I have several nodes around my house. One at the router for the internet, one at my computer workstation, and one by my patio for an external antenna and (soon to be) weather station. At present only the LAN devices on the one node at the router use local internet with all other nodes getting their internet across AREDN. If I select the share internet with others checkbox than everyone over AREDN can use my internet. Is there anyway I can set up a white-list on the internet connected node to allow specific devices to access its internet locally? Or by the call sign on the node?
Edit: I've read through the forum and found where whitelists and blacklists are being discussed with one person stating that whitelists are not being seriously considered. To be clear I don't want to limit anyone's access to my node or the devices/servers attached to it; however, I would like to limit access to the internet through my node. A setting already exists to allow or disallow access to internet/WAN. I would like a third option to allow my other nodes (those with my callsign or whitelist) to use the internet locally rather than across AREDN. I believe adding this feature could reduce overall AREDN traffic by permitting nodes that aren't directly connected to an internet source to use nearby (same callsign or whitelist) nodes that do have intenet access.
You are here
Whitelist for allowed devices to share internet?
Sat, 05/21/2022 - 15:01
#1
Whitelist for allowed devices to share internet?
Theme by Danetsoft and Danang Probo Sayekti inspired by Maksimer
If I am understanding you correctly this can all be done using the Mikrotik hAP AC Lite available at RB952Ui-5ac2nD. After flashing the hAP Lite with AREDN, by connecting your internet to port labeled internet every device connected to the other ports of the hAP Lite will have access to the internet. Make sure that the checkbox for share internet is unselected. You do not want to share the internet.
I have a hAP Lite as the main hub in my shack. All devices connected to it have access the Internet but no devices on the MESH network have access. If you need to expand beyond the four ports that the hAP Lite has use one of the ports on the hAP for an unmanaged Ethernet switch. After flashing the hAP lite there is a 2.4 gig MESH node and a 5 gig non-mesh node access points for your remote devices. make sure you expand the five DHCP address available to something more for your additional nodes,
I HOPE THIS HELPS.
You have misunderstood me. I have several different nodes but only one of them is connected via WAN to the internet. Node 'A' is connected to the internet via the WAN port. Nodes 'B' and 'C' and interconnected to node 'A' via 2GHz mesh. I understand that devices attached to the LAN of node 'A' will have internet access through node 'A'. I want to find a way to have devices connected to the LAN ports of nodes 'B' and 'C' to use node 'A's internet instead of randomly across AREDN. Presently, the only way I can do this is to check the box allowing everyone to access my internet. I don't want to do that.
Edit: The devices connected to the LAN of nodes 'B' and 'C' are ethernet and not WIFI.
Michael:
May this be rephrased to
"I want my 3 home nodes to connect to each other and each have internet access." ?
As far as I know and if you want to use AREDN firmware on each node,
you will need a VLAN switch and an ethernet cable from each node to the VLAN switch.
It would likely help if you identified your nodes.
I am assuming GL iNet devices, but please let us know for sure rather than have us guess.
73, Chuck
"I have several nodes around my house."
Hi, Michael:
After reading you post I am wondering why you have even 1 AREDN device. Your computer workstation and
(soon to be) weather station could connect to your home router via ethernet or Wi-Fi. Each would be able to
link to each other and each would have internet access.
KF7BWS guessed what you may be trying to do.
That solution involves the common AREDN household device with WAN, LAN, and VLAN/DtD connected nodes.
73, Chuck
https://www.arednmesh.org/content/understanding-vlans
I apologize to everyone for your confusion. I will try to figure out a solution or workaround myself. Thank you for your responses.
One proxy server that's free that runs on both Windows and Linux is available here: https://github.com/jgaa/shinysocks