home  wiki

Securing

Once you have your wireless going and would like to limit the access of your internet etc, there are some things you can consider.
1) Don't use dhcp on the wireless side, statically assign all ends.
2) Use your firewall(iptables) to only peform NAT on authorised subnets
3) Run squid proxy transparent and assign ACLs ( access lists) to only only certain ip/mac addresses to have web internet access.
4) Run a dhcp server for your local LAN and assign specific IP address for all known clients (this helps in step 3).

All these measures can be easily setup if you are running *nix as your wireless gateway. Running squid proxy has the added advantage of saving internet bandwitdh by caching web pages etc. You can also install ad-zapper on squid redirects to stop unwanted ads and enhance web page loading.

CategoryHowTo


Version 5 (current) modified Tue, 03 Jul 2007 23:12:20 +1000 by Kahless
[EditText] [Spelling] [Current] [Raw] [Code] [Diff] [Subscribe] [VersionHistory] [Revert] [Delete] [RecentChanges]
> home> about> events> files> members> maps> wiki board   > home   > categories   > search   > changes   > formatting   > extras> site map

Username
Password

 Remember me.
>

> forgotten password?
> register?
currently 0 users online
Node Statistics
building122
gathering190
interested463
operational246
testing202