LAN & WLAN coexistence

Post Reply
zkab
Posts: 15
Joined: February 1st, 2018, 10:19 pm

LAN & WLAN coexistence

Post by zkab » February 9th, 2018, 2:20 pm

We will move to ipfire in the near future.
Today we are running a different software but we are interested to move to ipfire.
Our environment right now is RED+GREEN where GREEN goes into a LAN switch.
But we want to introduce a WiFi network (Google WiFi) also in addition to our LAN.
How can that be done in a best and secure way.
Our idea was to add a BLUE NIC and connect the Google WiFi to it.

Some questions:
How can I allow WiFi users with right credential to access the LAN and the rest will be blocked from LAN.
How can I allow LAN users with right credential to access the WIFI network ?
Is this the right way to go for coexistence between LAN & WLAN ?
Appreciate input ...

zkab
Posts: 15
Joined: February 1st, 2018, 10:19 pm

Re: LAN & WLAN coexistence

Post by zkab » February 11th, 2018, 9:38 am

Anyone ???

User avatar
FischerM
Community Developer
Community Developer
Posts: 739
Joined: November 2nd, 2011, 12:28 pm

Re: LAN & WLAN coexistence

Post by FischerM » February 11th, 2018, 9:52 am

Hi and welcome! ;)

I never worked with 'Google WiFi', but first I would ensure that I'm running compatible hardware by looking at the IPFire WiKi from "top to bottom", especially the HCL-list.

Setting up the BLUE network is described here.

Once you've got RED-GREEN-BLUE up and running, everything else should be configured through appropriate firewall rules, depending on your needs.

HTH,
Matthias

zkab
Posts: 15
Joined: February 1st, 2018, 10:19 pm

Re: LAN & WLAN coexistence

Post by zkab » February 11th, 2018, 10:23 am

Thank you for the answer ... I have already checked hardware list and my idea was to install a compatible BLUE-NIC and connect the Google WiFi to that NIC via RJ45 connector

zkab
Posts: 15
Joined: February 1st, 2018, 10:19 pm

Re: LAN & WLAN coexistence

Post by zkab » February 11th, 2018, 11:36 am

Additional thoughts ...
As you understand I want to connect to a mesh network (Google WiFi). These networks are soon becoming predominate wifi networks on the market.
The way to connect a WiFi NIC as BLUE is going soon to be history ... who will build a wifi network in this way when there is mesh technology available ...
I think ipfire should implement mesh network functionality ...
Appreciate your comments.

GrueMaster
Posts: 17
Joined: December 28th, 2017, 2:46 pm

Re: LAN & WLAN coexistence

Post by GrueMaster » February 12th, 2018, 3:13 pm

Actually, having green, blue, (and possibly orange) networks coming from the same network port is possible using vlans. You just need to setup multiple vlans on your physical port (call it eth1), so that it looks something like this:
  • Green0: eth1: 192.168.0.1
    Blue0: eth1.1: 10.0.0.1
    Orange0: eth1.5: 172.100.0.1
Then you plug eth1 into your internal network, along with everything else. If you are using unmanaged (cheap) switches, this should just work. For managed switches, you will likely need to configure them for vlans as well.

One thing I am going to be experimenting with sometime soon is setting my main wifi network on green, and guest wifi on blue. Not sure how that will work (I have the Netgear Orbi series). My main concern is the backhaul on the satellite APs.

zkab
Posts: 15
Joined: February 1st, 2018, 10:19 pm

Re: LAN & WLAN coexistence

Post by zkab » February 13th, 2018, 12:09 pm

I have a managed switch but I was thinking of this solution:

Internet <--> RED
LAN <--> GREEN (192.168.0.0/24)
Google WiFi <--> BLUE (192.168.1.0/24)

Then I will configure 'ipfire' rules to allow some WiFi users to access the LAN.
Google WiFi will handle DHCP for WiFi users and will also have a guest network.

What do you think of this solution - will it work?
Any security issues ?

Post Reply

Who is online

Users browsing this forum: No registered users and 2 guests