wireless home network

[gwcrim]

This year I'm undertaking a home building project. One of the things I want to take into consideration is the ability to network computers together. Currently we're using a hardwired set up and two machines. But as the three little kiddies grow up, we're sure to need one computer for each, plus mom & dad.

We use ATT/Comcast broadband for our ISP. Are the currently available wireless network systems good enough to use now? Or should I stick with wires?

 

[Smit-Dog]

Yes. Check out the wireless system available from Linksys here: www.linksys.com

Specifically look at the latest products using the new Wireless-G protocol.

 

[truespode]

Get the 802.11G setup and make sure you use some mac filtering as well.

I only have the 802.11B right now but will be upgrading when I have the funds.

Ivan

 

[linusb]

I have been running an 802.11b setup in my house for well over a year now. It is great. I have read varying complaints about signal strength thoughout a house. I've experienced nothing but good signal strength throughout two different houses, our latest one being brick. Haven't tried it outside yet, but no complaints here. I don't know much about 802.11g...what are the benefits? Faster?

I'm running a Dlink wireless router and Dlink PMCIA wireless NIC.

 

[whyzee]

I want to talk to you two about this subject this weekend. I have had a major PITA trying to get a MS router setup with the new cable modem and ended returning everything. But I do need to get get it done.

 

[truespode]

I prefer the Linksys stuff but there is no good reason to it. I do like that Cisco has bought them out though. Maybe some of Cisco's enhancements will trickle down to the home market eventually.

Ivan

 

[Rich Rohrich]

Originally posted by Truespode
Get the 802.11G setup and make sure you use some mac filtering as well.

Unfortunately 802.11 sends MAC addresses in cleartext even when WEP is enabled. Add to that the fact that most decent wireless NICs provide manual MAC addressing at the driver level.
So spoofing a trusted MAC is simply a matter of running a wireless sniffer app (opensource Ethereal works great) and pulling the first trusted MAC that passes and re-addressing a card to match it.

In short, MAC filtering is even EASIER to get around than the pitfull WEP encryption. Don't count on it keeping anyone but the terminally stupid (hey cool pun) of your wireless LAN.

802.11x is supported in Windows XP and now WIN2000. It's far from perfect but it's a big enough PITA that most wireless hackers will find an easier or more interesting target.

In spite of the issues, WIRELESS ROCKS :yeehaw:

 

[truespode]

Originally posted by Rich Rohrich
In short, MAC filtering is even EASIER to get around than the pitfull WEP encryption. Don't count on it keeping anyone but the terminally stupid (hey cool pun) of your wireless LAN.

MAC filtering is flawed but so is most other security options with 802.11. Especially those available in the home market.

Ivan

 

[Rich Rohrich]

No question the biggest road block to deal with is security. What surprised me in the course of rolling out secure wireless in nuclear plants was the number of IT folks within our company who were willing to accept MAC filtering as a security method. I get the feeling that there are a number misconceptions about how 802.11 works even in the IT industry, which is sad and scary all at the same time.

Once you show them it takes about 3 minutes to get around a MAC filter even from a mile away they get nervous fast :) Those meetings are the FUN ONES. :thumb:

 

[CPT Jack]

I run a wireless linksys router from my cable modem, a wireless bridge (for Xbox Live), and a Netgear pcmcia wireless card. All 802.11b. It works great for the laptop but packet loss is pretty high w/ the bridge. Distance and positioning are definitely a factor.

Does anyone have some good intermediate level info on port configuation for linksys routers? My FTP site is currently blocked (at the firewall?), as well as those peer-to-peer Napster like programs.

 

[gwcrim]

Wow..... some serious jargon going on here. My head's a spinning. :scream: Guess I need to study up on it all. But I am sure glad to see that I don't need to run more wires.

 

[Rich Rohrich]

Crim - The simple explanation:

- 802.11b wireless is very simple to setup especially with the Linksys combo Wireless Access Point/Router/Switch setups that Ivan mentioned. Orinico (now Proxim) has the best (IMO) drivers and cards.

- 802.11G is cool but won't be worth the extra expense for most people for quite some time. The pipe coming from your broadband supplier is in most cases too small to take advantage of the extra bandwidth available. The lower speed 802.11b also has better range in high reflection areas like your home. Make sure you purchase an Access Point with dual antennas. Indoor range is vastly improved with this type of setup, again due to signal reflections.

- using a software firewall (like Black Ice or Zone Alarm) in combination with the built in 802.11b WEP encryption can make your system reasonably secure.

- there is some value in getting a seperate Access Point and Router so the Access Point can be shut off when it isn't being used. By turning it on and off it will tend to be ignored by people scanning your neighborhood looking for wireless nets to joy-ride on. It's a really simple way to make your network less visible, and ultimately less interesting to outsiders.

- a hardware firewall placed between your Access Point and the router is an EXCELLENT way to build a wireless networkthat is truely secure from all but the really determined (and skilled) hackers. Frankly if they have to work that hard they will find a more interesting target than your home system ;)

Good luck.

 

[gwcrim]

By turning it on and off it will tend to be ignored by people scanning your neighborhood looking for wireless nets to joy-ride on.

How is this possible if I live out in the middle of a 3 acre field? These networks wouldn't reach that far would they?

 

[Rich Rohrich]

I can see a wireless network across an open area from approx 2 miles with the mobile setup for my notebook. BUT, if you are in a remote rural area I doubt you'll have much trouble with joy riders in the first place so I wouldn't worry about it. Get a software firewall and turn on the WEP encryption and you should be fine.