1. Home
    2. /
  2. Manuals
    3. /
  3. NETGEAR
    4. /
  4. ME103v4
    5. /
  5. 15
Page 71 / 118 Scroll up to view Page 66 - 70
Wireless Networking Basics
B-1
August 2003
Appendix B
Wireless Networking Basics
This chapter provides an overview of wireless networking and security.
Wireless Networking Overview
The ME103 Access Point conforms to the Institute of Electrical and Electronics Engineers (IEEE)
802.11b standard for wireless LANs (WLANs). On an 802.11b wireless link, data is encoded using
direct-sequence spread-spectrum (DSSS) technology and is transmitted in the unlicensed radio
spectrum at 2.5GHz. The maximum data rate for the wireless link is 11 Mbps, but it will
automatically back down from 11 Mbps to 5.5, 2, and 1 Mbps when the radio signal is weak or
when interference is detected.
The 802.11 standard is also called Wireless Ethernet or Wi-Fi by the Wireless Ethernet
Compatibility Alliance (WECA, see
), an industry standard group promoting
interoperability among 802.11 devices. The 802.11 standard offers two methods for configuring a
wireless network - ad hoc and infrastructure.
Infrastructure Mode
With a wireless Access Point, you can operate the wireless LAN in the infrastructure mode. This
mode provides wireless connectivity to multiple wireless network devices within a fixed range or
area of coverage, interacting with wireless nodes via an antenna.
In the infrastructure mode, the wireless access point converts airwave data into wired Ethernet
data, acting as a bridge between the wired LAN and wireless clients. Connecting multiple Access
Points via a wired Ethernet backbone can further extend the wireless network coverage. As a
mobile computing device moves out of the range of one access point, it moves into the range of
another. As a result, wireless clients can freely roam from one Access Point domain to another and
still maintain seamless network connection.
Page 72 / 118
Reference Manual for the ME103 802.11b ProSafe Wireless Access Point
B-2
Wireless Networking Basics
August 2003
Ad Hoc Mode (Peer-to-Peer Workgroup)
In an ad hoc network, computers are brought together as needed; thus, there is no structure or fixed
points to the network - each node can generally communicate with any other node. There is no
Access Point involved in this configuration. This mode enables you to quickly set up a small
wireless workgroup and allows workgroup members to exchange data or share printers as
supported by Microsoft networking in the various Windows operating systems. Some vendors also
refer to ad hoc networking as peer-to-peer group networking.
In this configuration, network packets are directly sent and received by the intended transmitting
and receiving stations. As long as the stations are within range of one another, this is the easiest
and least expensive way to set up a wireless network.
Network Name: Extended Service Set Identification (ESSID)
The Extended Service Set Identification (ESSID) is one of two types of Service Set Identification
(SSID). In an ad hoc wireless network with no access points, the Basic Service Set Identification
(BSSID) is used. In an infrastructure wireless network that includes an access point, the ESSID is
used, but may still be referred to as SSID.
An SSID is a thirty-two character (maximum) alphanumeric key identifying the name of the
wireless local area network. Some vendors refer to the SSID as network name. For the wireless
devices in a network to communicate with each other, all devices must be configured with the
same SSID.
Authentication, WEP, and WPA
The absence of a physical connection between nodes makes the wireless links vulnerable to
eavesdropping and information theft. To provide a certain level of security, the IEEE 802.11
standard has defined two types of authentication methods, Open System and Shared Key. With
Open System authentication, a wireless PC can join any network and receive any messages that are
not encrypted. With Shared Key authentication, only those PCs that possess the correct
authentication key can join the network. By default, IEEE 802.11 wireless devices operate in an
Open System network. Recently, Wi-Fi, the Wireless Ethernet Compatibility Alliance
(
) developed the Wi-Fi Protected Access (WPA), a new strongly enhanced
Wi-Fi security. WPA will soon be incorporated into the IEEE 802.11 standard.
Page 73 / 118
Reference Manual for the ME103 802.11b ProSafe Wireless Access Point
Wireless Networking Basics
B-3
August 2003
802.11 Authentication
The 802.11 standard defines several services that govern how two 802.11 devices communicate.
The following events must occur before an 802.11 Station can communicate with an Ethernet
network through an access point such as the one built in to the ME103:
1.
