Manuals / Brands / Computer Equipment / Network Router / ZyXEL Communications / Computer Equipment / Network Router

ZyXEL Communications 10~100 Series Wireless LAN With IEEE, Security Flaws with IEEE, Deployment Issues with IEEE, Advantages of the IEEE, IEEE

1 96

Download 96 pages, 2.4 Mb

ZyWALL 10~100 Series Internet Security Gateway

Chapter 5

Wireless LAN With IEEE 802.1x

As wireless networks become popular for both portable computing and corporate networks, security is now a priority.

Security Flaws with IEEE 802.11

Wireless networks based on the original IEEE 802.11 have a poor reputation for safety. The IEEE 802.11b wireless access standard, first published in 1999, was based on the MAC address. As the MAC address is sent across the wireless link in clear text, it is easy to spoof and fake. Even the WEP (Wire Equivalent Privacy) data encryption is unreliable as it can be easily decrypted with current computer speed

Deployment Issues with IEEE 802.11

User account management has become a network administrator’s nightmare in a corporate environment, as the IEEE 802.11b standard does not provide any central user account management. User access control is done through manual modification of the MAC address table on the access point. Although WEP data encryption offers a form of data security, you have to reset the WEP key on the clients each time you change your WEP key on the access point.

IEEE 802.1x

In June 2001, the IEEE 802.1x standard was designed to extend the features of IEEE 802.11 to support extended authentication as well as providing additional accounting and control features. It is supported by Windows XP and a number of network devices.

Advantages of the IEEE 802.1x

•User based identification that allows for roaming.

Wireless LAN with IEEE 802.1x

5-1

Contents

Internet Security Gateway Copyright Copyright © 2003 by ZyXEL Communications Corporation Disclaimer Trademarks Notice Certifications Information for Canadian Users Caution Note ZyXEL Limited Warranty NOTE Customer Support Table of Contents Page List of Diagrams List of Charts Page Preface About Your ZyWALL About This User's Manual Related Documentation Syntax Conventions Page Page Page Setting up Your Computer’s IP Address Windows 95/98/Me Page Page Windows 2000/NT/XP Page Page Page Macintosh OS 8/9 Page Macintosh OS Page Page Triangle Route The Ideal Setup The “Triangle Route” Problem The “Triangle Route” Solutions IP Aliasing Gateways on the WAN Side Page The Big Picture Page Wireless LAN and IEEE Benefits of a Wireless LAN Ad-hocWireless LAN Configuration Infrastructure Wireless LAN Configuration Page Wireless LAN With IEEE Security Flaws with IEEE Deployment Issues with IEEE Advantages of the IEEE Page PPPoE PPPoE in Action Benefits of PPPoE Traditional Dial-upScenario How PPPoE Works ZyWALL as a PPPoE Client PPTP What is PPTP How can we transport PPP frames from a PC to a broadband modem over Ethernet PPTP and the ZyWALL PPTP Protocol Overview Control & PPP connections PPP Data Connection Page IP Subnetting IP Addressing IP Classes Subnet Masks Subnetting Example: Two Subnets Page Example: Four Subnets Example Eight Subnets Subnetting With Class A and Class B Networks Page Page Page Command Interpreter Command Syntax Command Usage Page Firewall Commands Page Page Page Page Page Page Page NetBIOS Filter Commands Introduction Display NetBIOS Filter Settings Page NetBIOS Filter Configuration Page Boot Commands Page Log Descriptions Page Page Page Page Page Page Page Page Page VPN/IPSec logs VPN Responder IPSec Log Page Page Page Page Log Commands Log Command Example Brute-ForcePassword Guessing Protection Page Page Page Index