FiOS/networking question
Dan Jenkins
dan at rastech.com
Sun Nov 19 20:19:53 EST 2006
jsf wrote:
> This is getting better all the time..
>
> Ok, i think i figured out, on the D-Link interface, how to
> port-forward ports 80 and 22, so, from outside my network (tested it
> from grace.speakeasy.net) i can ssh to and open a web page on the
> SuSE box on my internal network!
>
> I'm still trying to figure out how to lock down the Linksys WRT54G...
> can't seem to figure out how to bring up its webpage ...oh wait... i
> see... DHCP is already turned off there...
>
> If I turn off DHCP on the D-Link.. so... I guess I should create
> static DHCP addresses for our machines and turn off DHCP on the
> D-Link... that's the only way to 'secure' the Linksys WRT54G.. right?
>
(By the way, this was posted off-group, but I posted it back to GNHLUG.)
You can't have more than one DHCP on a network. That's the reason to make
sure it is not running on the Linksys, not to secure it.Leave DHCP
running on
the DLink. There is no risk with that. DHCP makes life easier.
What you want to do on the Linksys to secure it would be to configure
encryption (for example, WEP, WPA, etc.) or, at the least, to restrict
access to the MAC addresses of your wireless devices, or both.
In the Linksys, that is under the Wireless section. You can enter the MAC
addresses under Filter Access, or something similar. Setting up WEP,
WPA, etc.
requires changes to each of your wireless devices and that depends on
each of
them as to what they support and how to configure it varies.
Some folk also like to disable broadcasting the SSID. It does prevent
casual
detection of your wireless network, but the other restrictions provide
better
security. You can do all of them (disable SSID broadcast, restrict to MAC
addresses and add encryption) for best security. Do change the default
password of the Linksys, if you haven't already.
--
Dan Jenkins (dan at rastech.com)
Rastech Inc., Bedford, NH, USA --- 1-603-206-9951
*** Technical Support Excellence for over a Quarter Century
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.gnhlug.org/mailman/private/gnhlug-discuss/attachments/20061119/c979a33d/attachment.html
More information about the gnhlug-discuss
mailing list