Topic: [OT] Isolate public wireless network from private LAN

[dtech]

Pretty off topic I know, but I figured this was a pretty good place to ask to get a good answer.

I have a customer that wants to add a public access wireless network at their facility, and of course I want to make sure that no one on the wireless network can get access to the LAN. So, there is one server (it happens to be a Windows 2003 server) that acts as a file/printer server and it provides DHCP/DNS to the network. It is not the gateway, a PIX firewall is, and then they have an HP 2424m switch behind that. So, to recap; from the internet on in we have a cable modem, PIX, HP 2424m, then off the switch to the server and workstations. They have a Netgear WG102 WAP and a Linksys WRT54G. Any ideas?

Thanks in advance,

-dtech

[Arnie]

                                 --- Switch --- Server/Workstations
                                |
Cable modem --- PIX ---
                                |
                                 --- WAP

Use PIX to isolate the LAN and the WAP.

[RedBeard]

I would be careful about providing public access with little and/or no control of the traffic . . .  If someone uses the connection for something illegal the owner is going to have to answer for it.  See the actions of RIAA going after people for file sharing I don't think you want to have to deal with something like that even if in the end the owner is not liable.

[versa]

You could try ths.
I cannot say wether it works or not though
http://wiki.contribs.org/CoovaChilli