NETGEAR WAG302 manual Wireless Networking Basics

Page 101

Reference Manual for the NETGEAR ProSafe Dual Band Wireless Access Point WAG302

The primary information conveyed in the Beacon frames is the authentication method and the cipher suite. Possible authentication methods include 802.1X and Pre-shared key. Pre-shared key is an authentication method that uses a statically configured pass phrase on both the stations and the access point. This obviates the need for an authentication server, which in many home and small office environments will not be available nor desirable. Possible cipher suites include: WEP, TKIP, and AES (Advanced Encryption Standard). We talk more about TKIP and AES when addressing data privacy below.

•Authentication. EAP over 802.1X is used for authentication. Mutual authentication is gained by choosing an EAP type supporting this feature and is required by WPA. 802.1X port access control prevents full access to the network until authentication completes. 802.1X EAPOL-Key packets are used by WPA to distribute per-session keys to those stations successfully authenticated.

The supplicant in the station uses the authentication and cipher suite information contained in the information elements to decide which authentication method and cipher suite to use. For example, if the access point is using the pre-shared key method then the supplicant need not authenticate using full-blown 802.1X. Rather, the supplicant must simply prove to the access point that it is in possession of the pre-shared key. If the supplicant detects that the service set does not contain a WPA information element then it knows it must use pre-WPA 802.1X authentication and key management in order to access the network.

•Key management. WPA features a robust key generation/management system that integrates the authentication and data privacy functions. Keys are generated after successful authentication and through a subsequent 4-way handshake between the station and Access Point (AP).

•Data Privacy (Encryption). Temporal Key Integrity Protocol (TKIP) is used to wrap WEP in sophisticated cryptographic and security techniques to overcome most of its weaknesses.

•Data integrity. TKIP includes a message integrity code (MIC) at the end of each plaintext message to ensure messages are not being spoofed.

