Home » ZyXEL Manuals » Networking » ZyXEL N4100 » Manual Viewer

ZyXEL N4100 User Guide - Page 200

User Authentication, Encryption, Table 50

Get ZyXEL N4100 PDF manuals and user guides

Add to My Manuals
Save this manual to your list of manuals

Page 200 highlights

Chapter 25 Wireless LAN This type of security is fairly weak, however, because there are ways for unauthorized wireless devices to get the SSID. In addition, unauthorized wireless devices can still see the information that is sent in the wireless network. 25.5.3.2 User Authentication Authentication is the process of verifying whether a wireless device is allowed to use the wireless network. You can make every user log in to the wireless network before they can use it. However, every device in the wireless network has to support IEEE 802.1x to do this. For wireless networks, you can store the user names and passwords for each user in a RADIUS server. This is a server used in businesses more than in homes. If you do not have a RADIUS server, you cannot set up user names and passwords for your users. Unauthorized wireless devices can still see the information that is sent in the wireless network, even if they cannot use the wireless network. Furthermore, there are ways for unauthorized wireless users to get a valid user name and password. Then, they can use that user name and password to use the wireless network. 25.5.3.3 Encryption Wireless networks can use encryption to protect the information that is sent in the wireless network. Encryption is like a secret code. If you do not know the secret code, you cannot understand the message. The types of encryption you can choose depend on the type of authentication. (See Section 25.5.3.2 on page 200 for information about this.) Table 50 Types of Encryption for Each Type of Authentication NO AUTHENTICATION RADIUS SERVER Weakest No Security Static WEP WPA-PSK Strongest WPA2-PSK WPA WPA2 For example, if the wireless network has a RADIUS server, you can choose WPA or WPA2. If users do not log in to the wireless network, you can choose no encryption, static WEP, WPA-PSK, or WPA2-PSK. Usually, you should set up the strongest encryption that every device in the wireless network supports. For example, suppose you have a wireless network with the N4100 and you do not have a RADIUS server. Therefore, there is no 200 N4100 User's Guide

