Kelley
On Sep 10, 2004, at 7:42 AM, [EMAIL PROTECTED] wrote:
This looks like it was designed for case I'm seeing:� separation of small private lan from guests needing wireless Internet access and nothing else.
Further, it appears that it is one of the few solutions that does it all with only one DSL line/ip address into the facility.� Adding a second DSL line with separate wireless router is simpler, but has ongoing monthly costs.� The DLink although initially more expensive, doesn't have the recurring costs.
Is this the only solution or approach that involves using just the ONE existing DSL line and providing security?
Thanks everyone for the ideas and suggestions.
John
At 03:46 PM 9/9/2004, you wrote:
This might suit your needs:
http://www.d-link.com/products/?pid=173
�
"The DSA-3100 Public/Private Hot Spot Gateway is a secure gateway designed to create two distinct networks through its integrated public and private ports. By adding a wireless access point to the public port on the DSA-3100, customers and patrons can connect to a free or fee-based broadband Internet connection. Through the private port, hot spot operators can be assured their private and confidential information is secured from public access. And depending on the establishment size and network deployment needs, hot spot operators can add switches and access points to expand their networks to provide full wireless coverage."
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of John Freeman
Sent: Tuesday, September 07, 2004 8:24 PM
To: [EMAIL PROTECTED]
Subject: [SOCALWUG] Firewall separating wireless vs internal users
Can anyone give me some ideas or directions on this situation:
In a small wired office environment, is it possible to add a wireless router AND guarantee that any wireless Internet users do NOT have any access whatsoever to the internal LAN and PC's on the internal Lan?
It seems to me that the wireless users would have IP addresses of the same subnet as the office users, and hence the office LAN would be vulnerable, and basically unsecured.� Both would have Internet access.
Maybe this is an idea?� WAN==> Wireless Router ==> Firewall ==> switch ==> internal PC's ?
Not trying to spend a fortune, but I think just getting a wireless router and "hoping" no one discovers the office network is a mistake.
Ideas?� Thanks,
John Freeman
