Manualshelf

User guide

ManualsBrandsMotorola ManualsOther5440SM - Canopy 5.4 GHz Subscriber Module
431432433434435436437438439440
Canopy System User Guide
pmp-0229 (Mar 2013)
428
Chapter 22: Securing Your Network
Isolating APs from the Internet
Ensure that the IP addresses of the APs in your network
are not routable over the Internet.
do not share the subnet of the IP address of your user.
RFC 1918, Address Allocation for Private Subnets, reserves for private IP networks three blocks
of IP addresses that are not routable over the Internet:
/8 subnets have one reserved network, 10.0.0.0 to 10.255.255.255.
/16 subnets have 16 reserved networks, 172.16.0.0 to 172.31.255.255.
/24 subnets have 256 reserved networks, 192.168.0.0 to 192.168.255.255.
Encrypting Radio Transmissions
Cambium fixed wireless broadband IP systems employ the following forms of encryption for
security of the wireless link:
DES–Data Encryption Standard, an over-the-air link option that uses secret
56-bit keys and 8 parity bits.
AES–Advanced Encryption Standard, an extra-cost over-the-air link option that provides
extremely secure wireless connections. AES uses 128-bit secret keys as directed by the
government of the U.S.A. AES is not exportable and requires a special AP to process the large
keys.
DES Encryption
Standard modules provide DES encryption. DES performs a series of bit permutations,
substitutions, and recombination operations on blocks of data. DES Encryption does not affect the
performance or throughput of the system.