LANCOM 1722 VoIP – LANCOM 1723 VoIP – LANCOM 1724 VoIP – LANCOM 1823 VoIP
Chapter 11: Security settings
114
EN
11.1.4
Access control by MAC address
Every network device has a unique identification number. This identification
number is known as the MAC address (
M
edia
A
ccess
C
ontrol) and it is unique
worldwide.
The MAC address is programmed into the hardware. Wireless LAN devices
from LANCOM Systems display their MAC number on the housing.
Access to an infrastructure network can be limited to certain wireless LAN
devices by defining MAC addresses. The access points have filter lists in (ACL
– access control list) for storing authorized MAC addresses.
11.1.5
IPSec over WLAN
With the help of the IPSec-over-WLAN technology in addition to the security
measures described already, a wireless network for the exchange of especially
sensitive data can be optimally secured. Required for this is a base station
with VPN support and the LANCOM Advanced VPN Client that operates under
current Windows and MAC OS versions. Client software from third parties is
available for other operating systems.
11.2
Security settings Wizard
Access to the configuration of a device allows access to more than just critical
information (e. g. Internet password). Far more critical is that settings for
security functions (e.g.the firewall) can be altered. Unauthorized access is not
just a risk for the device itself, but for the entire network.
Your LANCOM offers password-protected access to its configuration. This is
activated during the initial basic configuration simply by entering a password.
If the wrong password is entered a certain number of times, the device auto-
matically blocks access to the configuration for a fixed period. You can modify
the critical number of attempts and also the duration of the lock. By default,
the device locks for five minutes after five incorrect entries of the password.
Along with these basic settings, you can use the Security settings Wizard to
check the settings of your wireless network (if so equipped).
