Home » ZyXEL Manuals » Networking » ZyXEL G-220 » Manual Viewer

ZyXEL G-220 User Guide - Page 44

Limitations of WPS, CLIENT 1

Get ZyXEL G-220 PDF manuals and user guides

Add to My Manuals
Save this manual to your list of manuals

Page 44 highlights

ZyXEL G-220 v2 User's Guide Figure 25 WPS: Example Network Step 3 EXISTING CONNECTION CLIENT 1 REGISTRAR EXISTING CONNECTION AP1 CLIENT 2 SECURITY INFO ENROLLEE AP1 3.3.4 Limitations of WPS WPS has some limitations of which you should be aware. • WPS works in Infrastructure networks only (where an AP and a wireless client communicate). It does not work in Ad-Hoc networks (where there is no AP). • When you use WPS, it works between two devices only. You cannot enroll multiple devices simultaneously, you must enroll one after the other. For instance, if you have two enrollees and one registrar you must set up the first enrollee (by pressing the WPS button on the registrar and the first enrollee, for example), then check that it successfully enrolled, then set up the second device in the same way. • WPS works only with other WPS-enabled devices. However, you can still add non-WPS devices to a network you already set up using WPS. WPS works by automatically issuing a randomly-generated WPA-PSK or WPA2-PSK pre-shared key from the registrar device to the enrollee device. Whether the network uses WPA-PSK or WPA2-PSK depends on the device. You can check the configuration interface of the registrar device to discover the key the network is using (if the device supports this feature). Then, you can enter the key into the non-WPS device and join the network as normal (the non-WPS device must also support WPA-PSK or WPA2-PSK). • When you use the PBC method, there is a short period (from the moment you press the button on one device to the moment you press the button on the other device) when any WPS-enabled device could join the network. This is because the registrar has no way of identifying the "correct" enrollee, and cannot differentiate between your enrollee and a rogue device. This is a possible way for a hacker to gain access to a network. 44 Chapter 3 Wireless LAN Network

