https://community.cisco.com/t5/wireless/wep-security-design-options/m-p/300436#M22741 <HTML><HEAD></HEAD><BODY><P>Well, some things to keep in mind:</P><P></P><P>With static WEP, you cannot guarantee that your transmissions are private. Possible HIPAA issues if patient data is part of the conversation? </P><P></P><P>You also cannot guarantee that all transmissions are from authorized users.</P><P></P><P>If there's any way to put a VPN client on your devices, that might not be a bad idea. If that's out of the question, all you can do is minimize the possible risks by setting up strict firewall rules that block all traffic from your WEP vlan(s) except to the specific servers and specific ports that need to be accessible, and then make sure that your servers are fully patched and configured to be as secure as possible as well.</P></BODY></HTML> Mon, 30 Aug 2004 17:30:48 GMT gamccall 2004-08-30T17:30:48Z https://community.cisco.com/t5/wireless/wep-security-design-options/m-p/300435#M22740 <P>Our wireless network consists of approx 250 AP1200's connected to closet 3500's or 3550's trunked to core 6500's. We use several vlans and ssid's for different applications. All use LEAP and Cisco Secure authentication.</P><P>We have been asked to add 400-600 medical devices that support only WEP. These devices must be able to access a server and workstations on several local subnets.</P><P></P><P>Given the limited security of WEP, please recommend all design considerations that would make this reasonably secure.</P><P>Thank You</P><P>Tom</P> Sun, 04 Jul 2021 16:56:34 GMT https://community.cisco.com/t5/wireless/wep-security-design-options/m-p/300435#M22740 thessick 2021-07-04T16:56:34Z https://community.cisco.com/t5/wireless/wep-security-design-options/m-p/300436#M22741 <HTML><HEAD></HEAD><BODY><P>Well, some things to keep in mind:</P><P></P><P>With static WEP, you cannot guarantee that your transmissions are private. Possible HIPAA issues if patient data is part of the conversation? </P><P></P><P>You also cannot guarantee that all transmissions are from authorized users.</P><P></P><P>If there's any way to put a VPN client on your devices, that might not be a bad idea. If that's out of the question, all you can do is minimize the possible risks by setting up strict firewall rules that block all traffic from your WEP vlan(s) except to the specific servers and specific ports that need to be accessible, and then make sure that your servers are fully patched and configured to be as secure as possible as well.</P></BODY></HTML> Mon, 30 Aug 2004 17:30:48 GMT https://community.cisco.com/t5/wireless/wep-security-design-options/m-p/300436#M22741 gamccall 2004-08-30T17:30:48Z