ZyXEL Communications G-470 Скачать руководство пользователя страница 90 | Manualshive

Страница: 90 / 110

background image

G-470 User’s Guide

90

Appendix B

EAP-TTLS (Tunneled Transport Layer Service)

EAP-TTLS is an extension of the EAP-TLS authentication that uses certificates for only the
server-side authentications to establish a secure connection. Client authentication is then done
by sending username and password through the secure connection, thus client identity is
protected. For client authentication, EAP-TTLS supports EAP methods and legacy
authentication methods such as PAP, CHAP, MS-CHAP and MS-CHAP v2.

PEAP (Protected EAP)

Like EAP-TTLS, server-side certificate authentication is used to establish a secure connection,
then use simple username and password methods through the secured connection to
authenticate the clients, thus hiding client identity. However, PEAP only supports EAP
methods, such as EAP-MD5, EAP-MSCHAPv2 and EAP-GTC (EAP-Generic Token Card),
for client authentication. EAP-GTC is implemented only by Cisco.

LEAP

LEAP (Lightweight Extensible Authentication Protocol) is a Cisco implementation of IEEE
802.1x.

Dynamic WEP Key Exchange

The AP maps a unique key that is generated with the RADIUS server. This key expires when
the wireless connection times out, disconnects or reauthentication times out. A new WEP key
is generated each time reauthentication is performed.

If this feature is enabled, it is not necessary to configure a default encryption key in the
Wireless screen. You may still configure and store keys here, but they will not be used while
Dynamic WEP is enabled.

Note:

EAP-MD5 cannot be used with Dynamic WEP Key Exchange

For added security, certificate-based authentications (EAP-TLS, EAP-TTLS and PEAP) use
dynamic keys for data encryption. They are often deployed in corporate environments, but for
public deployment, a simple user name and password pair is more practical. The following
table is a comparison of the features of authentication types.

Table 24

Comparison of EAP Authentication Types

EAP-MD5

EAP-TLS

EAP-TTLS

PEAP

LEAP

Mutual Authentication

No

Yes

Yes

Yes

Yes

Certificate – Client

No

Yes

Optional

Optional

No

Certificate – Server

No

Yes

Yes

Yes

No

Dynamic Key Exchange

No

Yes

Yes

Yes

Yes

Credential Integrity

None

Strong

Strong

Strong

Moderate

«
...
88
89
90
91
92
...
»

Содержание G-470

Страница 1: ...G 470 802 11g Wireless Ethernet Adapter User s Guide Version 1 00 Edition 1 6 2006...

Страница 2: ......

Страница 3: ...Communications Corporation All rights reserved Disclaimer ZyXEL does not assume any liability arising out of the application or use of any products or software described herein Neither does it convey...

Страница 4: ...try to correct the interference by one or more of the following measures 1 Reorient or relocate the receiving antenna 2 Increase the separation between the equipment and the receiver 3 Connect the equ...

Страница 5: ...003 Cet appareil num rique de la classe B est conforme la norme NMB 003 du Canada Viewing Certifications 1 Go to http www zyxel com 2 Select your product from the drop down list box on the ZyXEL home...

Страница 6: ...s provided under this warranty is the exclusive remedy of the purchaser This warranty is in lieu of all other warranties express or implied including any implied warranty of merchantability or fitness...

Страница 7: ...T allow anything to rest on the power cord and do NOT locate the product where anyone can walk on the power cord If you wall mount your device make sure that no electrical gas or water pipes will be d...

Страница 8: ...sales zyxel dk 45 39 55 07 07 FINLAND support zyxel fi 358 9 4780 8411 www zyxel fi ZyXEL Communications Oy Malminkaari 10 00700 Helsinki Finland sales zyxel fi 358 9 4780 8448 FRANCE info zyxel fr 33...

Страница 9: ...se 46 31 744 7700 www zyxel se ZyXEL Communications A S Sj porten 4 41764 G teborg Sweden sales zyxel se 46 31 744 7701 UKRAINE support ua zyxel com 380 44 247 69 78 www ua zyxel com ZyXEL Ukraine 13...

Страница 10: ...G 470 User s Guide 10 Customer Support...

