Menu
News
All News
Dungeons & Dragons
Level Up: Advanced 5th Edition
Pathfinder
Starfinder
Warhammer
2d20 System
Year Zero Engine
Industry News
Reviews
Dragon Reflections
White Dwarf Reflections
Columns
Weekly Digests
Weekly News Digest
Freebies, Sales & Bundles
RPG Print News
RPG Crowdfunding News
Game Content
ENterplanetary DimENsions
Mythological Figures
Opinion
Worlds of Design
Peregrine's Nest
RPG Evolution
Other Columns
From the Freelancing Frontline
Monster ENcyclopedia
WotC/TSR Alumni Look Back
4 Hours w/RSD (Ryan Dancey)
The Road to 3E (Jonathan Tweet)
Greenwood's Realms (Ed Greenwood)
Drawmij's TSR (Jim Ward)
Community
Forums & Topics
Forum List
Latest Posts
Forum list
*Dungeons & Dragons
Level Up: Advanced 5th Edition
D&D Older Editions, OSR, & D&D Variants
*TTRPGs General
*Pathfinder & Starfinder
EN Publishing
*Geek Talk & Media
Search forums
Chat/Discord
Resources
Wiki
Pages
Latest activity
Media
New media
New comments
Search media
Downloads
Latest reviews
Search resources
EN Publishing
Store
EN5ider
Adventures in ZEITGEIST
Awfully Cheerful Engine
What's OLD is NEW
Judge Dredd & The Worlds Of 2000AD
War of the Burning Sky
Level Up: Advanced 5E
Events & Releases
Upcoming Events
Private Events
Featured Events
Socials!
EN Publishing
Twitter
BlueSky
Facebook
Instagram
EN World
BlueSky
YouTube
Facebook
Twitter
Twitch
Podcast
Features
Top 5 RPGs Compiled Charts 2004-Present
Adventure Game Industry Market Research Summary (RPGs) V1.0
Ryan Dancey: Acquiring TSR
Q&A With Gary Gygax
D&D Rules FAQs
TSR, WotC, & Paizo: A Comparative History
D&D Pronunciation Guide
Million Dollar TTRPG Kickstarters
Tabletop RPG Podcast Hall of Fame
Eric Noah's Unofficial D&D 3rd Edition News
D&D in the Mainstream
D&D & RPG History
About Morrus
Log in
Register
What's new
Search
Search
Search titles only
By:
Forums & Topics
Forum List
Latest Posts
Forum list
*Dungeons & Dragons
Level Up: Advanced 5th Edition
D&D Older Editions, OSR, & D&D Variants
*TTRPGs General
*Pathfinder & Starfinder
EN Publishing
*Geek Talk & Media
Search forums
Chat/Discord
Menu
Log in
Register
Install the app
Install
Upgrade your account to a Community Supporter account and remove most of the site ads.
Community
General Tabletop Discussion
*Geek Talk & Media
Tell me about wireless routers
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="andargor" data-source="post: 2466440" data-attributes="member: 7231"><p>I haven't read every single post, so I apologize if I rehash some points that have been made.</p><p></p><p>I was tired of cabling lying on the floor at my home, and wanted my 2 WinXP PCs and laptop to be able to move around the house in case I need to rearrange things. I also have 2 Linux servers, one for development/web server, and one is a firewall/mail server/DNS.</p><p></p><p>Initially, I was loathe to implement wireless, for some of the reasons mentionned above. I was concerned about security, especially since it's cabling replacement behind my firewall. But my job functions required me to go to a wireless security symposium that explored in-depth the latest technologies in the field. I was much reassured.</p><p></p><p>So much so, that I have replaced all my "inside" cabling with wireless. Of course, the choice of security measures is important. I'll get to that in a second.</p><p></p><p>First, I bought a D-Link DI-624. It's an OK 802.11g box, but not only do you have to reboot it once and a while, but it actually reboots itself periodically. So stability is an issue. I was annoyed at that and decided to buy a Linksys WRT54GS. Since I'm a Linux junkie, I enjoyed the fact that I could replace Linksys' software with OpenWRT (openwrt.org). This box has been the most stable, never rebooting ever since I've installed it. And it allows me to secure my network even further.</p><p></p><p>Now, the security measures. You have three main choices:</p><p></p><ul> <li data-xf-list-type="ul"> <strong>WEP:</strong> I do not recommend this, neither does the industry. It has been hacked since 2001, and whatever the key length (128 or 256 bits) it is ridiculously easy to penetrate with existing tools. If this is your only choice, stay with cables.<br /> </li> <li data-xf-list-type="ul"> <strong>WPA:</strong> Stands for Wireless Protected Access. I won't go into the gruesome technical details, but it implements a stronger level of integrity checking with dynamic encryption rekeying. There are rumors that this may have been hacked, but no confirmed reports. It is probable that partial penetration was possible during the alleged hacks, but doubtful that the access lasted long enough for any significant data retrieval. Typically, WPA uses a passphrase to allow access to the network (WPA-PSK). With a suitably secure passphrase (long, with alphanumerics), a normal home should be secure enough.<br /> </li> <li data-xf-list-type="ul"> <strong>WPA2:</strong> The updated version of WPA, it utilises a more advanced encryption algorithm and tighter integrity checking (AES-CCMP). We are talking the military/government standard here, which no one is even rumored to have successfully hacked. You have the option of either using a passphrase like WPA, or using a RADIUS server for authentication (WPA2-EAP). There is a slew of authentication methods with RADIUS: client-side signed certificates (EAP/TLS), NT Domain sign-on (EAP/TTLS), MS-CHAPv2, hardware tokens like SecurID, etc.