|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
|
Re: [PLUG] Ports needed to use Samba or MS networking functions
|
On Wed, Dec 03, 2003 at 09:49:19AM -0500, Jesse Huestis wrote:
> I have a situation where I am trying to limit the exposier of a LAN to
> attacks from a wireless network. What I have done is to issolate teh
> wireless side giving it only internet access and blocking all other
> traffic. They need to connect to a Network and Printer share on the LAN
> side from the wireless network.
>
> Solutions
>
> 1) Put all computers on the same subnet, but this opens servers etc., to
> attacks if someone hacks the wireless network.
>
> 2) Open up the ports to make the connections and limit the routing to
> just the IP addresses IP have assigned and to the times I have
> designated using the firewall.
A third option, and the one I would strongly recommend, would be to
implement a VPN server, and require wireless users who wish to access
your internal network to first establish a VPN connection.
-mct
___________________________________________________________________________
Philadelphia Linux Users Group -- http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug
|
|