follow the onscreen instructions and enter the settings you received from your service provider to connect to the Internet, and then set up the device to share the Internet connection with computers on the network.
If you???re using AirPort Utility to manually set up your wireless device:
1Make sure that your DSL or cable modem is connected to the Ethernet WAN port (<) on your Apple wireless device.
2Open AirPort Utility, located in the Utilities folder in the Applications folder on a Mac, or in Start > All Programs > AirPort on a Windows computer. Select your wireless device and choose Base Station > Manual Setup, or
3Click the Internet button. Click Internet Connection and choose Ethernet or PPPoE from the Connect Using
Note: If you???re connecting to the Internet through a router using PPPoE and your Apple wireless device is connected to the router via Ethernet, you do not need to use PPPoE on your wireless device. Choose Ethernet from the Connect Using
4Choose Manually or Using DHCP from the Configure IPv4
??If your provider gave you an IP address and other numbers with your subscription, use that information to configure the wireless device IP address manually. If you aren???t sure, ask your service provider. Enter the IP address information in the fields below the Configure IPv4
?? If you chose PPPoE, your ISP provides your IP address automatically using DHCP.
Contact your service provider for the information you should enter in these fields.
Use this
If your service provider asks you for the MAC address of your wireless device, use the address of the Ethernet WAN port (<), printed on the label on the bottom of the device.
If you???ve already used AirPort Utility to set up your wireless device, the fields below the Configure IPv4
You can change the WAN Ethernet speed if you have specific requirements for the network you???re connected to. In most cases, the settings that are configured automatically are correct. Your service provider should be able to tell you if you need to adjust these settings.
Changing the WAN Ethernet speed can affect the way the wireless device interacts with the Internet. Unless your service provider has given you specific settings, use the automatic settings. Entering the wrong settings can affect network performance.
If you configure TCP/IP using DHCP, choose Using DHCP from the Configure IPv4
Your service provider may require you to enter information in these fields.
5If you chose PPPoE from the Connect Using
Note: With AirPort, you don???t need to use a
Contact your service provider for the information you should enter in these fields.
If you???re connecting to the Internet through a router that uses PPPoE to connect to the Internet, and your wireless device is connected to the router via Ethernet, you do not need to use PPPoE on your device. Choose Ethernet from the Connect Using
6 Click PPPoE to set PPPoE options for your connection.
??Choose Always On, Automatic, or Manual, depending on how you want to control when your wireless device is connected to the Internet.
If you choose Always On, your device stays connected to your modem and the Internet as long as the modem is turned on. If you choose Automatic, the wireless device connects to the modem, which connects to the Internet when you use an application that requires an Internet connection, such as email or an instant message or web application. If you choose Manual, you need to connect the modem to the Internet when you use an application that requires an Internet connection.
If you chose Automatic or Manual from the Connection
Note: If your wireless device is connected to your modem using an Ethernet LAN port, and your modem is connected to the Internet using PPPoE, you may not be able to use the manual setting.
??Enter Domain Name System (DNS) server addresses and a specific domain name your wireless device accesses when you connect to the Internet.
7Click the Network button and configure how the device will share its Internet access with AirPort and Ethernet computers.
If you chose Ethernet from the Connect Using
??To share a single Internet connection with AirPort computers and computers connected to the device with Ethernet using DHCP and NAT, choose ???Share a public IP address??? from the Connection Sharing
By default, the wireless device allows other devices, computers using Ethernet, and computers using AirPort to communicate with each other using
??To distribute a range of IP addresses using only DHCP, choose ???Distribute a range of IP addresses.??? See ???Setting DHCP Only Options??? on page 33.
??If you don???t want your wireless device to share its IP address, choose ???Off (Bridge Mode).??? If you set up your device in bridge mode, AirPort computers have access to all services on the Ethernet network, and the device does not provide Internet sharing services. See ???You???re Using an Existing Ethernet Network??? on page 37 for more information about setting up your wireless device as a bridge.
Using the wireless device as a bridge can be a way to address incompatibilities between the device???s Internet sharing features and your ISP???s connection method.
Setting DHCP and NAT Options
If you chose ???Share a public IP address??? from the Connection Sharing
??Choose a range of IP addresses from the DHCP Range
??Enter a number in the DHCP Lease field, and then choose minutes, hours, or days from the
??Type a welcome message in the DHCP Message field. This message is displayed when a computer joins your network.
??If your network is set up to use a Lightweight Directory Access Protocol (LDAP) server on your network, you can enter the address of the server in the LDAP Server field, and computers on your network will have access to it.
??To provide specific IP addresses to specific computers on your wireless network, click the Add (+) button below the DHCP Reservations list, and follow the onscreen instructions to name the reservation and reserve the address by MAC address or DHCP client ID. If you choose MAC address, click Continue and enter the MAC address and specific IP address.
Next you can set NAT options for the network. Click NAT.
??You can set up a default host on your network. A default host (sometimes known as a DMZ) is a computer on your network that is exposed to the Internet and receives all inbound traffic. A default host may be useful if you use a computer on your AirPort network to play network games, or want to route all Internet traffic through a single computer.
??You can set up NAT Port Mapping Protocol
Included in the protocol is a method for retrieving the public IP address of a NAT gateway, allowing a client to make this public IP address and port number known to peers that may wish to communicate with it. This protocol is implemented in current Apple products, including Mac OS X 10.4 Tiger and later, AirPort Extreme, AirPort Express, and Time Capsule networking products, and Bonjour for Windows.
You can also set up port mapping. To ensure that requests are properly routed to your web, AppleShare, or FTP server, or a specific computer on your network, you need to establish a permanent IP address for the server or computer, and provide ???inbound port mapping??? information to the Apple wireless device. See ???Directing Network Traffic to a Specific Computer on Your Network (Port Mapping)??? on page 49.
