Comment Why not use 802.1x? (Score 1) 120
I could be missing something here, but isn't this situation what 802.1x is designed for?
It plays nicely with RADIUS, allows for secure authentication and encryption based on certificates, and works at layer 2 rather than layer 3.
PPPoE by contrast won't stop a determined hacker for longer than it takes to google "airsnort". There's no encryption in the setup described (as far as I can tell) and adding it would stop most PPPoE clients from working.
If you've got Windows there are quite a few options for 802.1x clients, but open1x seems to work fine on linux with freeradius.
It plays nicely with RADIUS, allows for secure authentication and encryption based on certificates, and works at layer 2 rather than layer 3.
PPPoE by contrast won't stop a determined hacker for longer than it takes to google "airsnort". There's no encryption in the setup described (as far as I can tell) and adding it would stop most PPPoE clients from working.
If you've got Windows there are quite a few options for 802.1x clients, but open1x seems to work fine on linux with freeradius.
