Setting Up a new network

mfdc · 06-24-2004

Hi everyone

I am about to set up a wireless network extension onto the exsisting network at my workplace. So I buy a few access points, install them in ideal locations, connect them to the data switch on the exsisting network, fit a few PC's and laptops with wireless cards and away we go yeah ? Is this it? Also, I'm really getting into Wi-Fi and would like someone to point me to a link for eginners who want to get into wardriving. PLEASE NOTE this is for nothing dodgy, its just I want to be able to administer my own wireless network. I know of course of programs like netstumbler, Airsnort etc but whats the best equipment to use them with. I would prefer a portable platform such as a Ipaq or something!

G8tK33per · 06-24-2004

Search the FAQ's for "Networking 101".

fregniacciaro · 06-24-2004

And get this book.

Thorn · 06-24-2004

Quote:

Originally Posted by mfdc

Hi everyone

I am about to set up a wireless network extension onto the exsisting network at my workplace. ...

This is a VERY BAD IDEA, unless you have a clear idea of what you are doing, and this is carefully planned out.

First, get this is authorized by your IT department (and don't be surprised if they say 'No!") Otherwise you're installing what is known as a "rogue." Rogues are very bad in a business situation, as they are essentially backdoors into a business' network.

Secondly, analyze WHY you want to do it. If it will increase productivity because you have workers that roam a lot withing the office, it may be worth it. If it is to minimize costs due to running Cat5 cable, that must be weighted against increased security risks. If it is just for the cool factor, play with it at home.

Quote:

Originally Posted by mfdc

... So I buy a few access points, install them in ideal locations, connect them to the data switch on the exsisting network, fit a few PC's and laptops with wireless cards and away we go yeah ? Is this it?...

No. You need to understand that the WLAN should be seperated from the wired LAN. Hooking the WLAN to the LAN is what leaves that back door wide open. Wide open access may lead to criminals attacking your network.

If you are the owner/manager of the business, I'd suggest hiring someone who understands what you want to do, and why the WLAN should be seperate. Don't do this yourself without a detailed knowledge of wired networking, wirless networkning, and what you attempting.

Quote:

Originally Posted by mfdc

Also, I'm really getting into Wi-Fi and would like someone to point me to a link for eginners who want to get into wardriving. PLEASE NOTE this is for nothing dodgy, its just I want to be able to administer my own wireless network. I know of course of programs like netstumbler, Airsnort etc but whats the best equipment to use them with. I would prefer a portable platform such as a Ipaq or something!

There is nothing dodgy about WarDriving, but truthfully it is a seperate activity from administering a wireless network.

For the best information on WarDriving, click through the links in G8tK33per's signature or mine and buy the books.

mfdc · 06-24-2004

Thankyou very much. Some good advice there, its not that I dont know what I'm doing in IT, its just I've never installed access points before and Wi-Fi in general I've only experienced as a consumer. When some mentioned ask the IT dept I AM the IT dept!!! I also realise that its a severe backdoor and the ideal solution would be to have a seperate wireless network but doing this eases the strain on the switches without forking out for a new one doesnt it??? Certain staff 'hot desk' so it would be advantageous to them, and if I add encryption and set passwords from the default ( most people dont bother ) surley that is reasonable.?????

I do intend to purchase some reference material, and also we have a third party company to physically install the points in good locations to ensure full building coverage, but is it not really as straighforward then as I first thought ? I am aware though of the security risks, were also connected to a european WAN so I suppose it might not be the brightest thing to do!!!!

wrzwaldo · 06-24-2004

Quote:

Originally Posted by mfdc

Thankyou very much. Some good advice there, its not that I dont know what I'm doing in IT, its just I've never installed access points before and Wi-Fi in general I've only experienced as a consumer. When some mentioned ask the IT dept I AM the IT dept!!! I also realise that its a severe backdoor and the ideal solution would be to have a seperate wireless network but doing this eases the strain on the switches without forking out for a new one doesnt it??? Certain staff 'hot desk' so it would be advantageous to them, and if I add encryption and set passwords from the default ( most people dont bother ) surley that is reasonable.?????

I do intend to purchase some reference material, and also we have a third party company to physically install the points in good locations to ensure full building coverage, but is it not really as straighforward then as I first thought ? I am aware though of the security risks, were also connected to a european WAN so I suppose it might not be the brightest thing to do!!!!

That depends on what info you have on your network someone outside your organization may find usefull. Properly implemented and maintained encryption can be a great deterrent but generally only slows the more skilled attackers. My thought is if a human programmed it a human can crack it (depending on resources available). Read, learn, be secure!

Thorn · 06-24-2004

Quote:

Originally Posted by mfdc

Thankyou very much. Some good advice there, its not that I dont know what I'm doing in IT, its just I've never installed access points before and Wi-Fi in general I've only experienced as a consumer. When some mentioned ask the IT dept I AM the IT dept!!! ...

Get some help. Seriously.

Quote:

Originally Posted by mfdc

... I also realise that its a severe backdoor and the ideal solution would be to have a seperate wireless network but doing this eases the strain on the switches without forking out for a new one doesnt it??? ...

I'm not sure what you're asking here as far as straining the switches, but you don't want it to be merely switched. The WLAN should be a seperated from the LAN by a router.

Quote:

Originally Posted by mfdc

... Certain staff 'hot desk' so it would be advantageous to them, and if I add encryption and set passwords from the default ( most people dont bother ) surley that is reasonable.????? ...

