what to buy

Unanswered Question
Aug 29th, 2007
User Badges:

Hello Friends,


I am looking for a Cisco Aironet (probably 1242 or 1231) for my new WLAN project but I am consused whether they support WPA or WPA2 personal (PSK) or not? I dont have a radiaus server and I need some better encryption(not WEP) which can work with MAC filter and can make my WLAN secure.


Please suggest and advise me on this. Thanks in advance.


Gigs

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Rob Huffman Thu, 08/30/2007 - 05:02
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 IP Telephony, Unified Communications

Hi Gigs,


You should be "good to go" either way, but I would be leaning towards the 1242 :)


Q. Does Cisco support WPA and WPA2 Enterprise Mode and Personal Mode?


A. Yes. Cisco Aironet products support WPA Enterprise Mode, WPA Personal Mode, WPA2 Enterprise Mode, and WPA2 Personal Mode. Cisco recommends Enterprise Mode for our customers because it provides enterprise-class security with mutual authentication.


From this excellent doc;


http://www.cisco.com/en/US/products/hw/wireless/ps430/products_qanda_item0900aecd801e3e59.shtml



WPA and WPA2 Support


The Cisco Unified Wireless Network includes support for the Wi-Fi Alliance certifications WPA and WPA2. WPA was introduced by the Wi-Fi Alliance in 2003. WPA2 was introduced by the Wi-Fi Alliance in 2004. All products Wi-Fi Certified for WPA2 are required to be interoperable with products that are Wi-Fi Certified for WPA.

WPA and WPA2 offer a high level of assurance for end users and network administrators that their data will remain private and that access to their networks will be restricted to authorized users. Both have personal and enterprise modes of operation that meet the distinct needs of the two market segments. The Enterprise Mode of each uses IEEE 802.1X and EAP for authentication. The Personal Mode of each uses PSK for authentication. Cisco does not recommend Personal Mode for business or government deployments because it uses a PSK for user authentication. PSK is not secure for enterprise environments.

WPA addresses all known WEP vulnerabilities in the original IEEE 802.11 security implementation bringing an immediate security solution to WLANs in both enterprise and small office/home office (SOHO) environments. WPA uses TKIP for encryption.

WPA2 is the next generation of Wi-Fi security. It is the Wi-Fi Alliance's interoperable implementation of the ratified IEEE 802.11i standard. It implements the National Institute of Standards and Technology (NIST) recommended AES encryption algorithm using Counter Mode with Cipher Block Chaining Message Authentication Code Protocol (CCMP). WPA2 facilitates government FIPS 140-2 compliance.


Another good Security doc;


http://www.cisco.com/en/US/products/hw/wireless/ps430/prod_brochure09186a00801f7d0b.html



Both the 1240 and 1231 have Wi-Fi Certification


Cisco Aironet 1240AG Series 802.11A/B/G Access Point Data Sheet


A second-generation dual-band access point, the Cisco Aironet 1240AG Series


http://www.cisco.com/en/US/products/ps6521/products_data_sheet0900aecd8031c844.html



The Cisco Aironet 1230AG Series is a preconfigured dual-band version of the 1200 Series, providing support for 802.11a and 802.11g. This first-generation, dual-band device does not, however, provide the same performance and support for 802.3af PoE as does the 1240AG Series.


Cisco Aironet 1230AG Series 802.11A/B/G Access Point Data Sheet


http://www.cisco.com/en/US/products/ps6108/products_data_sheet0900aecd801b9068.html



Here is a good configuration example (for Enterprise and Personal);


Wi-Fi Protected Access 2 (WPA 2) Configuration Example


http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a008054339e.shtml



Cisco Aironet Wireless Access Points Solution Overview


http://www.cisco.com/en/US/products/ps6521/prod_brochure0900aecd8035a015.html


Hope this helps!

Rob




Actions

This Discussion

 

 

Trending Topics: Other Wireless Mobility

client could not be authenticated
Network Analysis Module (NAM) Products
Cisco 6500 nam
reason 440 driver failure
Cisco password cracker
Cisco Wireless mode