ZyXEL Communications G-170S User Manual Download Page 73 | Manualshive

Page: 73 / 79

ZyXEL Communications G-170S User Manual Download Page 73

ZyXEL G-170S User’s Guide

Appendix C Types of EAP Authentication

73

WPA(2)

Wi-Fi Protected Access (WPA) is a subset of the IEEE 802.11i standard. WPA2 (IEEE
802.11i) is a wireless security standard that defines stronger encryption, authentication and
key management than WPA.

Key differences between WPA(2) and WEP are improved data encryption and user
authentication.

If both an AP and the wireless clients support WPA2 and you have an external RADIUS
server, use WPA2 for stronger data encryption. If you don't have an external RADIUS server,
you should use WPA2-PSK (WPA2-Pre-Shared Key) that only requires a single (identical)
password entered into each access point, wireless gateway and wireless client. As long as the
passwords match, a wireless client will be granted access to a WLAN.

If the AP or the wireless clients do not support WPA2, just use WPA or WPA-PSK depending
on whether you have an external RADIUS server or not.

Select WEP only when the AP and/or wireless clients do not support WPA or WPA2. WEP is
less secure than WPA or WPA2.

Encryption

Both WPA and WPA2 improve data encryption by using Temporal Key Integrity Protocol
(TKIP), Message Integrity Check (MIC) and IEEE 802.1x. WPA and WPA2 use Advanced
Encryption Standard (AES) in the Counter mode with Cipher block chaining Message
authentication code Protocol (CCMP) to offer stronger encryption than TKIP.

TKIP uses 128-bit keys that are dynamically generated and distributed by the authentication
server. AES (Advanced Encryption Standard) is a block cipher that uses a 256-bit
mathematical algorithm called Rijndael. They both include a per-packet key mixing function,
a Message Integrity Check (MIC) named Michael, an extended initialization vector (IV) with
sequencing rules, and a re-keying mechanism.

WPA and WPA2 regularly change and rotate the encryption keys so that the same encryption
key is never used twice.

The RADIUS server distributes a Pairwise Master Key (PMK) key to the AP that then sets up
a key hierarchy and management system, using the PMK to dynamically generate unique data
encryption keys to encrypt every data packet that is wirelessly communicated between the AP
and the wireless stations. This all happens in the background automatically.

The Message Integrity Check (MIC) is designed to prevent an attacker from capturing data
packets, altering them and resending them. The MIC provides a strong mathematical function
in which the receiver and the transmitter each compute and then compare the MIC. If they do
not match, it is assumed that the data has been tampered with and the packet is dropped.

«
...
71
72
73
74
75
...
»

Summary of Contents for G-170S

Page 1: ...ZyXEL G 170S 802 11g Wireless CardBus Card User s Guide Version 1 00 Edition 1 3 2006 ...

Page 2: ......

Page 3: ...yXEL Communications Corporation All rights reserved Disclaimer ZyXEL does not assume any liability arising out of the application or use of any products or software described herein Neither does it convey any license under its patent rights nor the patent rights of others ZyXEL further reserves the right to make changes in any products described herein without notice This publication is subject to...

Page 4: ...equipment does cause harmful interference to radio television reception which can be determined by turning the equipment off and on the user is encouraged to try to correct the interference by one or more of the following measures 1 Reorient or relocate the receiving antenna 2 Increase the separation between the equipment and the receiver 3 Connect the equipment into an outlet on a circuit differe...

Page 5: ...ct from the drop down list box on the ZyXEL home page to go to that product s page 3 Select the certification you wish to view from this page 注意依據低功率電波輻射性電機管理辦法第十二條經型式認證合格之低功率射頻電機非經許可公司商號或使用者均不得擅自變更頻率加大功率或變更原設計之特性及功能第十四條低功率射頻電機之使用不得影響飛航安全及干擾合法通信經發現有干擾現象時應立即停用並改善至無干擾時方得繼續使用前項合法通信指依電信規定作業之無線電信低功率射頻電機須忍受合法通信或工業科學及醫療用電波輻射性電機設備之干擾 ...

Page 6: ...ent as provided under this warranty is the exclusive remedy of the purchaser This warranty is in lieu of all other warranties express or implied including any implied warranty of merchantability or fitness for a particular use or purpose ZyXEL shall in no event be held liable for indirect or consequential damages of any kind to the purchaser To obtain the services of this warranty contact ZyXEL s ...

