Netgear WN203 User Manual - Page 34
Security Profile Concepts, Con and Enable Security, Profiles
View all Netgear WN203 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 34 highlights
ProSAFE Single Band 802.11n Wireless Access Point WN203 Security profiles let you configure unique security settings for each SSID on each radio of the wireless access point. For each radio, the wireless access point supports up to eight security profiles (BSSIDs) that you can configure on the individual Edit Wireless Network screens that are accessible from the Edit Security Profile screen (see Configure and Enable Security Profiles on page 36). Security Profile Concepts Security profiles include the following main components: • Network authentication The wireless access point is set by default as an open system with no authentication. When you configure network authentication, bear in mind that not all wireless adapters support WPA or WPA2. Consult the product documentation for your wireless adapter and WPA or WPA2 client software for instructions about how to configure WPA or WPA2 settings. For information about the types of network authentication that the wireless access point supports, see Configure and Enable Security Profiles on page 36. • Data encryption The available data encryption options depend on the network authentication setting that you select (the default is no encryption). The data encryption settings are explained in Configure and Enable Security Profiles on page 36. • Wireless client security separation If this feature is enabled, the associated wireless clients (using the same SSID) are not able to communicate with each other. This feature is useful for hotspots and other public access situations. By default, wireless client separation is disabled. For more information, see Configure and Enable Security Profiles on page 36. • VLAN ID If this feature is enabled and if the network devices (hubs and switches) on your LAN support the VLAN (802.1Q) standard, the default VLAN ID for the wireless access point is associated with each profile. The default VLAN ID needs to match the IDs that are used by the other network devices. For more information, see Configure and Enable Security Profiles on page 36. Some concepts and guidelines regarding the SSID are explained in the following list: • A basic service set (BSS) consists of a group of wireless clients and a single wireless access point that use the same security profile or service set identifier (BSSID). The actual identifier in the BSSID is the MAC address of the wireless radio. (A wireless radio can have multiple MAC addresses, one for each security profile.) • An extended service set (ESS) consists of a group of wireless clients and multiple wireless access points that use the same identifier (ESSID). • Different wireless access points within an ESS can use different channels. To reduce interference, adjacent wireless access points should use different channels. • Roaming is the ability of wireless clients to connect wirelessly when they physically move from one BSS to another one within the same ESS. The wireless client automatically changes to the wireless access point with the least interference or best performance. Wireless Configuration and Security 34