Motorola WA840GP User Guide - Page 92

Section 3

Configuration

3-58

WA840

You will find that the wireless security settings on the SECURITY page are essentially

broken down into enabling two security components on your network:

•

Authentication

methods – means of establishing identification criteria by which

wireless clients are recognized (akin to different types of ID cards).

WIRELESS AUTHENTICATION METHODS

1)

802.11 Authentication

, which re-uses encryption keys as identification criteria.

2)

802.1X Authentication

, which introduces a RADIUS (Remote Authentication Dial-In

User Service) authentication server to verify the identity of a client device with a

“shared secret” (similar to a password) and dynamically generate an encryption key.

802.1X Authentication can be used with or without 802.11 Authentication

.

3)

Wi-Fi Protected Access (WPA)

authentication, a recent standard issued by the Wi-

Fi Alliance, which advocates the use of either 802.1X or a Pre Shared Key (PSK)

authentication method, based on enterprise or home wireless use.

The PSK method,

typically used in home applications, is called

WPA-PSK

.

WPA-PSK uses a pass

phrase (similar to a password, but not limited to one word) to automatically generate

encryption keys, and does not require a RADIUS server.

4)

Wi-Fi Protected Access version 2 (WPA2

TM

)

authentication, an updated standard

issued by the Wi-Fi Alliance, but still advocating the use of either 802.1X or a PSK

authentication method.

The updated PSK method is called

WPA2-PSK

.

WPA2-PSK,

like WPA-PSK, uses a pass phrase to automatically generate encryption keys, and

does not require a RADIUS server.

•

Encryption

methods – means of encoding data transmitted over the wireless

network, so that only devices with a proper decoder can read that data.

Encryption

methods use “keys” to encode and decode data.

WIRELESS ENCRYPTION METHODS

1)

Wired Equivalent Privacy (WEP)

, which requires the manual entry of a 64-bit or

128-bit encryption key.

The same key must be used at both ends of the wireless link.

WEP uses this key until it is manually changed, making WEP inherently less secure

than other encryption methods.

WEP is the only encryption method that is compatible

with 802.11 or 802.1X authentication.

2)

Temporal Key Integrity Protocol (TKIP)

, a more powerful encryption method which

periodically changes the encryption key to increase security.

TKIP encryption

requires WPA, WPA-PSK, WPA2, or WPA2-PSK authentication.

3)

Advanced Encryption Standard (AES)

, a high-grade encryption method tested to

government standards.

AES encryption requires WPA, WPA-PSK, WPA2, or WPA2-

PSK authentication.

Remember that securing your wireless network requires that you use the same

authentication and encryption methods in the WA840 and

in the devices with which it will

communicate.

If you have a set of wireless devices with varying authentication and/or encryption

capabilities, the WA840 can concurrently support multiple methods, accommodating some

combinations.