Setting DHCP Only Options
If you chose ???Distribute a range of IP addresses??? from the Connection Sharing
You can set the additional DHCP options, such as DHCP Lease, DHCP Message, and other options following the instructions above.
Setting Up Client Computers
To configure TCP/IP on client computers using Mac OS X v10.5:
1 Open System Preferences on the client computer and then click Network.
2Do one of the following:
a If the client computer is using AirPort, select AirPort in the network connection services list, and then click Advanced.
Next, choose DHCP from the Configure IPv4
bIf you enabled a DHCP server when you set up the wireless device???s network, and the client computer is using Ethernet, select Ethernet in the network connection services list, and then choose Using DHCP from the Configure
cIf you selected ???Distribute a range of IP addresses??? when you set up the wireless device???s network, you can provide Internet access to client computers using Ethernet by setting the client IP addresses manually. Select Ethernet in the network connection services list, and then choose Manually from the Configure
Enter the IP and router addresses from the range your device is providing. Enter the DNS and Search Domain addresses if necessary.
When you configure Ethernet clients manually for a wireless device that provides NAT over Ethernet, you can use IP addresses in the range 10.0.1.2 to 10.0.1.200.
In the Subnet Mask field, enter 255.255.255.0. In the Router field, enter 10.0.1.1.
Enter the same name server address and search domain information that you entered in the wireless device configuration.
To configure TCP/IP on client computers using Windows
Make sure you???ve installed the wireless adapter in your computer and the software necessary to set up the adapter.
To configure TCP/IP on client computers:
1 Open Control Panel from the Start menu, and then click ???Network and Internet.???
2 Click ???Network and Sharing Center.???
3 Click ???Manage network connections??? in the Tasks list.
4
5Click Internet Protocol Version 4 (TCP/IPv4), and then click Properties.
??If you chose ???Share a public IP address??? in the Network pane of AirPort Utility, select ???Obtain an IP address automatically.???
??If you chose ???Distribute a range of IP addresses??? when you set up the wireless device???s network, you can provide Internet access to client computers by setting the client IP addresses manually. Select ???Use the following IP address.???
When you configure clients manually for a wireless device that provides NAT service, use IP addresses in the range 10.0.1.2 to 10.0.1.200, 172.16.1.2 to 172.16.1.200, or 192.168.1.2 to 192.168.1.200.
In the ???Subnet mask??? field, enter 255.255.255.0. In the ???Default gateway??? field, enter 10.0.1.1, 172.16.1.1, or 192.168.1.1, depending on which addressing scheme you used. Enter the same name server address and search domain information that you entered in the wireless device configuration.
You???re Using an Existing Ethernet Network
You can use AirPort Utility to easily set up the Apple wireless device for Internet access through an existing Ethernet network that already has a router, switch, or other network device providing IP addresses. Use the manual setup features of AirPort Utility if you need to adjust optional advanced settings.
What It Looks Like
2.4 or 5 GHz
to Ethernet port
Time Capsule
to Internet
How It Works
??The Apple wireless device (in this example, a Time Capsule) uses your Ethernet network to communicate with the Internet through the Ethernet WAN port (<).
??AirPort and Ethernet clients access the Internet and the Ethernet network through the Apple wireless device.
What You Need for an Ethernet Connection
Apple wireless device (an AirPort Extreme Base Station, an AirPort Express, or a Time Capsule)
Set the device up in bridge mode.
What to Do
If you???re using AirPort Utility to help you set up an Apple wireless device on an existing Ethernet network:
1Open AirPort Utility, located in the Utilities folder in the Applications folder on a Mac, or in Start > All Programs > AirPort on a Windows computer.
4Choose Manually or Using DHCP from the Configure IPv4
If your addresses are provided manually, choose Manually from the Configure IPv4
Contact your network administrator for the information you should enter in these fields.
If your IP address is provided by DHCP, choose Using DHCP from the Configure IPv4
5Choose Off (Bridge Mode) from the Connection Sharing
See ???Setting Up Client Computers??? on page 33 for information about how to set up client computers to connect to the Ethernet network.
Connecting Additional Devices to Your AirPort Extreme Network
Connect a USB printer to the USB port of your Apple wireless device (in this example, a Time Capsule) and everyone on the network can print to it. Connect a USB hub to the USB port of an AirPort Extreme Base Station or a Time Capsule, and then connect a hard disk and a printer so everyone on the network can access them.
If you connect a Time Capsule, you can use Time Machine in Mac OS X Leopard (v10.5.2 or later) to back up all of the Mac OS X Leopard computers on the network.
What It Looks Like
2.4 or 5 GHz
2.4 or 5 GHz
2.4 or 5 GHz
AirPort Extreme
< Ethernet WAN port
to Internet
USB Printer
What to Do
Follow the instructions in the previous sections to set up your AirPort Extreme network depending on how you connect to the Internet or set up your wireless network. Connect a USB hard disk, printer, or hub to the USB port on your AirPort Extreme Base Station or Time Capsule.
Note: If you???re using an AirPort Express in your network, you can connect a USB printer to the USB port, and everyone on the network can print to it. AirPort Express doesn???t support connecting a USB hard disk.
Using Apple TV on Your AirPort Extreme Network to Play Content from iTunes
When you connect Apple TV to your AirPort Extreme network wirelessly, or using Ethernet, and then connect Apple TV to your widescreen TV, you can enjoy your favorite iTunes content including movies, TV shows, music, and more. (See the documentation that came with your Apple TV for instructions setting it up.)
to Ethernet port
2.4 or 5 GHz
2.4 GHz
Apple TV
Time Capsule
< Ethernet WAN port
DSL or cable modem
to Internet
Setting Advanced Options
Connecting Additional Wireless Devices to Your AirPort Network
You can connect additional Apple wireless devices to extend the range of your wireless network. For example, you can connect an AirPort Extreme Base Station or a Time Capsule using Ethernet. A network with devices connected using Ethernet is
known as a roaming network. You can also connect Apple wireless devices wirelessly to extend the network.
