Reference Manual for the Model DG834GT 108 Mbps Super Wireless ADSL Router

The strength of WPA comes from an integrated sequence of operations that encompass 802.1X/ EAP authentication and sophisticated key management and encryption techniques. Its major operations include:

Network security capability determination. This occurs at the 802.11 level and is communicated through WPA information elements in Beacon, Probe Response, and (Re) Association Requests. Information in these elements includes the authentication method (802.1X or Pre-shared key) and the preferred cipher suite (WEP, TKIP, or AES).

The primary information conveyed in the Beacon frames is the authentication method and the cipher suite. Possible authentication methods include 802.1X and Pre-shared key. Pre-shared key is an authentication method that uses a statically configured pass phrase on both the stations and the access point. This obviates the need for an authentication server, which in many home and small office environments will not be available nor desirable. Possible cipher suites include: WEP, TKIP, and AES (Advanced Encryption Standard). We talk more about TKIP and AES when addressing data privacy below.

Authentication. EAP over 802.1X is used for authentication. Mutual authentication is gained by choosing an EAP type supporting this feature and is required by WPA. 802.1X port access control prevents full access to the network until authentication completes. 802.1X EAPOL-Key packets are used by WPA to distribute per-session keys to those stations successfully authenticated.

The supplicant in the station uses the authentication and cipher suite information contained in the information elements to decide which authentication method and cipher suite to use. For example, if the access point is using the pre-shared key method then the supplicant need not authenticate using full-blown 802.1X. Rather, the supplicant must simply prove to the access point that it is in possession of the pre-shared key. If the supplicant detects that the service set does not contain a WPA information element then it knows it must use pre-WPA 802.1X authentication and key management in order to access the network.

Key management. WPA features a robust key generation/management system that integrates the authentication and data privacy functions. Keys are generated after successful authentication and through a subsequent 4-way handshake between the station and Access Point (AP).

Data Privacy (Encryption). Temporal Key Integrity Protocol (TKIP) is used to wrap WEP in sophisticated cryptographic and security techniques to overcome most of its weaknesses.

Data integrity. TKIP includes a message integrity code (MIC) at the end of each plaintext message to ensure messages are not being spoofed.

Wireless Networking Basics

D-11

August 2004

Page 163
Image 163
NETGEAR DG834GT manual Wireless Networking Basics

DG834GT specifications

The NETGEAR DG834GT is a versatile wireless ADSL2+ modem router that is widely recognized for its reliable performance and impressive feature set. As an all-in-one solution, it caters to the needs of both home and small office users who require stable internet connectivity combined with advanced networking capabilities.

One of the standout features of the DG834GT is its impressive wireless performance, which supports wireless 802.11g technology. This allows for wireless speeds of up to 54 Mbps, making it suitable for common internet activities such as web browsing, email, and streaming media. For users seeking enhanced range and reliability, the modem incorporates NETGEAR's patented Smart Wizard technology, which simplifies the installation process and ensures optimal wireless coverage throughout the area.

The DG834GT also supports ADSL2+ internet connections, providing a robust bandwidth of up to 24 Mbps, depending on the service provider and distance from the exchange. This means users can take full advantage of high-speed internet services, allowing for smooth simultaneous activities like online gaming and video conferencing.

Security is another important aspect of the DG834GT, featuring a robust firewall and support for WPA/WPA2 encryption, ensuring that user data remains secure. The modem also includes parental controls, enabling users to restrict internet access at certain times or filter content, making it ideal for family use.

In addition to its wireless capabilities, the DG834GT comes with four Ethernet ports, offering the flexibility to connect multiple wired devices. This makes it a great option for users who require stable connections for gaming consoles, desktop computers, or network printers.

Performance-wise, the NETGEAR DG834GT is equipped with Quality of Service (QoS) capabilities, allowing users to prioritize bandwidth for specific applications and devices. This ensures that essential tasks, such as video streaming or online gaming, receive the necessary bandwidth to function smoothly without interruption.

Overall, the NETGEAR DG834GT combines advanced technology, ease of use, and a comprehensive feature set, making it a popular choice among consumers looking for reliable ADSL connectivity and robust networking options. With its ability to support multiple devices and deliver high-speed internet, it remains a go-to solution for users navigating the demands of modern online life.