Turn on the wireless station.
2.
The station listens for messages from any access points that are in range.
3.
The station finds a message from an access point that has a matching SSID.
4.
The station sends an authentication request to the access point.
5.
The access point authenticates the station.
6.
The station sends an association request to the access point.
7.
The access point associates with the station.
8.
The station can now communicate with the Ethernet network through the access point.
An access point must authenticate a station before the station can associate with the access point or
communicate with the network. The IEEE 802.11 standard defines two types of authentication:
Open System and Shared Key.
Open System Authentication
allows any device to join the network, assuming that the device
SSID matches the access point SSID. Alternatively, the device can use the “ANY” SSID
option to associate with any available Access Point within range, regardless of its SSID.
Shared Key Authentication
requires that the station and the access point have the same WEP
Key to authenticate. These two authentication procedures are described below.
Open System Authentication
The following steps occur when two devices use Open System Authentication:
1.
The station sends an authentication request to the access point.
2.
The access point authenticates the station.
3.
The station associates with the access point and joins the network.
This process is illustrated in below.
Page 74 / 118
Reference Manual for the ME103 802.11b ProSafe Wireless Access Point
B-4
Wireless Networking Basics
August 2003
Figure 6-1:
802.11 open system authentication
Shared Key Authentication
The following steps occur when two devices use Shared Key Authentication:
1.
The station sends an authentication request to the access point.
2.
The access point sends challenge text to the station.
3.
The station uses its configured 64-bit or 128-bit default key to encrypt the challenge text, and
sends the encrypted text to the access point.
4.
The access point decrypts the encrypted text using its configured WEP Key that corresponds
to the station’s default key. The access point compares the decrypted text with the original
challenge text. If the decrypted text matches the original challenge text, then the access point
and the station share the same WEP Key and the access point authenticates the station.
5.
The station connects to the network.
If the decrypted text does not match the original challenge text (i.e., the access point and station do
not share the same WEP Key), then the access point will refuse to authenticate the station and the
station will be unable to communicate with either the 802.11 network or Ethernet network.
This process is illustrated in below.
FVM318
Access Point
1) Authentication request sent to AP
2) AP authenticates
3) Client connects to network
802.11b Authentication
Open System Steps
Cable or
DLS modem
Client
attempting
to connect
Page 75 / 118
Reference Manual for the ME103 802.11b ProSafe Wireless Access Point
Wireless Networking Basics
B-5
August 2003
Figure 6-2:
802.11 shared key authentication
Overview of WEP Parameters
Wired Equivalent Privacy (WEP) data encryption is used when the wireless devices are configured
to operate in Shared Key authentication mode. There are two shared key methods implemented in
most commercially available products, 64-bit and 128-bit WEP data encryption.
Before enabling WEP on an 802.11 network, you must first consider what type of encryption you
require and the key size you want to use. Typically, there are three WEP Encryption options
available for 802.11 products:
1.
Do Not Use WEP:
The 802.11 network does not encrypt data. For authentication purposes, the
network uses Open System Authentication.
2.
Use WEP for Encryption:
A transmitting 802.11 device encrypts the data portion of every
packet it sends using a configured WEP Key. The receiving 802.11b device decrypts the data using
the same WEP Key. For authentication purposes, the 802.11b network uses Open System
Authentication.
3.
Use WEP for Authentication and Encryption:
A transmitting 802.11 device encrypts the data
portion of every packet it sends using a configured WEP Key. The receiving 802.11 device
decrypts the data using the same WEP Key. For authentication purposes, the 802.11 network uses
Shared Key Authentication.
FVM318
Access Point
1) Authentication
request sent to AP
2) AP sends challenge text
3) Client encrypts
challenge text and
sends it back to AP
4) AP decrypts,and if correct,
authenticates client
5) Client connects to network
802.11b Authentication
Shared Key Steps
Cable or
DLS modem
Client
attempting
to connect

Rate

4.5 / 5 based on 2 votes.

Popular NETGEAR Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top