NETGEAR WMS5316 - ProSafe 16-AP Wireless Management System Reference Manual page 36

ProSafe 16 AP Wireless Management System WMS5316 Reference Manual
• Wireless Client Security Separation: If enabled, the associated wireless clients will not be
able to communicate with each other. This feature is intended for hot spots and other public
access situations.
• VLAN: The default VLAN ID to be associated with this security profile. This must match the
VLAN ID used by other network devices.
The following table shows the data encryption options based on network authentication.
Table 4-1. Network Authentication and Data Encryption
Network Authentication Data Encryption
Open
Shared Key
Legacy 802.1x
WPA with RADIUS
WPA2 with RADIUS
WPA-PSK
WPA2-PSK
WPA2-PSK
WPA and WPA2
WPA-PSK/WPA2-PSK:
4-3
None
WEP
WEP
• Select the WPA2 option only if all
clients support WPA2. If selected,
you must use AES.
• WPA/WPA2 with RADIUS allows
clients to use either WPA (with TKIP)
or WPA2 (with AES). If selected, you
must use TKIP + AES encryption.
TKIP or TKIP +AES and a WPA
passphrase (network key)
AES and TKIP + AES
TKIP + AES encryption and enter the
WPA passphrase (network key).
TKIP + AE
v1.0, March 2010
Description
No encryption.
• 64-bit WEP encryption uses 40/64 bit
encryption.
• 128-bit WEP encryption uses
104/128 bit encryption.
• 152-bit WEP is a proprietary mode
that will only work with other wireless
devices that support this mode.
All require RADIUS configuration.
Standard encryption method for WPA2.
Some clients may support AES with
WPA, but this is not supported by this
access point.
Clients can use either WPA (with TKIP)
or WPA2 (with AES).
Broadcast packets use TKIP. For
unicast (point-to-point) transmissions,
WPA clients use TKIP, and WPA2
clients use AES.
Security Configuration