WiFi Mesh network that forces devices to connect to the strongest AP
-
I have a pfSense router with no WiFi, and 3 Netgear access points. We have a wifi mesh network setup, but we run into the all to common issue of devices connected to an access point that is further away than another one, resulting in slow speed. For example, a security camera that can't transmit video because the speed is too slow for it.
I have looked at some solutions online from router manufacturers, where you buy a router and 3 satellites, and when all set up together they supposedly force devices to connect to the strongest signal. I want to continue to use pfSense. Is there a way to get this same capability in pfSense? What hardware do I need and what do I need to configure in pfSense?
-
@jackthesmack Nothing on pfSense you can do.
It's common fallacy that the AP decides what device connects to it, it's down to the client, I can't remember what the intel drivers refer to it as, but there used to be a slider to stay connected to the same AP for as long as possible or move ASAP when it saw a closer one.
Some APs can tweak their settings for a particular settings to a specific client, the term to look for is band steering,
-
@nogbadthebad said in WiFi Mesh network that forces devices to connect to the strongest AP:
It's common fallacy that the AP decides what device connects to it, it's down to the client.
Then how are all in one mesh networks able to do this?
-
@jackthesmack If it's truly a mesh I would say the APs should hand devices off. If it's just 3 APs using the same SSID there is no meshing, the device has to drop the connection to move/reconnect.
Meshing can work with pfSense but as noted pfSense is sort of irrelevant. I have an eero setup at home, in bridge mode, so the wireless devices are on LAN. (and, with eero bridge, the guest SSID remains isolated). Alternately wireless can be set up on a separate interface in pfSense to control access by firewall rules.
-
@jackthesmack Ah found the Intel link:-
https://www.intel.co.uk/content/www/uk/en/support/articles/000005546/wireless/legacy-intel-wireless-products.html
You’d need to look at the various mesh solutions to see how they do it, i’m guessing they drop the client connection and re-establish the connection on another ap and record the strength , then reduce the signal strength on the non optimal aps for specific clients.
Aruba have something called client match:-
https://www.arubanetworks.com/techdocs/ArubaOS_64x_WebHelp/Content/ArubaFrameStyles/ARM/Client_Match.htm
I’d use a mesh as a last resort as you’ll get a drop in bandwidth.
-
When you say mesh, is it 1 wired AP and 2 repeaters or 3 wired APs?
My phone using my 2 wired APs (Unifi) does not have the problem you describe.
-
@jackthesmack are all the netgear aps the same model?
-
@nogbadthebad said in WiFi Mesh network that forces devices to connect to the strongest AP:
@jackthesmack Ah found the Intel link:-
https://www.intel.co.uk/content/www/uk/en/support/articles/000005546/wireless/legacy-intel-wireless-products.html
You’d need to look at the various mesh solutions to see how they do it, i’m guessing they drop the client connection and re-establish the connection on another ap and record the strength , then reduce the signal strength on the non optimal aps for specific clients.
Aruba have something called client match:-
https://www.arubanetworks.com/techdocs/ArubaOS_64x_WebHelp/Content/ArubaFrameStyles/ARM/Client_Match.htm
I’d use a mesh as a last resort as you’ll get a drop in bandwidth.
These are the Netgear Mesh packages that I see that, when talking with support, would make sure wireless devices are always connected to the strongest AP: https://www.netgear.com/home/wifi/mesh/
@andyrh said in WiFi Mesh network that forces devices to connect to the strongest AP:
When you say mesh, is it 1 wired AP and 2 repeaters or 3 wired APs?
My phone using my 2 wired APs (Unifi) does not have the problem you describe.
It's 3 Wireless routers in bridge mode that are connected by physical wire to the pfsense router (with a switch in between). They all use the same SSID for 2.4 and 5Ghrz.
This is most noticeable with my doorbell or backdoor camera. If I restart one of the routers, all devices connect the other router and refuse to connect back. If the doorbell or backdoor camera is connected to the wrong AP, it won't be able to transmit video due to weak signal, but it says it's online and responds to commands. And I can see in the AP device list that they're connected via WiFi.