Section	Page
N4100	1
About This User's Guide	3
Document Conventions	5
Safety Warnings	7
Contents Overview	9
Table of Contents	11
User’s Guide	19
Introduction	21
1.1 Overview	21
1.2 Managing the N4100	21
1.3 Good Habits for Managing the N4100	22
1.4 Applications for the N4100	22
1.4.1 Internet Access	22
1.4.2 Wireless Connection	23
1.5 Restoring Factory Defaults	24
1.5.1 Using the Reset Button	24
1.6 LEDs (Lights)	25
The Web Configurator	27
2.1 Overview	27
2.1.1 Accessing the Web Configurator	27
2.2 Web Configurator Main Screen	29
2.2.1 Navigation Panel	29
2.2.2 Main Window	32
2.2.3 Status Bar	32
2.2.4 Wizard Setup Screens	32
2.2.5 System Quick View Screen	33
Tutorials	35
3.1 Overview	35
3.2 Wireless Network Setup	35
3.2.1 Configuring the N4100 Wireless Network Settings	36
3.2.2 Connecting to the N4100 Wirelessly	37
3.3 Subscriber Authentication and Account Generation	38
3.3.1 Creating Accounts in the Web Configurator	39
3.3.2 Using a Statement Printer to Create Accounts and Print Subscriber Statements	41
3.3.3 Viewing the Account List	41
3.4 Subscriber Login	42
3.5 Report Printing Using the SP300E	42
3.5.1 Reports Overview	43
3.5.2 Key Combinations	43
3.5.3 Daily Account Summary	43
3.5.4 Monthly Account Summary	44
3.5.5 Account Report Notes	45
3.5.6 System Status	45
3.5.7 Network Statistics	47
3.6 Using DDNS to access the N4100	49
3.6.1 Registering a DDNS Account on www.dyndns.org	49
3.6.2 Configuring DDNS on Your N4100	50
3.6.3 Testing the DDNS Setting	50
3.7 Accessing the Devices on the LAN from the WAN	51
3.8 Using SSL Security for Connections between the N4100 and your Computer	52
3.8.1 Activating SSL Security for Management Connections	52
3.8.2 Viewing and Installing the SSL Security Certificate	53
3.8.3 Activating SSL Security for Subscriber Logins	58
3.8.4 Using a New Certificate for SSL Security	58
Technical Reference	61
System Setup	63
4.1 Overview	63
4.1.1 What You Can Do in this Chapter	63
4.1.2 What You Need to Know	63
4.2 The System Screen	64
4.3 Technical Reference	67
4.3.1 iPnP ZyXEL Implementation	68
4.3.2 How iPnP Works	69
WAN/LAN	71
5.1 Overview	71
5.1.1 What You Can Do in this Chapter	71
5.1.2 What You Need to Know	71
5.2 The WAN/LAN Screen	73
5.3 Technical Reference	76
Server	81
6.1 Overview	81
6.1.1 What You Can Do in this Chapter	81
6.1.2 What You Need to Know	81
6.2 The Server Screen	84
6.3 The Static DHCP Table Screen	86
Authentication	89
7.1 Overview	89
7.1.1 What You Can Do in this Chapter	89
7.2 The Authentication Screen	89
RADIUS	93
8.1 Overview	93
8.1.1 What You Can Do in this Chapter	93
8.2 The RADIUS Screen	93
Billing	99
9.1 Overview	99
9.1.1 What You Can Do in this Chapter	99
9.1.2 What You Need to Know	99
9.2 The Billing Screen	100
Accounting	103
10.1 Overview	103
10.1.1 What You Can Do in this Chapter	103
10.1.2 What You Need to Know	103
10.2 The Accounting Screen	104
10.2.1 Charge By Levels Example	106
Credit Card	109
11.1 Overview	109
11.1.1 What You Can Do in this Chapter	109
11.2 The Credit Card Screen	110
Keypad	113
12.1 Overview	113
12.1.1 What You Can Do in this Chapter	113
12.2 The Keypad Screen	114
12.3 Keypad Configuration Examples	115
12.3.1 Keypad with Pre-Paid Billing Example	115
12.3.2 Keypad with Post-Paid Billing Example	117
Customization	119
13.1 Overview	119
13.1.1 What You Can Do in this Chapter	119
13.1.2 What You Need to Know	119
13.2 The Login Page Screen	120
13.2.1 Standard	122
13.2.2 Redirect	123
13.2.3 Advanced	125
13.2.4 Frame	126
13.3 The Logo Screen	127
13.4 The Information Windows Screen	128
13.5 The Account Printout Screen	129
13.6 The Credit Card Screen	134
13.6.1 Credit Card Standard Login Page	135
13.6.2 Credit Card Service Selection Page	136
13.6.3 Credit Card Successful Page	139
13.6.4 Credit Card Fail Page	140
Pass Through	143
14.1 Overview	143
14.1.1 What You Can Do in this Chapter	143
14.2 The Pass Through Screen	143
Filtering	147
15.1 Overview	147
15.1.1 What You Can Do in this Chapter	147
15.2 The Filtering Screen	147
Share	151
16.1 Overview	151
16.1.1 What You Can Do in this Chapter	151
16.2 The Share Screen	151
Portal Page, Advertisement Links and Walled Garden	153
17.1 Overview	153
17.1.1 What You Can Do in this Chapter	153
17.1.2 What You Need to Know	153
17.2 The Portal Page Screen	154
17.3 The Advertisement Screen	155
17.4 The Walled Garden Screen	156
17.4.1 Walled Garden Login Example	156
DDNS	159
18.1 Overview	159
18.1.1 What You Can Do in this Chapter	159
18.1.2 What You Need to Know	159
18.2 The DDNS Screen	160
LAN Devices	163
19.1 Overview	163
19.1.1 What You Can Do in this Chapter	163
19.1.2 What You Need to Know	163
19.2 The LAN Devices Screen	164
19.2.1 LAN Device Management Example	165
Syslog	167
20.1 Overview	167
20.1.1 What You Can Do in this Chapter	167
20.2 The Syslog Screen	168
20.3 The Log Settings Screen	170
Session Trace	175
21.1 Overview	175
21.1.1 What You Can Do in this Chapter	175
21.2 The Session Trace Screen	176
21.3 Session Trace Filename Convention	178
Secure Remote	181
22.1 Overview	181
22.1.1 What You Can Do in this Chapter	181
22.2 The Secure Remote Screen	181
SNMP	183
23.1 Overview	183
23.1.1 SNMP Traps	184
23.1.2 What You Can Do in this Chapter	184
23.2 The SNMP Screen	184
Bandwidth	187
24.1 Overview	187
24.1.1 What You Can Do in this Chapter	187
24.2 The Bandwidth Screen	188
Wireless LAN	189
25.1 Overview	189
25.1.1 What You Can Do in this Chapter	189
25.2 What You Need to Know	189
25.3 Before You Begin	191
25.4 The Wireless Screen	192
25.5 Technical Reference	198
25.5.1 Wireless Network Overview	198
25.5.2 Additional Wireless Terms	199
25.5.3 Wireless Security Overview	199
Account Generator	203
26.1 Overview	203
26.1.1 What You Can Do in this Chapter	203
26.2 The Account Generator Screen	204
Licensing	207
27.1 Overview	207
27.1.1 What You Can Do in this Chapter	207
27.2 The Registration Screen	207
27.3 The Service Screen	209
System Status	211
28.1 Overview	211
28.1.1 What You Can Do in this Chapter	211
28.2 The System Screen	212
28.3 The Account List Screen	216
28.4 The Account Log Screen	218
28.5 The Current User Screen	220
28.6 The DHCP Client Screen	221
28.7 The Session List Screen	222
28.8 The LAN Devices Screen	223
28.8.1 Accessing a LAN Device	224
Configuration and Firmware	225
29.1 Overview	225
29.1.1 Some Warnings	225
29.1.2 What You Can Do in this Chapter	225
29.1.3 What You Need To Know	225
29.2 The Configuration Screen	226
29.2.1 Backup Configuration Using HTTP	226
29.2.2 Backup Configuration Using TFTP	228
29.2.3 Restore Configuration Using HTTP	229
29.2.4 Restore Configuration Using TFTP	230
29.2.5 Restore Factory Defaults	232
29.3 The Firmware Screen	232
29.3.1 Manual Firmware Upgrade Using the Web Configurator	233
29.3.2 Manual Firmware Upgrade via TFTP Server	234
29.3.3 Manual Boot Code Upgrade Using the Web Configurator	235
29.3.4 Scheduled Firmware Upgrade	236
System Account	239
30.1 Overview	239
30.1.1 What You Can Do in this Chapter	239
30.2 The System Account Screen	240
SSL Certificate	243
31.1 Overview	243
31.1.1 What You Can Do in this Chapter	243
31.2 The SSL Certificate Screen	243
Ping Command	245
32.1 Overview	245
32.1.1 What You Can Do in this Chapter	245
32.2 The Ping Command Screen	245
Restart	247
33.1 Overview	247
33.1.1 What You Can Do in this Chapter	247
33.2 The Restart Screen	247
Troubleshooting	249
34.1 Overview	249
34.2 Power, Hardware Connections, and LEDs	249
34.3 N4100 Access and Login	250
34.4 Internet Access	251
34.5 Wireless LAN Troubleshooting	252
Product Specifications	255
Setting Up Your Computer’s IP Address	261
Pop-up Windows, JavaScripts and Java Permissions	291
IP Addresses and Subnetting	301
Wireless LANs	313
Common Services	329
Open Software Announcements	333
Legal Information	339

