Wi-Fi How To
From Navas Wireless Wiki
(→Share your Internet with a neighbor via Wi-Fi: add content) |
(→Two wireless network on one router: add content) |
||
Line 49: | Line 49: | ||
# Disable any wireless-to-wired isolation feature. | # Disable any wireless-to-wired isolation feature. | ||
- | == Two wireless | + | == Two wireless networks on one router == |
- | ''Based on [http://www.wi-fiplanet.com/tutorials/article.php/10724_3714521_1 Implementing Inexpensive Multiple SSID Networks] [Wi-Fi Planet.com Tutorial by Eric Geier, December, 2007]'' | + | :''Based on [http://www.wi-fiplanet.com/tutorials/article.php/10724_3714521_1 Implementing Inexpensive Multiple SSID Networks]<br>[Wi-Fi Planet.com Tutorial by Eric Geier, December, 2007]'' |
+ | |||
+ | Two wireless networks are a good way to separate private and public (guest) clients, where: | ||
+ | * ''Private'' clients have access not only to the Internet, but also to each other (file and/or printer sharing), wired and wireless | ||
+ | * ''Public'' (guest) clients have access ''only'' to the Internet, ''not'' to each other (see [[Wi-Fi#Wireless Isolation|Wireless Isolation]]), and ''not'' to the private clients | ||
+ | |||
+ | While some wireless routers have this capability built-in (see [[Wi-Fi#Guest Account|Guest Account]]), it can also be done with [wikipedia:3rd party firmware], which can also provide additional functionality. The following procedure is for two wireless using [http://www.dd-wrt.com DD-WRT] (on [http://www.dd-wrt.com/dd-wrtv3/dd-wrt/hardware.html supported devices]) (as of v24 preSP2 Beta build 12533). For more than two wireless networks, consult the reference above. | ||
+ | # '''''Wireless → Basic Settings → Virtual Interfaces''''' | ||
+ | # '''''Wireless → Wireless Security''''' | ||
+ | # '''''Services → Services → DNSMasq''''' | ||
+ | # '''''Administration → Commands → Command Shell''''' | ||
+ | :* Enter the ''Commands'': | ||
+ | ::{| | ||
+ | | | ||
+ | iptables -I INPUT -i wl0.1 -m state --state NEW -j logaccept | ||
+ | iptables -I FORWARD -i wl0.1 -o br0 -j logdrop | ||
+ | iptables -I FORWARD -i br0 -o wl0.1 -j logdrop | ||
+ | |} | ||
+ | :* Click ''Save Firewall'' | ||
+ | :* Click the ''Management'' tab | ||
+ | :* Click ''Apply Settings'' (down at the bottom) | ||
== WPA/WPA2 == | == WPA/WPA2 == |