# Wireless Guide {#idp87698880}
## Wireless and mobile networking overview for Fedora Linux
###
### Stephen Wadeley
Red Hat
Engineering Content Services
<[swadeley@redhat.com](mailto:swadeley@redhat.com)>
### Scott Radvan
Red Hat
Engineering Content Services
<[sradvan@redhat.com](mailto:sradvan@redhat.com)>
Copyright © 2012 Red Hat, Inc.
The text of and illustrations in this document are licensed by Red Hat under a Creative Commons Attribution–Share Alike 3.0 Unported license ("CC-BY-SA"). An explanation of CC-BY-SA is available at . The original authors of this document, and Red Hat, designate the Fedora Project as the "Attribution Party" for purposes of CC-BY-SA. In accordance with CC-BY-SA, if you distribute this document or an adaptation of it, you must provide the URL for the original version.
Red Hat, as the licensor of this document, waives the right to enforce, and agrees not to assert, Section 4d of CC-BY-SA to the fullest extent permitted by applicable law.
Red Hat, Red Hat Enterprise Linux, the Shadowman logo, JBoss, MetaMatrix, Fedora, the Infinity Logo, and RHCE are trademarks of Red Hat, Inc., registered in the United States and other countries.
For guidelines on the permitted uses of the Fedora trademarks, refer to [https://fedoraproject.org/wiki/Legal:Trademark\_guidelines](https://fedoraproject.org/wiki/Legal:Trademark_guidelines).
Linux® is the registered trademark of Linus Torvalds in the United States and other countries.
Java® is a registered trademark of Oracle and/or its affiliates.
XFS® is a trademark of Silicon Graphics International Corp. or its subsidiaries in the United States and/or other countries.
MySQL® is a registered trademark of MySQL AB in the United States, the European Union and other countries.
All other trademarks are the property of their respective owners.
Abstract
An overview of IEEE 802.11-based and other mobile networking technologies and their implementation in Fedora Linux.
----
# Preface {#Wireless_Guide-Preface}
## 1\. Document Conventions {#idp34174560}
This manual uses several conventions to highlight certain words and phrases and draw attention to specific pieces of information.
### 1\.1. Typographic Conventions {#idp34172656}
Four typographic conventions are used to call attention to specific words and phrases. These conventions, and the circumstances they apply to, are as follows.
`Mono-spaced Bold`
Used to highlight system input, including shell commands, file names and paths. Also used to highlight keys and key combinations. For example:
> To see the contents of the file `my_next_bestselling_novel` in your current working directory, enter the **cat my\_next\_bestselling\_novel** command at the shell prompt and press **Enter** to execute the command.
The above includes a file name, a shell command and a key, all presented in mono-spaced bold and all distinguishable thanks to context.
Key combinations can be distinguished from an individual key by the plus sign that connects each part of a key combination. For example:
> Press **Enter** to execute the command.
>
> Press **Ctrl**+**Alt**+**F2** to switch to a virtual terminal.
The first example highlights a particular key to press. The second example highlights a key combination: a set of three keys pressed simultaneously.
If source code is discussed, class names, methods, functions, variable names and returned values mentioned within a paragraph will be presented as above, in `mono-spaced bold`. For example:
> File-related classes include `filesystem` for file systems, `file` for files, and `dir` for directories. Each class has its own associated set of permissions.
Proportional Bold
This denotes words or phrases encountered on a system, including application names; dialog-box text; labeled buttons; check-box and radio-button labels; menu titles and submenu titles. For example:
> Choose System → Preferences → Mouse from the main menu bar to launch Mouse Preferences. In the Buttons tab, select the Left-handed mouse check box and click Close to switch the primary mouse button from the left to the right (making the mouse suitable for use in the left hand).
>
> To insert a special character into a gedit file, choose Applications → Accessories → Character Map from the main menu bar. Next, choose Search → Find… from the Character Map menu bar, type the name of the character in the Search field and click Next. The character you sought will be highlighted in the Character Table. Double-click this highlighted character to place it in the Text to copy field and then click the Copy button. Now switch back to your document and choose Edit → Paste from the gedit menu bar.
The above text includes application names; system-wide menu names and items; application-specific menu names; and buttons and text found within a GUI interface, all presented in proportional bold and all distinguishable by context.
**_`Mono-spaced Bold Italic`_** or _`Proportional Bold Italic`_
Whether mono-spaced bold or proportional bold, the addition of italics indicates replaceable or variable text. Italics denotes text you do not input literally or displayed text that changes depending on circumstance. For example:
> To connect to a remote machine using ssh, type **ssh _`username`_@_`domain.name`_** at a shell prompt. If the remote machine is `example.com` and your username on that machine is john, type **ssh john@example.com**.
>
> The **mount -o remount _`file-system`_** command remounts the named file system. For example, to remount the `/home` file system, the command is **mount -o remount /home**.
>
> To see the version of a currently installed package, use the **rpm -q _`package`_** command. It will return a result as follows: **_`package-version-release`_**.
Note the words in bold italics above: username, domain.name, file-system, package, version and release. Each word is a placeholder, either for text you enter when issuing a command or for text displayed by the system.
Aside from standard usage for presenting the title of a work, italics denotes the first use of a new and important term. For example:
> Publican is a _DocBook_ publishing system.
### 1\.2. Pull-quote Conventions {#idp81396944}
Terminal output and source code listings are set off visually from the surrounding text.
Output sent to a terminal is set in `mono-spaced roman` and presented thus:
books Desktop documentation drafts mss photos stuff svn
books_tests Desktop1 downloads images notes scripts svgs
Source-code listings are also set in `mono-spaced roman` but add syntax highlighting as follows:
package org.jboss.book.jca.ex1;
import javax.naming.InitialContext;
public class ExClient
{
public static void main(String args[])
throws Exception
{
InitialContext iniCtx = new InitialContext();
Object ref = iniCtx.lookup("EchoBean");
EchoHome home = (EchoHome) ref;
Echo echo = home.create();
System.out.println("Created Echo");
System.out.println("Echo.echo('Hello') = " + echo.echo("Hello"));
}
}
### 1\.3. Notes and Warnings {#idm4145040}
Finally, we use three visual styles to draw attention to information that might otherwise be overlooked.
### Note
Notes are tips, shortcuts or alternative approaches to the task at hand. Ignoring a note should have no negative consequences, but you might miss out on a trick that makes your life easier.
