Wireless for everyone......

Hi there,
We will start a project at our company that customers coming to us will have the possibilite to surf to the internet with their own laptops. What we would like to do is that this network will be in a seperated dmz and we would like that the traffic will be automaticaly redirected to our proxyserver to filter out some bad websites. (We do not want that people will surf to strange websites inside our building).
A third requirment we would like to put in place is that people if they connect to the wireless and want to surf, they will be redirected at a special website where they have first to authenticate with a one-time password and this password would then allow them to surf for an hour or so.....i think something could be done with 802.1x but i am not realy sure about this....
Thanks for your input and ideas
cu yves

Are you saying you want to have 2 guest WLANs in addition to your trusted user WLAN? That's certainly possible, but it will depend on what you're using for the WLAN infrastructure and the internet access proxy functions. You don't mention what proxy server you have, but the first thing you need to think about for the DMZ'd WLAN is how you're going to ingress the traffic to the proxy from the DMZ. That could be via a seporate physical interface, or preferably a new VLAN on an 802.1q trunk. Apart from that, your normal proxy rules should be configurable however you want I'd think.
For the second WLAN that you're talking about, I think you'd need what I'd call a "forced portal". It's a bit like a proxy, but with more functions. Some proxies do web based authentication which is what you want, but you'd need to check your box. Typically, you'd expect to be doing this as a layer 3 web based authentication rather than an 802.1x, which occurs at layer 2 and is required before the user can even see a web page (i.e. when the radio signal is building). Furthermore, if you want time based access for your portal, you'll need to check it does that too. And, you'll need to think about how these "tokens" get issued. Somebody will have to be doing it as part of there job, unless you automated via a HTML page for the guest to fill in themselves.
One final point with guest access. A lot of people forget that you can't implement downstream QOS from your ISP (not AFAIK). What this means is that you need to accept the risk if you're going to share a corporate web connection with the guests that they might steal a big chunk of your bandwidth. There's lots of functions you can activate to cut back guest traffic levels upstream and downstream internally and on the DMZ. But when it comes in on your inbound web router, but if the inbound traffic is already loaded, dropping the packets at your local interface won't necasarily help! I'd always suggest running guest access up a different web connection to your corporate access.

Similar Messages

  • How to create files with read/write privileges for everyone?

    I have two iMacs 7,1 (one with Snow Leopard and the other with Mountain Lion) in a local area wireless network.
    I have shared the "documents" folder in the Snow Leopard iMac in order to have files available to the other iMac. The folder has read/write privileges for everyone.
    When I create a new file in the shared "Documents" folder (for example a new Open office document, or a Keynote presentation) this file is by default "read/write" for the Administrator but only "read" for all the other users, so when I try to open it from the other iMac, I am informed that the file is "read only".
    I can obviously change the privileges of the file in the information window, but I have to do on a file per file basis and this takes too long.
    Is it possible to change settings in order to create files which are always "read/write" for everyone?
    And, secondly, since I have several existing files whose privileges I should manually change one by one, is it possible to make global changes of their privileges?
    Thanks in advance
    Best regards

    couple of different changes - 1st, if you want to share folders, doing your whole documents folder is not the best way.  Since both your computers can handle AidDrop, that's what I would recommend - http://osxdaily.com/2011/11/14/how-to-use-airdrop-in-mac-os-x/ - as it create an instant Ad-Hoc network between the two computers and then let's it done. 
    A second possibility that may not be what you're looking for, is to use google drive or some similay cloud sharing app to sync the documents back and forth.  both of these solutions will transfer the files well, but the airdrop may be simplest

  • My First MacBook Crashes The Entire Network (Router) for Everyone?

