WEP,

He sure seems to be pretty familiar in setting security over his wireless network. I do agree 3, 4, and 5 will do setting up encryption...You're cooking!!!

To sum it all up

Quick Wireless LAN Security tips

1)Change the default Admin password on your Access Point (this includes the webinterface)

2)Change the your default SSID (network name)

3)Disable the SSID broadcast option

4)Enable MAC address filtering on your Access Point

5)Turn off DHCP. If not possible, restrict DHCP leases to the MAC addresses of your Wireless clients only

6)Refrain from using the default subnet

7)Use the highest level of WEP/WPA(2)

8)Firewall your Wireless Network segment (separate segment and packet filtering)

9)Use a switch for connecting the Access Point to other network devices, not a hub

10)Encrypt your wireless traffic using a VPN
Further, use encryption protocols for applications where possible (TLS/https, ssh, etc)

11)Think about using a proxy with access control for outgoing requests

12)Enable logging, and check your (wireless) log files regularly

13)Test your wireless security using wardriving tools or if you are lazy ask Sahir to do it for you
These steps will give you basic protection. However, Wireless LAN Security and Network Security in general is more than just following "simple steps".

While not wireless security points, I would suggest you also set up a network IDS such as snort on the network segment, and maybe even a box with arpwatch...


Also cycle keys regularly.

What is Leap? Also, how do i route my wirelss info through a VlAN?

Thanks Pros!

Lindows