Manualshelf

User Manual

ManualsBrandsPsion ManualsComputers & AccessoriesPSION TEKLOGIX WIRELESS GATEWAY 802.11a/b/g
141142143144145146147148149150
Chapter 13: Configuring Security
Plain-text
126
Psion Teklogix 9160 Wireless Gateway User Manual
13.2.1 Plain-text
Plain-text means any data transferred to and from the 9160 Wireless Gateway is not
encrypted. There are no further options for “Plain-text” mode.
Plain-text mode can be useful during initial network configuration or for problem
solving, but it is not recommended for regular use on the Internal network because it
is not secure.
13.2.1.1 Guest Network
Plain-text mode is the only mode in which you can run the Guest network, which is
by definition an easily accessible, unsecure LAN always virtually or physically sep-
arated from any sensitive information on the Internal LAN. For example, the guest
network might simply provide internet and printer access for day visitors.
The absence of security on the Guest AP is designed to make it as easy as possible
for guests to get a connection without having to program any security settings in
their clients.
For a minimum level of protection on a guest network, you can choose to suppress
(prohibit) the broadcast of the SSID (network name) to discourage client stations
from automatically discovering your access point. (See also “Does Prohibiting The
Broadcast SSID Enhance Security?” on page 122).
For more about the Guest network, see Chapter 14: “Setting up Guest Access”.
13.2.2 Static WEP
Wired Equivalent Privacy (WEP) is a data encryption protocol for 802.11 wireless
networks. All wireless stations and access points on the network are configured with
a static 64-bit (40-bit secret key + 24-bit initialization vector (IV)) or 128-bit (104-
bit secret key + 24-bit IV) Shared Key for data encryption.
You cannot mix 64-bit and 128-bit WEP keys between the access point and its client
stations.
Static WEP is not the most secure mode available, but it offers more protection than
plain-text mode as it does prevent an outsider from easily sniffing out unencrypted
wireless traffic. (For more secure modes, see the sections on “IEEE 802.1x” on
page 131, “WPA/WPA2 Personal (PSK)” on page 133.), or “WPA/WPA2 Enterprise
(RADIUS)” on page 136.