Section	Page
Contents	4
Section 1:Overview	7
Features	8
Understanding Your User Guide	9
Box Contents	9
Understanding Functions	10
Access Point	10
LAN	10
TCP/IP	10
Static IP Address	10
Dynamic IP Address	10
Positioning Your Access Point	10
Wireless Range	11
Technical Specifications	11
Type of Networks	11
Access Point Mode	12
WDS Access Point Mode	12
Wireless-Only Broadband Router Mode	12
Access Point Physical Description	14
Back of Access Point	14
Front of Access Point	15
LED Description	16
Section 2: Installation	17
Hardware Setup	17
Antenna Installation	17
Access Point Physical Installation	18
Horizontal Installation	18
Vertical Installation	19
Wall Mount Installation	19
Electrical Connection to Access Point	22
Easy Software Setup	23
Manual Software Setup	23
Wired Connection to Access Point	23
Wireless Connection to Access Point	24
Configure Your Computers	26
Configuring Windows 98SE and ME	27
Configuring Windows 2000	29
Configuring Windows XP	32
Section 3: Configuration	35
Accessing the Web-Based Configuration Utility	36
Logging In	36
Overview of Configuration Pages	37
Navigation Between Pages	37
The BASIC Configuration Page	38
BASIC Page – Commonly Used Configuration Options	38
BASIC Page – All Configuration Options	40
Options related to: CONTROLLING ACCESS TO THE CONFIGURATION UTILITY	40
Options related to: ENABLING PRIMARY ACCESS POINT FUNCTIONS	40
Options related to: ENABLING TIME-RELATED FUNCTIONS	42
Options related to: LOGGING WA840 ACTIVITY	43
BASIC Page Action Buttons	44
The LAN (Local Area Network) Configuration Page	45
LAN Page – Commonly Used Configuration Options	45
LAN Page – All Configuration Options	46
Options related to: SELECTING THE WA840 LOCAL AREA NETWORK PROTOCOL	46
Options related to: ENABLING THE WA840 BUILT-IN DHCP SERVER	47
Options related to: OPTIMIZING LOCAL AREA NETWORK ROUTING	48
LAN Page Action Buttons	49
The WAN (Wide Area Network) Configuration Page	50
WAN Page – Commonly Used Configuration Options	51
WAN Page – All Configuration Options	52
Options related to: SELECTING THE WA840 BROADBAND CONNECTION PROTOCOL	52
Options related to: SETTING UP A STATIC BROADBAND CONNECTION	53
Options related to: SETTING UP A PPPoE BROADBAND CONNECTION	54
Options related to: SETTING UP A LINK TO A DYNAMIC DOMAIN NAME SERVICE	56
Options related to: OPTIMIZING WAN ROUTING	57
WAN Page Action Buttons	58
The STATUS Configuration Page	59
STATUS Page Configuration Options	59
The FILTERS Configuration Page	60
FILTERS Page – Commonly Used Configuration Options	60
FILTERS Page – All Configuration Options	61
FILTERS Page Action Buttons	63
FILTERS Page Examples – Establishing Parental Controls on Internet Use	64
Blocking Internet Use at All Times – Using MAC Addresses	64
Blocking Internet Use at All Times – Using IP Addresses	65
Blocking Internet Use at Particular Times	66
Blocking Specific Types of Internet Use at Particular Times	68
The ROUTING Configuration Page	70
ROUTING Page – Commonly Used Configuration Options	70
ROUTING Page – All Configuration Options	71
ROUTING Page Action Buttons	75
The WIRELESS Configuration Page	76
WIRELESS Page – Commonly Used Configuration Options	78
WIRELESS Page – All Configuration Options	79
Options related to: ESTABLISHING YOUR WIRELESS NETWORK	79
Options related to: ENSURING INTEROPERABILITY WITH WIRELESS DEVICES	80
Options related to: CUSTOMIZING WIRELESS DATA THROUGHPUT	81
Options related to: OPTIMIZING WIRELESS OPERATION FOR YOUR ENVIRONMENT	82
Options related to: BOOSTING WIRELESS PERFORMANCE (with compatible clients)	83
Options related to: OPTIMIZING WIRELESS PERFORMANCE FOR MULTIMEDIA (Voice and/or Video)	85
Options related to: CONFIGURING THE WA840 AS A WIRELESS BRIDGE (to extend an existing wireless network)	87
Options related to: RESTRICTING WIRELESS ACCESS TO SPECIFIC USERS	89
WIRELESS Page Action Buttons	90
The SECURITY Configuration Page	91
SECURITY Page – Recommended Configuration Options	93
SECURITY Page – All Configuration Options	95
Options related to: SELECTING WIRELESS AUTHENTICATION METHODS	95
Options related to: ENABLING WIRELESS ENCRYPTION METHODS	98
Options related to: SETTING UP COMPATIBILITY WITH A RADIUS SERVER	100
SECURITY Page Action Buttons	101
SECURITY Page Example – Matching Settings in the WA840 and Wireless Clients	102
The FIRMWARE Configuration Page	106
FIRMWARE Page Configuration Options	106
Section 4: Troubleshooting	107
Contact Us	107
Hardware Solutions	107
My computer is experiencing difficulty in connecting to the wireless network.	108
Software Solutions	108
I would like to test to see if my Internet connection is live.	108
I cannot access the Web-based Configuration Utility for the access point.	109
How do I extend my wireless network to cover more area?	110
I cannot browse past the first screen of the Web-based Configuration Utility	110
How do I match WEP keys between the access point and my wireless clients?	110

Motorola WA840GP User Guide - Page 92

Authentication, Encryption, WIRELESS ENCRYPTION METHODS

Page 92 highlights