Security Basics mailing list archives

Home wireless free hotspot

From: "John Lightfoot" <jlightfoot () gmail com>
Date: Fri, 12 Mar 2010 15:10:40 -0500

Hello,

I have a home wireless network that Id like to make available to neighbors
who need to borrow a connection from time to time. Consider it karmic
repayment for the times Ive had to borrow someone elses open connection.
Of course, Id like to do it securely, so Im looking for some advice.

My main network has a wireless router connected to the Internet, with a few
wired connections to my home computers. The main routers wireless network
is protected by WPA, access control via MAC address, etc. My thought is I
would attach a second wireless router (Netgear) to a port off the main
router and leave it unsecured, using a second subnet, and block any routing
between the two subnets, other than straight out to the Internet, but Im
not sure the best way to do that.

So, a few questions:

If I set up a second router with a subnet subservient to my main router,
presumably it has to get an IP address within the address space of the main
network, but how can I limit access to that network to only my Internet
interface?

Would it make more sense for my secure network to be subservient to the main
network, i.e. open up the main network and secure a secondary subnet off it?

I also have a Secure Computing SG 300 Firewall/VPN appliance, could I
configure that help keep the networks separate and my home network secure?
Its got a lot of nice features, but Im not sure it would help make my
configuration more secure.

This may be a very bad idea, so Id also be happy to hear why thats so if
its true.

Thanks for any advice.

John Lightfoot

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase,
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------

Current thread:

Home wireless free hotspot John Lightfoot (Mar 15)
- Re: Home wireless free hotspot Johnathan (Mar 16)
  - Re: Home wireless free hotspot Rick Saffery (Mar 16)
  - Re: Home wireless free hotspot Stephen Mullins (Mar 16)
    - Re[2]: Home wireless free hotspot Adam Pal (Mar 16)
    - Re: Home wireless free hotspot Graham Fox (Mar 16)
    - Re: Home wireless free hotspot Johnathan (Mar 19)
  - Re: Home wireless free hotspot Jay Vlavianos (Mar 16)
    - Re: Home wireless free hotspot Reginald Wheeler (Mar 17)
    - RE: Home wireless free hotspot Jay Vlavianos (Mar 17)
    - RE: Home wireless free hotspot Channel, Lawrence F CTR USAF ACC ACC/A8ZX (Mar 18)

(Thread continues...)