Table of Contents
Advertisement
Appendix D Wireless LANs
2 The AP checks each wireless client's password and allows it to join the network only if
the password matches.
3 The AP and wireless clients generate a common PMK (Pairwise Master Key). The key
itself is not sent over the network, but is derived from the PSK and the SSID.
4 The AP and wireless clients use the TKIP or AES encryption process, the PMK and
information exchanged in a handshake to create temporal encryption keys. They use
these keys to encrypt data exchanged between them.
Figure 485 WPA(2)-PSK Authentication
Security Parameters Summary
Refer to this table to see what other security parameters you should configure for each
authentication method or key management protocol type. MAC address filters are not
dependent on how you configure these security features.
Table 261 Wireless Security Relational Matrix
AUTHENTICATION
METHOD/ KEY
MANAGEMENT PROTOCOL
Open
Open
Shared
WPA
WPA-PSK
WPA2
WPA2-PSK
658
ENCRYPTIO
ENTER
N METHOD
MANUAL KEY
None
No
WEP
No
Yes
Yes
WEP
No
Yes
Yes
TKIP/AES
No
TKIP/AES
Yes
TKIP/AES
No
TKIP/AES
Yes
IEEE 802.1X
Disable
Enable without Dynamic WEP Key
Enable with Dynamic WEP Key
Enable without Dynamic WEP Key
Disable
Enable with Dynamic WEP Key
Enable without Dynamic WEP Key
Disable
Enable
Disable
Enable
Disable
ZyWALL USG 50-H User's Guide
Advertisement
Table of Contents
Troubleshooting
