Post on 10-Nov-2021
Chapter 7: Basic WirelessConcepts and Configuration
CCNA Exploration 4.0
1
CCNA Exploration 4.0
Objectives
• Describe the components and operations of basicwireless LAN topologies.
• Describe the components and operations of basicwireless LAN security.
• Configure and verify basic wireless LAN access.• Configure and troubleshoot wireless client access.
Học viện mạng Bach Khoa - Website: www.bkacad.com 2
• Describe the components and operations of basicwireless LAN topologies.
• Describe the components and operations of basicwireless LAN security.
• Configure and verify basic wireless LAN access.• Configure and troubleshoot wireless client access.
The Wireless LAN
Học viện mạng Bach Khoa - Website: www.bkacad.com 3
Why Use Wireless?
• Business networks today are evolving to support peoplewho are on the move.
• Mobility environment: where people can take theirconnection to the network along with them on the road.
• There are many different infrastructures (wired LAN,service provider networks) that allow mobility like this tohappen, but in a business environment, the most importantis the WLAN.
• People now expect to be connected at any time and place
Học viện mạng Bach Khoa - Website: www.bkacad.com 4
• Business networks today are evolving to support peoplewho are on the move.
• Mobility environment: where people can take theirconnection to the network along with them on the road.
• There are many different infrastructures (wired LAN,service provider networks) that allow mobility like this tohappen, but in a business environment, the most importantis the WLAN.
• People now expect to be connected at any time and place
Wireless Technologies
Học viện mạng Bach Khoa - Website: www.bkacad.com 5
PAN(Personal Area
Network)
LAN(Local Area Network)
WAN(Wide Area Network)
MAN(Metropolitan Area Network)
Wireless Will Be Everywhere
Học viện mạng Bach Khoa - Website: www.bkacad.com 6
PAN(Personal Area
Network)
Wireless LAN
Học viện mạng Bach Khoa - Website: www.bkacad.com 7
Comparing a WLAN to a LAN
Học viện mạng Bach Khoa - Website: www.bkacad.com 8
• In an 802.3 Ethernet LAN, each client hasa cable that connects the client NIC to aswitch. The switch is the point where theclient gains access to the network.
• In a wireless LAN, each client uses awireless adapter to gain access to thenetwork through a wireless device such asa wireless router or access point.
What is WLAN RF Technology?
Học viện mạng Bach Khoa - Website: www.bkacad.com 9
Modulation
Học viện mạng Bach Khoa - Website: www.bkacad.com 10
802.11b Radio Modulation
Học viện mạng Bach Khoa - Website: www.bkacad.com 11
802.11b Direct Sequence Modulation
Học viện mạng Bach Khoa - Website: www.bkacad.com 12
2.4-GHz Channel Sets
Học viện mạng Bach Khoa - Website: www.bkacad.com 13
802.11b Access Point Coverage
Học viện mạng Bach Khoa - Website: www.bkacad.com 14
802.11b Scalability
Học viện mạng Bach Khoa - Website: www.bkacad.com 15
Comparing the Technologies 802.11a Data Rates
Học viện mạng Bach Khoa - Website: www.bkacad.com 16
802.11a Uses OFDM Modulation
Học viện mạng Bach Khoa - Website: www.bkacad.com 17
802.11a 5-GHz Frequency Bands
Học viện mạng Bach Khoa - Website: www.bkacad.com 18
802.11a Access Point Coverage
Học viện mạng Bach Khoa - Website: www.bkacad.com 19
802.11a Scalability (Indoor UNII-1 and UNII-2)
Học viện mạng Bach Khoa - Website: www.bkacad.com 20
Wireless standards
Học viện mạng Bach Khoa - Website: www.bkacad.com 21
