Hi, I'm also trying to get multiple SSIDs working for my DS. What is the difference between Bridged and Unbridged? Also, is there any way to restrict that SSID to only one client at a time, and mac filter only that SSID? That would be nice. I'm somewhat familiar with Linux but this is my first time using DD-WRT. Thanks for the help?
Bridged= the virtual SSID interface gets bridged with br0, which means that all traffic on the interface will be seen by the LAN clients and vice versa.
Unbridged= The oposite, the interface ends up as an ordinary separate interface, with own subnet. Routing need to be used to reach from the interface to the LAN (br0) and vice versa.
Unbridged is best for open and public interfaces ie, or if you for sme other reason whant to segment your router network.
Yes you can restrict access to only one client at a time, just set the unbridged IP schemes subnet to 255.255.255.248 (/30) which means you will get two host adresses, one fr the router interface and ne for your client. Only one client will have access to this IP at a time.
About mac filtering, i can not verify if this works on virtual WLANs.
Posted: Sun Sep 28, 2008 23:09 Post subject: Please help!
rjmcinty wrote:
##FIX NAS
killall nas
nas -P /tmp/nas.wl0lan.pid -H 34954 -l br0 -i eth1 -A -m 4 \
-k "`nvram get wl0_wpa_psk`" -s "`nvram get wl0_ssid`" -w 2 \
-g `nvram get wl0_wpa_gtk_rekey`
nas -P /tmp/nas.wl0.1lan.pid -H 34954 -l br1 -i wl0.1 -A -m 4 \
-k "`nvram get wl0.1_wpa_psk`" -s "`nvram get wl0.1_ssid`" -w 2 \
-g `nvram get wl0.1_wpa_gtk_rekey`
!!!!!!!!!!!!!!!!
Notes:
(See http://wiki.openwrt.org/OpenWrtDocs/nas for details about the nas command)
1. As the original link has the rc_startup code, it used "-m 132", which, according to the docs linked
above, corresponds to PSK PSK2, and that didn't work for me, since I set my security to WPA in the GUI.
To be honest, I'm not sure of the relationship between WPA/PSK/etc. So, I simply set the security options in the GUI that I knew I wanted, and then either telnet'd into the router, or used the Administration -> Commands page to execute a "nvram get wl0_akm", which for WPA returns PSK in my config. So, looking at the nas docs, I saw that corresponded to "-m 4".
2. Likewise, I looked at "nvram get wl0_crypto" to get the encryption method (TKIP in my case), and
looking at the nas docs I found that was "-w 2".
Use wl0.1_akm and wl0.1_crypto for the virtual wireless interface.
!!!!!!!!!!!!!!!!
I am trying to set up my router (Linksys WRT54GL v1.1 with DD-WRT v24-sp1 (07/27/0 std)
I set it up exactly like in Validuser states. I can only connect to the wl0 not the wl0.1 - it says cannot connect. I don't get a IP address assigned.
First question? Do I need to Set up another DHCP Server like in the original wi-fiplanet tutorial? I tried and it still doesn't work.
I set up my security the same as in this post by rjmcinty and set it in the firewall the same way. I also SSH into the router an run the wl0_akm commands and everything looks correct. I don't think it is a problem with the security because I have set both SSIDs with the same security and can connect to the first SSID but not the wl0.1
Thanks for your reply. i have tried this set up with many different versions including 24 final, vint, newd, etc. I have not tried it with WEP though. What version of dd-wrt are you using?
The routers I dealt with so far to configure multiple SSIDs had NEWD installed.
buntu
P.S. Update...
After checking my client notes, I saw that I had to use a VINT firmware for WRT54GL v1.1, which worked nicely with multiple SSIDs. NEWD did not work for this router..
Talking about v24 SP1 only..
Last edited by buntu on Mon Oct 06, 2008 5:40; edited 2 times in total
The routers I dealt with so far to configure multiple SSIDs had NEWD installed.
buntu
P.S. Update...
After checking my client notes, I saw that I had to use a VINT firmware for WRT54GL v1.1, which worked nicely with multiple SSIDs. NEWD did not work for this router..
Talking about v24 SP1 only..
So, then, would it be correct you used NEWD on the Buffalo? And are you able to visit walmart.com and see the page display right, when connected to the virtual SSID?
Posted: Fri Oct 10, 2008 3:49 Post subject: Re: Help with virtual WAPs in v24-SP1!
rjmcinty wrote:
I'm having a heck of a time getting this to work:
Using WRT54GL v1.1, running v24-SP1 Std.
I want to have 2 wireless networks, the default (wl0), which is connected to the wired switch, and wl0.1 which is isolated from everything else.
Hi Robert, I see that you were able to get your WRT54GL v1.1 working with multiple ssids using validcustomer's config. Can you clarify what exact build of dd-wrt you are using? Is it VINT or NEWD?? I have the same router and I have not been able to get this to work with the same config. Thanks, Ddeo
Joined: 22 Feb 2008 Posts: 114 Location: Dallas, TX
Posted: Wed Feb 04, 2009 5:14 Post subject: You can use QOS
S4F4M wrote:
QUESTION:
Does anyone know if there are COMMANDS to throttle the bandwidth for the virtual SSID?
I don't know about the method you suggest. But I turned on QOS. I have wl0.1 issuing ip range 192.168.2.1-254. So I gave 192.168.2.0/24 the bulk QOS class. That way anyone on wl0.1 gets the dregs of my bandwidth. _________________ The Fleet
WRT-54GL v1.1 DD-WRT v24 sp1 serving multi SSID WLAN, WRT-54G v6 DD-WRT v24 sp1 Micro wireless bridged
WRT-54G v5 DD-WRT v24 sp1 Micro, WRT-54G v6 DD-WRT v24 sp1 Micro
It seems I've not had the problems some of the people here have had. I have successfully configured 3 SSIDs on a WRT54G v6 using DD-WRT v24 (05/24/08.) micro (SVN revision 9526)
wl0 is setup using 192.168.0.2 (Bridged & WPA)
wl0.1 is setup using 192.168.1.2 (Unbridged & open/guest)
wl0.2 is setup using 192.168.2.2 (Unbridged & WEP)
DNSMasq statements (some I found after reading this thread are not needed, but I won't change it):
My question is: how do I access a device in wl0.2 from br0? I have a Tivo that I'd like to be able to communicate with from my PC using the Tivo Desktop application. I've tried using the following (or variants) as the first rules in the firewall:
Code:
iptables -I FORWARD -d 192.168.2.105 -i wl0.2 -j ACCEPT #Network to Tivo
iptables -I FORWARD -s 192.168.2.105 -i br0 -j ACCEPT #Tivo to Network
I obviously am not familiar with iptables syntax or logic yet, and would like some guidance please! Hopefully this is an easy question that just hasn't been asked before (or it has been, and I just hadn't found the answer).