WRT54G wireless security recommendations

[cryptonomicon]

*update see bottom*

This should be an easy answer if you run a wireless network-- I have never run one, but I have a new roomate with a laptop so I hooked up this wireless router.
He is using a wireless iBook, and I used my PC through a wired port in the back.

I have no idea what wireless security mode to use and which would be the best choice.

At the moment i just changed the number of DCHP addresses to "2". I also just enabled the wireless MAC filter and added his MAC. Anything else I should do?

--- update

- I tried to use a WPA shared key but his mac doesn't support it!
All his laptop had support for was "WEP, WEP 40/128-bit hex, and WEP 40/128-bit ASCII".
I copy pasted the passphrase I made in the WEP setting in the linksys but when he entered it on his computer, it didn't allow him to authenticate onto the network.

 

[cryptonomicon]

okay, so now that I confirmed it only works with his wireless MAC, which security mode should I choose?

"Security Mode : You may choose from Disable, WEP, WPA Pre-Shared Key, WPA RADIUS, or RADIUS. All devices on your network must use the same security mode in order to communicate."

And will this configure automatically?

 

[okb]

WPA Pre-Shared Key. I think you need an actual RADIUS server to use the last two options. Make it long and jumbled in a text file so you can copy/paste it on each computer (on a floppy if necessary). Get that working and then turn off SSID broadcasting if you want to hide your network a little better.

edit: What do you mean by automatically?

 

[cryptonomicon]

by automatically I meant if i just select the security option on the router page, and it's good to go (no additional configuration on each client?)

hmm i see, i googled a bit:
http://www.microsoft.com/windowsxp/using/networking/expert/bowman_03july28.mspx

 

[JackMDS]

May be this can Help: Wireless Security for the Home User.

:sun:

 

[okb]

Oh. No, it's not automatic in that sense. Your clients need to know what kind of network they're connecting to and what they supersecrethandshake is. Jack's page is a pretty good guide to walk you through it. Same process on each computer, so you do it once and you'll pretty much remember it for the next, it's easy. Don't worry about the NetBEUI thing, IMO it's unnecessary (I used to use that method back in the day, now I can't be bothered) unless you're paranoid or want to squeaze every ounce out of your NIC, though i can't say I've honestly noticed a difference. Good luck.

 

[cryptonomicon]

*update* - I tried to use a WPA shared key but his mac doesn't support it!
All his laptop had support for was "WEP, WEP 40/128-bit hex, and WEP 40/128-bit ASCII".
I copy pasted the passphrase I made in the WEP setting in the linksys but when he entered it on his computer, it didn't allow him to authenticate onto the network.

Do macs suck or something?

 

[BriGy86]

just the thread im looking for

i was wondering my self what the difference was between AES encryption and TKIP encryption, what one is better

ill read those guides and post more questions if necessary
--------------------------
for my router i enabled WPA on the router and WPA-PSK on my laptop, put the same "password" into both and it works just fine

 

[BriGy86]

ok the guide jack provided answered my question on the encryption (looks like AES is better)

but what about WPA vs. WPA-PSK?

i know PSK stands for preshared key but what exactly does that mean? is it better?