### Important
Important boxes detail things that are easily missed: configuration changes that only apply to the current session, or services that need restarting before an update will apply. Ignoring a box labeled “Important” will not cause data loss but may cause irritation and frustration.
### Warning
Warnings should not be ignored. Ignoring warnings will most likely cause data loss.
## 2\. We Need Feedback! {#We_Need_Feedback}
To provide feedback for this guide, contact the author or file a bug in . Please select the proper component for this guide.
# Chapter 1. Introduction {#chap-Wireless_Guide-Introduction}
Due to increased demand for convenient networking and more flexible access to both the Internet and company resources via more geographically widespread coverage areas, wireless networking use has dramatically increased in recent years. Mobile access to data services previously unavailable is now common. The sales and penetration of wireless access have resulted in a recent projection by [ABI Research](http://www.abiresearch.com/) that one billion Wi-Fi chipsets [will ship in the year 2011](http://www.abiresearch.com/press/1474-One+Billion+Wi-Fi+Chipsets+to+Ship+in+2011+Alone).
Not only has wireless data access achieved a great deal of market penetration in recent years, but the price of the related hardware has dropped dramatically, making it even more accessible. Wi-Fi seems to be everywhere; in laptops, desktops, PDAs, cell phones and routers, and there is such a large amount of wireless networks in many urban areas that complete overcrowding of the public radio spectrum in use can occur.
This guide provides a high-level overview of the past, present, and future of IEEE 802.11 wireless networking standards, concepts, hardware components, security concerns, and their relation to Fedora Documentation Linux. Although the specific wireless technology based on IEEE 802.11 is the primary focus of this guide, other mobile technologies and their relation to Fedora Documentation and Linux are also mentioned. Parts of this guide contain detailed information specific to Fedora Documentation and other Linux operating systems, however, many of the topics and concepts relate to all operating systems, vendors, and environments.
## 1\.1. Who should read this guide? {#sect-Wireless_Guide-Introduction-Who_Should_Read_This_Guide}
You should read this guide if you are looking for an overview of wireless technologies and how they are implemented in Fedora Documentation or other Linux operating systems. Other readers will gain general information on how wireless works, the hardware involved, and other topics such as standards and security.
## 1\.2. What is a Wireless LAN? {#sect-Wireless_Guide-Introduction-What_Is_A_Wireless_LAN}
A wireless LAN (referred to as WLAN in this guide) is a wireless local area network that allows computers or other devices to communicate via radio frequency (RF) technology. It affords the user mobility to move around and stay connected to the network without using physical cables such as in a traditional Ethernet system.
The IEEE (Institute of Electrical and Electronics Engineers) is a non-profit, global organization which implemented and continually develops a set of standards for wireless communication. This family of standards is known as IEEE 802.11 and consists of the actual standards and protocols defining how computers communicate via a WLAN. Standards are discussed in more detail later. Although wireless networks are commonly referred to as Wi-Fi, this is only a marketing term chosen by the Wireless Ethernet Compatibility Alliance (now known as the Wi-Fi Alliance). When referring to Wi-Fi, the underlying technology is typically a WLAN or device operating within the standards of the IEEE within the 802.11 family.
## 1\.3. History of Wireless LANs {#sect-Wireless_Guide-Introduction-History_Of_Wireless_LANs}
Although wireless communications are nothing new, Norman Abramson, as a professor at the University of Hawaii, led the development of what is acknowledged as the first computer network using wireless communications, in 1970. Known as ALOHAnet, it enabled wireless communication between a small set of islands and pioneered today's wireless networks, as well as lending concepts to Ethernet development. More information can be found at the [ALOHAnet page at Wikipedia](http://en.wikipedia.org/wiki/ALOHAnet).
Wireless LANs under the IEEE 802.11 specifications did not become widely used until the introduction of the 802.11b standard in 1999. With more available devices, higher data rates and cheaper hardware, wireless access has now become widespread. The IEEE recently ratified 802.11n. This amendment addresses several performance and security issues and is covered later in this guide.
## 1\.4. Benefits of Wireless LANs {#sect-Wireless_Guide-Introduction-Benefits_Of_Wireless_LANs}
Wireless LANs offer mobility and convenience, allowing connections from nearly any location within the coverage area. Also, the installation of a WLAN is in many cases easier than a wired network, because of the lack of a need to install actual cables in wall fittings and data centers. A properly designed WLAN can be installed relatively quickly and can also be transported to a new location more easily.
## 1\.5. Considerations {#sect-Wireless_Guide-Introduction-Considerations}
Wireless LANs introduce several deployment and usability factors that should be considered. An Ethernet system generally has its electrical current traveling neatly _bounded_ inside a wire. As the elements that make up a WLAN depend heavily on communication via RF through the air, the fact that a WLAN is an _unbounded_ medium introduces many factors. The performance and reliability of a wireless LAN is dependent on atmospheric conditions, physical obstructions, other WLANs, RF interference, RF propagation characteristics and the basic laws of physics. The use of a WLAN is therefore generally not as reliable or as fast as a wired system, however recent developments in the communications standards that actually use some of these atmospheric anomalies _to their advantage_ have alleviated the problems to a degree. The reliability and performance of a WLAN depends on correct deployment which has all of these conditions taken into account.
Security concerns are also a factor. A WLAN spreads to coverage areas outside that of a controlled wired system, and is much less predictable. For instance, many wireless networks used in the home can be detected from the street outside. A business may inadvertently make their network available to a competitor in an adjacent building. Hence, several security mechanisms exist for IEEE 802.11 technologies. These are covered later.
## 1\.6. Linux Wireless Support {#sect-Wireless_Guide-Introduction-Linux_Support}
Linux supports many wireless devices. Client adapters are typically available in PCI, PCI Express, Mini-PCI, USB, ExpressCard, Cardbus and PCMCIA form. Many of these adapters are supported by default in the Linux kernel via open source drivers available in Fedora Documentation. Your device is most likely supported; however, to find an overview of devices and drivers currently supported in Linux and Fedora Documentation, refer to the following URL at Linuxwireless.org: . Specific information on configuring and activating a WLAN in Fedora Documentation is discussed later.
## 1\.7. Disclaimer {#sect-Wireless_Guide-Introduction-Disclaimer}
Any products pictured or otherwise referred to in this guide are provided for reference purposes only, and no endorsement or guarantees of supportability are intended.