Page 7: ...mark sales zyxel dk 45 39 55 07 07 FINLAND support zyxel fi 358 9 4780 8411 www zyxel fi ZyXEL Communications Oy Malminkaari 10 00700 Helsinki Finland sales zyxel fi 358 9 4780 8448 FRANCE info zyxel fr 33 4 72 52 97 97 www zyxel fr ZyXEL France 1 rue des Vergers Bat 1 C 69760 Limonest France 33 4 72 52 19 20 GERMANY support zyxel de 49 2405 6909 0 www zyxel de ZyXEL Deutschland GmbH Adenauerstr 2...

Page 8: ...port zyxel se 46 31 744 7700 www zyxel se ZyXEL Communications A S Sjöporten 4 41764 Göteborg Sweden sales zyxel se 46 31 744 7701 UKRAINE support ua zyxel com 380 44 247 69 78 www ua zyxel com ZyXEL Ukraine 13 Pimonenko Str Kiev 04050 Ukraine sales ua zyxel com 380 44 494 49 32 UNITED KINGDOM support zyxel co uk 44 1344 303044 08707 555779 UK only www zyxel co uk ZyXEL Communications UK Ltd 11 Th...

Page 9: ... 1 Infrastructure 19 1 1 1 2 Ad Hoc 20 1 2 G 170S Hardware and Utility Installation 21 1 3 Configuration Methods 21 1 4 Windows XP Users Only 21 1 5 Accessing the ZyXEL Utility 22 1 6 ZyXEL Utility Screen Summary 22 1 7 Connecting to a Wireless LAN 23 1 7 1 Site Survey 23 Chapter 2 Wireless LAN Network 27 2 1 Wireless LAN Overview 27 2 1 1 SSID 27 2 1 2 Channel 27 2 1 3 Transmission Rate Tx Rate 2...

Page 10: ...s 36 3 2 2 1 WEP Encryption 37 3 2 2 2 WPA WPA2 38 3 2 2 3 WPA PSK WPA2 PSK 39 3 2 2 4 IEEE 802 1x 40 3 2 3 Confirm Save Screen 41 3 3 The Profile Screen 42 3 3 1 Adding a New Profile 43 3 4 The Adapter Screen 48 Chapter 4 Maintenance 51 4 1 The About Screen 51 4 2 Uninstalling the ZyXEL Utility 51 4 3 Upgrading the ZyXEL Utility 52 Chapter 5 Troubleshooting 55 5 1 Problems Starting the ZyXEL Util...

Page 11: ...ZyXEL G 170S User s Guide Table of Contents 11 Index 77 ...

Page 12: ...ZyXEL G 170S User s Guide 12 Table of Contents ...

Page 13: ... 802 1x 40 Figure 19 Confirm Save Screen 41 Figure 20 Profile Screen 42 Figure 21 Profile Add New Profile 44 Figure 22 Profile Wireless Setting Select a Channel 45 Figure 23 Profile Security Setting Encryption Type 46 Figure 24 Profile Security Setting 46 Figure 25 Profile Wireless Protocol 47 Figure 26 Profile Confirm New Settings 47 Figure 27 Profile Activate the Profile 48 Figure 28 Adapter Scr...

Page 14: ...Windows XP Wireless network properties Authentication 65 Figure 42 Windows XP Protected EAP Properties 66 Figure 43 Windows XP Smart Card or other Certificate Properties 67 Figure 44 Windows XP SP2 Wireless Networks Preferred Networks 69 Figure 45 Windows XP SP1 Wireless Networks Preferred Networks 69 Figure 46 WPA PSK Authentication 75 Figure 47 WPA 2 with RADIUS Application Example 75 ...

Page 15: ...t a Channel 45 Table 14 Adapter 48 Table 15 About 51 Table 16 Troubleshooting Starting ZyXEL Utility 55 Table 17 Troubleshooting Link Quality 55 Table 18 Troubleshooting Communication Problem 56 Table 19 Product Specifications 57 Table 20 Windows XP SP2 System Tray Icon 60 Table 21 Windows XP SP2 Wireless Network Connection 62 Table 22 Windows XP Wireless Networks 63 Table 23 Windows XP Wireless n...

