RangeMax™ Dual Band Wireless-N Gigabit Router WNDR3700 User Manual

Safeguarding Your Network

2-9

v1.3, October 2009

Configuring WEP Wireless Security

To configure WEP data encryption:

1.

Log in to the wireless router at its default LAN address of

with

its default user name of

admin

, and default password of

password

, or using whatever

password and LAN address you have chosen for the wireless router.

2.

From the main menu, select

Wireless Settings

to display the Wireless Settings screen.

•

WPA/WPA2 Enterprise.

Allow computers configured with either

WPA-PSK or WPA2-PSK security to connect to the wireless

router. When you select this option, this additional area appears

on your screen:

Security Options (WPA/WPA2 Enterprise)

•

WPA Mode

. Select the WPA Mode from the drop-down

list (WPA [TKIP], WPA2 [AES], or WPA [TKIP + WPA2

[AES]).

•

RADIUS server IP Address

. Enter the IP address of the

RADIUS server.

•

RADIUS server Port

. The RADIUS server port number is

listed in this field.

•

RADIUS server Shared Secret

.

Enter the Shared

Secret.

Note:

If you use a wireless computer to configure wireless security settings, you will be

disconnected when you click

Apply

. Reconfigure your wireless computer to match

the new settings, or access the wireless router from a wired computer to make

further changes.

Note:

On this screen, you specify wireless settings for both wireless networks: the 2.4

GHz and the 5 GHz.

Table 2-1.

Wireless Settings (continued)

Settings

Description

RangeMax™ Dual Band Wireless-N Gigabit Router WNDR3700 User Manual

Safeguarding Your Network

2-10

v1.3, October 2009

3.

Set the Security Options for the 2.4 GHz network first by selecting the

WEP

radio button in

the Security Options section:

4.

Select the

Authentication Type

:

Automatic

or

Shared Key

.

5.

Select the

Encryption Strength

setting:

•

WEP 64-bit encryption

. Enter 10 hexadecimal digits (any combination of 0–9, a–f, or

A–F).

•

WEP 128-bit encryption

. Enter 26 hexadecimal digits (any combination of 0–9, a–f, or

A–F).

6.

Enter the encryption keys. You can manually or automatically program the four data

encryption keys. These values must be identical on all computers and access points in your

network:

Figure 2-3

Note:

The authentication scheme is separate from the data encryption. You can select

an automatic authentication scheme, which may not run authentication, but still

leaves the data transmissions encrypted. If you require strong security, use both

the Shared Key and WEP encryption settings.

RangeMax™ Dual Band Wireless-N Gigabit Router WNDR3700 User Manual

Safeguarding Your Network

2-11

v1.3, October 2009

–

Passphrase

. To use a passphrase to generate the keys, enter a passphrase, and click

Generate

. This automatically creates the keys. Wireless stations must use the passphrase

or keys to access the wireless router.

–

Key 1 – Key 4

. These values are

not

case-sensitive. You can manually enter the four data

encryption keys. These values must be identical on all computers and access points in your

network. Enter 10 hexadecimal digits (any combination of 0–9, a–f, or A–F).

7.

Select which of the four keys will be the default.

Data transmissions are always encrypted using the default key. The other keys can be used

only to decrypt received data. The four entries are disabled if WPA-PSK or WPA

authentication is selected.

8.

Specify the wireless setting for the 5 GHz wireless network the same as you did for the 2.4

GHz wireless network.

9.

Click

Apply

to save your settings.

Configuring WPA, WPA2, or WPA/WPA2 Wireless Security

To set up wireless security, you can either manually configure it in the Wireless Settings screen, or

you can use Wi-Fi Protected Setup (WPS) to automatically set the SSID and implement WPA/

WPA2 security (see

“Using Push 'N' Connect (WPS) to Configure Your Wireless Network” on

page 2-13

.

Both WPA and WPA2 provide strong data security. WPA with TKIP is a software implementation

that can be used on Windows systems with Service Pack 2 or later. NETGEAR recommends using

WPA2 with AES, which provides the strongest security. WPA2 with AES is a hardware

implementation; see your device documentation before implementing it. Consult the product

documentation for your wireless adapter for instructions for configuring WPA settings.

Note:

Not all wireless adapters support passphrase key generation.

Note:

If you use a wireless computer to configure wireless security settings, you will be

disconnected when you click Apply. If this happens, reconfigure your wireless

computer to match the new settings, or access the wireless router from a wired

computer to make further changes.

RangeMax™ Dual Band Wireless-N Gigabit Router WNDR3700 User Manual

Safeguarding Your Network

2-12

v1.3, October 2009

To configure WPA or WPA2 in the wireless router:

1.

Log in to the wireless router at its default LAN address of

with

its default user name of

admin

and default password of

password

, or using whatever

password and LAN address you have chosen for the wireless router.

2.

Select

Wireless Settings

from the main menu.

3.

On the Wireless Setting screen, select the radio button for the WPA or WPA2 option of your

choice.

4.

The settings displayed on the screen depend on which security option you select.

5.

For WPA-PSK or WPA2-PSK, enter the passphrase.

6.

For WPA/WPA2 Enterprise, enter the settings for the Radius server. For WPA-802.1x or

WPA2-802.1x, these settings are required for communication with the primary Radius server.

•

WPA Mode. Select WPA [TKIP], WPA2 [AES], or WPA [TKIP] + WPA2 [AES].

•

RADIUS Server IP Address

. The IP address of the Radius server. The default is 0.0.0.0

•

RADIUS Server Port

. Port number of the Radius server. The default is 1812.

•

RADIUS Server Shared Secret

. This shared key is shared between the wireless access

point and the Radius server during authentication.

7.

To save your settings, click

Apply

.

Figure 2-4

RangeMax™ Dual Band Wireless-N Gigabit Router WNDR3700 User Manual

Safeguarding Your Network

2-13

v1.3, October 2009

Using Push 'N' Connect (WPS) to Configure Your Wireless

Network

If your wireless clients support Wi-Fi Protected Setup (WPS), you can use this feature to configure

the wireless router’s SSID and security settings and, at the same time, connect the wireless client

securely and easily to the wireless router. Look for the

symbol on your client device

(computers that will connect wirelessly to the wireless router are clients). WPS automatically

configures the network name (SSID) and wireless security settings for the wireless router (if the

wireless router is in its default state) and broadcasts these settings to the wireless client.

Some considerations regarding WPS are:

•

WPS supports these types of wireless security: None, WPA-PSK, WPA2-PSK, and WEP (with

the authentication type set to

Automatic

on the Wireless Settings screen). WEP security with

shared key authentication is not supported by WPS.

•

If your wireless network will include a combination of WPS capable devices and non-WPS

capable devices, NETGEAR suggests that you set up your wireless network and security

settings manually first, and use WPS only for adding additional WPS capable devices. See

“Adding Both WPS and Non-WPS Clients” on page 2-18

.

A WPS client can be added using the Push Button method or the PIN method.

•

Using the Push Button

. This is the preferred method. See the following section,

“Using a

WPS Button to Add a WPS Client” on page 2-14

.

•

Entering a PIN

. For information about using the PIN method, see

“Using PIN Entry to Add a

WPS Client” on page 2-15

.

Note:

NETGEAR’s Push 'N' Connect feature is based on the Wi-Fi Protected Setup

(WPS) standard (for more information, see

). All other Wi-Fi-

certified and WPS-capable products should be compatible with NETGEAR

products that implement Push 'N' Connect.