# Chapter 2. Standards {#chap-Wireless_Guide-Standards}
The WLAN and radio communications industries are regulated by several different organizations. These bodies develop and implement standards and regulations that include limits on factors such as power output, antenna height, hardware compatibility, frequency allocation and usage and general spectrum management. This chapter gives an overview of these bodies and their responsibilities. Note that local regulations may exist in your area that may differ from those listed here. When deploying a WLAN, the requirements of your local regulatory domain authority should always be adhered to.
## 2\.1. Standards and Regulatory Bodies {#sect-Wireless_Guide-Standards-Standards_and_Regulatory_Bodies}
* _ITU-R_ - The Radio communications sector of the International Telecommunications Union.
The ITU-R manages worldwide spectrum management and satellite orbits and keeps the interference-free operation of communications as its primary objective. More information can be found at the ITU-R homepage: .
* _Wi-Fi Alliance_ - A non-profit, worldwide association consisting of more than 300 member companies from more than 20 countries.
The Wi-Fi Alliance, previously known as the _Wireless Ethernet Compatibility Alliance_ (WECA), ensures that the actual WLAN products maintain a level of interoperability. This is done by performing a series of certification testing on products. Details about Wi-Fi Alliance certifications and programs can be found at [http://www.wi-fi.org/certified\_products.php](http://www.wi-fi.org/certified_products.php).
* _IEEE_ - The Institute of Electrical and Electronics Engineers is a global, non-profit organization, with more than 375,000 members from more than 160 countries.
The IEEE is a professional group working towards the advancement of technology, to "foster technological innovation and excellence for the benefit of humanity." In terms of this guide, the IEEE 802.11 _working group_ within the IEEE 802 _project_ is the main focus, although the IEEE has many other projects and standards. The 802.11 working group sets the standards for Wireless LANs. More information about the IEEE and the 802.11 working group can be found here: .
## 2\.2. Standards Defined {#sect-Wireless_Guide-Standards-Standards_Defined}
* 802.11 - The first 802.11 standard (often referred to as 802.11 Prime), initially published in 1997 by the IEEE. The 802.11 standard only supports speeds up to 2 Mbps (megabits per second) in the unlicensed 2.4 GHz ISM (Industrial, Scientific and Medical) frequency band. Equipment that conforms to this standard is considered legacy and is no longer being manufactured. It is, however, considered the baseline for IEEE 802.11 WLANs and defined many of the communication concepts still in use today under the newest standards. The most recent revision of the 802.11 Prime standard was published as IEEE Std. 802.11-2007.
* 802.11b - Created in 1999 as an expansion to the original standard, 802.11b supports a theoretical maximum data rate of 11 Mbps. Published as IEEE Std. 802.11b-1999, the 802.11b standard defines use of the same 2.4 GHz band as defined in 802.11 Prime, and the main focus behind the development of 802.11b was to increase data rates. This standard sparked a huge increase of WLAN adoption, and is considered as one of the main catalysts for the popularity of Wi-Fi today.
* 802.11a - The 802.11a standard, also created in 1999 as another extension to the 802.11 Prime standard, defines a different modulation technique for communications and operates at a higher frequency than 802.11 Prime or 802.11b. Published as IEEE Std. 802.11a-1999, the 802.11a standard operates in the 5 GHz UNII (Unlicensed National Information Infrastructure) band. Equipment that operates under this standard is not compatible with 802.11b equipment, as they use different frequencies and communication techniques. The higher frequency in use by 802.11a typically shortens the communication range and its ability to penetrate through obstructions, however it has the advantages of higher data rates (up to 54 Mbps) and also does not interfere with the comparatively larger amounts of 2.4 GHz equipment on the market, as the 5 GHz band is much less crowded. Equipment conforming to this 802.11a standard is considered more obscure however can still be found in use today.
* 802.11g - Published in 2003 as IEEE Std. 802.11g-2003, this standard is backward compatible with 802.11b, and higher data rates up to 54 Mbps are possible. As it uses the same 2.4 GHz band, devices conforming to 802.11g are susceptible to the same interference and can suffer from overcrowding in the frequency spectrum. Devices operating under the 802.11g standard can be configured to communicate directly with 802.11b devices in what is known as _mixed mode_.
* 802.11n - This recent amendment (ratified in September 2009 as IEEE Std. 802.11n-2009), introduces many features such as much higher communication ranges and data rates (up to 100 Mbps or more of typical throughput) and a new technology known as _multiple-input and multiple-output_, or _MIMO_. This technology uses multiple antennas and multiple wireless connections to achieve these rates, and is much more resistant to interference without requiring a significant increase in power used to transmit the data. MIMO also presents the ability to use multipath (an atmospheric anomaly where a single signal takes different paths and arrives at the receiver at slightly different times, causing a negative factor on performance when using older standards) to its _advantage_. Many products existed on the market before the standard was fully ratified; often known as "Pre N" or "Draft N", these devices are not guaranteed to fully operate under, or be compatible with, specifications of the completed standard. These draft devices are also not guaranteed to be compatible across differing vendors. At the time of writing, there are concerns that 802.11n devices may greatly interfere with the operation of nearby 802.11b and 802.11g devices and networks; however, there is little doubt that 802.11n represents the next generation of wireless equipment and provides many new features which overcome the problems and limitations of older equipment.
# Chapter 3. Hardware And Communication {#chap-Wireless_Guide-Hardware_And_Communication}
This chapter gives an overview of some of the hardware available for wireless LANs, the role they play, and further details about their operation.
## 3\.1. Components of a Wireless LAN {#sect-Wireless_Guide-Hardware_And_Communication-Hardware_Components}
In order for successful communications to take place in a WLAN, certain hardware is needed. The hardware can be generally categorized as being a _transmitter_, _antenna_, a _receiver_, or a combination of these.
* Transmitter - A transmitter, as an _active_ device, initiates an electromagnetic signal, beginning the wireless communication process. Usually, a transmitter sends this signal to an antenna after the data has been received by the originating station (ie. computer).
* Antenna - An antenna acts as an intermediary device in a WLAN. Specifically, it can propagate a signal after it has been received from a transmitter as an AC signal and then _passively_ creates the waveform for it to travel through the air. The actual shape and path that the electromagnetic waves take depends on the type of antenna, its intended purpose and its desired coverage area. An antenna also performs the reverse of this operation by receiving signals and passing them along to a receiver.
