Menu
What's new
By:
Filters Better Search

How isolated are guest networks in the ASUS RT-AC57U V3 router?

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

O

onion

New Around Here
I have a single ASUS RT-AC57U V3 router with stock, up-to-date firmware. My router is running in wireless router mode.

I currently have a single 2.4Ghz main network and two 2.4Ghz guest networks (slots #1 and #2). Guest networks cannot access the intranet. AP isolation is disabled.

What I want to achieve is to use my main network for my personal devices (phone, laptop, etc), use #1 guest network for guests and #2 guest network for work laptop. I want all of these networks to be isolated from each other.

Is my current setup enough for this? Is my work laptop on guest network #2 isolated from devices in guest network #1 and my main network? If yes, what kind of isolation is it?
 
onion said:
Is my current setup enough for this? Is my work laptop on guest network #2 isolated from devices in guest network #1 and my main network? If yes, what kind of isolation is it?
Click to expand...
Yes your current configuration of enabled guest networks should be isolated from the main LAN, provided you have Access Intranet disabled on the Asus router Guest Network settings page. Having multiple Guest Networks should be isolated from each other as well.
 
bennor said:
Yes your current configuration of enabled guest networks should be isolated from the main LAN, provided you have Access Intranet disabled on the Asus router Guest Network settings page. Having multiple Guest Networks should be isolated from each other as well.
Click to expand...
Thank you for a swift response.

I find it a bit confusing that even though there are three networks (main, guest #1 and guest #2) there are only two subnets. How is isolation implemented if, for example, guest network #2 and the main network share the same subnet? How can I test this? Is a simple ping sufficient?
 
Isolation is likely done through the use of IPTables within the router firmware. In any case you can test a variety of ways including simply trying to ping the clients. Note that some clients will reject ping requests so you need to ensure they'll respond to pings. Or use a network or IP scanner to scan the local network for clients to see what responds.
 
I wonder just how stringent those rules are.

Let’s say you have a guest A on guest network #1 and a guest B on guest network #2. Assume that guest B has some internal network interfaces and some services that are bound to those internal IP addresses (172…).

Can guest A create a routing rule that routes packets intended for 172… addresses over guest B as a gateway? Can firewall rules that isolate guest networks #1 and #2 prevent it?
 
You must log in or register to reply here.

Similar threads

J
Help with isolating camera and IoT networks
Replies
16
Views
930
tiddlywink
T
Chinquapin
RT-AC56U & SimpliSafe Outdoor Camera
Replies
2
Views
153
degrub
D
vlord
gnMerlin - Guest Network Isolation
Replies
4
Views
622
IslaStewart
I
Siff
Printing from Guest Network (ASUSWRT-Merlin 3004.388.8_2)
Replies
4
Views
334
Siff
Siff
N
ET12 All Guest/IoT Devices go to main router
Replies
1
Views
386
nonnot
N
Similar threads
Thread starter Title Forum Replies Date
D Asus RT-AC86U Guest Networks ASUS AC Routers & Adapters (Wi-Fi 5) 2
M Controlling DHCP DNS for guest network ASUS AC Routers & Adapters (Wi-Fi 5) 2

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 1,251 (members: 19, guests: 1,232)
Top