Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
Next revisionBoth sides next revision
docs:guide-user:network:wifi:wide.area.wifi [2018/03/03 20:58] – ↷ Links adapted because of a move operation docs:guide-user:network:wifi:wide.area.wifi [2018/03/04 16:09] – ↷ Links adapted because of a move operation
Line 2: Line 2:
  
 ===== Introduction ===== ===== Introduction =====
-This HOWTO requires proficienciy in an [[wp>OpenVPN]]-based [[wp>Virtual private network]] (cf. [[docs:guide-user:services:vpn.server.openvpn.tap]]/[[docs:guide-user:services:vpn.client.openvpn.tun]] and [[docs:guide-user:services:vpn.server.openvpn.tap]]/[[docs:guide-user:services:vpn.client.openvpn.tap]]), Networking configuration on [[wp>Red Hat Enterprise Linux|RHEL]]/[[wp>CentOS]], [[wp>Shorewall]] (cf. [[docs:guide-user:services:firewall:shorewall-on-openwrt]]).+This HOWTO requires proficienciy in an [[wp>OpenVPN]]-based [[wp>Virtual private network]] (cf. [[docs:guide-user:services:vpn:openvpn:server.tap]]/[[docs:guide-user:services:vpn:openvpn:client.tun]] and [[docs:guide-user:services:vpn:openvpn:server.tap]]/[[docs:guide-user:services:vpn:openvpn:client.tap]]), Networking configuration on [[wp>Red Hat Enterprise Linux|RHEL]]/[[wp>CentOS]], [[wp>Shorewall]] (cf. [[docs:guide-user:firewall:shorewall-on-openwrt]]).
  
 In the proposed scenario a big area must be covered with Wi-Fi access and no Access Point alone can provide that kind of reachability. Three different Wi-Fi networks are configured for different access levels. Traffic from these networks will be isolated and controlled by a central Linux box running Shorewall. A wired Ethernet backbone will carry traffic from the Access Points (three in our example). The encapsulation protocol for different network traffic will be OpenVPN with no cypher(encryption can be enabled  with one liner 'cypher' statement if required). The author has successfully done a similar setup using 802.1q (VLAN) encapsulation. L2tp is a another reasonable alternative for traffic encapsulation (cf. [[docs:guide-developer:networking:network.interfaces]]). In the proposed scenario a big area must be covered with Wi-Fi access and no Access Point alone can provide that kind of reachability. Three different Wi-Fi networks are configured for different access levels. Traffic from these networks will be isolated and controlled by a central Linux box running Shorewall. A wired Ethernet backbone will carry traffic from the Access Points (three in our example). The encapsulation protocol for different network traffic will be OpenVPN with no cypher(encryption can be enabled  with one liner 'cypher' statement if required). The author has successfully done a similar setup using 802.1q (VLAN) encapsulation. L2tp is a another reasonable alternative for traffic encapsulation (cf. [[docs:guide-developer:networking:network.interfaces]]).
  • Last modified: 2021/07/24 05:44
  • by someothertime