Locking down a wireless network
On Fri, Jan 30, 2009 at 10:25 AM, Grant <firstname.lastname@example.org> wrote:
>>>>> My Gentoo router's wireless network is encrypted via WPA and doesn't
>>>>> DHCP. I'd like to take this a step further in case my WPA key gets
>>>>> hacked. Can I issue only certain IPs to certain MAC addresses?
>>>>> Does WPA2 require hardware support?
>>>> I don't think so. It should just be a driver/firmware update if you've
>>>> got some device that supports WPA and not WPA2. The AES encryption of
>>>> WPA2 requires a little more hardware power than WEP or WPA normally
>>>> uses, but I don't think it needs any special chip or anything like
>>>> You can also do VPN over your wifi connection, and require it for
>>>> access to the rest of your network or the internet. At least then if
>>>> someone hacks your wireless key, they still can't do anything without
>>>> having your VPN certificate.
>>> Actually, VPN would rule out my wifi cell phone I bet.
>> Maybe not -- I don't know what kind of phone you've got. I have a
>> Nokia N95 which runs Symbian OS 9 and there are 3 VPN clients that I
>> know of (and the first one is free):
>> I believe Windows Mobile devices have VPN support built in, but I've
>> never tried it. For iPhone or other phone OS i have no idea as I've
>> never actually used them.
> It looks like those 3 do work on an N82, but at least the 3rd one can
> only connect to Windows VPN servers currently. VPN configuration on
> any of them sounds like it can be a major hassle though.
I haven't tried it, but the Telexy SymVPN has just released a new
version which supposedly supports linux PPTP VPN now.
There is a free trial.