This
might suit your needs:
"The DSA-3100
Public/Private Hot Spot Gateway is a secure gateway designed to create two
distinct networks through its integrated public and private ports. By adding a
wireless access point to the public port on the DSA-3100, customers and patrons
can connect to a free or fee-based broadband Internet connection. Through the
private port, hot spot operators can be assured their private and confidential
information is secured from public access. And depending on the establishment
size and network deployment needs, hot spot operators can add switches and
access points to expand their networks to provide full wireless coverage."
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of John Freeman
Sent: Tuesday, September 07, 2004 8:24 PM
To: [EMAIL PROTECTED]
Subject: [SOCALWUG] Firewall separating wireless vs internal users
Can anyone give me some ideas or directions on this situation:
In a small wired office environment, is it possible to add a wireless router AND guarantee that any wireless Internet users do NOT have any access whatsoever to the internal LAN and PC's on the internal Lan?
It seems to me that the wireless users would have IP addresses of the same subnet as the office users, and hence the office LAN would be vulnerable, and basically unsecured. Both would have Internet access.
Maybe this is an idea? WAN==> Wireless Router ==> Firewall ==> switch ==> internal PC's ?
Not trying to spend a fortune, but I think just getting a wireless router and "hoping" no one discovers the office network is a mistake.
Ideas? Thanks,
John Freeman
