Karthik <[EMAIL PROTECTED]> writes: option c) Get another NIC for your RedHat firewall and hang your AP off of that. You can than setup of filtering rules as needed keeping wireless clients out as needed. Best setup is to not rely on WEP at all and use firewall to provide IPSEC tunnel to your laptop. reject packets that are not IPSEC in the firewall config. Since it's an ipsec tunnel to your LAN, you should be fine with gnomemeeting etc. If you want to avoid IPSEC this still buys you more configurable firewalling to meet your needs.
> Hi all > here i am again in a fix about some things on wlan. > Alright here's the situation. I have a 802.11b AP with > a 4 port router. wondering what's the best way to set > things up for my network. > well here's the current setup > > I have two desktop machines + 1 laptop connected to > the internet-facing firewall/router machine(redhat) > through a hub. all the machines are given static ips. > Now along comes this AP that has to be fit into this > network. > Here are my questions > 1. which is the best place to put the AP in. > > choice (a). Between the DSL modem and my Redhat > firewall > > Choice (b) Access point connected to the HUB.(Haven't > really tried it.) > > Now here are the things that I need to keep in mind > when deciding this layout. > * I need to do using Gnome meeting so need some > TCP/UDP ports open and to be forwarded to one of the > desktops.(Currently I am doing this by IPTABLES) > * I need to ssh into one of these boxes. > * Last but not least the wireless network shouldn't > compromise wired network(hey i don't have any > *sensitive* data but i am just being paranoid). > > for now I have just implemented choice(a). > Right now i forward the ssh from the wirelessAP/router > to the linux firewall which forwards it to the desired > desktop. This is fine but the problem comes when the > Ip changed. I can't get internet-facing Ip from the > WirelessAp/router so that i could email/sms it to > myself or to update my no-ip address. > > question 2: > Currently I have NO-Broadcast for SSID and MAC > filtering enabled for the access point.I have also > limited the number of dhcp clients. I know that this > is barely enough. have tried going WEP way but > couldn't get it to work with linux. > Did anyone here had luck with WEP(under linux)? > > Thanks > Karthik > > > > > _______________________________________________ > General mailing list > [email protected] > http://brlug.net/mailman/listinfo/general_brlug.net > -- Scott Harney<[EMAIL PROTECTED]> "...and one script to rule them all." gpg key fingerprint=7125 0BD3 8EC4 08D7 321D CEE9 F024 7DA6 0BC7 94E5
