At 10:02 15.12.2003 -0500, Sean E. Covel wrote:
Please stop me before I go running off down the wrong road!!!
Here's the situation: My sister-in-law is dying to get herself a laptop and WIFI. They already have a cable modem and a virus-laden P2P, chat, teenager PC in the house. They have no firewall currently. She can never get on the PC, so she wants a laptop she can use anywhere.
Here is what I am proposing to do:
Cable Modem -> Bering --> (Private Network) Current PC (Windows XP) | ---> DMZ --> WAP --> Laptop (Windows XP)
The question is, of course, how to secure the WIFI and Laptop. I was hoping that the Laptop could establish an IPSEC connection through the WAP to Bering. Only IPSEC connections would be allowed in the DMZ. I'm recommending she go with 802.11g so there is enough bandwidth left after IPSEC to do some useful work.
Does this make any sense? Has anybody done it? Can a WAP passthrough IPSEC?
I looked into adding a WIFI card to Bering but 802.11g cards are not well supported, AND I don't want to become full-time tech support for this configuration.
You can easily use 802.11b, which is currently supported (and cheap), unless you need high speed access to something on your local LAN.
I am running an encrypted tunnel between 2 WLAN connected sites on derelict Pentium hardware and I am saturating easily the WAN uplink.
Even with 802.11g, a bad radio link does not give you good speed, so you best check out the site. Good propagation conditions is the keywword here, which partially translates to good antennas/cabling. For Windoze IPSEC set up you can look up the freeswan users mailing list (unfortunately down at the time being :-( )
HTH Erich
THINK Püntenstrasse 39 8143 Stallikon mailto:[EMAIL PROTECTED] PGP Fingerprint: BC9A 25BC 3954 3BC8 C024 8D8A B7D4 FF9D 05B8 0A16
------------------------------------------------------- This SF.net email is sponsored by: IBM Linux Tutorials. Become an expert in LINUX or just sharpen your skills. Sign up for IBM's Free Linux Tutorials. Learn everything from the bash shell to sys admin. Click now! http://ads.osdn.com/?ad_id78&alloc_id371&op=click ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html