</li> </ul><p></p><p>Most modern wireless access points/routers support WPA2, so that should be your choice. As for authentication, personally I wanted to use RADIUS, and hence why I went with the Linksys WRT54GS with OpenWRT: I installed freeRADIUS right on the box itself. Sure I could have installed freeRADIUS on the Linux servers, but this way I can still log in if my Linux box is down. (I actually did install it on a Linux box as well, and use it as a backup).</p><p></p><p>I use client-side certificates, so WPA2-EAP/TLS. My clients check the root certificate on the Linksys, so they don't connect to "rogue" access points that would try to emulate mine. If you are familiar with PGP, it is a similar signature checking process.</p><p></p><p>My setup is on the "paranoid" level of the scale, but it does require technical knowledge. If you have this knowledge, or someone who does and is willing to help, then I can see no reason for you not to go to wireless.</p><p></p><p>HTH,</p><p></p><p>Andargor</p></blockquote><p></p>
[QUOTE="andargor, post: 2466440, member: 7231"] I haven't read every single post, so I apologize if I rehash some points that have been made. I was tired of cabling lying on the floor at my home, and wanted my 2 WinXP PCs and laptop to be able to move around the house in case I need to rearrange things. I also have 2 Linux servers, one for development/web server, and one is a firewall/mail server/DNS. Initially, I was loathe to implement wireless, for some of the reasons mentionned above. I was concerned about security, especially since it's cabling replacement behind my firewall. But my job functions required me to go to a wireless security symposium that explored in-depth the latest technologies in the field. I was much reassured. So much so, that I have replaced all my "inside" cabling with wireless. Of course, the choice of security measures is important. I'll get to that in a second. First, I bought a D-Link DI-624. It's an OK 802.11g box, but not only do you have to reboot it once and a while, but it actually reboots itself periodically. So stability is an issue. I was annoyed at that and decided to buy a Linksys WRT54GS. Since I'm a Linux junkie, I enjoyed the fact that I could replace Linksys' software with OpenWRT (openwrt.org). This box has been the most stable, never rebooting ever since I've installed it. And it allows me to secure my network even further. Now, the security measures. You have three main choices: [list] [*] [b]WEP:[/b] I do not recommend this, neither does the industry. It has been hacked since 2001, and whatever the key length (128 or 256 bits) it is ridiculously easy to penetrate with existing tools. If this is your only choice, stay with cables. [*] [b]WPA:[/b] Stands for Wireless Protected Access. I won't go into the gruesome technical details, but it implements a stronger level of integrity checking with dynamic encryption rekeying. There are rumors that this may have been hacked, but no confirmed reports. It is probable that partial penetration was possible during the alleged hacks, but doubtful that the access lasted long enough for any significant data retrieval. Typically, WPA uses a passphrase to allow access to the network (WPA-PSK). With a suitably secure passphrase (long, with alphanumerics), a normal home should be secure enough. [*] [b]WPA2:[/b] The updated version of WPA, it utilises a more advanced encryption algorithm and tighter integrity checking (AES-CCMP). We are talking the military/government standard here, which no one is even rumored to have successfully hacked. You have the option of either using a passphrase like WPA, or using a RADIUS server for authentication (WPA2-EAP). There is a slew of authentication methods with RADIUS: client-side signed certificates (EAP/TLS), NT Domain sign-on (EAP/TTLS), MS-CHAPv2, hardware tokens like SecurID, etc. [/list] Most modern wireless access points/routers support WPA2, so that should be your choice. As for authentication, personally I wanted to use RADIUS, and hence why I went with the Linksys WRT54GS with OpenWRT: I installed freeRADIUS right on the box itself. Sure I could have installed freeRADIUS on the Linux servers, but this way I can still log in if my Linux box is down. (I actually did install it on a Linux box as well, and use it as a backup). I use client-side certificates, so WPA2-EAP/TLS. My clients check the root certificate on the Linksys, so they don't connect to "rogue" access points that would try to emulate mine. If you are familiar with PGP, it is a similar signature checking process. My setup is on the "paranoid" level of the scale, but it does require technical knowledge. If you have this knowledge, or someone who does and is willing to help, then I can see no reason for you not to go to wireless. HTH, Andargor [/QUOTE]
Insert quotes…
Verification
Post reply
Community
General Tabletop Discussion
*Geek Talk & Media
Tell me about wireless routers
Top
