Hantech WG100R Users Manual

use an external authentication server (e.g., RADIUS) and EAP just like IEEE 802.1X is using or pre-

shared keys without need for additional servers. Wi-Fi calls these "WPA-Enterprise" and "WPA-

Personal", respectively. Both mechanisms will generate a master session key for the Authenticator (AP)

and Supplicant (client station).

802.1X: The original security mechanism of IEEE 802.11 standard was not designed to be strong and

has proven to be insufficient for most networks that require some kind of security. Task group I (Security)

of IEEE 802.11 working group has worked to address the flaws of the base standard and in practice

completed its work in May 2004. The IEEE 802.11i amendment to the IEEE 802.11 standard was

approved in June 2004 and published in July 2004.

WPA Cipher suite/WPA2 Cipher suite:The encryption piece of WPA and WPA2 mandates the use of

TKIP or, because it's considered to be more secure than TKIP, preferably AES encryption.

Pre-Shared Key Format: You can select PASSPHRASE or HEX(64 CHARACTERS).
Pre-Shared Key: You can input 128 characters key.
Authentication RADIUS Server:input Port and IP Address and Password.

4.2.4 Wireless Access Control

If you choose 'Allowed Listed', only those clients whose wireless MAC addresses are in the

access control list will be able to connect to your Access Point. When 'Deny Listed' is selected, these

wireless clients on the list will not be able to connect the Access Point.

4.2.5 WDS Settings

Wireless Distribution System uses wireless media to communicate with other APs, like the Ethernet does.

To do this, you must set these APs in the same channel and set MAC address of other APs which you

want to communicate with in the table and then enable the WDS

14

4.2.6 Wireless Site Survey

This page provides tool to scan the wireless network. If any Access Point or IBSS is found, you

could choose to connect it manually when client mode is enabled.

4.2.7 WPS Setting

This page allows you to change the setting for WPS (Wi-Fi Protected Setup). Using this feature

could let your wireless client automically syncronize its setting and connect to the Access Point in a

minute without any hassle.

4.3 TCP/IP Setting

4.3.1 LAN Setting Lan Interface setup

This page is used to configure the parameters for local area network which connects to the LAN

port of your Access Point. Here you may change the setting for IP addresss, subnet mask, DHCP, etc..

15

MAC Address - the physical address of the router, as seen from the LAN. The value can't be

changed.

IP Address - Enter the IP address of your router in dotted-decimal notation (factory default:

192.168.1.254).

Subnet Mask - An address code that determines the size of the network. Normally use 255.255.255.0

as the subnet mask.

DHCP: You can select None,Client,Serve. The router is set up by default as a DHCP (Dynamic Host

Configuration Protocol) server, which provides the TCP/IP configuration for all the PCs that are

connected to the router on the LAN.

DHCP Client Range: This field specifies the first of the addresses in the IP address pool.

802.1d Spanning Tree: The IEEE 802.1D Spanning Tree Algorithm (STA) ,loop prevention and redundant

link configuration. You can select disable or enable.if your mode was set WDS or AP+WDS, this item

should be set “enable”

Clone MAC Address:you can enter a MAC,Then click clone.

4.3.2WAN Interface

This page is used to configure the parameters for Internet network which connects to the WAN

port of your Access Point. Here you may change the access method to static IP, DHCP, PPPoE or PPTP

by click the item value of WAN Access type.

WAN Access Type,User name, password, Service: you can refer to 3.2 Quick Installation Guide.
Connection Type:you can select continous o, connect on demand, manual.
Idle time: when connection type is connect on demand,you can set idle time.
MTU Size: The normal MTU (Maximum Transmission Unit) value for most Ethernet networks is 1492

Bytes. For some ISPs you need to reduce the MTU. But this is rarely required, and should not be

done unless you are sure it is necessary for your ISP connection.

DNS:You can select Attain DNS Automatically or Set DNS Manually
Clone MAC Address: if you wang clone, input MAC Address

16

Enable UpnP: The Universal Plug and Play (UPnP) feature allows the devices, such as Internet

computers, to access the local host resources or devices as needed. UPnP devices can be automatically

discovered by the UPnP service application on the LAN.

Enable L2TP pass through on VPN connection:
Enable IPsec pass through on VPN connection:
Enable PPTP pass through on VPN connection:

4.4 Firewal

4.4.1 Port Filtering

Entries in this table are used to restrict certain types of data packets from your local network to Internet

through the Gateway. Use of such filters can be helpful in securing or restricting your local network.

Enable Port filtering: select it, you can modify port filter.
Port range: input the filter port, for eaample 20-220
Protocol: you can select both,TCP,UDP
Cuurrent filter table: The list of port filter.

4.4.2 IP Filtering

Entries in this table are used to restrict certain types of data packets from your local network to Internet

through the Gateway. Use of such filters can be helpful in securing or restricting your local network.

Enable IP Filtering: select it, you can modify IP filter.
Local IPAddress:input the IP Address,for example:192.168.1.23.

Protocol: you can select both,TCP,UDP
Cuurrent Filter table: The list of IP filter.

17