Implementing Appropriate Wireless Security - NETGEAR FWG114Pv2 - Wireless Firewall With USB Print Server Reference Manual

Reference Manual for the ProSafe Wireless 802.11g Firewall/Print Server Model FWG114P v2

Implementing Appropriate Wireless Security

Note: Indoors, computers can connect to wireless networks at ranges of 300 feet or
more. Such distances allow others outside of your area to access your network.
Unlike wired network data, your wireless data transmissions can extend beyond your walls and
can be received by anyone with a compatible adapter. For this reason, use the security features of
your wireless equipment. The FWG114P v2 Wireless Firewall/Print Server provides highly
effective security features which are covered in detail in this chapter.
Figure 4-1: FWG114P v2 wireless data security options
There are several ways you can enhance the security of your wireless network:
• Restrict Access Based on MAC Address. You can allow only trusted PCs to connect so that
unknown PCs cannot wirelessly connect to the FWG114P v2. Restricting access by MAC
address adds an obstacle against unwanted access to your network, but the data broadcast over
the wireless link is fully exposed.
• Turn Off the Broadcast of the Wireless Network Name SSID. If you disable broadcast of
the SSID, only devices that have the correct SSID can connect. This nullifies wireless network
'discovery' feature of some products, such as Windows XP, but the data is still exposed.
• WEP. Wired Equivalent Privacy (WEP) data encryption provides data security. WEP Shared
Key authentication and WEP data encryption will block all but the most determined
eavesdropper.
4-2
FWG114P
201-10301-02, May 2005
Wireless Configuration