Page 16: ...ZyXEL G 170S User s Guide 16 List of Tables ...

Page 17: ...al support documentation User Guide Feedback Help us help you E mail all User Guide related comments questions or suggestions for improvement to techwriters zyxel com tw or send regular mail to The Technical Writing Team ZyXEL Communications Corp 6 Innovation Road II Science Based Industrial Park Hsinchu 300 Taiwan Thank you Syntax Conventions Enter means for you to type one or more characters Sel...

Page 18: ...ZyXEL G 170S User s Guide 18 Preface Graphics Icons Key Wireless Access Point Computer Notebook Computer Server Modem Wireless Signal Telephone Switch Router Internet Cloud ...

Page 19: ...lection Security WEP Wired Equivalent Privacy IEEE 802 1x WPA PSK WPA Wi Fi Protected Access WPA2 PSK and WPA2 Note WPA2 and WPA2 PSK are only available in Windows XP and Windows 2000 A built in antenna Driver and utility support for Windows 98 Second Edition Windows ME Windows 2000 and Windows XP 1 1 1 Application Overview This section describes some network applications for the G 170S 1 1 1 1 In...

Page 20: ...Infrastructure 1 1 1 2 Ad Hoc In case you prefer to set up a small independent wireless workgroup without an AP use Ad Hoc mode Ad hoc mode does not require an AP or a wired network Two or more wireless clients can communicate directly to each other Figure 2 Application Ad Hoc ...

Page 21: ...ient Manager not supplied Refer to the Odyssey Client Manager documentation for more information Note Do NOT use WZC or the Odyssey Client Manager and the ZyXEL utility at the same time 1 4 Windows XP Users Only Note When you use the ZyXEL utility it automatically disables the Windows XP wireless configuration tool Right click the utility icon in the system tray and select Use Windows Zero Configu...

Page 22: ...s the status of the G 170S Refer to the following table for details Double click on the ZyXEL Wireless LAN utility icon in the system tray to open the ZyXEL utility The ZyXEL utility screens are similar in all Microsoft Windows versions Screens for Windows XP are shown Note Click the icon located in the top right corner to display the on line help window 1 6 ZyXEL Utility Screen Summary This secti...

Page 23: ... insert the G 170S follow the steps below to connect to a network using the Site Survey screen 1 Make sure a wireless network is available and within range 2 Open the ZyXEL utility and click the Site Survey tab to open the screen as shown next 3 Click Scan to search for available wireless networks Table 2 ZyXEL Utility Menu Screen Summary TAB DESCRIPTION Link Info Use this screen to see your curre...

Page 24: ...es according to the network s encryption method Configure the same security settings as the associated network Note If the selected network is unavailable or security settings are not correct the G 170S then automatically connects to an available network without security Figure 8 ZyXEL Utility Security Settings 6 Verify that you have successfully connected to the selected network and check the net...

Page 25: ...ZyXEL G 170S User s Guide Chapter 1 Getting Started 25 Figure 9 ZyXEL Utility Link Info ...

Page 26: ...ZyXEL G 170S User s Guide 26 Chapter 1 Getting Started ...

Page 27: ...oves the most efficient This setting allows your G 170S to operate at the maximum transmission data rate When the communication quality drops below a certain level the G 170S automatically switches to a lower transmission data rate Transmission at lower data speeds is usually more reliable However when the communication quality improves again the G 170S gradually increases the transmission data ra...

Page 28: ...eep network communications private Both the wireless stations and the access points must use the same WEP key for data encryption and decryption There are two ways to create WEP keys in your G 170S Automatic WEP key generation based on a password phrase called a passphrase The passphrase is case sensitive You must use the same passphrase for all WLAN adapters with this feature in the same WLAN For...

Page 29: ...PA2 IEEE 802 11i is a wireless security standard that defines stronger encryption authentication and key management than WPA Key differences between WPA 2 and WEP are improved data encryption and user authentication If both an AP and the wireless clients support WPA2 and you have an external RADIUS server use WPA2 for stronger data encryption If you don t have an external RADIUS server you should ...

