Home » Netgear Manuals » Wireless » Netgear WAG302NA » Manual Viewer

Netgear WAG302NA Reference Manual - Page 41

Key 1, Wireless Client Security Separator

UPC - 606449039467

Add to My Manuals
Save this manual to your list of manuals

Page 41 highlights

Reference Manual for the NETGEAR ProSafe Dual Band Wireless Access Point WAG302 Note: You must configure Radius Server Settings (see Figure 3-13 on page 3-27) with either Legacy 802.1x or WPA with Radius option. • Data Encryption: Select the desired option. If enabled (64 bit, 128 bit or 152 bits) the keys must be entered, and other wireless stations must use the same keys. The default is None. - The 64- and 128-bit option are the standard encryption strength options. - The 152-bit key length is a proprietary mode that will only work with other wireless devices that support this mode. - The TKIP option is automatically enabled when either WPA with Radius or WPA-PSK authentication type is selected. • Passphrase: To use the passphrase to generate the keys, enter a passphrase and click the Generate Keys button. You can also enter the keys directly. These keys must match the other wireless stations. Only 8 to 63 characters can be entered if Legacy 802.1x or WPA with Radius authentication option is selected. • Key 1, Key 2, Key 3, Key 4: Select the key to be used as the default key. Data transmissions are always encrypted using the default key. The other keys can only be used to decrypt received data. The four entries will be disabled if Legacy 802.1x or WPA with Radius authentication option is selected. • Re-authentication Time: The time interval in seconds after which the supplicant will be authenticated again with the Radius Server. The default is 3600 seconds. • Global-key Update: Check on this option to enable Re-keying of Global Key. The Global Key Re-Key can be done based on time interval in seconds or number of packets exchanged using the global key. The default is 3600 seconds. • Update if any station disassociates: Check on this option to refresh global key when any stations disassociated with wireless Access Point. • Wireless Client Security Separator: The associated wireless clients will not be able to communicate with each other if this feature is enabled. The default setting is Disable. Basic Installation and Configuration 202-10078-01 3-19

