I installed DD-WRT over the weekend following this tutorial. This is something I wish I would have done a lot sooner because of the additional features DD provides. Unfortunately I have a v8 WRT54g which only has 2mb of flash memory. This limited me to only being able to run the stripped down “micro” version. DD supports syslog but the micro version does not log firewall events. I was hoping to pass these to my IDS. Hopefully I can figure out a way to use iptables to replicate a span or tap port.
I tweaked the TX Power using DD. Be warned you can overheat your router if you try to crank this up too high. The biggest signal boost I was raising my access point 2′. Try to keep your AP elevated as much as possible. See my image below….
Try this for a possible DD-WRT span port solution using ip tables:
http://jcmulle-blog.mullenixdotcom.com/2008/03/dd-wrt-and-ids.html
I installed DD-wrt following the tutorial above. I didn’t scan my network for 2 weeks — blunder on my part. I found that port 23 was open to the router! I was also still running the default login password.
In Dd-wrt I had remote telnet disabled even though it was clearly working through the WAN connection. Probably a bug in the older firmware I was running.
Be careful! And always good practice to scan your network after making such a critical change in your networking devices. Try to run a scan from outside of your network if possible…..