Wednesday, October 13, 2021

Any use for having a firewall between WLAN and LAN?

Right now we have the WLAN APs going through a router/firewall (WLAN dedicated DHCP) then to the core switch so traffic is getting NAT'd but configured to talk to at least two other subnets on the LAN.

Is this more secure than having WLAN on it's own VLAN with DHCP handled by the server subnet? Other than blocking ports that shouldn't be open on the LAN in the first place, I don't really see a benefit.

The WLAN equipment in question does not serve any guest connections. It is internal only.



No comments:

Post a Comment