Страница 11: ...ZyXEL Device 21 1 1 1 ZyXEL Device Hardware Installation 22 1 1 2 Application Overview 23 1 1 2 1 Infrastructure 24 1 1 2 2 Roaming 24 Chapter 2 Tutorial 27 2 1 Connecting to an Access Point 27 2 1 1...

Страница 12: ...d Wireless Settings 44 4 4 3 Wizard Security Settings 45 4 4 3 1 Disable 45 4 4 3 2 WEP 46 4 4 3 3 WPA PSK 47 4 4 4 Wizard Confirm Your Settings 48 4 5 Using the AP Survey tool 49 4 6 Resetting the Zy...

Страница 13: ...Configuration 71 7 3 3 Back to Factory Defaults 71 7 4 F W Upload Screen 72 Chapter 8 Troubleshooting 75 8 1 Problems Starting Up the ZyXEL Device 75 8 2 Problems with the Password 75 8 3 Problem wit...

Страница 14: ...G 470 User s Guide 14 Table of Contents...

Страница 15: ...Status screen 40 Figure 17 Web Configurator Change Administrator Login Password 42 Figure 18 View Statistics 42 Figure 19 Setup Wizard 1 Basic Settings 44 Figure 20 Setup Wizard 2 Wireless Settings 4...

Страница 16: ...inging the G 470 85 Figure 53 WPA PSK Authentication 93 Figure 54 WPA 2 with RADIUS Application Example 93 Figure 55 WIndows 95 98 Me Network Configuration 96 Figure 56 Windows 95 98 Me TCP IP Propert...

Страница 17: ...e 11 Wireless Security WEP 63 Table 12 Wireless Security WPA PSK 64 Table 13 Wireless Security WPA 2 65 Table 14 Wireless Security 802 1x 67 Table 15 Management Password 69 Table 16 Management Configu...

Страница 18: ...G 470 User s Guide 18 List of Tables...

Страница 19: ...e refer to www zyxel com for an online glossary of networking terms and additional support documentation User s Guide Feedback Help us help you E mail all User Guide related comments questions or sugg...

Страница 20: ...G 470 User s Guide 20 Preface Graphics Icons Key Wireless Access Point Computer Notebook Computer Server Modem Wireless Signal Internet Cloud Printer...

Страница 21: ...e ZyXEL Device and C is the access point Figure 1 Device application Basic You can also use the ZyXEL Device to connect your home or small office network to a wireless network access point AP as in th...

Страница 22: ...bility Ethernet A built in RJ 45 Ethernet port that connects to any Ethernet device DHCP client support Power over Ethernet PoE support Management The ZyXEL Device allows you to locate and configure t...

Страница 23: ...ing The light is off Ethernet is connected Ethernet is connected and is sending or receiving data Ethernet is not connected WLAN The light is on The light is blinking The light is off The device is co...

Страница 24: ...SS to another as they move between the coverage areas During this period the wireless stations maintain uninterrupted connection to the network This is known as roaming As the wireless station moves f...

Страница 25: ...G 470 User s Guide Chapter 1 Getting Started 25 Figure 6 Roaming Example...

Страница 26: ...G 470 User s Guide 26 Chapter 1 Getting Started...

Страница 27: ...labeled C 2 1 1 Before You Start Before you connect to the AP you must know its Service Set IDentity SSID and WPA PSK pre shared key In this example the AP s SSID is AP6 and its pre shared key is Thi...

Страница 28: ...G 470 User s Guide 28 Chapter 2 Tutorial 2 The Login screen appears Enter admin as the username and 1234 as the password then click Login 3 In the Status screen click on Wireless...

Страница 29: ...isplays The Security Mode entry shows that AP6 is using WPA PSK security with TKIP data encryption 5 Click on the AP6 entry The AP Survey window closes and the entry AP6 now appears in the Wireless Se...

Страница 30: ...bar The ZyXEL Device automatically tries to connect to the AP using your settings The following message then appears in the Link Status bar 9 Go back to the Status screen and check that your wireless...

Страница 31: ...k devices A and B are called wireless clients The wireless clients use the access point AP to interact with other devices such as the printer or with the Internet Every wireless network must follow th...

