Tag: WPS

It could be touch-to-connect for Wi-Fi devices very soon

10/04/2014 Laptop, Notebook and Netbook Computers, Mobile Computing, Network hardware design, Network Management, Wireless Networking No Comments

Article

WiFi Alliance adds support for NFC | NFC World

My Comments

Two “quick-setup” features that I have liked are coming together very shortly for wireless routers and network-enabled devices. These features are being exploited by device manufacturers who want to be part of the level playing field and desire to see innovation.

One of these features is the WPS-PBC “push-to-connect” functionality where you invoke a WPS setup option on a client device you want to enrol then press the WPS button on your wireless router to “enrol” your client device in to your home network’s Wi-Fi segment. This feature has made it easier to bring new Windows  7/8 computers, Android mobile devices amongst most other Wi-Fi-capable devices in to a home network without having to transcribe in long WPA-PSK passphrases. I even set up one multiple-access-point network to allow this to happen on both access-point devices when I was fixing up network-connectivity issues. Similarly, I was pleased with a TP-Link TL-WPA4220 HomePlug wireless access point that used “Wi-Fi Clone” to learn network parameters from an existing Wi-Fi network segment at the push of a WPS button so it can be quickly set up as an extension access point.

Another feature that I am pleased about is NFC-based Bluetooth pairing. This is primarily used on most Sony Bluetooth-capable devices but other manufacturers are increasingly enabling it. It allows you to touch your phone or computer to the Bluetooth-capable device to instantly pair and connect both these devices. When I bought the Sony SBH-52 Bluetooth headset adaptor with FM radio, it didn’t take me long to “get going” with this device because I simply touched my Samsung Galaxy Note 2 Android phone to it to achieve this goal.

Now the Wi-Fi Alliance have merged both technologies and defined NFC “touch-and-go” setup as part of WPS-based wireless network setup standards. This functionality was seen as part of a “long-tail” vision for the WPS secure-network-setup standards with routers having to support the PIN-based and “push-to-go” methods. They defined a framework based around certain access-point and client chipsets including the Google Nexus 10 Android tablet. For that matter, Android, Linux and Windows 7/8 users could find this functionality either as a small app or “baked in” to an operating-system update.

This is another innovative step that will assure quick setup for Windows and Android devices with small-network Wi-Fi segments especially as most of the recent crop of these devices are equipped with NFC “touch-and-go” functionality and Wi-Fi connectivity.

Guest Post: Basic Security for Your Home Wireless Network

19/12/2012 Guest Post, Network Management, Wireless Networking No Comments
Netgear DG834G ADSL2 wireless router

Netgear DG834G ADSL2 wireless router

So, you’re ready to set up that nice and convenient home wireless network.  You’ve got the router out of the box and you’re ready to plug everything in, but there’s just one problem.  You’re concerned, or maybe you’re even a little bit paranoid.  You’re wondering who out there might be able to pick up the signal.  Setting up a wireless network in your home can be very simple, but it can also pose a few risks if you get lazy or you’re using older wireless router technology.  Once you’ve set up the router, yes, other people with wireless devices may be able to detect the signal you’re broadcasting, but depending on the precautions you’ve taken, you can determine what happens when they see that signal.

 Whether you live in an apartment complex, a tightly-packed subdivision, or on some rural street, there will always be opportunity for someone to detect your wireless signal.  All they have to do is look for it.  Does it mean they’ll try to connect to it?  No.  There isn’t any reason to panic about who might be able to see it.  It doesn’t matter.  What matters are your security and the preventative measures you’ve put in place to block unwanted access when that stray individual does decide to try to connect to your network and attempts to access your internet or your computer.

 Securing your internet connection and your personal network is a relatively simple thing to do.  Many newer routers or modem/ router combos will take you through a setup wizard that should walk you through activating security protocols, such as WEP or WPA and changing the SSID (network name).  Setup wizards aren’t necessarily the best option when setting up your wireless network’s security, but if you don’t know what you’re doing, it can work.  Just remember to change the SSID and avoid using WEP security.

 Why?  Not changing you router’s default SSID can be a sign to outsiders that the user who set up the network has no idea what they’re doing.  It can make that wireless signal a potential target.  You can change it to whatever you want.  As for WEP, it’s useless and simple to break through.  A tech savvy 8-year-old could break through WEP security in minutes.  If you’re in the market for a wireless router (or already purchased one) and one of the device’s selling points is WEP security, stay far away.  Instead, look for devices offering WPA security, or better yet, WPA2 security.

Then set an encryption key password that isn’t your dog’s name, your street address, the town where you grew up, or something equally lame and easy to crack.  Make it tough.  Make it long.   Don’t make it what you think is tough, make it genuinely tough.  Try a password creation exercise.  Write out strings of numbers and letters or a piece of paper.  Or write out a series of words that have no apparent or logical connection to one another.  Or make up words that aren’t in any dictionary.  Be creative and don’t worry if you can’t remember it or not.

Since we’re talking about a home network, it isn’t a big deal if you write down your insane password and store it somewhere, preferably in a place you will remember.  That way, when you have additional devices you want to grant internet access to, whip it out, you’re ready to go, and no paranoia.

