Page 61 / 163 Scroll up to view Page 56 - 60
Configuring the Wireless Network
A Note About Wireless Security
Cisco RV120W Administration Guide
52
3
Wireless Security Tips
Since you cannot physically prevent someone from connecting to your wireless
network, you need to take some additional steps to keep your network secure:
Change the default wireless network name or SSID
Wireless devices have a default wireless network name or Service Set
Identifier (SSID) set by the factory. This is the name of your wireless
network, and can be up to 32 characters in length.
You should change the wireless network name to something unique to
distinguish your wireless network from other wireless networks that may
exist around you, but do not use personal information (such as your Social
Security number) because this information may be available for anyone to
see when browsing for wireless networks.
Change the default password
For wireless products such as access points, routers, and gateways, you
will be asked for a password when you want to change their settings. These
devices have a default password set by the factory. The default password
is often admin. Hackers know these defaults and may try to use them to
access your wireless device and change your network settings. To thwart
any unauthorized changes, customize the device’s password so it will be
hard to guess.
Enable MAC address filtering
Cisco routers and gateways give you the ability to enable Media Access
Control (MAC) address filtering. The MAC address is a unique series of
numbers and letters assigned to every networking device. With MAC
address filtering enabled, wireless network access is provided solely for
wireless devices with specific MAC addresses. For example, you can
specify the MAC address of each computer in your network so that only
those computers can access your wireless network.
Page 62 / 163
Configuring the Wireless Network
A Note About Wireless Security
Cisco RV120W Administration Guide
53
3
Enable encryption
Encryption protects data transmitted over a wireless network. Wi-Fi
Protected Access (WPA/WPA2) and Wired Equivalency Privacy (WEP) offer
different levels of security for wireless communication. Currently, devices
that are Wi-Fi certified are required to support WPA2, but are not required
to support WEP.
A network encrypted with WPA/WPA2 is more secure than a network
encrypted with WEP, because WPA/WPA2 uses dynamic key encryption.
To protect the information as it passes over the airwaves, you should enable
the highest level of encryption supported by your network equipment.
WEP is an older encryption standard and may be the only option available
on some older devices that do not support WPA.
Keep wireless routers, access points, or gateways away from exterior walls
and windows.
Turn wireless routers, access points, or gateways off when they are not
being used (at night, during vacations).
Use strong passphrases that are at least eight characters in length.
Combine letters and numbers to avoid using standard words that can be
found in the dictionary.
General Network Security Guidelines
Wireless network security is useless if the underlying network is not secure. Cisco
recommends that you take the following precautions:
Password protect all computers on the network and individually password
protect sensitive files.
Change passwords on a regular basis.
Install anti-virus software and personal firewall software.
Disable file sharing (peer-to-peer). Some applications may open file sharing
without your consent and/or knowledge.
Page 63 / 163
Configuring the Wireless Network
Understanding the Cisco RV120W’s Wireless Networks
Cisco RV120W Administration Guide
54
3
Understanding the Cisco RV120W’s Wireless Networks
The Cisco Small Business RV 120W Wireless-N VPN Firewall provides four
separate virtual wireless networks. These networks can be configured and
enabled with individual settings. You can set up the multiple networks to segment
the network traffic, to allow different levels of access, such as guest access, or to
allow access for different functions such as accounting, billing, and so on.
Configuring Basic Wireless Settings
The following sections contain information on how to configure basic wireless
settings on the Cisco RV120W. These settings apply to all of the wireless
networks.
Configuring Radio, Mode, and Channel Settings
STEP 1
Choose Wireless > Basic Settings.
STEP
2
In the Radio field, choose Enable to enable wireless functionality for the
Cisco RV120W. Choosing Disable turns off wireless functionality for the firewall.
STEP
3
In the Wireless Network Mode field, choose the type of wireless network based
on the devices you have that will connect to the network:
B/G Mixed—Select this mode if you have devices in the network that
support 802.11b and 802.11g.
G Only—Select this mode if all devices in the wireless network only
support 802.11g.
