Re: [fw-wiz] Wireless
From: Paul Robertson (proberts@patriot.net)
Date: 08/09/02
- Next message: Rob Napholz: "[fw-wiz] Re:[fw1-wizards] Performance with GUI"
- Previous message: John McDermott: "Re: [fw-wiz] Wireless"
- In reply to: John McDermott: "Re: [fw-wiz] Wireless"
- Next in thread: Dave Piscitello: "Re: [fw-wiz] Wireless"
- Reply: Dave Piscitello: "Re: [fw-wiz] Wireless"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: Paul Robertson <proberts@patriot.net> To: John McDermott <jjm@jkintl.com> Date: Fri Aug 9 15:26:04 2002
On Fri, 9 Aug 2002, John McDermott wrote:
> So what is the Best Practice approach to securing a wireless subnet?
> Given a WAP and n known cards, what is the best way to deal with MAC
> spoofing, wandering unauthorized users, etc. to prevent access to all
> lan resources for unauthorized users?
Treat it like the Internet and a VPN- encrypt everything going to any
node, put a layer 3 device between the WAP and the wireline/fiber network,
put PC firewalls on the PC nodes, and have the layer 3 device do
strong authentication and decryption for allowed users to
selected internal resources.
Paul
-----------------------------------------------------------------------------
Paul D. Robertson "My statements in this message are personal opinions
proberts@patriot.net which may have no basis whatsoever in fact."
probertson@trusecure.com Director of Risk Assessment TruSecure Corporation
- Next message: Rob Napholz: "[fw-wiz] Re:[fw1-wizards] Performance with GUI"
- Previous message: John McDermott: "Re: [fw-wiz] Wireless"
- In reply to: John McDermott: "Re: [fw-wiz] Wireless"
- Next in thread: Dave Piscitello: "Re: [fw-wiz] Wireless"
- Reply: Dave Piscitello: "Re: [fw-wiz] Wireless"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
