Lancom Systems 3550 manual Tips for handling keys, IPSec over Wlan

Page 60

LANCOM 3550 Wireless

Chapter 7: Security settings

Moreover, this technology makes enables a secured dispatch and a regular automatic change of WEP keys. In this way IEEE 802.1x improves the protec- tion efforts of WEP.

In Windows XP the IEEE-802.1x technology is already integrated by default.

For other operating systems 802.1x client software is available.

The drivers for the LANCOM AirLancer wireless cards already feature an inte- grated 802.1x client.

EN

7.1.6IPSec over WLAN

By means of IPSec over WLAN a radio network can be optimally secured in addition to the already introduced securing mechanisms. In order to run IPSec over WLAN you have to upgrade the base stations of the with the LANCOM VPN option and the LANCOM Advanced VPN Client, which runs under the operating systems Windows 98ME, Windows 2000 and Windows XP. For other operating systems client software from other manufacturers is available. The drivers for the LANCOM AirLancer wireless adapter are already equipped with a 802.1x client.

7.2Tips for handling keys

The security of encryption procedures can be substantially increased the by paying attention to some important rules for handling keys.

Keep keys as secret as possible.

Never note a key. Popular, but completely unsuitable are for example: notebooks, wallets and text files in PCs. Do not share a key unnecessarily.

Select a random key.

Use randomized keys of character and number sequences. Keys from the general linguistic usage are insecure.

Change a key immediately in case of suspicion.

It is time to change the key of the Wireless LAN if an employee with access to a key leaves your company. The key should also be renewed in case of smallest suspicion of a leak.

LEPS prevents the global spread of passphrases.

Activate LEPS to enable the use of individual passphrases.

60

Image 60
Contents Lancom 3550 Wireless Lancom Systems GmbH, Wuerselen Germany. All rights reserved Security settings Thank you for placing your trust in this Lancom productFurther server services DHCP, DNS, charge management This documentation was compiled … Important instruction that should be followed Contents Setting up Internet access Setting up the Umts profilePoint-to-point connections Options and accessories AppendixRadio channel regulations for WLANs What is a Wireless LAN? Operation modes of Wireless LANs and base stationsIntroduction Which hardware to use?Advantages of the UMTS/HSPDA solution Last mile via UMTS/HSPDAMobile conference room InternetUMTS/HSPDA Backup Internet connection over DSL What can your Lancom Router do? ApplicationsWireless LAN Lancom Installation Package contentsSystem preconditions Status displays, interfaces an hardware installation Status displayMeanings of the LEDs Front sideLED remains lit green Green Red Blinking Time or connect-charge reachedFlashing Power-LED but no connection? Expert Configuration Setup Charges-moduleNal wireless network card is not indicated on this display Wireless link display can assume four different conditionsBack of the unit Hardware installation Software installation Plexity considerably Starting Lancom setup Which software should you install?Installation Basic configuration 1 TCP/IP settingsWhich information is necessary? New LAN-fully automatic configuration possible Configure manually nevertheless?Information required for manual TCP/IP configuration Configuration protection Settings for the Wireless LANSettings for the DSL connection Connect charge protectionSelection of a radio channel Start up LANconfig by clicking Start Programs Lancom LANconfigInstructions for WEBconfig Complete the configuration with FinishNetwork without Dhcp server Network with Dhcp serverStarting the wizards in WEBconfig WEBconfig main menu will be displayedOr with a name as discribed above Basic configuration TCP/IP settings to workstation PCs Entering the password in the web browserIP address assignment via the Lancom Router default IP address assignment via a separate Dhcp serverManual IP address assignment Setting up Internet access Instructions for LANconfig Bar, select Tools Setup WizardLANconfig Quick access to the setup wizards Setting up Internet access Setting up the Umts profile Internet accessSetting up the Umts profile Setting up the Umts profile VPN site coupling Setting up the Umts profile Other settings Choosing the mobile telephone networkActivate UMTS/GPRS profile UMTS/HSPDA only or automatic UMTS/HSPDA/GPRS selection Set up a time limit Point-to-point connections Configuration with LANconfig Configuration tool Menu/Table Access points in relay mode Security for point-to-point connectionsEncryption with 802.11i/WPA Connections under the following pathsConfiguration area Wlan Security on the 802.11i/WEP tab Found under WEBconfig or Telnet under the following paths Leps for P2P connectionsSecurity settings Security for the Wireless LANClosed network Access control via MAC address Lancom Enhanced Passphrase SecurityEncryption of the data transfer 5 802.1x / EAP Standard WEP encryption ensure that you have a secure connection Tips for handling keys IPSec over WlanSecurity settings wizard Wizard for LANconfigMand bar Extras Setup Wizard Wizard for WEBconfig Firewall wizardSecurity checklist Configuration under WEBconfigRules Have you assigned a password for the configuration? Have you permitted remote configuration?Have you assigned a password to the Snmp configuration? Have you activated the Firewall?Have you activated the IP masquerading? Have you closed critical ports with filters?Security settings Security settings Options and accessories Optional Lancom Wireless Router antennasAntenna Diversity Installation of AirLancer Extender antennas Lancom Public Spot OptionRadius Troubleshooting PIN HandlingMenü/Tabelle Problems with the cabling? You can monitor and correct the protocol settings underHas the correct transfer protocol been selected? DSL data transfer is slow Unwanted connections under Windows XPIncreasing the TCP/IP window size under Windows Performance data and specifications AppendixContact assignment LAN interface, 10/100base-TXWAN interface, 10/100base-TX Declaration of conformity Radio channel regulations for WLANs Numerics Connector cable LAN connection Node/hub switch Optional antennas Options and accessoriesRelay function Remote configuration Reset LAN Link LAN Rx/Tx Power WAN Link WAN Status Wireless LinkWAN connector WEBconfig Password Work Incorrect PINPIN handling Time limit 15, 59

