Home » ZyXEL Manuals » Networking » ZyXEL NWA1100 » Manual Viewer

ZyXEL NWA1100 User Guide - Page 86

What You Need To Know, Table 21, SECURITY, LEVEL, SECURITY TYPE

Get ZyXEL NWA1100 PDF manuals and user guides

Add to My Manuals
Save this manual to your list of manuals

Page 86 highlights

Chapter 8 Wireless Security Screen 8.3 What You Need To Know User Authentication Authentication is the process of verifying whether a wireless device is allowed to use the wireless network. You can make every user log in to the wireless network before they can use it. However, every device in the wireless network has to support IEEE 802.1x to do this. For wireless networks, you can store the user names and passwords for each user in a RADIUS server. This is a server used in businesses more than in homes. If you do not have a RADIUS server, you cannot set up user names and passwords for your users. Unauthorized wireless devices can still see the information that is sent in the wireless network, even if they cannot use the wireless network. Furthermore, there are ways for unauthorized wireless users to get a valid user name and password. Then, they can use that user name and password to use the wireless network. The following table shows the relative effectiveness of wireless security methods:. Table 21 Wireless Security Levels SECURITY LEVEL SECURITY TYPE Least Secure Unique SSID (Default) Unique SSID with Hide SSID Enabled MAC Address Filtering WEP Encryption IEEE802.1x EAP with RADIUS Server Authentication Wi-Fi Protected Access (WPA) Most Secure WPA2 The available security modes in your NWA are as follows: • None. No data encryption. • WEP. Wired Equivalent Privacy (WEP) encryption scrambles the data transmitted between the wireless stations and the access points to keep network communications private. • 802.1x-Only. This is a standard that extends the features of IEEE 802.11 to support extended authentication. It provides additional accounting and control features. This option does not support data encryption. • 802.1x-Static64. This provides 802.1x-Only authentication with a static 64bit WEP key and an authentication server. • 802.1x-Static128. This provides 802.1x-Only authentication with a static 128bit WEP key and an authentication server. • 802.1x-Static152. This provides 802.1x-Only authentication with a static 152bit WEP key and an authentication server. • WPA. Wi-Fi Protected Access (WPA) is a subset of the IEEE 802.11i standard. • WPA2. WPA2 (IEEE 802.11i) is a wireless security standard that defines stronger encryption, authentication and key management than WPA. • WPA2-MIX. This commands the NWA to use either WPA2 or WPA depending on which security mode the wireless client uses. 86 NWA1100-N User's Guide

