NETGEAR DGN3500-100NAS user manual Wireless Security Options

Page 22

RangeMax Wireless-N DSL Gigabit Modem Router DGN3500 User Manual

Wireless Security Options

Indoors, computers can connect over 802.11g wireless networks at a maximum range of up to

300 feet. Such distances can allow for others outside your immediate area to access your network.

Unlike wired network data, your wireless data transmissions can extend beyond your walls and can be received by anyone with a compatible adapter. For this reason, use the security features of your wireless equipment. The modem router provides highly effective security features, which are covered in detail in this chapter. Deploy the security features appropriate to your needs.

There are several ways you can enhance the security of your wireless network:

There are several ways you can enhance the security of your wireless network:

Restrict access based on MAC address. You can allow only trusted PCs to connect so that unknown PCs cannot wirelessly connect to the modem router. Restricting access by MAC address adds an obstacle against unwanted access to your network, but the data broadcast over the wireless link is fully exposed (see “Restricting access by MAC address” on page 2-8).

Turn off the broadcast of the wireless network name SSID. If you disable broadcast of the SSID, only devices that have the correct SSID can connect. This nullifies wireless network discovery feature of some products, such as Windows XP, but the data is still exposed (see “Hiding your wireless network name (SSID)” on page 2-8).

WEP. Wired Equivalent Privacy (WEP) data encryption provides data security. WEP Shared Key authentication and WEP data encryption block all but the most determined eavesdropper. This data encryption mode has been superseded by WPA-PSK and WPA2-PSK (see “Configuring WEP” on page 2-11).

WPA-802.1x. Wi-Fi Protected Access (WPA) with user authentication implemented using IEE 802.1x and RADIUS servers (see “Configuring WPA-802.1x” on page 2-12).

WPA-PSK (TKIP) + WPA2-PSK (AES). Wi-Fi Protected Access (WPA) using a pre-shared key to perform authentication and generate the initial data encryption keys. The very strong authentication along with dynamic per frame re-keying of WPA makes it virtually impossible to compromise (see “Configuring Mixed WPA-PSK+WPA2-PSK Security” on page 2-10).

For more information about wireless technology, see the link to the online document in “Virtual Private Networking Basics” in Appendix B.

