Secure WLAN with IPsec ?



  • Hi,

    I would like to secure my WLAN with IPsec, My setup:
    pfSense is directly connected to the Internet, it has 2 subnets LAN: 192.168.1.0/24 and DMZ: 192.168.2.0/24.
    On LAN I have a Linksys WRT45G connected as an Access Point (all firewall/DHCP etc disabled), I have WEP disabled (I don't see the point of having WEP while cracking it is so easy, and WAP sucks with linux), I only have MAC filtering ATM, I would like to use IPsec to be on the safe side, but I'm very Newbie at VPN tunneling etc…
    I have looked at http://edain.de/wlan_protection.html This tuto covers having a tunnel for each PC but not in general, isn't there a way to have a General tunnel for all Wifi connected devices that knows that Pre-shared key?? if not then how to do it for each client in pfSense, same as that tuto or is there a better way??

    Thanks



  • I suggest using WPA for your WLAN Clients. It's aes encrypted (like a vpn) and most wireless cards do the encryption in hardware so they won't require cpupower to get throughput.



  • or use the vpn ptpp server on youre pfsense server and the ptpp client on youre pc's


Log in to reply