Re: Wireless Network Access
- From: "Mike Webb" <Mike_Webb@xxxxxxxxxxxxxxxxx>
- Date: Thu, 3 Jan 2008 08:00:41 -0600
Great idea. Let me think on it; I'll probably give it a try as it's much
easier to implement than my origianl idea.
"MM" <nosend2me@xxxxxxxxxxx> wrote in message
news:fc75d282-78ab-470a-9ee9-d6fadedd8fdd@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
On Jan 2, 6:02 pm, "Claus" <cjo...@xxxxxxxxxxxxx> wrote:
Mike,
I assume you have a 2NIC setup with a router on the SBS WAN site. If
that's
the case I would recommend plugging a small WAP into that router and
secure
it. Guest can be provided with the access key and go out directly to the
internet. I would not recommend any access through your LAN.
--
Claus"Mike Webb" <Mike_W...@xxxxxxxxxxxxxxxxx> wrote in message
news:%230$F83YTIHA.5404@xxxxxxxxxxxxxxxxxxxxxxx
Running SBS 2003 Premium, WSUS, ISA 2004, Exchange, SQL, fixed IP on T1,
802.1q-complaint access points and Layer-3 switch; system has all
applicable patches/updates.
============================
This is an issue I've been working on, on-and-off, for about a year. I
need to provide wireless access to visitors and staff in our 5 building
campus. Fiscal constraints prevent me from setting up a totally separate
network for visitors, so I need another solution. I've have a thought or
two that I'd like to bounce off of the readers to see if I'm headed in
the
right direction.
My sources are a couple white papers from MS: "Configure Wireless
Networking on Windows Small Business Server 2003" [dated October 2006],
and "Deploying Windows Server 2003 Internet Authentication Service (IAS)
with Virtual Local Area Networks (VLANs)" [dated June 2004]. I am also
using this doc as a guide: "Configuring Secure Wireless Network Access
for
Microsoft Windows Small Business Server 2003" by Owen Williams - MVP
[dated 31 October 2006].
My thinking is to use a combination of ISA and AD Groups on my SBS box,
and the Layer-3 access control features on the switch to keep the
visitors
away from the vital parts of my LAN while giving them internet-only
access.
That's it, in a nutshell. I can go in-depth based on your questions.
Many thanks in advance!
--
Mike Webb
Platte River Whooping Crane Maintenance Trust, Inc.
a 501 (c)(3) conservation non-profit organization
Our office hosted a conference with a lot visitors three weeks ago. I
added a small 4 port switch between Modem and Router and stuck an
inexpensive WAP into it (along with the router) added a simple key and
turned on DHCP. During the conference it worked without issue for all
flavors of PC, MAC, Handhelds etc and I didn't have to deal with a
single support issue from the guests and they were all outside of the
LAN. Never really thought about keeping it there since we don't
normally need wireless and I don't like the added security issues.
Maybe I could set-it back up and sell access to the coffee shop nearby
and recover my (less than $75) investment :)
MM
.
- References:
- Wireless Network Access
- From: Mike Webb
- Re: Wireless Network Access
- From: Claus
- Re: Wireless Network Access
- From: MM
- Wireless Network Access
- Prev by Date: Re: Wireless Network Access
- Next by Date: exchange queues poblem
- Previous by thread: Re: Wireless Network Access
- Next by thread: Re: Wireless Network Access
- Index(es):
Relevant Pages
|
