Chapter 6: Configuring Security

Understanding Security

The AT-WA7500 and AT-WA7501 access points provide many different security features and solutions that you can use to create a secure wireless network. To create a secure wireless network, you need to be concerned about:

ˆsecuring your backbone. Only authorized users should be able to communicate with your network.

ˆkeeping your data private. Make it difficult for an eavesdropper, such as a rogue access point, to monitor your data.

ˆauthenticating wireless end devices. End devices must prove who they are before they are allowed to communicate with your network.

Depending on the radios in the access point and the amount of security you need in your network, you can implement one or more of the security solutions in the following table.

Table 49. AT-WA7500 and AT-WA7501 Security Solutions

Security Type

Secure

Data

Client

Backbone

Privacy

Authentication

 

 

 

 

 

 

 

 

 

Change default

X

 

 

parameters

 

 

 

 

 

 

 

Disable access methods

X

 

 

 

 

 

 

Enable secure IAPP

X

 

 

 

 

 

 

Enable secure wireless

X

 

X

hops

 

 

 

 

 

 

 

Use a password server

X

 

 

to manage access point

 

 

 

logins

 

 

 

 

 

 

 

Configure a VLAN for

X

 

 

each radio

 

 

 

 

 

 

 

Use an Access Control

 

 

X

List (ACL)

 

 

 

 

 

 

 

Use WEP 64/128/152

 

X

 

security

 

 

 

 

 

 

 

Use an 802.1x security

X

X

X

solution

 

 

 

 

 

 

 

Use Wi-Fi Protected

X

X

X

Access (WPA)

 

 

 

 

 

 

 

170

Page 170
Image 170
Allied Telesis AT-WA7500, AT-WA7501 manual Understanding Security