Manuals / Brands / Computer Equipment / Network Router / ZyXEL Communications / Computer Equipment / Network Router

ZyXEL Communications NWA1120 Series IEEE, Table, ENTER, Figure, N METHOD, ENCRYPTIO, MANUAL KEY, METHOD/ KEY, AUTHENTICATION, MANAGEMENT PROTOCOL

1 210

Download 210 pages, 6.28 Mb

Appendix E Wireless LANs

1First enter identical passwords into the AP and all wireless clients. The Pre-Shared Key (PSK) must consist of between 8 and 63 ASCII characters or 64 hexadecimal characters (including spaces and symbols).

2The AP checks each wireless client's password and allows it to join the network only if the password matches.

3The AP and wireless clients generate a common PMK (Pairwise Master Key). The key itself is not sent over the network, but is derived from the PSK and the SSID.

4The AP and wireless clients use the TKIP or AES encryption process, the PMK and information exchanged in a handshake to create temporal encryption keys. They use these keys to encrypt data exchanged between them.

Figure 96 WPA(2)-PSK Authentication

Security Parameters Summary

Refer to this table to see what other security parameters you should configure for each authentication method or key management protocol type. MAC address filters are not dependent on how you configure these security features.

Table 58 Wireless Security Relational Matrix

	AUTHENTICATION	ENCRYPTIO	ENTER
	METHOD/ KEY	ENCRYPTIO	ENTER	IEEE 802.1X
	METHOD/ KEY	N METHOD	MANUAL KEY	IEEE 802.1X
	MANAGEMENT PROTOCOL	N METHOD	MANUAL KEY
	Open	None	No	Disable

