ccna lab 7

Lab 7.2.5 Configuring a Wireless Access Point
Objective
• Configure the wireless access point (AP) portion of a multi-function device to allow access to a
wireless client. Background / Preparation The Linksys WRT300N includes an integrated 4-port switch, a router and a wireless Access Point (AP). In this lab, you will configure the AP component of the multi-function device to allow access for wireless clients. The basic wireless capabilities of the multi-function device will be configured but this will not be a secure wireless network. Setting up a secure wireless network will be covered in a later lab.
The following resources are required:
• Windows XP based computer that is cabled to the multi-function device
• Linksys WRT300N
Step 1: Verify connectivity between the computer and the multi-function device
a. The computer used to configure the AP should be attached to one of the multi-function device’s
switch ports.
b. On the computer, click the Start button and select Run. Type cmd and click OK or press Enter.
c. At the command prompt, ping the multi-function device using the default IP address 192.168.1.1 or the IP that has been configured on the multi-function device’s port. Do not proceed until the ping succeeds.
d. Write down the command used to ping the multi-function device.
Jawaban = jika dilakukan test ping dengan command ping 192.168.1.1 maka yang akan muncul ialah request time out. Hal ini dikarenakan IP pada AP telah dikonfigurasi ulang. Maka dengan setinggan otomatis DHCP ip address yang diberikan ialah 192.168.180.148 maka akan muncul replay from.
NOTE: If the ping is not successful, try these troubleshooting steps:
• Check to make sure the IP address of the computer is on the 192.168.1.0 network. The computer
must be on the same network as the multi-function device to be able to ping it. The DHCP service of the multi-function device is enabled by default. If the computer is configured as a DHCP client it should have a valid IP address and subnet mask. If the computer has a static IP address, it must be in on the 192.168.1.0 network and the subnet mask must be 255.255.255.0.
• Make sure the cable is a known-good straight-through cable. Test to verify.
• Verify that the link light for the port where the computer is attached is lit.
• Check whether the multi-function device has power.
If none of these steps correct the problem, check with your instructor.
Step 2: Log in to the multi-function device and configure the wireless network
a. Open a web browser. In the address line, type http://ip_address, where ip_address is the IP address of the wireless router (default is 192.168.1.1). At the prompt, leave the user name textbox empty, but type the password assigned to the router. The default password is admin. Click OK.
b. In the main menu, click on the Wireless option.
c. In the Basic Wireless Settings window, the Network Mode shows mixed by default, because the AP supports 802.11b, g, and n wireless devices. You can use any of these standards to connect to the AP. If the wireless portion of the multi-function device is NOT being used, the network mode would be set to Disabled. Leave the default of Mixed selected.
d. Delete the default SSID (linksys) in the Network Name (SSID) textbox. Enter a new SSID using your
last name or name chosen by your instructor. SSIDs are case-sensitive.
e. Write down the exact SSID name that you are using.?
Jawaban= aditya
f. Click on the Radio Band drop-down menu and write down the two options?setelah di konfigurasi ternyata dapat terkoneksi akan tetapi setinggan tidak dapat diubah pada default bawaan packet tracer, sehingga tidak ada pilihan pada network mode dan radio band.
g. For a wireless network that can use 802.11b, g, or n client devices, the default is Auto. Auto allows the Wide Channel option to be chosen and gives the best performance. The Standard Channel option is used if the wireless client devices are 802.11b or g, or both b and g. The Wide Channel option is used if only 802.11n client devices are being used. Leave the default of Auto selected.
h. SSID Broadcast is set to enabled by default, which enables the AP to periodically send out the SSID using the wireless antenna. Any wireless devices in the area can detect this broadcast. This is how clients detect nearby wireless networks.
i. Click on the Save Settings button. When the settings have been successfully saved, click on Continue.
j. The AP is now configured for a wireless network with the name (SSID) that you gave it. It is important
to write down this information before starting the next lab or attaching any wireless NICs to the wireless network.
Step 3: Reflection
a. How many wireless networks do you think could be configured in one classroom? What would limit
this?
Jawaban = dalam satu classroom pada wireless di access point ternyata batas nya diberikan 50 user. Jadi ip address yang bisa dikonfigurasikan sebanyak 50 client seperti 192.168.1.100-192.168.1.149
b. What do you see as a potential security problem when you broadcast your SSID from the AP?
Jawaban = jika settingan SSID pada access point disetting default maka akan memudahkan bagi attack wlan untuk menyerang system wireless yang digunakan untuk berbagai keperluan.
