Do you have a question? Post it now! No Registration Necessary. Now with pictures!
August 16, 2007, 3:04 pm
rate this thread
Keeping the wlan in the DMZ has a significant pro in that your
firewall will prevent WLAN traffic (generally less trusted due to the
inability to physically control access with certainty) from hitting
your wired LAN. the con is that if you need wireless clients to
access wired LAN resources, then you need to implement a VPN (which
isn't that hard these days with openvpn available as a module for 3rd
party firmware available for low cost routers).
The concern about wireless users protection from internet threats can
be mitigated if a wireless router/firewall is chosen instead of just
Details vary - are we talking about a home network or something a bit
more heavy duty?
Re: AP where on network
If the firewall permits it, you can use Firewall Authentication via
HTTP/HTTPS instead of the VPN - using a browser to auth with the
firewall and then use a rule to allow AUTH>LAN from DMZ. This means that
you don't have to do a VPN, so you get better speed/performance.
Leythos - firstname.lastname@example.org (remove 999 to email me)
Fight exposing kids to porn, complain about sites like PCBUTTS1.COM that
create filth and put it on the web for any kid to see: Just take a look
at some of the FILTH he's created and put on his website:
http://forums.speedguide.net/archive/index.php/t-223485.html all exposed
to children (the link I've include does not directly display his filth).
You can find the same information by googling for 'PCBUTTS1' and
'exposed to kids'.