WDS with AES encryption

Jun Sun jsun at junsun.net
Fri Feb 13 13:26:06 EST 2004


On Fri, Feb 13, 2004 at 06:22:22PM +0100, Bruno Randolf wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> On Friday 13 February 2004 16:22, Jun Sun wrote:
> > I don't know much about CCMP/AES, but I thought about the same problem
> > too.  I was thinking to use VPN over the link, and the bridge LAN over
> > IPsec interface.
> >
> > The idea seems pretty wacky to me.  Has anybody tried this?  Will this
> > work?
> >
> > In short,
> > 	. WDS creates wlan0wd0 on top of wlan0
> > 	. IPSec creates ipsec0 over wlan0wds0
> > 	. bridging tool bridges ipsec0 and eth0
> 
> i think you cannot bridge with ipsec because ipsec operates only at the IP 
> layer.
> 

Ahh, I see.  I suppose you can route between those
LANs through ipsec interfaces, which is probably what you should do
anyway.

> for layer2 vpn you could use openvpn or tinc.
> 

OpenVPN looks awesome.  

Tinc is pretty similar to OpenVPN.  Any comparison between those two?

Thanks.

Jun



More information about the HostAP mailing list