ZyWALL 5/35/70 Series User’s Guide

9.6.3 Restricted Access

The MAC Filter screen allows you to configure the AP to give exclusive access to devices (Allow Association) or exclude them from accessing the AP (Deny Association).

9.6.4 Hide ZyWALL Identity

If you hide the ESSID, then the ZyWALL cannot be seen when a wireless client scans for local APs. The trade-off for the extra security of “hiding” the ZyWALL may be inconvenience for some valid WLAN clients.

9.7 Security Parameters Summary

Refer to this table to see what other security parameters you should configure for each authentication method/ key management protocol type. You enter manual keys when using WEP encryption or WPA-PSK. MAC address filters are not dependent on how you configure these security features.

Table 53 Wireless Security Relational Matrix

AUTHENTICATION

ENCRYPTION

ENTER

 

METHOD/ KEY

IEEE 802.1X

METHOD

MANUAL KEY

MANAGEMENT PROTOCOL

 

 

 

 

 

Open

None

No

Disable

 

 

 

 

 

 

 

Enable without Dynamic WEP Key

 

 

 

 

Open

WEP

No

Enable with Dynamic WEP Key

 

 

 

 

 

 

Yes

Enable without Dynamic WEP Key

 

 

 

 

 

 

Yes

Disable

 

 

 

 

Shared

WEP

No

Enable with Dynamic WEP Key

 

 

 

 

 

 

Yes

Enable without Dynamic WEP Key

 

 

 

 

 

 

Yes

Disable

 

 

 

 

WPA

TKIP

No

Enable

 

 

 

 

WPA-PSK

TKIP

Yes

Enable

 

 

 

 

9.8 WEP Encryption

WEP (Wired Equivalent Privacy) as specified in the IEEE 802.11 standard provides methods for both data encryption and wireless station authentication. WEP provides a mechanism for encrypting data using encryption keys. Both the AP and the wireless stations must use the same WEP key to encrypt and decrypt data. Your ZyWALL allows you to configure up to four 64-bit or 128-bit WEP keys, but only one key can be used at any one time.

Chapter 9 Wireless LAN

180