Block WLAN Router
-
Hi There Community!
I would like to block my wireless router from accessing the internet but when I do so all users connected wirelessly are also blocked.
Its a netgear router and creates a lot of unwanted traffic to neatgear HQ… ;-)Thanks in advance for your help!
Hotschi
-
Can you set it up as an access point rather than a router? I'm assuming it's currently performing a NAT for all of the wireless clients?
If you plugged the pfSense firewall into a LAN port, rather than WAN, you should then be able to block the IP of the router, but not any of the clients?
-
I would like to block my wireless router from accessing the internet but when I do so all users connected wirelessly are also blocked.
Its a netgear router and creates a lot of unwanted traffic to neatgear HQ… ;-)First things first : this Netgear device is working as a router on a "guest network", hooked up to an Interface on pfSense ?
Setup de Netgear a a dumb AP - stop using it as a router.Strange, btw, that sch a device calls home. Ok for a test for a update, some NTP info, etc, but nothing more.
On my network (a guest network with a bunch of AP's for Wifi access) my AP's are allowed to communicate on the net for their system maintenance issues (setting the system time, etc) - but they never abused my connection.
Btw / I ditched all this Netgear, Linksys, etc firmware stuff, I'm using DD-WRT firmwares. They rock. -
Hi!
Thanks a lot for your answers, and yes the router is configured as a AP behind the pfsense (LAN).
DHCP is coming from Pfsense.
AP get the IP adress from pfsense and any other device connectetd by wifi have another IP from DHCP.
If I block the IP address from the AP (Netgear) any other WiFI IP is also blocked from internet.How can I block/configure only the netgear AP and not any wireless connected client.
Thanks a lot!
Hotschi -
"AP get the IP adress from pfsense and any other device connectetd by wifi have another IP from DHCP.
If I block the IP address from the AP (Netgear) any other WiFI IP is also blocked from internet"Nonsense!!! Plain and simple..
So your AP IP is 192.168.1.100, your clients get 192.168.1.101, how is blocking 192.168.1.100 stop .101?
"DHCP is coming from Pfsense."
Your saying that your wifi client .101 got its .101 address from pfsense dhcp?? You see it in the dhcp leases?? Or do you have a double nat going on with your wifi router getting .100 on its wan, and giving out its wifi clients .101 which when you look on the client you think it came from pfsense??
Sorry but if you have the AP working as an AP and its LAN IP connected to your network is x.x.x.100, and its wifi clients are .101, .102, etc.. blocking .100 from the internet does not prevent .101 or .102 from using the internet. It just doesn't so clearly you got something else going on.. Are you pointing your clients to your wifi router IP for dns, and it then goes out to googledns or something which your blocking??
-
Thanks Johnpoz!
Good hint! DNS was the problem…....