Setting Up Roaming
Several AirPort Extreme Base Stations or Time Capsules can be set up to create a single wireless network. Client computers using AirPort can move from device to device with no interruption in service (a process known as roaming).
To set up roaming:
1Connect all of the AirPort Extreme Base Stations and Time Capsules to the same subnet on your Ethernet network.
2 Give each device a unique name.
3 Give each device the same network name and password.
4 Set up the devices as bridges, following the instructions in the previous section.
If you want one device to assign IP addresses using DHCP, also do the following:
1 Set up one device to act as the DHCP server.
2Set up the other devices as bridges, following the instructions in the previous section.
The device acting as a DHCP server can also receive its IP address via DHCP from a server on an Ethernet network or from a cable or DSL modem connected to an Internet service provider (ISP).
Extending the Range of an 802.11n Network
Extending the range of an 802.11n network is simpler if you???re connecting another 802.11n device. Connecting two Apple 802.11n wireless devices makes the WDS setup process more straightforward.
To extend the range of an 802.11n network:
1Open AirPort Utility and select the device that will connect to the Internet. See the previous sections of this document for instructions about setting up your wireless device, depending on your Internet connection.
2Choose Base Station > Manual Setup, or
3 Click the AirPort button, and then click Wireless.
4Choose ???Create a wireless network??? from the Wireless Mode
5Next, select the device that will extend this network and choose Base Station > Manual Setup, or
6Choose ???Extend a wireless network??? from the Wireless Mode
7 Enter the network name and password if necessary.
8 Click Update to update the device with new network settings.
Controlling the Range of Your AirPort Network
You can also shorten the range of your AirPort network. This might be useful if you want to control who has access to the network by restricting the range to a single room, for example.
To shorten the range of your AirPort network:
1Open AirPort Utility (in the Utilities folder in the Applications folder on a Macintosh computer, or in Start > All Programs > AirPort on a computer using Windows).
2Select your wireless device and choose Base Station > Manual Setup, or
3 Click the AirPort button, and then click Wireless.
4Click Wireless Options, and then choose a percentage setting from the Transmit Power
Keeping Your Network Secure
Your network is protected by the password you assign to it. However, you can take additional steps to help keep your network secure.
Networks managed by Simple Network Management Protocol (SNMP) may be vulnerable to
To help protect your network and wireless device:
1Open AirPort Utility, select your device, and choose Base Station > Manual Setup, or
2 Click the Advanced button, and then click Logging & SNMP.
3Make sure the Allow SNMP Access and ???Allow SNMP over WAN??? checkboxes are not selected.
Using
AirPort Extreme supports WPA and WPA2 security standard for wireless networks. Using Mac OS X v10.3 or later or Windows XP with Service Pack 2, and 802.1X authentication capabilities, WPA security delivers more sophisticated data encryption than WEP, and also provides user authentication, which was virtually unavailable with WEP. If your computer has an AirPort Extreme wireless card installed, you can take advantage of the security updates in WPA2, including
AirPort Extreme supports two modes of WPA and WPA2: Enterprise mode, which uses an authentication server for user authentication, and Personal mode, which relies on the capabilities of TKIP for WPA and
Enterprise mode is designed for a larger network in which an IT professional is most likely setting up and managing the network. In order to set up a WPA or WPA2 Enterprise network, an 802.1X connection must be set up first in Network preferences on a Mac. To set up an 802.1x connection on a Windows computer, see the documentation that came with your computer. The 802.1X connection requires an authentication protocol, like TTLS, LEAP, or PEAP.
Setting up a WPA or WPA2 Enterprise network requires setting up an authentication server, such as a RADIUS server, to manage and validate network users??? credentials, such as user names, passwords, and user certificates. See the documentation that came with the server to set it up.
Personal mode is for the home or small office network and can be set up and managed by most users. Personal mode does not require a separate authentication server. Network users usually only need to enter a user name and password to join the network.
Note: If you change an existing WDS network from WEP to WPA, you???ll need to reset the wireless devices and set up your network again. For information about resetting your Apple wireless device, see the documentation that came with it.
To set up a WPA or WPA2 Enterprise network:
On a computer using Mac OS X, you first need to set up an 802.1x connection. 1 Open System Preferences, click Network, and then click AirPort.
2 Click Advanced, and then click 802.1X
3 Enter the settings for the connection.
Note: Some of the authentication protocols require digital certificate authorization on the server. See the documentation that came with your server to create and distribute digital certificates.
4Click OK to save the connection settings.
To use AirPort Utility to set up a WPA or WPA2 Enterprise network on computers using Mac OS X and Windows XP:
1Open AirPort Utility, select your wireless device, and then choose Base Station > Manual Setup, or
2 Choose WPA/WPA2 Enterprise, or WPA2 Enterprise from the Wireless Security
3 Click Configure RADIUS, and enter the IP address, port, and shared secret (or password) of the primary and secondary RADIUS authentication servers. Check with the administrator of the RADIUS server for information to type in these fields.
To set up a WPA or WPA2 Personal network:
1Open AirPort Utility, select your wireless device, and then choose Base Station > Manual Setup, or
2Choose WPA/WPA2 Personal or WPA2 Personal from the Wireless Security
3 Type a password of 8 to 63 ASCII characters.
Setting Up Access Control
Access control lets you specify which computers can send or receive information through the wireless device to the wired network.
Each
To find the MAC address (AirPort ID) of your computer???s AirPort Card, click the AirPort button in the Network pane of System Preferences.
