NETGEAR FVS318N-100NAS Wireless Security Profiles

Wireless Configuration and Security

109

ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N

provides the most reliable security. Use WPA2 only if all clients in your network support

WPA2. The wireless VPN firewall supports WPA2 with PSK, RADIUS, or a combination of

PSK and RADIUS.

For more information about how to configure WPA2, see Configure and Enable Wireless

Profiles on page 112.

•WPA+WPA2 mixed mode. This mode supports data encryption with a combination of

TKIP and CCMP for both WPA and WPA2 clients. The very strong authentication along

with dynamic per frame rekeying of WPA2 make it virtually impossible to compromise.

The wireless VPN firewall supports WPA+WPA2 with PSK, RADIUS, or a combination of

PSK and RADIUS.

For more information about how to configure WPA+WPA2 mixed mode, see Configure

and Enable Wireless Profiles on page 112.

Note: TKIP provides only legacy (slower) rates of operation. NETGEAR

recommends WPA2 with CCMP to make use of 802.11n rates and

speed.

Wireless Security Profiles

This section consists of the following subsections:

•Before You Change the SSID, WEP, and WPA Settings

•Configure and Enable Wireless Profiles

•Restrict Wireless Access by MAC Address

•View the Status of a Wireless Profile

•Configure Wi-Fi Protected Setup

Wireless security profiles, hereafter referred to as wireless profiles, let you configure unique

security settings for each SSID on the wireless VPN firewall. The wireless VPN firewall

supports up to four wireless profiles (BSSIDs) that you can configure from the Wireless

Profiles screen (see Configure and Enable Wireless Profiles on page 112).

Each wireless profile provides the following features:

•Capability to turn off the wireless profile during scheduled vacations and office

shutdowns, on evenings, or on weekends. This a green feature that allows you to save

energy.

•WLAN partitioning to prevent associated wireless clients (using the same wireless profile)

from communicating with each other. This feature is useful for hotspots and other public

access situations.

•MAC address access control list that lets you add another level of security.

•Capability to monitor the clients that are connected to the SSID of the wireless profile.