Lab 7.2.6 Configuring a Wireless Client
Objective
• Install and configure a driver for a wireless USB NIC for a wireless client computer.
• Determine the version of the driver installed and check the Internet for updates.
Jawaban = manufacture nya ialah = intel cooperation
Product name = B6A14TRQ
Background / Preparation
In this lab you will install a driver for a wireless USB NIC in a computer. The driver is a type of software that controls the wireless NIC. The driver comes on a CD with the NIC or can be downloaded from the Internet. Many manufacturers require that the driver is installed before the adapter is connected. The procedure described in this lab is for a Linksys USB 802.11g wireless NIC, but is similar to others. You should always follow the procedure recommended by the wireless NIC manufacturer.
The following resources are required:
• Windows XP-based computer with an available USB port
• Wireless USB NIC and associated driver
• Administrator rights to install the driver
• Linksys WRT300N with wireless access configured from previous lab
Step 1: Install the wireless NIC driver
a. Insert the CD that contains the wireless NIC driver into the CD/DVD drive and install the driver according to the manufacturer recommendations. Most USB devices require that the driver be installed before the device is physically attached. Note that you may do part of the installation process now and part of it after the wireless NIC is installed.
b. Who is the manufacturer of the wireless NIC? LINKSYS
c. Describe how you installed the wireless NIC driver. ?setelah dimasukkan CD driver product wireless dilakukan pengkonfigurasian pada alat access point dengan cara membuka browser dan masukan alamat bawaan product lalu akan muncul interface untuk pengaturan jaringan. Pengaturan yang dilakukan ialah mengubah nama default setting dan memberikan konfigurasi IP address perlu juga dilakukan pengkonfigurasian pada batasan minimum dan maksimum client. Dan yang terpenting ialah pengaturan security agar mencegah serangan dari luar. Adapun langkah-langkah nya:
1. masukkan CD installer product (pada kasus ini Linksys)
2. buka web browser, lalu masukkan alamat IP default pada browser.
3. akan muncul GUI product lalu lakukan pengaturan pada set up.
- pilih automatic DHCP
-lalu berikan batasan IP address dan subnet mask yang diizinkan.
-enabled kan dhcp server
4. setelah itu lakukan pengaturan pada wireless
-ubah nama SSID default menjadi nama yang kita hendaki.
-pilih jenis network mode
-lalu enabled kan SSID broadcast.
Step 2: Install the wireless NIC
a. When prompted, connect the USB NIC cable to an available USB port. Click Next to continue.
Step 3: Attach to the wireless network
a. Most wireless NIC adapters have client software to control the NIC. The software shows any wireless networks that are discovered. Select the SSID of the wireless network that you configured on the AP in a previous lab.
b. Which SSID are you using?pada settingan ini digunakan aditya
c. If the wireless NIC did not connect to the wireless network, perform the appropriate troubleshooting.
d. What is the signal strength for the wireless NIC?elektronika 1
e. Did the wireless NIC see any other wireless networks in the area?yes
Why or why not? Karena pada computer terdapat network adapter dan pada sinyal wireless yang terdeteksi telah di enabled kan untuk dapat dikoneksikan.
f. Show your active wireless connection to a fellow student or the lab assistant.
g. What is another name for a wireless host?
-elektronika2
-elektronika1
-elektronika unp
-elo_1 test
h. Is it better to use the client software from the wireless NIC manufacturer or let Windows XP control
the wireless NIC? Lebih bagus menggunakan client software.
Step 4: Determine the NIC driver version
a. Hardware manufacturers continually update drivers. The driver that ships with a NIC or other piece of hardware is frequently not the most current.
b. To check the driver version for the NIC you installed, click Start, select Control Panel and then
Network Connections. Right-click on the wireless connection and select Properties. Click the Configure button for the NIC and then the Driver tab. What is the name and version of the driver you
installed? Realtek RTL8187B Wireless 802.11b/g 54 Mbps USB 2.0 network adapter.

Step 5: Determine if the NIC driver is the most current
a. Search the NIC manufacturer web site for drivers that support the wireless NIC you installed. Are
there more current ones available?
- 1394 Net Adapter
- Marvel Yukon 88E8040T PCI-E Fast Ethernet Controller
- Realtek RTL8187B Wireless 802.11b/g 54 Mbps USB 2.0 Network Adapter

b. What is the most current one listed? Realtek RTL8187B Wireless 802.11b/g 54 Mbps USB 2.0 Network Adapter
c. If there is a more current driver, how would you apply it? Jika pada computer cukup dengan menambahkan port NIC baru sehingga bisa menambahkan Driver lebih. Atau jika pada laptop cukup menambahkan slot PCI.
