Line 10: |
Line 10: |
| | | |
| | | |
− | ===New Wireless=== | + | ===New WiFi AP=== |
| ---- | | ---- |
| | | |
Line 20: |
Line 20: |
| <tr> | | <tr> |
| <td style="border-bottom: 1px solid white> | | <td style="border-bottom: 1px solid white> |
− | Login to the router's WebUI, navigate to the '''Network → Wireless''' page and do the following: | + | Login to the router's WebUI, navigate to the '''Network → Wireless''' page. Click '''Add'''. You can use either, 2.4GHz or 5GHz WiFi. Then you will be forwarded to the configuration window. |
| <ol> | | <ol> |
− | <li>Click '''Add'''.</li> | + | <li></li> |
| <li></li> | | <li></li> |
| <li></li> | | <li></li> |
Line 37: |
Line 37: |
| <th width=395; style="border-bottom: 1px solid white;></th> | | <th width=395; style="border-bottom: 1px solid white;></th> |
| <th width=700; style="border-bottom: 1px solid white;" rowspan=2> | | <th width=700; style="border-bottom: 1px solid white;" rowspan=2> |
− | [[File:Networking rutos configuration examples guest wifi 4 v1.png|border|class=tlt-border]]</th> | + | [[File:Networking rutos configuration examples guest wifi 4 v2.png|border|class=tlt-border]]</th> |
| </tr> | | </tr> |
| <tr> | | <tr> |
Line 45: |
Line 45: |
| <li>'''Enable''' instance.</li> | | <li>'''Enable''' instance.</li> |
| <li>Select mode '''Access Point'''.</li> | | <li>Select mode '''Access Point'''.</li> |
− | <li>Enter '''ESSID'''.</li> | + | <li>Enter a custom '''ESSID'''.</li> |
− | <li>Assign it to new '''Guest''' LAN network.</li> | + | <li>Expand the drop-down menu '''Network'''.</li> |
| + | <li>Uncheck the '''lan''' interface.</li> |
| + | <li>Create a new interface, enter a custom name '''Guest'''.</li> |
| </ol> | | </ol> |
| </td> | | </td> |
Line 93: |
Line 95: |
| </table> | | </table> |
| | | |
− | ===New LAN=== | + | ===New LAN interface=== |
| ---- | | ---- |
| | | |
Line 99: |
Line 101: |
| <tr> | | <tr> |
| <th width=395; style="border-bottom: 1px solid white;></th> | | <th width=395; style="border-bottom: 1px solid white;></th> |
− | <th width=700; style="border-bottom: 1px solid white;" rowspan=2>[[File:Networking rutos configuration examples guest wifi 1 v1.png|border|class=tlt-border]]</th> | + | <th width=700; style="border-bottom: 1px solid white;" rowspan=2>[[File:Networking rutos configuration example openvpn bridge use case 12 v1.png|border|class=tlt-border]]</th> |
| </tr> | | </tr> |
| <tr> | | <tr> |
| <td style="border-bottom: 1px solid white> | | <td style="border-bottom: 1px solid white> |
− | Navigate to the '''Network → Interfaces''' page and do the following:
| + | Now go to '''Network → Interfaces''' and press '''Edit''' next to your newly created LAN interface: |
| <ol> | | <ol> |
− | <li>Enter a custom '''name'''.</li> | + | <li></li> |
− | <li>Click the '''Add''' button.</li>
| |
| | | |
| </ol> | | </ol> |
Line 122: |
Line 123: |
| <tr> | | <tr> |
| <td style="border-bottom: 1px solid white> | | <td style="border-bottom: 1px solid white> |
− | In the '''LAN interfaces''' page, do the following: | + | In the '''General setup''' section, do the following: |
| <ol> | | <ol> |
| <li>Select '''Protocol''' - Static. Confirm by clicking "SWITCH PROTOCOL".</li> | | <li>Select '''Protocol''' - Static. Confirm by clicking "SWITCH PROTOCOL".</li> |
Line 134: |
Line 135: |
| </table> | | </table> |
| | | |
− | ===Edit Firewall zone=== | + | ===Firewall rules=== |
| ---- | | ---- |
| | | |
Line 141: |
Line 142: |
| <th width=395; style="border-bottom: 1px solid white;></th> | | <th width=395; style="border-bottom: 1px solid white;></th> |
