ZyXEL NWA1121-NI User Guide - Page 112

Chapter 9 System

NWA1121-NI User’s Guide

112

9.9.2

Supported MIBs

The NWA1121-NI supports MIB II that is defined in RFC-1213 and RFC-1215 as well as the

proprietary ZyXEL private MIB. The purpose of the MIBs is to let administrators collect statistical

data and monitor status and performance.

9.9.3

Private-Public Certificates

When using public-key cryptology for authentication, each host has two keys. One key is public and

can be made openly available. The other key is private and must be kept secure.

These keys work like a handwritten signature (in fact, certificates are often referred to as “digital

signatures”). Only you can write your signature exactly as it should look. When people know what

your signature looks like, they can verify whether something was signed by you, or by someone

else. In the same way, your private key “writes” your digital signature and your public key allows

people to verify whether data was signed by you, or by someone else. This process works as

follows.

1

Tim wants to send a message to Jenny. He needs her to be sure that it comes from him, and that

the message content has not been altered by anyone else along the way. Tim generates a public

key pair (one public key and one private key).

2

Tim keeps the private key and makes the public key openly available. This means that anyone who

receives a message seeming to come from Tim can read it and verify whether it is really from him

or not.

3

Tim uses his private key to sign the message and sends it to Jenny.

4

Jenny receives the message and uses Tim’s public key to verify it. Jenny knows that the message is

from Tim, and that although other people may have been able to read the message, no-one can

have altered it (because they cannot re-sign the message with Tim’s private key).

5

Additionally, Jenny uses her own private key to sign a message and Tim uses Jenny’s public key to

verify the message.

9.9.4

Certification Authorities

A Certification Authority (CA) issues certificates and guarantees the identity of each certificate

owner. There are commercial certification authorities like CyberTrust or VeriSign and government

certification authorities. You can use the NWA1121-NI to generate certification requests that

contain identifying information and public keys and then send the certification requests to a

certification authority.

9.9.5

Checking the Fingerprint of a Certificate on Your Computer

A certificate’s fingerprints are message digests calculated using the MD5 or SHA1 algorithms. The

following procedure describes how to check a certificate’s fingerprint to verify that you have the

actual certificate.

1

Browse to where you have the certificate saved on your computer.

Section	Page
NWA1121-NI	1
Contents Overview	3
Table of Contents	5
User’s Guide	9
Introducing the NWA1121-NI	11
1.1 Introducing the NWA1121-NI	11
1.2 Wireless Modes	11
1.2.1 MBSSID	11
1.2.2 Wireless Client	13
1.2.3 Root AP	14
1.2.4 Repeater	14
1.3 Ways to Manage the NWA1121-NI	15
1.4 Configuring Your NWA1121-NI’s Security Features	16
1.4.1 Control Access to Your Device	16
1.4.2 Wireless Security	16
1.5 Good Habits for Managing the NWA1121-NI	16
1.6 Hardware Connections	17
1.7 LED	17
Introducing the Web Configurator	19
2.1 Accessing the Web Configurator	19
2.2 Resetting the NWA1121-NI	20
2.2.1 Methods of Restoring Factory-Defaults	21
2.3 Navigating the Web Configurator	22
2.3.1 Title Bar	22
2.3.2 Navigation Panel	23
2.3.3 Main Window	24
Dashboard	25
3.1 The Dashboard Screen	25
Tutorial	29
4.1 How to Configure the Wireless LAN	29
4.1.1 Choosing the Wireless Mode	29
4.1.2 Further Reading	29
4.2 How to Configure Multiple Wireless Networks	29
4.2.1 Configure the SSID Profiles	31
4.2.2 Configure the Standard Network	33
4.2.3 Configure the VoIP Network	34
4.2.4 Configure the Guest Network	36
4.2.5 Testing the Wireless Networks	38
4.3 NWA1121-NI Setup in AP and Wireless Client Modes	38
4.3.1 Scenario	38
4.3.2 Configuring the NWA1121-NI in MBSSID or Root AP Mode	39
4.3.3 Configuring the NWA1121-NI in Wireless Client Mode	42
4.3.4 MAC Filter Setup	44
4.3.5 Testing the Connection and Troubleshooting	45
Technical Reference	47
Monitor	49
5.1 Overview	49
5.2 What You Can Do	49
5.3 View Logs	49
5.4 Statistics	50
5.5 Association List	51
5.6 Channel Usage	52
Wireless LAN	55
6.1 Overview	55
6.2 What You Can Do in this Chapter	55
6.3 What You Need To Know	56
6.4 Wireless Settings Screen	60
6.4.1 Root AP Mode	61
6.4.2 Repeater Mode	64
6.4.3 Wireless Client Mode	67
6.4.4 MBSSID Mode	69
6.5 SSID Screen	72
6.5.1 Configuring SSID	73
6.6 Wireless Security Screen	74
6.6.1 Security: WEP	76
6.6.2 Security: 802.1x Only	77
6.6.3 Security: 802.1x Static WEP	79
6.6.4 Security: WPA, WPA2, WPA2-MIX	83
6.6.5 Security: WPA-PSK, WPA2-PSK, WPA2-PSK-MIX	86
6.7 RADIUS Screen	87
6.8 MAC Filter Screen	89
6.9 Technical Reference	91
6.9.1 Additional Wireless Terms	91
6.9.2 WMM QoS	92
6.9.3 Security Mode Guideline	93
LAN	94
7.1 Overview	94
7.2 What You Can Do in this Chapter	94
7.3 What You Need to Know	94
7.4 LAN IP Screen	96
VLAN	98
8.1 Overview	98
8.1.1 What You Can Do in This Chapter	98
8.2 What You Need to Know	98
8.3 VLAN Screen	99
System	101
9.1 Overview	101
9.2 What You Can Do in this Chapter	101
9.3 What You Need To Know	102
9.4 WWW Screen	104
9.5 Certificates Screen	105
9.6 Telnet Screen	106
9.7 SNMP Screen	107
9.8 FTP Screen	110
9.9 Technical Reference	111
9.9.1 MIB	111
9.9.2 Supported MIBs	112
9.9.3 Private-Public Certificates	112
9.9.4 Certification Authorities	112
9.9.5 Checking the Fingerprint of a Certificate on Your Computer	112
Log Settings	115
10.1 Overview	115
10.2 What You Can Do in this Chapter	115
10.3 What You Need To Know	116
10.4 Log Settings Screen	116
Maintenance	119
11.1 Overview	119
11.2 What You Can Do in this Chapter	119
11.3 What You Need To Know	120
11.4 General Screen	120
11.5 Password Screen	121
11.6 Time Screen	122
11.7 Firmware Upgrade Screen	123
11.8 Configuration File Screen	124
11.8.1 Backup Configuration	124
11.8.2 Restore Configuration	124
11.8.3 Back to Factory Defaults	125
11.9 Restart Screen	125
Troubleshooting	127
12.1 Power, Hardware Connections, and LEDs	127
12.2 NWA1121-NI Access and Login	128
12.3 Internet Access	129
Setting Up Your Computer’s IP Address	131
Pop-up Windows, JavaScript and Java Permissions	159
IP Addresses and Subnetting	171
Wireless LANs	179
Legal Information	193

ZyXEL NWA1121-NI User Guide - Page 112

Supported MIBs, 9.9.3 Private-Public Certificates, 9.9.4 Certification Authorities, 9.9.5

Page 112 highlights