I was hoping that somebody could give me some help here...
Here is my setup... I have a wired network of trusted machines and trusted users in one group. I want to add a wireless access point, but this wireless access point should ONLY have access to the internet, and NOT to my network shares (files, printers, etc.).
Here is what I have available:
[*]XP-Pro machine sharing a printer, and serving as a terminal server (using a hack). Also runs Ubuntu.
[*]Win 98SE machine.
[*]Network Storage Box (D-Link DSM-G600)
[*]Linksys BEFSR41 router
[*]Linksys BEFSX41 router (not currently being used)
[*]Linksys WAP11 access point.
I can think of two approaches:
APPROACH ONE
Somehow allow the WAP11 to connect ONLY to the internet. I cannot for the life of me figure out how to do this. I suppose that I could daisy-chain both of my routers together in order to accomplish this, but that seems rather crude.
APPROACH TWO
The other way is to simply harden the wired network. But this presents some problems. My wired network is trusted. Only my wife and myself have access. As a result, we use weak passwords. We do this because my wife would STRONGLY resist having to use a strong password. I can easily beef up sercurity on my NAS box by choosing a strong password. I can set the firewall on the XP machine to allow terminal server access to only the 98 machine. But I am not sure how to restrict the sharing of the printer. So, if I go for approach two, here is the key question:
Using XP-Pro, how can I have administrator accounts with weak passwords, yet only share files and printers using strong passwords?
** Edit **
What I would LIKE to do is to add a new user called "Remote" or something, and give it a strong password. Then, set up printer sharing to work ONLY through the "Remote" name/password. However, that would require mucking around with security policies, which might easily brick my XP install. So, I would need moron-proof step-by-step instructions.
** End Edit **
Older version of Windows used to have an option to have individual passwords on shares, but XP seems to only allow shares using user account username/passwords.
Any ideas?
Here is my setup... I have a wired network of trusted machines and trusted users in one group. I want to add a wireless access point, but this wireless access point should ONLY have access to the internet, and NOT to my network shares (files, printers, etc.).
Here is what I have available:
[*]XP-Pro machine sharing a printer, and serving as a terminal server (using a hack). Also runs Ubuntu.
[*]Win 98SE machine.
[*]Network Storage Box (D-Link DSM-G600)
[*]Linksys BEFSR41 router
[*]Linksys BEFSX41 router (not currently being used)
[*]Linksys WAP11 access point.
I can think of two approaches:
APPROACH ONE
Somehow allow the WAP11 to connect ONLY to the internet. I cannot for the life of me figure out how to do this. I suppose that I could daisy-chain both of my routers together in order to accomplish this, but that seems rather crude.
APPROACH TWO
The other way is to simply harden the wired network. But this presents some problems. My wired network is trusted. Only my wife and myself have access. As a result, we use weak passwords. We do this because my wife would STRONGLY resist having to use a strong password. I can easily beef up sercurity on my NAS box by choosing a strong password. I can set the firewall on the XP machine to allow terminal server access to only the 98 machine. But I am not sure how to restrict the sharing of the printer. So, if I go for approach two, here is the key question:
Using XP-Pro, how can I have administrator accounts with weak passwords, yet only share files and printers using strong passwords?
** Edit **
What I would LIKE to do is to add a new user called "Remote" or something, and give it a strong password. Then, set up printer sharing to work ONLY through the "Remote" name/password. However, that would require mucking around with security policies, which might easily brick my XP install. So, I would need moron-proof step-by-step instructions.
** End Edit **
Older version of Windows used to have an option to have individual passwords on shares, but XP seems to only allow shares using user account username/passwords.
Any ideas?