I need to setup a free hotspot at a local business for customers to access. I'm thinking very simple: DSL, Wireless router. However; I need to do a few things: no porn or other sites that some term as bad. I will probably have one business computer that needs to share this same access. Not sure yet if this computer will be operating via wifi or wired.
My questions:
1.) How do I filter the "no-no" sites from access? I looked at OpenDNS, but very expensive for a business.
2.) How do I keep free wifi users from accessing my business traffic?
Sorry if these questions are too basic.
Thanks...
k
Hotspot security question...
There are some routers that provide "access restrictions", "keyword/URL filtering", etc. The database on the main site provides an extensive list.
You may want to look into a router that supports third-party firmware, such as dd-wrt, this will usually give you a lot more functionality and configuration options, such as VLANs, etc.
It is a question of router configuration to isolate trafic into two separate groups (virtual lans, or VLANs). Many routers provide for isolating wireless traffic from wired one, some allow for "guest wireless" that has no access to your network shares, and some third party firmwares allow for even more customization.
I hope this gives you some general idea.
You may want to look into a router that supports third-party firmware, such as dd-wrt, this will usually give you a lot more functionality and configuration options, such as VLANs, etc.
It is a question of router configuration to isolate trafic into two separate groups (virtual lans, or VLANs). Many routers provide for isolating wireless traffic from wired one, some allow for "guest wireless" that has no access to your network shares, and some third party firmwares allow for even more customization.
I hope this gives you some general idea.
Thanks for the reply!
I have read that VLANs are easily foiled with the right tools and a little know-how. I'm liking the "guest wireless" option with the keyword/URL filtering. Is the "Guest wireless" essentially a VLAN? My main concern is leaving someones credit card information in the open during a transaction.
Is there a suggested listing of keywords/URLs for filtering?
k
I have read that VLANs are easily foiled with the right tools and a little know-how. I'm liking the "guest wireless" option with the keyword/URL filtering. Is the "Guest wireless" essentially a VLAN? My main concern is leaving someones credit card information in the open during a transaction.
Is there a suggested listing of keywords/URLs for filtering?
k
Possibly that depends on the router.le_noid wrote:Is the "Guest wireless" essentially a VLAN?
The ones I have seen use a different SSID and a different range of IP addresses for the guest wireless, so that there isn't any way of routing packets between the guest wireless and the rest of the network.
They should be using SSL (i.e. an encrypted connection) anyway, so that provides an additional layer of protection in case there is some leakage.le_noid wrote:My main concern is leaving someones credit card information in the open during a transaction.