Page 30: ...nal RADIUS database WPA2 reduces the number of key exchange messages from six to four CCMP 4 way handshake and shortens the time required to connect to a network Other WPA2 authentication features that are different from WPA include key caching and pre authentication These two features are optional and may not be supported in all wireless devices 2 2 4 WPA 2 PSK Application Example A WPA 2 PSK app...

Page 31: ...is wirelessly communicated between the AP and the wireless clients Figure 11 WPA 2 with RADIUS Application Example 2 3 Authentication Type The IEEE 802 11b g standard describes a simple authentication method between the wireless stations and AP Three authentication types are defined Auto Switch an Open system mode and a Shared key mode Open system mode is implemented for ease of use and when secur...

Page 32: ...ble means more time for sending data All IEEE 802 11b g compliant wireless adapters support long preamble but not all support short preamble Select Auto to have the G 170S automatically use short preamble when access point or wireless stations support it otherwise the G 170S uses long preamble Note The G 170S and the access point wireless stations MUST use the same preamble mode in order to commun...

Page 33: ...lowing table describes the labels in this screen Table 3 Link Info LABEL DESCRIPTION Wireless Network Status Profile Name This is the name of the profile you are currently using Network Name SSID The SSID identifies the Service Set to which a wireless station is associated This field displays the name of the wireless device to which the G 170S is associated AP MAC Address This field displays the M...

Page 34: ...isplays the current data transmission rate in kilobits per second Kbps Receive Rate This field displays the current data receiving rate in kilobits per second Kbps Authentication This field displays the authentication method of the G 170S Network Mode This field displays the network standard 802 11b or 802 11g of the wireless device Total Transmit This field displays the total number of data frame...

Page 35: ... Receive This field displays the current data receiving rate in kilobits per second Kbps Table 5 Site Survey LABEL DESCRIPTION Available Network List Click a column heading to sort the entries or denotes that the wireless device is in infrastructure mode and the wireless security is activated denotes that the wireless device is in infrastructure mode but the wireless security is deactivated denote...

Page 36: ...th wireless security activated and the security settings are disabled on the G 170S the screen varies according to the encryption method used by the selected network Channel This field displays the channel number used by each wireless device Signal This field displays the signal strength of each wireless device Scan Click Scan to search for available wireless devices within transmission range Conn...

Page 37: ...t an authentication type Choices are Auto Switch Open and Shared Refer to Section 2 3 on page 31 for more information Pass Phrase Enter a passphrase of up to 63 case sensitive printable characters As you enter the passphrase the G 170S automatically generates four different WEP keys and displays it in the key field below Refer to Section 2 2 1 on page 28 for more information At the time of writing...

Page 38: ...3445566778899AABBCC for HEX key type or Enter 13 ASCII characters case sensitive ranging from a z A Z and 0 9 for example MyKey12345678 for ASCII key type If you select 152 Bits in the WEP field Enter either 32 hexadecimal digits in the range of A F a f and 0 9 for example 00112233445566778899AABBCCDDEEFF for HEX key type or Enter 16 ASCII characters case sensitive ranging from a z A Z and 0 9 for...

Page 39: ... on a WPA WPA2 server Password This field is not available when you select TLS in the Authentication Type field Enter the password associated with the user name above Certificate This field is only available when you select TLS in the Authentication Type field Select a certificate used by the authentication server to authenticate the G 170S Note You must first have a wired connection to a network ...

Page 40: ...ols Back Click Back to go to the Site Survey screen to select and connect to other network Next Click Next to confirm your selections and advance to the Confirm Save screen Refer to Section 3 2 3 on page 41 Exit Click Exit to return to the Site Survey screen without saving Table 9 Security Settings 802 1x LABEL DESCRIPTION Authentication Type Select an authentication method from the drop down list...

Page 41: ...ield Select a PEAP protocol Options are GTC and MS CHAP v2 Back Click Back to go to the Site Survey screen to select and connect to other network Next Click Next to confirm your selections and advance to the Confirm Save screen Refer to Section 3 2 3 on page 41 Exit Click Exit to return to the Site Survey screen without saving Table 9 Security Settings 802 1x LABEL DESCRIPTION Table 10 Confirm Sav...

Page 42: ...bled The default profile is a profile that allows you to connect to any SSID without security Click the Profile tab in the ZyXEL utility program to display the Profile screen as shown next The profile function allows you to save the wireless network settings in this screen or use one of the pre configured network profiles Figure 20 Profile Screen Channel This field displays the channel number used...

