Wep | SMC Networks SMC2555W-AG guide

Radio Interface

The security mechanisms that may be employed depend on the level of security required, the network and management resources available, and the software support provided on wireless clients. A summary of wireless security considerations is listed in the following table.

Security	Client	Implementation Considerations
Mechanism	Support

WEP	Built-in support on all	•	Provides only weak security
	802.11a, 802.11b and	• Requires manual key management
	802.11g devices
WEP over	Requires 802.1x client	•	Provides dynamic key rotation for
802.1x	support in system or by		improved WEP security
	add-in software	•	Requires configured RADIUS server
	(native support provided	•	802.1x EAP type may require
	in Windows XP)		management of digital certificates for
			clients and server

MAC Address	Uses the MAC address	• Provides only weak user
Filtering	of client network card		authentication
		• Management of authorized MAC
			addresses
		• Can be combined with other methods
			for improved security
		•	Optionally configured RADIUS server

WPA over	Requires WPA-enabled	• Provides robust security in WPA-only
802.1x mode	system and network		mode (i.e., WPA clients only)
	card driver	• Offers support for legacy WEP clients,
	(native support provided		but with increased security risk (i.e.,
	in Windows XP)		WEP authentication keys disabled)
		• Requires configured RADIUS server
		• 802.1x EAP type may require
			management of digital certificates for
			clients and server

WPA PSK	Requires WPA-enabled	• Provides good security in small
mode	system and network		networks
	card driver	• Requires manual management of
	(native support provided		pre-shared key
	in Windows XP)

Note: Although a WEP static key is not needed for WEP over 802.1x, WPA over 802.1x, and WPA PSK modes, you must enable WEP encryption through the web or CLI in order to enable all types of encryption in the access point.

