ZyXEL NBG2105 User Guide - Page 85

Chapter 13 Wireless LAN

NBG2105 User’s Guide

85

WEP

Data Encryption

WEP (Wired Equivalent Privacy) encryption scrambles all data packets transmitted between the

NBG2105 and the AP or other wireless stations to keep network communications private. Both the

wireless stations and the access points must use the same WEP key for data encryption and

decryption.

Authentication Type

The IEEE 802.11b/g/n standard describes a simple authentication method between the wireless

stations and AP. Three authentication types are defined:

Both

,

Open

and

Shared

.

•

Open

mode is implemented for ease-of-use and when security is not an issue. The wireless

station and the AP or peer computer do not share a secret key. Thus the wireless stations can

associate with any AP or peer computer and listen to any transmitted data that is not encrypted.

•

Shared

mode involves a shared secret key to authenticate the wireless station to the AP or peer

computer. This requires you to enable the wireless LAN security and use same settings on both

the wireless station and the AP or peer computer.

•

Both

authentication mode allows the NBG2105 to switch between the open system and shared

key modes automatically. Use this mode if you do not know the authentication mode of the other

wireless stations.

WPA-PSK and WPA2-PSK

Wi-Fi Protected Access (WPA) is a subset of the IEEE 802.11i standard. WPA2 (IEEE 802.11i) is a

wireless security standard that defines stronger encryption, authentication and key management

than WPA.

Key differences between WPA(2) and WEP are improved data encryption and user authentication.

Both WPA and WPA2 improve data encryption by using Temporal Key Integrity Protocol (TKIP),

Message Integrity Check (MIC) and IEEE 802.1x. WPA and WPA2 use Advanced Encryption

Standard (AES) in the Counter mode with Cipher block chaining Message authentication code

Protocol (CCMP) to offer stronger encryption than TKIP.

The encryption mechanisms used for WPA(2) and WPA(2)-PSK are the same. The only difference

between the two is that WPA(2)-PSK uses a simple common password, instead of user-specific

credentials. The common-password approach makes WPA(2)-PSK susceptible to brute-force

password-guessing attacks but it’s still an improvement over WEP as it employs a consistent,

single, alphanumeric password to derive a PMK which is used to generate unique temporal

encryption keys. This prevent all wireless devices sharing the same encryption keys. (a weakness of

WEP)

If both an AP and the wireless clients support WPA2-PSK, use WPA2-PSK for stronger data

encryption. If the AP or the wireless clients do not support WPA2-PSK, just use WPA-PSK. Select

WEP only when the AP and/or wireless clients do not support WPA-PSK or WPA2-PSK. WEP is less

secure than WPA-PSK or WPA2-PSK.

