Re: Open WiFi Access Point BCP's???
I'd look at Mikrotik. There's a listserv at part-15.org and a web forum at mikrotik.com - Mike Hammett Intelligent Computing Solutions http://www.ics-il.com - Original Message - From: Deepak Jain [EMAIL PROTECTED] To: nanog@merit.edu Sent: Friday, April 27, 2007 3:58 PM Subject: Open WiFi Access Point BCP's??? Anyone have any recommendations for BCPs or software suggestions on running an open community-based access point (or network)? Think: an urban area where potentially lots of people could be popping on and off with little authentication. These seem to be pretty prevalent around Panera's and other things -- I just don't know what they are doing to manage (rather that prevent) P2P and Spam, etc uses. Pointers very appreciated!! Thanks, DJ
Open WiFi Access Point BCP's???
Anyone have any recommendations for BCPs or software suggestions on running an open community-based access point (or network)? Think: an urban area where potentially lots of people could be popping on and off with little authentication. These seem to be pretty prevalent around Panera's and other things -- I just don't know what they are doing to manage (rather that prevent) P2P and Spam, etc uses. Pointers very appreciated!! Thanks, DJ
Re: Open WiFi Access Point BCP's???
If you want to follow just one rule, it's this:- Instruct your users to never (I mean NEVER) use applications which run over unencrypted protocols. Security first. Abraços, Marlon Borba, CISSP, APC DataCenter Associate Técnico Judiciário - Segurança da Informação TRF 3 Região (11) 3012-1683 -- Dont just sit there and think it does not matter. -Security is the problem we love to ignore. (David Clark, 1992) -- Deepak Jain [EMAIL PROTECTED] 27/4/2007 17:58:28 Anyone have any recommendations for BCPs or software suggestions on running an open community-based access point (or network)? Think: an urban area where potentially lots of people could be popping on and off with little authentication. These seem to be pretty prevalent around Panera's and other things -- I just don't know what they are doing to manage (rather that prevent) P2P and Spam, etc uses. Pointers very appreciated!! Thanks, DJ
Re: Open WiFi Access Point BCP's???
On 4/27/07, MARLON BORBA [EMAIL PROTECTED] wrote: If you want to follow just one rule, it's this:- Instruct your users to never (I mean NEVER) use applications which run over unencrypted protocols. Security first. Abraços, Indeed. If you know ahead of time unencrypted 802.11(whatever) is going to be used, *always* use a VPN or tunnel of some sort to secure your traffic (if the apps you'll be using have no native encryption).
Re: Open WiFi Access Point BCP's???
You can visit the US-CERT website at http://www.us-cert.gov/reading_room/ for overview and recommendations on wireless. Jerry - Original Message - From: Brandon Galbraith To: MARLON BORBA Cc: Deepak Jain ; nanog@merit.edu Sent: Friday, April 27, 2007 7:21 PM Subject: Re: Open WiFi Access Point BCP's??? On 4/27/07, MARLON BORBA [EMAIL PROTECTED] wrote: If you want to follow just one rule, it's this:- Instruct your users to never (I mean NEVER) use applications which run over unencrypted protocols. Security first. Abraços, Indeed. If you know ahead of time unencrypted 802.11(whatever) is going to be used, *always* use a VPN or tunnel of some sort to secure your traffic (if the apps you'll be using have no native encryption).
Re: Open WiFi Access Point BCP's???
On 4/28/07, Deepak Jain [EMAIL PROTECTED] wrote: Anyone have any recommendations for BCPs or software suggestions on running an open community-based access point (or network)? MAAWG BCPs on walled gardens (probably coming soon if not already out there). Quite a few ISPs - Bell Canada for example - are already doing this on a large scale. As these coffee shop APs are usually running off a standard DSL line - its not muni wifi as such - a walled garden should nail abuse very fast, and encourage sensible firewalling on the part of the coffee shop owner .. or he'll find that a NAT'ted IP with multiple infected laptops coming and going out of it might be in and out of a walled garden all the time. There's some vendors who concentrate on walled garden stuff - Perftech (www.perftech.com) for example. Arbor and Sandvine too have kit that can be used for this, I believe .. of course, at the edge of an ISP's DSL network. srs