Solved

WPA or WPA2 or Both?

Posted on 2006-05-11
14
2,380 Views
Last Modified: 2013-11-12
I see the following on my router's setup page, and I don't know if I should enable WPA, WPA2 or both?  Will this slow my wireless network down due to having to encrypt decrypt the data it sends?

http://www.davidgareau.com/expertExchange/WPA%20&%20WPA2.JPG

0
Comment
Question by:davidgareau
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 4
  • 2
  • +2
14 Comments
 

Author Comment

by:davidgareau
ID: 16663967
Also, TKIP is stronger than AES, right? But is TKIP+AES (a third option) even better?
And what about the group key renewal? Is 3600 second one good?
0
 
LVL 5

Accepted Solution

by:
Mad_Jasper earned 168 total points
ID: 16663997
I have noticed no slow down in my wireless network since implementation of WPA/TKIP. I would have used WPA 2, but had some compliancy issues that will be addressed in the upcoming budget year.

In my network, we have 80 wireless laptops and 6 wireless printers, and 11 Cisco 1200 APs. Each laptop is configured by Group Policy to be auto rolled by our Certificate Authority. The CA is also our Radius server which authenticates the APs. All WLAN settings are distributed to the laptops via Group Policy so I never have to touch a laptop once it is imaged.

In order to access our network, the laptop must have certificate, the laptop must be a member of the domain, and the user that logs on to the laptop must be a member of the domain. It would VERY difficult to hack into our network via the WLAN.
0
 
LVL 5

Expert Comment

by:Mad_Jasper
ID: 16664000
AES is stronger, but not all client hardware is compatible. Using AES may require hardware/firmware upgrades.
0
Is your NGFW recommended by NSS Labs?

Ours is! NSS Labs Next Generation Firewall Test gives the WatchGuard Firebox M4600 a "Recommended" rating! Curious where your NGFW landed on the  Security Value Map? See the map and download the full report today!

 
LVL 8

Expert Comment

by:hiteshgupta1
ID: 16665678
how many nodes do u have in ur network??
0
 
LVL 4

Assisted Solution

by:amanzoor
amanzoor earned 166 total points
ID: 16670159
0
 

Author Comment

by:davidgareau
ID: 16672256
I have 3 nodes in the network.
0
 

Author Comment

by:davidgareau
ID: 16672260
What I'm most confused by is that I have the option of using WPA, WPA2 or both.
And I also have the options of using TKIP, AES or a combo TKIP+AES

0
 
LVL 5

Expert Comment

by:Mad_Jasper
ID: 16672522
Either way, WPA or WPA 2 is more secure than WEP. WPA/TKIP has worked very well for us.
0
 
LVL 5

Expert Comment

by:Blue_Rishi
ID: 16675641
Hi,

The way it works on my linksys wrt54g v.3.1; combo settings will allow clients to use either WPA or WPA2.
I use WPA2 myself with TKIP+AES, so I can use AES encryption on cards that support it and use TKIP otherwise.

Grz Blue Rishi

0
 

Author Comment

by:davidgareau
ID: 16704214
Thanks, so, I have 3 wireless USB adapters, all the same that support WPA2 and AES, so I should just set my router to allow only those two?  Is there any benefit to allowing the others if I don't plan on adding any other clients?
And you have experienced speed with WPA2 + AES that is about the same as without any security in place?

thanks
david
0
 
LVL 5

Expert Comment

by:Mad_Jasper
ID: 16704455
I would use the strongest encryption that you network supports. I can't speak for WPA2 + AES for speed, but I have WPA + TKIP and 80 wireless clients, migrated from WEP and I have seen no difference when roaming to other access points.
0
 
LVL 5

Assisted Solution

by:Blue_Rishi
Blue_Rishi earned 166 total points
ID: 16707851
> Is there any benefit to allowing the others if I don't plan on adding any other clients?

Nope, unless you need to swap hardware that might not support WPA2/AES or get visitors without support on a regular basis.

> And you have experienced speed with WPA2 + AES that is about the same as without any security in place?

I notice no difference when coping large amounts of data. It should not affect transmit rates, only tax the wifi-adapter or take a few cpu cycles depending on hardware/driver. So, under heavy load it could up the latency which could affect performance during gaming. However, I have had no problems with this so far.

Blue Rishi
0

Featured Post

Building an interactive eFuture classroom

Watch and learn how ATEN provided a total control system solution including seamless switching matrix switch, HDBaseT extenders, PDU, lighting control to build an interactive eFuture classroom.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
During and after that shift to cloud, one area that still poses a struggle for many organizations is what to do with their department file shares.
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…

688 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question