To set up the access control list:
1Open AirPort Utility, select your wireless device, and then choose Base Station > Manual Setup. Enter the password if necessary.
2 Click the AirPort button, and then click Access.
3Choose Timed Access or RADIUS from the MAC Address Access Control
??If you choose Timed Access, click the Add (+) button and enter the MAC address and description or name of the computers you???re allowing to access the network. You can also click This Computer to add the MAC address and name of the computer you???re using to set up this wireless device.
??If you choose RADIUS, enter the type of RADIUS service, the RADIUS IP addresses, shared secret, and primary port for the primary RADIUS server. Enter the information for the secondary RADIUS server if there is one. Check with the server administrator if you don???t have that information.
Important: AirPort access control prevents computers that aren???t on the access control list from accessing the AirPort network. For information on how to prevent unauthorized computers from joining the AirPort network, see ???Setting Up the
AirPort Extreme Network??? on page 17.
You can also add the MAC address of a
Access control is not compatible with WPA or WPA2 Enterprise mode. You can use either access control or WPA Enterprise in a network, but you can???t use both.
Using a RADIUS Server
Using a RADIUS server on your network lets you authenticate MAC addresses (AirPort IDs) on a separate computer, so that each device on the network doesn???t need to store the MAC addresses of computers that have access to the network. Instead, all the addresses are stored on a server that is accessed through a specific IP address.
To set up authentication using a RADIUS server:
1 On the server, enter the MAC addresses of the computers that will access the network.
2When the RADIUS server is set up, open AirPort Utility, select your wireless device, and then choose Base Station > Manual Setup, or
3Click AirPort, click Access, and then choose RADIUS from the MAC Address Access Control
4Choose a format from the RADIUS
If you choose Default, your wireless device formats the MAC addresses as 010203- 0a0b0c, and they are used as the user names on the RADIUS server. The shared secret is the password for users joining the network. This format is often used for Lucent and Agere servers.
If you choose Alternate, MAC addresses are formatted as 0102030a0b0c and are used for both the user name and password by users joining the network. This format is often used for Cisco servers.
5Enter the IP address, port, and shared secret (or password) for the primary and secondary servers.
See the RADIUS documentation that came with your server, or check with the network administrator for more information on setting up the RADIUS server.
The access control list and RADIUS work together. When a user tries to join a network that authenticates using access control or a RADIUS server, the wireless device searches first in the access control list, and if the MAC address is there, the user can join the network. If the MAC address is not in the access control list, the device checks the RADIUS server for the MAC address. If it is there, the user can join the network.
Note: RADIUS access control is not compatible with WPA or WPA2 Personal mode.
You can use either RADIUS access control or WPA Enterprise in a network, but you can???t use both.
Directing Network Traffic to a Specific Computer on Your Network (Port Mapping)
AirPort Extreme uses Network Address Translation (NAT) to share a single IP address with the computers that join the AirPort Extreme network. To provide Internet access to several computers with one IP address, NAT assigns private IP addresses to each computer on the AirPort Extreme network, and then matches these addresses with port numbers. The wireless device creates a
If you???re using a web, AppleShare, or FTP server on your AirPort Extreme network, other computers initiate communication with your server. Because the Apple wireless device has no table entries for these requests, it has no way of directing the information to the appropriate computer on your AirPort network.
To ensure that requests are properly routed to your web, AppleShare, or FTP server, you need to establish a permanent IP address for your server and provide inbound port mapping information to your Apple wireless device.
To set up inbound port mapping:
1Open AirPort Utility, select your wireless device, and then choose Base Station > Manual Setup, or
2 Click the Advanced button, and then click Port Mapping.
3Click the Add (+) button and choose a service, such as Personal File Sharing, from the Service
Type any additional information you need in the text fields.
To use port mapping, you must configure TCP/IP manually on the computer that is running the web, AppleShare, or FTP server.
You can also set up a computer as a default host to establish a permanent IP address for the computer and provide inbound port mapping information to the AirPort Extreme Base Station or AirPort Express. This is sometimes known as a DMZ and is useful when playing some network games or video conferencing.
To set up a default host:
1Open AirPort Utility, select your wireless device, and then choose Base Station > Manual Setup, or
2 Click the Internet button, and then click NAT.
3 Select the ???Enable Default Host at??? checkbox. The default IP address is 10.0.1.253.
4 Enter the same IP address on the host computer.
Logging
You can set up your wireless device to log status information to the Mac OS X system log or the Syslog application on a Windows computer. This is helpful for understanding problems and monitoring a device???s performance.
To set up logging:
1Open AirPort Utility, select your wireless device, and then choose Base Station > Manual Setup, or
2 Click the Advanced button, and then click Statistics.
3Enter the IP address of the computer that will receive the logs in the Syslog Destination Address field.
4Choose a level from the Syslog Level
You need to assign a Network Time Protocol (NTP) server for each wireless device, so the log information will contain the accurate time of the status logs.
To set the time automatically:
1Open AirPort Utility, select your wireless device, and then choose Base Station > Manual Setup, or
2 Click the AirPort button, and then click Base Station.
3Select the ???Set time automatically??? checkbox, and then choose an NTP server from the
If you click ???Logs and Statistics??? you can view and export logs, and view wireless client and DHCP client information.
If you export the logs, use the Mac OS X Console application, located in the Utilities folder in the Applications folder on a Mac, or in Start > All Programs > AirPort on a Windows computer, to view the logs on the computer receiving them.
Using Back to My Mac on your Wireless Network
If you have a paid MobileMe subscription (not a free trial), you can use Back to My Mac to access your AirPort Base Station or Time Capsule. You can access the base station or Time Capsule to monitor the network or make changes to the base station or Time Capsule settings.
