[isf-wifidog] LAN and WLAN Seperation
Aaron Z
aaronz at pls-net.org
Ven 26 Juin 14:11:02 EDT 2009
In Wifidog.conf there is a section called "FirewallRuleSet global", if you have the WAN port on your box connected to the rest of your network (so that the wireless users are on a different subnet than your buisness machines) you can change the setting to be as shown, this will prevent your guests from accessing the 192.168.3.x subnet.
# Rule Set: global
#
# Used for rules to be applied to all other rulesets except locked.
FirewallRuleSet global {
## Use the following if you don't want clients to be able to access machines on
## the private LAN that gives internet access to wifidog. Note that this is not
## client isolation; The laptops will still be able to talk to one another, as
## well as to any machine bridged to the wifi of the router.
FirewallRule block to 192.168.3.0/24
}
HTH
Aaron Z
----- "casey w ballard" <casey.w.ballard at gmail.com> wrote:
> From: "casey w ballard" <casey.w.ballard at gmail.com>
> To: wifidog at listes.ilesansfil.org
> Sent: Friday, June 26, 2009 1:00:15 PM GMT -05:00 US/Canada Eastern
> Subject: [isf-wifidog] LAN and WLAN Seperation
>
> Hello, I can't seem to find the information anywhere on the FAQ secitons so I geuss I will ask it here. I am planning to implement this feature at my cafe but I dont want the wireless clients to be able to get access to my dell registers or computerized security system. Is there any way that I may block the wireless clients from being able to see the other wired computers?
> -Casey
> _______________________________________________ WiFiDog mailing list WiFiDog at listes.ilesansfil.org http://listes.ilesansfil.org/cgi-bin/mailman/listinfo/wifidog
Plus d'informations sur la liste de diffusion WiFiDog