Linux Firmware For Some 802.11b Access Points

← Back to Stories (view on slashdot.org)

Linux Firmware For Some 802.11b Access Points

Posted by timothy on Friday January 18, 2002 @03:08AM from the now-that-is-a-busybox dept.

drwho writes "This just unveiled at the BAWUG meeting tonight: Linux firmware for Access Points. Check this URL for more info. I haven't tried it yet but it looks great!" The upshot is that certain Access Points can be flashed with a stripped-down Linux system, which makes them more flexible than they'd be under the included firmware. There are even some screenshots of a modded access point booting up.

12 of 151 comments (clear)

2.4.x by tulare · 2002-01-18 03:15 · Score: 5, Interesting

A quick thought - iptables on an access point? That I like. Think of all the possiblities...

--
political_news.c: warning: comparison is always true due to limited range of data type
1. Re:2.4.x by 1010011010 · 2002-01-18 03:55 · Score: 5, Insightful
  
  Another thought:
  
  IPSec on the access point. Screw WEP!
  
  --
  Napster-to-go says "Fill and refill your compatible MP3 player", which is a lie. It's not MP3. It's WMA with DRM.
2. Re:2.4.x by tulare · 2002-01-18 04:02 · Score: 4, Interesting
  Not a bad point, actually. I don't imagine that you could run all the packets through some 500-line list of various netfilter errata. What I had in mind would be more like
  iptables -A INPUT -s --source-mac [mac address of my allowed devices] -j ACCEPT
  
  iptables -P INPUT DROP
  iptables -t nat -A POSTROUTING -o [er, whatever the interface is called] -j MASQUERADE
  Not neccessarily complete or accurate in terms of syntax, but you get the gist. Nothing requiring too much memory usage, but enough to ensure you can limit the use of the access point to trusted devices.
  --
  political_news.c: warning: comparison is always true due to limited range of data type
3. Re:2.4.x by louissypher · 2002-01-18 04:16 · Score: 4, Insightful
  
  With the embedded processor that those access points have (16.4 BogoMips), forget IPSEC.
  
  --
  www.bleepyou.com
firewall replacement by 47PHA60 · 2002-01-18 03:21 · Score: 5, Insightful

One thing that irks me to no end is that my home firewall is a noisy old Pentium 200 with disks and fans. I've been looking into embedded systems to do this, and the current access points I've seen are not effective firewalls at all; no logging, and they don't _reall_ block everything, even though they say they do. A small Linux kernel which does not need to be built up with support for PCI, two ethernet cards, disks and multiple filesystems might just do the trick.
Slogan by Hougaard · 2002-01-18 03:24 · Score: 5, Funny

I Like their slogan:

"All your base stations are belong to us"

.. Sense of humor :)
Mirror of Screenshots by NewbieSpaz · 2002-01-18 03:25 · Score: 4, Informative

Here: http://kevindustries.com/screens.html

--
------
Random, useless fact: I type in startx entirely with my left hand.
Hmm, security? by RC514 · 2002-01-18 03:40 · Score: 5, Interesting

After the initial install with the SRAM card the access point can be upgraded over the network.

Does that mean the vendors of access points do not write protect the operating system on the hardware level? Or are future modifications only possible when the jumper remains in the upgrade position? If the jumper becomes meaningless after the upgrade, its implementation is a serious design flaw and an undetected rooting waiting to happen.

--
Hardware by Cybersonic · 2002-01-18 03:47 · Score: 4, Informative

in case your curious, this works on access points using the Eumitcom WL11000SA-N boards...
( ref: http://opensource.instant802.com/hardware.php )
Tested: US Robotics 2450, SMC EZconnect 2652W

Time to buy an SMC for me :)

--
Cybie! aka Ralph Bonnell
Re:How are they doing bridging? by irregular_hero · 2002-01-18 04:08 · Score: 4, Informative

The "bridging code" is standard Linux bridging. I think what you're referring to is the "Host AP" or "Infrastructure" mode of the wireless card inside the AP.

If the card is based on the Prism chipset, there's already a Linux driver that will operate the card in Host AP mode by implementing some of the functions normally present in the access point's Infrastructure mode in user space. Other things are handled by the card.

For example, the card itself will handle time-dependent functions like beacon-sending. And it will handle hardware-dependent functions like WEP encrypt-decrypt (optionally). But the association table and all the rest of the functions are part of user space.

Incidentally, you don't need the Host AP driver for your Wireless card to operate a bridged network. Oddly enough, the bridge code in the Linux kernel functions just fine with a wireless card in Peer-to-Peer mode -- it is, after all, just another interface to the kernel itself. What you won't get in peer to peer is sophisticated association handling -- that means that the signal strength meter in your wireless tools won't work exactly right in most commercial packages.
You can build an AP on a PC: by burntfungus · 2002-01-18 04:28 · Score: 4, Informative

You can build a Linux Access point on a PC or laptop, pehaps even a PDA:

http://people.ssh.com/jkm/Prism2/

Bridging software: http://bridge.sourceforge.net

--
http://wireless.pasadena.net
Use serial port for modem backup? by Fencepost · 2002-01-18 04:35 · Score: 4, Interesting

One of the features that I like about the MultiTech router/switch I have is that a modem can be hung off the serial port and used as a backup connection. What would it take to do the same with this, and is there a getty out there that would support operating both ways (i.e. use a modem for dialout, but if a terminal was connected instead then allow login).

--
fencepost
just a little off