Wireless Module for the UTM9S
535
ProSecure Unified Threat Management (UTM) Appliance
Figure 314. 
There are several ways you can enhance the security of your wireless network:
•     Restrict access based by MAC address. You can allow only trusted PCs to connect so 
that unknown PCs cannot wirelessly connect to the wireless module. Restricting access 
by MAC address adds an obstacle against unwanted access to your network, but the 
data broadcast over the wireless link is fully exposed. For information about how to 
restrict access by MAC address, see Restrict Wireless Access by MAC Address on 
page 545.
•     Turn off the broadcast of the wireless network name (SSID). If you disable broadcast 
of the SSID, only devices that have the correct SSID can connect. This nullifies the 
wireless network discovery feature of some products, such as Windows XP, but the data 
is still exposed. For information about how to turn of broadcast of the SSID, see 
Configure and Enable Wireless Security Profiles on page 538.
•     WEP. Wired Equivalent Privacy (WEP) data encryption provides data security. WEP 
shared key authentication and WEP data encryption block all but the most determined 
eavesdropper. This data encryption mode has been superseded by WPA-PSK and 
WPA2-PSK. 
Note:  On the UTM9S, WEP is not supported when the radio functions in 
802.11n wireless mode (802.11n, 802.11ng, 802,11na, or 
Greenfield).
For information about how to configure WEP, see Configure and Enable Wireless 
Security Profiles on page 538.
•     WPA. Wi-Fi Protected Access (WPA) data encryption provides strong data security with 
Temporal Key Integrity Protocol (TKIP) or a combination of TKIP and Advanced 
Encryption Standard (AES) encryption. The very strong authentication along with 
dynamic per frame rekeying of WPA make it virtually impossible to compromise. The 
wireless module supports WPA with a pre-shared key (PSK), RADIUS, or a combination 
of PSK and RADIUS.