ZyXEL Communications P8802T User Manual page 182

Chapter 14 Wireless
Table 66 Wireless: Security
LABEL
Network
Authentication
WPA2
Preauthentication
Network Re-auth
Interval
WPA Group Rekey
Interval
RADIUS Server IP
Address
RADIUS Port
RADIUS Key
WPA/WAPI
Encryption
Generate
password
automatically
WPA/WAPI
passphrase
WEP Encryption
Encryption
Strength
182
DESCRIPTION
Use the strongest authentication method that the wireless clients all support.
WPA2 or WPA uses an external RADIUS server to authenticate a separate user name
and password for each user. While WPA2 offers the strongest security, more wireless
clients support WPA.
Mixed WPA2/WPA supports WPA and WPA2 simultaneously.
WPA2-PSK or WPA-PSK uses a common password for all clients. While WPA2-PSK offers
stronger security, more wireless clients support WPA-PSK.
Mixed WPA2/WPA -PSK supports WPA2-PSK and WPA-PSK simultaneously.
Choose Open to allow all wireless connections without authentication.
This field displays when you select WPA2 or Mixed WPA2/WPA.
Enable pre-authentication for fast roaming by allowing a wireless client already connected
to an AP to perform IEEE 802.1x authentication with another AP before connecting to it.
This field displays when you select WPA2 or Mixed WPA2/WPA.
Specify how often wireless stations have to resend usernames and passwords in order to
stay connected. If wireless station authentication is done using a RADIUS server, the
reauthentication timer on the RADIUS server has priority.
Set the rate at which the AP (if using WPA(2)-PSK key management) or RADIUS server (if
using WPA(2) key management) sends a new group key out to all clients. The re-keying
process is the WPA(2) equivalent of automatically changing the WEP key for an AP and all
stations in a WLAN on a periodic basis.
Enter the IP address of the external authentication server in dotted decimal notation.
Enter the port number of the external authentication server. The default port number is
1812. You need not change this value unless your network administrator instructs you to
do so with additional information.
Enter a password (up to 31 alphanumeric characters) as the key to be shared between
the external RADIUS server and the VDSL Router. The key must be the same on the
RADIUS server and your VDSL Router. The key is not sent over the network.
Select the encryption type (AES or TKIP+AES) for data encryption.
Select AES if your wireless clients can all use AES.
Select TKIP+AES to allow the wireless clients to use either TKIP or AES.
This field displays when you select WPA(2)-PSK.
Select this option to have the VDSL Router automatically generate a password. The
password field becomes read-only.
This field displays when you select WPA(2)-PSK.
Enter 16 to 63 alphanumeric characters (0-9, A-Z, with no spaces). It must contain both
letters and numbers and is case-sensitive. Click the link to display the password.
This field displays when you set Network Authentication to Open. Enable WEP
encryption to scramble the wireless data transmissions between the wireless stations and
the access points (AP) to keep network communications private. Both the wireless
stations and the access points must use the same WEP key.
Note: WEP is extremely insecure. Attackers can break it using widely-available software. It
is strongly recommended that you use a more effective security mechanism.
If you are using WEP encryption, select 64-bit or 128-bit to set the length of the
encryption key.
Basic Home Station VDSL2 P8802T User's Guide