Section	Page
Technical Support	2
Trademarks	2
Statement of Conditions	2
Federal Communications Commission (FCC) Compliance Notice: Radio Frequency Notice	3
Antenna Statement for North America and Australia	5
Industry Canada Compliance Statement	5
Product and Publication Details	6
Contents	7
Chapter 1 About This Manual	11
Audience, Scope, Conventions, and Formats	11
How to Use This Manual	12
How to Print this Manual	13
Chapter 2 Introduction	15
About the WAG302 ProSafe Dual Band Wireless Access Point	15
Key Features	16
AutoCell-The Self-Organizing Wireless Network	17
802.11a/g Standards-based Wireless Networking	18
Autosensing Ethernet Connections with Auto Uplink	18
Compatible and Related NETGEAR Products	18
System Requirements	19
What’s In the Box?	19
Hardware Description	20
Front Panel	20
Rear Panel	21
Chapter 3 Basic Installation and Configuration	23
Observing Placement and Range Guidelines	23
Cabling Requirements	24
Default Factory Settings	25
Understanding WAG302 Wireless Security Options	26
Installing the WAG302 Access Point	27
How to Log In to the WAG302 Using Its Default IP Address	34
Understanding Basic Wireless Settings	35
Wireless Settings 11a	35
Wireless Settings 11b/g	37
Understanding WEP/WPA Security Options	40
Before You Change the SSID and WEP Settings	42
802.11a Configuration	42
802.11b/g Configuration	43
How to Set Up and Test Basic Wireless Connectivity	44
How to Restrict Wireless Access by MAC Address	45
How to Configure WEP	46
How to Configure WPA with Radius	48
How to Configure WPA-PSK	51
Using the Basic IP Settings Options	52
Chapter 4 Management	55
Remote Management	55
Using the Secure Telnet Interface	56
How to Use the CLI via the Console Port	56
CLI Commands	57
Using Syslog and Activity Log Information	58
Viewing General and Statistical Information	59
General Information	59
Statistics	62
Viewing a List of Attached Devices	63
Upgrading the Wireless Access Point Software	64
Configuration File Management	64
Saving and Retrieving the Configuration	65
Restoring the WAG302 to the Factory Default Settings	65
Using the Reset Button to Restore Factory Default Settings	66
Rebooting the Access Point	66
Changing the Administrator Password	67
Chapter 5 Advanced Configuration	69
Understanding Advanced IP Settings for Wireless Clients	69
Understanding Advanced Wireless Settings	71
AutoCell RF Management	72
Configuration	73
Auto RF Management	73
Enhanced RF Security ‘Stealth Mode’	74
AutoCell AP/Client Interaction	74
Additional AutoCell View Management Options	75
Configuring Wireless LAN Parameters	76
Enabling Wireless Bridging and Repeating	77
How to Configure a WAG302 as a Point-to-Point Bridge	78
How to Configure Multi-Point Wireless Bridging	79
How to Configure Wireless Repeating	81
Chapter 6 Troubleshooting	83
No lights are lit on the access point.	83
The Wireless LAN activity light does not light up.	84
The LAN light is not lit.	84
I cannot access the Internet or the LAN with a wireless capable computer.	84
I cannot connect to the WAG302 to configure it.	85
When I enter a URL or IP address I get a timeout error.	85
Using the Reset Button to Restore Factory Default Settings	86
Appendix A Specifications	87
Specifications for the WAG302	87
Appendix B Wireless Networking Basics	89
Wireless Networking Overview	89
Infrastructure Mode	89
Ad Hoc Mode (Peer-to-Peer Workgroup)	90
Network Name: Extended Service Set Identification (ESSID)	90
Authentication and WEP Data Encryption	91
802.11 Authentication	91
Open System Authentication	92
Shared Key Authentication	92
Overview of WEP Parameters	93
Key Size	94
WEP Configuration Options	95
Wireless Channels	95
802.11b/g Wireless Channels	95
802.11a Wireless Channels	97
WPA Wireless Security	98
How Does WPA Compare to WEP?	99
How Does WPA Compare to IEEE 802.11i?	100
What are the Key Features of WPA Security?	100
WPA Authentication: Enterprise-level User Authentication via 802.1x/EAP and RADIUS	102
WPA Data Encryption Key Management	104
Temporal Key Integrity Protocol (TKIP)	105
Michael	105
Optional AES Support to be Phased In	105
Is WPA Perfect?	106
Product Support for WPA	106
Supporting a Mixture of WPA and WEP Wireless Clients is Discouraged	106
Changes to Wireless Access Points	107
Changes to Wireless Network Adapters	107
Changes to Wireless Client Programs	108
Appendix C Command Line Reference	109
Command Sets	109

Match case Limit results 1 per page

Reference Manual for the NETGEAR ProSafe Dual Band Wireless Access Point WAG302

Basic Installation and Configuration

3-19

202-10078-01

Note

: You must configure Radius Server Settings (see

Figure 3-13

page 3-27

) with either

Legacy 802.1x

WPA with Radius

option.

•

Data Encryption

: Select the desired option. If enabled (64 bit, 128 bit or 152 bits) the keys

must be entered, and other wireless stations must use the same keys. The default is None.

–

The 64- and 128-bit option are the standard encryption strength options.

–

The 152-bit key length is a proprietary mode that will only work with other wireless

devices that support this mode.

–

The TKIP option is automatically enabled when either

WPA with Radius

WPA-PSK

authentication type is selected.

•

Passphrase

: To use the

passphrase

to generate the keys, enter a passphrase and click the

Generate Keys

button. You can also enter the keys directly. These keys must match the other

wireless stations. Only 8 to 63 characters can be entered if

Legacy 802.1x

WPA with

Radius

authentication option is selected.

•

Key 1, Key 2, Key 3, Key 4

: Select the key to be used as the default key. Data transmissions

are always encrypted using the default key. The other keys can only be used to decrypt

received data. The four entries will be disabled if

Legacy 802.1x

WPA with Radius

authentication option is selected.

•

Re-authentication Time

: The time interval in seconds after which the supplicant will be

authenticated again with the Radius Server. The default is 3600 seconds.

•

Global-key Update

: Check on this option to enable Re-keying of Global Key. The Global

Key Re-Key can be done based on time interval in seconds or number of packets exchanged

using the global key. The default is 3600 seconds.

•

Update if any station disassociates

: Check on this option to refresh global key when any

stations disassociated with wireless Access Point.

•

Wireless Client Security Separator

: The associated wireless clients will not be able to

communicate with each other if this feature is enabled. The default setting is Disable.