* Receiver - A receiver completes the electromagnetic communications in a WLAN by taking a signal (usually from an antenna) and passing it to the computer in a way it can understand (such as binary 1s and 0s).
## 3\.2. Types of Cards {#sect-Wireless_Guide-Hardware_And_Communication-Types_Of_Cards}
Wireless client adapters allow desktop and mobile computers to join and communicate on a WLAN. Adapters are typically available in PCI, PCI Express, Mini-PCI, USB, ExpressCard, Cardbus and PCMCIA form. This chapter provides details and sample images of three of the most commonly used adapter types: USB, PCMCIA/Cardbus, and PCI.
* USB - These adapters are particularly useful for mobile users, allowing quick access for any machine with a USB port. They can be quickly set up and transferred between machines. The antenna is built into an integrated unit and the adapters are approximately the same size as a USB flash memory adapter:
![][1]
* PCMCIA/Cardbus - Designed for laptops, these adapters can have an integrated antenna; however, some models provide support for connecting an external antenna to modify signal requirements, or increase signal strength capabilities:
![][2]
* PCI - These adapters are available for desktop machines with a standard PCI slot. They typically have an external antenna attached, and provide support for connecting antennas for specific signal requirements, or for increased signal strength:
![][3]
## 3\.3. Types of Antennas {#sect-Wireless_Guide-Hardware_And_Communication-Types_Of_Antennas}
There are three main antenna categories available for wireless LANs: _Omnidirectional_, _Semidirectional_ and _Highly directional_.
* Omnidirectional - _Omnidirectional antennas_ are designed to radiate a signal in all directions. Although it is impossible under the basic laws of physics for an antenna to perfectly radiate a signal in all directions at equal strength, an antenna of this type is an attempt to provide general coverage in all directions. This is the most common type found for client adapters and access points, as in these situations, good coverage in a general spherical area around the antenna is desirable.
* Semidirectional - _Semidirectional antennas_ are designed to provide specific, directed signal coverage over large areas. An example of a semidirectional antenna is a _Yagi antenna_.
* Highly-directional - _Highly directional_ antennas are used for point-to-point links; for example, between two buildings. They radiate a very narrow beam over a long distance, and are often used for dedicated links.
## 3\.4. Connection Modes {#sect-Wireless_Guide-Hardware_And_Communication-Connection_Modes}
Clients typically connect in one of two modes: _adhoc_ or _infrastructure_. Adhoc mode involves stations communicating directly with each other without the need for a central point to manage communications. This is also known as peer-to-peer mode. The default and most common mode is known as Infrastructure mode. Infrastructure mode uses a Wireless Access Point (WAP), which is a central device that manages transmissions between clients. Refer to the following for more details on Access Points:
![][4]
From [Wikipedia.org](http://en.wikipedia.org/wiki/Wireless_access_point): _In computer networking, a wireless access point (WAP) is a device that allows wireless communication devices to connect to a wireless network using Wi-Fi, Bluetooth or related standards. The WAP usually connects to a wired network, and can relay data between the wireless devices (such as computers or printers) and wired devices on the network._
Access points commonly found in home environments provide different features from those found in business or corporate settings. Consumer-level WAPs are often integrated into broadband gateways, and multiple functions can be served from a single device. These functions typically include a switch for wired access, routing functionality, a broadband modem, and a network firewall. Usually an omnidirectional antenna is used, or multiple antennas, a scheme known as _antenna diversity_. WAPs often have a built-in web interface for their configuration which can be accessed by a web browser.
## 3\.5. Channels {#sect-Wireless_Guide-Hardware_And_Communication-Channels}
802.11b and 802.11g (the most common) devices are usually referred to as operating at 2.4GHz (gigahertz). In fact, the signals for these devices can operate on one of eleven (11) distinct sections (or _channels_) within the 2.4GHz band. Some regions allow operation in thirteen (13) channels, however the U.S FCC defines eleven (11) channels. What this means is that you can configure your wireless adapter and access point to operate on slightly different frequencies than other networks in your area, to avoid interference and congestion. Each of these channels cover a frequency range of 22MHz; in other words, a device operating in each of these channels can operate at up to 11MHz on either side of the "center" frequencies listed in the following table.
Table 3.1. IEE 802.11b and 802.11g Channel Frequencies
|Channel number|Center Frequency (GHz)|
|-|
|1|2\.412|
|2|2\.417|
|3|2\.422|
|4|2\.427|
|5|2\.432|
|6|2\.437|
|7|2\.442|
|8|2\.447|
|9|2\.452|
|10|2\.457|
|11|2\.452|
If we study the frequencies used in these eleven (11) channels, and take into account that each channel can operate in 11MHz ranges either side (+/-) of its center frequency, the channels 1, 6 and 11 never overlap with each other. Channels that are separated by at least five other channels (or at least 2.5MHz) do not overlap. You can use this important piece of knowledge when you have wireless congestion issues; for example, in an apartment building with three wireless networks near each other, you can avoid congestion by getting the networks to run on channels that are sufficiently separated from each other, such as 1, 6 and 11. A heavily congested area may not provide the freedom to do this, however it is useful to remember.
## 3\.6. RF Behavior {#sect-Wireless_Guide-Hardware_And_Communication-RF_Behavior}
This section describes some of the natural behaviors of wireless or radio frequency (RF) signals. These behaviors can cause a loss of signal or other negative effects on your reception, speed, and general network performance. Knowing what they are, why they happen, and what environmental situations can cause them is helpful when you are designing a network layout or troubleshooting your connection.
### 3\.6.1. Reflection {#sect-Wireless_Guide-Hardware_And_Communication-RF_Behavior-Reflection}
Reflection occurs when a signal bounces off an obstacle. This can happen when hard surfaces such as walls or desks are in the wireless coverage area.
Figure 3.1. Reflection
![Reflection][5]
### 3\.6.2. Absorption {#sect-Wireless_Guide-Hardware_And_Communication-RF_Behavior-Absorption}
Absorption occurs when a signal is completely or partially absorbed when it travels into or through a medium, such as a wall. The level of absorption depends on the medium - for instance, brick or concrete walls will absorb signals more than a plaster wall. The result of absorption is lowered signal power or amplitude.
