Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.
Course Of The Month
11 days, 7 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
Safe WIFI sharing
Posted on 2011-03-16
We have a few small business clients that want to offer their clients free wifi access in their waiting rooms.
They do not want 2 ISPs.
Is there a cost effective router that will allow secure wifi access to the clients, that will prevent them from browsing or in any way jumping to the LAN, and ensure no trojans or viruses can jump to the LAN subnet as well where sensitive business data resides?
They do not want 2 ISPs.
Is there a cost effective router that will allow secure wifi access to the clients, that will prevent them from browsing or in any way jumping to the LAN, and ensure no trojans or viruses can jump to the LAN subnet as well where sensitive business data resides?
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
3-
2
- +3
9 Comments
The proper way to do it is get a firewall that supports a DMZ. Plug the wireless into the port set to be the DMZ and it will only have access to the internet.
The cheap way to do it is put the wireless router on internet directly then put a firewall behind it and not allow traffic to pass from the routers IP's. This is not as secure but would work.. but you can pick up a router with DMZ appliance for fairly cheap and do it right...
Look at Sonicwall, ASA 5505 and Juniper all should do what you want.
The cheap way to do it is put the wireless router on internet directly then put a firewall behind it and not allow traffic to pass from the routers IP's. This is not as secure but would work.. but you can pick up a router with DMZ appliance for fairly cheap and do it right...
Look at Sonicwall, ASA 5505 and Juniper all should do what you want.
Hi j-teksolutions,
You need access point that support user isolation
http://www.dlink.com/products/?pid=683
The DAP-2590 includes support for up to 8 VLANs for implementing multiple SSIDs to further help segment users on the network. It also includes a wireless client isolation mechanism, which limits direct client-to-client communication.
You need access point that support user isolation
http://www.dlink.com/products/?pid=683
The DAP-2590 includes support for up to 8 VLANs for implementing multiple SSIDs to further help segment users on the network. It also includes a wireless client isolation mechanism, which limits direct client-to-client communication.
A simpler option is to purchase a Linksys E-Series router that offers a "guest access" mode that establishes two independent networks, one for internal use and the other for guest-only Internet access. This tends to be fine for smaller businesses that don't want to put the money down on more high end solutions, like the concepts outlined by CHutchins above.
Choose any router which has DHCP enabled.
Mostly all routers have DHCP but not all configurable.
DLINK and linksys are best.
Now in router configuration--
In DHCP settings---
you need set a DHCP scope.
Choose a class of IP address which is different from you LAN network.
Make sure you have set password for WIFI.
Save the settings
and restart the router.
What equipment are you using?? You can make a different VLAN for the clients and them on the router make an ACL to permit only access to internet and not your LAN.
needleboy that router isnt too bad at $410
I like the idea of a separate SID for say "public" then isolation that is perfect
Is config difficult or not too bad?
I like the idea of a separate SID for say "public" then isolation that is perfect
Is config difficult or not too bad?
Hi j-teksolutions,
D-link Routers are user friendly and verry easy to configure.
All changes are made in simplified Web interface.
D-link Routers are user friendly and verry easy to configure.
All changes are made in simplified Web interface.
Hi j-teksolutions,
You can find Product manual on this link, and see how easy is to configure isolation (page 47, WLAN partition)
http://www.dlink.com/products/default.aspx?pid=DAP-2590&tab=3
You can find Product manual on this link, and see how easy is to configure isolation (page 47, WLAN partition)
http://www.dlink.com/products/default.aspx?pid=DAP-2590&tab=3
Featured Post
Choosing the right backup solution for your organization can be a daunting task. To make the selection process easier, ask solution providers these 10 key questions.
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
In this blog we highlight approaches to managed security as a service. We also look into ConnectWise’s value in aiding MSPs’ security management and indicate why critical alerting is a necessary integration.
Make the most of your online learning experience.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message.
In the To field, type your recipient's fax number @efaxsend.com.
You can even send a secure international fax — just include t…
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special.
It's completely agentless, but does let you create an agent, if you desire.
It offers powerful scalability …
Suggested Courses
Earn Certification
HTML5 Specialist - Certification
Free withPremium
Course of the Month11 days, 7 hours left to enroll
Earn Certification
Cisco CCNP Security: SENSS
$197.00$177.30
Earn Certification
Cisco CCNP Security: SITCS
$197.00$177.30
623 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.