Home » ZyXEL Manuals » Bridges & Routers » ZyXEL NBG-419N v2 » Manual Viewer

ZyXEL NBG-419N v2 User Guide - Page 103

Encryption, 3.1.4

Add to My Manuals
Save this manual to your list of manuals

Page 103 highlights

Chapter 12 Wireless LAN 00:A0:C5:00:00:02. To get the MAC address for each wireless client, see the appropriate User's Guide or other documentation. You can use the MAC address filter to tell the AP which wireless clients are allowed or not allowed to use the wireless network. If a wireless client is allowed to use the wireless network, it still has to have the correct settings (SSID, channel, and security). If a wireless client is not allowed to use the wireless network, it does not matter if it has the correct settings. This type of security does not protect the information that is sent in the wireless network. Furthermore, there are ways for unauthorized devices to get the MAC address of an authorized wireless client. Then, they can use that MAC address to use the wireless network. 12.3.1.3 Encryption Wireless networks can use encryption to protect the information that is sent in the wireless network. Encryption is like a secret code. If you do not know the secret code, you cannot understand the message. The types of encryption you can choose depend on the type of user authentication. Table 41 Types of Encryption for Each Type of Authentication NO AUTHENTICATION Weakest No Security WEP WPA-PSK Strongest WPA2-PSK Usually, you should set up the strongest encryption that every wireless client in the wireless network supports. Suppose the wireless network has two wireless clients. Device A only supports WEP, and device B supports WEP and WPA-PSK. Therefore, you should set up WEP in the wireless network. Note: It is recommended that wireless networks use WPA-PSK or stronger encryption. IEEE 802.1x and WEP encryption are better than none at all, but it is still possible for unauthorized devices to figure out the original information pretty quickly. When you select WPA2-PSK in your Router, you can also select an option (WPA Compatible) to support WPA as well. In this case, if some wireless clients support WPA and some support WPA2, you should set up WPA2-PSK (depending on the type of wireless network login) and select the WPA Compatible option in the Router. Many types of encryption use a key to protect the information in the wireless network. The longer the key, the stronger the encryption. Every wireless client in the wireless network must have the same key. 12.3.1.4 WPS WiFi Protected Setup (WPS) is an industry standard specification, defined by the WiFi Alliance. WPS allows you to quickly set up a wireless network with strong security, without having to configure security settings manually. Depending on the devices in your network, you can either press a button (on the device itself, or in its configuration utility) or enter a PIN (Personal Identification Number) in the devices. Then, they connect and set up a secure network by themselves. See how to set up a secure wireless network using WPS in the Section 11.3 on page 87. NBG-419N v2 User's Guide 103