Figure 3.2. Absorption
![Absorption][6]
### 3\.6.3. Refraction {#sect-Wireless_Guide-Communication-RF_Behavior-Refraction}
Not to be confused with reflection, refraction occurs when a wireless signal is bent as it passes through an object, such as glass or water. As a way to understand refraction, consider what you see when you look at your reflection in a swimming pool. Your reflection may appear stretched or compressed due to refracted light signals. This happens to wireless signals in a similar way and can cause signal degradation.
Figure 3.3. Refraction
![Refraction][7]
### 3\.6.4. Scattering {#sect-Wireless_Guide-Hardware_And_Communication-RF_Behavior-Scattering}
Scattering occurs when a signal hits an object that has several different edges or angles and bounces off it into multiple directions. Objects that can cause scattering may include a disco ball, a tree or other foliage, or window blinds.
Figure 3.4. Scattering
![Scattering][8]
### 3\.6.5. Diffraction {#sect-Wireless_Guide-Hardware_And_Communication-RF_Behavior-Diffraction}
Diffraction is when a signal bends around an object and changes the path and direction of the signal. It often occurs when a signal hits small or sharp-edged objects.
Figure 3.5. Diffraction
![Diffraction][9]
# Chapter 4. Security {#chap-Wireless_Guide-Security}
This chapter covers the security concerns and features of IEEE 802.11 WLANs, including the unique challenges presented by using a wireless access medium; the encryption mechanisms; wireless security myths; best practices when configuring and using a WLAN; and several resources for further reading.
## 4\.1. Unique Challenges {#sect-Wireless_Guide-Security-Unique_Challenges}
As described in [Section 1.5, “Considerations”](#sect-Wireless_Guide-Introduction-Considerations "1.5. Considerations"), a WLAN uses an _unbounded_ medium. This introduces several challenges to effective security. The standard security model known as CIA, or _Confidentiality_, _Integrity_ and _Availability_ can be applied to the unique elements of wireless data transmission. This three-tiered model is a general framework for assessing risks to sensitive information and establishing security policy. The following describes the CIA model as it applies to WLANs:
* _Confidentiality_ - This part of the CIA model states that sensitive information must be available only to a set of pre-defined individuals, and unauthorized transmission and usage of information should be restricted. This element of the CIA model is worthy of attention when using a WLAN simply because the radiated signal can easily travel beyond the traditional borders of the network, through walls and other fixtures, and can become available to unauthorized users much more easily. This is especially true when using no encryption, weak encryption or if the network has other design flaws.
* _Integrity_ - This part of the model states that information should not be altered in ways that render it incomplete or incorrect, and unauthorized users should be restricted from the ability to modify or destroy sensitive information. Much like the _confidentiality_ element, affording unauthorized users a greater opportunity to intrude on the network can compromise the level of integrity of data. Data integrity checks are also integrated into the communication and encryption mechanisms used.
* _Availability_ - This part of the CIA model states that information should be accessible to authorized users any time that it is needed. Availability is a warranty that information can be obtained with an agreed-upon frequency and timeliness. This element applies to all networking equipment - that a network service is available when needed, and it is no different for wireless equipment. Sufficient knowledge of the hardware and how a wireless LAN operates at a low level is important in order to provide reliable, timely network capabilities, especially in a complicated environment and where reliability is crucial.
## 4\.2. Wired Equivalent Privacy (WEP) {#sect-Wireless_Guide-Security-WEP}
From [Wikipedia.org](http://en.wikipedia.org/wiki/Wired_Equivalent_Privacy): _Wired Equivalent Privacy (WEP) is a deprecated algorithm to secure IEEE 802.11 wireless networks. Wireless networks broadcast messages using radio and are thus more susceptible to eavesdropping than wired networks. When introduced in 1997,[1] WEP was intended to provide confidentiality comparable to that of a traditional wired network. Beginning in 2001, several serious weaknesses were identified by cryptanalysts with the result that today a WEP connection can be cracked with readily available software within minutes. _
The WEP protocol does not provide any support for key management mechanisms, and in most environments the same key is shared by many clients. In an environment where keys are not changed regularly, this can compound the problem of using WEP as a flawed protocol. WEP uses keys that must be shared by both the client and the access point as all stations that want to send or receive must know the key. These keys are commonly referred to as being 64 or 128 bits long. In fact, the actual keys are either 40 or 104 bits long, and the remaining 24 bits in either configuration represent what is called the Initialization Vector (IV). This IV is used in combination with the key to encrypt the actual data. The implementation of the mechanisms used to combine the IV and the secret key in the WEP protocol has several flaws which can make the recovery of the keys by a malicious user simple:
* Short IV length - The 24 bits reserved for the IV do not allow for sufficient cryptographic complexity.
* IV is sent in cleartext - The IV is sent in cleartext (unencrypted) over the network. Once sufficient IVs are acquired in an attack, freely available tools exist to quickly analyze the IVs and extract the WEP key.
* Weak IVs - Some of the generated IVs do not provide enough randomness and these can be used to extract the key.
* The IV is part of the encryption key - As an attacker can see 24 bits of every key in cleartext without any effort, it becomes a basic mathematical process to deduce the rest of the key.
WEP is now considered an outdated algorithm and is not recommended for use; however, it should be noted that many of its shortcomings arise from it simply being a poor _implementation_ of its underlying mechanisms, and does not necessarily indicate that the actual mechanisms are inherently flawed.
## 4\.3. Wi-Fi Protected Access (WPA) {#sect-Wireless_Guide-Security-WPA}
WPA (Wi-Fi Protected Access) is a certification program created by the Wi-Fi Alliance to address some of the security problems of WEP, namely the weaknesses in its IV headers, as mentioned earlier. WPA2, the newest encryption technology for wireless LANS, is the recommended method for securing wireless networks, although older hardware may not support WPA or WPA2. These technologies are often referred to as WPA-PSK and WPA2-PSK for most home users as they employ the use of a _Pre-Shared Key_ so that dedicated authentication mechanisms, as might be used in a business or corporate environment, are not required.
WPA-PSK works as an improvement on WEP by providing the following mechanisms:
* IV Length - WPA includes a 48 bit Initialization Vector, increasing the cryptographic complexity of encrypted data.
* Dedicated authentication methods - WPA introduced the ability to use 802.1x servers. These operate as a dedicated authentication mechanisms for users, ie. RADIUS.
WPA2 goes further by supporting the Cipher Block Chaining Message Authentication Code Protocol (CCMP) however it requires greater processing power as it uses the Advanced Encryption Standard (AES) algorithm.
