Home / Howtos / WLAN Protection / Background
Background
Background
For some time now I have been thinking about buying WLAN equipment to give me and my girlfriend some more flexiblity in accessing our data or the internet. Only security concerns have stopped me from buying it. It is well known that you cannot trust WEP protection. Even if I use WPA the wireless network would still have been on the same subnet as all my other equipment and thats nothing I want.
My idea was to put the WLAN network in a seperate subnet. Unfortunately my Lancom DSL/I-1611 only has two network ports: one for my DSL connection and one for my LAN. I looked for alternatives and found m0n0wall: it supports embedded pc platforms and is a promising replacement for the Lancom router.
The intention was to protect all traffic that flows from the hosts in DMZ Lan to the hosts in LAN subnet. Because I did not want to allow traffic on an IP/Network basis with ip filter I decided to use VPN. This also makes it much easier to connect windows shares and enable transparent access from DMZ to LAN. It also allows the notebook in DMZ to connect to LAN without any reconfiguration.