Difference between revisions of "Template:Networking rutos configuration example guest wifi"
(77 intermediate revisions by 3 users not shown) | |||
Line 4: | Line 4: | ||
Most of us are aware, that network security is extremely important. If your WiFi network is not properly secured, it makes you and all of your home or office resources vulnerable to a variety of security threats. To stay ahead of the curve, many companies and home users have guest WiFi. Unlike your regular WiFi network that you or your company members use, the guest WiFi network restricts what your guests can do in your network. It gives visitors access to the Internet connection, but nothing else making you or your company a lot more secure. This chapter is a guide on configuring a guest WiFi. | Most of us are aware, that network security is extremely important. If your WiFi network is not properly secured, it makes you and all of your home or office resources vulnerable to a variety of security threats. To stay ahead of the curve, many companies and home users have guest WiFi. Unlike your regular WiFi network that you or your company members use, the guest WiFi network restricts what your guests can do in your network. It gives visitors access to the Internet connection, but nothing else making you or your company a lot more secure. This chapter is a guide on configuring a guest WiFi. | ||
− | + | ---- | |
− | + | If you're having trouble finding some of the parameters described here on your device's WebUI, you should <b>turn on "Advanced WebUI" mode</b>. You can do that by clicking the "Basic" button under "Mode", which is located at the top-right corner of the WebUI. | |
− | [[File: | + | [[File:Networking rutx manual webui basic advanced mode v1.gif|border|class=tlt-border]] |
− | + | ==Configuring router (RUTX)== | |
− | ===New | + | ===New LAN=== |
---- | ---- | ||
Line 16: | Line 16: | ||
<tr> | <tr> | ||
<th width=395; style="border-bottom: 1px solid white;></th> | <th width=395; style="border-bottom: 1px solid white;></th> | ||
− | <th width=700; style="border-bottom: 1px solid white;" rowspan=2>[[File:Networking | + | <th width=700; style="border-bottom: 1px solid white;" rowspan=2>[[File:Networking rutx configuration examples guest wifi 2 v1.png|border|class=tlt-border]]</th> |
</tr> | </tr> | ||
<tr> | <tr> | ||
<td style="border-bottom: 1px solid white> | <td style="border-bottom: 1px solid white> | ||
− | Login to the router's WebUI, | + | Login to the router's WebUI, switch to '''ADVANCED''' mode and navigate to the '''Network → Interfaces''' page and do the following: |
<ol> | <ol> | ||
− | <li></li> | + | <li>Enter a custom '''name'''.</li> |
− | <li></li> | + | <li>Click the '''Add''' button.</li> |
− | + | ||
− | |||
</ol> | </ol> | ||
</td> | </td> | ||
Line 36: | Line 35: | ||
<tr> | <tr> | ||
<th width=395; style="border-bottom: 1px solid white;></th> | <th width=395; style="border-bottom: 1px solid white;></th> | ||
− | <th width=700; style="border-bottom: 1px solid white;" rowspan=2> | + | <th width=700; style="border-bottom: 1px solid white;" rowspan=2>[[File:Networking rutx configuration examples guest wifi 2 v1.png|border|class=tlt-border]]</th> |
− | [[File:Networking | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
− | <td style="border-bottom: 1px solid white | + | <td style="border-bottom: 1px solid white> |
− | + | ||
<ol> | <ol> | ||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | + | <li>Select protocol '''Static'''.</li> | |
− | + | <li>Enter a '''IPv4 address'''.</li> | |
− | + | <li>Enter a '''IPv4 netmask'''.</li> | |
− | < | + | <li>'''Enable''' DHCP server.</li> |
− | + | <li>Don't forget to '''Save&Apply''' the changes.</li> | |
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | < | ||
− | <li> | ||
− | <li> | ||
− | <li> | ||
− | <li>'''Save&Apply''' changes.</li> | ||
</ol> | </ol> | ||
</td> | </td> | ||
Line 75: | Line 52: | ||
</table> | </table> | ||
+ | ===New Wireless=== | ||
---- | ---- | ||
Line 80: | Line 58: | ||