Step 6: Verify connectivity
a. Once you have installed the NIC, it is time to verify connectivity with the Linksys WRT300N.
b. Open a web browser such as Windows Internet Explorer or Mozilla Firefox.
c. In the address line type http://192.168.1.1, which is the default setting on the AP.
d. In the Connect to 192.168.1.1 dialog box, leave the username text box empty, and type admin in the password text box. Leave the Remember my password checkbox unchecked. Click OK.
e. If you receive the Linksys Setup screen, you have established connectivity with the AP. If you do not establish connectivity, you will have to troubleshoot the connection by checking to ensure the devices are turned on and the IP addresses on all devices are correct. Which IP address should be configured on the wireless NIC? Jika terkendala dengan masalah koneksi maka yang harus diperhatikan ialah pengaturan pada SET UP dan di tetapkan kembali IP address dan menetukan batas maksimum dan minimum pada IP client.
Step 7: Reflection
a. Do you think the process of setting up a wireless network at a food store or book store is any different from what you just did?pengaturannya sama.Why or why not? Karena perangkat yang digunakan untuk menginstall wireless masih sama dan proses penginstalan juga tidak terlalu berbeda. Dan karena wireless pada tempat makan atau took buku masih skop kecil sehingga pengaturan masih sama.
b. Do you think the AP model that you are using would be sufficient for the food store in your
neighborhood? Why or why not? Bisa menggunakan PSK (pre-shared key) karena access point hanya bisa di berikan kepada pelanggan toko tersebut dengan memberikan kunci atau password hanya kepada pelanggan.

Lab 7.3.5 Configuring Wireless Security
Objectives
• Create a security plan for a home network.
• Configure the wireless access point (AP) portion of a multi-function device using security best practices.
Background / Preparation
A well-planned security implementation is critical to the safety of a wireless network. This lab goes over the steps that must be taken to ensure the safety of the network using the following scenario. You have just purchased a Linksys WRT300N wireless router, and you want to set up a small network in your home. You selected this router because the IEEE 802.11n specification claims that it has 12 times the speed of an 802.11g and 4 times the range. Because the 802.11n uses 2.4 GHz, it is backward compatible with both the 802.11b and 802.11g and uses MIMO (multiple-in, multiple-out) technology. You should enable security mechanisms before connecting your multi-function device to the Internet or any wired network. You should also change the default values provided, because they are well-known values that are easily obtainable on the Internet.
The following resources are required:
• Windows-based computer
• Linksys WRT300N
• Straight-through Ethernet cable
Step 1: Plan the security for your home network
a. List at least six security best practices that you should implement to secure your multi-function device
and wireless network.
1) Kurangi kekuatan pancar antena WAP
2) Berikan security code
3) Aktifkan MAC address filter.
4) Ganti Password default
5) Disable Broadcast SSID
6) Disable DHCP Server
b. Describe what the security risk is for each item.
1) kelemahan atau resikonya misalnya disebuah tempat usaha atau perusahaan maka semakin jauh titik akses dari akses point mengakibatkan kecepatan akses sangat terpengaruh atau bahkan tidak menjanjikan sama sekali.
2) bagi orang yang tidak paham teknologi akan kebingungan dalam memberikan security code.
3) jika seandainya MAC address seseorang client pernah diblokir pada suatu tempat, akan tetapi belum dibuka kembali maka tidak bisa digunakan pada tempat akses lain.
4) jika password pada default diganti, akan susah mengetahui paswor yang baru jika tidak dikonfirmasikan terhadap teknisi.
5) jika tidak diaktifkan kembali, maka titik access tidak dapat diditeksi oleh wireless adapter.
6)jika di disabledkan maka hanya IP address yang telah diregisterkan yang bisa mengakses jaringan, sehingga jaringan tidak bersifat bebas layaknya wi-fi zone pada umumnya.
Step 2: Connect a computer to the multi-function device and log in to the web-based utility
a. Connect your computer (Ethernet NIC) to the multi-function device (port 1 on the Linksys WRT300N) by using a straight-through cable.
b. The default IP address of the Linksys WRT300N is 192.168.1.1, and the default subnet mask is 255.255.255.0. The computer and Linksys device must be on the same network to communicate with each other. Change the IP address of the computer to 192.168.1.2, and verify that the subnet mask is 255.255.255.0. Enter the internal address of the Linksys device (192.168.1.1) as the default gateway. Do this by clicking, Start > Control Panel > Network Connections. Right click on the wireless connection and choose Properties. Select the Internet Protocol (TCP/IP) and enter the addresses as shown below.
c. Open a web browser, such as Internet Explorer, Netscape, or Firefox and enter the default IP address of the Linksys device (192.168.1.1) into the address field and press Enter.
d. A screen appears, requesting your user name and password.
b. Leave the User name field blank and enter admin for the password. It is the default password on the Linksys device. Click OK. Remember that passwords are case-sensitive.
c. As you make the necessary changes on the Linksys device, click Save Settings on each screen to save the changes or click Cancel Changes to keep the default settings.

