DGFV338 ProSafe Wireless ADSL Modem VPN Firewall Router Reference Manual
3-2 Wireless Configuration
v1.0, April 2007
Unlike wired network data, your wireless data transmissions can extend beyond your walls and
can be received by anyone with a compatible adapter. For this reason, use the security features of
your wireless equipment. The wireless firewall provides highly effective security features which
are covered in detail in this chapter.
There are several ways you can enhance the security of your wireless network:
•Restrict Access Based on MAC Address. You can allow only trusted PCs to connect so that
unknown PCs cannot wirelessly connect to the DGFV338. Restricting access by MAC address
adds an obstacle against unwanted access to your network, but the data broadcast over the
wireless link is fully exposed.
•Turn Off the Broadcast of the Wireless Network Name SSID. If you disable broadcast of
the SSID, only devices that have the correct SSID can connect. This nullifies wireless network
“discovery” feature of some products, such as Windows XP, but the data is still exposed.
•WEP. Wired Equivalent Privacy (WEP) data encryption provides data security. WEP Shared
Key authentication and WEP data encryption will block all but the most determined
eavesdropper.
•WPA/WPA2 with RADIUS or WPA/WPA2-PSK. Wi-Fi Protected Access (WPA and
WPA2) data encryption provides data security. The very strong authentication along with
dynamic per frame rekeyin g o f WPA and WPA2 make it virtually impossible to compromise.
Because this is a new standard, wireless de vice driver and software availability may be
limited.
Figure 3-1
.O3ECURITY%ASYBUTNOSECURITY
-!#!CCESS,IST.ODATASECURITY
7%03ECURITYBUTSOMEPERFORMANCE
IMPACT
70!70!OR70!70!03+6ERY
STRONGSECURITY
:LUHOHVV'DWD
6HFXULW\2SWLRQV
5DGLXV8SWR)HHW
+Á.?wjËoåÔ±¤¤~Ë8ÁjjÄÄËÁjÝ?Ê+ÁÍË.jÁÜjÁ
Á?aM?a # 8¤¤|+
3:5
02).4%2 -/$%- ).4%2.%4 ,/#!, 7,!.
7(67
$&7
$/(57
$&7
$/(57
/1.$&7
/1.$&7
DGFV338