RangeMax NEXT Wireless-N Access Point WN802T Reference Manual

Installation and Configuration

2-13

v1.0, August 2007

3.

The login screen will display. Enter

admin

for the user name and

password

for the password,

both in lower case letters.

4.

Click

OK

.

Your Web browser should automatically find the RangeMax NEXT and display the home

screen, as shown in

Figure 2-7

above.

Figure 2-7

RangeMax NEXT Wireless-N Access Point WN802T Reference Manual

2-14

Installation and Configuration

v1.0, August 2007

3-1

v1.0, August 2007

Chapter 3

Wireless Security Settings

Your wireless data transmissions can be received well beyond your walls by anyone with a

compatible adapter. For this reason, use the security features of your wireless equipment. The

RangeMax NEXT provides highly effective security features which are covered in detail in this

chapter. Deploy the security features appropriate to your needs.

Understanding WN802T Wireless Security Options

There are several ways you can enhance the security of your wireless network:

•

Restrict Access Based on MAC address.

You can restrict access to only trusted PCs so that

unknown PCs cannot wirelessly connect to the WN802T. MAC address filtering adds an

obstacle against unwanted access to your network, but the data broadcast over the wireless link

is fully exposed.

•

Turn Off the Broadcast of the Wireless Network Name (SSID).

If you disable broadcast of

the SSID, only devices that have the correct SSID can connect. This nullifies the wireless

network “discovery” feature of some products such as Windows XP, but the data is still fully

exposed to a determined snoop using specialized test equipment like wireless sniffers.

•

Use WEP.

Wired Equivalent Privacy (WEP) data encryption provides data security. WEP

Shared Key authentication and WEP data encryption will block all but the most determined

eavesdropper.

Figure 3-1

1) .O 3ECURITY:

%ASY BUT NO SECURITY

2) -!# !CCESS ,IST:

.O DATA SECURITY

4) 7%0:

3ECURITY BUT VULNERABLE

5) 70!/03+6 70!2/03+ OR 70!/03+ 8

70!2/03+:

9ERY STRONG SECURITY

############:LUHOHVV#'DWD#

##########6HFXULW\#2SWLRQV

5DQJH=#8S#WR#933#)RRW#5DGLXV#

WN802T

RangeMax NEXT Wireless-N Access Point WN802T Reference Manual

3-2

Wireless Security Settings

v1.0, August 2007

•

Use WPA-PSK or WPA2-PSK.

Wi-Fi Protected Access (WPA) provides stronger data

encryption than WEP. The very strong authentication along with dynamic per frame rekeying

of WPA make it virtually impossible to compromise. The preshared key (PSK) is common to

all users. Because this is a recent standard, wireless device driver and software availability

may be limited.

•

Use WPA-PSK or WPA2-PSK with Radius.

Using a Remote Authentication Dial In User

Service (RADIUS) authentication server allows centralized authentication management with

individual user names and passwords.

WEP/WPA Settings

The WN802T Access Point is set by default “None” or no authentication. When setting up

Network Authentication, bear in mind the following:

Not all wireless adapters support WPA or WPA2. Windows XP and Windows 2000 with Service

Pack 3 do include the client software that supports WPA. However, client software is required on

the client. Consult the product documentation for your wireless adapter and WPA or WPA2 client

software for instructions on configuring WPA2 settings.

•

Network Authentication

. You can configure the RangeMax NEXT to use the types of

network authentication shown in the table below.

Table 3-1. Network Authentication Types

Type

Description

None

No data encryption

WEP

Wired Equivalent Privacy using either 64-bit or 128-bit data

encryption.

WPA-PSK (TKIP)

Wi-FI Protected Access with Pre-Shared Key, uses WPA-PSK

standard encryption with TKIP encryption type.

WPA2-PSK (AES)

Wi-FI Protected Access with Pre-Shared Key, uses WPA-PSK

standard encryption with AES encryption type. Only select this if all

clients support WPA2.

WPA-PSK (TKIP) + WPA2-PSK

(AES)

This selection allows clients to use either WPA-PSK (TKIP) or

WPA2-PSK (AES).

WPA with Radius

If selected, you must configure the Radius Server Settings Screen.

WPA2 with Radius

Only select this if all clients support WPA2. If selected, you must use

AES encryption, and configure the Radius Server Settings Screen.

WPA and WPA2 with Radius

If selected, encryption must be TKIP + AES. If selected, you must

configure the Radius Server Settings Screen.

RangeMax NEXT Wireless-N Access Point WN802T Reference Manual

Wireless Security Settings

3-3

v1.0, August 2007

•

Data Encryption

. The available options depend on the Network Authentication setting

selected (see

Table 3-1

above); otherwise, the default is None. The Data Encryption settings

are explained in the table below:

•

WEP Authentication Type.

WEP can be authenticated using Open System or Automatic. If

set to Open System, clients can only associate to the wireless access point by using the Open

System option. If set to Automatic, clients can associate to the wireless access point using both

Open System and Shared Key. Setting the Authentication Type to Automatic will detect which

WEP authentication method is being used. The default is Automatic.

•

Use of Passphrases and Keys are explained below:

–

Passphrase.

To use the Passphrase to generate the WEP keys, enter a passphrase and click

the Generate Keys button. You can also enter the keys directly. These keys must match the

other wireless stations.

–

Key 1, Key 2, Key 3, Key 4

. If using WEP, select the key to be used as the default key.

Data transmissions are always encrypted using the default key. The other keys can only be

used to decrypt received data.

–

WPA Preshared Key Passphrase.

If using WPA-PSK, WPA2-PSK or WPA-PSK +

WPA2-PSK, enter the passphrase here. All wireless stations must use the same passphrase

(network key). The network key must be from 8 to 63 characters in length.

Table 3-1. Data Encryption Settings

Data Encryption Type

Description

None

No encryption is used.

64 bits WEP

Standard WEP encryption, using 40/64 bit encryption.

128 bits WEP

Standard WEP encryption, using 104/128 bit encryption.

TKIP

Automatic encryption with WPA-PSK; requires passphrase

AES

Automatic encryption with WPA2-PSK; requires passphrase