Hi experts,
I've just finished the basics of setting up my old Red Hat 9 box as an access point. It accepts wireless connections, hands out IPs through DHCPd, and allows access to the internet through its wired ethernet card (which connects to a wired router). My goal now is to try and make this AP box as secure as possible.
1. I'd like to configure WPA or if that doesn't work out, 128-bit WEP. I've attempted to setup WEP, it seemed simple enough right? "iwconfig ath0 enc xxxxxxxx" But when I give my windows test laptop the same key, it tries to connect but fails. It just sits there saying "Waiting for network".
2. I'd like to configure the iptables firewall to restrics access to the internal 192.168.1.x network while allowing access to the internet. I'd also like to block access to the access point machine's FTP server (vsftp) from its wireless clients (192.168.100.x), while allowing access from the wired network (192.168.1.x). Any other iptables security ideas are of course welcome.
3. I'd like to be able to filter client connections by MAC address. I've tried the "iwpriv ath0 maccmd x" stuff but I'm not sure if it works for this driver. Also the "iwpriv ath0 hide_ssid 1"... I think it's working but I'm not sure.
4. I want to setup a script to disable the AP during the late night hours and re-enable it in the morning. This isn't my primary concern though and shouldn't be hard to figure out.
5. Any other ideas for security you might have are welcome!
Please try and give step-by-step explanations, as I'm fairly new to linux (but not to windows).
I realize I'm asking a lot in this question, and I'm sorry I haven't been keeping up with answering questions of my own to get back my Premium services, but I'll keep increasing the number of points each day (any hey, maybe work on my Premium services membership too).
Thank you very much for your time!
Sincerely,
-Yohan
Start Free Trial
