Could anyone advise on the best network topology given that one is to use Mikrotik(rb433) as the APs, a X86 machine as the core(edge) router, urban setup area to be covered 16 square Kilometers eg is it to have the subscribers login at the AP (rb433) or create a bridge and have them login at the Edge routers the target clientele is about 500 with an average capacity of about 128/256 (up/down). we currently have 6 AP’s with with authentication on a remote server. other AP’s are configured as bridges while other have Hotspot configured on them
My best config is set up all the APs in bridge mode with a extensive filter firewalling over the bridge. All the bakchauling devices to the central office must be transparent bridges. The bw limiting and the routing is located at the central office. BUT the overall network design depends of the topography of each site / region to cover.
Why do you favour this as opposed to having the Hotspots at the Remote sites that is login at the perimeter as opposed to the Central office. which means it leaves the central office to handle the traffic to the remote hotspots while the Remote sites handle the logins. There could be lots of braoadcast from wider networks
the broadcast traffic never has becomes a problem. At least in my networks. The hostpot is a good solution too, but I prefer not use it because the described method (used in my case) has work great for me, just for that. My customers authentication method is by IP & mac address through firewall rules. I use several rb450g, one for bandwitdh limiting, other for firewalling, other for validation / routing. Is better for me, ever works ok… and all over a central office, not in remote sites. But this is only my own experience. Others like hotspots, I like my schema.