Solved

WPA or WPA2 or Both?

Posted on 2006-05-11
14
2,377 Views
Last Modified: 2013-11-12
I see the following on my router's setup page, and I don't know if I should enable WPA, WPA2 or both?  Will this slow my wireless network down due to having to encrypt decrypt the data it sends?

http://www.davidgareau.com/expertExchange/WPA%20&%20WPA2.JPG

0
Comment
Question by:davidgareau
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 4
  • 2
  • +2
14 Comments
 

Author Comment

by:davidgareau
ID: 16663967
Also, TKIP is stronger than AES, right? But is TKIP+AES (a third option) even better?
And what about the group key renewal? Is 3600 second one good?
0
 
LVL 5

Accepted Solution

by:
Mad_Jasper earned 168 total points
ID: 16663997
I have noticed no slow down in my wireless network since implementation of WPA/TKIP. I would have used WPA 2, but had some compliancy issues that will be addressed in the upcoming budget year.

In my network, we have 80 wireless laptops and 6 wireless printers, and 11 Cisco 1200 APs. Each laptop is configured by Group Policy to be auto rolled by our Certificate Authority. The CA is also our Radius server which authenticates the APs. All WLAN settings are distributed to the laptops via Group Policy so I never have to touch a laptop once it is imaged.

In order to access our network, the laptop must have certificate, the laptop must be a member of the domain, and the user that logs on to the laptop must be a member of the domain. It would VERY difficult to hack into our network via the WLAN.
0
 
LVL 5

Expert Comment

by:Mad_Jasper
ID: 16664000
AES is stronger, but not all client hardware is compatible. Using AES may require hardware/firmware upgrades.
0
MS Dynamics Made Instantly Simpler

Make Your Microsoft Dynamics Investment Count  & Drastically Decrease Training Time by Providing Intuitive Step-By-Step WalkThru Tutorials.

 
LVL 8

Expert Comment

by:hiteshgupta1
ID: 16665678
how many nodes do u have in ur network??
0
 
LVL 4

Assisted Solution

by:amanzoor
amanzoor earned 166 total points
ID: 16670159
0
 

Author Comment

by:davidgareau
ID: 16672256
I have 3 nodes in the network.
0
 

Author Comment

by:davidgareau
ID: 16672260
What I'm most confused by is that I have the option of using WPA, WPA2 or both.
And I also have the options of using TKIP, AES or a combo TKIP+AES

0
 
LVL 5

Expert Comment

by:Mad_Jasper
ID: 16672522
Either way, WPA or WPA 2 is more secure than WEP. WPA/TKIP has worked very well for us.
0
 
LVL 5

Expert Comment

by:Blue_Rishi
ID: 16675641
Hi,

The way it works on my linksys wrt54g v.3.1; combo settings will allow clients to use either WPA or WPA2.
I use WPA2 myself with TKIP+AES, so I can use AES encryption on cards that support it and use TKIP otherwise.

Grz Blue Rishi

0
 

Author Comment

by:davidgareau
ID: 16704214
Thanks, so, I have 3 wireless USB adapters, all the same that support WPA2 and AES, so I should just set my router to allow only those two?  Is there any benefit to allowing the others if I don't plan on adding any other clients?
And you have experienced speed with WPA2 + AES that is about the same as without any security in place?

thanks
david
0
 
LVL 5

Expert Comment

by:Mad_Jasper
ID: 16704455
I would use the strongest encryption that you network supports. I can't speak for WPA2 + AES for speed, but I have WPA + TKIP and 80 wireless clients, migrated from WEP and I have seen no difference when roaming to other access points.
0
 
LVL 5

Assisted Solution

by:Blue_Rishi
Blue_Rishi earned 166 total points
ID: 16707851
> Is there any benefit to allowing the others if I don't plan on adding any other clients?

Nope, unless you need to swap hardware that might not support WPA2/AES or get visitors without support on a regular basis.

> And you have experienced speed with WPA2 + AES that is about the same as without any security in place?

I notice no difference when coping large amounts of data. It should not affect transmit rates, only tax the wifi-adapter or take a few cpu cycles depending on hardware/driver. So, under heavy load it could up the latency which could affect performance during gaming. However, I have had no problems with this so far.

Blue Rishi
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
This article will inform Clients about common and important expectations from the freelancers (Experts) who are looking at your Gig.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

697 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question