Configuring Ap Security; Figure 44: Ap Network Security Options - D-Link DWS-3000 Series User Manual

Software User Manual D-Link Unified Access System
02/15/2011
If the wireless network topology changes (for example, a DWS-3000 switch reboots) while the L3 tunneling feature is in use,
you should perform an ARP refresh on wired clients to speed up the process of re-establishing connectivity to the tunneled
network.
For information about how to configure a network to use L3 tunneling, including CLI commands and Web configuration
procedures, see Appendix Appendix C:, <Link>"L3 Roaming Example" on page 213.

Configuring AP Security

The Default AP profile does not use any security mechanism by default. In order to protect your network, we strongly
recommend that you select a security mechanism so that unauthorized wireless clients cannot gain access to your network.
From the Wireless Network Configuration page, you can select None, WEP or WPA/WPA2 as the WLAN security
mechanisms, as <Link>Figure 44 shows. The default is None.

Figure 44: AP Network Security Options

The following sections describe the security mechanicians.
Using No Security
If you select None as your security mode, no further options are configurable on the AP. This mode means that any data
transferred between the D-Link Access Point and the associated wireless clients is not encrypted, and any wireless client
can associate with the AP.
This security mode can be useful during initial network configuration or for problem solving, but it is not recommended for
regular use on the internal network because it is not secure.
Using Static or Dynamic WEP
Wired Equivalent Privacy (WEP) is a data encryption protocol for 802.11 wireless networks. If you select this security
mechanism, all wireless clients and access points on the network are configured with a 64-bit (40-bit secret key + 24-bit
initialization vector (IV)), 128-bit (104-bit secret key + 24-bit IV), or 152-bit (128-bit secret key + 24-bit IV) Shared Key for
data encryption.
Static WEP is not the most secure mode available, but it offers more protection than setting the security mode to None as
it does prevent an outsider from easily sniffing out unencrypted wireless traffic.
Dynamic WEP is more secure than Static WEP, but you need a RADIUS server to manage the dynamically generated keys.
WEP encrypts data moving across the wireless network based on a static key. (The encryption algorithm is a "stream" cipher
called RC4.)
Document 34CS3000-SWUM104-D10 Page 97