Cisco Systems CISCO881SECK9 manual Configuring WEP and Cipher Suites, Assigning SSIDs

Page 50

Chapter 4 Basic Wireless Device Configuration

Configuring Wireless Settings

For details about setting up the wireless device in this role, see Using the Access Point as a Local Authenticator at: http://www.cisco.com/en/US/docs/routers/access/wireless/software/guide/SecurityLocalAuthent.html

Configuring WEP and Cipher Suites

Wired Equivalent Privacy (WEP) encryption scrambles the data transmitted between wireless devices to keep the communication private. Wireless devices and their wireless client devices use the same WEP key to encrypt and decrypt data. WEP keys encrypt both unicast and multicast messages. Unicast messages are addressed to one device on the network. Multicast messages are addressed to multiple devices on the network.

Cipher suites are sets of encryption and integrity algorithms designed to protect radio communication on your wireless LAN. You must use a cipher suite to enable Wi-Fi Protected Access (WPA) or Cisco Centralized Key Management (CCKM).

Cipher suites that contain Temporal Key Integrity Protocol (TKIP) provide the greatest security for your wireless LAN. Cipher suites that contain only WEP are the least secure.

For encryption procedures, see Configuring WEP and Cipher Suites at: http://www.cisco.com/en/US/docs/routers/access/wireless/software/guide/SecurityCipherSuitesWEP.ht ml

Configuring Wireless VLANs

If you use VLANs on your wireless LAN and assign SSIDs to VLANs, you can create multiple SSIDs by using any of the four security settings defined in the “Security Types” section on page 4-7. A VLAN can be thought of as a broadcast domain that exists within a defined set of switches. A VLAN consists of a number of end systems, either hosts or network equipment (such as bridges and routers), that are connected by a single bridging domain. The bridging domain is supported on various pieces of network equipment such as LAN switches that operate bridging protocols between them with a separate group of protocols for each VLAN.

For more information about wireless VLAN architecture, see Configuring Wireless VLANs at: http://www.cisco.com/en/US/docs/routers/access/wireless/software/guide/wireless_vlans.html

Note If you do not use VLANs on your wireless LAN, the security options that you can assign to SSIDs are limited because the encryption settings and authentication types are linked on the Express Security page.

Assigning SSIDs

You can configure up to 16 SSIDs on a wireless device in the role of an access point, and you can configure a unique set of parameters for each SSID. For example, you might use one SSID to allow guests limited access to the network and another SSID to allow authorized users access to secure data.

For more about creating multiple SSIDs, see Service Set Identifiers document at: http://www.cisco.com/en/US/docs/routers/access/wireless/software/guide/ServiceSetID.html.

Cisco 880 Series Integrated Services Router Software Configuration Guide

 

4-6

OL-22206-01

 

 

 