Section	Page
NBG-419N v2	1
Contents Overview	3
Table of Contents	5
User’s Guide	13
Getting to Know Your Router	15
1.1 Overview	15
1.2 Applications	15
1.3 Ways to Manage the Router	15
1.4 Good Habits for Managing the Router	16
1.5 LEDs	17
1.6 The WPS Button	18
1.7 Wall Mounting	18
ZyXEL NetUSB Share Center Utility	20
2.1 Overview	20
2.1.1 Quick Setup	20
2.1.2 Installing ZyXEL NetUSB Share Center Utility	20
2.2 The ZyXEL NetUSB Share Center Utility	21
2.2.1 The Menus	22
2.2.2 The ZyXEL NetUSB Share Center Configuration Window	23
2.2.3 The Auto-Connect Printer List Window	24
2.2.4 Exit the ZyXEL NetUSB Share Center Utility	25
Connection Wizard	27
3.1 Overview	27
3.2 Accessing the Wizard	27
3.3 Connect to Internet	28
3.3.1 Connection Type: DHCP	29
3.3.2 Connection Type: Static IP	29
3.3.3 Connection Type: PPPoE	30
3.3.4 Connection Type: PPTP	31
3.3.5 Connection Type: L2TP	32
3.4 Router Password	34
3.5 Wireless Security	34
3.5.1 Wireless Security: No Security	34
3.5.2 Wireless Security: WPA-PSK/WPA2-PSK	35
Introducing the Web Configurator	37
4.1 Overview	37
4.2 Accessing the Web Configurator	37
4.2.1 Login Screen	37
4.2.2 Password Screen	38
4.2.3 Home Screen	39
4.3 Resetting the Router	41
4.3.1 Procedure to Use the Reset Button	41
Monitor	43
5.1 Overview	43
5.2 What You Can Do	43
5.3 The Log Screen	43
5.3.1 View Log	43
5.4 BW MGMT Monitor	45
5.5 DHCP Table	45
5.6 Packet Statistics	46
5.7 WLAN Station Status	47
Router Modes	49
6.1 Overview	49
6.1.1 Web Configurator Modes	49
6.1.2 Device Modes	49
Easy Mode	51
7.1 Overview	51
7.2 What You Can Do	52
7.3 What You Need to Know	52
7.4 Navigation Panel	53
7.5 Network Map	53
7.6 Control Panel	54
7.6.1 Game Engine	55
7.6.2 Power Saving	55
7.6.3 Content Filter	57
7.6.4 Bandwidth MGMT	57
7.6.5 Firewall	58
7.6.6 Wireless Security	58
7.6.7 WPS	60
7.7 Status Screen in Easy Mode	61
Router Mode	62
8.1 Overview	62
8.2 What You Can Do	62
8.3 Status Screen	63
8.3.1 Navigation Panel	66
Access Point Mode	69
9.1 Overview	69
9.2 What You Can Do	69
9.3 What You Need to Know	69
9.3.1 Setting your Router to AP Mode	70
9.3.2 Accessing the Web Configurator in Access Point Mode	70
9.3.3 Configuring your WLAN, Bandwidth Management and Maintenance Settings	71
9.4 AP Mode Status Screen	72
9.5 LAN Screen	74
WISP Mode	76
10.1 Overview	76
10.2 What You Can Do	76
10.3 What You Need to Know	76
10.3.1 Setting your Router to WISP Mode	77
10.3.2 Accessing the Web Configurator in WISP Mode	77
10.4 WISP Mode Status Screen	78
10.5 Wireless LAN General Screen	80
10.5.1 Static WEP	82
10.5.2 WPA(2)-PSK	83
10.5.3 Advance Screen	84
10.5.4 Site Survey Screen	85
Tutorials	87
11.1 Overview	87
11.2 Connecting to the Internet from an Access Point	87
11.3 Configuring Wireless Security Using WPS	87
11.3.1 Push Button Configuration (PBC)	88
11.3.2 PIN Configuration	89
11.4 Enabling and Configuring Wireless Security (No WPS)	91
11.4.1 Configure Your Notebook	92
11.5 Connecting to USB Storage with the ZyXEL NetUSB Share Center Utility	94
11.5.1 Multiple Connections to the USB Device	94
11.6 Automatically Connecting to a USB Printer	96
Technical Reference	99
Wireless LAN	101
12.1 Overview	101
12.2 What You Can Do	101
12.3 What You Should Know	102
12.3.1 Wireless Security Overview	102
12.4 General Wireless LAN Screen	104
12.4.1 No Security	105
12.4.2 WEP Encryption	106
12.4.3 WPA-PSK/WPA2-PSK	108
12.5 MAC Filter	108
12.6 Wireless LAN Advanced Screen	109
12.7 Quality of Service (QoS) Screen	111
12.8 WPS Screen	112
12.9 WPS Station Screen	113
12.10 Scheduling Screen	114
12.11 WDS Screen	115
WAN	117
13.1 Overview	117
13.2 What You Can Do	117
13.3 What You Need To Know	117
13.3.1 Configuring Your Internet Connection	118
13.3.2 Multicast	119
13.4 Internet Connection	119
13.4.1 Ethernet Encapsulation	119
13.4.2 PPPoE Encapsulation	121
13.4.3 PPTP Encapsulation	123
13.4.4 L2TP Encapsulation	126
13.5 Advanced WAN Screen	128
13.6 IGMP Blocking Screen	129
LAN	131
14.1 Overview	131
14.2 What You Can Do	131
14.3 What You Need To Know	132
14.3.1 IP Pool Setup	132
14.3.2 LAN TCP/IP	132
14.3.3 IP Alias	132
14.4 LAN IP Screen	133
14.5 IP Alias Screen	133
DHCP Server	135
15.1 Overview	135
15.2 What You Can Do	135
15.3 General Screen	135
15.4 Advanced Screen	136
Network Address Translation (NAT)	139
16.1 Overview	139
16.2 What You Can Do	139
16.3 General NAT Screen	140
16.4 NAT Application Screen	140
16.5 NAT Advanced Screen	142
16.5.1 Trigger Port Forwarding Example	144
16.5.2 Two Points To Remember About Trigger Ports	144
Dynamic DNS	145
17.1 Overview	145
17.2 What You Can Do	145
17.3 What You Need To Know	145
17.4 Dynamic DNS Screen	145
Static Route	147
18.1 Overview	147
18.2 What You Can Do	147
18.3 IP Static Route Screen	148
RIP	151
19.1 Overview	151
19.2 What You Can Do	151
19.3 RIP Screen	151
Firewall	153
20.1 Overview	153
20.2 What You Can Do	153
20.3 What You Need To Know	154
20.4 General Firewall Screen	154
20.5 Services Screen	155
Content Filter	157
21.1 Overview	157
21.2 What You Can Do	157
21.3 What You Need To Know	157
21.3.1 Content Filtering Profiles	157
21.4 Content Filter Screen	158
Bandwidth Management	161
22.1 Overview	161
22.2 What You Can Do	161
22.3 What You Need To Know	162
22.4 General Screen	162
22.5 Advanced Screen	162
22.5.1 Rule Configuration: Application Rule Configuration	164
22.5.2 Rule Configuration: User Defined Service Rule Configuration	165
22.6 Monitor Screen	166
22.6.1 Predefined Bandwidth Management Services	167
Remote Management	168
23.1 Overview	168
23.2 What You Can Do	168
23.3 What You Need to Know	168
23.3.1 Remote Management and NAT	168
23.3.2 System Timeout	169
23.4 WWW Screen	169
Universal Plug-and-Play (UPnP)	171
24.1 Overview	171
24.2 What You Can Do	171
24.3 What You Need to Know	171
24.3.1 NAT Traversal	171
24.3.2 Cautions with UPnP	172
24.4 UPnP Screen	172
24.5 Technical Refereance	172
24.5.1 Using UPnP in Windows XP Example	172
24.5.2 Web Configurator Easy Access	175
Maintenance	179
25.1 Overview	179
25.2 What You Can Do	179
25.3 General Screen	179
25.4 Password Screen	180
25.5 Time Setting Screen	181
25.6 Firmware Upgrade Screen	182
25.7 Configuration Backup/Restore Screen	184
25.8 Reset/Restart Screen	185
25.9 System Operation Mode Overview	185
25.10 Sys OP Mode Screen	187
Troubleshooting	189
26.1 Power, Hardware Connections, and LEDs	189
26.2 Router Access and Login	190
26.3 Internet Access	191
26.4 Resetting the Router to Its Factory Defaults	193
26.5 Wireless Router/AP Troubleshooting	193
26.6 ZyXEL Share Center Utility Problems	194
Pop-up Windows, JavaScript and Java Permissions	197
IP Addresses and Subnetting	209
Setting Up Your Computer’s IP Address	219
Wireless LANs	247
Common Services	261
Legal Information	265