    Hi,
    I've spent the past 2 days on my first MacBook ever, struggling to keep the Internet active.
    I've never had this problem before and it started when I brought this new MacBook home.
    Basically what happens is when I start up the MB and it automatically connects to the Wireless Network, the entire Internet connection (router) drops and crashes and the only way to restore it, is to shut down the MacBook and thereafter reboot the Router.
    If you start up the MacBook again, the same events follow; massive internet crash across the network and then you hear people screaming and shouting that the internet crashed.
    I've done plenty research, and nothing seems to work.
    I've found a bit of information on MTU and modifying the values. In the 2 days I've had this Mac, I've tried every value below 1500 on the Router and MacBook, (including 1492; 1400; 1352; 1450 etc) and can't keep the MacBook to save the Value under Ethernet?? Is this a Snow Leopard bug? When it does decide to save; it resets back to Manual - Standard 1500. It's frustrating, because I moved from Windows to Mac to get away from bugs and incompatibilities and guess what; First day I encounter massive inefficiencies due to Mac
    I've had a little success; when the Mac does save the MTU in Ethernet for a session (not permanent after a restart for some weird reason); I am able to browse the internet for 10 - 20 minutes though another Access Point on MTU Values on 1420; 1428; 1436 and thats it. The internet crashes.
    I've also tried to disable IPv6 and manually set DNS servers and IP's (automatic/static). No success.
    Please help, this is not the greatest introduction to the Mac life, and I want is the internet connection to remain stable for everyone.
    My Hardware is as follows:
    MacBook Air (2010) 265GB
    DLINK DSL-2650U Wireless G ADSL2+ Router
    Any help is greatly appreciated.

    It doesn't seem to be just D-Link routers.
    I'm having a similar problem with an older Belkin model, running DD-WRT firmware, and two different 2010 model MacBook Pros. Heavy upload traffic can cause the wireless access point to lock up.
    A friend just told me today that he's having the problem with a Linksys model, running normal firmware, and older model MacBook Pros. Heavy upload traffic (Time Machine backups, in his case) causes his access point to lock up.
    (There's a lot of discussion threads about Wireless access problems, but most seem to be of the computer stops talking to wireless network variety. This problem my friend and I are having - which sounds like yours too - definitely seems to be breaking the network for everyone.)

  • I am having a hard time with a page that is working for everyone else. When I click on anything in the site I get a message that says "The page you were looking for doesn't exist."  This is happening on both my ipad 2 and my iphone 5. I cleared my cache

    When I click on anything in the site I get the message " The page you were looking for doesn't exist."  This website works for everyone else, but not on my iPad 2 or iPhone 5. I cleared my cache and history on the iPad, but it still isn't working.

    I live in Germany and my credit card is in my native country of Holland .. then it
    doesn't accept my credit card.
    Your first statement explains the second statement. To use the German iTunes Store, you need to prove that you're a resident of Germany (that is required by the content owners who will not allow cross-border sales) and the only way Apple can provide such a verification is by requiring that you enter in either a German credit card or a German-purchased iTunes prepaid card. Since I presume the former is not a possibility, you'll need to do the latter if you wish to purchase content from the iTunes Store. Again, this is not Apple's choice but is forced on them by the content owners as a requirement for Apple being allowed to sell the content. The EU is working on regulations that would force the content owners to allow access pan-EU, but that's still in the works.
    You do not need an iTunes Store account to activate and run your iPad, though; at least, I didn't need one for either of my two iPads. If you only want to set up an account so you can get free iPad apps, take a look here:
    http://support.apple.com/kb/HT2534
    Read the steps carefully as the order in which you follow them is apparently critical. This seems to come and go, or only apply to App Stores in specific countries, so you may not see the option for "None" when asked for a payment type.
    As to the German iTunes Store in English, you can comment to Apple on that via their feedback pages:
    http://www.apple.com/feedback
    Regards.
    P.S. Regarding "this is the only place for a complaint and that will no doubt get removed because
    I'm not full of happy joy sparkles.
    As stated in the terms of use to which we all agreed, this isn't a complaint forum, it's a technical support forum. You don't have to be full of "happy joy sparkles", but posts that are nothing but complaints may indeed be removed. If you want to complain to Apple, use the feedback pages.
    Message was edited by: Dave Sawyer

  • HT4623 My iPod touch (4th gen) won't seem to get the iOS 7 update on its own. I've been updating it wirelessly for a while now but when I go through the settings to "software update", it searches but says "iOS 6.1.3, your software is up to date". HELP/Why

    My 4th gen iPod touch says iOS 6.1.3 is the latest version of software. I've been updating it wirelessly for a while so I know that isn't the problem & I know I'm connected to the Internet; I typed & submitted it on my iPod. Please help/explain why it's doing this!
    Also, my App Store also says I have an update but I don't. All my apps are up to date when I try to update... Why is that?

