I got a RT-N66U running merlin v.378.54_2.
I configured the security level on the main 2.4GHz interface as WPA2 enterprise (TTTL EAP) using the excellent write-up published on the wiki.
Unfortunately, some of the printers only support WPA2-PSK and do not sport an Ethernet port.
So, I would do the following:
- create a guest wifi network supporting WPA2-PSK with a strong password
- connect all the wireless printers to the aforementioned guest network
- restrict the traffic on the guest network, allowing only flows initiated by an authenticated client (main wireless network)
Is this configuration reasonable ? If so, could I get some help with the iptables filtering rule to write (my iptable-fu is still basic) ?
Thanks in advance
I configured the security level on the main 2.4GHz interface as WPA2 enterprise (TTTL EAP) using the excellent write-up published on the wiki.
Unfortunately, some of the printers only support WPA2-PSK and do not sport an Ethernet port.
So, I would do the following:
- create a guest wifi network supporting WPA2-PSK with a strong password
- connect all the wireless printers to the aforementioned guest network
- restrict the traffic on the guest network, allowing only flows initiated by an authenticated client (main wireless network)
Is this configuration reasonable ? If so, could I get some help with the iptables filtering rule to write (my iptable-fu is still basic) ?
Thanks in advance