Match case Limit results 1 per page

Chapter 25 Wireless LAN

N4100 User’s Guide

200

This type of security is fairly weak, however, because there are ways for

unauthorized wireless devices to get the SSID. In addition, unauthorized wireless

devices can still see the information that is sent in the wireless network.

25.5.3.2

User Authentication

Authentication is the process of verifying whether a wireless device is allowed to

use the wireless network. You can make every user log in to the wireless network

before they can use it. However, every device in the wireless network has to

support IEEE 802.1x to do this.

For wireless networks, you can store the user names and passwords for each user

in a RADIUS server. This is a server used in businesses more than in homes. If you

do not have a RADIUS server, you cannot set up user names and passwords for

your users.

Unauthorized wireless devices can still see the information that is sent in the

wireless network, even if they cannot use the wireless network. Furthermore,

there are ways for unauthorized wireless users to get a valid user name and

password. Then, they can use that user name and password to use the wireless

network.

25.5.3.3

Encryption

Wireless networks can use encryption to protect the information that is sent in the

wireless network. Encryption is like a secret code. If you do not know the secret

code, you cannot understand the message.

The types of encryption you can choose depend on the type of authentication.

(See

Section 25.5.3.2 on page 200

for information about this.)

For example, if the wireless network has a RADIUS server, you can choose WPA or

WPA2. If users do not log in to the wireless network, you can choose no

encryption, static WEP, WPA-PSK, or WPA2-PSK.

Usually, you should set up the strongest encryption that every device in the

wireless network supports. For example, suppose you have a wireless network

with the N4100 and you do not have a RADIUS server. Therefore, there is no

Table 50

Types of Encryption for Each Type of Authentication

NO AUTHENTICATION

RADIUS SERVER

Weakest

No Security

WPA

Static WEP

WPA-PSK

Strongest

WPA2-PSK

WPA2