2-3

Configuring Your Wireless Network and Security Settings

v1.0, November 2009

Page 21 Page 23
Image 22
Page 21 Page 23
Contents RangeMax Wireless-N DSL Gigabit Modem Router NETGEAR, IncTrademarks Statement of ConditionsEuropean Union Statement of Compliance Bestätigung des Herstellers/Importeurs 1999/5/EGCustomer Support Certificate of the Manufacturer/ImporterVoluntary Control Council for Interference Vcci Statement World Wide WebContents Chapter Protecting Your Network Chapter USB Storage Appendix a Technical Specifications About This Manual Conventions, Formats, and ScopeHow to Print This Manual Revision HistoryConnecting Your Router to the Internet Using the Setup ManualLogging In to Your Wireless Modem Router V1.0, November Using the Setup Wizard Viewing or Manually Configuring Your ISP SettingsISP does not require login Basic Settings screen fields Settings DescriptionGet Automatically from ISP. Your ISP uses Dhcp to Want to useConfiguring Adsl Settings Chapter Configuring Your Wireless Network Security Settings Planning Your Wireless NetworkWireless Placement and Range Guidelines See Manually Configuring Your Wireless Security onWireless Security Options Manually Configuring Your Wireless Settings Wireless Settings NETGEAR4Ssid Restricting Wireless Access to Your Network Manually Configuring Your Wireless SecurityWPA-802.1x Turning off wireless connectivity completely V1.0, November Configuring Mixed WPA-PSK+WPA2-PSK Security Configuring WEP Configuring WPA-802.1x Bit WEPUsing Push N Connect WPS to Configure Your Wireless Network Using a WPS Button to Add a WPS Client Using PIN Entry to Add a WPS Client V1.0, November Adding More WPS Clients Adding Both WPS and Non-WPS ClientsConfiguring Advanced WPS Settings V1.0, November Protecting Access to Your Wireless Modem Router Chapter Protecting Your NetworkHow to Change the Built-In Password Viewing Logs of Web Access or Attempted Web Access Changing the Administrator Login Time-outLog Entry Descriptions Blocking SitesField Description V1.0, November Firewall Rules Inbound Rules Port Forwarding Inbound Rule Example a Local Public Web Server Inbound Rule Example Allowing Video conferencing Outbound Rules Service Blocking Considerations for Inbound RulesV1.0, November Order of Precedence for Rules Services V1.0, November Setting Times and Scheduling Firewall Services Setting Your Time ZoneScheduling Firewall Services Configuring E-mail Alerts and Web Access Log Notifications Select the Turn E-mail Notification On check boxV1.0, November Chapter Managing Your Network Upgrading the FirmwareManually Checking for Firmware Upgrades V1.0, November Viewing Wireless Modem Router Status Information Wireless Modem Router Status Fields Explains Router Status screen fieldsConnection Status Wireless Modem Router Statistics Connection Status SettingsStatistics Viewing a List of Attached Devices Managing the Configuration File Backing Up and Restoring the ConfigurationErasing the Configuration Enabling Remote Management Access Select the Turn Remote Management On check box Chapter Advanced Configuration WAN SetupWAN Setup Settings Setting DescriptionSetting Up a Default DMZ Server MTU Size onV1.0, November LAN Setup fields are explained in the following table LAN SetupUsing the Wireless Modem Router as a Dhcp Server Address ReservationConfiguring LAN Setup V1.0, November LAN Setup fields are explained in the following table Using the Wireless Modem Router as a Dhcp Server Dynamic DNS Service Select the Use a Dynamic DNS Service check box Setting up Static Routes Static Route ExampleConfiguring Static Routes Configuring Universal Plug and Play V1.0, November Building Wireless Bridging and Repeating Networks Configuring a Point-to-Point Bridge Configuration Configuring a Repeater with Wireless Client Association Internet Wireless PC 192.168.0.1 V1.0, November Chapter USB Storage File Sharing Scenarios USB Drive RequirementsBus Speed/Second Storing Files in a Central Location for Printing Sharing Photos with Friends and FamilySharing Large Files with Colleagues USB Storage Basic Settings \\readyshare\USBStorage USB Storage Basic Settings\\readyshare Fields and Buttons DescriptionSafely Remove USB Device button Editing a Network Folder USB Storage Advanced Settings Configuring USB Storage Advanced SettingsFields Description Http Unmounting a USB Drive Creating a Network FolderSpecifying Approved USB Devices Select the Allow only approved devices check boxAccessing the Router’s USB Drive Remotely Using FTP Connecting to the USB Drive from a Remote ComputerConnecting to the USB Drive with Microsoft Network Settings Locating the Internet Port IP AddressConfiguring Windows 98SE and Windows ME Enabling File and Printer SharingChapter Troubleshooting Basic FunctioningPower LED Is Not On Power LED Is RedLAN or Adsl Port LED Is Not On Cannot Log in to the Wireless Modem RouterWindow Appears Asking You to Reload Firmware Troubleshooting the ISP Connection Adsl LinkInternet LED is Red Adsl Link LED Is Blinking AmberTroubleshooting PPPoE or PPPoA Obtaining an Internet IP AddressTroubleshooting Internet Browsing Resolving a ‘Reload Firmware’ MessageTroubleshooting a TCP/IP Network Using the Ping Utility Testing the LAN Path to Your RouterTesting the Path from Your Computer to a Remote Device Ping -n 10 IP addressRestoring the Default Configuration and Password Problems with Date and TimeAppendix a Technical Specifications General SpecificationsFeature Default Behavior Login Factory Default ConfigurationSpecification Description Interface Specifications Internet ConnectionWireless Feature Default BehaviorFirewall Appendix B Related Documents Document LinkIndex NumericsIndex-2 Index-3
Top Page Image Contents