Re: IPsec wifi link in ad-hoc mode
- From: Sven Vermeulen <firstname.lastname@xxxxxxxxx>
- Date: Thu, 25 Sep 2008 20:29:32 GMT
On Thu, 25 Sep 2008 17:51:28 +0000, Fabrice Delente wrote:
I set up my two laptops to communicate in wifi ad-hoc mode.???
One of the laptops (192.168.1.3) acts as a router and a DNS server for
the other (192.168.1.4).
As I don't want anybody to use my router as a gateway, I must secure it.
I enabled a WEP encryption key between the two of them, but it's hardly
extremely secure.
Why not switch to TKIP/WPA or WPA2? As you're talking about laptops, this
should be doable (it wouldn't if you had an old AP that only supports
WEP).
So I set up an IPsec link between them; it works ok, but I don't know if
it's enough to guarantee that nobody can hijack my connection, using my
gateway to spam/spoof/etc.
As long as the laptop acting as AP only accepts IPSec traffic (more
specifically, authenticated IPSec traffic) you should be quite safe.
However, wireless networks are still quite vulnerable to other types of
attacks (for instance, even with WEP/WPA/WPA2, one can still force
clients to disconnect even without prior knowledge of the keys).
How can I make sure that only 192.168.1.4 connects to 192.168.1.3? Must
I/can I do IP filtering? MAC addresses filtering?
IP filtering and MAC address filtering are just small bandages and are
easy to spoof.
Wkr,
Sven Vermeulen
.
- Follow-Ups:
- Re: IPsec wifi link in ad-hoc mode
- From: Fabrice Delente
- Re: IPsec wifi link in ad-hoc mode
- References:
- IPsec wifi link in ad-hoc mode
- From: Fabrice Delente
- IPsec wifi link in ad-hoc mode
- Prev by Date: IPsec wifi link in ad-hoc mode
- Next by Date: Re: Rate limiting with "tc"?
- Previous by thread: IPsec wifi link in ad-hoc mode
- Next by thread: Re: IPsec wifi link in ad-hoc mode
- Index(es):
Relevant Pages
|