You can also access the hard disk built into the Time Capsule or an external USB hard disk connected to the base station or Time Capsule.
To set up Back to My Mac on your wireless device:
1 Click MobileMe in the Advanced pane.
2 Enter your MobileMe account and password.
Setting up IPv6
IPv6 is a new version of Internet Protocol (IP). IPv6 is currently used primarily by some research institutions. Most computers do not need to set up or use IPv6.
The primary advantage of IPv6 is that it increases the address size from 32 bits (the current IPv4 standard) to 128 bits. An address size of 128 bits is large enough to support billions and billions of addresses. This allows for more addresses or nodes than are currently available. IPv6 also provides more ways to set up the address and simpler autoconfiguration.
By default, IPv6 is configured automatically, and the default settings are sufficient. However, if your network administrator or Internet service provider (ISP) has specifically told you to configure IPv6 manually, follow the instructions below.
Open AirPort Utility, select your wireless device, and then choose Base Station > Manual Setup. Enter the password if necessary. Click the Advanced button, and then click IPv6.
To manually set IPv6 options:
1Choose Node or Tunnel from the IPv6 mode
2Choose Manually from the Configure IPv6
Customizing the IPv6 firewall
If your wireless device supports it, you can use AirPort Utility to adjust IPv6 firewall settings.
To adjust IPv6 firewall settings:
1Open AirPort Utility, located in the Utilities folder in the Applications folder on a Mac, or in Start > All Programs > AirPort on a Windows computer.
2 Select your device from the list, and then enter the password.
3Click the Advanced button, and then click IPv6 Firewall
By default,???Allow Teredo tunnels??? and ???Allow incoming IPSec authentication??? are selected.
To provide access to specific devices on your network from outside the IPv6 firewall, click the Add (+) button and enter the IPv6 address and/or the port for the device.
To use an IPv6 firewall, you need an Apple 802.11n wireless device.
Sharing and Securing USB Hard Disks on Your Network
If you connect a USB hard disk to your AirPort Extreme Base Station or Time Capsule, computers connected to the
If you???re using a Time Capsule, you don???t need to connect a hard disk to it. Every Time Capsule includes an internal AirPort disk.
To share a hard disk on your network:
1Plug the hard disk into the USB port on the back of the AirPort Extreme Base Station or Time Capsule.
2Open AirPort Utility, located in the Utilities folder in the Applications folder on a Mac, or in Start > All Programs > AirPort on a Windows computer.
3Select your AirPort Extreme Base Station or your Time Capsule, and then choose Base Station > Manual Setup, or
4 Click the Disks button, and then click File Sharing.
5Choose ???With a disk password,??? or ???With base station password??? if you want to secure the shared disk with a password, or choose ???With accounts??? if you want to secure the disk using accounts.
??If you choose to use accounts, click Configure Accounts, click the Add (+) button, and then enter a name and password for each user that will access the disk.
6Choose ???Not allowed,??????Read only,??? or ???Read and write??? to assign guest access to the disk.
7Select the ???Share disks over Ethernet WAN port??? checkbox if you want to provide remote access to the disk over the WAN port.
Data transfer speed may vary, depending on the network.
Using a Time Capsule in Your Network
If you???re using a Time Capsule and a computer with Mac OS X Leopard (v10.5.2 or later), you can use Time Machine to automatically back up all of the computers on the network that are using Leopard. Other Mac computers and Windows computers can access the Time Capsule???s internal AirPort disk to back up, store, and share files.
And because every Time Capsule is also a
Time Capsule 2.4 GHz
2.4 or 5 GHz
DSL or cable modem
2.4 or 5 GHz
For information about using your Time Capsule with Time Machine in Mac OS X Leopard, search for ???Time Capsule??? in Mac Help.
Connecting a USB Printer to an Apple Wireless Device
You can connect a compatible USB printer to your Apple wireless device (an AirPort Extreme Base Station, AirPort Express, or Time Capsule), so that anyone on the network using Mac OS X v10.2.3 or later, Windows XP with Service Pack 2, or Windows Vista can print to that printer.
To use a printer on your network:
1 Connect the printer to the USB port on the Apple wireless device.
2Set up the client computers:
??On a computer using Mac OS X v10.5 or later, open System Preferences and click Print & Fax. Select the printer from the Printers list. If the printer isn???t in the list, click Add (+) at the bottom of the list, locate the printer, and then click Add.
??On a computer using Mac OS X v10.2.3 or later, open Printer Setup Utility located in the Utilities folder in the Applications folder, and then select the printer from the list. If the printer is not in the list, click Add, choose Bonjour from the
??On a computer using Windows, install Bonjour for Windows from AirPort Utility CD, and follow the onscreen instructions to connect to the printer.
You can change the name of the printer from the default name to one you choose.
To change the name of your USB printer:
1Open AirPort Utility, select your device, and then choose Base Station > Manual Setup, or
2 Click the Printer button and type a name for the printer in the USB Printers field.
Adding a Wireless Client to Your 802.11n Network
If your Apple wireless device supports it, and your network is
When you allow a client access to your network, the client???s name and wireless MAC address (or AirPort ID) are stored in the access control list of AirPort Utility until you remove them from the list. You can provide 24 hours of access, after which time the client will no longer be able to access your network.
When you provide a client access to your wireless network, the client does not need to enter the network password.
To allow client access to your network:
1Open AirPort Utility, located in the Utilities folder in the Applications folder on a Mac, or in Start > All Programs > AirPort on a Windows computer.
2Select your Apple wireless device and choose Base Station > Manual Setup. Enter the password if necessary.
3 Choose Add Wireless Clients from the Base Station menu.
4Select how you want the client to access the network:
??Select PIN to enter the
??Select ???First attempt??? to allow network access to the first client attempting to join the network.
