5 wpa, wpa2, wpa2-mix – ZyXEL Communications ZyXEL ZyWALL 2WG User Manual

Chapter 10 Wireless LAN

ZyWALL 2WG User’s Guide

194

10.8.5 WPA, WPA2, WPA2-MIX

Click NETWORK > WIRELESS CARD > Security > Edit. Select WPA, WPA2 or
WPA2-MIX from the Security Mode list.

Figure 96 NETWORK > WIRELESS CARD > Security: WPA, WPA2 or WPA2-MIX

The following table describes the labels in this screen.

Table 64 NETWORK > WIRELESS CARD > Security: WPA, WPA2 or WPA2-MIX

LABEL

DESCRIPTION

Name

Type a name to identify this security profile.

Security Mode

Select WPA, WPA2 or WPA2-MIX from the drop-down list.

ReAuthentication

Timer

Specify how often wireless clients have to resend user names and passwords in

order to stay connected. Enter a time interval between 600 and 65535 seconds.
If wireless client authentication is done using a RADIUS server, the

reauthentication timer on the RADIUS server has priority.

Idle Timeout

The ZyWALL automatically disconnects a wireless client from the wireless network

after a period of inactivity. The wireless client needs to send the username and

password again before it can use the wireless network again. Some wireless

clients may prompt users for a username and password; other clients may use

saved login credentials. In either case, there is usually a short delay while the

wireless client logs in to the wireless network again.
This value is usually smaller when the wireless network is keeping track of how

much time each wireless client is connected to the wireless network (for example,

using an authentication server). If the wireless network is not keeping track of this

information, you can usually set this value higher to reduce the number of delays

caused by logging in again.
Enter a time interval between 600 and 65535 seconds.

Group Key

Update Timer

The Group Key Update Timer is the rate at which the AP sends a new group key

out to all clients. The re-keying process is the WPA equivalent of automatically

changing the WEP key for an AP and all stations in a WLAN on a periodic basis.

Setting of the Group Key Update Timer is also supported in WPA(2)-PSK mode.

PMK Cache

This field is available only when you select WPA2 or WPA2-MIX.
When a wireless client moves from one AP’s coverage area to another, it performs

an authentication procedure (exchanging security information) with the new AP.

Instead of re-authenticating a client each time it returns to the AP’s coverage area,

which can cause delays to time-sensitive applications, the AP and the client can

store (or “cache”) and use information about their previous authentication.
Select Enable to allow PMK (Pairwise Master Key) caching, or Disable to switch

this feature off.