Deny wireless client so see each other



  • I’ve managed pfSense with captive portal (voucher auth.) and on LAN I have WiFi AP. Clients that connect thru wiFi AP, I don’t want them to be able see or communicate to each other. Is there an options to so.



  • If your AP is a separate box from pfSense and a router then you will almost certainly need to do something in the AP to block traffic between wireless clients.

    If pfSense is your AP and the AP interface is configured with Allow intra-BSS communication disabled then all the traffic between wireless clients should come into pfSense where you have a chance to use firewall rules to block or reject selected traffic patterns. I've not tried this myself.



  • @Piplfox:

    I’ve managed pfSense with captive portal (voucher auth.) and on LAN I have WiFi AP. Clients that connect thru wiFi AP, I don’t want them to be able see or communicate to each other. Is there an options to so.

    To add to the previous post, this is sometimes called "wireless isolation" in your router's GUI.

    Regards,
    Stuart


Log in to reply