ah the secret option no 3. brilliant!
thanks.
On Mon, 2003-10-20 at 13:06, Scott Harney wrote:
> Karthik <[EMAIL PROTECTED]> writes:
>
> option c)
> Get another NIC for your RedHat firewall and hang your AP off of
> that. You can than setup of filtering rules as needed keeping wireless
> clients out as needed. Best setup is to not rely on WEP at all and
> use firewall to provide IPSEC tunnel to your laptop. reject
> packets that are not IPSEC in the firewall config. Since it's
> an ipsec tunnel to your LAN, you should be fine with gnomemeeting
> etc. If you want to avoid IPSEC this still buys you more
> configurable firewalling to meet your needs.
>
> > Hi all
> > here i am again in a fix about some things on wlan.
> > Alright here's the situation. I have a 802.11b AP with
> > a 4 port router. wondering what's the best way to set
> > things up for my network.
> > well here's the current setup
> >
> > I have two desktop machines + 1 laptop connected to
> > the internet-facing firewall/router machine(redhat)
> > through a hub. all the machines are given static ips.
> > Now along comes this AP that has to be fit into this
> > network.
> > Here are my questions
> > 1. which is the best place to put the AP in.
> >
> > choice (a). Between the DSL modem and my Redhat
> > firewall
> >
> > Choice (b) Access point connected to the HUB.(Haven't
> > really tried it.)
> >
> > Now here are the things that I need to keep in mind
> > when deciding this layout.
> > * I need to do using Gnome meeting so need some
> > TCP/UDP ports open and to be forwarded to one of the
> > desktops.(Currently I am doing this by IPTABLES)
> > * I need to ssh into one of these boxes.
> > * Last but not least the wireless network shouldn't
> > compromise wired network(hey i don't have any
> > *sensitive* data but i am just being paranoid).
> >
> > for now I have just implemented choice(a).
> > Right now i forward the ssh from the wirelessAP/router
> > to the linux firewall which forwards it to the desired
> > desktop. This is fine but the problem comes when the
> > Ip changed. I can't get internet-facing Ip from the
> > WirelessAp/router so that i could email/sms it to
> > myself or to update my no-ip address.
> >
> > question 2:
> > Currently I have NO-Broadcast for SSID and MAC
> > filtering enabled for the access point.I have also
> > limited the number of dhcp clients. I know that this
> > is barely enough. have tried going WEP way but
> > couldn't get it to work with linux.
> > Did anyone here had luck with WEP(under linux)?
> >
> > Thanks
> > Karthik
> >
> >
> >
> >
> > _______________________________________________
> > General mailing list
> > [email protected]
> > http://brlug.net/mailman/listinfo/general_brlug.net
> >
