SonicWall SonicWave Deployment Guide
Configuring SonicOS for Wireless Access
76
4 Under Wireless Security, select the Authentication Type for your wireless network. SonicWall
recommends using WPA2 as the authentication type if all client devices support it.
5 Select the Cipher Type. When using WPA and WPA2, SonicWall recommends AES for maximum security.
6 Fill in the fields specific to the authentication type that you selected. The remaining fields change
depending on the selected authentication type.
7 Optionally, under ACL Enforcement, select Enable MAC Filter List to enforce Access Control by allowing
or denying traffic from specific devices. Select a MAC address object group from the Allow List or Deny
List to automatically allow or deny traffic to and from all devices with MAC addresses in the group. The
Deny List is enforced before the Allow List.
Virtual Access Point Encryption Settings:
The Virtual Access Point Encryption Settings section of both 5 GHz Radio Basic and 2.4 GHz Radio Basic are the
same for the 802.11n Radio.
5 GHz Radio Advanced / 2.4 GHz Advanced Settings:
1 Click 5 GHz Radio Advanced or 2.4 Radio Advanced.
The configuration is very similar for Radio 0 Advanced and Radio 1 Advanced. For most advanced
options, the default settings give optimum performance. For a full description of the fields on this page,
see the SonicOS Connectivity Administration documentation.
2 Optionally select the Hide SSID in Beacon checkbox.
The SSID refers to the access point name that appears in clients’ lists of available wireless connections.
Hiding the SSID provides additional security because it requires that you know the access point name
before connecting.
3 When finished configuring all options, click OK.
Sensor page
On the Sensor page, enable or disable Wireless Intrusion Detection and Prevention (WIDP) mode.
1 Select Enable WIDF sensor to have the SonicWave operate as a dedicated WIDP sensor. This option is not
selected by default.
2 From the drop-down menu, select the schedule for when the SonicWave operates as a WIDP sensor or
select Create new schedule... to specify a different time; default is Always on.
TIP: PSK uses a personal passphrase for authentication, EAP uses an Enterprise RADIUS server.
NOTE: Older client devices might not support AES.
NOTE: This section displays only if a VAP was selected from the 5 or 2.4 GHz Radio Virtual AP Group
drop-down menu in the Virtual Access Point Settings section of the General page.
NOTE: If this option is selected, Access Point or Virtual Access Point(s) functionality is disabled
automatically.
To Next Page
Loading...