Editor’s note:

Most recently-issued ISP-supplied or retail wireless routers are implementing a “secure by default” strategy which makes the process of creating a secure wireless network simple for most of us.

This includes strategies like WPS easy-setup routines with a random passphrase, and an increasing number of routers provided by the ISPs or telcos as customer-premises equipment use SSIDs that typically have a service marketing name followed by three or four random digits such as “BIGPOND1223 or OPTUS4345. These strategies relate the experience of a secure home network to that of installing or using a typical door lock, something most of us identify with regularly.

Guest post by Jack Pike Television lover and guru of all things Cable, spends his time blogging with Time Warner Cable when not enjoying the tube.

WPS-capable access points and multi-access-point networks

13/05/2012 Network Management, Wireless Networking No Comments

Just about every wireless router or access point targeted at the consumer or, in some cases, SOHO/small-business market is equipped with Wi-Fi Protected Setup, commonly known as WPS. The obvious part of this feature is a button on the router that instigates a quick and easy enrolment routine for suitably-equipped wireless network client devices.

Here, you would instigate the WPS setup routine on the client device, which may be as simple as starting Wi-Fi network setup. In all versions of Microsoft Windows since Windows 7, you would have your computer searching for wireless networks through the “Add Wireless Networks” routine.  But you may find that you have to select the target network you want to connect to in newer versions of Windows and click or tap “Connect” where Windows will prompt for the passphrase but will tell you that you can use the WPS button on your router if the network supports this. Then you would press the WPS button which begins to securely transfer the network credentials to the client device. In some cases, if you unpack a new router and plug it in to the wall, you may be determining a new WPA-PSK passkey for that router.

But you may be wondering how this will affect those wireless networks that have two or more access points that have this feature yet are set up to extend a wireless network’s coverage.

Last Saturday, I had an opportunity to set up such a network by repurposing a broadband router with this feature as an access point to extend a wireless network past a corrugated-iron wall to the back of a newly-extended house. Luckily the house was wired for Ethernet as part of the renovation, so the wired backbone of this “extended-service-set” was the Cat5 Ethernet cabling. But most of you may simply use a HomePlug AV powerline network as your backbone for a similar network.

Both the network’s main ADSL modem-router and the broadband router, which was floating around as a spare, were recent-issue units equipped with WPS. They were configured with different channels but the same ESSID, wireless-technology and security parameters and the broadband router was set up as an access point with its DHCP server turned off and itself existing on a fixed IP address that was part of the network.

I had discovered a problem with this broadband router where it reset the wireless-network parameters after a WPS wireless-network-setup cycle. But you need to check that the settings stay by going to “Advanced”, “Wireless Setup” or “WPS” options in your router’s / access point’s management Web page and making sure that options to keep wireless-network settings are selected after you configure the device with your network’s SSID and security parameters.

This means that WPS-equipped access points and routers are capable of working in the “extended-service-set” arrangement. It then means that you can enrol new Wi-Fi client devices like Windows 7 laptops, Android smartphones or Internet radios to your wireless-network segment using that idiot-proof WPS “push-push” method at the nearest access point to where you are setting them up at. Yet the multiple-access-point network still does the job of extending wireless coverage in to the dark spot while allowing you to move the laptop, tablet or smartphone between the access-points’ coverage areas without reconfiguring anything.

Note: I have updated the article originally published on May 2012 to added some extra notes about the WPS setup experience for versions of the Microsoft Windows regular-computer operating system released since this article was originally published.

New NETGEAR products for the home network

22/09/2010 HomePlug powerline networking, UPnP AV / DLNA media-playback hardware), Wireless Networking No Comments

 NETGEAR Rolls Out HD Media Players, UTM and Powerline Products – SmallNetBuilder

My Comments

I have read the attached article and found that most of the devices had impressed me as devices that would work well in a home or small-business network. This was because of particular abilities that had made the devices unique rather than run-off-the-mill devices.

NeoTV network media players

NETGEAR NeoTV 550 network media player

NeoTV 550 network media player

This group of NeoTV network media players may be very similar to the other network media players  like WDTV Live that are appearing on the market. This is that they are capable of playing audiovisual media held on a USB memory key, camera card reader or external hard drive; or from a DLNA/UPnP-AV-compliant media server that exists on your network. But one of the models in this lineup, the NeoTV 550,  has eSATA connectivity and the ability to be a Blu-Ray Disc player when connected to an optional eSATA-connected Blu-Ray drive. This can benefit people who want to consider running this unit alongside their DVD player as a network media player but may take the plunge for Blu-Ray when they are ready.

At the moment, I am not sure whether this unit can work as a substitute DVD player if it is connected to an eSATA or USB DVD drive or a DVD is loaded in to a connected Blu-Ray drive.