Wireless Networking Basics

B-13

202-10078-01

Image 101

Contents NETGEAR, Inc Technical Support Tested to Comply with FCC Standards WAG302 ProSafe Dual Band Wireless Access PointDeclaration of Conformity Industry Canada Compliance Statement Product and Publication Details Contents Chapter Management Appendix a Specifications Appendix C Command Line Reference Bold Chapter About This ManualAudience, Scope, Conventions, and Formats How to Use This Manual Printing a Page in the Html View How to Print this ManualAbout This Manual Chapter Introduction About the WAG302 ProSafe Dual Band Wireless Access PointSupported Standards and Conventions Key FeaturesAutoCell-The Self-Organizing Wireless Network Autosensing Ethernet Connections with Auto Uplink 802.11a/g Standards-based Wireless NetworkingCompatible and Related Netgear Products What’s In the Box? System Requirements100 Hardware DescriptionFront Panel 802.11g Wlan Rear Panel802.11a Wlan Serial Console Port Observing Placement and Range Guidelines Chapter Basic Installation and ConfigurationCabling Requirements Time Zone Adjust for Daylight Saving TIme Disabled Default Factory SettingsEnabled but Trap forwarding is disabled Secure Telnet EnabledLUHOHVVDWD 6HFXULW\2SWLRQV Understanding WAG302 Wireless Security OptionsSET UP the WAG302 Access Point Installing the WAG302 Access PointLogin window Web browser will then display the WAG302 General information Basic Settings menu Basic Installation and Configuration Wireless Settings 11a menu Deploy the WAG302 Access Point How to Log In to the WAG302 Using Its Default IP Address Wireless Settings 11a Understanding Basic Wireless SettingsBasic Installation and Configuration Wireless Settings 11b/g Basic Installation and Configuration Basic Installation and Configuration Understanding WEP/WPA Security Options 10 WEP/WPA Settings menus for 11a and 11b/gBasic Installation and Configuration 802.11a Configuration Before You Change the Ssid and WEP Settings802.11b/g Configuration How to Set Up and Test Basic Wireless Connectivity Access Control 11a menu Access Control 11b/g menu How to Restrict Wireless Access by MAC AddressHow to Configure WEP Click Apply to save your settings How to Configure WPA with Radius 13 Radius Server Settings menu 14 WEP/WPA Settings menus for 11a and 11bg 15 WEP/WPA Settings menus for 11a and 11bg How to Configure WPA-PSKIP Address Using the Basic IP Settings OptionsSpanning Tree Protocol Basic Installation and Configuration Remote Management Chapter ManagementHow to Use the CLI via the Console Port Using the Secure Telnet InterfaceSecure Telnet Client CLI CommandsSyslog and Activity Log information Using Syslog and Activity Log InformationGeneral Information Viewing General and Statistical InformationCurrent Wireless Settings 11a Field Description Access Point InformationCurrent IP Settings Field Description Current Wireless Settings 11b/g Statistics Field Description Wired Ethernet Received/TransmittedWireless 11a Received/Transmitted Refresh button Field Description Wireless 11b/g Received/TransmittedViewing a List of Attached Devices Configuration File Management Upgrading the Wireless Access Point SoftwareRestoring the WAG302 to the Factory Default Settings Saving and Retrieving the ConfigurationRebooting the Access Point Using the Reset Button to Restore Factory Default SettingsSet Password menu Changing the Administrator PasswordManagement Understanding Advanced IP Settings for Wireless Clients Chapter Advanced ConfigurationAdvanced IP Settings for Wireless Clients screen Understanding Advanced Wireless Settings Enhance RF Privacy -- Default Disable Problem AutoCell SettingsAuto RF Management -- Default Enable AutoCell RF ManagementAuto RF Management Enhanced RF Security ‘Stealth Mode’ Additional AutoCell View Management Options Advanced Wireless Settings screen Configuring Wireless LAN ParametersEnabling Wireless Bridging and Repeating Point-to-Point Bridge How to Configure a WAG302 as a Point-to-Point BridgeManual Advanced Configuration Multi-Point bridging How to Configure Wireless RepeatingAdvanced Configuration No lights are lit on the access point Chapter TroubleshootingLAN light is not lit Wireless LAN activity light does not light upWhen I enter a URL or IP address I get a timeout error Cannot connect to the WAG302 to configure itUsing the Reset Button to Restore Factory Default Settings Parameter WAG302 ProSafe Dual Band Wireless Access Point Appendix a SpecificationsSpecifications for the WAG302 Specifications Infrastructure Mode Appendix B Wireless Networking BasicsWireless Networking Overview Network Name Extended Service Set Identification Essid Ad Hoc Mode Peer-to-Peer WorkgroupAuthentication Authentication and WEP Data Encryption802.11b Authentication Open System Steps 802.11b Authentication Shared Key Steps Key Size 802.11b/g Wireless Channels Wireless ChannelsWEP Configuration Options Channel Center Frequency Frequency Spread Table B-2 802.11b/g Radio Frequency ChannelsChannel Frequency 802.11a Wireless ChannelsWAG302 user can use five channels in turbo mode WPA Wireless SecurityHow Does WPA Compare to WEP? How Does WPA Compare to Ieee 802.11i? What are the Key Features of WPA Security?Wireless Networking Basics Radius Server Figure B-3 WPA OverviewAccess point replies with an EAP-request identity message WPA Data Encryption Key Management Temporal Key Integrity Protocol Tkip Product Support for WPA Is WPA Perfect?Changes to Wireless Access Points Changes to Wireless Client Programs Command Sets Appendix C Command Line ReferenceCommand Line Reference Command Line Reference Command Line Reference 802.1x 100BASE-Tx802.11a 802.11bCertificate Authority Auto UplinkCat Domain Name Dynamic Host Configuration ProtocolLocal area network Internet ProtocolMAC address MbpsNetmask NetBIOSNetwork Address Translation PacketWide area network Wi-Fi Windows Internet Naming ServiceWireless Network Name Ssid Glossary

Related manuals

Manual 2 pages 4.37 Kb