User's Manual
Table Of Contents
- Reference Manual for the 54 Mbps Wall-Plugged Router WGX102
- Contents
- Chapter 1 About This Manual
- Chapter 2 Introduction
- Chapter 3 Connecting the Router to the Internet
- Prepare to Install Your Wireless Router
- First, Connect a Wall-Plugged Ethernet Bridge XE102
- Connect the Wireless Router to the Internet
- Now, Set Up a Computer for Wireless Connectivity
- Troubleshooting Tips
- Overview of How to Access the Wireless Router
- How to Manually Configure Your Internet Connection
- Using the Smart Setup Wizard
- NETGEAR Product Registration, Support, and Documentation
- Chapter 4 Wireless Configuration
- Chapter 5 Content Filtering
- Chapter 6 Maintenance
- Chapter 7 Advanced Configuration of the Router
- Chapter 8 Troubleshooting
- Appendix A Technical Specifications
- Appendix B Network, Routing, Firewall, and Basics
- Appendix C Preparing Your Network
- What You Need To Use a Router with a Broadband Modem
- Preparing Your Computers for TCP/IP Networking
- Configuring Windows 95, 98, and Me for TCP/IP Networking
- Configuring Windows NT4, 2000 or XP for IP Networking
- Configuring the Macintosh for TCP/IP Networking
- Verifying the Readiness of Your Internet Account
- Restarting the Network
- Appendix D Wireless Networking Basics
- Glossary
- Index
Reference Manual for the 54 Mbps Wall-Plugged Router WGX102
Wireless Networking Basics D-11
July 2004 202-10036-01
The primary information conveyed in the Beacon frames is the authentication method and the
cipher suite. Possible authentication methods include 802.1X and Pre-shared key. Pre-shared
key is an authentication method that uses a statically configured pass phrase on both the
stations and the access point. This obviates the need for an authentication server, which in
many home and small office environments will not be available nor desirable. Possible cipher
suites include: WEP, TKIP, and AES (Advanced Encryption Standard). We’ll talk more TKIP
and AES when addressing data privacy below.
• Authentication. EAP over 802.1X is used for authentication. Mutual authentication is gained
by choosing an EAP type supporting this feature and is required by WPA. 802.1X port access
control prevents full access to the network until authentication completes. 802.1X
EAPOL-Key packets are used by WPA to distribute per-session keys to those stations
successfully authenticated.
The supplicant in the station uses the authentication and cipher suite information contained in
the information elements to decide which authentication method and cipher suite to use. For
example, if the access point is using the Pre-shared key method then the supplicant need not
authenticate using full-blown 802.1X. Rather, the supplicant must simply prove to the access
point that it is in possession of the pre-shared key. If the supplicant detects that the service set
does not contain a WPA information element then it knows it must use pre-WPA 802.1X
authentication and key management in order to access the network.
• Key management. WPA features a robust key generation/management system that integrates
the authentication and data privacy functions. Keys are generated after successful
authentication and through a subsequent 4-way handshake between the station and Access
Point (AP).
• Data Privacy (Encryption). Temporal Key Integrity Protocol (TKIP) is used to wrap WEP in
sophisticated cryptographic and security techniques to overcome most of its weaknesses.
• Data integrity. TKIP includes a message integrity code (MIC) at the end of each plaintext
message to ensure messages are not being spoofed.