Step 4: Change the Linksys device password
a. The initial screen displayed is the Setup > Basic Setup screen.
b. Click the Administration tab. The Management tab is selected by default.
c. Type in a new password for the Linksys device, and then confirm the password. The new password must not be more than 32 characters and must not include any spaces. The password is required to access the Linksys device web-based utility and Setup Wizard.
d. The Web Utility Access via Wireless option is enabled by default. You may want to disable this
feature to further increase security.
e. Click the Save Settings button to save the information.
NOTE: If you forget your password, you can reset the Linksys device to the factory defaults by pressing the RESET button for 5 seconds and then releasing it. The default password is admin.
Step 5: Configure the wireless security settings
a. Click the Wireless tab. The Basic Wireless Settings tab is selected by default. The Network Name is the SSID shared among all devices on your network. It must be identical for all devices in the wireless network. It is case-sensitive and must not be more than 32 characters.
b. Change the SSID from the default of linksys to a unique name. Record the name you have chosen:
jawaban
aditya
c. Leave the Radio Band set to Auto. This allows your network to use all 802.11n, g, and b devices.
d. For SSID Broadcast, select the Disabled button to disable the SSID broadcast. Wireless clients
survey the area for networks to associate with and will detect the SSID broadcast sent by the Linksys
device. For added security, do not broadcast the SSID.
e. Save your settings before going to the next screen.
Step 6: Configure encryption and authentication
a. Choose the Wireless Security tab on the Wireless screen.
b. This router supports four types of security mode settings:
• WEP (Wired Equivalent Privacy)
• WPA (Wi-Fi Protected Access) Personal, which uses a pre-shared key (PSK)
• WPA Enterprise, which uses Remote Access Dial In User Service (RADIUS)
• RADIUS CCNA Discovery
c. Select WPA Personal Security Mode.
d. On the next screen, choose an Encryption algorithm.
To secure a network, use the highest level of encryption possible within the Selected Security mode. The following Security Modes and Encryption levels are listed from least secure (WEP) to most
secure (WPA2 with AES)
• WEP
• WPA
o TKIP (Temporal Key Integrity Protocol)
o AES (Advanced Encryption System)
• WPA2
o TKIP
o AES
AES is only supported by newer devices that contain a co-processor. To ensure compatibility with all devices, select TKIP.
e. For authentication, enter a pre-shared key between 8 and 63 characters. This key is shared by the Linksys device and all connected devices.
f. Choose a key renewal period between 600 and 7200 seconds. The renewal period is how often the Linksys device changes the encryption key.
g. Save your settings before exiting the screen.
Step 7: Configure MAC address filtering
a. Choose the Wireless MAC Filter tab on the Wireless screen.
b. MAC address filtering allows only selected wireless client MAC addresses to have access to your network. Select the radio button to Permit PCs listed below to access the wireless network. Click the Wireless Client List button to display a list of all wireless client computers on your network.

c. The next screen allows you to identify which MAC addresses can have access to the wireless network. Click the Save to MAC Address Filter List check box for any client device you want to add, and then click the Add button. Any wireless clients, other than those in the list will be prevented from accessing your wireless network. Save your settings before exiting the screen.
Step 8: Reflection
a. Which feature that you configured on the Linksys WRT300N makes you feel the most secure and
why?
Jawaban = aplikasi atau program yang membuat saya merasa lebih aman dan nyaman ketika mengkonfigurasi ialah MAC address filtering. Alasannya karena pada aplikasi ini terdapat sebuah pilihan untuk memberikan izin access kepada client yang telah terlebih dahulu alamat IP dan MAC address nya dicantumkan atau didaftarkan.
b. Make a list of other items that could be done to make your network even more secure.
Pada pengaturan wireless kita pilih wireless security dan security modenya kita ganti dari disabled menjadi WEP sehingga dapat memberikan kunci berlapis. Atau pada system operasi windows biasa kita aktifkn juga menu firewall dan kita aktifkan juga menu SYS.