Wireless Infrastructure Components
Học viện mạng Bach Khoa - Website: www.bkacad.com 22
Configurable Parameters for Wireless Endpoints
• Wireless mode• Wireless Network Name: SSID• Wireless Channel:
Học viện mạng Bach Khoa - Website: www.bkacad.com 23
802.11 Topologies: Ad hoc Network
Học viện mạng Bach Khoa - Website: www.bkacad.com 24
802.11 Topologies: Basic Service Sets
Học viện mạng Bach Khoa - Website: www.bkacad.com 25
802.11 Topologies: Extended Service Sets
Học viện mạng Bach Khoa - Website: www.bkacad.com 26
802.11 Frame Format
Học viện mạng Bach Khoa - Website: www.bkacad.com 27
802.11 Frames Type
• There are three types of MAC frames, namely:• Control Frame:
– RTS, CTS, ACK• Data Frame• Management Frame:
– Beacon– Probe Req, Probe Resp– Assoc Req, Assoc Resp– Reassoc Req, Reassoc Resp– Disassociation– Authentication– Deauthentication
Học viện mạng Bach Khoa - Website: www.bkacad.com 28
• There are three types of MAC frames, namely:• Control Frame:
– RTS, CTS, ACK• Data Frame• Management Frame:
– Beacon– Probe Req, Probe Resp– Assoc Req, Assoc Resp– Reassoc Req, Reassoc Resp– Disassociation– Authentication– Deauthentication
802.11 Frames Type (cont)
Học viện mạng Bach Khoa - Website: www.bkacad.com 29
Client and Access Point Association
• Beacon
Học viện mạng Bach Khoa - Website: www.bkacad.com 30
Client and Access Point Association
Học viện mạng Bach Khoa - Website: www.bkacad.com 31
Client and Access Point Association
Step 3 - 802.11 Association
Học viện mạng Bach Khoa - Website: www.bkacad.com 32
Planning the Wireless LAN
Học viện mạng Bach Khoa - Website: www.bkacad.com 33
Planning the Wireless LAN
Học viện mạng Bach Khoa - Website: www.bkacad.com 34
Planning the Wireless LAN
Học viện mạng Bach Khoa - Website: www.bkacad.com 35
Planning the Wireless LAN
Học viện mạng Bach Khoa - Website: www.bkacad.com 36
Wireless LAN Security
Học viện mạng Bach Khoa - Website: www.bkacad.com 37
Wireless LAN Security Threats
Unauthorized Access
Học viện mạng Bach Khoa - Website: www.bkacad.com 38
Wireless LAN Security Threats
Học viện mạng Bach Khoa - Website: www.bkacad.com 39
Wireless LAN Security Threats
Denial of Service
Học viện mạng Bach Khoa - Website: www.bkacad.com 40
Wireless Security Protocols
Học viện mạng Bach Khoa - Website: www.bkacad.com 41
Authentication and Encryption
Học viện mạng Bach Khoa - Website: www.bkacad.com 42
802.11 Open Authentication
Học viện mạng Bach Khoa - Website: www.bkacad.com 43
802.11 Shared Key Authentication
Học viện mạng Bach Khoa - Website: www.bkacad.com 44
Wireless Security Protocols
Học viện mạng Bach Khoa - Website: www.bkacad.com 45
Wireless Security Protocols
Học viện mạng Bach Khoa - Website: www.bkacad.com 46
Wireless Security Protocols
• Encryption
Học viện mạng Bach Khoa - Website: www.bkacad.com 47
Securing a Wireless LAN
Học viện mạng Bach Khoa - Website: www.bkacad.com 48
Configure Wireless LAN Access
Học viện mạng Bach Khoa - Website: www.bkacad.com 49
Configuring the Wireless Access Point
Học viện mạng Bach Khoa - Website: www.bkacad.com 50
Setup: Basic Setup
Học viện mạng Bach Khoa - Website: www.bkacad.com 51
Administration: Management
Học viện mạng Bach Khoa - Website: www.bkacad.com 52
Configuring Basic Wireless Settings
Học viện mạng Bach Khoa - Website: www.bkacad.com 53
Security Mode
Học viện mạng Bach Khoa - Website: www.bkacad.com 54
• Select the mode you want to use: PSK-Personal, PSK2-Personal, PSK-Enterprise, PSK2-Enterprise, RADIUS, orWEP.
