We would like to connect our offices via wireless point to point links. Please give your thoughts on the security behind this rough plan. This is for a financial institution, so security is top priority. This traffic would not traverse the internet, it would simply come into our layer 2 network. Both locations would be on the same subnet.
WPA2 Security with 256-bit AES encryption
60 character PSK (auto rotating key) (complex randomly generated)
hidden SSID
700 Mhz frequency with proprietary antenna
mac-address filtering with active block list
No DHCP, statically assigned IPs
blocking of all IP addresses coming into HQ from remote office other than those assigned at remote office.
In addition to this, we would be alerted of any failed authentication attempt, shuned mac-address,
Is the security in WPA2 sufficient? We would like to make this implementation without using VPN (layer 3 encryption)?. What else could we do to secure the wireless network without using a VPN? We want to consider any possible attacks including man in the middle attacks and mac address spoofing, etc.
WPA2 Security with 256-bit AES encryption
60 character PSK (auto rotating key) (complex randomly generated)
hidden SSID
700 Mhz frequency with proprietary antenna
mac-address filtering with active block list
No DHCP, statically assigned IPs
blocking of all IP addresses coming into HQ from remote office other than those assigned at remote office.
In addition to this, we would be alerted of any failed authentication attempt, shuned mac-address,
Is the security in WPA2 sufficient? We would like to make this implementation without using VPN (layer 3 encryption)?. What else could we do to secure the wireless network without using a VPN? We want to consider any possible attacks including man in the middle attacks and mac address spoofing, etc.