Table of Contents
Advertisement
Wi-Fi
e. Complete other encryption-related fields as appropriate based on the type of encryption.
See
Configure an open Wi-Fi access
security, or
4. Configure the firewall:
a. Return to the root config prompt by typing three periods (...):
(config network wifi ap new_AP)> ...
(config)>
b. Add a new firewall zone named LAN2_isolation_zone. We will be creating LAN2 later in
the procedure.
(config)> add firewall zone LAN2_isolation_zone
(config firewall zone LAN2_isolation_zone)>
c. Create a firewall filter to provide internet access for the LAN2_isolation_zone.
i. Return to the root config prompt by typing three periods (...):
(config firewall zone LAN2_isolation_zone)> ...
(config)>
ii. Add the new packet filter:
(config)> add firewall filter end
(config firewall filter 2)>
iii. Set the label for the filter:
(config firewall filter 2)> label "Allow LAN2_isolation_zone to
External"
(config firewall filter 2)>
iv. Set the source zone to LAN2_isolation_zone:
(config firewall filter 2)> src_zone LAN2_isolation_zone
(config firewall filter 2)>
v. Set the destination zone to external:
(config firewall filter 2)> dst_zone external
(config firewall filter 2)>
d. Create a firewall filter to drop traffic from the Internal zone (used by the LAN1 interface)
to the LAN2_isolation_zone:
Firewall filters are applied in the order that they are listed. As a result, in order to drop
traffic from the Internal zone to the LAN2_isolation_zone, this filter must be added
before the Allow all outgoing traffic filter, which allows the Internal zone to have access
to any zone. In this example, we will add the new to the first position in the list (index
position 0).
TX40 User Guide
point,
Configure a Wi-Fi access point with enterprise security
Configure a Wi-Fi access point with personal
for details.
Isolate Wi-Fi clients
336
Advertisement
Table of Contents