Mode Parameters
Học viện mạng Bach Khoa - Website: www.bkacad.com 55
• Enterprise modes are not configured in this chapter
Configure Encryption and Key
Học viện mạng Bach Khoa - Website: www.bkacad.com 56
Configure a wireless NIC: Scan SSID
Học viện mạng Bach Khoa - Website: www.bkacad.com 57
Configure a wireless NIC: Scan SSID
Học viện mạng Bach Khoa - Website: www.bkacad.com 58
Select the Wireless Security Protocol
Học viện mạng Bach Khoa - Website: www.bkacad.com 59
• Practice: 7.3.2.4
TroubleshootingSimple WLAN Problems
Học viện mạng Bach Khoa - Website: www.bkacad.com 60
TroubleshootingSimple WLAN Problems
Systematic Approach to WLAN Troubleshooting
Học viện mạng Bach Khoa - Website: www.bkacad.com 61
• Step 1 - Eliminate the client device as the source of theproblem.
• Step 2 - Confirm the physical status of WLAN devices.• Step 3 - Inspect wired links.
Updating the Access Point Firmware
Học viện mạng Bach Khoa - Website: www.bkacad.com 62
Incorrect Channel Settings
Học viện mạng Bach Khoa - Website: www.bkacad.com 63
Incorrect Channel Settings: Solution
Học viện mạng Bach Khoa - Website: www.bkacad.com 64
Solving RF Interference
Học viện mạng Bach Khoa - Website: www.bkacad.com 65
Solving RF Interference
• Site Surveys
Học viện mạng Bach Khoa - Website: www.bkacad.com 66
Site Survey
• Two categories: Manual and utility assisted.• Manual site surveys can include a site evaluation to be
followed by a more thorough utility-assisted site survey. Asite evaluation involves inspecting the area with the goal ofidentifying potential issues that could impact the network.Specifically, look for the presence of multiple WLANs,unique building structures, such as open floors andatriums, and high client usage variances, such as thosecaused by differences in day or night shift staffing levels.
• Note: you do not conduct site surveys as part of this course
Học viện mạng Bach Khoa - Website: www.bkacad.com 67
• Two categories: Manual and utility assisted.• Manual site surveys can include a site evaluation to be
followed by a more thorough utility-assisted site survey. Asite evaluation involves inspecting the area with the goal ofidentifying potential issues that could impact the network.Specifically, look for the presence of multiple WLANs,unique building structures, such as open floors andatriums, and high client usage variances, such as thosecaused by differences in day or night shift staffing levels.
• Note: you do not conduct site surveys as part of this course
Access Point Misplacement
Học viện mạng Bach Khoa - Website: www.bkacad.com 68
Access Point Misplacement: Solution
Học viện mạng Bach Khoa - Website: www.bkacad.com 69
Access Point Misplacement: Solution
• Ensure that access points are not mounted closer than 7.9 inches (20cm) from the body of all persons.
• Do not mount the access point within 3 feet (91.4 cm) of metalobstructions.
• Install the access point away from microwave ovens. Microwave ovensoperate on the same frequency as the access point and can causesignal interference.
• Always mount the access point vertically (standing up or hangingdown).
• Do not mount the access point outside of buildings.• Do not mount the access point on building perimeter walls, unless
outside coverage is desired.• When mounting an access point in the corner of a right-angle hallway
intersection, mount it at a 45-degree angle to the two hallways. Theaccess point internal antennas are not omnidirectional and cover alarger area when mounted this way.
Học viện mạng Bach Khoa - Website: www.bkacad.com 70
• Ensure that access points are not mounted closer than 7.9 inches (20cm) from the body of all persons.
• Do not mount the access point within 3 feet (91.4 cm) of metalobstructions.
• Install the access point away from microwave ovens. Microwave ovensoperate on the same frequency as the access point and can causesignal interference.
• Always mount the access point vertically (standing up or hangingdown).
• Do not mount the access point outside of buildings.• Do not mount the access point on building perimeter walls, unless
outside coverage is desired.• When mounting an access point in the corner of a right-angle hallway
intersection, mount it at a 45-degree angle to the two hallways. Theaccess point internal antennas are not omnidirectional and cover alarger area when mounted this way.
Problems with Authentication and Encrytion
Học viện mạng Bach Khoa - Website: www.bkacad.com 71
Problems with Authentication and Encrytion
Học viện mạng Bach Khoa - Website: www.bkacad.com 72
Problems with Authentication and Encrytion
Học viện mạng Bach Khoa - Website: www.bkacad.com 73
Summary
Học viện mạng Bach Khoa - Website: www.bkacad.com 74
Học viện mạng Bach Khoa - Website: www.bkacad.com 75