WIFI with Linksys rooter
-
Hello i have looked and tried some stuf but i can't get to waht i want
I have a PFsense box and i have a WIFI Linksys rooter that i want to connect to PFsense witout the WIFI having acces to the network
-I have an otp1 interface avalable
- On the WIFI rooter do i have to plug to the WAN or LAN port
-I kow i have to disable the DHCP and giv it another IP but it is not working!
Thank's for the help!
- On the WIFI rooter do i have to plug to the WAN or LAN port
-
First you have to configure your OPT interface correctly.
Connect the LAN interface of the linksys AP to your pfSense. -
Got it working, thank you!
http://doc.pfsense.org/smiller/Install_Guide.htmThank you!
-
Is there a way to be shure that WIFI as no acess to the file server?
-
I have no idea what you're talking about….
http://forum.pfsense.org/index.php/topic,7001.0.html
-
With that setup i don't want user connected to WIFI on OPT1 to have access to the rest of the network
I have tested some things and it dose not look like i can connect to share drives.
I was wondering if their is other way to validate my installation
-
What rest of the network?
On the LAN-interface? on the OPT-interface?
Without you giving a description of what is where (which server? where is it? what IP's where?) i cannot help you.How do you connect to shares? What shares? windows, smb? via "My Network Places"?
Such a test is unrealiable and means notting because the "My Network Places" works only with UDP broadcasts which connot go over a router.
Someone could still type \IP and connect. -
Wow i never thought my question was so complicated ;)
I have 3 network card in my Pfsense box
1 WAN
1 LAN
1 OPT1 (WIFI)My Windows server is connected on the LAN true 2 24 ports HP switch
I have a Linksys WIFI rooter connected to OPT1
I don't want the users connected to the WIFI to have access to anything else than the internet true WIFI. No access to the rest of the network.
I have tested with \IP, \server name and PING the server and it look's like i cant get to it.
I wanted to have a confirmation from you that i was indeed protecting my client correctly.
I hope it is enough info
Tank you for your patience!
-
Well if you want to make sure it behaves as you want, you have to describe accordingly accurate :)
Probably the easiest way to make sure is if you create a single rule on the OPT-interface:
allow ; protocol:any ; source:OPT-subnet ; sourceport:any ; destination:**!**LAN ; destinationport: any
note the **!**LAN
This means: destination NOT LANLike this all traffic not going to the LAN will be allowed.
Anything else will be blocked. -
Thanks i will try that
For 2009 i will be a better man and give more info on my post ;D
