Chapter 7 CCNA 3 :D

The network administrator uses the "Network Name (SSID)" setting to configure the unique identifier that client devices use to distinguish this wireless network from others. The SSID is a case-sensitive alphanumeric string that is assigned to the wireless network, and client devices use this SSID to identify and connect to the specific network.

Wireless networks broadcast data over a medium that allows easy access. This means that anyone within range of the network can potentially intercept and access the data being transmitted. Without proper security measures in place, unauthorized individuals can gain access to sensitive information, such as personal data or confidential business information. Therefore, ensuring security in wireless networks is crucial to protect the privacy and integrity of the transmitted data.

A wireless access point uses beacons to allow WLAN clients to learn which networks are available in a given area. Beacons are broadcasted by the access point at regular intervals and contain information about the network, such as the network name (SSID) and supported features. When a WLAN client receives a beacon, it can use the information to determine if it wants to connect to that network.

Authentication serves the purpose of determining that the correct host is utilizing the network. It ensures that only authorized devices are allowed access to the WLAN, preventing unauthorized users from gaining access. By verifying the identity of the host, authentication helps maintain the security and integrity of the network.

When a rogue access point is added to a WLAN, unauthorized users can gain access to internal servers, causing a security hole. This means that individuals who are not authorized to use the network can infiltrate and potentially exploit sensitive information or disrupt network operations. This poses a significant risk to the security and integrity of the WLAN and the systems connected to it.

Wireless access points should be implemented with each access point using a different channel in order to keep signals from interfering with each other. This is because when multiple access points use the same channel, their signals can overlap and cause interference, resulting in degraded performance and reduced coverage. By using different channels, the access points can operate on separate frequencies, minimizing interference and ensuring better signal quality and reliability for the users.

CSMA/CA (Carrier Sense Multiple Access with Collision Avoidance) is a protocol used in wireless networks to overcome the problem of media contention. Media contention occurs when multiple devices try to access the wireless medium simultaneously, resulting in collisions and degraded network performance. CSMA/CA addresses this issue by introducing a mechanism that allows devices to sense the medium before transmitting, avoiding collisions and ensuring efficient utilization of the available bandwidth. Therefore, media contention is the major problem that CSMA/CA helps to overcome in wireless networks.

A wireless access point uses the CSMA/CA (Carrier Sense Multiple Access/Collision Avoidance) access method to allow for multiple user connectivity and distributed access. CSMA/CA is a protocol used in wireless networks to avoid collisions between data packets by sensing the carrier (wireless medium) before transmitting. It helps in improving the efficiency and reliability of wireless communication by reducing the chances of data collisions.

Setting up open access on both the access point and each device connected to it will allow connectivity for a new wireless network. Open access means that there are no restrictions or encryption in place, so any device can connect to the network without needing a password or key. This method is commonly used in public Wi-Fi networks or in situations where convenience and ease of access are prioritized over security.

A site survey is the network design process that identifies where to place access points. It involves assessing the physical layout and requirements of a location to determine the optimal locations for access points. This process helps ensure that the wireless network coverage is sufficient and avoids any dead zones or interference. By conducting a site survey, network designers can strategically plan the placement of access points to provide reliable and efficient wireless connectivity throughout the desired area.

MAC address filtering is a wireless security feature that allows a network administrator to configure an access point with wireless NIC (Network Interface Card) unique identifiers. By enabling MAC address filtering, only the NICs with these specific MAC addresses are allowed to connect to the wireless network. This provides an additional layer of security by restricting access to authorized devices only.

The correct answer is to force all devices on a WLAN to authenticate and monitor for any unknown devices. This procedure ensures that only authorized devices can connect to the network, preventing any unauthorized devices from intercepting or altering the communication between the legitimate devices. By monitoring for unknown devices, any potential man-in-the-middle attacks can be detected and prevented in real-time. Enabling access points to send an SSID, configuring MAC filtering, or disabling SSID broadcasts do not directly address the issue of preventing man-in-the-middle attacks.

A wireless client will transmit a probe request to discover the available WLAN networks. This is a request sent by the client device to scan and search for nearby wireless networks. The probe request is broadcasted to all available networks, and it prompts the access points to respond with a probe response containing information about the network, such as SSID (network name), signal strength, and security settings. This allows the client to determine which networks are available and choose the appropriate one to connect to.

The first step in designing a solution to the poor performance issue in the small area of the room is to verify the channels in use on each wireless access point and change to non-overlapping channels. This is because the complaint suggests that there might be RF channel overlap, which can cause interference and degrade performance. By ensuring that the access points are using different channels that do not overlap, the technician can improve the wireless network's performance within the small area.

802.11n provides the most compatibility with older wireless standards, such as 802.11a, 802.11b, and 802.11g, while offering greater performance. This is because 802.11n operates on both the 2.4GHz and 5GHz frequency bands, allowing it to support devices that are compatible with older standards. Additionally, 802.11n utilizes multiple-input multiple-output (MIMO) technology, which improves data transfer rates and overall performance compared to older standards.

A wireless access point converts data from the 802.11 wireless protocol to the 802.3 wired protocol. This conversion allows devices connected to the wireless access point to communicate with devices on a wired network. By encapsulating the data in the appropriate format, the wireless access point ensures that the data can be transmitted and understood by devices on the wired network.

The adoption of 802.11g over 802.11a has been favored due to two main conditions. Firstly, 802.11a suffers from a shorter range compared to 802.11g, making it less practical for widespread use. Secondly, 802.11g is backward compatible with 802.11b, allowing for an easier transition and integration with existing networks. These two factors have contributed to the preference for 802.11g over 802.11a in the market.

A rogue access point represents a security risk for the local network because it is an unauthorized access point that can be used by attackers to gain access to the network and intercept or manipulate data.

With SSID broadcast disabled, an attacker must sniff the SSID before being able to connect because the network's name is not broadcasted, making it more difficult for attackers to identify and connect to the network without prior knowledge of the SSID.

MAC address filtering prevents the contents of wireless frames from being viewable. This statement is false. MAC address filtering is a security measure that allows or denies access to a network based on the MAC address of a device, but it does not prevent the contents of wireless frames from being viewable.

Providing a wireless client with the network key allows an available network to be visible. This statement is true. When a wireless client is provided with the network key, it can authenticate and connect to the network, making the network visible and accessible to the client.

Disabling an access point from broadcasting the SSID prevents the access point from being discovered. This statement is true. When an access point stops broadcasting its SSID (Service Set Identifier), it becomes hidden and is not easily discoverable by wireless devices. However, this is not a foolproof security measure as the SSID can still be discovered through other means.

Default SSIDs on specific manufacturer APs are generally known and may permit hostile wireless connections. This statement is true. Many manufacturers use default SSIDs for their access points, and these default SSIDs are often well-known and documented. This can make it easier for attackers to identify and potentially exploit these access points.

Manually adding a network and setting the known SSID on a wireless client makes the network visible even if the SSID is not being broadcast. This statement is true. Even if an access point is not broadcasting its SSID, a wireless client can manually add the network and set the known SSID, allowing it to connect to the network and make it visible to the client.