??Select ???Limit client???s access to 24 hours??? if you want to provide only one day of access to your network. If you don???t select this option, the client will have access to your network until you remove the name from the list.
Solving Problems
If you have trouble connecting to the Internet with any AirPort Extreme network design, try the following:
On a computer using Mac OS X:
??Make sure the wireless device is connected to the Internet. The computers on your AirPort network cannot connect to the Internet if your device is not connected to the Internet.
??Check your Internet connection using your computer. If you can???t connect with your computer, the problem may be with your Internet connection.
??On a Mac using Mac OS X v10.5, check the active network services in the Network pane of System Preferences. Make sure the ports you want to use are active.
??Open Network preferences and then click AirPort. Make sure that the computer has joined the AirPort network created by your wireless device.
??Restart your computer. This renews the IP address you receive from the wireless device. The IP addresses should be in the range of 10.0.1.2 to 10.0.1.200, 172.16.1.2 to 172.16.1.200, or 192.168.1.2 to 192.168.1.200, depending on the address scheme the wireless device uses.
??If the wireless device is set up as a DHCP server, make sure you choose ???Share a public IP address??? from the Connection Sharing
??If you???re using a cable modem and your wireless device cannot connect to the Internet, turn off the cable modem, wait a few minutes, and then turn it on again.
On a computer using Windows:
??Make sure the wireless device is connected to the Internet. The computers on your AirPort network cannot connect to the Internet if your device is not connected to the Internet.
??Check your Internet connection using your computer. If you can???t connect with your computer, the problem may be with your Internet connection.
??
??Make sure that the computer has joined the AirPort network created by your wireless device.
??Restart your computer. This renews the IP address you receive from the wireless device. The IP addresses should be in the range of 10.0.1.2 to 10.0.1.200, 172.16.1.2 to 172.16.1.200, or 192.168.1.2 to 192.168.1.200 depending on the address scheme the device uses.
??If the device is set up as a DHCP server, make sure the ???Obtain an IP address automatically??? checkbox is selected in the General pane of Internet Protocol (TCP/IP) Properties.
More Information About AirPort
You can find more information about AirPort in the following locations:
??AirPort Utility Help
Look in AirPort Utility Help for information on setting up an AirPort Extreme network; using an AirPort Extreme Base Station, an AirPort Express, or a Time Capsule; editing settings; avoiding sources of interference; locating additional information on the Internet; and more. On a computer using Mac OS X, open AirPort Utility and choose Help > AirPort Utility Help. On a computer using Windows, open AirPort Utility and click Help.
??World Wide Web
Apple AirPort website at www.apple.com/airportextreme Apple Support website at www.apple.com/support/airport
This chapter defines terms and concepts used to discuss computer networks. Use it as a reference to help you understand what is taking place behind the scenes of your
AirPort wireless network.
Basic Networking
Packets and Traffic
Information travels across a network in chunks called packets. Each packet has a header that tells where the packet is from and where it???s going, like the address on the envelope when you send a letter. The flow of all these packets on the network is called traffic.
How Information Reaches Its Destination
Hardware Addresses
Your computer ???listens??? to all of the traffic on its local network and selects the packets that belong to it by checking for its hardware address (also called the media access control, or MAC address) in the packet header. This address is a number unique to your computer.
Every hardware product used for networking is required to have a unique hardware address permanently embedded in it. Your AirPort Card???s number is called the AirPort ID.
IP Addresses
Since the Internet is a network of networks (connecting millions of computers), hardware addresses alone are not enough to deliver information on the Internet. It would be impossible for your computer to find its packets in all the world???s network traffic, and impossible for the Internet to move all traffic to every network.
59
So, your computer also has an Internet Protocol (IP) address that defines exactly where and in what network it???s located. IP addresses ensure that your local Ethernet network receives only the traffic intended for it. Like the hierarchical system used to define zip codes, street names, and street numbers, IP addresses are created according to a set of rules, and their assignment is carefully administered.
The hardware address is like your name; it uniquely and permanently identifies you. But it doesn???t offer any clues about your location, so it???s only helpful in a local setting. An IP address is like your street address, which contains the information that helps letters and packages find your house.
Rules for Sending Information (Protocols)
A protocol is a set of rules that define how communication takes place. For instance, a networking protocol may define how information is formatted and addressed, just as there???s a standard way to address an envelope when you send a letter.
Using the AirPort Extreme Base Station
This section describes the different network interfaces of the AirPort Extreme Base
Station and describes the functions the base station can provide.
Base Station Interfaces
To use the AirPort Extreme Base Station, you configure how its networking interfaces will be used. The AirPort Extreme Base Station has five hardware networking interfaces:
??AirPort interface: The AirPort interface creates an AirPort network for AirPort- enabled computers to join. The base station can provide IP services such as DHCP and NAT using this interface. The base station cannot use the AirPort interface to establish a connection with the Internet.
??Ethernet WAN (<) interface: Use the Ethernet WAN interface to connect DSL or cable modems and connect to the Internet.
??Ethernet LAN (G) interface: If your base station has one or more Ethernet LAN interface ports, you can use them to provide IP services to local Ethernet clients.
??USB (d) interface: Use the USB interface to connect a USB printer or hard disk to the AirPort Extreme Base Station.
Using the Time Capsule
This section describes the different network interfaces of the Time Capsule and describes the functions it can provide.
Time Capsule Interfaces
To use your Time Capsule, you configure how its networking interfaces will be used. The Time Capsule has five hardware networking interfaces:
??AirPort interface: The AirPort interface creates an AirPort network for AirPort- enabled computers to join. The Time Capsule can provide IP services such as DHCP and NAT using this interface. The Time Capsule cannot use the AirPort interface to establish a connection with the Internet.
??Ethernet WAN (<) interface: Use the Ethernet WAN interface to connect DSL or cable modems and connect to the Internet.
