1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Wired and wireless separation...

Discussion in 'Sveasoft Firmware' started by bushtor, Apr 21, 2005.

  1. bushtor

    bushtor Network Guru Member

    Hi

    I have a WRT54GS w/sveasoft firmware connected to the internet via a good ADSL connection. LAN side of it I have a wired ethernet with a few computers and a couple of printers.

    From my own notebooks I would like to have wireless access to the internet and also to my printers.

    I would like to share my internet connection with a couple of my nearest neighbours, but they should of course *NOT* have access to my LAN side devices and services.

    Which hardware would be the best and most cost-effective choice for this scenario? WRT54GS boxes for each of my neighbours too? Other cheaper solutions?

    Is it possible with the stock linksys firmware (or sveasoft's) to separate my WRT54GS' LAN devices / activity from its WL radio (where my neighbours are connected)?

    How do I make this as bulletpropof as possible? Access by MAC address in addition to encryption?

    Thanks for hints, and comments on how to solve this scenario

    Tor
     
  2. bramfrank

    bramfrank Network Guru Member

    Naturally, the best way to prevent your neighbours from accessing your LAN is to put a firewall between their access and your LAN.

    The simplest way to do this is to install a second WRT54GS (or whatever) between the one on your network and the WAN and give them access to that one, reserving your 'inside' access for your own equipment. Put them on different channels to preserve bandwidth - 1, 6 & 11 are the only completely mutually exclusive channels on the band.

    There's no reason to run Satory or Alchemy in your architecture based on what you've written - I see nowhere that the advanced features are benefitting you, though there's no hard in running them either.

    Restrict access by MAC and at the very least by WEP. Use a different WEB for your inside AP and turn off the beacon.
     
  3. howardp6

    howardp6 Network Guru Member

    If you put them on a separate sub net from your network, they will not be able to access your networked computers or printers. I would hesitate before allowing any one access to your Internet connection, since any activity on your Internet connection is your responsibility. It may violate your conditions of use with your Internet provider. Music and video downloads of file sharing will be reported bt you IP Address. If your neighbors computer is infected by a virus, a Bot or a worm it may affect your Internet connection. Any illicit activity, intentional or not will be attributed to your IP Address. I am not saying do not share, just be aware that there are legal issues involved,
     

Share This Page