DS vs. Wireless Security

[sycomonkey]

I have bought a nintendo DS, and it is capable of wireless internet multiplayer, but there's an issue. Nintendo, for reasons unknown, has failed to enable WPA encryption support. It supports WEP, which is almost the same as not encrypting at all it seems. Since I don't have any other wireless devices, I don't particularly mind someone sniffing my packets to see how well I'm doing in Mario Kart, but I don't want someone poking in and goofing around in my network, as I have lots of writable smb shares. I'd like to set my lunar box to isolate the wireless network from the rest of my network, while still letting my DS access the nintendo WiFi Connection. So, graphically:

Internet---Router---VulnerableLAN+LunarBox---WiFiBridge---DS+JoeHacker

I'm sure I'll need to set up IPtables, which I can read the man page and figure out, but is there some tips that could help speed this along anyone can come up with.
_________________

[RedKennedy]

Your smb shares shouldn't be accessible to anyone without a password anyway....
_________________
In Soviet Russia, ISOs install you.

[sofar]

you should read the iptables/netfilter howto - this anwsers many basic questions about network routing, nat and firewalling. You might actually want to consider setting up multiple subnets to isolate encrypted and unencrypted traffic too, and *any* encryption is better than none - so enable WEP for sure...

passworded smb shares are stil unencrypted - a very dumb idea since the passwords go over the wifi net, which is a bad thing. Perhaps you want to vpn or use stronger encryption in your networks - look at openvpn and ssh tunnelling for that.