    That iPod touch model doesn't have enough RAM to run iOS 7.
    (90990)

  • How can I tell if my computer is using ethernet or wireless for downloads?

    Hi,
    My computer is hooked up via ethernet to my router (base station) which is connected to my DSL modem, and I also have my Airport on because I have extended my network with an airport express so I can stream music to my stereo across the room using iTunes.
    I've noticed in the Airport menu that my computer is connected also to my wireless network which I use for getting online with my iPad.
    Can I assume that my computer will use ethernet and NOT wireless for accessing the internet, downloading files, etc?
    How can I tell which network connection is being used? Are there tools for monitoring the network that would allow me to easily determine if a particular download is going over the ethernet or the wireless connection?
    Clearly, I want to use the hard line ethernet connection for everything and use the wifi only for my streaming music function for speed purposes...
    Thanks!!!!
    Elisabeth

    Hi,
    Internet is served on the priority basic from the System Prefrences Network pane.
    If ethernet is on top you getting it from ethernet if Airport and so on...
    So depending on internet speeds set the priority to access fast internet speeds.

  • How do I print envelopes for everyone in my address book?

    How do I print envelopes for everyone in my address book?  It seems so simple but after half an hour... no joy!!

    I have spent most of the morning in a frustrating search of a way to print labels for my contacts. I have a couple of problems. I want to send every label to a different person at the same address. I have hundreds to do and most of them do not have a mailing address so I tried to do a bulk change of the address ... without  manually changing every contact there is no way to do this. I've tried to create a template with a table (10x2) and added merge fields to each of the cells but when I do a mail merge all I get are hundreds of pages with a page dedicated to each contact whereas I want to merge on a cell by cell level, i.e. 20 different contacts on the same page.
    How do I do this? I can't find label style that is appropriate and I'm not sure how to create one with 10 by 2 labels per page.
    Help!

  • I have a macbook pro. i have a photosmart 7510. we just bought a new windows tower and the printer works wireless for us, but now the mac does not print anymore wirelessly. i keep getting a message Network host 'HPE93F2A.local.' is busy. what can i do to

    I have a macbook pro. i have a photosmart 7510. we just bought a new windows tower and the printer works wireless for us, but now the mac does not print anymore wirelessly. i keep getting a message Network host 'HPE93F2A.local.' is busy. what can i do to

    it is a windows 8

  • How do I make my HP photosmart D1110 Printer wireless for when I print?

    How do I make my HP photosmart D1110 Printer wireless for when I print? I mean I dont want to plug my printer up every time I need to print something. I know i can do this with my printer because my uncle had it hooked up this way before he passed away. Now im trying to hook it up again and I cant figure it out.

    KristiGilreath wrote:
    I tried following the steps but I didn't havesome of the tabs it was talking about. I just dont understand.
    Hi,
    Which type of connection you want to use ? Which tabs are you talking about ? I could not find full specs of your printer, how old is it ? Do you use a wireless network at home ? As mentioned above, I don't know your existing hardware therefore you need to check the book and select a suitable connection first.
    Regards.
    BH
    **Click the KUDOS thumb up on the left to say 'Thanks'**
    Make it easier for other people to find solutions by marking a Reply 'Accept as Solution' if it solves your problem.

  • HT4245 i use a macbook pro which came with facetime i have an iphone 4S as well. whenever i use the wireless on my iphone i can facetime with ease however when i use the same wireless for my mac to facetime the call always gets disconnected.

    i use a macbook pro which came with facetime i have an iphone 4S as well. whenever i use the wireless on my iphone i can facetime with ease however when i use the same wireless for my mac to facetime the call always gets disconnected.

