RE: Wireless Security

From: Karl Brusen (karl@brusen.com)
Date: Wed Nov 27 2002 - 15:43:01 GMT-3

• Next message: Neil Moore: "Re: Route-map ,, is this possible,"
• Previous message: Jung, Jin: "Route-map ,, is this possible,"
• Next in thread: Todd A. Kaczorowski: "RE: Wireless Security"
• Maybe reply: Todd A. Kaczorowski: "RE: Wireless Security"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

FYI, LEAP is available on the 340/350 Aironets and offers signficant
security improvements over static WEP. I just ordered a book this morning
that should offer some additional help. It is called "Hack Proofing Your
Wireless Network". $30 at Bookpool.

Karl Brusen

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com]On Behalf Of
Chuck Church
Sent: Wednesday, November 27, 2002 12:03 PM
To: Wright, Jeremy; ccielab@groupstudy.com
Subject: Re: Wireless Security

Jeremy,

    Sounds like WEP is not enough security for your needs. Cisco does have
LEAP available now which addresses the faults of WEP, but I don't think it's
available for the 340/350 Aironets. If you already have wireless equipment
that can't run EAP, I think IPSec over the wireless is going to be the most
secure. I've never personally tried using a Cisco VPN client with a
wireless NIC, so you might want to check with TAC first. I suppose you
could also do a VPN to an MS or Novell server, if you dont' have a hardware
device that can act as a VPN server. Although trusting your network
security to MS is kind of like having Homer guard your donut...

Chuck Church
CCIE #8776, MCNE, MCSE

----- Original Message -----
From: "James R. Scobey" <jscobey@sms.com>
To: "Wright, Jeremy" <JA_WRIGHT@admworld.com>; <ccielab@groupstudy.com>
Sent: Wednesday, November 27, 2002 11:25 AM
Subject: Re: Wireless Security

> The netscreen does port to port IPSEC encryption... one of their product
> briefs specifies it's use for encrypting traffic over wireless LANs. A
bit
> pricey, though.
> ----- Original Message -----
> From: "Wright, Jeremy" <JA_WRIGHT@admworld.com>
> To: <ccielab@groupstudy.com>
> Sent: Wednesday, November 27, 2002 9:04 AM
> Subject: OT: Wireless Security
>
>
> > we are trying to nail down out wireless security on top of what we
already
> > have...possibly installing some type of vpn client software on the
> wireless
> > client and have a vpn server on the wired side. bluesocket.com has some
> > awesome boxes that supports all of the major encryption technologies and
a
> > lot of sweet features I would like to have but it appears too expensive
> with
> > what we are trying to do. does anyone have any recommendations? all of
our
> > wireless clients are all on the same subnet also. thanks.
> >
> >
> >
> >
> >
> >
> >
> >
> >
> >
> > ************************
> > Jeremy Wright
> > Network Analyst
> > Archer Daniels Midland
> > ja_wright@admworld.com
> > (217)451-4063
> >
> > ************************

• Next message: Neil Moore: "Re: Route-map ,, is this possible,"
• Previous message: Jung, Jin: "Route-map ,, is this possible,"
• Next in thread: Todd A. Kaczorowski: "RE: Wireless Security"
• Maybe reply: Todd A. Kaczorowski: "RE: Wireless Security"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Tue Dec 03 2002 - 07:23:11 GMT-3