B/G/N Mixed—Select this mode if you have devices in the network that
support 802.11b, 802.11g and 802.11n.
N Only—Select this mode only if all devices in the wireless network
support 802.11n.
STEP
4
Select the channel bandwidth. Available choices depend on the wireless network
mode chosen in Step 3.
STEP
5
The Control Side Band field defines the sideband which is used for the secondary
or extension channel when the AP is operating in 40 Mhz channel width. Choose
lower or upper. This field is only available when channel spacing is set to auto. The
Page 64 / 163
Configuring the Wireless Network
Configuring Basic Wireless Settings
Cisco RV120W Administration Guide
55
3
signal components above the carrier frequency constitute the upper sideband
(USB) and those below the carrier frequency constitute the lower sideband (LSB).
STEP
6
The channel field specifies the frequency that the radio uses to transmit wireless
frames. Select a channel from the list of channels or choose auto to let the Cisco
RV120W determine the best channel to use based on the environment noise levels
for the available channels.
STEP
7
In the U-APSD field, choose Enable to enable the Unscheduled Automatic Power
Save Delivery (also referred to as WMM Power Save) feature that allows the radio
to conserve power. This feature is disabled by default.
STEP
8
Click Save.
Configuring Wireless Security and Other Settings
At a minimum, you should edit the default profiles to enable wireless security. See
A Note About Wireless Security, page 51
.
You can configure wireless security and other settings for each wireless network.
To configure wireless settings:
STEP 1
Choose Wireless > Basic Settings.
STEP
2
In the Wireless Basic Settings Table, check the box on the left of the wireless
network you want to configure.
STEP
3
Click Edit to configure these network properties:
a.
Enter the SSID name, or the unique name for this wireless network. Include up
to 32 characters, using any of the characters on the keyboard. For added
security, you should change the default value to a unique name.
b.
Check the Broadcast SSID box if you want to allow all wireless clients within
range to be able to detect this wireless network when they are scanning the
local area for available networks. Disable this feature if you do not want to make
the SSID known. When this feature is disabled, wireless users can connect to
your wireless network only if they know the SSID (and provide the required
security credentials).
c.
Enter the VLAN, or network for this wireless network. (See Chapter 2,
Configuring Networking, for more information on VLANs.) Devices connecting
to this network are assigned addresses on this VLAN. The default VLAN is 1
and if all the devices are on the same network, this can be left unchanged.
Page 65 / 163
Configuring the Wireless Network
Configuring Basic Wireless Settings
Cisco RV120W Administration Guide
56
3
d.
(Optional) Check the Wireless Isolation within SSID box to separate this
network from the other three networks on the Cisco RV120W. When this
feature is enabled, the network can communicate with the Cisco RV120W, but
not with any of the other networks.
e.
In the Max Associated Clients field, enter the maximum number of endpoints
that can connect to this network. The default value is 8. You can change this
number if you want to restrict traffic on the network to prevent it from being
overloaded, for example. The number of clients connected across all four
virtual access points cannot exceed 100.
f.
Click Save.
Configuring Security
STEP 1
Choose Wireless > Basic Settings.
STEP
2
In the Wireless Basic Settings Table, check the box on the left of the wireless
network you want to configure.
STEP
3
Click Edit Security Mode to configure security.
STEP
4
Select the SSID to configure.
STEP
5
Click Enable under Wireless Isolation within SSID to separate this network from
the other three wireless networks on the Cisco RV120W. When this feature is
enabled, the network can communicate with the Cisco RV120W, but not with any
of the other three networks.
STEP
6
In the Security field, select the type of security. All devices on this network must
use the same security mode and settings to work correctly. Cisco recommends
using the highest level of security that is supported by the devices in your
network.
Disabled—Any device can connect to the network. Not recommended.
Wired Equivalent Privacy (WEP)— Weak security with a basic encryption
method that is not as secure as WPA. WEP may be required if your network
devices do not support WPA; however, it is not recommended.
Wi-Fi Protected Access (WPA) Personal—WPA is part of the wireless
security standard (802.11i) standardized by the Wi-Fi Alliance and was
intended as an intermediate measure to take the place of WEP while the
802.11i standard was being prepared. It supports TKIP/AES encryption. The

Rate

4 / 5 based on 1 vote.

Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top