[svlug] Advice wanted regarding setting up WiFi

[William R Ward]

I'm planning to use SSH for anything important, so I don't think I
need to mess with IPsec...?

J. Paul Reed writes:
>On 31 Mar 2004 at 15:54:11, William R Ward arranged the bits on my disk to say:
>
>>  2) Add a second ethernet port to our Linux server and connect the WiFi
>>  to that, and use Linux's built-in firewall to control access.
>
>This is what I do, except I raise the bar a bit by turning off WEP
>entirely, turning off MAC address filtering entirely, and using 2048-bit
>IPsec.
>
>It's amusing to watch people associate to the WAP, get a DHCP address, and
>then try to use anything... they just hit my firewall, which refuses to
>route any non-IPsec traffic.
>
>Other than the amusement, this also has the advantage of making the traffic
>going over the wireless connection itself encrypted and secure.  WEP is a
>sick, sick joke. 
>
>Later,
>Paul
>------------------------------------------------------------------------
>J. Paul Reed -- 0xDF8708F8 || preed at sigkill.com || web.sigkill.com/preed
>Math, my dear boy, is nothing more than the lesbian sister of biology.
>                                            -- Peter Griffin, Family Guy
>
>I use PGP; you should use PGP too... if only to piss off John Ashcroft

-- 
William R Ward            bill at wards.net          http://www.wards.net/~bill/
-----------------------------------------------------------------------------
Never doubt that a small group of thoughtful, committed citizens can change the
world.  Indeed, it's the only thing that ever has. -- Margaret Mead