??Ethernet LAN (G) interface: The Time Capsule has three Ethernet LAN interface ports. You can use them to provide IP services to local Ethernet clients.
??USB (d) interface: Use the USB interface to connect a USB printer to the Time Capsule.
Using the AirPort Express
This section describes the different network interfaces of the AirPort Express Base Station and describes the functions the base station can provide.
AirPort Express Interfaces
To set up the AirPort Express Base Station, you configure how its networking interfaces will be used. The AirPort Express Base Station has four hardware networking interfaces:
??AirPort interface: The AirPort interface creates an AirPort network for AirPort- enabled computers to join. The base station can provide IP services such as DHCP and NAT using this interface. The base station cannot use the AirPort interface to establish a connection with the Internet.
??Ethernet WAN (<) interface: Use the Ethernet WAN interface to connect DSL or cable modems and connect to the Internet.
??USB (d) interface: Use the USB interface to connect a USB printer to the AirPort Extreme Base Station.
??Audio
Apple Wireless Device Functions
??Bridge: Each Apple wireless device is configured by default as a bridge between the wireless AirPort network and the wired Ethernet network. Connecting an AirPort network to an Ethernet network through the device???s Ethernet LAN port (G) bridges the wireless AirPort network to the wired Ethernet network.
Important: If you???re connecting an Ethernet network to the device???s Ethernet LAN port (G), make sure the Ethernet network does not have an Internet connection.
??NAT router: One of the most powerful features of Apple wireless devices is their ability to share one Internet connection with several computers. To provide this service, the device acts as a router. The device can be configured to provide both bridging services and routing services at the same time.
??DHCP server: When you configure the wireless device to act as a DHCP server, it provides IP addresses to both wired and wireless client computers that are configured to obtain IP addresses using DHCP. Using DHCP makes IP configuration
simple for client computers, since they don???t need to enter their own IP information.
Items That Can Cause Interference with AirPort
The farther away the interference source, the less likely it is to cause a problem. The following items can cause interference with AirPort communication:
??Microwave ovens
??DSS (Direct Satellite Service) radio frequency leakage
??The original coaxial cable that came with certain types of satellite dishes. Contact the device manufacturer and obtain newer cables.
??Certain electrical devices, such as power lines, electrical railroad tracks, and power stations
??Cordless telephones that operate in the 2.4 gigahertz (GHz) range. If you have problems with your phone or AirPort communication, change the channel of your base station.
??Other AirPort and wireless networks
??Adjacent base stations using nearby channels. If base station A is set to channel 1, base station B should be set to channel 6 or 11. For best results, use channels 1, 6, or 11 when operating your base station in the 2.4 GHz range.
??Moving objects that temporarily place metal between your computer and the base station
Glossary
Glossary
802.11a An IEEE standard for a wireless network that operates at 5 GHz with rates up to 54 Mbps.
802.11b An IEEE standard for a wireless network that operates at 2.4 GHz with rates up to 11 Mbps.
802.11g An IEEE standard for a wireless network that operates at 2.4 GHz
802.11n A task group of the IEEE 802.11 committee whose goal is to define a standard for high throughput speeds of at least 100 Mbps on wireless networks. Some proposals being fielded by the task group include designs for up to 540 Mbps,
access point Also known as a wireless access point (WAP), a device that connects wireless devices together to form a network.
authentication The process that occurs after association to verify the identity of the wireless device or end user and allow access to the network. See WPA, WPA2.
64
backbone The central part of a large network that links two or more subnetworks. The backbone is the primary data transmission path on large networks such as those of enterprises and service providers. A backbone can be wireless or wired.
bandwidth The maximum transmission capacity of a communications channel at any point in time. Bandwidth, usually measured in bits per second (bps), determines the speed at which information can be sent across a network. If you compare the communications channel to a pipe, bandwidth represents the pipe width and determines how much data can flow through the pipe at any one time. The greater the bandwidth, the faster data can flow. See bps.
base station In the area of wireless computer networking, a base station is a radio receiver/transmitter that serves as the hub of the local wireless network, and may also be the gateway between a wired network and the wireless network. A base station can also be referred to as an access point or router.
Bluetooth A technology designed for
bps Bits per second. A measure of data transmission speed across a network or communications channel; bps is the number of bits that can be sent or received per second. It measures the speed at which data is communicated and should not
bridge A wireless device that connects multiple networks together. Using an access point as a bridge turns off Network Address Translation (NAT) and DHCP routing and simply extends the range of service.
broadband A comparatively fast Internet connection possessing sufficient bandwidth to accommodate multiple voice, data, and video channels simultaneously. Cable, DSL, and satellite are all considered to be broadband channels; they provide much greater speed than
broadband modem A device that connects a local computer or network to a high- speed Internet service, such as DSL or Cable Internet. See cable modem, DSL.
cable modem A device used with broadband Internet service provided by a traditional cable TV service. Cable modems convert analog data from the cable TV system into a digital format that can be used by a computer. See broadband modem.
channel One portion of the available radio spectrum that all devices on a wireless network use to communicate. Changing the channel on the access point/router can help reduce interference.
client Any computer or device connected to a network that requests files and services (files, print capability) from the server or other devices on the network. The term also refers to end users.
DHCP Dynamic Host Configuration Protocol. A protocol for dynamically assigning IP addresses from a predefined list to nodes on a network. When they log on, network nodes automatically receive an IP address from a pool of addresses served by a DHCP. The DHCP server provides (or leases) an IP address to a client for a specific period of time. The client will automatically request a renewal of the lease when the lease is about to run out. If a lease renewal is not requested and it expires, the address is returned to the pool of available IP addresses. Using DHCP to manage IP addresses simplifies client configuration and efficiently utilizes IP addresses. See IP address.
