• cabling news
  Newsletter Industry News Our Site News
• help
  Home Cabling Guide Cabling FAQ Free Helpdesk Forums Learn Cabling
• resources
  Color Codes Pin Layouts Links E-books Bookstore Online Tools Downloads
• this site
  Home Page Contact us Advertise Here Link to us
• this page
  Bookmark It! Print
• +

Ethernet LAN Security of multiple VLANs and WiFi

Bookmark this page:   Yahoo!   Google   Windows Live   del.icio.us   digg   Netscape

Subject Author Date Security of multiple VLANs and WiFi Anthony Chavez 03-03-05

Posted by Anthony Chavez on March 3, 2005, 5:53 pm Please log in for more thread options -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 In the following configuration, [x]-----O-------O switch WAP station the switch supports multiple VLANs per segment and the Wireless Access Point is an Apple Airport Extreme. At first glance, my impression is that the WAP is not capable of routing, but I have not confirmed this. It seems to me that I could obtain better security if I were to place the WAP in one VLAN and the station in another (which grabs its IP address from a DHCP server behind the switch). My reasoning is that I could place the WAP inside a firewalled VLAN and allow management access only to that VLAN. I'm not terribly familiar with the way WAPs work (they're essentially bridges, correct?), so I'm curious to know if such a configuration would actually work, if indeed the WAP is *not* a router. Moreover, I have to wonder if this design would actually result in the security I'm after. Couldn't an attacker simply sniff the segment between the WAP and the station(s), including traffic on the opposite VLAN to which they are connected? - -- Anthony Chavez http://anthonychavez.org/ mailto:acc@anthonychavez.org jabber:acc@jabber.anthonychavez.org -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (Darwin) iD8DBQFCJ4dzbZTbIaRBRXERAr2SAJ42rQmh/bXgfYCnVRRyWWw81OjDngCeMIrm zxSQ63lh2BIUBvchC7jVej4= =CkEy -----END PGP SIGNATURE-----

Similar Threads	Posted
Security of multiple VLANs and WiFi	March 3, 2005, 5:53 pm
Multiple VLANs on Single NIC	January 19, 2006, 8:06 am
multiple vlans at a single port	June 23, 2008, 1:13 am
Ethernet security	February 22, 2006, 6:25 am
"Wireless Ethernet Bridge" and security ?	April 9, 2005, 9:31 pm
Audit your network for security vulnerabilities	April 17, 2008, 2:38 am
Network security surveillance software....	November 21, 2008, 3:02 am
802.3ad and multiple mac addresses	June 4, 2007, 2:25 pm
Why multiple filtering databases in 802.1q?	December 16, 2004, 3:23 pm
Multiple T1 transmissions on Cat5E	August 8, 2005, 9:45 am
Systems can be 1-3 kms apart; 1 or multiple LANs?	April 2, 2007, 7:16 am
Multiple PHYs to a single MAC	April 11, 2007, 10:30 am
multiple MACs on a port	April 27, 2007, 7:53 am
multiple connections between 2 switches	October 30, 2007, 5:45 am
Multiplexing Multiple Ethernets on Fiber	September 1, 2004, 4:48 pm

Contact Us | Privacy Policy