With the growth of wireless networks worldwide, enabling secure communications is of utmost importance. Using WPA (preferably WPA2 with the AES algorithm) is the recommended way to encrypt your wireless network, and although some brute force attacks on WPA using the TKIP algorithm are becoming available, using a randomized, strong key, following a layered approach to security and employing secondary techniques to securing your wireless LAN beyond relying solely on encryption will alleviate these risks to a large degree.
## 4\.4. Wireless Security Myths {#sect-Wireless_Guide-Security-Myths}
* "WEP is sufficient for encryption." - WEP (Wired Equivalent Privacy) is a legacy encryption technique and is not recommended for use. WEP is a poorly implemented encryption solution for securing wireless networks, and while it may deter the most novice of attackers, simple tools exist today to remotely acquire the encryption key and gain access to all transmissions within minutes.
* "MAC address filtering stops attackers." - MAC (Media Access Control) addresses are identifiers attached to every wireless network adapter and AP, and are designed to be unique to each client adapter in the world and every AP. Many believe that entering these MAC addresses into their wireless configuration to only allow access from the specified addresses affords them a high level of security. While this also may deter the most novice of attackers, the allowed MAC addresses can easily be discovered by an attacker and then "spoofed", impersonating a legitimate user and fooling the AP into thinking the attacker is an allowed user. This is one of the simplest wireless attacks; also, maintaining a list of allowed MAC addresses is a cumbersome approach for large environments.
* "Disabling ESSID broadcasts stops attackers." - Many access points offer the ability to hide, disable or cloak the broadcasting of the network's ESSID (Extended Service Set IDentifier), similar to a network name. Not only are there freely available tools which expose any hidden ESSID by sending special probes to the access point, but disabling ESSID broadcasts can actually open a security vulnerability: If an attacker were to discover the hidden ESSID, he could set up his own access point with the same ESSID, effectively creating a "honeypot" AP, to which clients would attempt to associate with, exposing further network details.
* "WPA alone is sufficient for security." - Although WPA and WPA2 represent the cutting edge in wireless encryption, relying on either of them alone is never a good idea. Weak WPA keys can be recovered using dictionary attacks, and your wireless network can still be open to a host of other vulnerabilities.
Remember that computer security is a _process_, not a product. Wireless networks are no different, regardless of their size - there is no "silver bullet" security solution, despite what some vendors would have you believe.
While implementing some of the above methods are considered as mostly ineffective and are treated here as myths, using them as a supplement might offer some sort of peace of mind, depending on your environment. The important thing to remember is that problems arise when a single solution is relied upon, and the _layered_ approach to security methodology is abandoned.
## 4\.5. Best Practices {#sect-Wireless_Guide-Security-Best_Practices}
* _Change passwords on routers/AP_ - Wireless routers and access points ship with a default password (such as "admin", or "password") for their configuration interface. Attackers have access to the default usernames and passwords for most models on the market today. Change this default password to a complicated one so that an attacker can not gain access to the configuration pages and change settings, simply by knowing the default password of your particular model.
* _Change the default SSID_ - The SSID represents the network name. Attackers also know the default SSID of most wireless devices, and leaving the SSID at the default value reveals information about your network and could give an attacker the opportunity to perform exploits on the device, or otherwise use the knowledge of the model/make of the device to their advantage. It is also a good idea to change the SSID on a regular basis.
* _Use WPA or WPA2_ - As described in [Section 4.2, “Wired Equivalent Privacy (WEP)”](#sect-Wireless_Guide-Security-WEP "4.2. Wired Equivalent Privacy (WEP)"), WEP is considered a poor solution for wireless encryption. Using WPA or WPA2 with a strong, complicated key using the AES algorithm is recommended.
* _Change keys regularly_ - Keys should be changed regularly. Re-generate your encryption key from within the configuration interface of the access point if possible, or use online generators like the one available here: [http://www.speedguide.net/wlan\_key.php](http://www.speedguide.net/wlan_key.php)
* _Disable DHCP_ - Many routers and access points include a DHCP (Dynamic Host Configuration Protocol) server, which distributes IP addresses to wireless stations - an IP address is essential for a computer to communicate on the Internet. If your router or access point supports it, consider disabling the internal DHCP server and manually assigning IP addresses to allowed clients. This may deter some attackers who might not be able to otherwise discover the IP address range or types in use.
* _Enable the router's firewall_ - As with any connection to the Internet, a firewall will help filter and block unwanted connections, and you should enable it if available.
* _Client-side security_ - Continue to follow good system security practices; use updated anti-virus and anti-spyware/malware software, use firewalls, disable unnecessary services, and install the latest patches and updates from your operating system vendor.
Some of the recommended practices when configuring a wireless network may not stop an experienced attacker on their own, however using several security methods as part of a _layered_ approach will help maintain the security of your network and protect your data. Again, security is a _process_, not a single product.
# Chapter 5. Fedora And Wireless {#chap-Wireless_Guide-Fedora_And_Wireless}
This chapter covers details specific to Fedora Documentation and the support for wireless hardware in the Linux kernel. Also included are instructions showing how to use the graphical and command-line interface (CLI) utilities when configuring a simple wireless connection.
## 5\.1. Hardware {#sect-Wireless_Guide-Fedora_And_Wireless-Hardware}
Before purchasing wireless hardware for Fedora Documentation it is a good idea to do some research first to make sure support for the hardware exists. The make and model of a particular client adapter may not be the most important factor when deciding on hardware; what is important in terms of Linux is which underlying _chipset_ is used, as wireless hardware is rarely advertised based on its chipset.
The chipset is what the Linux driver usually recognises, and although the overall features are important (for instance 802.11g or 802.11n support, power output levels), the brand name is not always important to the Fedora Documentation infrastructure. For instance, a wireless card branded as a Netgear product might actually use an Atheros chipset for its internal mechanisms.
## 5\.2. Drivers, Chipsets, Devices {#sect-Wireless_Guide-Fedora_And_Wireless-Current_Status-Drivers_and_Chipsets}
Refer to for an updated list of available Linux drivers. Click on each driver to find lists of supported devices if available.
