ZyXEL G-1000 v2 User’s Guide

The following table describes the fields in this menu.

Table 47 Menu 23.4 System Security: IEEE802.1x

FIELD

DESCRIPTION

 

 

Wireless Port Control

Press [SPACE BAR] and select a security mode for the wireless LAN access.

 

Select No Authentication Required to allow any wireless stations access to

 

your wired network without entering usernames and passwords. This is the

 

default setting.

 

Selecting Authentication Required means wireless stations have to enter

 

usernames and passwords before access to the wired network is allowed.

 

Select No Access Allowed to block all wireless stations access to the wired

 

network.

 

The following fields are not available when you select No Authentication

 

Required or No Access Allowed.

ReAuthentication

Specify how often a client has to re-enter username and password to stay

Timer (in second)

connected to the wired network.

 

This field is activated only when you select Authentication Required in the

 

Wireless Port Control field. Enter a time interval between 10 and 9999 (in

 

seconds). The default time interval is 1800 seconds (or 30 minutes).

Idle Timeout (in

The G-1000 v2 automatically disconnects a client from the wired network after a

second)

period of inactivity. The client needs to enter the username and password again

 

before access to the wired network is allowed.

 

This field is activated only when you select Authentication Required in the

 

Wireless Port Control field. The default time interval is 3600 seconds (or 1

 

hour).

Key Management

Press [SPACE BAR] to select 802.1x, WPA or WPA-PSKand press [ENTER].

Protocol

 

Dynamic WEP Key

This field is activated only when you select Authentication Required in the

Exchange

Wireless Port Control field. Also set the Authentication Databases field to

 

RADIUS Only. Local user database may not be used.

 

Select Disable to allow wireless stations to communicate with the access

 

points without using dynamic WEP key exchange.

 

Select 64-bit WEP or 128-bit WEP to enable data encryption.

 

Up to 32 stations can access the G-1000 v2 when you configure dynamic WEP

 

key exchange.

PSK

Type a pre-shared key from 8 to 63 case-sensitive ASCII characters (including

 

spaces and symbols) when you select WPA-PSKin the Key Management

 

Protocol field.

WPA Mixed Mode

Select Enable to activate WPA mixed mode. Otherwise, select Disable and

 

configure Data Privacy for Broadcast/Multicast packets field.

WPA Broadcast/

The WPA Broadcast/Multicast Key Update Timer is the rate at which the AP

Multicast Key Update

(if using WPA-PSKkey management) or RADIUS server (if using WPA key

Timer

management) sends a new group key out to all clients. The re-keying process

 

is the WPA equivalent of automatically changing the WEP key for an AP and all

 

stations in a WLAN on a periodic basis. Setting of the WPA Broadcast/

 

Multicast Key Update Timer is also supported in WPA-PSK mode.

110

Chapter 14 System Security