具有访客和私人WIFI访问权限的DD-WRT(虚拟)AP(在第二台路由器上)

时间:2015-07-13 19:22:27

标签: wifi dd-wrt

我的设置遇到了一些问题。

主路由器(楼下)是华硕RT-AC66U(在MerlinWRT上运行),工作正常。

但不幸的是我们的wifi信号在我们家的顶层有点不好,所以我决定购买TP-Link TL-WR1043ND并将其用作接入点/中继器。我在其上安装了DD-WRT并遵循了这个优秀的教程:http://www.dd-wrt.com/wiki/index.php/Wireless_Access_Point

现在接入点正常工作,或者更好说工作。我也试图在TL-WR1043ND上设置一个访客网络,并按照本教程(我能找到的唯一一个)来完成:http://tips.desipro.de/2013/12/06/guest-wifi-setup-dd-wrt/

我发现奇怪的唯一一件事就是我必须启用DHCPD?但我还是做了。也许这是错误的,应该让它被禁用,但如果没有它,IP将如何处理...?不是我想的。

但它说我应该在Wireless_Access_Point的教程中禁用DHCP ......?

我似乎无法通过有线连接连接到TP-Link路由器,我可以通过wifi(电话)连接到它并访问DD-WRT接口,但没有互联网。

有人可以告诉我这里我做错了什么以及如何解决这个问题?

如果您仍然想知道我想要实现的目标;我的主(华硕)路由器有1个wifi信号,供我们私人使用。 d TP-Link路由器有2个wifi信号。一个用于我们自己的私人用途(增加覆盖率),第二个用于客人。

我甚至不知道这是否可能,或者我做错了什么。所以我希望有人可以帮助我。

1 个答案:

答案 0 :(得分:4)

因为在这里没有人试图提供帮助,所以我找到了自己的解决方案(感谢DD-WRT论坛社区的成员)。我会在这里发布解决方案,所以我的回答可能会帮助那些需要这个的人。

Configure AP + Guest 
 reset router to factory defaults 
 Setup / Basic Setup 
 Connection Type Disabled 
 Assign WAN Port to Switch >>>check 
 Local IP Address 192.168.1.3 (assuming your main network is on the 192.168.1.0 subnet and this IP isn't being used) 
 Subnet Mask >>> 255.255.255.0 
 Gateway >>> IP of router connected to internet 
 Local DNS >>> IP of router connected to internet 
 DHCP Server >>> disabled 
 Uncheck Use DNSMasq for DHCP 
 Uncheck Use DNSMasq for DNS 
 Save 
 wait 15 seconds click Apply 

 You can now connect by network cable to a LAN port within your network and access at its 192.168.1.3 IP. 
 Setup / Advanced Routing 
 Operating Mode >>> Router 

 Wireless / Basic Settings 
 add VAP 
 Save 
 wait 15 seconds click Apply (in this order or it won't show) 

 Setup / Networking 
 create bridge (br1) 
 Save 
 wait 15 seconds click Apply 
 put in IP address for br1 >>> 192.168.2.1 
 subnet mask for br1 >>> 255.255.255.0 
 Save 
 wait 15 seconds click Apply 
 wait 30 seconds 
 add Assign to Bridge ( br1 to wl0.1) 
 Save 
 wait 15 seconds click Apply 

 Services >>> under DNSMasq 
 disable all but DNSMasq 
 in Additional DNSMasq Options (copy/paste) 

 Code: 
interface=br1 
 dhcp-option=br1,3,192.168.2.1 
 dhcp-range=br1,192.168.2.100,192.168.2.150,255.255.255.0,24h 

 Save 
 wait 15 seconds click Apply 

 Administration / Commands (copy/paste) 

 Code: 
iptables -I FORWARD -i br1 -d `nvram get lan_ipaddr`/`nvram get lan_netmask` -m state --state NEW -j DROP 
 iptables -t nat -I POSTROUTING -o br0 -j SNAT --to `nvram get lan_ipaddr` 

 click Save Firewall 

 Anyone connected to the VAP (wl0.1) can access the internet but are restricted from anything on 192.168.1.0 
 You can add additional firewall rules if you want access to a specific device on main network from guest network.
相关问题
最新问题