site Search:


Home Reviews Tools Forums FAQs Find Service ISP News Maps About  
 
    All Forums Hot Topics Gallery






how-to block ads

  
Forums >

Broadband Tech > Security > Wireless Security > Virtual network between a client and the router/AP ?

Search Topic:
 Uniqs:
798		 Share Topic
Posting?
Post a:
Post a:
Links: ·Forum Guidelines ·Wireless Security FAQ ·Keith's FAQ
AuthorAll Replies

lambition

join:2004-08-26
Centreville, VA
2 edits

Virtual network between a client and the router/AP ?

I want to create virtual network between a client and the router or AP, so that all other clients on the same network are invisible to the client.

I know it is possible because my school (university) does that. I knew what it is called, but now I have forgotten what it is called.

It creates a virtual network with subnet mask of 255.255.255.252, so that there can only be 2 IP addresses in the network. IP addresses are random.

Does any one know what it is called and how I can accomplish this?

Thank you.
to forum · permalink · 2009-04-26 01:02:48 ·

g3neration

join:2005-11-04
Brooklyn, NY

Not sure why but wouldnt it be easier to add an ACL to deny traffic between the two networks?

to forum · permalink · 2009-04-27 22:52:36 ·

lambition

join:2004-08-26
Centreville, VA

Well. It won't be two networks if implementing what I explained above.
It will be like every Wi-Fi client has their own network. And since IP addresses will be given by DHCP server, I cannot predict what will have what IP. (unless DHCP server is programmed to work with it some how.)

to forum · permalink · 2009-04-27 22:57:12 ·

docrice
Premium
join:2008-03-31
Fremont, CA

You want each client to be in its own /30? Maybe this is accomplished via dynamic VLANing and layer 3 switching?

This isn't exactly the same thing, but Cisco APs (at least the older 1230 series) have a feature called "Public Secure Packet Forwarding" also referred to as "client isolation" by other manufacturers. It's basically a way for associated stations from being able to communicate with one another. That should accomplish essentially the same thing as an isolated collision domain.

to forum · permalink · 2009-04-28 04:26:21 ·

lambition

join:2004-08-26
Centreville, VA
1 edit

Thanks.

Although it is not exactly what I mentioned, I think that is exactly what I needed.

It would be great if I can do that on wired network too, but it seems I will be needing Layer 3 switch.

to forum · permalink · 2009-04-28 10:01:02 ·


Angelo
The Network Guy
Premium
join:2002-06-18

reply to docrice

said by docrice:

You want each client to be in its own /30? Maybe this is accomplished via dynamic VLANing and layer 3 switching?

This isn't exactly the same thing, but Cisco APs (at least the older 1230 series) have a feature called "Public Secure Packet Forwarding" also referred to as "client isolation" by other manufacturers. It's basically a way for associated stations from being able to communicate with one another. That should accomplish essentially the same thing as an isolated collision domain.
you mean wds?
to forum · permalink · 2009-05-06 06:17:24 ·
Forums > Broadband Tech > Security > Wireless Security

Thursday, 31-May 14:38:16 Terms of Use & Privacy | feedback | contact | Hosting by nac.net - DSL,Hosting & Co-lo
over 12.5 years online © 1999-2012 dslreports.com.
Most commented news this week
Hot Topics