Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Isolated and controlled guest wireless

    Scheduled Pinned Locked Moved General pfSense Questions
    3 Posts 2 Posters 881 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • H
      Heli0s
      last edited by

      So currently I have a pfSense computer with three NICs. One is the WAN and one is the LAN and is connected to a router. I'd like to connect the last NIC to a micro/portable router that I would like to use as a guest wireless. I'd like to set it up so that the guest wireless is on a different subnet, is isolated from the main network (LAN) as well as prohibits access to certain websites and blocks certain traffic (P2P, etc.). How would I go about doing so? Are there any guides out there to guide me through that?

      Also, instead of using a second router, would it be possible to use one router (mine has DD-WRT) to achieve the guest network requirements I described, without compromising security?

      1 Reply Last reply Reply Quote 0
      • P
        phil.davis
        last edited by

        No need for another router at all. Just use an AP. If the AP also happens to be a router, then ignore its routing capabilities, leave its WAN port disconnected, disable DHCP server on it, connect an AP LAN port to your 3rd pfSense NIC.
        Configure the 3rd pfSense NIC with a different private subnet, enable it to do DHCP, set firewall rules on that interface to block/pass whatever you like.

        As the Greek philosopher Isosceles used to say, "There are 3 sides to every triangle."
        If I helped you, then help someone else - buy someone a gift from the INF catalog http://secure.inf.org/gifts/usd/

        1 Reply Last reply Reply Quote 0
        • H
          Heli0s
          last edited by

          That's definitely what I'm going end up doing. What about the P2P and website filtering? How would I achieve that?

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.