@nogbadthebad said in WiFi Mesh network that forces devices to connect to the strongest AP:
@jackthesmack are all the netgear aps the same model?
Almost. I have 2 Netgear WAX204 and 1 R6700AX.
-
@jackthesmack said in WiFi Mesh network that forces devices to connect to the strongest AP:
It's 3 Wireless routers in bridge mode that are connected by physical wire to the pfsense router (with a switch in between). They all use the same SSID for 2.4 and 5Ghrz.
Almost. I have 2 Netgear WAX204 and 1 R6700AX.
So you have simply three access points from logical view and configured all to provide the same SSID.
This is not a mesh setup at all and your devices might not be capable of doing this.On https://www.netgear.com/home/wifi/mesh you can find mesh-capable devices from Netgear.
With multiple APs, the connected devices like cameras, door bell or whatever have the full control over their wifi connection. You cannot influence that from outside expect by shutting down or rebooting an AP.
-
@jackthesmack said in WiFi Mesh network that forces devices to connect to the strongest AP:
R6700AX
To be honest if you have 3 wireless routers acting as APs I'd use access-points as you have the wires in place.
What happens if you disable WiFi 6 and 5 Ghz as a test, does the camera then move to the nearest AP?
Some IOT stuff I have is a bit picky and I've had to create a non WiFi 6 and 5 Ghz SSID.
-
@nogbadthebad said in WiFi Mesh network that forces devices to connect to the strongest AP:
Some IOT stuff I have is a bit picky and I've had to create a non WiFi 6 and 5 Ghz SSID.
It's recommended to put the IoT stuff into a separated subnet, maybe a VLAN, anyway.
So could change the 5 G SSID and use it for trusted devices only. -
@viragomann said in WiFi Mesh network that forces devices to connect to the strongest AP:
With multiple APs, the connected devices like cameras, door bell or whatever have the full control over their wifi connection. You cannot influence that from outside expect by shutting down or rebooting an AP.
Damn, so it's not possible to set something up like this with pfSense? There's no satellites I can buy that works with some software in pfSense?
@nogbadthebad said in WiFi Mesh network that forces devices to connect to the strongest AP:
What happens if you disable WiFi 6 and 5 Ghz as a test, does the camera then move to the nearest AP?
All my IOTs use 2.4Ghrz. Disabling WiFi on a device is the same as rebooting it, all the devices are booted off and they connect to another AP.
-
You'd be best looking at a switch that supports VLANS & APs like the Unify or Aruba InstantOn.
That would give you the option to have different SSIDs, with different radio settings on the SSIDs.
https://community.ui.com/questions/Wireless-LAN-Roaming-FAQ/3044afc5-55ac-4c52-804d-2fbb91381e60
-
@jackthesmack said in WiFi Mesh network that forces devices to connect to the strongest AP:
it's not possible to set something up like this with pfSense? There's no satellites I can buy that works with some software in pfSense?
pfSense is not involved in the wireless setup. That's all on the AP/mesh/wireless side.
pfSense can deal with multiple interfaces, VLANs, etc. but the rest of the hardware needs to as well...APs and switch. Unless the physical cabling is separate in which case a VLAN is not necessary.
-
Ok, one other question. Is it possible in pfSense to cause devices to disconnect from the WiFi, without shutting down any APs? That would be enough to satisfy my frustration when an AP goes down and the devices get all screwy. I could just tell them to disconnect, then they auto connect to the nearest one. Power cycling is not an option due to some hard wired to the power, and I don't wanna flip breaker switches.
The APs I have do not have this capability. I talked with support for half an hour.
-
@jackthesmack said in WiFi Mesh network that forces devices to connect to the strongest AP:
Is it possible in pfSense to cause devices to disconnect from the WiFi
No. You can block them via firewall rule but they would remain connected to wireless the entire time.
If you have not-meshed APs and devices that don't move you may be better off setting them up with separate SSIDs. That way you can control to which AP the device connects.
-
@jackthesmack
Again pfSense on its own can do nothing here.If you're familiar with scripting and the access points provide SSH or telnet access or possibly SNMP, you can monitor the devices connections and reboot the concerned AP in case they're connected to the wrong one.
I did a similar thing in the past with my Engenius AP.
