I would set it up so only VPN's would get any access. I would setup a DHCP server and a VPN server of some type (freeswan, vtun) on the wirless network . Then anyone that breaks the WEP doesnt get much access at all, not even internet access. The VPN connection could be trusted behind a firewall. The Wandering Dru wrote: > My mom is looking to go the wireless route in the near future for her > laptop. I know a lot of you that use wireless put the AP on the DMZ > of your firewall. > > My question is this, do you pinhole the firewall to allow certain > services(ie, filesharing, printing, etc.) back into the LAN or do you > just limit the AP to internet access? Or is there some other fancy > way to allow these services that I'm not aware of? I'm mostly just > looking for a security/convenience trade-off comparison. > > I have nearly no expereince with wireless and would like to come up > with a plan/cost before I go buying stuff willy-nilly on my mom's bill. > _______________________________________________ TCLUG Mailing List - Minneapolis/St. Paul, Minnesota http://www.mn-linux.org tclug-list at mn-linux.org https://mailman.real-time.com/mailman/listinfo/tclug-list