Community discussions

MikroTik App
 
thomassocz
just joined
Topic Author
Posts: 17
Joined: Sat Sep 17, 2022 1:55 pm

CAPsMAN firewall configuration

Thu Oct 06, 2022 2:29 pm

Hi all,

I have the RB3011UiAS as my primary router in a small office, which is also CAPsMAN. Then I have several cAP ac's that are connected to some switches behind this router. I booted them up in CAPs mode (holding reset for 10 seconds).

Everything works fine but I'm not sure what to do about security. The firewall rules on CAPs are empty. Do I need to configure firewall on the CAPs or do they inherit CAPsMAN firewall rules? Local forwarding in datapaths is turned off.

Thanks a lot for any tips.

Tomas
 
erlinden
Forum Guru
Forum Guru
Posts: 1921
Joined: Wed Jun 12, 2013 1:59 pm
Location: Netherlands

Re: CAPsMAN firewall configuration

Thu Oct 06, 2022 2:37 pm

From my perspective a firewall on an accesspoint doesn't make sense. Why would you think you need a firewall?
 
thomassocz
just joined
Topic Author
Posts: 17
Joined: Sat Sep 17, 2022 1:55 pm

Re: CAPsMAN firewall configuration

Thu Oct 06, 2022 2:50 pm

I suppose I don't understand the process fully. If someone connects to my Wi-Fi via AP managed by CAPsMAN, all traffic has to go through the CAPsMAN anyway, therefore applying its firewall rules?
 
erlinden
Forum Guru
Forum Guru
Posts: 1921
Joined: Wed Jun 12, 2013 1:59 pm
Location: Netherlands

Re: CAPsMAN firewall configuration

Thu Oct 06, 2022 3:44 pm

It's up to you have all traffic is routed. Perhaps good to make a network diagram, also containing zones and authorization.
Please read:
https://help.mikrotik.com/docs/display/ROS/CAPsMAN

Specifically:
datapath.client-to-client-forwarding
datapath.local-forwarding

Who is online

Users browsing this forum: Ponytred and 10 guests