Once you have your wireless going and would like to limit the access of your internet etc, there are some things you can consider. 1) Don't use dhcp on the wireless side, statically assign all ends. 2) Use your firewall(iptables) to only peform NAT on authorised subnets 3) Run squid proxy transparent and assign ACLs ( access lists) to only only certain ip/mac addresses to have web internet access. 4) Run a dhcp server for your local LAN and assign specific IP address for all known clients (this helps in step 3). All these measures can be easily setup if you are running *nix as your wireless gateway. Running squid proxy has the added advantage of saving internet bandwitdh by caching web pages etc. You can also install ad-zapper on squid redirects to stop unwanted ads and enhance web page loading. CategoryHowTo