[vpn] wep
Ryan Malayter
rmalayter at bai.org
Mon Jun 3 13:30:30 EDT 2002
You need to assume that the wireless link is completely compromised. So
you treat it like you would the public Internet: you firewall it. Any of
the combo firewall/vpn devices out there will work for you at 802.11B
speeds, when set up like this:
NetworkA<-->Firewall<-->Breezecom
//
Breezecom<-->FireWall<-->NetworkB
Buying two Netgear FVS318 would probably let you do this for less than
$300 in hardware costs. If you have more than 253 nodes on either side
of the network, you'll need something bigger and better.
All you need to do is configure the network and Ipsec settings on each
device, and plug the breezecom stuff into the internet/WAN ports on the
firewalls.
Regards,
:::Ryan Malayter
:::Network Engineer
:::Bank Administration Institute
:::Chicago, Illinois, USA
:::PGP Key: http://www.malayter.com/pgp-public.txt
-----Original Message-----
From: Pete Jacob [mailto:pjacob at ftmc.com]
Sent: Monday, June 03, 2002 11:29 AM
To: vpn at securityfocus.com
Subject: [vpn] wep
Hello~
I was wondering if anyone knew of a good solution to help my problem...
I have an external wireless connection to an office across the street
using
a Breeze com 802.11B
technology... but the equipment will only use a 40bit WEP key.
I would like to accomplish the following:
1. treat both sites as a different broadcast domains
2. have some sort of magical box that will provide some sort of magical
vpn/3des encryption, and have two ether net ports
in it, one to connect to the network another to connect to the wireless
network, then back at the remote site it
would do the same...
I was thinking that Cisco probably makes what I need but since I am only
a
lowly ccna it might be
to difficult to configure, and too costly.
I also think I should be able to do this with a pee cea, and two nics...
but this sounds like a bad idea.
Thanks~
Pete.
VPN is sponsored by SecurityFocus.com
More information about the VPN
mailing list