Hi, I have multiple rb 112 highsites connected through wds and authenticating using the hotspot sysem on a rb 500 board. My problem is that i do not know how to block users from accessing eachothers pc’s on the network. Does anyone have any ideas which could help me out?
use Linksys WRT54 as an AP ,it has an isolation option.
use Linksys WRT54 as an AP ,it has an isolation option.
You are kidding right?
On your RB you can turn off default forwarding to stop clients on the same AP seeing each other. You can also use the firewall to block ports 135 and 443-445 to stop NETBIOS communication between PC’s on different routers. Do you just want to stop users from seeing each others computers in Network Neighbourhood? This will do the trick in that case.
adaheem is right…if you use link$y$ wrt54 ur users will have bigger problems than seeing each other, so the issue will then be “isolated”.
jk, the post above this has the right answer
So even if i have multiple rb ap’s linking together via wds turning off default forwarding will work?
Please correct me if I’m wrong.
Won’t you create the hidden node problem by turning Default forwarding off?
So if you have a small network, 10 - 20 users this should work ok, but for larger networks this could cause some problems in peak times.
Regarding the firewall option.
It will work to block the above mentioned ports, between routers, but not for users connected to the same AP.
I would also like to know an answer to this as I’m experiencing the same problem. I know about nstream, but it won’t work for my environment.
Is pppoe an answer (point to point links)?
Won’t you create the hidden node problem by turning Default forwarding off?
I fail to see how? Hidden node is purely RF/802.11 related, whereas ‘default forwarding’ is exactly like the Linksys ‘isolation’ option - just blocking access between clients connected to the same AP…
Yes Link$y$ wonderful choice, not 
Switch off default forward. Hidden node is an RF problem due to 802.11 use of CDMA which can be helped by lowering the RTS/CTS of the clients to <500 . Although this is not possible on a public hotspot