HomePlug AV 802.11n access point

NETGEAR XAVN2001 HomePlug AV 802.11n wireless access point

XAVN2001 HomePlug AV 802.11n wireless access point

One device I am pleased to see on the scene is the XAVN2001 HomePlug AV 802.11n wireless access point which work like some of the 802.11g wireless access points that can connect to a HomePlug 1.0 Turbo segment. It is also available as part of the XAVNB2001 kit which includes the Netgear XAV2001 HomePlug AV-Ethernet bridge as well as this access point. Like these other access points, this unit plugs in to the wall and works as a bridge between an Ethernet segment and a HomePlug AV powerline segment as well as being an access point for a 2.4GHz 802.11n wireless network.

This device can work as a way of extending the effective radio footprint of an 802.11n wireless network with the use of an Ethernet or HomePlug AV wired backbone. On the other hand, it could bring an 802.11n wireless network and Ethernet network point in to an outbuilding or static caravan (trailer) in the manner talked about in my feature article “Multi-Building Home Networks”.

Quick extension-access-point setup with WPS

I had done further research about this access point through Netgear’s Web site and found that this unit uses WPS as a way of simplifying the creation of a multiple-access-point wireless-network segment. This kind of segment, also known as an “extended service set” makes use of multiple access points with the same SSID, network operating mode and security parameters so a portable device can move between access points with minimal user intervention. I have written a bit about the concept of using WPS as a way of simplifying setup of a small multi-access-point wireless network in an article I had posted last year on this site at its old location and had moved to the current location.

The user just has to hold down the unit’s ON-OFF button for a few seconds then press the WPS button on the WPS-ready wireless “edge” router to start the configuration routine. A few moments later, they are then able to move the access point to the area where the Wi-Fi network is needed and proceed to connect this access point to the Ethernet or HomePlug AV backbone which the wireless router should be connected to.

Conclusion

If more manufacturers can look towards making affordable and easy-to-use network devices, they can end up with equipment that will appeal to most users and have equipment that is out of the ordinary.

Quick “extended service set” setup routines for WiFi access points

18/08/2009 Wireless Networking No Comments

Why a quick setup routine for WiFi access points (or client devices capable of operating as access points)?

It makes it simple for one to extend or improve wireless coverage by adding access points to an existing “extended service set” with a wired backbone. This includes mitigating microwave-oven interference to computer equipment being used in the kitchen by using an access point tuned to Channel 1 installed there. Increasingly this functionality will become more relevant with WiFi-based VoIP cordless phones and come in to its own with location-based WiFi security and home-automation applications. It will also allow a device with built-in Ethernet or HomePlug network connectivity as well as a WiFi client functionality (which typically covers most WiFi-enabled devices) to become a low-power WiFi access point thus making it easy to expand the wireless network by providing infill coverage.

This is achieved by enrolling the device as a client device of the wireless network, then if the device is connected to the same Internet gateway that is visited by the wireless network via the wired network, it sets itself up as an access point with the same SSID and security data as the master access point. It then avoids users having to re-enter network data and make mistakes in setting up multiple-access-point wireless networks.

Methods

Semi-automatic operation – without WPS on master AP

  1. User: Connect to new AP via Ethernet or HomePlug
  2. User: At Web UI for new access point:
    1. Select AP – quick setup
  3. New Access Point: AP becomes wireless client bridge, direct link to host
  4. New Access Point: AP presents list of SSIDs that it can receive and their security status (open or secure)
  5. User: Clicks on SSID matching their home network’s SSID or enters home network’s SSID (for hidden SSID networks), then enters WEP/WPA-PSK key as applicable when the new AP locks on to the desired AP
  6. New Access Point: Perform DHCP test to see if it can find the gateway
    1. If successful, offer to set up as AP, gain MAC of gateway & BSSID of master (& other) APs on SSID,set WEP/WPA-PSK parameter
  7. New Access Point: If user OKs with setting up as AP for network, then switch to AP mode, self-tune to vacant frequency, remain dormant
  8. New Access Point: Once gateway is discovered through Ethernet / HomePlug interface (backbone detect), activate AP mode.

Automatic operation – with WPS on master AP

  1. User: Select Access Point mode, then invoke WPS on new and master AP (PBC “push-push” method)
  2. New Access Point: new AP gains WiFi details through WPS as if it is a client
  3. New Access Point: become wireless client bridge on these details until connected to wired backbone
  4. New Access Point: detect wired backbone (via Ethernet, HomePlug), self-tune, become AP with WPS “peer” status

Limitations

Some details may not be able to be conveyed to the new access point, especially if the access point is of lesser capability than the master access point. This may be of concern when extending the coverage of a wireless hotspot and want to enforce client-computer isolation at the access point. The client-computer isolation functionality should be achieved at the link-layer level by the hotspot gateway router thus allowing for media-independent client isolation. It can then cater for hotspots that use wired media (Ethernet, HomePlug, MoCA TV-aerial cabling) to extend WiFi coverage or connect computers supplied by themselves or their guests to their Internet service.

Similarly there may be issues with setting up a multi-LAN wireless network where there is a VLAN set up on the wired network and multiple SSIDs that are radiated by the same access point. This kind of setup describes a “private” LAN segment and a “public” or “guest” LAN segment

Conclusion

Once the WiFi equipment vendors look at using “quick-setup” methods for WiFi access points, this can allow home and small-business users, especially those with limited computer skills, to set up their wireless networks to suit their needs more easily.