Radio Interface
BreezeMAX Wi² and BreezeACCESS Wi² System Manual 103
For a more secure network, the AP can implement one or a combination of the
following security mechanisms:
Wired Equivalent Privacy (WEP) page 103
IEEE 802.1X page 118
Wireless MAC address filtering page 58
WiFi Protected Access (WPA or WPA2) page 112
Both WEP and WPA security settings are configurable separately for each virtual
access point (VAP) interface. MAC address filtering, and RADIUS server settings
are global and apply to all VAP interfaces.
The security mechanisms that may be employed depend on the level of security
required, the network and management resources available, and the software
support provided on wireless clients.
A summary of wireless security considerations is listed in Table 4-6.
Table 4-6: Wireless Security Considerations
Security
Mechanism Client Support Implementation Considerations
WEP Built-in support on all 802.11g
devices
Provides only weak security
Requires manual key management
WEP over 802.1X Requires 802.1X client support in
system or by add-in software
(support provided in Windows
2000 SP3 or later and Windows
XP)
Provides dynamic key rotation for improved WEP
security
Requires configured RADIUS server
802.1X EAP type may require management of digital
certificates for clients and server
MAC Address
Filtering
Uses the MAC address of client
network card
Provides only weak user authentication
Management of authorized MAC addresses
Can be combined with other methods for improved
security
Optionally configured RADIUS server