Section	Page
Contents Overview	3
Table of Contents	5
Introduction	13
1.1 Overview	13
1.2 Applications	13
1.3 Ways to Manage the NBG2105	13
1.4 Good Habits for Managing the NBG2105	13
1.5 Resetting the NBG2105	14
1.5.1 How to Use the RESET Button	14
1.6 The WPS Button	14
1.7 The Clone MAC Button	15
1.7.1 Cloning a computer's MAC address	15
1.7.2 Restoring the default MAC address	15
1.8 General Hardware Features	16
1.8.1 LEDs	17
Introducing the Web Configurator	19
2.1 Overview	19
2.2 Accessing the Web Configurator	19
2.2.1 Login Screen	20
Operation Modes	21
3.1 Overview	21
3.2 What You Can Do	21
3.3 Router Mode	21
3.3.1 Setting Router Mode	22
3.3.2 Navigation Panel	22
3.4 Access Point Mode	24
3.4.1 Setting Access Point Mode	25
3.4.2 Navigation Panel	25
3.5 Client Mode	27
3.5.1 Setting Client Mode	27
3.5.2 Navigation Panel	27
3.6 WISP + UR Mode	29
3.6.1 Setting WISP + UR Mode	29
3.6.2 Navigation Panel	29
Router Setup Wizard	33
4.1 Overview	33
4.2 Welcome Screen	33
4.3 WAN Interface Setup	33
4.3.1 WAN Access Type: Static IP	34
4.3.2 WAN Access Type: DHCP Client	34
4.3.3 WAN Access Type: PPPoE	35
4.4 Wireless Network Name (SSID) Setup	36
4.5 Wireless Security	36
4.5.1 Encryption: None	37
4.5.2 Encryption: WEP	37
4.5.3 Encryption: WPA-PSK, WPA2-PSK or WPA2-PSK Mixed	38
AP Setup Wizard	41
5.1 Overview	41
5.2 Welcome Screen	41
5.3 Wireless Network Name (SSID) Setup	41
5.4 Wireless Security	42
5.4.1 Encryption: None	42
5.4.2 Encryption: WEP	43
5.4.3 Encryption: WPA-PSK, WPA2-PSK or WPA2-PSK Mixed	44
Client Setup Wizard	45
6.1 Overview	45
6.2 Welcome Screen	45
6.3 Wireless Network Name Setup	45
6.4 Wireless Security	47
6.4.1 Encryption: None	47
6.4.2 Encryption: WEP	47
6.4.3 Encryption: WPA-PSK or WPA2-PSK	48
WISP+UR Setup Wizard	51
7.1 Overview	51
7.2 Welcome Screen	51
7.3 WAN Interface Setup	51
7.3.1 Static IP	51
7.3.2 DHCP Client	52
7.3.3 PPPoE	53
7.4 Wireless Network Name Setup	54
7.5 Wireless Security	55
7.5.1 Encryption: None	55
7.5.2 Encryption: WEP	56
7.5.3 Encryption: WPA-PSK or WPA2-PSK	56
Tutorials	59
8.1 Overview	59
8.2 Set Up a Wireless Network with WPS	59
8.2.1 Push Button Configuration (PBC)	59
8.2.2 PIN Configuration	60
8.3 Configure Wireless Security without WPS	61
8.3.1 Configure Your Notebook	63
LAN	69
9.1 Overview	69
9.2 What You Can Do	69
9.3 What You Need To Know	69
9.3.1 IP Pool Setup	70
9.3.2 LAN TCP/IP	70
9.4 LAN Interface Setup Screen	70
9.4.1 Active DHCP Client Screen	71
WAN	73
10.1 Overview	73
10.2 What You Can Do	73
10.3 What You Need To Know	73
10.3.1 Configuring Your Internet Connection	73
10.4 WAN Interface Setup	74
10.4.1 Static IP	74
10.4.2 DHCP Client	75
10.4.3 PPPoE	76
Quality of Service (QoS)	79
11.1 Overview	79
11.2 QoS Setup Screen	79
Dynamic DNS (DDNS)	81
12.1 Overview	81
12.2 What You Need To Know	81
12.3 Dynamic DNS	81
Wireless LAN	83
13.1 Overview	83
13.1.1 What You Can Do	83
13.1.2 What You Should Know	84
13.2 Wireless Basic Screen	86
13.3 Active Wireless Clients Screen	87
13.4 Advanced Wireless Settings Screen	88
13.5 Wireless Security	89
13.5.1 Disabled	89
13.5.2 WEP Encryption	90
13.5.3 WPA-PSK/WPA2-PSK/WPA2-PSK Mixed	91
13.6 Site Survey Screen	92
13.7 Site Survey: Wireless Security	93
13.7.1 None	93
13.7.2 WEP Encryption	93
13.7.3 WPA-PSK/WPA2-PSK Encryption	94
13.8 WPS Screen	95
13.9 MAC Filtering Screen	97
Firewall	99
14.1 Overview	99
14.2 What You Can Do	99
14.3 What You Need To Know	99
14.4 Port Filtering Screen	100
14.5 IP Filtering Screen	101
14.6 MAC Filtering Screen	101
14.7 URL Filtering Screen	102
Management	105
15.1 Overview	105
15.2 What You Can Do	105
15.3 NTP Screen	105
15.4 Password Screen	106
15.5 Upgrade Firmware Screen	107
15.6 Backup/Restore Screen	108
15.7 Router Operation Mode Screen	109
15.8 Language Screen	109
15.9 Restart Screen	110
Status	111
16.1 Overview	111
16.2 What You Can Do	111
16.3 Status Screen	111
16.3.1 Router Mode	111
16.3.2 AP Mode	113
16.3.3 Client Mode	114
16.3.4 WISP+UR Mode	115
16.4 Statistics Screen	117
16.5 System Log Screen	118
Troubleshooting	121
17.1 Overview	121
17.2 Power, Hardware Connections, and LEDs	121
17.3 NBG2105 Access and Login	122
17.4 Internet Access	123
17.5 Resetting the NBG2105 to Its Factory Defaults	124
17.6 Wireless LAN Connections	125
Pop-up Windows, JavaScript and Java Permissions	127
Legal Information	137

ZyXEL NBG2105 User Guide - Page 85

WPA-PSK and WPA2-PSK

Page 85 highlights