Page 43: ...is the name of the pre configured profile SSID This is the SSID of the wireless network to which the selected profile associate Connect To use a previously saved network profile select a pre configured profile name in the table and click Connect Add To add a new profile into the table click Add Delete To delete an existing wireless network configuration select a profile in the table and click Dele...

Page 44: ...structure radio button to associate to an AP Select the Ad Hoc radio button to associate to a peer computer Next Click Next to go to the next screen Exit Click Exit to go back to the previous screen without saving Scan Info This table displays the information of the available wireless networks within the transmission range or denotes that the wireless device is in infrastructure mode and the wirel...

Page 45: ...henever you activate this profile the G 170S associates to the selected wireless network only Table 13 Profile Wireless Setting Select a Channel LABEL DESCRIPTION Wireless Setting Wireless Mode Select 802 11g to have the G 170S connect to an IEEE 802 11g wireless device only and vice versa Select 802 11b to have the G 170S connect to an IEEE 802 11b wireless device only and vice versa Channel Sele...

Page 46: ... skip to step 6 Figure 23 Profile Security Setting Encryption Type 4 The screen varies depending on the encryption method you select in the previous screen The settings must be exactly the same on the APs or other peer wireless computers as they are on the G 170S Refer to Section 3 2 2 on page 36 for detailed information on wireless security configuration Figure 24 Profile Security Setting 5 Speci...

Page 47: ...rect Click Save to save and go to the next screen Click Back to return to the previous screen Otherwise click Exit to go back to the Profile screen without saving Figure 26 Profile Confirm New Settings 7 To use this network profile click the Activate Now button Otherwise click the Activate Later button Note Once you activate a profile the ZyXEL utility will use that profile the next time it is sta...

Page 48: ...owing table describes the labels in this screen Table 14 Adapter LABEL DESCRIPTION Adapter Setting Transfer Rate Select a transfer speed from the drop down list box Choose from Auto default 1 Mbps 2 Mbps 5 5 Mbps 6 Mbps 9 Mbps 12 Mbps 18 Mbps 24 Mbps 36 Mbps 48 Mbps and 54 Mbps Preamble Type Select a preamble type Choices are Long Short and Auto The default setting is Auto Refer to Section 2 4 on ...

Page 49: ... or Fast Power Saving to save power especially for notebook computers This forces the G 170S to go to sleep mode when it is not transmitting data When you select Continuous Access Mode the G 170S will never go to sleep mode Save Click Save to save the changes back to the G 170S Table 14 Adapter LABEL DESCRIPTION ...

Page 50: ...ZyXEL G 170S User s Guide 50 Chapter 3 ZyXEL Utility Configuration ...

Page 51: ...owing table describes the read only fields in this screen 4 2 Uninstalling the ZyXEL Utility Follow the steps below to remove or uninstall the ZyXEL utility from your computer 1 Click Start Programs ZyXEL G 170S Utility Uninstall ZyXEL G 170S Utility 2 When prompted click OK or Yes to remove the driver and the utility software Table 15 About LABEL DESCRIPTION Driver Version This field displays the...

Page 52: ...take note of your current wireless configurations To perform the upgrade follow the steps below 1 Download the latest version of the utility from the ZyXEL web site and save the file on your computer 2 Follow the steps in Section 4 2 on page 51 to remove the current ZyXEL utility from your computer 3 Restart your computer when prompted 4 Disconnect the G 170S from your computer 5 Double click on t...

Page 53: ...ZyXEL G 170S User s Guide Chapter 4 Maintenance 53 6 Insert the G 170S and check the version numbers in the About screen to make sure the new utility is installed properly ...

Page 54: ...ZyXEL G 170S User s Guide 54 Chapter 4 Maintenance ...

Page 55: ...y vary depending on the version of Windows Install the G 170S in another computer If the error persists you may have a hardware problem In this case you should contact your local vendor The ZyXEL utility icon does not display If you install the Funk Odyssey Client software on the computer uninstall remove both the Funk Odyssey Client software and ZyXEL utility and then install the ZyXEL utility ag...

