NETGEAR ME103 Shared Key Authentication

Reference Manual for the ME103 802.11b ProSafe Wireless Access Point

B-4 Wireless Networking Basics

August 2003

Figure 6-1: 802.11 open system authentication

Shared Key Authentication

The following steps occur when two devices use Shared Key Authentication:

1. The station sends an authentication request to the access point.

2. The access point sends challenge text to the station.

3. The station uses its configured 64-bit or 128-bit default key to encrypt the challenge text, and

sends the encrypted text to the access point.

4. The access point decrypts the encrypted text using its configured WEP Key that corresponds

to the station’s default key. The access point compares the decrypted text with the original

challenge text. If the decrypted text matches the original challenge text, then the access point

and the station share the same WEP Key and the access point authenticates the station.

5. The station connects to the network.

If the decrypted text does not match the original challenge text (i.e., the access point and station do

not share the same WEP Key), then the access point will refuse to authenticate the station and the

station will be unable to communicate with either the 802.11 network or Ethernet network.

This process is illustrated in below.

INTERNET LOCAL

ACT

12345678

LNK

LNK/ACT

100

Cable/DSLProSafeWirelessVPNSecurityFirewall

MODELFVM318

PWR TEST

WLAN

Enable

AccessPoint

1)Authentication request sent to AP

2)AP authenticates

3)Client connects to network

802.11bAuthentication

Open System Steps

Cableor

DLSmodem

Client

attempting

toconnect

Contents

Main NETGEAR, INC. www.NETGEAR.com Technical Support Please register to obtain technical support Trademarks Statement of Conditions August 2003 Federal Communications Commission (FCC) Compliance Notice: Radio Frequency Notice August 2003 Canadian Department of Communications Compliance Statement August 2003 CE Declaration of Conformity 0470 ! Page Contents Page Page Page Chapter 1 About This Manual Audience Scope Typographical Conventions Special Message Formats How to Use the HTML Version of this Manual How to Print this Manual Chapter 2 Introduction About the ME103 802.11b ProSafe Wireless Access Point Key Features 802.11b Standards-based Wireless Networking Autosensing Ethernet Connections with Auto Uplink Compatible and Related NETGEAR Products System Requirements Whats In the Box? Hardware Description 2-6 Introduction August 2003 ME103 Wireless Access Point Front Panel The ME103 Access Point provides three status LEDs. Figure 2-1: ME103 front panel The following table explains the LED indicators: ME103 Wireless Access Point Rear Panel Chapter 3 Basic Installation and Configuration Observing Placement and Range Guidelines of several hundred feet or more. Cabling Requirements 3-3 Basic Installation and Configuration Default Factory Settings Understanding ME103 Wireless Security Options ME103 Wireless Data Security Options Range: Up to 500 Feet Installing the ME103 802.11b ProSafe Wireless Access Point A 1S 1S 2C 3D B 4V How to Log In to the ME103 Using Its Default NetBIOS Name Page How to Log In to the ME103 Using Its Default IP Address Understanding Basic Wireless Settings Understanding Basic Wireless Security Options 3-13 Basic Installation and Configuration Table 3-1. Basic Wireless Security Options Information to Gather Before Changing Basic Wireless Settings How to Set Up and Test Basic Wireless Connectivity How to Restrict Wireless Access by MAC Address How to Configure WEP Using the Basic IP Settings Options Page Page 4-2 Maintenance Table 4-1. General Information Fields Page Page Page Viewing a List of Attached Devices Upgrading the Wireless Access Point Software Configuration File Management Saving and Retrieving the Configuration Restoring the ME103 to the Factory Default Settings Using the Reset Button to Restore Factory Default Settings Changing the Administrator Password Chapter 5 Advanced Configuration Configuring Advanced Security 802.1x Options Basic Requirements for 802.1x How to Configure the 802.1x Key Exchange Option Page Page Page Page Page Page Advanced Configuration 5-9 Table 5-1. Advanced Wireless Settings Fields Configuring Wireless Operating Modes How to Configure a ME103 as a Point-to-Point Bridge LAN Segment 1 LAN Segment 2 AP1 How to Configure Multi-Point Wireless Bridging Page Antenna Installation Blank Configuration Worksheet Chapter 6 Troubleshooting No lights are lit on the access point. The Wireless LAN activity light does not light up. The LAN light is not lit. I cannot access the Internet or the LAN with a wireless capable computer. I am using EAP-TLS security but get disconnected. I cannot connect to the ME103 to configure it. When I enter a URL or IP address I get a timeout error. Using the Reset Button to Restore Factory Default Settings Specifications A-1 Appendix A Specifications Specifications for the ME103 Page Appendix B Wireless Networking Basics Wireless Networking Overview Infrastructure Mode Ad Hoc Mode (Peer-to-Peer Workgroup) Network Name: Extended Service Set Identification (ESSID) Authentication, WEP, and WPA 802.11 Authentication Open System Authentication Shared Key Authentication Overview of WEP Parameters Key Size WEP Configuration Options Wireless Channels Page Understanding 802.1x Port Based Network Access Control Page Page Page Appendix C Network, Routing, Firewall, and Cabling Basics Basic Router Concepts What is a Router? IP Addresses and the Internet Page Netmask Subnet Addressing Page Page Private IP Addresses Single IP Address Operation Using NAT IP Configuration by DHCP Domain Name Server Routing Protocols Internet Security and Firewalls What is a Firewall? Stateful Packet Inspection Denial of Service Attack Ethernet Cabling Uplink Switches, Crossover Cables, and MDI/MDIX Switching Cable Quality Page Appendix D Preparing Your PCs for Network Access Preparing Your Computers for TCP/IP Networking Configuring Windows 98 and Me for TCP/IP Networking Install or Verify Windows Networking Components Page Enabling DHCP to Automatically Configure TCP/IP Settings Page Selecting Windows Internet Access Method Verifying TCP/IP Properties Configuring Windows 2000 or XP for TCP/IP Networking Install or Verify Windows Networking Components DHCP Configuration of TCP/IP in Windows XP Page DHCP Configuration of TCP/IP in Windows 2000 Page Verifying TCP/IP Properties for Windows XP or 2000 Page Glossary Use the list below to find definitions for technical terms used in this manual. Page Page Page and information on l Page Page Page Index Index 1 Numerics A B N O P R S