ZyXEL Communications ZyWALL5UTM 4.0 9.7 Security Parameters Summary, 9.8 WEP Encryption, 9.6.3 Restricted Access, 9.6.4 Hide ZyWALL Identity, MAC Filter, Deny Association, Allow Association

ZyWALL 5/35/70 Series User’s Guide

9.6.3 Restricted Access

The MAC Filter screen allows you to configure the AP to give exclusive access to devices (Allow Association) or exclude them from accessing the AP (Deny Association).

9.6.4 Hide ZyWALL Identity

If you hide the ESSID, then the ZyWALL cannot be seen when a wireless client scans for local APs. The trade-off for the extra security of “hiding” the ZyWALL may be inconvenience for some valid WLAN clients.

9.7 Security Parameters Summary

Refer to this table to see what other security parameters you should configure for each authentication method/ key management protocol type. You enter manual keys when using WEP encryption or WPA-PSK. MAC address filters are not dependent on how you configure these security features.

Table 53 Wireless Security Relational Matrix

AUTHENTICATION	ENCRYPTION	ENTER
METHOD/ KEY	ENCRYPTION	ENTER	IEEE 802.1X
METHOD/ KEY	METHOD	MANUAL KEY	IEEE 802.1X
MANAGEMENT PROTOCOL	METHOD	MANUAL KEY

Open	None	No	Disable

			Enable without Dynamic WEP Key

Open	WEP	No	Enable with Dynamic WEP Key

		Yes	Enable without Dynamic WEP Key

		Yes	Disable

Shared	WEP	No	Enable with Dynamic WEP Key

		Yes	Enable without Dynamic WEP Key

		Yes	Disable

WPA	TKIP	No	Enable

WPA-PSK	TKIP	Yes	Enable

9.8 WEP Encryption

WEP (Wired Equivalent Privacy) as specified in the IEEE 802.11 standard provides methods for both data encryption and wireless station authentication. WEP provides a mechanism for encrypting data using encryption keys. Both the AP and the wireless stations must use the same WEP key to encrypt and decrypt data. Your ZyWALL allows you to configure up to four 64-bit or 128-bit WEP keys, but only one key can be used at any one time.

Chapter 9 Wireless LAN

180