1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

Security on a Hotel Lan - Spyware Viruses

Discussion in 'Security and Privacy' started by visionof, 2009/01/18.

  1. 2009/01/18
    visionof

    visionof Inactive Thread Starter

    Joined:
    2006/11/12
    Messages:
    778
    Likes Received:
    5
    A general question
    A hotel lan I know has repeated problems where spyware and viruses spread to its business computers ( accounting , general office computers) via its lan
    The general internet connection is shared with the hotel's wifi lan system ( or vice versa)
    Spyware and viruses seem to spread from hotel guest's laptops
    There is an initial Linksys WRT54g router , a switch for the office computers attached to this , and a series of access points in the hotel via access points which are powered over a ethernet line
    Any ideas on how to prevent the spread of these pathogens and parasites ?
    A separate commercial internet line would involve a fair amount of expense
     
    visionof,
    #1
  2. 2009/01/18
    rsinfo

    rsinfo SuperGeek Alumni

    Joined:
    2005/12/25
    Messages:
    4,076
    Likes Received:
    178
    If you can't physically separate the two, do it logically.

    Install separate firewall or router on the switches for both the corporate LAN & wifi for guests & give them different IP series. That way both are isolated from one another & the chance of infection comes down [note it can never be zero - if you are connected to the net, you are vulnerable to all kind of nasties].

    On a related note, what av/spyware tools are running on the corporate LAN ? I think you could have a problem there as well.
     
    rsinfo,
    #2


  3. to hide this advert.

  4. 2009/01/18
    TonyT

    TonyT SuperGeek Staff

    Joined:
    2002/01/18
    Messages:
    9,072
    Likes Received:
    400
    1. disable File & Print Sharing on the corporate computers, or at least disanle Simple File Sharing and setup permissions for any sharing between these comps.

    2. there are trojans and network malware that use known ports, such as Blaster worm & others. Use router port forwarding to forward these known ports to a local IP that no comp on the lan ever uses, such as 192.168.1.250.

    3. What version is the Linksys? If version (look on underside of device). It may be compatable w/ DD-WRT firmware. If so, you can use a Stateful Packet Inspection firewall on it and control the spread of malware.
    supported models: http://www.dd-wrt.com/wiki/index.php/Supported_Devices#Linksys
     
    TonyT,
    #3

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...