				Enable without Dynamic WEP Key

	Open	WEP	No	Enable with Dynamic WEP Key

			Yes	Enable without Dynamic WEP Key

			Yes	Disable

	Shared	WEP	No	Enable with Dynamic WEP Key

			Yes	Enable without Dynamic WEP Key

			Yes	Disable

	WPA	TKIP/AES	No	Enable

	WPA-PSK	TKIP/AES	Yes	Disable

190
190	NWA1120 Series User’s Guide

Contents

NWA1120 Series Quick Start Guide User’s Guide Page Contents Overview Table of Contents Part I: User’s Guide Chapter Page LAN VLAN System Log Settings Maintenance Page Page Introducing the NWA 1.1 Introducing the NWA 1.2 Wireless Modes VoIP_SSID SSID01 Guest_SSID Page Page 1.3 Ways to Manage the NWA 1.4 Configuring Your NWA’s Security Features 1.5Good Habits for Managing the NWA 1.6Hardware Connections 1.7 LED Introducing the Web Configurator 2.1 Overview 2.2Accessing the Web Configurator Login Ignore Dashboard 2.3 Resetting the NWA 2.4 Navigating the Web Configurator LINK TAB FUNCTION Page Dashboard 3.1 The Dashboard Screen Page Maintenance > General System Name Repeater Client MBSSID the Maintenance > Time screen Down N/A Tutorial 4.1 How to Configure the Wireless LAN 4.2How to Configure Multiple Wireless Networks Page Wireless LAN > SSID Edit Profile1 3Rename the Profile Name and SSID as SSID01. Click Apply Profile2 Active SecProfile1 Hidden SSID Intra-BSS Traffic blocking 3Next, click Wireless LAN > Security. Click the Edit icon next to SecProfile1 Pre-Shared Key ThisisSSID01PreSharedKey SecProfile2 WMM_VOICE 4Next, click Wireless LAN > Security. Click the Edit icon next to SecProfile2 ThisisVoIPPreSharedKey SecProfile3 WMM_BESTEFFORT 4Select the check-boxof Intra-BSSTraffic blocking Enabled. Click Apply 5Next, click Wireless LAN > Security. Click the Edit icon next to SecProfile3 4.3NWA Setup in AP and Wireless Client Modes Page Wireless LAN > Wireless Settings 1Set the Operation Mode to Root AP Wireless Mode 802.11b/g/n 3Select Profile1 as the SSID Profile AP-A 8Select SecProfile1 in the Security field Traffic blocking Enabled 11Go to Wireless LAN > Security. Click the Edit icon next to SecProfile1 1Select Client as Operation Mode. Click Apply Site Survey Wireless LAN > Security WPA-PSK/ThisisMyPreSharedKey 1Go to Wireless LAN > MAC Filter. Click the Edit icon next to MacProfile1 Allow Access Control Mode W, Y Page Page Monitor 5.1 Overview 5.2What You Can Do 5.3View Logs 5.4 Statistics 5.5 Association List 5.6 Channel Usage Page Wireless LAN 6.1 Overview 6.2What You Can Do in this Chapter 6.3What You Need To Know Page SECURITY SECURITY TYPE LEVEL None WEP Page 6.4 Wireless Settings Screen Page Root AP Settings- 2.4G 802.11a 802.11a/n/ac in the Wireless Mode field SSID Profile LABEL DESCRIPTION Local MAC Address 802.11a/n/ac is selected in the Wireless Mode field Page Page Page Client Operation Mode Basic Settings Site Survey Apply Dynamic Page Page Page Page 6.5 SSID Screen Figure 27 SSID: Edit Disabled Disabled 6.6 Wireless Security Screen Security Settings WEP Open Shared 64-bit 128-bit WPA WPA2 WPA2-MIX WPA-MIX Security Mode TTLS PAP CHAP MSCHAP MSCHAPv2 6.7 RADIUS Screen Page 6.8 Layer-2Isolation Intra-BSS Traffic Blocking Wireless LAN 6.9 MAC Filter Screen Wireless LAN > MAC Filter 6.10 Technical Reference TERM Page LAN 7.1 Overview 7.2 What You Can Do in this Chapter 7.3 What You Need to Know Page 7.4 LAN IP Screen Page VLAN 8.1 Overview 8.2 What You Need to Know 8.3 VLAN Screen System 9.1 Overview 9.2What You Can Do in this Chapter 9.3What You Need To Know Secured Client IP Address 9.4 WWW Screen 9.5 Certificates Screen 9.6 Telnet Screen Page 9.7 SNMP Screen Read/Write 9.8 FTP Screen 9.9 Technical Reference Page Certificate Details Thumbprint Algorithm Thumbprint Log Settings 10.1 Overview 10.2 What You Can Do in this Chapter 10.3 What You Need To Know 10.4 Log Settings Screen Configuration Weekly Log Schedule Maintenance 11.1 Overview 11.2What You Can Do in this Chapter 11.3 What You Need To Know 11.4 General Screen 11.5 Password Screen 11.6 Time Screen 11.7 Firmware Upgrade Screen 11.8 Configuration File Screen 11.9 Restart Screen Troubleshooting 12.1Power, Hardware Connections, and LEDs 12.2 NWA Access and Login 12.3 Internet Access 12.4Wireless LAN Page Setting Up Your Computer’s IP Address Page Page 5The Internet Protocol TCP/IP Properties window opens Obtain an IP address automatically 7Click OK to close the Internet Protocol (TCP/IP) Properties window 8Click OK to close the Local Area Connection Properties window 1Click Start > All Programs > Accessories > Command Prompt Page Continue 6Select Internet Protocol Version 4 (TCP/IPv4) and then select Properties 7The Internet Protocol Version 4 (TCP/IPv4) Properties window opens 9Click OK to close the Internet Protocol (TCP/IP) Properties window 10Click OK to close the Local Area Connection Properties window Page Page 5Select Internet Protocol Version 4 (TCP/IPv4) and then select Properties 6The Internet Protocol Version 4 (TCP/IPv4) Properties window opens 8Click OK to close the Internet Protocol (TCP/IP) Properties window 9Click OK to close the Local Area Connection Properties window 1Click Apple > System Preferences System Preferences Built-in Ethernet Configure Using DHCP Configure IPv4 TCP/IP Manually Router Applications > Utilities > Network Utilities Network Interface Info 2In System Preferences, click the Network icon Configure Page Network interface 1Click System > Administration > Network Network Settings Unlock Authenticate Properties Static IP address IP address Subnet mask Gateway address DNS Close System > Administration > Network Tools Network device Devices Interface Statistics 1Click K Menu > Computer > Administrator Settings (YaST) Run as Root - KDE su YaST Control Center Network Devices Network Card Overview Name Network Card Setup Address Dynamic Address (DHCP) Statically assigned IP Address Hostname Hostname/DNS Finish KNetwork Manager Task bar Options Page Pop-upWindows, JavaScript and Java Permissions Block pop-ups 2Select Settings…to open the Pop-upBlocker Settings screen Add Allowed sites Custom Level Scripting Active scripting Scripting of Java applets Microsoft VM Java permissions Advanced 2Make sure that Use Java 2 for <applet> under Java (Sun) is selected Tools Content Preferences Choose how you prefer to handle Open all JavaScript Options IP Addresses and Subnetting 1ST OCTET: 2ND 3RD 4TH OCTET OCTET: BINARY 1ST DECIMAL OCTET SUBNET MASK ALTERNATIVE LAST OCTET NOTATION (BINARY) (DECIMAL) Table 43 Subnet IP/SUBNET MASK NETWORK NUMBER LAST OCTET BIT VALUE Table 44 Subnet Table 45 Subnet Table 46 Subnet SUBNET FIRST ADDRESS LAST BROADCAST ADDRESS Table IPv6 MULTICAST ADDRESS MAC EUI-64 Page Page Page Start All Programs Dibbler-DHCPv6 Client Install as service 3Select Start > Control Panel > Administrative Tools > Services 1Select Control Panel > Network and Sharing Center > Local Area Connection 2Select the Internet Protocol Version 6 (TCP/IPv6) checkbox to enable it 4Click Close to exit the Local Area Connection Status screen 5Select Start > All Programs > Accessories > Command Prompt Wireless LANs Page Page Figure 94 RTS/CTS Fragmentation Threshold Fragmentation Threshold WIRELESS LAN MAXIMUM NET FREQUENCY COMPATIBILITY STANDARD Page Page Page EAP-MD5 EAP-TLS EAP-TTLS PEAP LEAP Page Page AUTHENTICATION ENCRYPTIO ENTER METHOD/ KEY IEEE Page Page Customer Support Page Page Page Page Page Legal Information Copyright Certifications ZyXEL Limited Warranty Open Source Licenses Regulatory Information National Restrictions Safety Warnings Environmental Product Declaration DNS 91 60, 63 BSS 11, 53 Page 60, 64, 66 188 PSK 56 MSDU 60, 64 60, 64, 67 SMTP 108 WPA 55