WooYing
asked on
Encrypting traffic between laptop and AP
Experts, I have a wireless controller (Cisco 2100) and a AP (Cisco 600 or 1100), I want to see if there was a way to encrypt traffic between the laptop (Windows) and the AP. I am only concern with the wireless data traffic between the two devices. Any idea if I can use the existing equipment to accomplish this or should would I need to upgrade the existing equipment?
Use WEP, WPA-PSK, or WPA2-PSK encryption.
ASKER CERTIFIED SOLUTION
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
Why do you want to encrypt traffic --- obviously, I see that you want no one to be able to sniff traffic - but do you have some extra concerns as well--- ?
otherwise, other aadigh is right. BUT;
- Never use WEP (!)
This is wrong:
and then possibly add some standard or stronger Ecryption
encryption Protocols
(PSK = Preshared Key)(TKIP=Temporal Key Integrity Protocol)(EAP =Extensible Authentication Protocol)
PSK and EAP are ways to authenticate and have NOTHING to do with encryption.
PSK is authentication (and encryption key generation -- ) using a common known password.
EAP, as the name says is a way to authenticate using a user database server (RADIUS) - you will also choose encryption here - most likely WAP2-Enterprise where keys are unique per device
TKIP is a way to encrypt traffic -- rubbish and should not be used. Choose AES-CCMP (or just AES) --
TKIP - as the name implies, where only a temporary fix to weaknesses in WEP
otherwise, other aadigh is right. BUT;
- Never use WEP (!)
This is wrong:
and then possibly add some standard or stronger Ecryption
encryption Protocols
(PSK = Preshared Key)(TKIP=Temporal Key Integrity Protocol)(EAP =Extensible Authentication Protocol)
PSK and EAP are ways to authenticate and have NOTHING to do with encryption.
PSK is authentication (and encryption key generation -- ) using a common known password.
EAP, as the name says is a way to authenticate using a user database server (RADIUS) - you will also choose encryption here - most likely WAP2-Enterprise where keys are unique per device
TKIP is a way to encrypt traffic -- rubbish and should not be used. Choose AES-CCMP (or just AES) --
TKIP - as the name implies, where only a temporary fix to weaknesses in WEP