## 5\.3. Using NetworkManager {#sect-Wireless_Guide-Fedora_And_Wireless-Network_Manager}
This section demonstrates setting up a wireless connection in Fedora Documentation using NetworkManager. You can configure a wired or wireless connection with NetworkManager, and roaming between different connections is possible, as the service can choose the best available connection. NetworkManager will only work once the appropriate drivers for the underlying hardware are installed and configured properly. This section provides screenshots for configuring a simple wireless connection via the graphical interface provided by Fedora Documentation. This is an example only and demonstrates how simple wireless connections are configured in Fedora Documentation using NetworkManager.
Click on the NetworkManager applet icon in the Notification Area. Clicking on the Network Settings menu entry opens the Network window, from where you can view some basic network configuration information and initiate configuration tasks. The applet has multiple states that serve as visual indicators for the type of connection you are currently using.
Figure 5.1. NetworkManager applet states
![NetworkManager applet states][10]
[[D](ld-mediaobj-Network_Configuration-NM-AppletStates_Gnome3.html)]
If you do not see the NetworkManager applet in the GNOME panel, and assuming that the NetworkManager package is installed on your system, you can start the applet by running the following command as a normal user (not root):
~]$ **nm-applet &**
After running this command, the applet appears in your Notification Area.
## 5\.4. Connecting to a Network {#sec-Connecting_to_a_Network}
When you click on the applet icon, you are presented with:
* a list of categorized networks you are currently connected to (such as Wired and Wireless); and,
* a list of all available networks that NetworkManager has detected.
If you are connected to a network, its name is presented first under its network type, such as Wired or Wireless with a bulletpoint to the left. When many networks are available, such as wireless access points, the More networks expandable menu entry appears.
Figure 5.2. The NetworkManager applet's drop-down menu, showing all available and connected-to networks
![The NetworkManager applet's drop-down menu, showing all available and connected-to networks][11]
[[D](ld-mediaobj-Network_Configuration_NM_CableUnpluged_WiFi_List_Gnome3.png.html)]
## 5\.5. Configuring New and Editing Existing Connections {#sec-Configuring_New_and_Editing_Existing_Connections}
Click on the NetworkManager applet to open the drop-down menu, this is the main point of entry for interacting with NetworkManager to configure connections.
If the system has detected a wired connection, the Wired menu entry will appear. If the system has detected a wireless card, then you will also see a Wireless menu entry. Clicking the Wired and Wireless labels or the associated ON OFF indicator to the right will toggle the status between ON and OFF.
Finally, clicking on the Network Settings menu entry opens the Network window, from where you can view some basic network configuration information and initiate configuration tasks.
Figure 5.3. Configure networks using the Network window
![Configure networks using the Network window][12]
[[D](ld-mediaobj-Network_Configuration-NM-Network_Wireless_Gnome3.html)]
## 5\.6. Connecting to a Network Automatically {#sec-Connecting_to_a_Network_Automatically}
For any connection type you add or configure, you can choose whether you want NetworkManager to try to connect to that network automatically when it is available.
Procedure 5.1. Configuring NetworkManager to Connect to a Network Automatically When Detected
1. Click on the NetworkManager applet icon in the Notification Area.
1. Click Network Settings at the bottom of the list.
The Network window appears.
1. Select the type of connection (Wireless) from the left-hand-side menu.
1. Click the Configure button. The editing a wireless connection window appears.
Figure 5.4. Editing the newly-created Wireless connection
![Editing the newly-created Wireless connection][13]
[[D](ld-mediaobj-Network_Configuration-NM-Editing_Wireless_Connection_Gnome3.html)]
Configuring the Connection Name, Auto-Connect Behavior, and Availability Settings. Three settings in the Editing dialog are common to all connection types:
* Connection name — Enter a descriptive name for your network connection. This name will be used to list this connection in the Network window as well as in the NetworkManager applet's drop-down menu. By default, wireless connections are named the same as the _SSID_ of the wireless access point. You can rename the wireless connection without affecting its ability to connect, as in the example above, but it is recommended to retain the SSID name.
* Connect automatically — Check this box if you want NetworkManager to auto-connect to this connection when it is available. Refer to [Section 5.6, “Connecting to a Network Automatically”](#sec-Connecting_to_a_Network_Automatically "5.6. Connecting to a Network Automatically") for more information.
* Available to all users — Check this box to create a connection available to all users on the system. Changing this setting may require root privileges.
Configuring the Wireless Tab. Settings in the wireless tab are explained below:
SSID
: All access points have a _Service Set identifier_ to identify them. However, an access point may be configured not to broadcast its SSID, in which case it is _hidden_, and will not show up in NetworkManager's list of Available networks. You can still connect to a wireless access point that is hiding its SSID as long as you know its SSID (and authentication secrets).
Mode
: Infrastructure — Set Mode to Infrastructure if you are connecting to a dedicated wireless access point or one built into a network device such as a router or a switch.
Ad-hoc — Set Mode to Ad-hoc if you are creating a peer-to-peer network for two or more mobile devices to communicate directly with each other. If you use Ad-hoc mode, referred to as _Independent Basic Service Set_ (IBSS) in the 802.11 standard, you must ensure that the same SSID is set for all participating wireless devices, and that they are all communicating over the same channel.
BSSID
: The Basic Service Set Identifier (BSSID) is the MAC address of the specific wireless access point you are connecting to when in Infrastructure mode. This field is blank by default, and you are able to connect to a wireless access point by SSID without having to specify its BSSID. If the BSSID is specified, it will force the system to associate to a specific access point only.
For ad-hoc networks, the BSSID is generated randomly by the mac80211 subsystem when the ad-hoc network is created. It is not displayed by NetworkManager
MAC address
: Like an Ethernet Network Interface Card (NIC), a wireless adapter has a unique MAC address (Media Access Control; also known as a _hardware address_) that identifies it to the system. Running the **ip addr** command will show the MAC address associated with each interface. For example, in the following **ip addr** output, the MAC address for the `wlan0` interface (which is `00:1c:bf:02:f8:70`) immediately follows the `link/ether` keyword:
~]# **ip addr**
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 16436 qdisc noqueue state UNKNOWN
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UNKNOWN qlen 1000
link/ether 52:54:00:26:9e:f1 brd ff:ff:ff:ff:ff:ff
inet 192.168.122.251/24 brd 192.168.122.255 scope global eth0
inet6 fe80::5054:ff:fe26:9ef1/64 scope link
valid_lft forever preferred_lft forever
3: wlan0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP qlen 1000
link/ether _00:1c:bf:02:f8:70_ brd ff:ff:ff:ff:ff:ff
inet 10.200.130.67/24 brd 10.200.130.255 scope global wlan0
inet6 fe80::21c:bfff:fe02:f870/64 scope link
valid_lft forever preferred_lft forever
A single system could have one or more wireless network adapters connected to it. The MAC address field therefore allows you to associate a specific wireless adapter with a specific connection (or connections). As mentioned, you can determine the MAC address using the **ip addr** command, and then copy and paste that value into the MAC address text-entry field.
