[ Date Index ] [ Thread Index ] [ <= Previous by date / thread ] [ Next by date / thread => ]
On 27/08/15 10:41, Ben Whorwood wrote:
I would be interested to hear what route (excuse the pun) you decide to take using a Raspberry Pi. In the past when trying to achieve similar I have used a setup similar to this: http://www.smallnetbuilder.com/lanwan/lanwan-howto/24428-howtotwoprivlan Essentially you have your main broadband router with then two additional routers connected to the main broadband router LAN using their WAN ports; clients then connect to each additional / second layer router. You'll need to configure the DHCP server on each additional / second layer router so that the subnets don't clash. Although additional hardware is required I've found that people typically have spare broadband routers lying around these days and it saves having to manage VLANs. Thanks, Ben On 26/08/15 18:57, Tom wrote:I've managed to get a RaspberryPi to act as a hotspot for my holiday cottage guests to connect to the internet. My adsl router is 192.168.2.254 and the guests work from 192.168.10... . I want to prevent them accessing the 192.168.2 network other than the router - how can I get this to just sink anthng other than the nat traffic ... Tom te tom te tom
It turns out you can drop a range of IP's in the NAT IP table: iptables -I INPUT -m iprange --src-range 192.168.2.0-192.168.2.253 -j DROP so I'll have a play with thatI used a couple of web howtos https://learn.adafruit.com/setting-up-a-raspberry-pi-as-a-wifi-access-point/overview but not for an adafruit one change wlan0 to wlan1 and eth0 to wlan0 and point it at your router and it seems to work but I'd like to try an hack the living daylights out it from the 'guest' side to make sure I don't have to train the family up in security methods! I must confess when I did routing many years ago I always wanted to write a simple gui for setting up and testing/writing iptables - confuses the buggery out of me still!
Tom te tom te tom -- The Mailing List for the Devon & Cornwall LUG http://mailman.dclug.org.uk/listinfo/list FAQ: http://www.dcglug.org.uk/listfaq