From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([69.77.167.62] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1LSwBq-0001Th-Su for garchives@archives.gentoo.org; Fri, 30 Jan 2009 16:25:59 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 80B98E034F; Fri, 30 Jan 2009 16:25:55 +0000 (UTC) Received: from fk-out-0910.google.com (fk-out-0910.google.com [209.85.128.190]) by pigeon.gentoo.org (Postfix) with ESMTP id 26148E034F for ; Fri, 30 Jan 2009 16:25:55 +0000 (UTC) Received: by fk-out-0910.google.com with SMTP id z23so559560fkz.2 for ; Fri, 30 Jan 2009 08:25:54 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:content-type :content-transfer-encoding; bh=V9jEZ18bdTLhvzXsO6/iExEe4iec/7SvlDFFzFTMid0=; b=jNNftGbLU59cQV4KdxOS2NucyNyde5GBWwW9bwqps7jsES6CtYVNAJcrOfHhaYHGXV INHc4WQ+kfMIxpkz0XcLNn+GsrG67XmCRU5q9ukXS2QIaNBWNiP4BiHsmo1oQOd7T4h+ lKIJWKZfImH/A9VWKYIkk8nZdhnETDutpdG4o= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; b=BYO/IFremqeeHSXkjd6pLuSIezCdD2VSoxPBacAbh54fH/7ezm20BzO75Bh52ZxqDS jpztU0qtwMxPWtYbCKK9ddpy/ixcUrm2ecaIEF5xvukF47sjltWFVszh7MdnhTdGVUTn niBcnWnR09lVU8U05saXdSQce3GsNYNja7wAs= Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Received: by 10.180.239.8 with SMTP id m8mr480436bkh.165.1233332753044; Fri, 30 Jan 2009 08:25:53 -0800 (PST) In-Reply-To: <58965d8a0901291258y58e8f8acw31eda17049a66155@mail.gmail.com> References: <49bf44f10901290940p3ab050cep2e5bd985ee901fde@mail.gmail.com> <58965d8a0901290950v3183b14bra1ca458c3ee255d9@mail.gmail.com> <49bf44f10901291239r569fd20eo758f40533b80ecdd@mail.gmail.com> <58965d8a0901291258y58e8f8acw31eda17049a66155@mail.gmail.com> Date: Fri, 30 Jan 2009 08:25:53 -0800 Message-ID: <49bf44f10901300825w1729cdfes683e7c449c6a96e7@mail.gmail.com> Subject: Re: [gentoo-user] Locking down a wireless network From: Grant To: gentoo-user@lists.gentoo.org Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Archives-Salt: c106f3ba-6ca6-4e3d-8e87-b4bc6ba5d422 X-Archives-Hash: 8bae9939d449d0bc5ebecf6da7d1290f >>>> My Gentoo router's wireless network is encrypted via WPA and doesn't >>>> DHCP. I'd like to take this a step further in case my WPA key gets >>>> hacked. Can I issue only certain IPs to certain MAC addresses? >>>> >>>> Does WPA2 require hardware support? >>> >>> I don't think so. It should just be a driver/firmware update if you've >>> got some device that supports WPA and not WPA2. The AES encryption of >>> WPA2 requires a little more hardware power than WEP or WPA normally >>> uses, but I don't think it needs any special chip or anything like >>> that. >>> >>> You can also do VPN over your wifi connection, and require it for >>> access to the rest of your network or the internet. At least then if >>> someone hacks your wireless key, they still can't do anything without >>> having your VPN certificate. >> >> Actually, VPN would rule out my wifi cell phone I bet. > > Maybe not -- I don't know what kind of phone you've got. I have a > Nokia N95 which runs Symbian OS 9 and there are 3 VPN clients that I > know of (and the first one is free): > > http://www.businesssoftware.nokia.com/mobile_vpn_downloads.php > http://www.ncp-e.com/en/vpn-szenarien-produkte/vpn-produkte/secure-entry-client.html > http://www.symvpn.com/Products/ProductInfo.aspx?ProductId=17 > > I believe Windows Mobile devices have VPN support built in, but I've > never tried it. For iPhone or other phone OS i have no idea as I've > never actually used them. > > Paul It looks like those 3 do work on an N82, but at least the 3rd one can only connect to Windows VPN servers currently. VPN configuration on any of them sounds like it can be a major hassle though. Is there a way to get reliable info on how many systems are connected to my wireless network? I'm running a Gentoo router. - Grant