DNS Domain Name System. An Internet service that translates alphanumeric domain names to assigned IP addresses and vice versa. The term is typically used to describe the server that makes the translation. Every website has its own specific IP address on the Internet. DNS typically refers to a database of Internet names and addresses that translates the alphanumeric names to the official Internet Protocol numbers and vice versa. For instance, a DNS server converts a name like mywebsite.com to a series of numbers like 107.22.55.26. See IP, IP address.
DSL Digital Subscriber Line. A dedicated digital circuit between a residence or business and a telephone company???s central office. It allows
encryption A mechanism for providing data confidentiality. See WPA, WPA2.
Ethernet The most popular international standard technology for wired local area networks (LANs). It provides from 10 Mbps transmission speeds on basic
firewall A system of software and/or hardware that resides between two networks to prevent access by unauthorized users. The most common use of a firewall is to provide security between a local network and the Internet. Firewalls can make a network appear invisible to the Internet and can block unauthorized and unwanted users from accessing files and systems on the network. Hardware and software firewalls monitor and control the flow of data in and out of computers in both wired and wireless enterprise, business and home networks. They can be set to intercept, analyze, and stop a wide range of Internet intruders and hackers.
gateway In the wireless world, a gateway is an access point with additional software capabilities such as providing NAT and DHCP. Gateways may also provide VPN support, roaming, firewalls, various levels of security, and so on.
hotspot A location where users can access the Internet using
hub A multiport device used to connect client devices to a wired Ethernet network. Hubs can have numerous ports and can transmit data at speeds ranging from 10 to 1000 Mbps to all the connected ports. A small wired hub may only connect 4 computers; a large hub can connect 48 or more. See router.
IEEE 802.11 The family of specifications developed by the Institute of Electrical and Electronics Engineers (IEEE) 802.11 committee, which establishes standards for wireless Ethernet networks. 802.11 standards define the
IP Internet Protocol. The basic communications protocol of the Internet. See IP address, TCP/IP.
IP address Internet Protocol address. IP Version 4, the most widely used Internet protocol, provides a
a server or a workstation) within that network. The newer IP, Version 6, provides a
IP subnet An IP subnet is a local network as defined by IP network numbers. Connecting to a subnet involves connecting to the appropriate hardware network and configuring IP for that network.
LAN Local area network. A system of connecting PCs and other devices within the same physical proximity for sharing resources such as an Internet connections, printers, files, and drives. When
MAC address Media Access Control address. A unique hardware number that identifies each device on a network. A device can be a computer, printer, and so on. A MAC address is also known as an AirPort ID.
Mbps Megabits per second. A measurement of data speed equivalent to a million bits per second.
MIMO
NAT Network Address Translation. A network capability that enables multiple computers to dynamically share a single incoming IP address from a
network name A name used to identify a wireless network. See SSID.
NIC Network interface card. A wireless or wired PC adapter card that allows the client computer to utilize network resources. Most
packet A unit of information transmitted from one device to another on a network. A packet typically contains a header with addressing information, data, and a checksum mechanism to ensure data integrity.
pass phrase A series of characters used to create a key that is used by
print server A network device, often a computer, that connects to at least one printer, allowing it to be shared among computers on a network.
PSK
roaming
router A wireless router is a device that accepts connections from wireless devices to a network, includes a network firewall for security, and provides local network addresses. See hub.
server A computer that provides resources or services to other computers and devices on a network. Types of servers include print servers, Internet servers, mail servers, and DHCP servers. A server can also be combined with a hub or router. See DHCP, hub, router.
SSID Service set identifier. A unique
subnet An IP address range that is part of a larger address range. Subnets are used to subdivide a network address of a larger network into smaller networks. Subnets connect to other networks through a router. Each individual wireless LAN will typically use the same subnet for all of its clients. See IP address, router.
TCP Transmission Control Protocol. The
TCP/IP The underlying technology of Internet communications. While IP handles the actual delivery of data, TCP tracks the data packets to efficiently route a message through the Internet. Every computer in a TCP/IP network has its own IP address that is either dynamically assigned at startup (see DHCP) or permanently assigned as a static address. All TCP/IP messages contain the address of the destination network, as well as the address of the destination station. This enables TCP/IP messages to be transmitted to multiple networks (subnets) within an organization or worldwide. For example, when a user downloads a webpage, TCP divides the page file on the web server into packets, numbers the packets, and forwards them individually to the user???s IP address. The packets may be routed along different paths before reaching the user???s address. At the destination, TCP reassembles the individual packets, waiting until they have all arrived to present them as a single file. See IP, IP address, packet, TCP.
throughput Usually measured in bps, Kbps, Mbps or Gbps, throughput is the amount of data that can be sent from one location to another in a specific amount of time. See bps, Mbps.
USB Universal Serial Bus. A
WEP Wired equivalent privacy. The original security standard used in wireless networks to encrypt the wireless network traffic. See WPA, Wireless local area network.
wireless network Devices connected to a network using a centralized wireless access point. See WLAN.
WLAN A data communications network that spans large local, regional, national, or international areas and is usually provided by a public carrier (such as a telephone company or service provider).The term is used to distinguish between
See LAN.
WPA - Enterprise
WPA - Personal
WPA2
WPA2 - Enterprise
WPA2 - Personal
www.apple.com/airportextreme
www.apple.com/airport
?? 2009 Apple Inc. All rights reserved.
Apple, the Apple logo, AirPort, AirPort Extreme, AppleShare, AppleTalk, Back to My Mac, Bonjour, Mac,
and Mac OS are trademarks of Apple Inc., registered in the U.S. and other countries. AirPort Express, AirTunes, Time Capsule, and Time Machine are trademarks of Apple Inc. Other product and company names mentioned herein may be trademarks of their respective companies.