Страница 32: ...network Encryption is like a secret code If you do not know the secret code you cannot understand the message 3 2 1 1 Certificates Your ZyXEL Device can use certificates also called digital IDs for us...

Страница 33: ...ed WEP keys from the Security Settings screen of the ZyXEL utility and entering them manually as the WEP keys in the other WLAN adapter s Enter the WEP keys manually Your ZyXEL Device allows you to co...

Страница 34: ...EAP TTLS and EAP PEAP Refer to the Wireless Security appendix for descriptions For EAP TLS authentication type you must first have a wired connection to the network and obtain the certificate s from...

Страница 35: ...4 by 768 pixels In order to use the web configurator you need to allow Web browser pop up windows from your device Web pop up blocking is enabled by default in Windows XP SP Service Pack 2 JavaScripts...

Страница 36: ...ystems Refer to the appendix about setting up your computer s IP address for other operating systems 4 1 1 1 Windows 2000 NT XP The following example figures use the default Windows XP GUI theme For d...

Страница 37: ...rotocol TCP IP and then click Properties Figure 11 Local Area Connection Properties 5 Select Use the following IP Address and fill in an IP address between 192 168 1 12 and 192 168 1 254 Type 255 255...

Страница 38: ...ab and click OK to go back to the Internet Protocol TCP IP Properties screen Figure 13 Advanced TCP IP Settings 7 Click OK to close the Internet Protocol TCP IP Properties window 8 Click Close OK in W...

Страница 39: ...Screen 5 Enter admin default as the username and 1234 default as the password and click Login The Status screen displays 4 2 1 The Status Screen The Status screen displays every time you access the w...

Страница 40: ...n to change the name of the device and change IP address settings Wireless Wireless Settings Use this screen to check for available access points and configure basic and advanced wireless network setu...

Страница 41: ...L s proprietary Network Operating System design Wireless Settings SSID This is the name used to identify the ZyXEL Device in the wireless LAN The default SSID is ZyXEL Channel This is the channel numb...

Страница 42: ...Click View Statistics in the Status screen This screen displays read only information including port status and packet specific statistics Also provided are system up time and poll interval The Poll...

Страница 43: ...ton to restore the factory default IP address Bytes This row displays the numbers of bytes received and transmitted by the Ethernet port Wireless Unicast Packets This row displays the numbers of unica...

Страница 44: ...c Settings Click Next to continue 4 4 2 Wizard Wireless Settings Use this wizard screen to set up the wireless LAN See the chapter on the wireless screens for background information 1 The SSID is a un...

Страница 45: ...d Select Disable to have no wireless security configured select WEP or select WPA PSK if your wireless AP supports WPA PSK In the Status page go to Wireless Security if you want to use WPA2 WPA or 802...

Страница 46: ...tructions to set up the WEP keys 2 Choose an encryption level from the drop down list The higher the WEP encryption the higher the security but the slower the throughput 3 You can generate or manually...

Страница 47: ...zard 3 WEP 4 4 3 3 WPA PSK Select WPA PSK only if your wireless AP supports it Type a pre shared key from 8 to 63 ASCII characters including spaces and symbols This field is case sensitive Use Passphr...

Страница 48: ...e 23 Wizard 3 WPA 2 PSK 4 4 4 Wizard Confirm Your Settings This read only screen shows the status of the current settings Use the summary table to check whether what you have configured is correct Cli...

Страница 49: ...e information on using the AP Survey screen 4 6 Resetting the ZyXEL Device If you forget your password or cannot access the ZyXEL Device you will need to reset the ZyXEL Device to the factory defaults...

Страница 50: ...e sure the POWER light is steady on 1 Press the RESET button for about 10 seconds then release it and press the button in once 2 If the POWER light begins to blink the defaults have been restored and...

Страница 51: ...ddresses for your local networks On the other hand if you are part of a much larger organization you should consult your network administrator for the appropriate IP addresses Note Regardless of your...

Страница 52: ...mber while the last number identifies an individual computer on that network Once you have decided on the network number pick an IP address that is easy to remember for instance 192 168 1 2 for your d...

