Here is the issue:
I own a 2 story home, and I want to connect two wired LANs together. I also need to maintain an access point strong enough for my lappy with wifi. I will eventually tie in a third wired LAN.
Can?t run cat as I might be selling this home soon, and don?t have the time (wife, 3 kids, 2 dogs.. etc etc etc) to really do the project right.
Current solution:
2 belkin g routers working as bridged (WDS) access points for the two wired networks. They are running WPA between the two also with other typical security measures (ssid off, mac filtering... yada yada yada).
My issue: remote bandwidth...
I just had FIOS installed and my remote network using the belkin WDS bridge is capping out at ~5-6 mbps (I know boo hoo me) with some minor packet loss/connection issues. The entry LAN is getting the full 15mb down, and my wifi lappy is getting just about full bandwidth also(pulled in a suse DVD iso at 1.6MB per sec today. woot).
I figure now that my internet connection is larger then the bandwidth of my WDS connection, its time to upgrade the routers/AP's. NONE of the new mimo AP supports WPA while in bridging mode. NOT ONE. They all (except linksys) support WDS, but just not WPA while using WDS/Bridging. The only choice they provide is to use WEP 128 bit. While I don?t think anyone out here in rural Delaware is all that interested in my content. My wifi bridge is linking my internal networks, and the UNIX security professional in me can?t seem to get past WEP's crackability. Its now to the point with enough point and click tools that a script kiddie can crack it.
Solutions:
So how do I go about securing this bridge if I do go with the new mimo AP's (best choice so far is the trendnet tew-610apb). I was thinking of buying a couple $50 VPN firewalls such as:
Linksys BEFSX41
D-Link's DI-808HV
NetGear FVS318 - prob overkill do need that may vpn tunnels along with vpn endpoint
NetGear FVS114 - $46 online
And putting them on the wired side of the connections, so if they are hacked all you get to is the front of a VPN firewall. My issue here is the throughput of the VPN firewalls. The last thing I want to due is have the bridge throttled down to the same 5-6mbps by the VPN's, especially after spending a couple hundred bucks on mimo gear.
All ideas are appreciated.
I own a 2 story home, and I want to connect two wired LANs together. I also need to maintain an access point strong enough for my lappy with wifi. I will eventually tie in a third wired LAN.
Can?t run cat as I might be selling this home soon, and don?t have the time (wife, 3 kids, 2 dogs.. etc etc etc) to really do the project right.
Current solution:
2 belkin g routers working as bridged (WDS) access points for the two wired networks. They are running WPA between the two also with other typical security measures (ssid off, mac filtering... yada yada yada).
My issue: remote bandwidth...
I just had FIOS installed and my remote network using the belkin WDS bridge is capping out at ~5-6 mbps (I know boo hoo me) with some minor packet loss/connection issues. The entry LAN is getting the full 15mb down, and my wifi lappy is getting just about full bandwidth also(pulled in a suse DVD iso at 1.6MB per sec today. woot).
I figure now that my internet connection is larger then the bandwidth of my WDS connection, its time to upgrade the routers/AP's. NONE of the new mimo AP supports WPA while in bridging mode. NOT ONE. They all (except linksys) support WDS, but just not WPA while using WDS/Bridging. The only choice they provide is to use WEP 128 bit. While I don?t think anyone out here in rural Delaware is all that interested in my content. My wifi bridge is linking my internal networks, and the UNIX security professional in me can?t seem to get past WEP's crackability. Its now to the point with enough point and click tools that a script kiddie can crack it.
Solutions:
So how do I go about securing this bridge if I do go with the new mimo AP's (best choice so far is the trendnet tew-610apb). I was thinking of buying a couple $50 VPN firewalls such as:
Linksys BEFSX41
D-Link's DI-808HV
NetGear FVS318 - prob overkill do need that may vpn tunnels along with vpn endpoint
NetGear FVS114 - $46 online
And putting them on the wired side of the connections, so if they are hacked all you get to is the front of a VPN firewall. My issue here is the throughput of the VPN firewalls. The last thing I want to due is have the bridge throttled down to the same 5-6mbps by the VPN's, especially after spending a couple hundred bucks on mimo gear.
All ideas are appreciated.