> Angus Scott-Fleming wrote: > > IMHO such people should set up two networks, then, one insecure for the > > legacy devices and one secure for real use.
On 20 Feb 2009 at 23:00, Phil Brutsche wrote: > Unfortunately, that is not always feasible. > > #1: You are talking about something that is well beyond the skill set of > 99.99999% of end users Give thanks for that or we wouldn't be employed doing what we're doing ;-) OTOH it's non-techie "end users" who need us to keep their tech up and running ... > #2: Outside of wireless routers capable of running DD-WRT 99.99999% of > the cheap $&#*() crap @ Best Buy, Fry's, Office Max, Office Depot, etc > are incapable of such things. > > It's trivial with something like a Cisco 871W, but most people are > unwilling to spend $550 US on their wireless router :) Actually you can also do it on the cheap with a router like IPCop (GPL software on a legacy PC with a couple of extra NICs) and two WiFi networks. The secured one hangs on the "GREEN" (internal) network and is internal, the insecure one hangs on the "BLUE" (internal but isolated) network and can only see the Internet, plus any pinholes you might poke through the firewall (to allow printing, for example). Two cheap WiFi devices like DWL-G800APs (under $100 street price) or DWL-G730APs (under $50 street) can provide the networks. -- Angus Scott-Fleming GeoApps, Tucson, Arizona 1-520-290-5038 +-----------------------------------+ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