Page 56: ...0S computer and the associated AP use the same SSID Change the AP and the associated wireless clients to use another radio channel if interference is high Make sure that the computer and the AP share the same security option and key Verify the settings in the Profile Security Settings screen In Ad Hoc IBSS Mode Verify that the peer computer s is turned on Make sure the G 170S computer and the peer...

Page 57: ...wer Consumption TX 480mA RX 430mA Voltage 3 3V Weight 0 33 lbs Dimension W 115 mm D 54 5 mm H 9 3 mm RADIO SPECIFICATIONS Media Access Protocol IEEE 802 11 Frequency USA FCC Canada 11 Channels 2 412GHz 2 462GHz Europe ETSI 13 Channels 2 412GHz 2 472GHz Japan TELEC 14 Channels 2 412GHz 2 483GHz Data Rate 11g Orthogonal Frequency Division Multiplexing OFDM 54 48 36 24 18 12 9 6 Mbps 11b 11 5 5 2 1 M...

Page 58: ...ZyXEL G 170S User s Guide 58 Appendix A Product Specifications Roaming IEEE 802 11b g compliant WEP 64 128 152 bit WEP encryption Table 19 Product Specifications continued ...

Page 59: ...and download the support patch for WPA from the Microsoft web site Windows XP SP2 screen shots are shown unless otherwise specified Click the help icon in most screens move the cursor to the item that you want the information about and click to view the help Activating Wireless Zero Configuration Make sure the Use Windows to configure my wireless network settings check box is selected in the Wirel...

Page 60: ...wing table for details 2 Windows XP SP2 In the Wireless Network Connection Status screen click View Wireless Networks to open the Wireless Network Connection screen Figure 34 Windows XP SP2 Wireless Network Connection Status Table 20 Windows XP SP2 System Tray Icon ICON DESCRIPTION The ZyXEL wireless LAN adapter is connected to a wireless network The ZyXEL wireless LAN adapter is in the process of...

Page 61: ... tab to open the Wireless Network Connection Properties screen Figure 35 Windows XP SP1 Wireless Network Connection Status 3 Windows XP SP2 Click Refresh network list to reload and search for available wireless devices within transmission range Select a wireless network in the list and click Connect to join the selected wireless network Figure 36 Windows XP SP2 Wireless Network Connection ...

Page 62: ...wireless network the Wireless Network Connection screen displays You must set the related fields in the Wireless Network Connection screen to the same security settings as the associated AP and click Connect Refer to the section about security settings for more information Otherwise click Cancel and connect to another wireless network without data encryption Table 21 Windows XP SP2 Wireless Networ...

Page 63: ...s network list or the connection icon in the Preferred networks or Available networks list The following table describes the connection icons Security Settings When you configure the ZyXEL wireless LAN adapter to connect to a secure network but the security settings are not yet enabled on the ZyXEL wireless LAN adapter you will see different screens according to the authentication and encryption m...

Page 64: ...entication method Share Open WPA or WPA PSK used by the selected network Data Encryption This field automatically shows the encryption type TKIP WEP or Disable used by the selected network Network Key Enter the pre shared key or WEP key The values for the keys must be set up exactly the same on all wireless devices in the same wireless LAN Confirm network key Enter the key again for confirmation K...

Page 65: ...K Click OK to save your changes Cancel Click Cancel to leave this screen without saving any changes you may have made Table 23 Windows XP Wireless network properties Association continued LABEL DESCRIPTION Table 24 Windows XP Wireless network properties Authentication LABEL DESCRIPTION Enable IEEE 802 1x authentication for this network This field displays whether the IEEE 802 1x authentication is ...

Page 66: ...nformation is available Select this check box to have the computer send its information to the network for authentication when a user is not logged on Authenticate as guest when user or computer information is unavailable Select this check box to have the computer access to the network as a guest when a user is not logged on or computer information is not available OK Click OK to save your changes...

Page 67: ...tion authority from the list below Note You must first have a wired connection to a network and obtain the certificate s from a certificate authority CA Consult your network administrator for more information Do not prompt user to authorize new server or trusted certification authorities Select this check box to verify a new authentication server or trusted CA without prompting This field is avail...

Page 68: ...to check the certificate of the authentication server Connect to these servers Select the check box and specify a domain in the field below to have your computer connect to a server which resides only within this domain Trusted Root Certification Authorities Select a trusted certification authority from the list below Note You must first have a wired connection to a network and obtain the certific...