Section	Page
NWA1100-N	1
About This User's Guide	3
Document Conventions	5
Safety Warnings	7
Contents Overview	9
Table of Contents	11
User’s Guide	17
Introducing the NWA	19
1.1 Introducing the NWA	19
1.2 Applications for the NWA	19
1.2.1 Access Point	20
1.2.2 Bridge / Repeater	20
1.2.3 AP + Bridge	22
1.2.4 Wireless Client	23
1.2.5 MBSSID	24
1.3 Ways to Manage the NWA	25
1.4 Configuring Your NWA’s Security Features	25
1.4.1 Control Access to Your Device	25
1.4.2 Wireless Security	25
1.5 Good Habits for Managing the NWA	26
1.6 Hardware Connections	26
1.7 LEDs	27
Introducing the Web Configurator	29
2.1 Accessing the Web Configurator	29
2.2 Resetting the NWA	30
2.2.1 Methods of Restoring Factory-Defaults	30
2.3 Navigating the Web Configurator	30
Status Screens	33
3.1 The Status Screen	33
3.1.1 System Statistics Screen	35
Tutorial	37
4.1 How to Configure the Wireless LAN	37
4.1.1 Choosing the Wireless Mode	37
4.1.2 Wireless LAN Configuration Overview	37
4.1.3 Further Reading	38
4.2 How to Configure Multiple Wireless Networks	39
4.2.1 Configure the SSID Profiles	40
4.2.2 Configure the Standard Network	42
4.2.3 Configure the VoIP Network	43
4.2.4 Configure the Guest Network	45
4.2.5 Testing the Wireless Networks	46
4.3 NWA Setup in AP and Wireless Client Modes	47
4.3.1 Scenario	47
4.3.2 Configuring the NWA in Access Point Mode	47
4.3.3 Configuring the NWA in Wireless Client Mode	50
4.3.4 MAC Filter Setup	51
4.3.5 Testing the Connection and Troubleshooting	52
Technical Reference	53
System Screens	55
5.1 Overview	55
5.2 What You Can Do in this Chapter	55
5.3 What You Need To Know	55
5.4 General Screen	57
5.4.1 Password Screen	57
5.5 Time Screen	58
5.6 Technical Reference	59
5.6.1 Pre-defined NTP Time Servers List	59
Wireless Settings Screen	60
6.1 Overview	60
6.2 What You Can Do in this Chapter	60
6.3 What You Need To Know	61
6.4 Wireless Settings Screen	62
6.4.1 Access Point Mode	63
6.4.2 Bridge / Repeater Mode	65
6.4.3 AP + Bridge Mode	69
6.4.4 Wireless Client Mode	70
6.4.5 MBSSID Mode	73
6.5 Technical Reference	75
6.5.1 WMM QoS	75
6.5.2 Spanning Tree Protocol (STP)	76
6.5.3 Additional Wireless Terms	77
SSID Screen	79
7.1 Overview	79
7.1.1 What You Can Do in this Chapter	79
7.1.2 What You Need To Know	79
7.2 The SSID Screen	80
7.2.1 Configuring SSID	81
7.3 Technical Reference	82
7.3.1 WMM QoS	82
7.3.2 Type Of Service (ToS)	83
Wireless Security Screen	85
8.1 Overview	85
8.2 What You Can Do in this Chapter	85
8.3 What You Need To Know	86
8.4 The Security Screen	87
8.4.1 Security: WEP	89
8.4.2 Security: 802.1x Only	90
8.4.3 Security: 802.1x Static 64-bit, 802.1x Static 128-bit, 802.1x Static 152- bit	92
8.4.4 Security: WPA	93
8.4.5 Security: WPA2 or WPA2-MIX	95
8.4.6 Security: WPA-PSK, WPA2-PSK, WPA2-PSK-MIX	97
8.5 Technical Reference	98
RADIUS Screen	99
9.1 Overview	99
9.2 What You Can Do in this Chapter	99
9.3 What You Need to Know	99
9.4 The RADIUS Screen	100
MAC Filter Screen	102
10.1 Overview	102
10.2 What You Can Do in this Chapter	102
10.3 What You Need To Know	102
10.4 MAC Filter Screen	103
IP Screen	105
11.1 Overview	105
11.2 What You Can Do in this Chapter	105
11.3 What You Need to Know	105
11.4 IP Screen	106
11.5 Technical Reference	107
11.5.1 WAN IP Address Assignment	107
11.5.2 Spanning Tree Protocol (STP)	107
Remote Management	109
12.1 Overview	109
12.2 What You Can Do in this Chapter	109
12.3 What You Need To Know	110
12.4 The Telnet Screen	112
12.5 The FTP Screen	112
12.6 The WWW Screen	113
12.7 The SNMP Screen	115
12.8 Technical Reference	116
12.8.1 MIB	116
12.8.2 Supported MIBs	116
12.8.3 SNMP Traps	117
Certificate Screen	119
13.1 Overview	119
13.2 What You Can Do in this Chapter	119
13.3 What You Need To Know	119
13.4 Certificate Screen	120
13.5 Technical Reference	120
13.5.1 Private-Public Certificates	120
13.5.2 Certification Authorities	121
13.5.3 Checking the Fingerprint of a Certificate on Your Computer	121
Log Screens	123
14.1 Overview	123
14.2 What You Can Do in this Chapter	123
14.3 What You Need To Know	124
14.4 View Log Screen	124
14.5 Log Settings Screen	125
Maintenance	129
15.1 Overview	129
15.2 What You Can Do in this Chapter	129
15.3 What You Need To Know	129
15.4 Association List Screen	129
15.5 Channel Usage Screen	130
15.6 F/W Upload Screen	131
15.7 Configuration File Screen	133
15.7.1 Backup Configuration	133
15.7.2 Restore Configuration	133
15.7.3 Back to Factory Defaults	135
15.8 Restart Screen	135
Troubleshooting	137
16.1 Power, Hardware Connections, and LEDs	137
16.2 NWA Access and Login	138
16.3 Internet Access	139
Product Specifications	141
Power over Ethernet (PoE) Specifications	142
Setting Up Your Computer’s IP Address	143
Pop-up Windows, JavaScript and Java Permissions	171
IP Addresses and Subnetting	183
Wireless LANs	191
Text File Based Auto Configuration	205
Open Software Announcements	207
Legal Information	237

Match case Limit results 1 per page

Chapter 8 Wireless Security Screen

NWA1100-N User’s Guide

8.3

What You Need To Know

User Authentication

Authentication is the process of verifying whether a wireless device is allowed to use the wireless

network. You can make every user log in to the wireless network before they can use it. However,

every device in the wireless network has to support IEEE 802.1x to do this.

For wireless networks, you can store the user names and passwords for each user in a RADIUS

server. This is a server used in businesses more than in homes. If you do not have a RADIUS server,

you cannot set up user names and passwords for your users.

Unauthorized wireless devices can still see the information that is sent in the wireless network,

even if they cannot use the wireless network. Furthermore, there are ways for unauthorized

wireless users to get a valid user name and password. Then, they can use that user name and

password to use the wireless network.

The following table shows the relative effectiveness of wireless security methods:.

The available security modes in your NWA are as follows:

•

None.

No data encryption.

•

WEP.

Wired Equivalent Privacy (WEP) encryption scrambles the data transmitted between the

wireless stations and the access points to keep network communications private.

•

802.1x-Only.

This is a standard that extends the features of IEEE 802.11 to support extended

authentication. It provides additional accounting and control features. This option does not

support data encryption.

•

802.1x-Static64.

This provides 802.1x-Only authentication with a static 64bit WEP key and

an authentication server.

•

802.1x-Static128

. This provides 802.1x-Only authentication with a static 128bit WEP key

and an authentication server.

•

802.1x-Static152

. This provides 802.1x-Only authentication with a static 152bit WEP key

and an authentication server.

•

WPA.

Wi-Fi Protected Access (WPA) is a subset of the IEEE 802.11i standard.

•

WPA2.

WPA2 (IEEE 802.11i) is a wireless security standard that defines stronger encryption,

authentication and key management than WPA.

•

WPA2-MIX.

This commands the NWA to use either WPA2 or WPA depending on which security

mode the wireless client uses.

Table 21

Wireless Security Levels

SECURITY

LEVEL

SECURITY TYPE

Least

Secure

Most Secure

Unique SSID (Default)

Unique SSID with Hide SSID Enabled

MAC Address Filtering

WEP Encryption

IEEE802.1x EAP with RADIUS Server Authentication

Wi-Fi Protected Access (WPA)

WPA2