Match case Limit results 1 per page

Chapter 12 Wireless LAN

NBG-419N v2 User’s Guide

103

00:A0:C5:00:00:02. To get the MAC address for each wireless client, see the appropriate User’s

Guide or other documentation.

You can use the MAC address filter to tell the AP which wireless clients are allowed or not allowed to

use the wireless network. If a wireless client is allowed to use the wireless network, it still has to

have the correct settings (SSID, channel, and security). If a wireless client is not allowed to use the

wireless network, it does not matter if it has the correct settings.

This type of security does not protect the information that is sent in the wireless network.

Furthermore, there are ways for unauthorized devices to get the MAC address of an authorized

wireless client. Then, they can use that MAC address to use the wireless network.

12.3.1.3

Encryption

Wireless networks can use encryption to protect the information that is sent in the wireless

network. Encryption is like a secret code. If you do not know the secret code, you cannot

understand the message.

The types of encryption you can choose depend on the type of user authentication.

Usually, you should set up the strongest encryption that every wireless client in the wireless

network supports. Suppose the wireless network has two wireless clients. Device A only supports

WEP, and device B supports WEP and WPA-PSK. Therefore, you should set up

WEP

in the wireless

network.

Note: It is recommended that wireless networks use

WPA-PSK

or stronger encryption.

IEEE 802.1x and WEP encryption are better than none at all, but it is still possible

for unauthorized devices to figure out the original information pretty quickly.

When you select

WPA2-PSK

in your Router, you can also select an option (

WPA Compatible

) to

support WPA as well. In this case, if some wireless clients support WPA and some support WPA2,

you should set up

WPA2-PSK

(depending on the type of wireless network login) and select the

WPA Compatible

option in the Router.

Many types of encryption use a key to protect the information in the wireless network. The longer

the key, the stronger the encryption. Every wireless client in the wireless network must have the

same key.

12.3.1.4

WPS

WiFi Protected Setup (WPS) is an industry standard specification, defined by the WiFi Alliance. WPS

allows you to quickly set up a wireless network with strong security, without having to configure

security settings manually. Depending on the devices in your network, you can either press a

button (on the device itself, or in its configuration utility) or enter a PIN (Personal Identification

Number) in the devices. Then, they connect and set up a secure network by themselves. See how

to set up a secure wireless network using WPS in the

Section 11.3 on page 87

Table 41

Types of Encryption for Each Type of Authentication

NO AUTHENTICATION

Weakest

No Security

WEP

WPA-PSK

Strongest

WPA2-PSK