Kilawa,

I don't know where you are located but you might get help by blackbird if needed.

When you use a wireless lan the basic setup would be,

set an ssid (in the base station). Then all clients will need to set the same ssid to connect.

Use wep (with no less then 128Bit encryption)

This two steps will give you kindergarden security. No one playing with a computer will stumble in.

To make it secure will you need to use a dualhomed net on the base station with dynamic routing. On connect and login will you only have access to a login server (on lan1, nothing more exists on that lan). If you log in correctly to this server (using ipsec and certificates) then the server will allow the router to switch lan on your connection giving you the access granted to your log in user in the server.

From then on will all traffic use a combination of ssl, https, vpn tunnels and ipsec.

Of course will only pre registered mac addresses (of nics) be allowed.

This is costly and time demanding so one should do an security assesment of traffic content first to see if all of this is needed.

Most often in a normal company will it not be needed to secure the traffic, the thing to prevent is people on the street being able to use the wireless lan as they can do many naughty things without being caught that way!

saludos

Kenth