LinuxQuestions.org
Go Job Hunting at the LQ Job Marketplace
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices



Reply
 
Search this Thread
Old 08-23-2006, 12:13 PM   #1
depam
Member
 
Registered: Sep 2005
Posts: 829

Rep: Reputation: 30
Wireless Security and VPN


Hi! I was able to setup my wireless network on a blue interface on IPCop. What I did was turned off the DHCP on the Linksys router and allowed the IPcop box to provide IP addresses for wireless users. I also turned off the WEP Encryption on the router and for the wireless users to connect to the network, they will have to inform me so that I can add them up to the "blue acccess" on IPCop. Now my question is this. Is it really unsecure to disable WEP encryption on my Linksys router? I notice that eventhough the wireless users have IP address given by IPCop, they still won't be able to connect to the internet or access other networks such as green. They will only gain access if I put there MAC addresses on the "blue access" on IPCop. Is this too much vulnerable? If I have my WEP turned off, what are the chances that the wireless users will be able to connect to the green network? I don't know how IPCop handles blocking proxy port of the wireless users unless listed on the blue access. But it makes sense to me. Even if you were able to connect to the router, you can't do anything right? Now, can someone tell me if there are some security issues on what I did. If so, what are my options to harden the wireless security and secure my Green network? Is OpenVPN secure enough cause I also installed OpenVPN addon on IPCop to enable me to connect to our network even when I'm away. Do I have to worry more on my current setup? I just wish I can also have have an addon for IPCop to enable me to provide access levels to users, time-constraints and better authentication..
 
Old 08-23-2006, 02:32 PM   #2
osor
HCL Maintainer
 
Registered: Jan 2006
Distribution: (H)LFS, Gentoo
Posts: 2,450

Rep: Reputation: 70
I am not familiar with IPCop, and so I don't understand half of what you wrote. What I do know is that it is very easy to spoof MAC addresses.
 
Old 08-23-2006, 02:40 PM   #3
lleb
Senior Member
 
Registered: Dec 2005
Location: Florida
Distribution: CentOS/Fedora
Posts: 2,583

Rep: Reputation: 480Reputation: 480Reputation: 480Reputation: 480Reputation: 480
no blue users will not be able to access green unless you put pinholes in the firewall allowing blue to access green. blue will be able to access red if they spoof an accepted MAC address, but other then that they will not have much access to anything.

i do not know much about openVPN to answere any security questions about that sorry.

from what i understand about IPCop is this:

RED = outside world, or other firewall
GREEN = inside and secured, behind firewall, network with its own IP scheme on a private network.
BLUE = wifi (can be used for other, but built for wifi) blue is also behind the firewall and secured that way and is also on its own IP scheme on a private network. not the same as GREEN and can not see GREEN.
ORANGE = DMZ

so even if they pull an IP address unless they can find a MAC address that works with IPCop accept list they will not have access to the internet and unless you disabled some of the firewall they will not have access to GREEN.
 
Old 08-23-2006, 08:34 PM   #4
seneschal
LQ Newbie
 
Registered: Jul 2006
Location: Minnesota
Distribution: RHEL, Debian, Ubuntu
Posts: 27

Rep: Reputation: 15
OpenVPN is a secure solution, especially if you opt for AES encryption. It uses standardized encryption algorithms - the same ones used to secure communication between web servers and browsers.
 
Old 08-23-2006, 10:08 PM   #5
depam
Member
 
Registered: Sep 2005
Posts: 829

Original Poster
Rep: Reputation: 30
Okay thanks.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
vpn + wireless gautamn Linux - Wireless Networking 5 09-22-2005 07:56 PM
Wireless Security roopunix Linux - Wireless Networking 3 09-19-2005 11:50 PM
VPN to company over Wireless home network rgeelen Linux - Wireless Networking 1 05-20-2004 11:08 AM
wireless concerns: is a VPN the solution? yocompia Linux - Security 5 09-16-2003 02:43 PM
Wireless Security & VPN Smerk Linux - Wireless Networking 2 12-11-2002 09:53 PM


All times are GMT -5. The time now is 05:21 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration