Manuals / ZyXEL Communications / Computer Equipment / Network Router

ZyXEL Communications MWR102 manual WPA2-PSK Application Example, User Authentication, 138

Models: MWR102

1 183

Download 183 pages 53.98 Kb

Page 138

password-guessing attacks but it's still an improvement over WEP as it employs an easier-to-use, consistent, single, alphanumeric password.

User Authentication

WPA or WPA2 applies IEEE 802.1x and Extensible Authentication Protocol (EAP) to authenticate wireless clients using an external RADIUS database.

If both an AP and the wireless clients support WPA2 and you have an external RADIUS server, use WPA2 for stronger data encryption. If you don't have an external RADIUS server, you should use WPA2 -PSK (WPA2 -Pre-Shared Key) that only requires a single (identical) password entered into each access point, wireless gateway and wireless client. As long as the passwords match, a wireless client will be granted access to a WLAN.

If the AP or the wireless clients do not support WPA2, just use WPA or WPA-PSK depending on whether you have an external RADIUS server or not.

Select WEP only when the AP and/or wireless clients do not support WPA or WPA2. WEP is less secure than WPA or WPA2.

WPA(2)-PSK Application Example

AWPA(2)-PSK application looks as follows.

1First enter identical passwords into the AP and all wireless clients. The Pre-Shared Key (PSK) must consist of between 8 and 63 ASCII characters (including spaces and symbols).

2The AP checks each wireless client's password and (only) allows it to join the network if the password matches.

3The AP derives and distributes keys to the wireless clients.

4The AP and wireless clients use the TKIP or AES encryption process to encrypt data exchanged between them.

138

Image 138

ZyXEL Communications MWR102 manual WPA2-PSK Application Example, User Authentication, 138

