Table of Contents
Advertisement
• none - do not use encryption and do not accept encrypted packets
• 40bit-wep - use the 40bit encryption (also known as 64bit-wep) and accept only these packets
• 104bit-wep - use the 104bit encryption (also known as 128bit-wep) and accept only these
packets
• aes-ccm - use the AES-CCM (Advanced Encryption Standard in Counter with CBC-MAC)
encryption algorithm and accept only these packets
• tkip - use the TKIP (Temporal Key Integrity Protocol) and accept only these packets
static-algo-3 ( none | 40bit-wep | 104bit-wep | aes-ccm | tkip ; default: none ) - which encryption
algorithm to use:
• none - do not use encryption and do not accept encrypted packets
• 40bit-wep - use the 40bit encryption (also known as 64bit-wep) and accept only these packets
• 104bit-wep - use the 104bit encryption (also known as 128bit-wep) and accept only these
packets
• aes-ccm - use the AES-CCM (Advanced Encryption Standard in Counter with CBC-MAC)
encryption algorithm and accept only these packets
• tkip - use the TKIP (Temporal Key Integrity Protocol) and accept only these packets
static-key-0 ( text ) - hexadecimal key which will be used to encrypt packets with the 40bit-wep or
104bit-wep algorithm (algo-0). If AES-CCM is used, the key must consist of even number of
characters and must be at least 32 characters long. For TKIP, the key must be at least 64 characters
long and also must consist of even number characters
static-key-1 ( text ) - hexadecimal key which will be used to encrypt packets with the 40bit-wep or
104bit-wep algorithm (algo-0). If AES-CCM is used, the key must consist of even number of
characters and must be at least 32 characters long. For TKIP, the key must be at least 64 characters
long and also must consist of even number characters
static-key-2 ( text ) - hexadecimal key which will be used to encrypt packets with the 40bit-wep or
104bit-wep algorithm (algo-0). If AES-CCM is used, the key must consist of even number of
characters and must be at least 32 characters long. For TKIP, the key must be at least 64 characters
long and also must consist of even number characters
static-key-3 ( text ) - hexadecimal key which will be used to encrypt packets with the 40bit-wep or
104bit-wep algorithm (algo-0). If AES-CCM is used, the key must consist of even number of
characters and must be at least 32 characters long. For TKIP, the key must be at least 64 characters
long and also must consist of even number characters
static-sta-private-algo ( none | 40bit-wep | 104bit-wep | aes-ccm | tkip ) - algorithm to use if the
static-sta-private-key is set. Used to commumicate between 2 devices
static-sta-private-key ( text ) - if this key is set in station mode, use this key for encryption. In AP
mode you have to specify static-private keys in the access-list or use the Radius server using
radius-mac-authentication. Used to commumicate between 2 devices
static-transmit-key ( static-key-0 | static-key-1 | static-key-2 | static-key-3 ; default: static-key-0 ) -
which key to use for broadcast packets. Used in AP mode
tls-certificate ( name ) - select the certificate for this device from the list of imported certificates
tls-mode ( no-certificates | dont-verify-certificate | verify-certificate ; default: no-certificates ) -
TLS certificate mode
• no-certificates - certificates are negotiated dynamically using anonymous Diffie-Hellman
MODP 2048 bit algorithm
Copyright 1999-2007, MikroTik. All rights reserved. Mikrotik, RouterOS and RouterBOARD are trademarks of Mikrotikls SIA.
Other trademarks and registred trademarks mentioned herein are properties of their respective owners.
Page 273 of 695
- Quick Links:
- Ethernet
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
