GlockTalk.com
Home Forums Classifieds Blogs Today's Posts Search Social Groups



  
SIGN-UP
Notices

Glock Talk
Welcome To The Glock Talk Forums.

 
  
Reply
 
Thread Tools Display Modes
Old 01-04-2006, 08:22   #1
havensal
CLM Number 216
Nozzle Jockey
 
havensal's Avatar
 
Join Date: Aug 2003
Location: Western, NY
Posts: 4,471
Corp. level wireless security

We are running a small NT2000 DHCP server with about 30 clients. I have been tasked to look into adding wirless capability for the dozen or so laptops. I have wireless network at home and have done all of the normal steps, (WPA, no SSID broadcast, Etc.).

What else can be done on a corperate level to make the wireless as secure as posible?

I am reading up on WPA2.

Is there any software available to add security?

How much security does the DHCP add?

Would we be more vulnerable through the T1 than the wirless with the normal security steps taken?

Sorry for all of the questions, but I am new to this security thing. Thanks. ;c
__________________
RTN Bodyguard Club #034 "FearMyLaserLytes"
havensal is offline   Reply With Quote
Old 01-04-2006, 08:28   #2
Egyas
Troll Hater
 
Egyas's Avatar
 
Join Date: Jul 2002
Location: People's Republik of Daleystan
Posts: 5,167


Because wireless is broadcast, others have the ability to at least "sniff" at the traffic, or attempt to "hack" into the network. The company I work for is very serious about security. Previously, wireless networking was forbidden.

Now it is acceptable, in limited applications. The access points are plugged into the switches, and the ports that are plugged into are configured to accept VPN traffic only (along with all the other security options). This way, anyone that wants to connect wirelessly must establish a VPN connection (which requires the company mandated software and hardware token).
__________________
"The Sheep hate the Sheepdogs for barking at the wolves because it reminds them that they are unwilling to defend themselves." - DonGlock26 (8/30/06)

Founder - Illinois Glockers Club #1
Big Dawg, GOTOD, Niner's & Survival #1280
GOA Member
NRA Member
Egyas is offline   Reply With Quote
Old 01-04-2006, 08:39   #3
havensal
CLM Number 216
Nozzle Jockey
 
havensal's Avatar
 
Join Date: Aug 2003
Location: Western, NY
Posts: 4,471
That sounds like a lot of hassle. How user friendly is the login?
__________________
RTN Bodyguard Club #034 "FearMyLaserLytes"
havensal is offline   Reply With Quote
Old 01-04-2006, 10:24   #4
Egyas
Troll Hater
 
Egyas's Avatar
 
Join Date: Jul 2002
Location: People's Republik of Daleystan
Posts: 5,167


Well, it depends. The login itself (to windows) is handled by the Windows Domain Server (for account authentication). If they're not currently logged in, it uses cached domain credentials to authenticate login. To connect to the wireless, they choose the wireless network network from the available list, and jump through all the normal hoops (WPA, etc, etc) to connect. After the connection, there is no throughput however. Everything is blocked except VPN traffic.

Basically, it all the same as your users are doing now, but with one extra step. After connecting to the wireless connection, the user has to fire up the Nortel VPN client (that's the one my company uses for Window$ users, or Apani for us Linux folks), and we enter all our VPN stuff (account name, PIN#, Hardware access token code, etc) to establish the VPN connection. Then traffic runs as normal, if just a bit more slowly.
__________________
"The Sheep hate the Sheepdogs for barking at the wolves because it reminds them that they are unwilling to defend themselves." - DonGlock26 (8/30/06)

Founder - Illinois Glockers Club #1
Big Dawg, GOTOD, Niner's & Survival #1280
GOA Member
NRA Member
Egyas is offline   Reply With Quote

 
  
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump




All times are GMT -6. The time now is 19:50.




Homepage
FAQ
Forums
Calendar
Advertise
Gallery
GT Wiki
GT Blogs
Social Groups
Classifieds


Users Currently Online: 1,282
406 Members
876 Guests

Most users ever online: 2,672
Aug 11, 2014 at 2:31