Subj : Re: smartRG sr360n does not isolate clie
To   : August Abolins
From : Nick Andre
Date : Wed Mar 11 2020 11:40 am

On 10 Mar 20  19:55:00, August Abolins said the following to Nick Andre:

AA> I want my wired pcs connected/accessible to each other, but ofcourse I do
AA> not want the network to be exposed to wireless devices.  Hence the WTF
AA> when I just happened to connect a recent new laptop (the Thinkpad 540p
AA> that I mentioned in another echo a couple months ago) to finish some Win7
AA> updates.

Here at home, I use the principal of least-privilege... my "Nick" account does
not have administrator privilege. File shares on the Lan are locked down to
only what I need to access. That means no root or system directory exposure.

We're talking about a home network with a busy server system, several
virtual machines, the BBS / Fido hub, a couple entertainment PC's and one in
the kitchen, a couple laptops, printers, Apple phones, tablets and Amazon
Echo devices.

What you were describing implies that there is no authentication between the
systems on your LAN if you were able to see everything in the scenario you
originally stated. If these are Windows computers, I am curious how that is
possible unless you have specifically enabled "Everyone" permissions or have
credentials cached.

If you absolutely 100% do not want the wireless devices to see anything on
your LAN then they should be isolated into the Guest network or on a
seperate router altogether.

I'd dump that ISP-issued router if possible, and get a commercial-grade router
if there is budget for one.

Nick

--- Renegade vY2Ka2
* Origin: Joey, do you like movies about gladiators? (1:229/426)

You are viewing proxied material from vert.synchro.net. The copyright of proxied material belongs to its original authors. Any comments or complaints in relation to proxied material should be directed to the original authors of the content concerned. Please see the disclaimer for more details.