4. Isolated and controlled guest wireless

Isolated and controlled guest wireless

  • H

    So currently I have a pfSense computer with three NICs. One is the WAN and one is the LAN and is connected to a router. I'd like to connect the last NIC to a micro/portable router that I would like to use as a guest wireless. I'd like to set it up so that the guest wireless is on a different subnet, is isolated from the main network (LAN) as well as prohibits access to certain websites and blocks certain traffic (P2P, etc.). How would I go about doing so? Are there any guides out there to guide me through that?

    Also, instead of using a second router, would it be possible to use one router (mine has DD-WRT) to achieve the guest network requirements I described, without compromising security?

    0
  • P

    No need for another router at all. Just use an AP. If the AP also happens to be a router, then ignore its routing capabilities, leave its WAN port disconnected, disable DHCP server on it, connect an AP LAN port to your 3rd pfSense NIC.
    Configure the 3rd pfSense NIC with a different private subnet, enable it to do DHCP, set firewall rules on that interface to block/pass whatever you like.

    0
  • H

    That's definitely what I'm going end up doing. What about the P2P and website filtering? How would I achieve that?

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy