Filter
Top Products
Chapter 13 Interfaces
ZyWALL USG 300 User’s Guide
333
13.7 WLAN Interface MAC Filter
The MAC filter allows you to give specific wireless clients exclusive access to the
ZyWALL (allow association) or block specific devices from accessing the ZyWALL
(deny association) based on the devices’ MAC addresses.
Every IEEE 802.11b or IEEE 802.11g device has a unique MAC (Media Access
Control) address. The MAC address is assigned at the factory and consists of six
pairs of hexadecimal characters, for example, 00:A0:C5:00:00:02. You need to
know the MAC addresses of the devices to configure this screen.
If you set the filter to deny access and add the MAC address of a connected
device, the ZyWALL drops the device’s connection immediately. However, if you
set the filter to allow only the specified MAC addresses, the ZyWALL does not
immediately disconnect all connected wireless clients.
To display your ZyWALL’s MAC filter settings, click Configuration > Network >
Interface > WLAN > MAC Filter. The screen appears as shown.
Radius Server
Port
Enter the RADIUS server’s listening port number (the default is 1812).
Radius Server
Secret
Enter a password (up to 31 alphanumeric characters) as the key to be
shared between the external authentication server and the ZyWALL.
The key is not sent over the network. This key must be the same on
the external authentication server and ZyWALL.
ReAuthentication
Timer
Specify how often wireless stations have to resend user names and
passwords in order to stay connected.
Note: If wireless station authentication is done using a RADIUS
server, the reauthentication timer on the RADIUS server has
priority.
Idle Timeout The ZyWALL automatically disconnects a wireless station from the
wired network after a period of inactivity. The wireless station needs to
enter the user name and password again before access to the wired
network is allowed.
Group Key
Update Timer
The Group Key Update Timer is the rate at which the AP sends a
new group key out to all clients. The re-keying process is the WPA
equivalent of automatically changing the group key for an AP and all
stations in a WLAN on a periodic basis. Setting of the Group Key
Update Timer is also supported in WPA-PSK mode.
Table 72 Configuration > Network > Interface > WLAN > Add (WPA/WPA2 Security)
LABEL DESCRIPTION