From: Todd A. Kaczorowski (tkaczoro@cisco.com)
Date: Wed Nov 27 2002 - 16:40:04 GMT-3
Check the following whitepapers for info on the wireless security.
Cisco Safe: Wireless Lan Security in Depth
http://www.cisco.com/en/US/netsol/ns110/ns129/ns131/ns128/networking_solutio
ns_implementation_white_paper09186a008009c8b3.shtml
Wireless Lan Security : Pej Roshan
http://www.cisco.com/warp/public/779/smbiz/wireless/wlan_security.shtml/
beware the wraps....
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com]On Behalf Of
Karl Brusen
Sent: Wednesday, November 27, 2002 1:43 PM
To: ccielab
Subject: RE: Wireless Security
FYI, LEAP is available on the 340/350 Aironets and offers signficant
security improvements over static WEP. I just ordered a book this morning
that should offer some additional help. It is called "Hack Proofing Your
Wireless Network". $30 at Bookpool.
Karl Brusen
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com]On Behalf Of
Chuck Church
Sent: Wednesday, November 27, 2002 12:03 PM
To: Wright, Jeremy; ccielab@groupstudy.com
Subject: Re: Wireless Security
Jeremy,
Sounds like WEP is not enough security for your needs. Cisco does have
LEAP available now which addresses the faults of WEP, but I don't think it's
available for the 340/350 Aironets. If you already have wireless equipment
that can't run EAP, I think IPSec over the wireless is going to be the most
secure. I've never personally tried using a Cisco VPN client with a
wireless NIC, so you might want to check with TAC first. I suppose you
could also do a VPN to an MS or Novell server, if you dont' have a hardware
device that can act as a VPN server. Although trusting your network
security to MS is kind of like having Homer guard your donut...
Chuck Church
CCIE #8776, MCNE, MCSE
----- Original Message -----
From: "James R. Scobey" <jscobey@sms.com>
To: "Wright, Jeremy" <JA_WRIGHT@admworld.com>; <ccielab@groupstudy.com>
Sent: Wednesday, November 27, 2002 11:25 AM
Subject: Re: Wireless Security
> The netscreen does port to port IPSEC encryption... one of their product
> briefs specifies it's use for encrypting traffic over wireless LANs. A
bit
> pricey, though.
> ----- Original Message -----
> From: "Wright, Jeremy" <JA_WRIGHT@admworld.com>
> To: <ccielab@groupstudy.com>
> Sent: Wednesday, November 27, 2002 9:04 AM
> Subject: OT: Wireless Security
>
>
> > we are trying to nail down out wireless security on top of what we
already
> > have...possibly installing some type of vpn client software on the
> wireless
> > client and have a vpn server on the wired side. bluesocket.com has some
> > awesome boxes that supports all of the major encryption technologies and
a
> > lot of sweet features I would like to have but it appears too expensive
> with
> > what we are trying to do. does anyone have any recommendations? all of
our
> > wireless clients are all on the same subnet also. thanks.
> >
> >
> >
> >
> >
> >
> >
> >
> >
> >
> > ************************
> > Jeremy Wright
> > Network Analyst
> > Archer Daniels Midland
> > ja_wright@admworld.com
> > (217)451-4063
> >
> > ************************
This archive was generated by hypermail 2.1.4 : Tue Dec 03 2002 - 07:23:12 GMT-3