Linux is known for being able to act as almost anything (bridge, router, firewall, etc.). My question is that if someone wanted to Build Your Own [wireless] Bridge what would they need to do to make it secure? I've been following this thread and can summarize it into the follow three steps.
1. Setup DHCP to only assign IPs to specific MAC Addresses 2. Setup IPTABLES to filter on matching MAC / IP Pairs 3. Setup Authentication software to authenticate the client. Now the questions: Given this list what could be done to improve the security of the system? What other security setups should be taken? What software could be used for step 3 that is available for multi-platform networks and how difficult would it be to setup securely? Thanks, Chad > > 1. You need a card with the right MAC address, or the ability to > change your > card's MAC, which may or may not be possible depending on the > WLAN card driver > and manufacturer of your hardware. > > 2. You need to have the SecureClient software installed. > > 3. You need to be able to authenticate properly with the firewall > with your > SecureClient. > > 4. You must encrypt everything going over the air (using IPSec). > > What kinds of client systems are supported? Right now, SecureClient runs > on Win32 platforms. There is beta code out there for Mac clients, as well > as PocketPC (WinCE 2000/2002) clients. Linux clients could be accomodated > by using FreeSWAN and site-site configs, rather than the SecureClient > stuff. > _______________________________________________ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
