NetStumbler.org Forums - View Single Post

jroysdon · 07-12-2002

One thing to keep in mind if you run a wide open AP: If someone is launching attacks from your IPs, and a victim gets your ISP involved, you'll probably lose your account or at least get a stiff warning.

Right now I'm bridging my two APs, but once I get my house cabled and I can uses them as APs, I'm going to run open free access, but stick it behind a second NIC and force proxy access (force redirect of any webpage to my "TOS" which will have proxy settings). The only protocols I'm planning to allow straight out are SSH and ISAKMP/IPSEC so someone can connect securely to their own server or work VPN... no way to launch an attack sourced off my IPs from that.

As nice as it is to share bandwidth, you need to do so responsibly.

07-12-2002	#13 (permalink)
jroysdon Registered Member Join Date: Jul 2002 Location: Modesto, CA Posts: 21	One thing to keep in mind if you run a wide open AP: If someone is launching attacks from your IPs, and a victim gets your ISP involved, you'll probably lose your account or at least get a stiff warning. Right now I'm bridging my two APs, but once I get my house cabled and I can uses them as APs, I'm going to run open free access, but stick it behind a second NIC and force proxy access (force redirect of any webpage to my "TOS" which will have proxy settings). The only protocols I'm planning to allow straight out are SSH and ISAKMP/IPSEC so someone can connect securely to their own server or work VPN... no way to launch an attack sourced off my IPs from that. As nice as it is to share bandwidth, you need to do so responsibly.