Re: [Fwd: [Politech] Use non-password-protected WiFi node, go to prison? [econ]]

Wed, 06 Jul 2005 12:12:07 -0700 

Subject:   Re: [Fwd: [Politech] Use non-password-protected
WiFi node,      go to prison? [econ]] To:        Main Discussion
List for KPLUG <[email protected]> Cc:        Bcc:
-=-=-=-=-=-=-=-=-=# Don't remove this line
#=-=-=-=-=-=-=-=-=- Todd Walton wrote:
> On 7/6/05, Neil Schneider <[EMAIL PROTECTED]> wrote:
>
>>Police say Benjamin Smith III, 41, used his Acer brand
>>laptop to hack into Dinon's wireless Internet network.
>
>
> I wish there were an easy way to allow unfettered public
> access to my broadband connection, but without allowing
> any public access to my computer.  Easy as in, "I know
> that someone designed the system with this specifically in
> mind, and I just have to click click and it's all good."
> I'd settle for "I just have to follow a HOWTO to install
> it, and I can be sure that the system is safe and does
> what it's supposed to do."  I don't use wireless, alas,
> and I don't know how this stuff generally works.
>
> -todd
>
>

That is simple, You need to have two access points, and
firewalls. You would then  have this chain of devices. Each
firewall of course could support Wired network access as
well. You could do this with off the shelf Broadband
wireless routers. I suggest that you choose two seperate
Private address ranges. You could also do this with a single
Linux box with 3 NICs (Internet, Public, Private) Use Linux
routing to control the rest. Then you would need just normal
access points attached to the switch/crossover cable  on the
appropriate NIC. You would have to learn a little about
Linux routing and firewalls.

USING OTF ROUTER/AP
=====================================================
                           |---- Public AP
BROADBAND ----- DMZ FW ----|
                           |---- LAN FW ---- Private AP

USING Linux
=====================================================
                                |---- Public AP
BROADBAND ---- Linux Router ----|
                                |---- Private AP

Some sites to check out:
http://lartc.org/
http://www.homenethelp.com/web/howto/linux-share-internet.asp
http://www.netfilter.org/
http://www.tldp.org/HOWTO/Firewall-HOWTO.html

--
"Nobody goes there anymore; it's too crowded."
--Yogi Bera


--
[email protected]
http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list

Reply via email to