Once you have your wireless going and would like to limit the access
of your internet etc, there are some things you can consider.
1) Don't use dhcp on the wireless side, statically assign all ends.
2) Use your firewall(iptables) to only peform NAT on authorised
subnets
3) Run squid proxy transparent and assign ACLs ( access lists) to
only only certain ip/mac addresses to have web internet access.
4) Run a dhcp server for your local LAN and assign specific IP
address for all known clients (this helps in step 3).
All these measures can be easily setup if you are running *nix as
your wireless gateway. Running squid proxy has the added advantage of
saving internet bandwitdh by caching web pages etc. You can also
install ad-zapper on squid redirects to stop unwanted ads and enhance
web page loading.
CategoryHowTo [1]
Links:
------
[1] http://melbournewireless.org.au/?CategoryHowTo
[EditText] [Spelling] [Current] [Raw] [Code] [Diff] [Subscribe] [VersionHistory] [Revert] [Delete] [RecentChanges]
Node Statistics | |
---|---|
building | 132 |
gathering | 193 |
interested | 515 |
operational | 233 |
testing | 214 |