    To use factime on your Mac, I believe you will need to use your email address to do so instead of your wireless number.  Since you can't make calls on the Mac.

  • Is it possible for me to get separate bills for everyone on my line?

    Is it at all possible that I can get separate bills sent to different addresses for the people on my line?

        Hi Marie9312,
    I understand you would like to know if it possible for to get separate bills for everyone on your line. We are not able to send them but it  is possible for you to get them and print them for the ones you want to have the bills. Here's a link to help http://vz.to/1xiAkiJ. Once you view the bill, you can click the print tab and select the amount of copies you want.
    Thank you!
    EdW_VZW
    Follow us on twitter @VZWSupport

  • Read-Only Permissions for Everyone?

    We're running xServe / Tiger 10.4.11.
    We're using ACLs and have all users in a group with Read / Write Permissions. Across the board, no matter who creates a new document or directory, anytime a new file is created it's permissions are Read-Only for everyone except the author.
    I've checked the permissions in the ACL and everything is set to Read / Write. So why are the permissions defaulting to Read-Only?

    Hi,
    You could have a look at the thread below. Lucas used ProcMon that shows an access denied with the user which he was using.  Permission via group wasn't enough. Give your user full share/security access and everything works fine.
    https://social.technet.microsoft.com/Forums/en-US/99859604-a803-43f3-a172-159a500fcb90/the-deploy-software-updates-wizard-completed-with-errors-access-is-denied?forum=configmgrsum
    Best Regards,
    Joyce

  • Can I set up family sharing for the calendar without paying for everyone's purchases?

    I would like to set up family sharing so we can share a calendar, see each other's location, etc. but I don't want to pay for everyone's purchases.  Can we set up family sharing without that feature?

    When you added the card, did it take a number of goes to get it accepted ? Each time that you add or change your credit card details on your account a small temporary store holding charge (i.e. $1) may be applied to check that the card details are correct and valid and that it's registered to exactly the same name and address as on your iTunes account - your card issuer should remove it from your card within a few days or so.
    Store holding charge : iTunes Store & Mac App Store: About payment card authorization holds - Apple Support

  • Do I have to have an app to print wirelessly for my 3g? If so what app should I be looking for??

    Does anyone know if I have to buy an app to print wirelessly for my 3 g phone? If so - what app is reccommended.  I have a hp photo smart printer d110 series?

    If your priinter is on the list from this document from Apple http://support.apple.com/kb/HT4356 then the printer just needs to be connected to your network wirelessly, then you would just follow the rest of the directions from the link I gave you. If it is not on the supported list, then you would need to look at an app, and I have read a lot about Printopia.

Maybe you are looking for

  • Airport card does not work with Airport Extreme when security is turned on

    I have an iMac running OSX 10.4.11 with an Airport card installed (firmware version 9.52). I recently replaced my Netgear wireless router with an Apple Extreme Base station and now I am not able to connect my iMac to the wireless network when WEP sec

  • Can't able to start the weblogic server7.0 version

    Hi there, I want to work out some ejb examples on weblogic server7.0 release and the installed an evaluation version on my pc, if I want to start my default server where can I sart the default server, when I have gone to start/programs/BEA Weblogic P

  • Configure WLan for user certificate authentication

    I have windows CA and NPS (radius server). I want wireless clients / devices using active directory user certificates (generated by AD CA) to authenticate and encrypted to wireless WLAN. I have setup WLAN as [WPA2][Auth(802.1X)] and pointing to Radiu

  • CS6 not compatible with mac retina display

    I recently purchased the Adobe CS6 Design and Web Premium at school. (It's not the creative cloud) Upon installing, I noticed that all of the programs are blurry. After a quick google search, it says that when a program is blurry it's not compatible

  • Safari 8 Crashing, need to reinstall

    After several hours of upgrading to Yosemite, Safari began crashing with the following:  Exception Type:        EXC_BAD_ACCESS (SIGSEGV) Exception Codes:       KERN_INVALID_ADDRESS at 0x0000000000000020 could be something I did, so all I want to do i