LANCOM 1722 VoIP – LANCOM 1723 VoIP – LANCOM 1724 VoIP – LANCOM 1823 VoIP
Chapter 11: Security settings
110
EN
11 Security settings
Your LANCOM features numerous security functions. This chapter provides you
with all of the information you need to optimally protect your device.
You can carry out the configuration of security settings very quickly
and conveniently with the Security Wizards in LANconfig and
WEBconfig.
11.1
Security in the wireless LAN
Wireless LANs are potentially a significant security risk. It is a common
assumption that it is simple to misuse data transferred by wireless.
Wireless LAN devices from LANCOM Systems enable the latest security tech-
nologies to be used.
Encrypted data transfer with WPA2 and AES encryption
802.1x / EAP
LANCOM Enhanced Passphrase Security (LEPS)
Access control by MAC address
Optional IPSec-over-WLAN VPN
11.1.1
Encrypted data transfer
Encryption takes on a special role in the transfer of data in wireless LANs.
Wireless communication with IEEE 802.11 is supplemented with the the
encryption standards 802.11i/WPA and WEP. The aim of the encryption meth-
ods is to provide wireless LAN with levels of security equivalent to those in
cabled LANs.
LANCOM Systems's recommendation for the most secure passphrase
variant is to employ 802.11i (WPA2) in combination with AES. The key
should be randomly selected from the largest possible range of num-
bers and should be as long as possible (32 to 63 characters). The pre-
vents dictionary attacks.
Use encryption on the data transferred in the WLAN. Activate the strong-
est possible encryption method available to you ((802.11i with AES, TKIP
or WEP) and enter the appropriate keys or passphrases into the access
point and the WLAN clients.
