[Tomato] Wireless Filter Block list not enforced in Linksys

[Tomato] Wireless Filter Block list not enforced in Linksys http://www.dslreports.com/forum/r22593043 en Sun, 22 Nov 2009 18:56:21 EDT Sun, 22 Nov 2009 18:56:21 EDT Re: [Tomato] Wireless Filter Block list not enforced http://www.dslreports.com/forum/remark,22597046 Lalaland : Hi upb I have a black list setup on my tomato box in the wireless filter section for convenience as I've just been adding them in as I see them. I've just noticed that I'd never enabled WEP on the other router, I should have checked this right off the bat and it seems to have solved my issues. Very silly of me but I somehow got it into my head that the WDS setup would mean that the security I set up on tomato would magically be respected by the other router too. Since I've enabled WEP on the other box they've gone away.

Looks like I've fallen victim to failing to use Occham's Razor (security edition), when the explanation is widespread skilled script kiddies or a security failure it's probably the latter. Thanks for your assistance upb!]]> http://www.dslreports.com/forum/remark,22597046 Tue, 23 Jun 2009 13:21:36 EDT Re: [Tomato] Wireless Filter Block list not enforced http://www.dslreports.com/forum/remark,22595608 upb :

said by Lalaland

:

Does it only apply to the DHCP service and they're using fixed IPs?
If so is there another way to block them?
Is it just a time sensitive thing (ie that service starts after they get given an IP)?

If they're cracking your WEP password, you must have some serious script kiddies nearby. In any case, there is another place you can block them in Tomato, and it might be worth a try.

Under the "Access Restriction" menu, you can set up a rule which by default blocks all computers from internet access, except those whose MAC addresses you have listed there. You choose "all day", "every day", "normal access restriction", "all except", and "block all internet access". You then list the MAC addresses of all machines allowed to use the Internet. Do not list IP addresses, even though it's acceptable.

This blocks anyone who manages to associate with your wireless access point from reaching the net, unless they can figure out the MAC address of one of your computers and spoof it. You should be able to at least discourage them from hanging around.

That, of course, still leaves them connected to your LAN — not a good thing — and should be used as a fallback defense. Have you used "Basic -> Wireless Filter" to set up allowed MAC addresses? That's the first place you really ought to go if you do MAC filtering (which provides only weak protection).

I'd try to figure out how to eventually move to WPA or WPA2, because that's the only really good way to have a secure WAP.

Good luck.]]> http://www.dslreports.com/forum/remark,22595608 Tue, 23 Jun 2009 09:10:44 EDT [Tomato] Wireless Filter Block list not enforced http://www.dslreports.com/forum/remark,22593043 Lalaland : Hi I'm running Tomato 1.25 on my 54GL as my main AP and using a WDS network so I can bridge my pc using an old wireless router as a glorified wireless card (too much heartbreak with wireless usb adaptors and PCI cards). Of course this limits me to WEP encryption and some of my neighbours have been hopping on, I've been adding them to the wireless filter list but they still sometimes get connected.

Does it only apply to the DHCP service and they're using fixed IPs?
If so is there another way to block them?
Is it just a time sensitive thing (ie that service starts after they get given an IP)?

Any help greatly appreciated]]> http://www.dslreports.com/forum/remark,22593043 Mon, 22 Jun 2009 18:40:52 EDT