Related
Documentation
WPA2, Extended Range, and Super G Support on NetScreen5GT Wireless Overview
Related
Documentation
Wi-Fi Protected Access Overview
Copyright © 2010, Juniper Networks, Inc.
For ISG series security devices running ScreenOS 5.0.0-IDP1, or ScreenOS 5.4 or later,
the chassis also includes the IDP series security module.
Wireless Settings in a Security Device Overview on page 381
Network, Interface, and Security Modules Supported in Security Devices on page 397
WPA2, Extended Range and SuperG Support on NetScreen5GT Wireless Overview on
page 401
Wi-Fi Protected Access Overview on page 401
Conducting a Site Survey for Detecting Access Points on page 397
WPA2 is the second generation of WPA security. WPA2 is based on the final IEEE 802.11i
amendment to the 802.11 standard. One of the primary improvements in WPA2 is stronger
encryption.
Extended Range improves WLAN infrastructure in coverage that is required for connectivity
at long ranges and in all corners of the home, office, enterprise, or hot spot.
Super G dramatically increases throughput needed for bandwidth intensive application
and growing volume of users. By bonding two 54 Mbps channels, it delivers significantly
higher throughput (up to 108mbps) versus .11b, .11g, and .11a technologies.
Wireless Settings in a Security Device Overview on page 381
Network, Interface, and Security Modules Supported in Security Devices on page 397
Chassis Information Overview on page 400
Wi-Fi Protected Access Overview on page 401
Conducting a Site Survey for Detecting Access Points on page 397
Wi-Fi Protected Access (WPA) is a more secure solution for WLAN authentication and
encryption and was designed in response to many of the weaknesses in WEP. NSM
supports WPA and WPA2.
WPA and WPA2 support 802.1X authentication, which use an Extensible Authentication
Protocol (EAP) method for authentication through a RADIUS server. EAP is an
encapsulation protocol used for authentication and operates at the Data Link Layer
(Layer 2). For more information, refer to RFC 2284, PPP Extensible Authentication Protocol
(EAP).
When using WPA or WPA2 with a RADIUS server, the security device forwards
authentication requests and replies between the wireless clients and the RADIUS server.
After successfully authenticating a client, the RADIUS server sends an encryption key to
the client and the security device. From that point, the security device manages the
Chapter 14: WAN, ADSL, Dial, and Wireless
401