Cisco Systems WVC2300 manual Security Threats Facing Wireless Networks

Page 14

Planning Your Wireless Network

2

 

Security Threats Facing Wireless Networks

 

 

 

 

 

Most wireless networking devices will give you the option of broadcasting the SSID. While this option may be more convenient, it allows anyone to log into your wireless network. This includes hackers. So, don’t broadcast the SSID.

Wireless networking products come with a default SSID set from the factory. (The Cisco default SSID is “ciscosb”.) Hackers know these defaults and can check these against your network. Change your SSID to something unique and not something related to your company or the networking products you use.

Change your SSID regularly so that any hackers who have gained access to your wireless network will have to start from the beginning in trying to break in.

MAC Addresses. Enable MAC Address filtering. MAC Address filtering allows you to provide access to only those wireless nodes with certain MAC Addresses. This makes it harder for a hacker to access your network with a random MAC Address.

WEP Encryption. Wired Equivalent Privacy (WEP) is often looked upon as a cure-all for wireless security concerns. This is overstating WEP’s ability. Again, this can only provide enough security to make a hacker’s job more difficult. There are several ways that WEP can be maximized:

Use the highest level of encryption possible

Use “Shared Key” authentication

Change your WEP key regularly

WPA/WPA2 Personal. WPA stands for Wi-Fi Protected Access, which is a security standard stronger than WEP encryption. A network encrypted with WPA/WPA2 is more secure than a network encrypted with WEP, because WPA/WPA2 uses dynamic key encryption. To protect the information as it passes over the airwaves, you should enable the highest level.

WPA/WPA Enterprise. Enterprise refers to using RADIUS server for authentication, while RADIUS stands for Remote Authentication Dial-In User Service. This type of authentication requires some advanced expertise because it involves setting up a RADIUS server for authentication and, in some cases, creation of certificates for both the RADIUS server and the camera.

If you are using WPA/WPA2 Enterprise security, you will need to upload security certificates to the camera. Certificates must be in the following format:

Root certificate: DER encoded binary x.509 (CER/PEM)

User certificate: Personal Information Exchange (PKCS#12(.PFX))

Cisco PVC2300 and WVC2300 Internet Video Cameras with Audio Administration Guide

7

Page 13 Page 15
Image 14
Page 13 Page 15
Contents Administration Guide Cisco Systems, Inc. All rights reserved OL-20138-02 Introduction Planning Your Wireless NetworkConnecting the Camera Getting to Know the PVC2300 and WVC2300 CamerasInstalling the Camera Software Configuring the PVC2300 and WVC2300 CamerasSetup IP Filter Applications FTP Appendix D Where to Go From Here 114 Sample ConfigurationsAppendix a Troubleshooting Introduction Minimum Requirements IntroductionCamera Lens Specifications Minimum System Requirements for up to eight camerasCamera Accessories Installation and Administration Guide Planning Your Wireless Network Wireless Network LayoutAdditional Security Tips Security Threats Facing Wireless NetworksPlanning Your Wireless Network Security Threats Facing Wireless Networks Planning Your Wireless Network Front Panel Front Panel, Back Panel, Side Panel, page14Lens Ready LED AmberNetwork LED Green Built-in MicrophoneAntenna Connectors Back PanelReset EthernetActivity LED PVC2300 PoE LEDMic PowerSide Panel Spkr OutConnecting the Camera Cisco Wired Network Connecting the CameraCisco Wireless Network Camera Installation Guidelines Camera Hardware InstallationCamera Hardware Installation Connecting the Camera LED Color Activity ActionAdjusting The Lens Audio Options Configuring the Basic Camera and Network Settings Enabling UPnP in Appendix A, TroubleshootingInstalling the Camera Software Installing the Camera Software Installing the Camera Software Setting Up the Wireless Connection on the WVC2300 Camera WEPWPA /WPA2 Personal Installing the Camera Software Installing the Camera Software Another Network on Wired and Wireless ModesMoving the Camera to Another Network Moving the Camera to Another Network Upgrading the Camera Firmware Upgrading the Camera Firmware Launching the Web-Based Configuration Utility Launching the Web-Based Configuration Utility, Home, Setup,Using the Web-Based Configuration Utility HomeConnected User SetupRefresh Log OutVideo Options Icons Icon Description Click to turn on the selected outputIcon Description Audio onWVC2300 Cameras SetupAudio/Video Audio on Configuring the PVC2300 and WVC2300 Cameras Accessing the Setup Options Configuring the PVC2300 and WVC2300 CamerasSetup Basic Setup Device SettingsNetwork Settings Wireless Settings DisableWAP/WPA2 Enterprise EAP-TLS WPA/WPA2 Enterprise EAP-TTLS Setup Advance Setup HTTP/HTTPSEnable Multicast UPnPCoS BonjourQoS Setup IP Filter IP Filter SettingsDemo Administration UsersAdministrator User ListConfiguration Administration MaintenanceRestore Factory Defaults RestartAdministration Firmware Firmware UpgradeAudio/Video Video MPEG-4 SettingsMjpeg Settings Mobile Settings Video AdjustmentsOptions Day/Night Switch Mode Audio SettingsAudio/Video Audio Setting Applications Mail Primary Smtp ServerSecondary Smtp Mail Setup Mail BodySecondary FTP Applications FTPPrimary FTP Configuring the PVC2300 and WVC2300 Cameras Applications Instant Messaging JabberApplications Motion Detection Active-X MessageConfiguring the PVC2300 and WVC2300 Cameras New Schedule Applications EventEvent Schedule Trigger Event Event Attachment Configuring the PVC2300 and WVC2300 Cameras Applications Ddns DdnsInput Ports Output Ports State at Power OnApplications I/O Ports Output Ports Manual Control Applications RS-485 Port SettingsPreset Position Patrol Sequence RemoveConfiguring the PVC2300 and WVC2300 Cameras Configuring the PVC2300 and WVC2300 Cameras Applications SMB/CIFS Status System Status ImageNetwork WirelessStatus Network Syslog Server Status Syslog & LogLog Type Log ListStatus Video Log Video LogSample Configurations Configuring Instant RecordingDefining Preset Positions for Patrol Sequence Sample ConfigurationsUsing Patrol Sequence Configuring E-Mail Alerts Sample Configurations Scheduling an Event Configuring Motion Detection Area and Sensitivity Sample Configurations Configuring Port Forwarding Sample Configurations For example, http//12.19.89.2121028 Setting Security Precautions on the Cisco WVC2300 Administration Users windowTroubleshooting Questions and AnswersTroubleshooting My video quality suddenly deterioratedVideo image is blurry Network Neighborhood/My Network Places Windows HelpShared Resources Resolution WVC2300 Camera Bandwidth TestWVC2300 Camera Bandwidth Test Resolution PVC2300 Specifications ResourceSpecifications LensAlerts Network WVC2300 Specifications Model WVC2300Management Monitoring and recording for up to 16 cameras Port Specifications Pin SpecificationsPIN 12VDC Product Documentation Product ResourcesSupport Where to Go From Here Cisco Small Business
Top Page Image Contents