Reference Manual for the NETGEAR ProSafe Wireless Access Point 802.11g WG302

3-4

Basic Installation and Configuration

July 2005 v3.0

Understanding WG302 Wireless Security Options

Your wireless data transmissions can be received well beyond your walls by anyone with a

compatible adapter. For this reason, use the security features of your wireless equipment. The

WG302 Access Point provides highly effective security features which are covered in detail in this

chapter. Deploy the security features appropriate to your needs.

Figure 3-1: WG302 wireless data security options

There are several ways you can enhance the security of your wireless network:

•

Restrict Access Based on MAC address.

You can restrict access to only trusted PCs so that

unknown PCs cannot wirelessly connect to the WG302. MAC address filtering adds an

obstacle against unwanted access to your network, but the data broadcast over the wireless link

is fully exposed.

•

Turn Off the Broadcast of the Wireless Network Name (SSID).

If you disable broadcast of

the SSID, only devices that have the correct SSID can connect. This nullifies the wireless

network ‘discovery’ feature of some products such as Windows XP, but the data is still fully

exposed to a determined snoop using specialized test equipment like wireless sniffers.

•

Use WEP.

Wired Equivalent Privacy (WEP) data encryption provides data security. WEP

Shared Key authentication and WEP data encryption will block all but the most determined

eavesdropper.

1) .O 3ECURITY:

%ASY BUT NO SECURITY

2) -!# !CCESS ,IST:

.O DATA SECURITY

4) 7%0:

3ECURITY BUT VULNERABLE

5) 70! OR 70!/03+:

6ERY STRONG SECURITY

8) !UTO#ELL 9& @STEALTH' MODE

############:LUHOHVV#'DWD#

##########6HFXULW\#2SWLRQV

5DQJH=#8S#WR#933#)RRW#5DGLXV#

072

,!.

-%105

7IRELE

S ,!.

WG302

Reference Manual for the NETGEAR ProSafe Wireless Access Point 802.11g WG302

Basic Installation and Configuration

3-5

July 2005 v3.0

•

Use WPA, WPA-PSK, WPA2, or WPA2-PSK.

Wi-Fi Protected Access (WPA and WPA2)

data encryption provides data security. The very strong authentication along with dynamic per

frame rekeying of WPA make it virtually impossible to compromise. Because this is a new

standard, wireless device driver and software availability may be limited.

•

Use AutoCell Enhanced RF Security ‘Stealth Mode.’

In addition to standard encryption and

security mechanisms such as WEP and WPA, the WG302 AutoCell feature provides

self-organizing micro cells for an additional level of privacy for enterprises. In this mode,

AutoCell shrinks the size of coverage to the minimum to reach clients but also shrinks the size

of the beacons that access points use to announce their presence. This mode makes an

enterprise wireless LAN nearly invisible to users outside an office building. AutoCell clients

such as the NETGEAR WAG511 are highly-recommended for Enhanced RF Security.

Installing the WG302 Access Point

Before installing the NETGEAR ProSafe Wireless Access Point 802.11g WG302, you should

make sure that your Ethernet network is up and working. You will be connecting the access point

to the Ethernet network so that computers with 802.11b or 802.11g wireless adapters will be able

to communicate with computers on the Ethernet network. In order for this to work correctly, verify

that you have met all of the system requirements, shown on

page 2-5

.

1

S

ET

UP

THE

WG302 A

CCESS

P

OINT

Tip:

Before mounting the WG302 in a high location, first set up and test the WG302 to verify

wireless network connectivity.

a.

Prepare a computer with an Ethernet adapter. If this computer is already part of your

network, record its TCP/IP configuration settings.

b.

Configure the computer with a static IP address of 192.168.0.210 and 255.255.255.0 for

the Subnet Mask.

c.

Connect an Ethernet cable from the WG302 to the computer.

d.

Turn on your computer, connect the power adapter to the WG302 and verify the following:

–

The PWR power light goes on.

–

The LAN light of the wireless access point is lit when connected to a powered on

computer.

Reference Manual for the NETGEAR ProSafe Wireless Access Point 802.11g WG302

3-6

Basic Installation and Configuration

July 2005 v3.0

2

C

ONFIGURE

LAN

AND

W

IRELESS

A

CCESS

a.

Configure the WG302 Ethernet port for LAN access.

•

Connect to the WG302 by opening your browser and entering

http://192.168.0.228

in

the address field. A login window like the one shown below opens:

Figure 3-2: Login window

•

When prompted, enter

admin

for the user name and

password

for the password, both

in lower case letters.

Reference Manual for the NETGEAR ProSafe Wireless Access Point 802.11g WG302

Basic Installation and Configuration

3-7

July 2005 v3.0

•

The Web browser will then display the WG302 settings page.

Figure 3-3: Login result: WG302 home page

Reference Manual for the NETGEAR ProSafe Wireless Access Point 802.11g WG302

3-8

Basic Installation and Configuration

July 2005 v3.0

–

When the wireless access point is connected to the Internet, click the Knowledge

Base or the Documentation link under the Web Support menu to view support

information or the documentation for the wireless access point.

–

If you do not click Logout, the wireless access point will wait 5 minutes after

there is no activity before it automatically logs you out.

•

Click the Basic Settings link to view the Basic Settings menu.

Figure 3-4: Basic Settings menu

•

Configure the settings appropriate for your network.