Dani Camps <(E-Mail Removed)> wrote:
> I have a LAN with a Linux box being the gateway, then I have an AP
> connected to an ethernet interface in the gateway and the WLAN. What I
> want is to secure the WLAN using OpenVPN 2.0, to do this I can bridge
> in the gateway a tap interface with the ethernet interface and then
> use iptables to allow only the traffic coming from the tap interface,
> then all the traffic that is not VPN will be rejected.
>
> But I have a problem and is that one of my WLAN clients has Windows ME
> installed and I can't install Windows XP or Linux in it, it's a
> problem because OpenVPN can not be installed in WindowsME. Then I need
> a way to allow this machine but without breaking the security of the
> WLAN, so making impossible for not authorized clients to access the
> WLAN. I have the iptables in the gateway not in the AP, so I don't
> know if I can filter by wlan client MAC address there, and anyway the
> MAC address filtering is very easy to break, so any ideas ?
By limiting yourself to WinME, you've pretty much guaranteed that there is *no*
way to adequately secure it without buying 3rd party software. Your best bet
would be to purchase a 3rd party WPA suplicant, such as the funk or aegis
client, and use WPA encryption (prefereably 802.1x if you can set up a radius
server, or just PSK if not).
Otherwise you're out of luck.
--
Frank Sweetser fs at wpi.edu
WPI Network Engineer
GPG fingerprint = 6174 1257 129E 0D21 D8D4 E8A3 8E39 29E3 E2E8 8CEC
|
Similar Threads
Linear Mode