Section	Page
User’s Guide	1
About This User's Guide	3
Document Conventions	4
Safety Warnings	6
Copyright	7
Certifications	8
ZyXEL Limited Warranty	10
Table of Contents	11
List of Figures	15
List of Tables	19
Getting Started	21
1.1 About Your G-220 v2	21
1.2 Application Overview	21
1.2.1 Windows Vista Users	21
1.2.2 Station Mode	21
1.2.2.1 Infrastructure	21
1.2.2.2 Ad-Hoc	22
1.2.3 Access Point Mode	23
1.2.4 Changing G-220 v2 Mode	23
1.3 G-220 v2 Hardware and Utility Installation	24
1.3.1 ZyXEL Utility Icon	24
1.4 Configuration Methods	24
1.4.1 Enabling WZC	24
1.4.2 Accessing the ZyXEL Utility	25
Tutorial	27
2.1 Connecting to a Wireless LAN	27
2.2 Creating and Using a Profile	29
2.3 Configuring the G-220 v2 as an AP	32
Wireless LAN Network	35
3.1 Wireless LAN Overview	35
3.2 Wireless LAN Security	36
3.2.1 Hide SSID	36
3.2.2 MAC Address Filter	36
3.2.3 User Authentication and Encryption	37
3.2.3.1 WEP	37
3.2.3.2 IEEE 802.1x	38
3.2.3.3 WPA and WPA2	38
3.3 WiFi Protected Setup	39
3.3.1 Push Button Configuration	39
3.3.2 PIN Configuration	39
3.3.3 How WPS Works	41
3.3.3.1 Example WPS Network Setup	42
3.3.4 Limitations of WPS	44
3.4 Introduction to OTIST	45
3.4.1 Enabling OTIST	45
3.4.1.1 AP	45
3.4.1.2 Wireless Client	46
3.4.2 Starting OTIST	47
3.4.3 Notes on OTIST	47
Wireless Station Mode Configuration	49
4.1 Wireless Station Mode Overview	49
4.1.1 ZyXEL Utility Screen Summary	49
4.2 The Link Info Screen	50
4.2.1 Trend Chart	51
4.3 The Site Survey Screen	52
4.3.1 Security Settings	53
4.3.1.1 WEP Encryption	54
4.3.1.2 WPA-PSK/WPA2-PSK	55
4.3.1.3 WPA/WPA2	56
4.3.1.4 IEEE 802.1x	57
4.3.2 Confirm Save Screen	59
4.4 The Profile Screen	60
4.4.1 Adding a New Profile	62
4.5 The Adapter Screen	66
4.6 Security Settings in Windows Vista	69
4.6.1 Using PEAP in Vista	69
4.6.2 Using TLS in Vista	70
Access Point Mode Configuration	73
5.1 Access Point Mode Introduction	73
5.1.1 ZyXEL Utility Screen Summary	73
5.1.2 Additional Setup Requirements	74
5.2 The Link Info Screen	74
5.3 The Configuration Screen	75
5.4 The MAC Filter Screen	77
Maintenance	79
6.1 The About Screen	79
6.2 Uninstalling the ZyXEL Utility	79
6.3 Upgrading the ZyXEL Utility	80
Troubleshooting	83
7.1 Problems Starting the ZyXEL Utility	83
7.2 Problem Connecting to an Access Point	83
7.3 Problem with the Link Quality	84
7.4 Problems Communicating With Other Computers	84
Product Specifications	85
Access Point Mode Setup Example	87
Configuring the Computer on Which You Install the G-220 v2	87
Configuring the Wireless Station Computer	89
Management with Wireless Zero Configuration	91
Activating Wireless Zero Configuration	91
Connecting to a Wireless Network	92
Security Settings	95
Association	96
Authentication	97
Ordering the Preferred Networks	100
Wireless Security	103
Types of EAP Authentication	103
EAP-MD5 (Message-Digest Algorithm 5)	103
EAP-TLS (Transport Layer Security)	104
EAP-TTLS (Tunneled Transport Layer Service)	104
PEAP (Protected EAP)	104
LEAP	104
Dynamic WEP Key Exchange	104
WPA and WPA2	105
Encryption	105
User Authentication	106
WPA(2)-PSK Application Example	107
WPA(2) with RADIUS Application Example	107
Security Parameters Summary	108
Setting up Your Computer’s IP Address	109
Windows 95/98/Me	109
Installing Components	110
Configuring	111
Verifying Settings	112
Windows 2000/NT/XP	112
Verifying Settings	116
Macintosh OS 8/9	116
Verifying Settings	118
Macintosh OS X	118
Verifying Settings	119
Customer Support	121

Match case Limit results 1 per page

ZyXEL G-220 v2 User’s Guide

Chapter 3 Wireless LAN Network

Figure 25

WPS: Example Network Step 3

CLIENT 1

AP1

REGISTRAR

CLIENT 2

EXISTING CONNECTION

SECURITY INFO

ENROLLEE

AP1

EXISTING CONNECTION

3.3.4

Limitations of WPS

WPS has some limitations of which you should be aware.

•

WPS works in Infrastructure networks only (where an AP and a wireless client

communicate). It does not work in Ad-Hoc networks (where there is no AP).

•

When you use WPS, it works between two devices only. You cannot enroll multiple

devices simultaneously, you must enroll one after the other.

For instance, if you have two enrollees and one registrar you must set up the first enrollee

(by pressing the WPS button on the registrar and the first enrollee, for example), then

check that it successfully enrolled, then set up the second device in the same way.

•

WPS works only with other WPS-enabled devices. However, you can still add non-WPS

devices to a network you already set up using WPS.

WPS works by automatically issuing a randomly-generated WPA-PSK or WPA2-PSK

pre-shared key from the registrar device to the enrollee device. Whether the network uses

WPA-PSK or WPA2-PSK depends on the device. You can check the configuration

interface of the registrar device to discover the key the network is using (if the device

supports this feature). Then, you can enter the key into the non-WPS device and join the

network as normal (the non-WPS device must also support WPA-PSK or WPA2-PSK).

•

When you use the PBC method, there is a short period (from the moment you press the

button on one device to the moment you press the button on the other device) when any

WPS-enabled device could join the network. This is because the registrar has no way of

identifying the “correct” enrollee, and cannot differentiate between your enrollee and a

rogue device. This is a possible way for a hacker to gain access to a network.