2.12.2. Security

IEEE 802.11b/g security settings include SSID broadcasts, Security mode, IEEE 802.11 Authenti- cation algorithm, WEP keys, MAC-Address-Based Access Control.

2.12.2.1. Basic

Fig. 74. Basic IEEE 802.11g security settings.

For security reasons, it’s highly recommended that the security mode be set to options other than Open System. When the security mode is set to Open System, no authentication and data encryption will be performed. Additionally, you can disable the SSID broadcasts functionality so that a wireless client (STA or Bridge Slave) with an “ANY” SSID cannot associate with the IWE3200-H.

Wireless Client Isolation is a feature for the IWE3200-Hto block wireless-to-wireless traffic between STAs so that the STAs cannot see each other. This feature is useful for WLANs deployed in public places. This way, hackers have no chance to attack other wireless users in a hotspot.

When the Wireless client isolation setting is set to This AP Only, wireless clients (STAs) associated to this IWE3200-H, which acts as an AP, cannot see each other, and wireless-to-wireless traffic be- tween the STAs is blocked. When the setting is set to All APs in This Subnet, traffic among wireless users of different IWE3200-Hs in the same IP subnet is blocked. The behaviors are illustrated in the following figures.

Fig. 75. Behavior of the “This AP Only” wireless client isolation option.

47

Page 52
Image 52
Epson IWE3200-H manual Security, Basic