Encryption and password changes are the start. From there you should consider advanced wireless encryption, and application-level encryption, was well as SSL and/or VPNs depending on your needs. You many also want to consider adding a wireless IDS, again depending on your needs.

Quote:

Originally Posted by mfdc

I am aware though of the security risks, were also connected to a european WAN so I suppose it might not be the brightest thing to do!!!!

It may or may not. Again, you have to evaluate what the potential benefits are in comparison to the known risks.

mfdc · 06-25-2004

You lot have been great. After reading a couple of weighty tomes on wireless networking and such, and talking to you, we're having a company come in and install several access points on a dedicated router. It will be seperate from the main network and used for hot desking staff and clients that use the two meeting/board rooms. If the application is a success , we'll probably get all the staff on wirless. What happens to the exsisting network I'm not sure yet.

As an arcitectual practice, I'm not sure how much 'outside' people would want our data but I suppose its better to be safe. I did drive around with a friend whose Wi-Fi crazy, and its amazing how many open wirless networks you can find, and just hop on with no form of protection.
I guess that was the wake up call!!!

Anyway, thanks a lot people, appreciate the help.

Thorn · 06-25-2004

Quote:

Originally Posted by mfdc

You lot have been great. After reading a couple of weighty tomes on wireless networking and such, and talking to you, we're having a company come in and install several access points on a dedicated router. It will be seperate from the main network and used for hot desking staff and clients that use the two meeting/board rooms. If the application is a success , we'll probably get all the staff on wirless. What happens to the exsisting network I'm not sure yet.

As an arcitectual practice, I'm not sure how much 'outside' people would want our data but I suppose its better to be safe. I did drive around with a friend whose Wi-Fi crazy, and its amazing how many open wirless networks you can find, and just hop on with no form of protection.
I guess that was the wake up call!!!

Anyway, thanks a lot people, appreciate the help.

Glad we can be of help.

In regards to how many people may or may not want your data, sure, it might not be a problem. But consider this: as an architectural firm, you're probably involved in competitive bids. Would you want all the internal memos regarding the bid for that new shopping center (centre

) going out some unethical competitor? Especially when you found they kept underbidding you by just enough to win every bid? It's things like that you have to worry about.

06-24-2004	#1 (permalink)
mfdc Registered Member Join Date: Jun 2004 Posts: 6	Setting Up a new network Hi everyone I am about to set up a wireless network extension onto the exsisting network at my workplace. So I buy a few access points, install them in ideal locations, connect them to the data switch on the exsisting network, fit a few PC's and laptops with wireless cards and away we go yeah ? Is this it? Also, I'm really getting into Wi-Fi and would like someone to point me to a link for eginners who want to get into wardriving. PLEASE NOTE this is for nothing dodgy, its just I want to be able to administer my own wireless network. I know of course of programs like netstumbler, Airsnort etc but whats the best equipment to use them with. I would prefer a portable platform such as a Ipaq or something!

06-24-2004	#2 (permalink)
G8tK33per Asshole Emeritus Join Date: May 2003 Location: S.E. VA. Posts: 5,913	Search the FAQ's for "Networking 101". __________________ "Benjamin is nobody's friend. If Benjamin were an ice cream flavor, he'd be pralines and dick." Sons of Confederate Veterans

06-24-2004	#3 (permalink)
fregniacciaro Where's my Guinness? Join Date: Jun 2002 Location: Sq'rat on the loose!! Shoot 'im! (not you G8t) Posts: 1,943	And get this book. __________________ When I was your age, television was called books. And this is a special book. It was the book my father used to read to me when I was sick, and I used to read it to your father. And today, I'm gonna read it to you. Rompipalle della Chiesa del WiFi SHAMELESS PLUG! "Are you trying to irritate my colon ? Because if you are, I'll shit all over you in such a way you'll end up in a sanatorium, never to be heard from again." --Dutch

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

06-24-2004	#5 (permalink)
mfdc Registered Member Join Date: Jun 2004 Posts: 6	Thankyou very much. Some good advice there, its not that I dont know what I'm doing in IT, its just I've never installed access points before and Wi-Fi in general I've only experienced as a consumer. When some mentioned ask the IT dept I AM the IT dept!!! I also realise that its a severe backdoor and the ideal solution would be to have a seperate wireless network but doing this eases the strain on the switches without forking out for a new one doesnt it??? Certain staff 'hot desk' so it would be advantageous to them, and if I add encryption and set passwords from the default ( most people dont bother ) surley that is reasonable.????? I do intend to purchase some reference material, and also we have a third party company to physically install the points in good locations to ensure full building coverage, but is it not really as straighforward then as I first thought ? I am aware though of the security risks, were also connected to a european WAN so I suppose it might not be the brightest thing to do!!!!

06-25-2004	#8 (permalink)
mfdc Registered Member Join Date: Jun 2004 Posts: 6	You lot have been great. After reading a couple of weighty tomes on wireless networking and such, and talking to you, we're having a company come in and install several access points on a dedicated router. It will be seperate from the main network and used for hot desking staff and clients that use the two meeting/board rooms. If the application is a success , we'll probably get all the staff on wirless. What happens to the exsisting network I'm not sure yet. As an arcitectual practice, I'm not sure how much 'outside' people would want our data but I suppose its better to be safe. I did drive around with a friend whose Wi-Fi crazy, and its amazing how many open wirless networks you can find, and just hop on with no form of protection. I guess that was the wake up call!!! Anyway, thanks a lot people, appreciate the help.