FRITZ WLAN-7390 Router Manual PDF (Setup & Configuration Guide)

Page 136 / 197 Scroll up to view Page 131 - 135

136

The Standard for Security

IEEE 802.11i

The WPA2 security mechanism is defined in the

IEEE 802.11i standard. WPA2 is an extension of the famil-

iar security mechanism WPA (Wi-Fi Protected Access).

The main feature of the extension of WPA to WPA2 is the

AES-CCMP encryption process.

FRITZ!Box supports the AES encryption procedure as part

of the WPA2 mechanism, and the TKIP encryption proce-

dure as part of the WPA mechanism. This means that the

FRITZ!Box can be used in combination with any WLAN

adapters that also support WPA2 with AES or WPA with

TKIP.

2.2

Security

Security is of utmost importance within radio networks.

Therefore it is important that no unauthorized users can

register in a WLAN to use its Internet access or shared net-

work resources.

FRITZ!Box includes settings on various levels that contrib-

ute to the security of your WLAN and thus to the security of

your computers.

Mechanism

Encryption

WPA

TKIP (Temporary Key Integrity Protocol)

WPA2

TKIP

AES-CCMP

based on the extremely secure AES (Ad-

vanced Encryption Standard) procedure.

CCM (Counter with CBC-MAC) defines how

the AES procedure is applied to WLAN

packets.

Radio signals can also be received outside of office or res-

idential spaces and abused for criminal purposes.

Page 137 / 197

Encryption

137

Encryption

The most important security setting is encryption.

FRITZ!Box supports the security mechanisms WEP (Wired

Equivalent Privacy), WPA (Wi-Fi Protected Access) and

WPA2 as follows:

•

As part of the WEP mechanism a static key is deter-

mined to serve for the encryption of the user data.

Enter the key in the WLAN Security settings of the

FRITZ!Box. All of the WLAN adapters in your wireless

network must also use this key.

•

The WPA and WPA2 mechanisms provide for authen-

tication while the connection is being established.

For this a WPA password must be defined.

When WPA is selected, the TKIP encryption method is

used to encrypt the user data. In WPA2 the AES-CCMP

encryption method is used.

The encryption method you configure here must also

be supported by your WLAN adapter.

The user data are encrypted using an automatically

generated key. This key is regenerated at regular in-

tervals.

The WPA password used may be 8 to 63 characters in

length. For increased security, however, the pass-

word should be at least 20 characters long. Use nu-

merals, letters and special characters and combine

capitals and lower-case letters.

Default Setting

In the FRITZ!Box a method combining WPA + WPA2 encryp-

tion with the TKIP/AES-CCMP encryption method is pre-

configured. This setting allows you to use WLAN adapters

that support WPA (TKIP) or WPA2 (AES-CCMP) or both

methods.

It is advisable to change the preconfigured WLAN key as

soon as possible. Changes to the settings can be config-

ured on the FRITZ!Box user interface.

Page 138 / 197

138

Encryption

Recommendation

If your WLAN adapter supports an encryption method that

is more secure than the one preconfigured in the

FRITZ!Box, you should select the more secure encryption

method in your FRITZ!Box.

To configure the best security settings possible with

FRITZ!Box and your WLAN adapter, please note the follow-

ing recommendations:

•

If your WLAN adapter supports WPA2 in accordance

with the 802.11i standard:

–

Enable WPA encryption.

–

Select the WPA mode “WPA2 (CCMP)” or

“WPA+WPA2”.

–

Replace the WPA network key with a new, unique

value.

•

If your WLAN adapter supports the WPA mechanism,

but not the WPA2 mechanism:

–

Enable WPA encryption.

–

Select the WPA mode “WPA (TKIP)” or

“WPA+WPA2”.

–

Replace the WPA network key with a new, unique

value.

•

If your WLAN adapter supports neither the WPA nor

the WPA2 mechanism:

–

Enable WEP encryption.

–

Replace the WLAN key with a new, unique value.

We strongly recommend the use of a WLAN adapter that

supports WPA or WPA2 (for instance, the FRITZ!WLAN USB

Stick N). WEP is out of date and data encrypted with WEP

can be deciphered within minutes.

Page 139 / 197

Wireless Network Name (SSID)

139

Wireless Network Name (SSID)

Your FRITZ!Box provides two wireless networks in different

frequency bands (2.4 and 5 GHz) at the same time. Upon

delivery, the name of both wireless networks (SSIDs) are

set to “FRITZ!Box Fon WLAN 7390”.

2.3

Frequency Ranges

WLAN uses the frequency ranges at 2.4 GHz and 5 GHz as

its transmission range.

With the FRITZ!Box you can establish WLAN connections in

either the 2.4-GHz or the 5-GHz frequency range.

2.4-GHz Frequency

Band

In the 2.4-GHz frequency band WLAN works in the same

range as Bluetooth, microwave devices and various other

devices like radio-controlled toys, garage-door openers

and video bridges. This means that interference may occur

within WLANs operated in the vicinity of such devices.

Generally this has adverse effects on the transmission

rate, including aborted connections.

In the 2.4-GHz frequency range the European regulation

authorities have designated 13 channels for WLAN. A

channel can have a bandwidth of 20 MHz (throughput up

to 130 Mbit/s) or 40 MHz (throughput of up to

300 Mbit/s).

Channels located directly next to each other in the 2.4-

GHz band may overlap and result in mutual interference.

For instance, if several WLANs are operated close to each

other in the 2.4-GHz frequency range with a bandwidth of

20 MHz, a distance of at least five channels should be left

empty between each two channels used. This means that

Because some WLAN control software, like that provided

by Microsoft for Windows, cannot differentiate between

the frequency band used, it will show only one of the

wireless networks with this SSID as an available remote

partner. If you run into difficulties estblishing WLAN con-

nections, you should assign unique names to the two

wireless networks.

Page 140 / 197

140

Frequency Ranges

if channel 1 is selected for one WLAN, the channels 6

through 13 can be selected for a second WLAN. This main-

tains the minimum distance between channels.

WLAN Autochannel

With the WLAN Autochannel function, the FRITZ!Box auto-

matically searches for the channel subject to the least in-

terference. This process takes into consideration interfer-

ence from radio networks in the vicinity (WLAN access

points) and potential sources of interference (for instance

video bridges, baby monitors, microwave ovens). Should

problems with interference persist despite this function,

try to identify the source of interference and switch it off

manually.

Additional tips on interference in the WLAN radio network

are presented in the section “Ruling Out Interference

Caused by Other Wireless Networks” from page 113.

5-GHz Frequency

Band

The FRITZ!Box can operate in the 5-GHz frequency band as

an alternative. This frequency range is used much less fre-

quently than the most common 2.4-GHz frequency range.

In the 5-GHz frequency band, your FRITZ!Box occasionally

may change channels automatically due to DFS (Dynamic

Frequency Selection) if a “higher-privileged user” simulta-

neously claims the channel selected by the FRITZ!Box.

This can happen especially when military or civilian radar

is used in the immediate vicinity. For more information,

see the section “Ruling Out Interference Caused by Other

Wireless Networks” on page 113.

A prerequisite for use of the 5-GHz frequency band is that

all WLAN devices in the network support this frequency

range in accordance with the IEEE 802.11a or IEEE

8002.11n standard.

2.4 GHz or 5 GHz

The FRITZ!Box works in the wireless network either in the

2.4-GHz range or in the 5-GHz range. Both frequency rang-

es can be used simultaneously for WLAN connections.

This means you always have the optimum data connection

at your disposal:

Rate

Popular FRITZ Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share