Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Is there any way to use the guest mode on my soho router?

    Scheduled Pinned Locked Moved General pfSense Questions
    3 Posts 3 Posters 416 Views 3 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S Offline
      shjfliejfasel
      last edited by

      I got an NG-1100 because I'm running a local server at home with some private files, and I figured getting a hardware firewall in addition to my router could be more secure.

      The router I use (Netgear R6700) has a feature for guest-mode on the wifi network. I'm guessing this keeps devices on the guest network from accessing personal devices on the regular network.

      Now, most of the netgate guides I've looked at for configuring a router behind the firewall suggest using the router in AP mode. My router does have an AP mode, but the guest-mode feature gets disabled then.

      I only have some hobbyist-level knowledge about networking, so I'm trying to figure out if there is some way I can still keep the guest devices separated even with the guest-mode disabled in AP mode.

      My original idea was leaving the router as-is, and putting it on a different subnet than the firewall. Then connecting a LAN port on the router to the OPT port on the firewall. Then set a static IP for the router. I assumed since keeping the router in "router" mode lets the router keep the guest mode enabled that this could work, but to be honest I don't even really know what that does exactly, so I figured I would ask here.

      The other thing that might help is that the 2.4 GHz and 5 GHz modes can be put on a different VLAN, so I could use one for private and one for guest things, but I don't exactly know how VLANs work on this router or on an AP.

      Thanks for any advice.

      JKnottJ 1 Reply Last reply Reply Quote 0
      • JKnottJ Offline
        JKnott @shjfliejfasel
        last edited by

        @shjfliejfasel

        I assume that router is intended to be connected directly to the modem, and not pass through another router. What you need is a VLAN for the guest WiFi, which proper access points support, but not routers. I have an AP with guest WiFi and VLAN here.

        PfSense running on Qotom mini PC
        i5 CPU, 4 GB memory, 32 GB SSD & 4 Intel Gb Ethernet ports.
        UniFi AC-Lite access point

        I haven't lost my mind. It's around here...somewhere...

        1 Reply Last reply Reply Quote 0
        • stephenw10S Offline
          stephenw10 Netgate Administrator
          last edited by

          @shjfliejfasel said in Is there any way to use the guest mode on my soho router?:

          I'm guessing this keeps devices on the guest network from accessing personal devices on the regular network.

          You need to know what it actually does before we can answer that.

          Since it is removed in AP mode, which probably turns it into a pure layer 2 device, it probably does something at layer 3. Like passing traffic only for external IPs. In which case you can replicate that with rules in pfSense instead.

          Steve

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.