Страница 53: ...you select this option fill in the fields below IP Address Enter the IP address of your device in dotted decimal notation Subnet Mask Enter the subnet mask Gateway IP Address Type the IP address of t...

Страница 54: ...G 470 User s Guide 54 Chapter 5 System Screen...

Страница 55: ...BSS also called an Infrastructure network exists when all communications between wireless stations or between a wireless station and a wired network client go through one access point AP Intra BSS tra...

Страница 56: ...ess LAN network terms 6 2 1 Channel A channel is the radio frequency or frequencies used by IEEE 802 11b wireless devices Channels available depend on your geographical area You may have a choice of c...

Страница 57: ...at the AP at the same time resulting in a loss of messages for both stations RTS CTS is designed to prevent collisions due to hidden nodes An RTS CTS defines the biggest size data frame you can send...

Страница 58: ...fragment size between 256 and 2432 bytes that can be sent in the wireless network before the ZyXEL Device will fragment the packet into smaller data frames A large Fragmentation Threshold is recommen...

Страница 59: ...you select this the ZyXEL Device may not communicate with IEEE802 11b wireless devices Clone MAC Address Every Ethernet capable device is issued with a unique Media Access Control MAC address at the f...

Страница 60: ...mble but not all support short preamble Select Auto to have the ZyXEL Device automatically use short preamble when all access point or wireless stations support it otherwise the ZyXEL Device uses long...

Страница 61: ...ity In order to configure and enable wireless security click Wireless Security to display the Security screen This screen varies according to the encryption method you select SSID This field displays...

Страница 62: ...less Security WEP WEP provides a mechanism for encrypting data using encryption keys Both the AP and the wireless stations must use the same WEP key to encrypt and decrypt data You can configure up to...

Страница 63: ...enerate to have the device create four different WEP keys Generate After you enter the passphrase click Generate to have the device generate four different WEP keys automatically Key 1 to Key 4 If you...

Страница 64: ...and improved data encryption Table 12 Wireless Security WPA PSK LABEL DESCRIPTION Encryption Method Select WPA PSK WPA2 PSK or WPA PSK WPA2 PSK if you want to configure a pre shared key Choose this op...

Страница 65: ...nd EAP PEAP only This is the name of the certificate issued by the certificate authority CA Select File Click here to choose a certificate Select a certificate from the list box and click Select to ac...

Страница 66: ...x and click Select to activate it Click Delete if you want to remove a private key from the list Alternatively click Browse to locate a private key Click Upload to add it to the list The private key f...

Страница 67: ...or 128 bit WEP to enable data encryption Trusted Root CA File EAP TLS EAP TTLS and EAP PEAP only This is the name of the certificate issued by the certificate authority CA Select File EAP TLS EAP TTLS...

Страница 68: ...o verify the certificate of the authentication server Passphrase EAP MD5 only With 64 bit or 128 bit WEP you can enter a passphrase password phrase of up to 32 case sensitive printable characters and...

Страница 69: ...nded click Management The screen appears as shown This screen allows you to change the device s password If you forget your password or the device IP address you will need to reset the device See Sect...

Страница 70: ...k Management Configuration File Information related to factory defaults backup configuration and restoring configuration appears as shown next Figure 37 Management Configuration File New Password Type...

Страница 71: ...llowing screen displays in the Status bar at the bottom of the configurator screen Figure 38 Management Configuration Upload Successful If you uploaded the default configuration file you may need to c...

Страница 72: ...een as shown Follow the instructions in this screen to upload firmware to your device Figure 40 Management F W Upload The following table describes the labels in this screen Warning Do not turn off th...

Страница 73: ...work disconnect In some operating systems you may see the following icon on your desktop Figure 42 Network Temporarily Disconnected After two minutes log in again and check your new firmware version i...

Страница 74: ...G 470 User s Guide 74 Chapter 7 Management Screens...

Страница 75: ...rce is turned on If the problem persists you may have a hardware problem In this case you should contact your local vendor The device reboots automatically sometimes The supplied power to the ZyXEL De...

