1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

WDS security questions

Discussion in 'HyperWRT Firmware' started by MagicPinball, Apr 25, 2005.

  1. MagicPinball

    MagicPinball Network Guru Member

    Just bought a second WRT54G v3 and setup as a bridge (WDS) to my main router WRT54G v2. Both are flashed with HyperWRT 2.0.

    I understand that I cannot use WAP, correct?

    My first WRT54G has MAC filtering enabled and with a list of MACs. Should I add MAC filtering to my second router?

    How come my second WRT54G does not show in my dhcp list on the first WRT54G?
     
  2. jinjimbob

    jinjimbob Network Guru Member

    MAC filtering doesn't really get you anything. The MAC addresses are out in the open, so its easy for someone to see.
     
  3. bluedog

    bluedog Network Guru Member

    To answer your question, I believe yes. You need to add all the mac addresses to the second one and first one. Make sure you get the routers addresses too

    Hope that helps,
     
  4. MagicPinball

    MagicPinball Network Guru Member

    What do you mean "...The MAC addresses are out in the open..."? This isn't true. I can prevent anyone from accessing my wireless network by allowing only the MACs that I want.

    Do you (or anyone) know something that I don't?
     
  5. auslander

    auslander Network Guru Member

    What they are trying to say is that MAC addresses can be sniffed, and are easy to impersonate.
     
  6. MagicPinball

    MagicPinball Network Guru Member

    I understand that a MAC can be impersonated, but how would someone get the correct MAC to enter my wireless network? Trial and error would take awhile.
     
  7. auslander

    auslander Network Guru Member

    They wouldn't have to resort to trial and error. They just need to listen for a while with a sniffer, and then they'd have a list of existing MACs in the area to try.
     
  8. MagicPinball

    MagicPinball Network Guru Member

    Didn't think of that. I know that 128 wep can be cracked. Can't go to WAP because HyperWRT WDS doesn't support it. I guess there aren't any foolproof methods to keep unwanted people out of your wireless network. Just good locks to keep the honest people out.
     

Share This Page