Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Deny wireless client so see each other

    Scheduled Pinned Locked Moved Captive Portal
    3 Posts 3 Posters 2.7k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • P
      Piplfox
      last edited by

      I’ve managed pfSense with captive portal (voucher auth.) and on LAN I have WiFi AP. Clients that connect thru wiFi AP, I don’t want them to be able see or communicate to each other. Is there an options to so.

      1 Reply Last reply Reply Quote 0
      • W
        wallabybob
        last edited by

        If your AP is a separate box from pfSense and a router then you will almost certainly need to do something in the AP to block traffic between wireless clients.

        If pfSense is your AP and the AP interface is configured with Allow intra-BSS communication disabled then all the traffic between wireless clients should come into pfSense where you have a chance to use firewall rules to block or reject selected traffic patterns. I've not tried this myself.

        1 Reply Last reply Reply Quote 0
        • S
          stupots
          last edited by

          @Piplfox:

          I’ve managed pfSense with captive portal (voucher auth.) and on LAN I have WiFi AP. Clients that connect thru wiFi AP, I don’t want them to be able see or communicate to each other. Is there an options to so.

          To add to the previous post, this is sometimes called "wireless isolation" in your router's GUI.

          Regards,
          Stuart

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.