Jump to content Indonesia-English
HP.com Indonesia home Products and Services Support and Drivers Solutions How to Buy
» Contact HP
HP.com Indonesia home

Wireless LAN Productivity : do it
» 

Small & Medium Business Centre
» Products for business
» Solutions
» Resource library
» Promotions
» Events
» Subscribe to HP
» How to buy
» Find HP Reseller
» Submit pre-sales enquiry form

     Call to order at

     0 800 1111 222

     (toll free) or

     021 574 1111
» HP Smart Chat
Learn How HP Can Help You
HP Instant-On Technology
HP Maintenance Kit
Content starts here
Be more productive with a wireless LAN

Do it

Before putting your wireless network into production, do two things:

  1. Enable WEP (Wireless Encryption Protocol).
  2. Change your SSID (Service Set Identifier).

Many vendors ship wireless products with WEP disabled to keep it from interfering with installation troubleshooting. That's a good idea but just be sure you enable WEP before you roll out your wireless network.

WEP usually has two encryption levels, 40 bit and 128 bit. The higher the encryption level, the more security you gain. Even 128-bit encryption can be broken, but it takes time, equipment, and determination. Unless you have aggressive corporate spies searching for business secrets, WEP should be enough protection to keep the casual hacker from freeloading on your Internet access by grabbing some leaked frequency. Enabling WEP will slow packet throughput or limit range slightly in some equipment, so run your signal strength tests with WEP enabled.

The SSID acts as a mini-password between client and access point more along the lines of a fraternity handshake rather than a protected password. Change the SSID from the default to match something unique but simple to remember because you'll have to install the same SSID on each wireless client. You can also use the SSID to separate wireless networks in an enterprise system or wherever two department networks overlap.

Don't forget to test and configure PDAs with Wi-Fi support. Users will be thrilled to access the company network simply and easily from their favorite PDA.

More security tricks

Some wireless security experts suggest you disable the DHCP servers on your network. This forces you to set the IP address, subnet mask, and gateway IP address on each and every client, which sounds like a lot of extra work. However, leaving DHCP enabled makes it easier for any war drivers to log into your network. If they can get a signal outside your building, they can use DHCP to join your network.

Large companies often rely on SNMP (Simple Network Management Protocol) for device management. If your company does, change the public and private community strings from the defaults. Leaving those open with a leaky wireless network (and stopping a wireless network exactly at your walls is tough) gives hackers one more way to discover network information.

Here's another bit of advice that contradicts normal management practice: Use a separate set of access control lists on all your access points for your wireless clients. Normal management practice says to cut down the number of user lists you keep, but wireless security needs dictate the use of control lists on your access points. Advanced access points that use access control lists usually also offer a way to upload the list of allowed clients rather than forcing you to type them into a configuration screen on each access control point.

Security seems more involved with a wireless network, but that's not really the case. You just have to be aware that your wireless network reaches beyond your walls, making it easier for outsiders to become insiders.


»  Use it
»

How-to guides
» Wireless LAN productivity
» Overview
» Understand it
» Plan it
» Do it
» Use it
» Buy it
» Download a pdf version of this how-to guide


Printable version
Privacy statement Using this site means you accept its terms
© 2008 Hewlett-Packard Development Company, L.P.