Image 50
Contents Americas Headquarters Page Objective AudienceChapters OrganizationConventions Convention Description Boldface fontRelated Documentation Searching Cisco DocumentsObtaining Documentation and Submitting a Service Request Models of the Cisco 880 Series ISRs General DescriptionCisco 880 Series ISR 802.11b/g/n Wireless LAN Common FeaturesPort 10/100 FE LAN Switch Battery-backed-up Real-Time ClockC881W Selecting Feature SetsLicensing C886VA-WMB memory MB Flash C887VA-WC881GW On Board Memory 1st core 2nd core MemoryC887GW Flash sizeFE/GE LAN/WAN LED OverviewColor Description Indication Steady on= linkVpnok PppokPower Supply Images supportedTBD Minimum software version needed to support AP802Software Minimum version MR2OL-22206-01 Wireless Device Overview Software ModesManagement Options Network Configuration Examples Root Access PointCentral Unit in an All-Wireless Network Access pointBasic Router Configuration Router Interface Port Label Default ConfigurationInterface Ports Basic Router Configuration Default Configuration Information Needed for Configuration Line aux console tty vty line-number Configuring Command-Line AccessCommand Purpose ExampleCommand Purpose ExampleTerminal, use the following Configuring Global ParametersConfiguring WAN Interfaces Hostname name Specifies the name for the router ExampleNo shutdown Exit Configuring a Fast Ethernet WAN InterfaceConfiguring a VDSL2 WAN Interface Controller vdslShutdown No shutdown Exit ShutdownConfiguring Adsl Mode 1shows an ATM WAN or Ethernet WAN network topographyVerifying CPE to Peer Connection for Adsl Configuring Adsl Auto ModeConfiguring CPE and Peer Adsl Mode Pvc name vpi/vci Configuring the ATM CPE SideNo shutdown Interface atm0.1 point-to-point Configures a static map for an ATM Adsl Configuration ExampleCommand Purpose Step Virtual-template inarp noNo fair-queue Verifying Adsl Configuration ATMVerifying CPE to Peer Connection for Adsl Configuring the Fast Ethernet LAN InterfacesConfiguring the Wireless LAN Interface Configuring a Loopback Interface Another way to verify the loopback interface is to ping it Configuring Static RoutesVerifying Configuration Verifying Configuration ExampleConfiguring Dynamic Routes Configuring Routing Information ProtocolNo auto-summary Configuring Enhanced Interior Gateway Routing Protocol Router eigrp as-numberBasic Router Configuration Configuring Dynamic Routes OL-22206-01 Basic Wireless Device Configuration Starting a Wireless Configuration Session Interface wlan-ap0Service-module wlan-ap 0 session Wireless Device Control-Shift-6 x Router DisconnectConfiguring Wireless Settings Cisco Express SetupConfiguring Wireless Security Settings Cisco IOS Command Line InterfaceConfiguring the Radio Configuring Access Point as Local AuthenticatorConfiguring WEP and Cipher Suites Assigning SSIDsInstructions Security Type Description Security Features EnabledSecurity Types PEAP3, EAP-TLS4, EAP-FAST5, EAP-TTLS6, EAP-GTC7 Configuring Wireless Quality of ServiceEAP1 WPA9Upgrading to Cisco Unified Software Configuring the Access Point in Hot Standby ModePreparing for the Upgrade Software PrerequisitesConfirm that the Mode Setting is Enabled Performing the UpgradeSecure an IP Address on the Access Point Upgrading AP bootloader Downgrading the Software on the Access PointNetwork Design Links Recovering Software on the Access PointWireless Overview Security LinksLWAPP1 Wireless LAN Controllers Administering LinksWhy Migrate to the Cisco Unified Wireless Network? Lwapp Wireless LAN Access Points Home.html

CISCO881SECK9 specifications

The Cisco Systems CISCO881SECK9 is a robust and flexible router designed to cater to the needs of small to medium-sized businesses and branch offices. It is part of the Cisco 8800 series, known for its powerful performance, security features, and advanced functionalities, making it suitable for various networking applications.

One of the standout features of the CISCO881SECK9 is its integrated security capabilities. With a built-in Cisco IOS Firewall and comprehensive security features such as intrusion prevention systems (IPS), secure virtual private network (VPN) services, and support for advanced encryption protocols, businesses can confidently protect their data and communications. This level of security is crucial in today’s cyber threat landscape, where data breaches and cyberattacks can have severe implications.

Another key characteristic of the CISCO881SECK9 is its support for multiple WAN connectivity options, including Ethernet, DSL, and 3G/4G cellular connections. This versatility allows organizations to choose their preferred internet connection method, providing reliable and continuous connectivity. The device also supports load balancing across multiple WAN links, which helps optimize bandwidth utilization and enhance the overall network performance.

The router also features a range of integrated services, including voice, video, and data services, which are essential for modern business operations. With support for Voice over IP (VoIP) and video conferencing, the CISCO881SECK9 ensures that organizations can maintain effective communication and collaboration among employees, partners, and clients. This dual functionality enhances productivity while simplifying network management.

In terms of performance, the CISCO881SECK9 is equipped with advanced Quality of Service (QoS) features that prioritize critical applications and ensure optimal performance even during peak traffic periods. This capability is particularly important for businesses that rely on real-time applications such as video conferencing and VoIP, ensuring high-quality service delivery.

Moreover, the router's scalability allows organizations to grow without needing to overhaul their entire network infrastructure. It supports various expansion modules, providing flexibility to add additional features and capabilities as business needs evolve.

With its combination of security, performance, and integrated services, the Cisco Systems CISCO881SECK9 stands out as a reliable choice for enterprises looking to enhance their networking capabilities while ensuring a secure and scalable infrastructure. Its thoughtful design, robust features, and adaptability make it suitable for a wide range of business applications, enabling companies to thrive in a fast-paced digital landscape.