32

Web User Interface

4.3.2 Security

This page allows configuration of the WEP keys and/or pass phrase.

Label

Description

WPA

Wi-Fi Protected Access (WPA) is a subset of the IEEE 802.11i

standard. Key differences between WPA and WEP are user

authentication and improved data encryption

WPA-PSK

If you don't have an external RADIUS server you should use

WPA-PSK (WPA Pre-Shared Key) that only requires a single

(identical) password entered into wireless gateway and wireless

client. As long as the passwords match, a client will be granted

access to a WLAN.

WPA2

Advanced protocol, certified through Wi-Fi Alliance's WPA2

program, implements the mandatory elements of 802.11i. In

particular, it introduces a new AES-based algorithm, CCMP,

that is considered fully secure.

U10C022

33

Web User Interface

WPA2-PSK

If you don't have an external RADIUS server you should use

WPA2-PSK (WPA Pre-Shared Key) that only requires a single

(identical) password entered into wireless gateway and wireless

client. As long as the passwords match, a client will be granted

access to a WLAN.

WPA/WPA2 Encryption

Switch to enable and disable WPA/WPA2 encryption.

WPA Pre-Shared Key

The encryption mechanisms used for WPA and WPA-PSK are

the same. The only difference between the two is that WPA-

PSK uses a simple common password, instead of user-specific

credentials.

RADIUS Server

Input the IP address of RADIUS server

RADIUS Port

Enter RADIUS port number when WPA or 802. 1x network

authentication is selected.

RADIUS Key

Enter RADIUS Key when WPA or 802. 1x network

authentication is selected.

Group Key Rotation

Interval

Allows the wireless router to generate best possible random

group key and update all the key-management capable stations

periodically.

WPA/WPA2 Re-auth

Interval

Wireless router (if using WPA-PSK key management) or

RADIUS server (if using WPA key management) sends a new

group key out to all clients. The re-keying process is the WPA

equivalent of automatically changing the WEP key for an AP

and all stations in a WLAN on a periodic basis. Setting of the

WPA Group Key Update Timer is also supported in WPA-PSK

mode.

WEP Encryption

If you don’t have WPA(2)-aware wireless clients, then use WEP

key encrypting. A higher bit key offers better security. WEP

encryption scrambles the data transmitted between the wireless

stations and the access points to keep network communications

private. It encrypts unicast and multicast communications in a

network. Both the wireless stations and the access points must

use the same WEP key. Data Encryption can be set to WEP

128-bit, 64-bit,

or

Disable.

Shared Key

Authentication

Shared Key is an authentication method used by wireless

LANs, which follow the IEEE 802.11 standard. Wireless devices

authenticate each other by using a secret key that is kept by

both devices.

U10C022

34

Web User Interface

802.1x Authentication

Enable to user 802.1x to do authenticate wireless client.

Network Key 1

You can pre-define up to 4 keys for 64-bit or 128-bit (64-bit

keys require 10 hexadecimal digits) (128-bit key require 26

hexadecimal digits) .

Network Key 2

As above

Network Key 3

As above

Network Key 4

As above

Current Network Key

You can select one of the four pre-defined keys as the current

network key.

PassPhrase

You can set WEP encryption key by entering a word or group

of printable characters in the Pass phrase box and click

Generate WEP keys. These characters are case sensitive.

Generate WEP Keys

Force the wireless route to generate 4 WEP keys automatically.

Apply

Click to save the wireless configurations.

WiFi Protected Setup

(WPS)

Configure WPS feature.

WPS Config

If choose to be Enable, then user can use external Registrar to

configure this wireless router; otherwise, user has to login to

wireless router WEB UI to configure the WPS security settings

such as encryption mode and SSID, etc.

Button Mode

Defines the mode of push button,

±

SES, technology developed by Broadcom and SES lets you

configure the SSID and encryption keys on both the router

and the client with the press of a button.

±

WPS, a protocol to simplify the process of configuring

security on wireless networks, and so it was first named

'Wi-Fi Simple Config'.

Device Name

To identify this wireless router in WPS network.

STA PIN

Personal Identification Number of your PC or game machine.

When a WPS supported device tries to connect to this wireless

router, user has to input its PIN into current WPS configure

page’s STA PIN filed.

Apply

Click to make WPS configurations to take effect.

WPS Method

Select WPS mode to be deployed.

U10C022

35

Web User Interface

Start WPS

If selected push button mode, then user only needs to push the

button on WPS supported host. Then, within 2 minutes, push

this “WPS start” button to trigger the physical negotiation

between them.

WPS Status:

Display the WPS status.

4.3.3 Access Control

This page allows configuration of the Access Control to the AP as well as status on the

connected clients. Selects whether clients with the specified MAC address are allowed or

restricted wireless access.

Label

Description

MAC Restrict Mode

Use to control wireless access control mechanism

±

Disable, to turn off this feature, any wireless card can

connect to this wireless router.

±

Allow, white list of the wireless client, their MAC address

should be inputted here manually.

±

Deny, black list of the wireless client, their MAC address

should be inputted here manually.

MAC Addresses

Input the MAC address.

Apply

Click to save.

Connected Clients

List of current connected Wireless client.

U10C022

36

Web User Interface

MAC Address

MAC of the connected wireless client.

Age(s)

Duration since the wireless client connected to wireless router.

RSSI(dBm)

Received signal strength in a wireless environment

IP Addr

Display the IP address assigned to this wireless client.

Host Name

Host name of the wireless client.

4.3.4 Guess Network: Multiple SSID Support

Traditionally, you needed to use different APs to configure different Basic Service Sets (BSSs).

As well as the cost of buying extra APs, there was also the possibility of channel interference.

The Ubee Wireless EMTA supports Multiple Service Set IDentifier which allows you to use one

access point to provide several BSSs simultaneously. You can then assign varying levels of

privilege to different SSIDs and networks associated. Wireless stations can use different SSIDs

to associate with the same AP.

• A maximum of four BSSs are allowed on one AP simultaneously. 1 for Admin access, 3 for

Guest Networks

• You must use different WEP keys for different BSSs. If two stations have different SSIDs

(they are in different BSSs), but have the same WEP keys, they may hear each other’s

communications (but not communicate with each other).

U10C022