<tr> | <tr> | ||
<th width=395; style="border-bottom: 1px solid white;></th> | <th width=395; style="border-bottom: 1px solid white;></th> | ||
− | <th width=700; style="border-bottom: 1px solid white;" rowspan=2>[[File:Networking | + | <th width=700; style="border-bottom: 1px solid white;" rowspan=2>[[File:Networking rutx configuration examples guest wifi 5 v1.png|border|class=tlt-border]]</th> |
</tr> | </tr> | ||
<tr> | <tr> | ||
<td style="border-bottom: 1px solid white> | <td style="border-bottom: 1px solid white> | ||
− | + | Navigate to the '''Network → Wireless''' page and do the following: | |
<ol> | <ol> | ||
+ | <li>Click '''Add'''.</li> | ||
<li></li> | <li></li> | ||
<li></li> | <li></li> | ||
<li></li> | <li></li> | ||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
</ol> | </ol> | ||
</td> | </td> | ||
Line 114: | Line 73: | ||
</table> | </table> | ||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
---- | ---- | ||
Line 142: | Line 79: | ||
<th width=395; style="border-bottom: 1px solid white;></th> | <th width=395; style="border-bottom: 1px solid white;></th> | ||
<th width=700; style="border-bottom: 1px solid white;" rowspan=2> | <th width=700; style="border-bottom: 1px solid white;" rowspan=2> | ||
− | [[File:Networking | + | [[File:Networking rutx configuration examples guest wifi 4 v1.png|border|class=tlt-border]]</th> |
</tr> | </tr> | ||
<tr> | <tr> | ||
<td style="border-bottom: 1px solid white;> | <td style="border-bottom: 1px solid white;> | ||
− | + | ||
<ol> | <ol> | ||
− | <li></li> | + | <li>'''Enable''' instance.</li> |
+ | <li>Select mode '''Access Point'''.</li> | ||
+ | <li>Enter '''ESSID'''.</li> | ||
+ | <li>Assign it to new '''Guest''' LAN network.</li> | ||
</ol> | </ol> | ||
</td> | </td> | ||
Line 160: | Line 100: | ||
<th width=395; style="border-bottom: 1px solid white;></th> | <th width=395; style="border-bottom: 1px solid white;></th> | ||
<th width=700; style="border-bottom: 1px solid white;" rowspan=2> | <th width=700; style="border-bottom: 1px solid white;" rowspan=2> | ||
− | [[File:Networking | + | [[File:Networking rutx configuration examples guest wifi 4 v1.png|border|class=tlt-border]]</th> |
</tr> | </tr> | ||
<tr> | <tr> | ||
<td style="border-bottom: 1px solid white;> | <td style="border-bottom: 1px solid white;> | ||
− | + | Switch to '''Wireless Security''' tab and to following: | |
<ol> | <ol> | ||
− | <li> | + | <li>Select '''Encryption''' type.</li> |
− | + | <li>Select '''Cipher''' type.</li> | |
− | <li>Select | + | <li>Enter '''Key'''.</li> |
− | <li> | ||
<li>'''Save&Apply''' changes.</li> | <li>'''Save&Apply''' changes.</li> | ||
− | |||
</ol> | </ol> | ||
</td> | </td> | ||
Line 182: | Line 120: | ||
<tr> | <tr> | ||
<th width=395; style="border-bottom: 1px solid white;></th> | <th width=395; style="border-bottom: 1px solid white;></th> | ||
− | <th width=700; style="border-bottom: 1px solid white;" rowspan=2> | + | <th width=700; style="border-bottom: 1px solid white;" rowspan=2>[[File:Networking rutx configuration examples guest wifi 5 v1.png|border|class=tlt-border]]</th> |
− | [[File:Networking | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
− | <td style="border-bottom: 1px solid white | + | <td style="border-bottom: 1px solid white> |
− | + | Wait for configuration to apply. Two Wireless Access Points should be enabled | |
<ol> | <ol> | ||
− | <li> | + | <li></li> |
− | <li> | + | <li></li> |
− | <li> | + | <li></li> |
− | <li> | + | <li></li> |
</ol> | </ol> | ||
</td> | </td> | ||
Line 198: | Line 135: | ||
</table> | </table> | ||
+ | ===Edit Firewall zone=== | ||
---- | ---- | ||
Line 204: | Line 142: | ||
<th width=395; style="border-bottom: 1px solid white;></th> | <th width=395; style="border-bottom: 1px solid white;></th> | ||
<th width=700; style="border-bottom: 1px solid white;" rowspan=2> | <th width=700; style="border-bottom: 1px solid white;" rowspan=2> | ||
− | [[File:Networking | + | [[File:Networking rutx configuration examples guest wifi 6 v1.png|border|class=tlt-border]]</th> |
