Possible to secure WEP?


I am using a WEP wireless modem that does not have the ability to do
WPA.
I have my file sharing turned off on the wireless computer (laptop)
and use it in my home only. I have no interest in connecting computers
together to share files, it's strictly a wireless internet
connectivity setup.
Is there any way to secure the data that passes over the wireless so
that it is not available to hackers without buying a different router?
I want the data that I send over the air to be relatively secure and I
want to make sure no one accesses my system via the wireless.
Thanks,
A
Reply to
Ari
Loading thread data ...
You could change the key every 5 minutes? :)
Reply to
David Taylor
Ari hath wroth:
Actually, it is possible to secure a wireless network against both intrusion and sniffing without any encryption of any type. It's called a VPN (virtual private network). The random user connects to the network and is give a totally useless IP address by the DHCP server. The default gateway goes only to the VPN server. Without the complex authorization and authentication keys needed to connect to the VPN, the random user gets nowhere. However, if they successfully authenticate with the VPN, a new additional IP address gets issued, with a gateway that points to the corporate LAN or to the internet. At this point, it looks just like a normal wireless connection, except that everything is encapsulated and encrypted inside the VPN packets.
The catch is that your home network will need some type of local server that can terminate the VPN. As such, it's not really a suitable solution for home networks but might give you some ideas. If I were to propose such a system, I would need a router that can terminate the VPN, such as a Sonicwall, Netgeear or Netscreen VPN router. The wireless could be provided by a simple wireless access point (or wireless router with the router section disabled) or by a VPN router that has built in wireless. I'm too lazy to itemize models. That will work, but with the added hardware and complexity, you may as well just buy a router that does WPA and forget the VPN.
Reply to
Jeff Liebermann
I was thinking more along the lines proxy software on both ends of the wireless, where the user could define the method of encryption or set up a table to change the key every so often automatically, most machines with internet access can easily maintain time within a few seconds, so the keys could be changed on a predefined schedule. This would be software running in the PC, so perhaps this is a weakness.
Reply to
Ari
You could do that, want to buy a client that does that? email me ;)
David.
Reply to
David Taylor
Oh and of course you have changed the parameters, your original question was whether it was possible to secure WEP and now it's not in the picture. :)
Incidentally, the client software that I have in mind would require two licences to be legal and the cost would exceed that of a home router that did WPA.
David.
Reply to
David Taylor
Bzzzt, cheating, that's not using WEP and requires an endpoint ;)
Reply to
David Taylor
You guys are just reinventing WPA - TKIP
Reply to
William P.N. Smith
Nope, what I have will do AES256 client to client, can do wired/wireless or both, already exists, nothing to be (re)invented :)
AP can be left completely open.
David.
Reply to
David Taylor
snip
Use a VPN. Its complex to set up, but secure. Mark McIntyre
Reply to
Mark McIntyre
I'd like to. Any idea how to configure my wireless (or wired) clients connect via PPTP to the PPTP daemon in a Talisman-firmware WRT54G?
I can't get it to respond with the GRE packets...
Reply to
Derek Broughton
I cheat at everything I do. It's no fun being conventional.
Wireless routers with VPN endpoint built in:
formatting link
formatting link
dunno if they're any good, but the FVG318 sure seems cheap at $130/ea US. However, I haven't tried these so I don't know if there are any suprises.
Reply to
Jeff Liebermann
Another option that might be worth considering for such is something like
formatting link
-- Mark
Reply to
Mark T.B. Carroll
He didn't want to buy another router, if he did then he might as well just lump for an ebay jobbie which supports WPA. :)
I guess, he should be getting the impression that the answer is NO to the original question by now ;)
David.
Reply to
David Taylor
Doesn't run on his router, he doesn't want to buy another router.
Project Specification chaps!! :D
Reply to
David Taylor
Will these terminate a VPN that originates with WiFi clients, or just terminate VPNs that originate on the Internet? I've always thought it was the latter...
Reply to
William P.N. Smith
Sure, I just didn't want people getting the idea from the previous article that one had to pay anything near $130 for VPN-on-router.
-- Mark
Reply to
Mark T.B. Carroll
It really shouldn't matter - an IP network is an IP network - but I confess to being stumped trying to make it work on my WRT54G.
Reply to
Derek Broughton
What firmware? IIRC, the Linksys firmware doesn't terminate VPNs...
Reply to
William P.N. Smith

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.