Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 27 subscribers
  • Views 6169 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

restrict access to my local lan from wireless AP

TarekHalloun

hello 

i have 2 wireless access points connected to sophos ( i use a permitted ip as the wan with the sophos as gateway )

internet is working but how can i restrict access from the access points to my lan ?

in destination i have wan and in destination networks i have any ..i tried to check this but couldnt find anything to lock lan 

please advise



This thread was automatically locked due to age.
Parents
  • 0

    Hi,

    you would need a rule at the top that goes like this source (wifi) ->  WIFI network address range -> destination (LAN) -> LAN network address range -> drop or reject.

    Be careful because you could block IP address allocation. Where are your WIFI IP addresses assigned from?

    Ian

  • 0 in reply to rfcat_vk

    i think you misunderstood me 

    i have lan with subnet 192.168.1.1/24

    i take an ip 192.168.1.111 and give it internet permission with sophos firewall 

    then i use this ip as a gateway in a wifi router ( as a wan )

    the router then gives a dhcp pool ( like 10.0.0.1/24 or something )

    now the wifi user can reach the 192.168.1.111 and then my local lan - i want to stop this 

    is this clear ?

  • 0 in reply to TarekHalloun

    A diagram probably would have helped.

    Take my rule and add another rule at the very top source LAN network the IP address of Router (192.168.1.x) destination any network 192.168.1.111 -> any

    Ian

Reply Children
No Data