[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 652
  • Last Modified:

Network security with shared wifi

The people next door have just asked if they can use my internet access via wifi for a few months. Leaving the legal issue of my responsibility for their internet usage aside, my biggest concern is them being able to access data on my network. I have a Windows 2003 server, with hopefully enough security to keep casual hackers away, but I don't know about the intranet side. I've also got various XP/Vista machines connected, some via AD logons, and some from local workgroups. The wifi cnnnection uses WPA/PSK on a Netgear DG824N router.

Other than removing Everyone permissions from my network shares, what would I need to do to lock down access from the inside?  Presumably this is a fairly common requirement from hotels/coffee shops with open wifi access.
0
Proactivation
Asked:
Proactivation
  • 3
  • 2
1 Solution
 
lamaslanyCommented:
"Presumably this is a fairly common requirement from hotels/coffee shops with open wifi access."

Not really - in such cases the shared wireless network typically resides on a seperate network segment with wireless isolation to prevent wireless devices connecting to each other.
0
 
lamaslanyCommented:
PS:  Can you confirm the model of your router - there seems to be a DG824M and a DG824N
0
 
Rob WilliamsCommented:
If you are running ISA, I assume all of your clients are 'behind' the ISA server. Consider adding a new wireless access router for "the people next door" on the public/WAN side of your ISA. This way they can make use of your connection, only need to spend $50 for a router, and your network is as safe from them as it is from me.
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
ProactivationAuthor Commented:
lamaslany:
Sorry, typo - it's a Netgear DG834N

RobWill:
No ISA, just a Win2k3 that I've just reinstalled, so it's fairly out-of-the-box, with some ports and default system usernames changed (admin, guest, etc).

I've got some other routers kicking around (Netgear DM602, WGT624, Thomson TG585v7). Any way of hooking them up without ISA, any cheap/free alternatives, or should I install the 180-day eval?
0
 
Rob WilliamsCommented:
>>"No ISA"
Sorry I assumed that as you have placed the question in the ISA (MS Internet Security & Accel) topic area.  :-)

You can accomplish the same with 2 or 3 routers.

Option 1             Internet
                               |
                          router 1
                               |
              router 2 ------router 3
               LAN 2               LAN 3

Option 2             Internet
                               |
                          router 1
                               |
              router 2 -----------|
               LAN 2               LAN 3

Option 1 both LANs are totaly isollated
Option 2 LAN 2 is isolated form LAN 3 but LAN 2 clients can see LAN 3 (next door)
0
 
Rob WilliamsCommented:
Thanks Proactivation.
Cheers !
--Rob
0

Featured Post

 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now