3550 specifications

The Lancom Systems 3550 is a robust and versatile router designed to meet the demanding connectivity needs of modern networking environments. It is particularly well-suited for enterprises seeking to enhance their network performance, reliability, and security. This device combines advanced features with cutting-edge technologies to provide a comprehensive networking solution.

One of the standout features of the Lancom Systems 3550 is its support for various WAN technologies. It supports fiber, DSL, and LTE connections, ensuring seamless internet access regardless of the available infrastructure. This versatility allows businesses to choose the optimal connection type for their specific needs and easily adapt to changing circumstances.

In terms of voice and data capabilities, the 3550 is equipped with integrated VoIP functionality. This feature enables companies to implement Voice over IP solutions, reducing telecommunication costs while improving call quality. The router supports multiple concurrent voice channels, making it an ideal choice for businesses with significant communication requirements.

Security is paramount in today’s digital landscape, and the Lancom Systems 3550 does not disappoint. It includes advanced firewall features and supports VPN technologies, enabling secure remote access for employees and partners alike. With support for SSL and IPSec VPNs, businesses can ensure that sensitive data remains protected, regardless of whether employees are working in the office or remotely.

Another significant characteristic of the 3550 is its high-performance capabilities. It is designed to handle a high volume of data traffic without compromising performance. Equipped with advanced traffic management tools, the router can prioritize essential services, ensuring that critical applications receive the bandwidth they need, even during peak usage times.

Additionally, the device offers robust monitoring and management features. Network administrators can utilize SNMP, Syslog, and other management protocols to gain real-time insights into performance metrics and troubleshoot issues proactively. The intuitive user interface simplifies configuration and management, allowing IT staff to focus on other pressing tasks.

Scalability is also a key advantage of the Lancom Systems 3550. It provides options for expansion and can be integrated seamlessly with other devices in the Lancom ecosystem. This flexibility allows organizations to grow their networks without the need for significant overhauls.

In summary, the Lancom Systems 3550 is an ideal solution for organizations looking to enhance their networking capabilities. With its support for multiple WAN technologies, integrated security features, high performance, and robust management tools, it stands out as a reliable choice for modern enterprises. Whether for data communication or voice solutions, the 3550 ensures optimized performance, security, and scalability in one comprehensive package.