[isf-wifidog] LAN and WLAN Seperation

Aaron Z aaronz at pls-net.org
Ven 26 Juin 14:11:02 EDT 2009

In Wifidog.conf there is  a section called "FirewallRuleSet global", if you have the WAN port on your box connected to the rest of your network (so that the wireless users are on a different subnet than your buisness machines) you can change the setting to be as shown, this will prevent your guests from accessing the 192.168.3.x subnet.

# Rule Set: global
# Used for rules to be applied to all other rulesets except locked.
FirewallRuleSet global {
    ## Use the following if you don't want clients to be able to access machines on
    ## the private LAN that gives internet access to wifidog.  Note that this is not
    ## client isolation;  The laptops will still be able to talk to one another, as
    ## well as to any machine bridged to the wifi of the router.
 FirewallRule block to


Aaron Z

----- "casey w ballard" <casey.w.ballard at gmail.com> wrote:
> From: "casey w ballard" <casey.w.ballard at gmail.com>
> To: wifidog at listes.ilesansfil.org
> Sent: Friday, June 26, 2009 1:00:15 PM GMT -05:00 US/Canada Eastern
> Subject: [isf-wifidog] LAN and WLAN Seperation
> Hello, I can't seem to find the information anywhere on the FAQ secitons so I geuss I will ask it here. I am planning to implement this feature at my cafe but I dont want the wireless clients to be able to get access to my dell registers or computerized security system. Is there any way that I may block the wireless clients from being able to see the other wired computers?
> -Casey
> _______________________________________________ WiFiDog mailing list WiFiDog at listes.ilesansfil.org http://listes.ilesansfil.org/cgi-bin/mailman/listinfo/wifidog 

Plus d'informations sur la liste de diffusion WiFiDog