NETGEAR WG511U user manual Figure B-5 WPA Overview

Page 68

User’s Manual for the NETGEAR Double 108 Mbps Wireless PC Card 32-bit CardBus WG511U

Wireless Network

Wired Network with Optional WPA 802.1x Port Based Network Access Control

 

 

 

 

 

 

 

 

 

 

 

 

 

 

WPA enabled

 

 

 

WPA

 

 

 

enabled

 

 

Access Point

 

 

 

wireless

 

 

 

using

 

 

 

 

client with

 

 

pre-shared key

 

 

 

“supplicant”

 

 

or

 

 

 

 

 

 

 

802.1x/EAP

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

TCP/IP

Ports Closed

Until

TCP/IP

Ports Opened

After

Authenticated

RADIUS Server

Login

Authentication

Optional

Certificate

Authority

(eg Win

Server,

VeriSign,

etc)

Figure B-5: WPA Overview

The strength WPA comes from an integrated sequence of operations that encompass 802.1X/EAP authentication and sophisticated key management and encryption techniques. Its major operations include:

Network security capability determination. This occurs at the 802.11 level and is communicated through WPA information elements in Beacon, Probe Response, and (Re) Association Requests. Information in these elements includes the authentication method (802.1X or Pre-shared key) and the preferred cipher suite (WEP, TKIP, or AES).

The primary information conveyed in the Beacon frames is the authentication method and the cipher suite. Possible authentication methods include 802.1X and Pre-shared key. Pre-shared key is an authentication method that uses a statically configured pass phrase on both the stations and the access point. This eliminates the need for an authentication server, which in many home and small office environments will not be available nor desirable. Possible data encryption options include: WEP, TKIP, and AES (Advanced Encryption Standard). We’ll talk more TKIP and AES when addressing data privacy below.

Authentication. EAP over 802.1X is used for authentication. Mutual authentication is gained by choosing an EAP type supporting this feature and is required by WPA. 802.1X port access control prevents full access to the network until authentication completes. 802.1X EAPOL-Key packets are used by WPA to distribute per-session keys to those stations successfully authenticated.

B-16

Wireless Networking Basics

August 2004

Page 67 Page 69
Image 68
Page 67 Page 69
Contents August Technical Support FCC Information to User Export Restrictions Contents Chapter Wireless Security Configuration Glossary Contents Chapter About This Manual Audience, Conventions, Publication DateHow to Navigate this Manual Html version of this manualHow to Print this Manual About This Manual Key Features and Related Netgear Products Chapter Introduction802.11a and 802.11b/g Wireless Networking What’s in the Box?Road Map for ‘How to Get There From Here’ Road Map for How to Get There From HereNetgear Double Exchange files Use printers Verifying System Requirements Chapter Basic SetupWhat You Need Before You Begin Two Basic Operating Modes Observing Location and Range GuidelinesWG511U Default Wireless Configuration Settings Click Install Driver and Utility Basic Installation InstructionsFor Windows XP Users Installing a WG511U Basic Setup Configure your WG511U Wireless Security ConfigurationVerify wireless connectivity to your network LED DescriptionsFor Windows 2000 & 98/Me Users Installing a WG511U Found New Hardware Wizard Configure your WG511U and save ProfileBelow Word Meaning WG511U Wireless Connection Indicators Interpreting the LED on the WG511UInterpreting System Tray Icon Colors Color Condition DescriptionTroubleshooting Basic TipsTroubleshooting Frequently Asked Questions Basic Setup Using Configuration Profiles Chapter Netgear Smart Wireless WizardUnderstanding the Configuration Options Connecting to an Access Point in Infrastructure Mode How to Configure an Infrastructure Mode Profile Run the WG511U Smart Wireless WizardConfigure the wireless network settings Save your settings in a ProfileConnecting to Another PC in Ad-hoc Mode Netgear WG511U Wireless PC Card in Computer-to-Computer ModeHow to Configure an Ad-hoc Mode Network Configure the PC network settingsAd-Hoc Setting What’s on the Statistics Page? Understanding the Advanced Settings Chapter Wireless Security Configuration Understanding the Security OptionsUsing WEP Security Basic Requirements for WEPWEP Security Encryption Key WEP Security Settings WorksheetWireless Network Name Ssid Configure the WEP settings How to Configure WEP Encryption SecurityConfigure the Network Name Ssid settings Using WPA-PSK Advanced Security Basic Requirements for WPA-PSKWPA-PSK Security Settings Worksheet How to Configure WPA-PSK Advanced SecurityConfigure the WPA-PSK settings WPA-PSK settings screenWireless Security Configuration Appendix a Technical Specifications FCC, CETechnical Specifications Infrastructure Mode Appendix B Wireless Networking BasicsWireless Networking Overview Wireless Channels Ad Hoc Mode Peer-to-Peer WorkgroupNetwork Name Extended Service Set Identification Essid 802.11b/g Wireless Channels 802.11a Legal Power Output and Wireless Channels WG511U user can use thirteen channels in non-turbomode Wireless Security Overview WPAWEP Authentication WEP Overview802.1x Cisco LeapAuthentication Open System Steps WEP Keys Bit WEPHow to Use WEP Parameters WEP Key Configuration802.1x Port Based Network Access Control Figure B-4 802.1x authentication WPA Wireless Security How Does WPA Compare to WEP? What are the Key Features of WPA Security? How Does WPA Compare to Ieee 802.11i?Figure B-5 WPA Overview Figure B-6 WPA/802.1x Authentication Sequence Wireless Networking Basics Michael WPA Data Encryption Key ManagementTemporal Key Integrity Protocol Tkip AES Support Is WPA Perfect?Product Support for WPA Wireless network adapters Wireless client programs Wireless Networking Basics Appendix C Preparing Your PCs for Network Access Configuring Windows 98 and Me for TCP/IP NetworkingInstall or Verify Windows Networking Components Preparing Your Computers for TCP/IP NetworkingPreparing Your PCs for Network Access Choose Settings, and then Control Panel Locate your Network Neighborhood iconPrimary Network Logon is set to Windows logon Selecting Windows’ Internet Access Method Verifying TCP/IP PropertiesConfiguring Windows 2000 or XP for TCP/IP Networking Dhcp Configuration of TCP/IP in Windows XP or Dhcp Configuration of TCP/IP in Windows XPTCP/IP details are presented on Support tab Right click on Local Area Connection and select Properties Dhcp Configuration of TCP/IP in WindowsVerify that Obtain an IP address Obtain an IP address automatically is selected Verifying TCP/IP Properties for Windows XP or Preparing Your PCs for Network Access Glossary List of Glossary TermsAdsl EAP Internet service provider Megabits per second Ssid WEP Glossary Index Numerics
Related manuals
Manual 2 pages 10.78 Kb
Top Page Image Contents