none
How do I protect my bridged connection?

    Question

  • Hello

    I have a computer with windows server 2008 that is connected to a LAN, from wich comes internet. I also have a wireless router connected directly to it. Because of the LAN configuration (witch can't be changed), I can't use ICS so I made a connection bridge between the LAN and the wireless router so that all laptops get internet. It worked perfectly but my problem is that anyone can connect to it and get internet. I turned on security in the server and created a few users, but this only protects the server, not the internet connection. 

    Is there any policy or any other way I can make this work (preferebly without any extra software)?

    Thank you in advance.
    Friday, August 01, 2008 9:14 AM

Answers

  •  

     

    Hello,

     

    Thank you for posting here.

     

    Please allow me to confirm that my understandings are correct first. As I understand it, the issue is:

     

    You have connected a wireless router to the Windows Server 2008 server for laptops Internet access as follows:

     

    LAN (access Internet)------------Windows Server 2008 server------------wireless router   ) ) ) ) ) ) ) ) ) )    laptops.  

     

    Now you want to secure the wireless router (Internet access) to allow only authorized users to access the Internet via it.

     

     

    If I have misunderstood your concerns please feel free to let me know.

     

     

    Suggestions:

    =========================

    1. If you want to simple secure the Wireless network from anonymous access, you can set wireless encryption such as WEP, WPA-PSK or WPA2. Users must input the correct keys for wireless network access.

     

    Set up a wireless network

    http://www.microsoft.com/windowsxp/using/networking/setup/wireless.mspx

    For a more secure wireless network, you can count on the EAP-TLS or Protected EAP (PEAP) based on the Public key infrastructure.

     

    Wireless Deployment Technology and Component Overview

    http://technet.microsoft.com/en-us/library/bb457015.aspx#EFAA

     

     

    If there's anything else about this issue I can do for you, please do not hesitate to let me know

     

    Monday, August 04, 2008 10:24 AM
    Moderator

All replies

  •  

     

    Hello,

     

    Thank you for posting here.

     

    Please allow me to confirm that my understandings are correct first. As I understand it, the issue is:

     

    You have connected a wireless router to the Windows Server 2008 server for laptops Internet access as follows:

     

    LAN (access Internet)------------Windows Server 2008 server------------wireless router   ) ) ) ) ) ) ) ) ) )    laptops.  

     

    Now you want to secure the wireless router (Internet access) to allow only authorized users to access the Internet via it.

     

     

    If I have misunderstood your concerns please feel free to let me know.

     

     

    Suggestions:

    =========================

    1. If you want to simple secure the Wireless network from anonymous access, you can set wireless encryption such as WEP, WPA-PSK or WPA2. Users must input the correct keys for wireless network access.

     

    Set up a wireless network

    http://www.microsoft.com/windowsxp/using/networking/setup/wireless.mspx

    For a more secure wireless network, you can count on the EAP-TLS or Protected EAP (PEAP) based on the Public key infrastructure.

     

    Wireless Deployment Technology and Component Overview

    http://technet.microsoft.com/en-us/library/bb457015.aspx#EFAA

     

     

    If there's anything else about this issue I can do for you, please do not hesitate to let me know

     

    Monday, August 04, 2008 10:24 AM
    Moderator
  • Hello

    Thank you for your response and your willignes to help.

    My setup is exactly what you understood, but probably I didn't explain myself fully in the matter of security. I don't only want security, but also access control.

    What I need is the ability to create username/password pairs for each user and make sure that no user is logged in more then once at the same time (to prevent more then one ppl to share username/password).

    Thank you.
    Monday, August 04, 2008 3:32 PM
  •  

     

    Hello,

     

    Sorry about the later reply.

     

    In a user authentication wireless network, you can limit concurrent user logins at the same time with the LimitLogin utility.

     

    Limit Login Attempts With LimitLogin

    http://technet.microsoft.com/en-us/magazine/cc160794.aspx

     

    This utility can restrict concurrent user logins of a user account on domain workstations. With that, you can prevent users from sharing username/password to access the wireless network.

     

    Hope it helps.

    Tuesday, August 19, 2008 6:44 AM
    Moderator