</tr> | </tr> | ||
<tr> | <tr> | ||
<td style="border-bottom: 1px solid white;> | <td style="border-bottom: 1px solid white;> | ||
− | + | Navigate to the '''Network → Firewall → General Settings''' page and do the following | |
<ol> | <ol> | ||
− | <li>''' | + | <li>Click the '''Add''' button.</li> |
− | <li> | + | <li>Enter a custom '''name'''.</li> |
− | <li> | + | <li>Add new created Guest LAN to '''Covered networks'''.</li> |
− | <li> | + | <li>Select '''WAN''' interfaces for '''Allow forward to destination zones'''.</li> |
+ | <li>Select '''WAN''' interfaces for '''Allow forward from destination zones'''.</li> | ||
<li>'''Save&Apply''' changes.</li> | <li>'''Save&Apply''' changes.</li> | ||
<li></li> | <li></li> | ||
Line 222: | Line 161: | ||
==Results== | ==Results== | ||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
Wireless users connected to SSID: “'''RUTX_WIFI'''”, will be assign to “LAN”, and will get IP from main pool '''192.168.1.0/24'''. | Wireless users connected to SSID: “'''RUTX_WIFI'''”, will be assign to “LAN”, and will get IP from main pool '''192.168.1.0/24'''. | ||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
Wireless users connected to SSID: “'''GUEST'S_WIFI'''”, will be assign to LAN “Guest”, and will get IP from new pool '''10.10.10.0/24'''. | Wireless users connected to SSID: “'''GUEST'S_WIFI'''”, will be assign to LAN “Guest”, and will get IP from new pool '''10.10.10.0/24'''. | ||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | + | Guest hosts are unable to access any data from pool 192.168.1.0/24. | |
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | Guest hosts are unable to access any data from pool 192.168.1.0/24. | ||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− |
Revision as of 12:39, 2 July 2020
Introduction
Most of us are aware, that network security is extremely important. If your WiFi network is not properly secured, it makes you and all of your home or office resources vulnerable to a variety of security threats. To stay ahead of the curve, many companies and home users have guest WiFi. Unlike your regular WiFi network that you or your company members use, the guest WiFi network restricts what your guests can do in your network. It gives visitors access to the Internet connection, but nothing else making you or your company a lot more secure. This chapter is a guide on configuring a guest WiFi.
If you're having trouble finding some of the parameters described here on your device's WebUI, you should turn on "Advanced WebUI" mode. You can do that by clicking the "Basic" button under "Mode", which is located at the top-right corner of the WebUI.
Configuring router (RUTX)
New LAN
File:Networking rutx configuration examples guest wifi 2 v1.png | |
---|---|
Login to the router's WebUI, switch to ADVANCED mode and navigate to the Network → Interfaces page and do the following:
|
File:Networking rutx configuration examples guest wifi 2 v1.png | |
---|---|
|
New Wireless
File:Networking rutx configuration examples guest wifi 5 v1.png | |
---|---|
Navigate to the Network → Wireless page and do the following:
|
File:Networking rutx configuration examples guest wifi 4 v1.png | |
---|---|
|
File:Networking rutx configuration examples guest wifi 4 v1.png | |
---|---|
Switch to Wireless Security tab and to following:
|
File:Networking rutx configuration examples guest wifi 5 v1.png | |
---|---|
Wait for configuration to apply. Two Wireless Access Points should be enabled |
Edit Firewall zone
File:Networking rutx configuration examples guest wifi 6 v1.png | |
---|---|
Navigate to the Network → Firewall → General Settings page and do the following
|
Results
Wireless users connected to SSID: “RUTX_WIFI”, will be assign to “LAN”, and will get IP from main pool 192.168.1.0/24.
Wireless users connected to SSID: “GUEST'S_WIFI”, will be assign to LAN “Guest”, and will get IP from new pool 10.10.10.0/24.
Guest hosts are unable to access any data from pool 192.168.1.0/24.