| <th width=700; style="border-bottom: 1px solid white;" rowspan=2> | | <th width=700; style="border-bottom: 1px solid white;" rowspan=2> |
− | [[File:Networking rutos configuration examples guest wifi 7 v1.png|border|class=tlt-border]]</th> | + | [[File:Networking rutos configuration example openvpn bridge use case 15 v1.png|border|class=tlt-border]]</th> |
| </tr> | | </tr> |
| <tr> | | <tr> |
| <td style="border-bottom: 1px solid white;> | | <td style="border-bottom: 1px solid white;> |
− | Navigate to the '''Network → Firewall → General Settings''' page and do the following | + | Navigate to '''Network → Firewall → General Settings'''. There create a new '''Zone''' rule by pressing '''Add''' button. Then you will be forwarded to the configuration window. |
| <ol> | | <ol> |
− | <li>Click the '''Add''' button.</li> | + | <li></li> |
| </ol> | | </ol> |
| </td> | | </td> |
Line 165: |
Line 166: |
| In the '''ZONE''' page, do the following: | | In the '''ZONE''' page, do the following: |
| <ol> | | <ol> |
− | <li>Enter a custom '''name'''.</li> | + | <li>Enter a custom '''Name'''.</li> |
− | <li>Add new created Guest LAN to '''Covered networks'''.</li> | + | <li>Add new created ''"Guest"'' LAN to '''Covered networks'''.</li> |
| <li>Select WAN interfaces for '''Allow forward to destination zones'''.</li> | | <li>Select WAN interfaces for '''Allow forward to destination zones'''.</li> |
| <li>Select WAN interfaces for '''Allow forward from destination zones'''.</li> | | <li>Select WAN interfaces for '''Allow forward from destination zones'''.</li> |
| + | <li>'''Save&Apply''' changes.</li> |
| + | <li></li> |
| + | </ol> |
| + | </td> |
| + | </tr> |
| + | </table> |
| + | |
| + | ---- |
| + | |
| + | <table class="nd-othertables_2"> |
| + | <tr> |
| + | <th width=395; style="border-bottom: 1px solid white;></th> |
| + | <th width=700; style="border-bottom: 1px solid white;" rowspan=2> |
| + | [[File:Networking rutos configuration examples guest wifi 9 v1.png|border|class=tlt-border]]</th> |
| + | </tr> |
| + | <tr> |
| + | <td style="border-bottom: 1px solid white;> |
| + | In order to disable WebUI or SSH access to RUTX from Guest's_WiFi network navigate to the '''Network → Firewall → Traffic Rules''' page and do the following: |
| + | <ol> |
| + | <li>Enter a custom '''Name'''.</li> |
| + | <li>Select ''"guest_zone"'' for '''Source zone'''.</li> |
| + | <li>Select ''"lan"'' for '''Destination zone'''.</li> |
| + | <li>Click the '''Add''' button. Then you will be forwarded to the configuration window.</li> |
| + | </ol> |
| + | </td> |
| + | </tr> |
| + | </table> |
| + | |
| + | ---- |
| + | |
| + | <table class="nd-othertables_2"> |
| + | <tr> |
| + | <th width=395; style="border-bottom: 1px solid white;></th> |
| + | <th width=700; style="border-bottom: 1px solid white;" rowspan=2> |
| + | [[File:Networking rutos configuration examples guest wifi 10 v1.png|border|class=tlt-border]]</th> |
| + | </tr> |
| + | <tr> |
| + | <td style="border-bottom: 1px solid white;> |
| + | Do the following in the '''TRAFFIC RULES''' page: |
| + | <ol> |
| + | <li>'''Enable''' instance.</li> |
| + | <li>Change the '''Destination zone''' to ''"Device (input)"''.</li> |
| + | <li>Enter the '''Destination port''' to reject. By default ports 22, 80, 443 are used to access the web user interface and SSH.</li> |
| + | <li>Change the '''Action''' to ''"Reject"''.</li> |
| <li>'''Save&Apply''' changes.</li> | | <li>'''Save&Apply''' changes.</li> |
| <li></li> | | <li></li> |
Line 177: |
Line 222: |
| | | |
| ==Results== | | ==Results== |