MTU
: The MTU (Maximum Transmission Unit) value represents the size in bytes of the largest packet that the connection will use to transmit. If set to a non-zero number, only packets of the specified size or smaller will be transmitted. Larger packets are broken up into multiple Ethernet frames. It is recommended to leave this setting on automatic.
Once you have finished editing the wireless connection, click the Save button and NetworkManager will immediately save your customized configuration. Given a correct configuration, you can successfully connect to your the modified connection by selecting it from the NetworkManager Notification Area applet.
Select Connect automatically to cause NetworkManager to auto-connect to the connection whenever NetworkManager detects that it is available. Unselect the checkbox if you do not want NetworkManager to connect automatically. If the box is unchecked, you will have to select that connection manually in the NetworkManager applet's initial menu to cause it to connect.
# Chapter 6. Other Wireless Technologies {#chap-Wireless_Guide-Other_Wireless}
IEEE 802.11 is not the only available mobile data access method. Many of the following mobile technologies are popular for Internet access from cell phones and other mobile devices, offering connectivity within the cell phone coverage areas. With the introduction of video calls and more bandwidth-intensive applications, higher speeds and more capability is in high demand for mobile devices.
## 6\.1. CDMA {#sect-Wireless_Guide-Other_Wireless-CDMA}
Code Division Multiple Access is a channel access method used by several radio technologies for cellular access. Originally a military technology, used as a way to transmit over several different frequencies instead of one single frequency, CDMA is the platform on which modern 3G services are built. CDMA uses spread-spectrum to communicate, using very low power levels, which makes it less likely for CDMA to cause interference with other systems.
## 6\.2. GPRS {#sect-Wireless_Guide-Other_Wireless-GPRS}
GPRS (General Packet Radio Service) is a mobile data service, available for both 2G and 3G cellular systems. Typical data rates are 56-114 kbit/s.
Linux provides support for several GPRS devices and connection methods (Serial, USB, Bluetooth). Refer to the following URL for a detailed guide on using GPRS with Linux: .
## 6\.3. DECT {#sect-Wireless_Guide-Other_Wireless-DECT}
Digital Enhanced Cordless Telecommunications is a standard for cordless telephones. Features of a DECT system include extended battery life, multiple handsets that can make internal calls, extended range, and improved operation and call clarity in congested environments. More information about DECT can be found at the following URL: [http://en.wikipedia.org/wiki/Digital\_Enhanced\_Cordless\_Telecommunications](http://en.wikipedia.org/wiki/Digital_Enhanced_Cordless_Telecommunications).
## 6\.4. EV-DO {#sect-Wireless_Guide-Other_Wireless-EVDO}
Evolution-Data Optimized is a standard for wireless communications, often used for wireless broadband that provides up to 3Mbps of throughput. A user can seamlessly roam between cells, and can use the same cells as regular cell phones. It provides the capability for users that live outside the distance limitation of DSL services to access high-speed Internet connections. The following URL provides further details on EVDO - news, tips and product reviews: .
## 6\.5. HSDPA {#sect-Wireless_Guide-Other_Wireless-HSDPA}
High-Speed Downlink Packet Access is considered a 3.5G mobile service, and provides theoretical download speeds of up to 14.4Mbps. It is a protocol used by cell phones and is designed to increase speeds and coverage. Refer to the following URL for further information on HSDPA: .
# Chapter 7. Other Resources {#chap-Wireless_Guide-Other_Resources}
IEEE Resources.
* [IEEE home page](http://www.ieee.org/)
* [About the IEEE](http://www.ieee.org/web/aboutus/home/index.html)
* [802\.11 Working Group home page](http://www.ieee802.org/11/)
* [IEEE at Wikipedia.org](http://en.wikipedia.org/wiki/Institute_of_Electrical_and_Electronics_Engineers)
General Wireless Resources.
* [How Wi-Fi works (Howstuffworks.com)](http://computer.howstuffworks.com/wireless-network.htm)
* [Wi-Fi details and resources (About.com)](http://compnetworking.about.com/od/wireless/WiFi_Wireless_Networks_and_Technology.htm)
* [The ABCs of securing your wireless network (Arstechnica.com)](http://arstechnica.com/security/news/2008/04/wireless-security.ars)
* [Wireless Security - How WEP works (Plynt.com)](http://palisade.plynt.com/issues/2006Dec/wep-encryption/)
* [Wi-Fi Protected Access (WPA) (Wikipedia.org)](http://en.wikipedia.org/wiki/Wi-Fi_Protected_Access)
* [General details on wireless in the home and office (home-wlan.com)](http://www.home-wlan.com/)
# Appendix A. Revision History {#appe-Publican-Revision_History}
|**Revision History**|
|Revision 1.1-04|25 May 2012|Stephen Wadeley|
||Update for Fedora 17||
|Revision 1.1-03|1 Mar 2010|Scott Radvan|
||Update for Fedora 13||
|Revision 1.1-02|6 Jan 2010|Scott Radvan|
||Published to d.fp.o CVS, minor changes/proof||
|Revision 1.1-01|16 Nov 2009|Scott Radvan|
||Major review, remove draft status, prepare for publishing||
|Revision 1.0-01|12 Nov 2009|Scott Radvan|
||Initial commit to SVN, add resources/URLs, new images||
[1]: ./images/usb_wireless_adapter.png
[2]: ./images/pcmcia_wireless_adapter.png
[3]: ./images/pci_wireless_adapter.png
[4]: ./images/access_point.png
[5]: images/reflection.png
[6]: images/absorption.png
[7]: images/refraction.png
[8]: images/scattering.png
[9]: images/diffraction.png
[10]: images/Network_Configuration-NM-AppletStates_Gnome3.png
[11]: images/Network_Configuration_NM_CableUnpluged_WiFi_List_Gnome3.png
[12]: images/Network_Configuration-NM-Network_Wireless_Gnome3.png
[13]: images/Network_Configuration-NM-Editing_Wireless_Connection_Gnome3.png