joshg409
join:2005-05-03
Ottumwa, IA
| reply to inova
Re: Subnets
If you are only talking a few customers at each hop plus backhauls you can bridge it with little problems. Implement the addressing scheme as trc120 states. You can interchange the pc for your internet facing router and add secondary IP's to the interface. Backhauls, Infra, and management pc's on one subnet and the CPE on another. Make sure you filter netbios etc at the CPE or put routers at the customer site to prevent browsing. Remember Windows workgroup garbage is not routeable (netbios) so if you bridge that garbage will come all the way back to the router. |
|
inova
join:2006-05-03
Macnutt, SK | Hmmm, netbios garbage... I have thought about that but don't have the first clue how to deal with it. How would I filter it at the CPE? Given the Delib 23xx radios I have been using. |
|
gmcintire
Graham
Premium
join:2005-08-09
Blue Ridge, TX
| said by inova  :Hmmm, netbios garbage... I have thought about that but don't have the first clue how to deal with it. How would I filter it at the CPE? Given the Delib 23xx radios I have been using. The DLB-23xx support Layer 2 client isolation, just enable "Block WLAN Relay."
Directly from the manual:
The device supports isolation function. If you are building a public Wireless Network, enable this function can provide better security. The device will block packets between wireless clients (relay). All the wireless clients connected to the device can’t see each other.
|
|
inova
join:2006-05-03
Macnutt, SK | Ok, so that's what that means. Would using this feature be problematic if both sides of the radio were on public or 192.168.xxx.xxx schemes? |
|
gmcintire
Graham
Premium
join:2005-08-09
Blue Ridge, TX
| said by inova :Ok, so that's what that means. Would using this feature be problematic if both sides of the radio were on public or 192.168.xxx.xxx schemes? It shouldn't matter what IP space each interface your AP has because the isolation is done at layer 2, while routing is layer 3. |
|
inova
join:2006-05-03
Macnutt, SK | Thanks, I'll give it a go... |
|