Page 69: ...as shown Figure 45 Windows XP SP1 Wireless Networks Preferred Networks 2 Whenever the ZyXEL wireless LAN adapter tries to connect to a new network the new network is added in the Preferred networks table automatically Select a network and click Move up or Move down to change it s order click Remove to delete it or click Properties to view the security authentication or connection information of th...

Page 70: ...ZyXEL G 170S User s Guide 70 Appendix B Management with Wireless Zero Configuration ...

Page 71: ...tual authentication Finally MD5 authentication method does not support data encryption with dynamic session key You must configure WEP encryption keys for data encryption EAP TLS Transport Layer Security With EAP TLS digital certifications are needed by both the server and the wireless stations for mutual authentication The server presents a certificate to the client After validating the identity ...

Page 72: ...ication is performed If this feature is enabled it is not necessary to configure a default encryption key in the Wireless screen You may still configure and store keys here but they will not be used while Dynamic WEP is enabled Note EAP MD5 cannot be used with Dynamic WEP Key Exchange For added security certificate based authentications EAP TLS EAP TTLS and PEAP use dynamic keys for data encryptio...

Page 73: ...PA and WPA2 use Advanced Encryption Standard AES in the Counter mode with Cipher block chaining Message authentication code Protocol CCMP to offer stronger encryption than TKIP TKIP uses 128 bit keys that are dynamically generated and distributed by the authentication server AES Advanced Encryption Standard is a block cipher that uses a 256 bit mathematical algorithm called Rijndael They both incl...

Page 74: ...ges from six to four CCMP 4 way handshake and shortens the time required to connect to a network Other WPA2 authentication features that are different from WPA include key caching and pre authentication These two features are optional and may not be supported in all wireless devices Key caching allows a wireless client to store the PMK it derived through a sucessful authentication with an AP The w...

Page 75: ...system 1 The AP passes the wireless client s authentication request to the RADIUS server 2 The RADIUS server then checks the user s identification against its database and grants or denies network access accordingly 3 The RADIUS server distributes a Pairwise Master Key PMK key to the AP that then sets up a key hierarchy and management system using the pair wise key to dynamically generate unique d...

Page 76: ...these security features Table 28 Wireless Security Relational Matrix AUTHENTICATION METHOD KEY MANAGEMENT PROTOCOL ENCRYPTION METHOD ENTER MANUAL KEY IEEE 802 1X Open None No Disable Enable without Dynamic WEP Key Open WEP No Enable with Dynamic WEP Key Yes Enable without Dynamic WEP Key Yes Disable Shared WEP No Enable with Dynamic WEP Key Yes Enable without Dynamic WEP Key Yes Disable WPA TKIP A...

Page 77: ...onfiguration method important note 21 Odyssey Client Manager 21 Wireless Zero Configuration WZC 21 ZyXEL Utility 21 connecting to a WLAN 36 Copyright 3 creating a new profile 43 current configuration 33 current connection status 33 Customer Support 7 D data encryption 36 Denmark Contact Information 7 driver version 51 Dynamic WEP Key Exchange 72 E Encryption 29 73 F FCC 4 Finland Contact Informati...

Page 78: ... traffic statistics 34 Regular Mail 7 Related Documentation 17 S save power 49 Scan Info 45 security 28 57 data encryption 28 Security Parameters 76 Service 6 shared key authentication 31 signal strength 36 site survey 35 connecting to a WLAN network 36 scan 36 security settings 36 sleep mode 49 Spain Contact Information 8 SSID 33 35 SSID Service Set Identity 27 statistics 34 support CD 17 Support...

Page 79: ...ows XP 21 wireless LAN channel 27 introduction 27 security 28 SSID 27 transmission rate 27 Wireless LAN WLAN 27 wireless standard 57 wireless station mode configuration 33 WLAN Security parameters 76 Worldwide Contact Information 7 WPA 29 38 73 WPA2 29 38 73 WPA2 Pre Shared Key 29 73 WPA2 PSK 29 39 73 WPA PSK 29 39 73 WZC Wireless Zero Configuration 21 Z ZyXEL Limited Warranty Note 6 ZyXEL Utility...

Reviews:

No comments