Wi-Fi How To

Revision as of 19:28, 16 September 2009 (view source)

JohnNavas (Talk | contribs)

(→Share your Internet with a neighbor via Wi-Fi: add content)

← Older edit

Revision as of 19:32, 16 September 2009 (view source)

JohnNavas (Talk | contribs)

(→Two wireless network on one router: add content)

Newer edit →

Line 49:

# Disable any wireless-to-wired isolation feature.

-

== Two wireless ~~network~~ on one router ==

+

== Two wireless networks on one router ==

-

''Based on [http://www.wi-fiplanet.com/tutorials/article.php/10724_3714521_1 Implementing Inexpensive Multiple SSID Networks] [Wi-Fi Planet.com Tutorial by Eric Geier, December, 2007]''

+

:''Based on [http://www.wi-fiplanet.com/tutorials/article.php/10724_3714521_1 Implementing Inexpensive Multiple SSID Networks]<br>[Wi-Fi Planet.com Tutorial by Eric Geier, December, 2007]''

+

Two wireless networks are a good way to separate private and public (guest) clients, where:

+

* ''Private'' clients have access not only to the Internet, but also to each other (file and/or printer sharing), wired and wireless

+

* ''Public'' (guest) clients have access ''only'' to the Internet, ''not'' to each other (see [[Wi-Fi#Wireless Isolation|Wireless Isolation]]), and ''not'' to the private clients

+

While some wireless routers have this capability built-in (see [[Wi-Fi#Guest Account|Guest Account]]), it can also be done with [wikipedia:3rd party firmware], which can also provide additional functionality. The following procedure is for two wireless using [http://www.dd-wrt.com DD-WRT] (on [http://www.dd-wrt.com/dd-wrtv3/dd-wrt/hardware.html supported devices]) (as of v24 preSP2 Beta build 12533). For more than two wireless networks, consult the reference above.

+

# '''''Wireless → Basic Settings → Virtual Interfaces'''''

+

# '''''Wireless → Wireless Security'''''

+

# '''''Services → Services → DNSMasq'''''

+

# '''''Administration → Commands → Command Shell'''''

+

:* Enter the ''Commands'':

+

::{|

+

|

+

iptables -I INPUT -i wl0.1 -m state --state NEW -j logaccept

+

iptables -I FORWARD -i wl0.1 -o br0 -j logdrop

+

iptables -I FORWARD -i br0 -o wl0.1 -j logdrop

+

|}

+

:* Click ''Save Firewall''

+

:* Click the ''Management'' tab

+

:* Click ''Apply Settings'' (down at the bottom)

== WPA/WPA2 ==

From Navas Wireless Wiki

Revision as of 19:32, 16 September 2009

Views

Personal tools

Navigation

main articles

Search

Toolbox

@@ Line 49: / Line 49: @@
 # Disable any wireless-to-wired isolation feature.
-== Two wireless network on one router ==
+== Two wireless networks on one router ==
-''Based on [http://www.wi-fiplanet.com/tutorials/article.php/10724_3714521_1 Implementing Inexpensive Multiple SSID Networks] [Wi-Fi Planet.com Tutorial by Eric Geier, December, 2007]''
+:''Based on [http://www.wi-fiplanet.com/tutorials/article.php/10724_3714521_1 Implementing Inexpensive Multiple SSID Networks]<br>[Wi-Fi Planet.com Tutorial by Eric Geier, December, 2007]''
+Two wireless networks are a good way to separate private and public (guest) clients, where:
+* ''Private'' clients have access not only to the Internet, but also to each other (file and/or printer sharing), wired and wireless
+* ''Public'' (guest) clients have access ''only'' to the Internet, ''not'' to each other (see [[Wi-Fi#Wireless Isolation|Wireless Isolation]]), and ''not'' to the private clients
+While some wireless routers have this capability built-in (see [[Wi-Fi#Guest Account|Guest Account]]), it can also be done with [wikipedia:3rd party firmware], which can also provide additional functionality. The following procedure is for two wireless using [http://www.dd-wrt.com DD-WRT] (on [http://www.dd-wrt.com/dd-wrtv3/dd-wrt/hardware.html supported devices]) (as of v24 preSP2 Beta build 12533). For more than two wireless networks, consult the reference above.
+# '''''Wireless &rarr; Basic Settings &rarr; Virtual Interfaces'''''
+# '''''Wireless &rarr; Wireless Security'''''
+# '''''Services &rarr; Services &rarr; DNSMasq'''''
+# '''''Administration &rarr; Commands &rarr; Command Shell'''''
+:* Enter the ''Commands'':
+::{|
+|
+ iptables -I INPUT -i wl0.1 -m state --state NEW -j logaccept
+ iptables -I FORWARD -i wl0.1 -o br0 -j logdrop
+ iptables -I FORWARD -i br0 -o wl0.1 -j logdrop
+|}
+:* Click ''Save Firewall''
+:* Click the ''Management'' tab
+:* Click ''Apply Settings'' (down at the bottom)
 == WPA/WPA2 ==