Contents

IP Address http//192.168.100.1 Firmware Version Edition 1, 10/2011MWR102 Related Documentation About This Users GuideIntended Audience User Guide FeedbackCustomer Support Support Email Toll-Free Website Postal mailZyXEL Communications Inc 1130 N. Miller Street Anaheim, CA Document Conventions Syntax ConventionsIcons Used in Figures Safety Warnings Battery WarningsPage Table of Contents Part III Security Page 127 Appendix a Pop-up Windows, JavaScripts and Java Permissions105 141Part I Introduction Overview ApplicationsThere are devices linked to the corresponding ports but Good Habits for Managing the MWR102Front Panel No data transmitted or receivedRear Panel Accessing the Web-Based Management Interface Login ScreenResetting the MWR102 Procedure to Use the Reset ButtonMWR102 Modes Device ModesRouter Mode What You Can DoNavigation Panel Link Function Password Access Point Mode Setting your MWR102 to AP ModeAP Mode Status Screen Configuring your Wlan and Maintenance SettingsNavigation Panel Link Function This page provides a tool to scan the wireless network for LAN ScreenNearby routers and APs Network Settings LAN Interface Tutorials DSL ModemCable Modem Connecting to Internet from an Access Point Configuring Wireless Security UsingPush Button Configuration PBC PIN ConfigurationEnabling and Configuring Wireless Security No WPS Configure Your NotebookSecurity Settings Confirm Save Part II Wireless Wireless What You Should KnowWireless Security Overview SsidTypes of Encryption for Each Type of Authentication No AuthenticationGeneral Wireless LAN Screen Wireless Basic SettingsWireless LAN Advanced Settings Length of CRC blocks in the frames during the wireless RecommendedCommunication Security Disabling SecurityWireless Security WEP WEP EncryptionWireless Security WPA-PSK/WPA2-PSK/WPA2-Mixed WPA-PSK/WPA2-PSK/WPA2-MixedAccess Control Wireless Access Control Network Wireless LAN WPS WPS ScreenWireless Site Survey AP Mode Only Wireless Site SurveyWireless Site Survey Network Settings LAN and WANConfiguring Your Internet Connection What You Need To KnowWAN MAC Address LAN Interface Active Dhcp Client List WAN Interface Size before sending. Larger packet size will enhance Provider ISPMaximum packet size the router will transmit. Any PerformancePart Security MAC Filtering OverviewMAC Filtering Part Management Status Status ScreenLabel Description Page Statistics Statistics ScreenManagement Statistics Sent and received Click Management Log to access the Log screen 12 LogLog Screen Label Description Upgrade Firmware Upgrade Firmware ScreenNetwork Temporarily Disconnected Save/Reload Settings Save/Reload Settings ScreenManagement Save/Reload Settings ProgressReset Password Password ScreenLabel Description Part V Troubleshooting Troubleshooting Power, Hardware Connections, and LEDs16.3 MWR102 Access and Login Don’t know the IP address of my MWR102Internet Access Can see the Login screen, but I cannot log in to the MWR102Internet connection is slow or intermittent Resetting MWR102 to Factory Defaults Wireless Router/AP TroubleshootingPage Hardware Features Firmware FeaturesSuch as microwave ovens, wireless phones Bluetooth enabled devices, and other wireless LANsFrequency interference from other 2.4 GHz devices Page Appendices Disable pop-up Blockers Internet Explorer Pop-up BlockersEnable pop-up Blockers with Exceptions Pop-up BlockerSelect Settings…to open the Pop-up Blocker Settings screen Pop-up Blocker Settings JavaScriptsInternet Options Security Security Settings Java Scripting Java PermissionsSecurity Settings Java Java SunJava Sun Introduction to IP Addresses StructureSubnet Masks Subnet Mask Identifying Network Number Subnet MasksNotation Network SizeMaximum Host Numbers Subnetting Alternative Subnet Mask NotationSubnetting Example After Subnetting Example Four Subnets Subnet 100101 Eight Subnets Example Eight SubnetsSubnet Planning 24-bit Network Number Subnet Planning16-bit Network Number Subnet Planning 103Configuring IP Addresses 104Private IP Addresses 105Windows 95/98/Me 106Installing Components 107Configuring 108109 Verifying Settings Windows 2000/NT/XP110 Windows XP Start Menu 111Windows XP Control Panel Network Connections Properties 112Windows XP Internet Protocol TCP/IP Properties 113Windows XP Advanced TCP/IP Properties 114Windows 7/Vista 115Windows 7/Vista 116117 118 Macintosh OS 8/9 119Macintosh OS 120Macintosh OS X Apple Menu 121Macintosh OS X Network 122Using the K Desktop Environment KDE Linux123 Red Hat 9.0 KDE Ethernet Device General 124Using Configuration Files 125Verifying Settings 126Wireless LAN Topologies Ad-hoc Wireless LAN Configuration127 Basic Service Set 128129 Channel 130Fragmentation Threshold 131Ieee 802.11g Wireless LAN Preamble Type132 Ieee Ieee 802.11g133 Types of Authentication Types of Radius Messages134 EAP-TLS Transport Layer Security EAP-TTLS Tunneled Transport Layer ServiceEAP-MD5 Message-Digest Algorithm Peap Protected EAPComparison of EAP Authentication Types Dynamic WEP Key Exchange136 WPA2 Encryption137 User Authentication WPA2-PSK Application Example138 WPA2 with Radius Application Example Security Parameters Summary139 Wireless Security Relational Matrix 140Commonly Used Services 141142 Finger TCP143 NFS UDP144 Rtsp TCP/UDP145 Telnet TCPDisclaimer CopyrightCertifications 146FCC Radiation Exposure Statement 147IC Radiation Exposure Statement ZyXEL Limited WarrantyIndustry Canada Statement Viewing CertificationsRegistration GPL-OSS Software Notice 149Article I. End-User License Agreement for MWR102 150151 152 153 Name Version Source License Open-Sourced ComponentsArticle 154155 GPLGNU General Public License 156157 158 159 160 161 Preamble162 Definitions163 Source Code164 Basic PermissionsProtecting Users Legal Rights From Anti-Circumvention Law 165 Conveying Verbatim CopiesConveying Modified Source Versions 166 Conveying Non-Source Forms167 Additional Terms168 Termination169 Acceptance Not Required for Having CopiesAutomatic Licensing of Downstream Recipients 170 PatentsUse with the GNU Affero General Public License 171No Surrender of Others Freedom Revised Versions of this LicenseLimitation of Liability Disclaimer of Warranty172 Interpretation of Sections 15How to Apply These Terms to Your New Programs 173GNU Lesser General Public License 174175 176 177 178 179 180 BSD 181Zlib License 182Zlib is third party library and has its own license Radvd License 183