Hotspot Selecting a LAN to be used by the hotspot
Digi TransPort WR Routers User Guide
96
Selecting a LAN to be used by the hotspot
By default, the hotspot is configured to use LAN2. You can select any LAN on your TransPort device to
serve as the hotspot LAN; however, once you configure a LANfor use as the hotspot LAN, you can no
longer access the device's web interface or SSHserver via that LAN. Therefore, you must make sure
that you do not enable hotspot on a LAN that you are otherwise using to access the device for other
purposes, such as configuring and monitoring the device, or providing clients with non-hotspot access
to your network.
If you lose access to the router by configuring hotspot to use an incorrect LAN, try the following
methods to recover access:
n If you have configured multiple LANs, use one of the other LANs to connect to the device.
n If you have enabled HTTPS or SSH access on the WAN interface, use the WAN to connect to the
device.
n If you were using the command line and the configuration has not been saved, reboot the
router and the hotspot will be not be enabled when the unit boots up again.
n If you have access to Remote Manager, you can disable the Hotspot feature.
If the above methods fail, you may need to reset the router back to factory defaults.
Hotspot DHCP server
When the hotspot is enabled on the TransPort device, it automatically enables a DHCP server. During
hotspot configuration, you assign an IPv4 IP address to the hotspot, and the DHCP server then uses
the subnet of the hotspot's IP address, along with the hotspot's subnet mask, to assign IPv4
addresses to clients that connect to the hotspot.
To prevent the hotspot's DHCP server from assigning IP addresses that are already in use elsewhere
in your local network, the hotspot must use a subnet that is not currently being used in your local
network.
Hotspot security
A typical hotspot is an open network. This means that traffic transferred between the hotspot and the
hotspot clients is not encrypted and can be intercepted by a packet sniffer or similar technology.
However, the sample HTML login pages provided with your TransPort device use CHAP-MD5
authentication, providing a level of security during the authentication process. Additionally, websites
that use the HTTPS protocol provide end-to-end encryption between the browser and the web server.
Hotspot clients are typically untrusted and only given access to the WAN interface on the device. The
default firewall rules prevent hotspot clients from accessing any of the other interfaces on the router
(such as the LAN and VPN interfaces). Additionally, the default firewall rules prevent hotspot clients
from accessing the router itself (for example, via the web interface or SSH).
To Next Page
Loading...
