We have disabled WPA1 on all of our WLANs except for one. This one WLAN is for wireless printers only, and we have a bunch of old wireless printers that don't appear to have WPA2 as a security option.
We were thinking of possibly creating an ACL on the switch level that would only allow internal endpoints (*like PCs and Servers) to be allowed to talk to this Vlan.
Also, this SSID is a hidden network, not broadcasting its SSID.
Would doing something like that be helpful, or adding MAC Filtering, or anything along those lines..? Or is there no way to safely secure a wireless network that uses WPA1?
Thanks in Advance,
yes agree some clients not compatable with latest trends and they need to be part of network.
if you know all the list MAC address, then add them to list of MAC filter to protect more granular.
below guide help to setup one for the legacy printers and medical devices.
Thanks for the reply Scott.
Yes, I agree. Someone can easily see an SSID that's not broadcasting with simple tools/Apps you can download, like Wi-Fi Analyzer.
I also understand that Mac Filtering can also be somewhat misleading to be considered a secure feature, in that someone could easily spoof a Mac Address of someone that's already connected...
Seems that the only decent option is to apply an ACL to that Vlan.