− | If you've followed all the steps presented above, your configuration should be finished. If you are near a RUT, that is, in a wireless zone, turn on WiFi on your device and view the available networks. You should see the available SSID - "RUT_WiFi" and "Guest_WiFi". Select one of them and enter the appropriate WiFi password. | + | If you've followed all the steps presented above, your configuration should be finished. If you are near a RUT, that is, in a wireless zone, turn on WiFi on your device and view the available networks. You should see the available SSID - "RUTX_WiFi_2G" and "Guest_WiFi". Select one of them and enter the appropriate WiFi password. |
| + | |
| + | ----- |
| | | |
| + | <table class="nd-othertables_2"> |
| + | <tr> |
| + | <th width=525; style="border-bottom: 1px solid white;"></th> |
| + | <th width=620; style="border-bottom: 1px solid white;" rowspan=2> |
| + | [[File:Networking rutos configuration examples guest wifi 14 v1.jpg|border|class=tlt-border|300px|center]]</th> |
| + | </tr> |
| + | <tr> |
| + | <td style="border-bottom: 1px solid white> |
| Wireless users connected to SSID: “'''RUTX_WIFI'''”, will be assign to “LAN”, and will get IP from main pool '''192.168.1.0/24'''. | | Wireless users connected to SSID: “'''RUTX_WIFI'''”, will be assign to “LAN”, and will get IP from main pool '''192.168.1.0/24'''. |
| + | </td> |
| + | </tr> |
| + | </table> |
| + | |
| + | ---- |
| + | |
| + | <table class="nd-othertables_2"> |
| + | <tr> |
| + | <th width=525; style="border-bottom: 1px solid white;"></th> |
| + | <th width=620; style="border-bottom: 1px solid white;" rowspan=2> |
| + | [[File:Networking rutos configuration examples guest wifi 13 v1.jpg|border|class=tlt-border|300px|center]]</th> |
| + | </tr> |
| + | <tr> |
| + | <td style="border-bottom: 1px solid white> |
| + | LAN users are able to access any data from pool 192.168.1.0/24. For example they can access Web UI. |
| + | <ol> |
| + | <li></li> |
| + | <li></li> |
| + | <li></li> |
| + | <li></li> |
| + | </ol> |
| + | </td> |
| + | </tr> |
| + | </table> |
| + | |
| + | ---- |
| | | |
| + | <table class="nd-othertables_2"> |
| + | <tr> |
| + | <th width=525; style="border-bottom: 1px solid white;"></th> |
| + | <th width=620; style="border-bottom: 1px solid white;" rowspan=2> |
| + | [[File:Networking rutos configuration examples guest wifi 12 v2.jpg|border|class=tlt-border|300px|center]]</th> |
| + | </tr> |
| + | <tr> |
| + | <td style="border-bottom: 1px solid white> |
| Wireless users connected to SSID: “'''GUEST'S_WIFI'''”, will be assign to LAN “Guest”, and will get IP from new pool '''10.10.10.0/24'''. | | Wireless users connected to SSID: “'''GUEST'S_WIFI'''”, will be assign to LAN “Guest”, and will get IP from new pool '''10.10.10.0/24'''. |
| + | <ol> |
| + | <li></li> |
| + | <li></li> |
| + | <li></li> |
| + | </ol> |
| + | </td> |
| + | </tr> |
| + | </table> |
| | | |
− | Guest hosts are unable to access any data from pool 192.168.1.0/24. | + | ---- |
| + | |
| + | <table class="nd-othertables_2"> |
| + | <tr> |
| + | <th width=525; style="border-bottom: 1px solid white;"></th> |
| + | <th width=620; style="border-bottom: 1px solid white;" rowspan=2> |
| + | [[File:Networking rutos configuration examples guest wifi 11 v1.jpg|border|class=tlt-border|300px|center]]</th> |
| + | </tr> |
| + | <tr> |
| + | <td style="border-bottom: 1px solid white> |
| + | Guest hosts are unable to access any data from pool 192.168.1.0/24. And access to RUTX Web UI or SSH is restricted. |
| + | <ol> |
| + | <li></li> |
| + | <li></li> |
| + | <li></li> |
| + | </ol> |
| + | </td> |
| + | </tr> |
| + | </table> |