RE: Simple Wireless Question

security_at_rexwire.com
Date: 06/26/03

  • Next message: Rodney Green: "Re: AW: security-basics Digest 18 Jun 2003 22:09:15 -0000 Issue 618"
    To: Tim.Potter@clarkconsulting.com, security-basics@securityfocus.com
    Date: Thu, 26 Jun 2003 15:29:55 -0400
    
    

    Checkpoint a good white paper on where put it. It is obviously for their
    product but you can use the paper as a knowledge base.

    -SKP

    -----Original Message-----
    From: Potter, Tim [mailto:Tim.Potter@clarkconsulting.com]
    Sent: Thursday, June 26, 2003 1:50 PM
    To: security-basics@securityfocus.com
    Subject: Simple Wireless Question

    Okay, so we're going to be implementing wireless soon. Most likely
    using PEAP and either MS version of Radius or Funk (my preference).
    The main question I have, is where to place the Radius server? We are
    going to hang a switch off one of the PIX ports and plug in all the
    access points to that switch, thereby bringing all the wireless
    connections in through a DMZ. Then they need to authenticate via
    Radius. Do I put the Radius server in that same DMZ? In another DMZ?
    On the Private LAN? We also plan to use this server for our VPN
    connection which come in through a separate DMZ and our dialup
    connections which come in to our LAN router directly.
    Thoughts on Radius placement?
    Thanks much!
    -Tim

    ---------------------------------------------------------------------------
    Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts!
    The Gartner Group just put Neoteris in the top of its Magic Quadrant,
    while InStat has confirmed Neoteris as the leader in marketshare.
         
    Find out why, and see how you can get plug-n-play secure remote access in
    about an hour, with no client, server changes, or ongoing maintenance.
              
    Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
    ----------------------------------------------------------------------------

    ---------------------------------------------------------------------------
    Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts!
    The Gartner Group just put Neoteris in the top of its Magic Quadrant,
    while InStat has confirmed Neoteris as the leader in marketshare.
         
    Find out why, and see how you can get plug-n-play secure remote access in
    about an hour, with no client, server changes, or ongoing maintenance.
              
    Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
    ----------------------------------------------------------------------------


  • Next message: Rodney Green: "Re: AW: security-basics Digest 18 Jun 2003 22:09:15 -0000 Issue 618"

    Relevant Pages

    • Re: Firewall and DMZ topology
      ... The proxy server cannot be inside the DMZ. ... >>servers from outside the LAN. ... >>Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts! ...
      (Security-Basics)
    • Re: Radius (IAS) - ADS - Problem
      ... nur wer kommt denn auf die dumme Idee den Radius in die ... DMZ zu stellen. ... Security Zone an einer Firewall mit entsprechenden Interfaces einrichten, ... ins Segment diener AD Server ...
      (microsoft.public.de.german.windows.server.general)
    • radius authentication
      ... i´m doing some tests with isa, and I would like to know if the radius ... server in the DMZ can communicate with the AD that is in the internal ...
      (microsoft.public.isa)
    • RE: Firewall and DMZ
      ... in the DMZ, ... third firewall between the LAN and DMZ. ... > The Gartner Group just put Neoteris in the top of its Magic Quadrant, ... > about an hour, with no client, server changes, or ongoing maintenance. ...
      (Security-Basics)
    • Re: Publishing RADIUS server for external authentication
      ... > You should be able to Server Publish the RADIUS server you're using. ... > If your DMZ uses private IP addresses, you should also have a NAT ... I managed to fix this by adding server protocols the same as the built in Radius and Radius accounting, ...
      (microsoft.public.isaserver)