Broadband Internet Speed test

NetGear announced yesterday the release of a new wireless router, a notebook adapter and a USB 2.0 adapter, making up the RangeMax 240 family.

The RangeMax 240 is built with Airgo Networks’ third generation faster-than-ethernet MIMO wireless chips, promising real-world throughput of 115 Mbps, or faster than wired Ethernet.

The WAP (initially priced at $199 for the US market) and the notebook adapter ($129) will be in stores in time for the holidays, the USB adapter to follow in early 2006.

Exciting to see wireless technology playing catchup with its wired equivalent. I can’t wait till we see Gigabit wireless!

Wireless Internet access is ever so convenient; no need for messy ethernet cables when sitting with your wifi-enabled laptop in the sofa relaxing. This convenience can come at a price though. Your wireless access point (WLAN access point, WAP) could probably do with some locking down, especially if you’ve never even visited the administration interface of it.

Most WLAN access points are NOT secure out of the box.
Consult your WAP manual and make sure you at least do the following:

• Enable password protection/change default password for administration interface
• Enable logging
• Disable broadcasting of SSID
• Enable WEP (Wired Equivalency Privacy).
  This encrypts data transmitted over the air. WEP has flaws which can be exploited, but it’s still better than no encryption at all.
• Use MAC access control list.
  This makes sure your access point only talks to your computers. You may find a record of your computer’s MAC address in the WAP log (you did enable logging, didn’t you?)
• Disable remote SNMP
• Turn off your wireless access point when not in use.

For additional protection:

• Turn off any file- and printer sharing on your computer.
• Install a personal firewall.
• Install anti-virus software and keep it updated.
• Make sure you have the latest patches for your operating system.
• Look into deploying some sort of VPN-solution between computers connected via WLAN and your gateway.

Wireless web cameras, closed-circuit TV cameras and baby crib monitors broadcasting video streams not just to where you think, but as far as the radio signal can go. Using off-the-shelf equipment these video streams can be picked up by anyone, as they are usually not encrypted. Makes you think, no?

Wired has an interesting article on the subject.

Ever thought spam would come to good use?

At Spamusement you can find “poorly-drawn cartoons inspired by actual spam subject lines”. Good stuff.

Sometimes it’s desirable to be able to limit bandwidth on a connection, be it on a specific port or maybe for the entire link.
If you are using FreeBSD you can use ipfw and dummynet to enable rate limiting on your link.

You need to have IPFIREWALL and DUMMYNET enabled in the kernel. If they are not already you need to recompile your kernel.

First you need to setup a pipe:

ipfw pipe 1 config bw 512Kbit

This creates a pipe, with throughput limited to 512 Kbps.

Let’s say you want to put a limit on your outgoing http traffic (port 80) . You would add this rule to your firewall, pushing the TCP packets through the pipe you just created.

ipfw add 10 pipe 1 tcp from me 80 to any

You can list pipes with the command ipfw pipe show.

References:
ipfw manpage
dummynet manpage