Chapter 10: Configuring Security
Does Prohibiting The Broadcast SSID Enhance Security?
98
Psion Teklogix 9160 G2 Wireless Gateway User Manual
10.1.3 Does Prohibiting The Broadcast SSID Enhance Security?
You can suppress (prohibit) this broadcast to discourage stations from automatically
discovering your access point. When the AP’s broadcast SSID is suppressed, the
network name will not be displayed in the List of Available Networks on a client
station. Instead, the client must have the exact network name configured in the sup-
plicant before it will be able to connect.
Disabling the broadcast SSID is sufficient to prevent clients from accidentally con-
necting to your network, but it will not prevent even the simplest of attempts by a
hacker to connect, or monitor unencrypted traffic.
This offers a very minimal level of protection on an otherwise exposed network
(such as a guest network) where the priority is making it easy for clients to get a
connection and where no sensitive information is available.
(See also “Guest Network” on page 101.)
10.1.4 How Does Station Isolation Protect The Network?
When Station Isolation is enabled, the access point blocks communication between
wireless clients. The access point still allows data traffic between its wireless clients
and wired devices on the network, but not among wireless clients.
The traffic blocking extends to wireless clients connected to the network via WDS
links; these clients cannot communicate with each other when Station Isolation
is on.
See Chapter 20: “Wireless Distribution System” for more information about WDS.