Manualshelf

User`s manual

ManualsBrandsD-Link ManualsComputer equipmentDWL-8220AP - AirPremier Wireless Switch Dualband Access Point
191192193194195196197198199200
188
DWS-1008 User’s Manual
D-Link Systems, Inc.
Conguring User Encryption
188D-Link Systems, Inc.
Conguring WEP
Wired-Equivalent Privacy (WEP) is a security protocol dened in the 802.11 standard. WEP
uses the RC4 encryption algorithm to encrypt data.
To provide integrity checking, WEP access points and clients check the integrity of a frame’s
cyclic redundancy check (CRC), generate an integrity check value (ICV), and append the
value to the frame before sending it. The radio or client that receives the frame recalculates
the ICV and compares the result to the ICV in the frame. If the values match, the frame is
processed. If the values do not match, the frame is discarded.
WEP is either dynamic or static depending on how the encryption keys are generated.
DWL-8200AP access points support dynamic WEP and static WEP.
For dynamic WEP, MSS dynamically generates keys for broadcast, multicast, and
unicast trafc. MSS generates unique unicast keys for each client session and
periodically regenerates (rotates) the broadcast and multicast keys for all clients. You
can change or disable the broadcast or multicast rekeying interval.
For static WEP, MSS uses statically congured keys typed in the switch’s conguration
and on the wireless client and does not rotate the keys.
Dynamic WEP encryption is enabled by default. You can disable dynamic WEP support by
enabling WPA and leaving the WEP-40 or WEP-104 cipher suites disabled. If you use dynamic
WEP, 802.1X must also be congured on the client in addition to WEP.
Static WEP encryption is disabled by default. To enable static WEP encryption, congure the
static WEP keys and assign them to unicast and multicast trafc. Make sure you congure
the same static keys on the clients.
Setting Static WEP Key Values
MSS supports dynamic WEP automatically. To enable static WEP, congure WEP keys and
assign them to unicast and multicast trafc. You can set the values of the four static WEP keys,
then specify which of the keys to use for encrypting multicast frames and unicast frames. If
you do this, MSS continues to support dynamic WEP in addition to static WEP.
To set the value of a WEP key, use the following command:
set service-prole name wep key-index num key value
The key-index num parameter species the index you are conguring. You can specify a
value from 1 through 4.