Страница 76: ...ower of each AP Make sure there are not too many wireless stations connected to a wireless network Table 21 Troubleshooting the Ethernet Interface PROBLEM CORRECTIVE ACTION The computer with the ZyXEL...

Страница 77: ...he same subnet for LAN access If you changed the ZyXEL Device s IP address then enter the new one as the URL If you don t know the ZyXEL Device s IP address type the device name of your ZyXEL Device a...

Страница 78: ...blocking to log into your device Either disable pop up blocking enabled by default in Windows XP SP Service Pack 2 or allow pop up blocking and create an exception for your device s IP address 8 5 1 1...

Страница 79: ...this setting 8 5 1 1 2 Enable pop up Blockers with Exceptions Alternatively if you only want to allow pop up windows from your device see the following steps 1 In Internet Explorer select Tools Intern...

Страница 80: ...ting Figure 46 Internet Options Settings 3 Type the IP address of your device the web page that you do not want to have blocked with the prefix http For example http 192 168 1 11 4 Click Add to move t...

Страница 81: ...ck Close to return to the Privacy screen 6 Click Apply to save this setting 8 5 1 2 JavaScripts If pages of the web configurator do not display properly in Internet Explorer check that JavaScripts are...

Страница 82: ...et Options Custom Level 2 Click the Custom Level button 3 Scroll down to Scripting 4 Under Active scripting make sure that Enable is selected the default 5 Under Scripting of Java applets make sure th...

Страница 83: ...va Scripting 8 5 1 3 Java Permissions 1 From Internet Explorer click Tools Internet Options and then the Security tab 2 Click the Custom Level button 3 Scroll down to Microsoft VM 4 Under Java permiss...

Страница 84: ...eshooting Figure 50 Security Settings Java 8 5 1 3 1 JAVA Sun 1 From Internet Explorer click Tools Internet Options and then the Advanced tab 2 make sure that Use Java 2 for applet under Java Sun is s...

Страница 85: ...n displays Figure 52 Pinging the G 470 Your computer can now communicate with the ZyXEL Device via the ETHERNET port C ping 192 168 1 11 Pinging 192 168 1 11 with 32 bytes of data Reply from 192 168 1...

Страница 86: ...G 470 User s Guide 86 Chapter 8 Troubleshooting...

Страница 87: ...RX 600mA Voltage 5V Dimensions 104mm 127mm 26mm excluding external antenna and foot stand RADIO SPECIFICATIONS Media Access Protocol IEEE 802 11 Frequency USA FCC Canada 11 Channels Europe ETSI 13 Cha...

Страница 88: ...G 470 User s Guide 88 Appendix A...

Страница 89: ...asswords must be stored Thus someone other than the authentication server may access the password file In addition it is possible to impersonate an authentication server as MD5 authentication method d...

Страница 90: ...ementation of IEEE 802 1x Dynamic WEP Key Exchange The AP maps a unique key that is generated with the RADIUS server This key expires when the wireless connection times out disconnects or reauthentica...

Страница 91: ...grity Protocol TKIP Message Integrity Check MIC and IEEE 802 1x WPA and WPA2 use Advanced Encryption Standard AES in the Counter mode with Cipher block chaining Message authentication code Protocol CC...

Страница 92: ...x and Extensible Authentication Protocol EAP to authenticate wireless stations using an external RADIUS database WPA2 reduces the number of key exchange messages from six to four CCMP 4 way handshake...

Страница 93: ...sses the wireless client s authentication request to the RADIUS server 2 The RADIUS server then checks the user s identification against its database and grants or denies network access accordingly 3...

Страница 94: ...tures Table 25 Wireless Security Relational Matrix AUTHENTICATION METHOD KEY MANAGEMENT PROTOCOL ENCRYPTION METHOD ENTER MANUAL KEY IEEE 802 1X Open None No Disable Enable without Dynamic WEP Key Open...

Страница 95: ...nents you need to install and use TCP IP on your computer Windows 3 1 requires the purchase of a third party TCP IP application package TCP IP should already be installed on computers using Windows NT...

Страница 96: ...ou need the adapter 1 In the Network window click Add 2 Select Adapter and then click Add 3 Select the manufacturer and model of your network adapter and then click OK If you need TCP IP 1 In the Netw...

