3Com WL-575, 3CRWEASYA73 manual Syntax Cipher-suite aes-ccmp tkip wep

Using the Command Line Interface

•In a mixed-mode environment with clients using static and dynamic keys, select transmit key index 2, 3, or 4. The access point uses transmit key index 1 for the generation of dynamic keys.

Example

Outdoor 11a Building to Building (if-wireless g: VAP[0])#transmit-key 2 Outdoor 11a Building to Building (if-wireless g)#

cipher-suite

This command defines the cipher algorithm used to encrypt the global key for broadcast and multicast traffic when using Wi-Fi Protected Access (WPA) security.

Syntax

cipher-suite <aes-ccmp tkip wep>

•aes-ccmp- Use AES-CCMP encryption for the unicast and multicast cipher.

•tkip - Use TKIP encryption for the multicast cipher. TKIP or AES-CCMP can be used for the unicast cipher depending on the capability of the client.

•wep - Use WEP encryption for the multicast cipher. TKIP or AES-CCMP can be used for the unicast cipher depending on the capability of the client.

Default Setting

wep

Command Mode

Interface Configuration (Wireless-VAP)

Command Usage

•WPA enables the access point to support different unicast encryption keys for each client. However, the global encryption key for multicast and broadcast traffic must be the same for all clients.

•If any clients supported by the access point are not WPA enabled, the cipher-suite algorithm must be set to WEP.

•WEP is the first generation security protocol used to encrypt data crossing the wireless medium using a fairly short key. Communicating devices must use the same WEP key to encrypt and decrypt radio signals. WEP has many security flaws, and is not recommended for transmitting highly sensitive data.

•TKIP provides data encryption enhancements including per-packet key hashing (i.e., changing the encryption key on each packet), a message integrity check, an extended initialization vector with sequencing rules,

6-145