5-51

Image 109

SMC Networks SMC2555W-AG manual Wep

Contents

SMC2555W-AG Page Revision Number R02, F3.0.02 Trademarks Copyright Limited Warranty Limited Warranty Federal Communication Commission Interference Statement Wireless 2.4 Ghz and 5 GHz Band StatementsFCC Radiation Exposure Statement Japan Vcci Class B Australia/New Zealand AS/NZS Industry Canada Class B EC Conformance Declaration Compliances Declaration of Conformity in Languages of the European Operation Using 5 GHz Channels in the European Community Community Viii Power Cord Safety Safety Compliance Cord set must be UL-approved and CSA certified France et Pérou uniquement Xii Xiii Xiv Table of Contents Xvi Command Line Interface Xvii Xviii Glossary Index Table of Contents Chapter Introduction Introduction Package Checklist Hardware Description Hardware DescriptionFront Panel Rear Panel Component Description LED IndicatorsAntennas Security Slot Console Port Reset ButtonEthernet Port Features and Benefits Features and BenefitsPower Connector Frequently changing environments Applications System Defaults System Defaults MAC System Defaults Iapp 802.11b/g Introduction Hardware Installation Attaching the Mounting Bracket Hardware Installation Hardware Installation Hardware Installation Network Configuration Ad Hoc Wireless LAN no AP or Bridge Network ConfigurationNetwork Topologies Network Topologies Infrastructure Wireless LAN Infrastructure Wireless LAN for Roaming Wireless PCs Seamless Roaming Network Configuration Required Connections Initial Setup through the CLI Initial Configuration Initial Configuration Steps Initial Setup through the CLI Using the Web-based Management Setup Wizard Using the Web-based Management Setup Wizard Initial Configuration Using the Web-based Management Setup Wizard 802.11g Radio Channel Set the operating radio Using the Web-based Management Setup Wizard Initial Configuration System Configuration System Configuration Advanced Configuration Advanced Configuration System Identification Disabled TCP / IP Settings Advanced Configuration System Configuration SMC-APconfig#interface ethernet Radius Advanced Configuration Authentication fails. Range 1-30 Default SMC-APconfig#radius-server address Authentication Advanced Configuration System Configuration Advanced Configuration Local Allowed Secs Filter Control Number Radius Attribute Value Advanced Configuration Native Vlan AP Management Snmp Advanced Configuration SMC-APconfig#snmp-server host 10.1.19.23 alpha Changing the Password Administration SMC-APconfig#username bob SMC-APconfig#password smcadmin Upgrading Firmware System Configuration Advanced Configuration File Size Enabling System Logging System Log Error Level Description Configuring Sntp System Configuration TAIPEI, Beijing Show sntp command Radio Interface Radio Interface Radio Settings 802.11a Normal Mode Turbo Mode Radio Interface Enter Wireless configuration commands, one per line Enabled Radio Settings 802.11g Radio Interface SMC-APif-wireless g#select-antenna-mode right antenna Ssid Security WEP Wired Equivalent Privacy WEP Radio Interface WEP only WEP over Show interface wireless g command PRE Shared KEY Wi-Fi Protected Access WPA System Configuration Radio Interface System Configuration WPA pre-shared key only WPA over Command not shown in example Show interface wireless a or show interface wireless g Status Information Access Point StatusStatus Information System Configuration Days, 4 hours, 39 minutes Station Status True Event Logs 192.168.1.19 System Configuration Accessing the CLI Using the Command Line InterfaceConsole Connection Telnet Connection Command Line Interface Entering Commands Entering CommandsKeywords and Arguments Getting Help on Commands Command CompletionShowing Commands Minimum Abbreviation Partial Keyword Lookup Using Command History Negating the Effect of CommandsUnderstanding Command Modes Configuration Commands Exec Commands Keystroke Function Command Line Processing Entering Commands Command Description Group Command Groups General Commands General CommandsConfigure Exit End Ping Command UsageSyntax Syntax Reset board configuration ResetShow history Show line Console port settings are fixed at the values shown below Command Function Mode System Management Commands System Clock System Management Commands Country countrycode Country SMC-AP#country ie System name PromptSyntax Prompt string no prompt Syntax System name name no system name Syntax Username name Username Syntax Password password no password PasswordIp http port Syntax Ip http port port-numberno ip http port Ip http server Syntax Ip http server no ip http server Default Setting Logging on Syntax Logging on no logging on Default SettingLogging host Logging console Syntax Logging console no logging console Default Setting Level Argument Description Logging level Syntax Show logging Command Mode Default Setting Command ModeLogging facility-type Show logging Syntax Sntp-server ip 1 2 ip Sntp-server ip Sntp-server enable This example sets the system clock to 1737 June 19 Sntp-server date-time Sntp-server daylight-saving Show sntp Sntp-server timezoneSyntax Sntp-server timezone hours Show system Show version Snmp Commands Snmp CommandsSnmp-server community Syntax Snmp-server contact string no snmp-server contact Snmp-server contact Snmp-server enable server No snmp-server host Snmp-server host Syntax Snmp-server location text no snmp-server location Snmp-server location Show snmp Flash/File Commands Bootfile Flash/File CommandsSyntax Bootfile filename Copy Syntax Copy ftp tftp file copy config ftp tftp Delete File information is shown below Dir Radius Client Radius Client Radius-server port Radius-server addressSyntax Radius-server secondary port portnumber Radius-server retransmit Radius-server keySyntax Radius-server secondary key keystring Syntax Radius-server secondary retransmit numberofretries Syntax Radius-server secondary timeout numberofseconds Radius-server timeout Show radius 802.1x Port Authentication 802.1x 802.1x Port AuthenticationSyntax 802.1x supported required no Syntax 802.1x broadcast-key-refresh-rate rate 802.1x broadcast-key-refresh-rate Syntax 802.1x session-key-refresh-rate rate 802.1x session-key-refresh-rate Address filter default 802.1x session-timeoutDefault Syntax Address filter default allowed denied Syntax Address filter entry mac-addressallowed denied Address filter entry Syntax Address filter delete mac-address Address filter delete Syntax Mac-authentication server local remote Mac-authentication server Syntax Mac-authentication session-timeout seconds Mac-authentication session-timeout Show authentication Syntax Filter local-bridge no filter local-bridge Default Filtering CommandsFilter local-bridge Syntax Filter ap-manage no filter ap-manage Default Filtering CommandsFilter ap-manage Filter ethernet-type enable Filter ethernet-type protocol Show filters Interface Commands Interface Commands IC-W Transmit-power Interface Syntax Interface ethernet wireless a gDns server This example specifies two domain-name servers Ip address IP address Netmask Ip dhcp Syntax Ip dhcp no ip dhcp Default Setting Shutdown Syntax Shutdown no shutdown Default SettingShow interface ethernet Syntax Show interface ethernet Syntax Radio-mode b g b+g Radio-mode Syntax Select-antenna-mode diversity right antenna Select-antenna-mode Description Syntax Ssid-broadcast no ssid-broadcast Default SettingSsid-broadcast Syntax Description string no description Syntax Speed speed Speed Syntax Channel channel auto Channel Turbo Beacon-interval SsidSyntax Beacon-interval interval Syntax Dtim-period interval Dtim-period Fragmentation-length Default Setting 2346 Command ModeSyntax Fragmentation-length length Syntax Rts-threshold threshold Rts-threshold Syntax Authentication open shared Encryption Key index size type value no key index Key Syntax Transmit-key index Transmit-key Transmit-powersignal-strength Transmit-power Syntax Max-association count Max-association Syntax Multicast-cipher AES Tkip WEP Multicast-cipher Syntax Wpa-clients required supported Wpa-clients Enhanced Data Encryption through Tkip Syntax Wpa-mode dynamic pre-shared-key Wpa-mode Syntax Wpa-preshared-key type value Wpa-preshared-key Syntax Wpa-psk-type type Wpa-psk-type Syntax Show interface wireless a g Show interface wireless Ssid SMC Show station Syntax Iapp no iapp Default Iapp CommandsIapp Vlan Commands Vlan Commands Command Description Syntax Vlan enable no vlan DefaultVlan Syntax Native-vlanid vlan-id Native-vlanid 102 Appendix a Troubleshooting Troubleshooting Troubleshooting Important Notice Maximum Distance Table Twisted-Pair Cable Assignments Appendix B Cables and Pinouts 10/100BASE-TX Pin Assignments Cables and Pinouts Crossover Wiring Straight-Through WiringTwisted-Pair Cable Assignments Console Port Pin Assignments Wiring Map for Serial Cable Serial Cable Signal Directions for DB-25 Ports Serial Cable Signal Directions for DB-9 PortsConsole Port Pin Assignments Cables and Pinouts General Specifications Specifications General Specifications Ieee 802.11a Sensitivity GHz dBm Modulation/Rates Sensitivity Transmit Power Specifications Authentication Access PointAd Hoc Advanced Encryption Standard AES Glossary Extensible Authentication Protocol EAP Extended Service Set ESSEthernet File Transfer Protocol FTP Ieee 802.11b Inter Access Point Protocol IappIeee 802.11g Ieee Network Time Protocol NTP Power over Ethernet PoEOpen System Orthogonal Frequency Division Multiplexing Odfm Session Key Service Set Identifier SsidShared Key Simple Network Management Protocol Snmp Trivial File Transfer Protocol Tftp Wi-Fi Protected AccessVirtual LAN Vlan WPA Pre-shared Key PSK Glossary-8 Index Index Index-3 Index-4 Page For Technical SUPPORT, Call