Страница 97: ...nd click Properties 2 Click the IP Address tab If your IP address is dynamic select Obtain an IP address automatically If you have a static IP address select Specify an IP address and type your inform...

Страница 98: ...nd close the TCP IP Properties window 6 Click OK to close the Network window Insert the Windows CD if prompted 7 Restart your computer when prompted Verifying Settings 1 Click Start and then Run 2 In...

Страница 99: ...9 Figure 58 Windows XP Start Menu 2 For Windows XP click Network Connections For Windows 2000 NT click Network and Dial up Connections Figure 59 Windows XP Control Panel 3 Right click Local Area Conne...

Страница 100: ...4 Select Internet Protocol TCP IP under the General tab in Win XP and click Properties Figure 61 Windows XP Local Area Connection Properties 5 The Internet Protocol TCP IP Properties window opens the...

Страница 101: ...ick Add In TCP IP Address type an IP address in IP address and a subnet mask in Subnet mask and then click Add Repeat the above two steps for each IP address you want to add Configure additional defau...

Страница 102: ...63 Windows XP Internet Protocol TCP IP Properties 8 Click OK to close the Internet Protocol TCP IP Properties window 9 Click OK to close the Local Area Connection Properties window 10Restart your com...

Страница 103: ...ntosh OS 8 9 Apple Menu 2 Select Ethernet built in from the Connect via list Figure 65 Macintosh OS 8 9 TCP IP 3 For dynamically assigned settings select Using DHCP Server from the Configure list 4 Fo...

Страница 104: ...changes to your configuration 7 Restart your computer if prompted Verifying Settings Check your TCP IP properties in the TCP IP Control Panel window Macintosh OS X 1 Click the Apple menu and click Sys...

Страница 105: ...ure box select Manually Type your IP address in the IP Address box Type your subnet mask in the Subnet mask box Type the IP address of your gateway in the Router address box if you have one 5 Click Ap...

Страница 106: ...G 470 User s Guide 106 Appendix C...

Страница 107: ...tificates 32 Certification Authority CA 32 89 Certifications Viewing 5 Channel 31 56 61 overlap 56 Clone MAC address 59 Configuration 35 backup 71 Copyright 3 Customer Support 8 D Data encryption 61 D...

Страница 108: ...1 example 27 Internet browser 35 Internet connection setup 27 introduction 35 IP Address 35 51 J Java permissions 83 JavaScript 35 81 L LAN light 23 Lights 22 23 Log in 39 M MAC address cloning 59 Man...

Страница 109: ...RTS CTS 57 RTS CTS Threshold 60 Rx sensitivity 87 S safety warnings 7 Scan 49 Screen resolution 35 Security 22 33 87 data encryption 33 Security Parameters 94 Service Set Identity 31 57 Shared key au...

Страница 110: ...4 91 Wired Equivalent Privacy 33 Wired network 24 Wireless client 31 Wireless LAN 22 basics 56 introduction 31 security 32 Wireless LAN WLAN 31 Wireless mode 59 Wireless network 31 guidelines 31 Wirel...

Отзывы:

Нет отзывов

Похожие инструкции для G-470

Бренд: Hainbuch Страницы: 72

Бренд: Panasonic Страницы: 16

Бренд: Panasonic Страницы: 12

BLPA100KTA - HD-PLC ETHERNET ADAPT.2PK

Бренд: Panasonic Страницы: 2

Бренд: Oki Страницы: 60

Бренд: ACTiSYS Страницы: 8

Бренд: STL Страницы: 14

Бренд: National Instruments Страницы: 27

Бренд: brennenstuhl Страницы: 91

Бренд: Enduro Страницы: 36

Бренд: ResMed Страницы: 31

Бренд: Margi Страницы: 21

Бренд: NCR Страницы: 10

Бренд: Atheros Страницы: 39

Бренд: KTI Networks Страницы: 23

Бренд: Linksys Страницы: 26

Бренд: D-Link Страницы: 2

DWA140 - RANGE BOOSTER N USB ADAPTOR

Бренд: D-Link Страницы: 58

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды