Lancom Systems 3550 7 Security settings

LANCOM 3550 Wireless

 Chapter 7: Security settings

56

EN

7 Security settings

Your LANCOM Router base station has numerous security functions. You find

in this chapter all information needed for an optimal protection of the base

station.

7.1 Security for the Wireless LAN

Reflecting on Wireless LANs often entails substantial doubts concerning secu-

rity. Many people suppose that abuse of data transmitted via radio links is rel-

atively simple.

Wireless LAN devices by LANCOM Systems permit the employment of modern

security technologies:

Closed network

Access Control (via MAC-addresses)

LANCOM Enhanced Passphrase Security

Encryption of data transfer (802.11i/WPA or WEP)

802.1x / EAP

optional IPSec over WLAN (VPN), in combination with external VPN gate-

way

7.1.1 Closed network

Each Wireless LAN according to IEEE 802.11 has its own network name (SSID).

This network name serves as identification and enables administration of

Wireless LANs.

A Wireless LAN can be established in such a way that any user gets access to

this network. Such networks are called open networks. Any user can access

an open network also without knowledge of the WLAN network name

reserved specifically for this network. Only requirement is the input of the net-

work name 'ANY'.

In a closed network the access via 'ANY' is not possible. User have to specify

the correct network name. Unknown networks stay hidden to them.

Ad-hoc-networks are automatically installed as closed networks and cannot

be opened. Infrastructure networks can be run either in open or closed con-

dition. You make the settings for this at the respective base station.

Contents

Main Page Preface Page Page Contents Page Page 1Introduction 1.1 What is a Wireless LAN? 1.1.1 Which hardware to use? 1.1.2 Operation modes of Wireless LANs and base stations 1.2 The advantages of the UMTS/HSPDA solution 1.2.1 Last mile via UMTS/HSPDA 1.2.2 Mobile conference room 1.2.3 UMTS/HSPDA Backup Page 1.3 What can your LANCOM Router do? Page Page 2 Installation 2.1 Package contents 2.2 System preconditions 2.3 Status displays, interfaces an hardware installation 2.3.1 Status display Page Page 2.4 The back of the unit 2.5 Hardware installation 2.6 Software installation Page 2.6.1 Starting LANCOM setup 2.6.2 Which software should you install? Page 3 Basic configuration 3.1 Which information is necessary? 3.1.1 TCP/IP settings Page 3.1.2 Configuration protection 3.1.3 Settings for the Wireless LAN 3.1.4 Settings for the DSL connection 3.1.5 Connect charge protection Page Page Page 3.5 TCP/IP settings to workstation PCs Page 4 Setting up Internet access 4.1 Instructions for LANconfig 4.2 Instructions for WEBconfig Page 5 Setting up the UMTS profile 5.1 Internet access Page Page 5.2 VPN site coupling Page 5.3 Other settings 5.3.1 Choosing the mobile telephone network 5.3.2 Activate UMTS/GPRS profile 5.3.3 UMTS/HSPDA only or automatic UMTS/HSPDA/GPRS selection Page 6 Point-to- point connections 6.1 Antenna alignment for P2P operations 6.2 Configuration Page 6.3 Access points in relay mode 6.4 Security for point-to- point connections 6.4.1 Encryption with 802.11i/WPA Page 6.4.2 LEPS for P2P connections 7 Security settings 7.1 Security for the Wireless LAN 7.1.1 Closed network 7.1.2 Access control via MAC address 7.1.3 LANCOM Enhanced Passphrase Security 7.2 Tips for handling keys 7.3 The security settings wizard 7.3.1 Wizard for LANconfig 7.3.2 Wizard for WEBconfig 7.4 The firewall wizard 7.4.1 Wizard for LANconfig 7.4.2 Configuration under WEBconfig 7.5 The security checklist Page Page Page Page 8 Options and accessories 8.1 Optional LANCOM Wireless Router antennas 8.1.1 Antenna Diversity 8.1.2 Installation of AirLancer Extender antennas 8.2 LANCOM Public Spot Option Page 9Troubleshooting 9.1 PIN Handling Page 9.2 No DSL connection is established 9.3 DSL data transfer is slow 9.4 Unwanted connections under Windows XP 75 EN 10 Appendix 10.1 Performance data and specifications LANCOM 3550 Wireless 76 EN 10.2 Contact assignment 10.2.1 LAN interface, 10/100base-TX 10.2.2 WAN interface, 10/100base-TX 10.3 Declaration of conformity Page Index