Print

Please login or register.
1 Hour 1 Day 1 Week 1 Month Forever
Login with username, password and session length

[bedub1]

I have disabled the internal DHCP/DNS server in the routers firmware.  I have enabled the wireless guest access SSID.  A client associating with the Guest Wireless Access will obtain a DHCP address from the server in the LAN zone, but cannot resolve DNS as the firewall prevents traffic to flow from the Guest zone to the LAN zone, as it should.

Is there a way to enable the DHCP server and DNS server in the routers firmware, but only on the Guest Zone?  Is it possible to get the Guest Zone to have a different subnet?

Tech support has hung up on me twice now.  Maybe my question is too complicated for them.

[davevt31]

No, in order to have the Guest Zone working DHCP/DNS has to be running on the router.

[bedub1]

No, in order to have the Guest Zone working DHCP/DNS has to be running on the router.

Think we can get it changed?  Or get it working so it only runs on the Guest Zone and not the Guest Zone, Wifi Zone, and the LAN zone?  I'd prefer it wasn't "all or nothing".

[Daybreak]

I do not think you understand what a dhcp server does and what the dns does. It is beyond the scope of this forum to explain the entire definition of what they do. How would a guest user get a ip address? How would the guest user know what dns service to use? Of course you could limit the dhcp ip scope. Reserved ip addresses for all systems behind the firewall. Leave only 1 or 2 ip addresses to be handed out. The guest access is exactly what the name implies. For dhcp services you can leave all zeros, and that will pass your dns settings from your isp, or you can plug in your own dns server settings (opendns, dyndns etc.)

[davevt31]

Think we can get it changed?  Or get it working so it only runs on the Guest Zone and not the Guest Zone, Wifi Zone, and the LAN zone?  I'd prefer it wasn't "all or nothing".

I wouldn't bet on any changes.  This is a home class router, segregated DHCP/DNS services don't usually fall in this class of router.

[bedub1]

I wouldn't bet on any changes.  This is a home class router, segregated DHCP/DNS services don't usually fall in this class of router.

I was afraid of that.  I like the Cisco and Sonicwall and Watchguards etc...but they are out of my price range.  Reviews show this to be one of if not the best home class wifi router on the market.  When I realized this did a Guest wifi I got really excited....until I realized that by running my own DHCP server and DNS server on a Server 2008 box thats connected to the LAN....my GuestWifi was receiving invalid settings since they couldn't communicate with the DNS server after receiving an IP via DHCP.  Further thinking made my wonder why the DHCP server even handed out an IP...given the guest accounts shouldn't even be able to communicate with the LAN zone....

EDIT:  So I've enabled DNS relay on the router.  I've modified the DHCP scope on my server 2008 box to hand out two DNS servers, itself as the primary, and the router's IP as the secondary.  This way the LAN and WiFi clients use the server 2008 as the primary, and the router for backup.  The Guest wifi clients have the server as primary, which never responds to DNS responses, and the router as the backup, which works fine.  Not the ideal situation, but it works.