From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <mcr@obiwan.sandelman.ca>
Received: from tuna.sandelman.ca (unknown
	[IPv6:2607:f0b0:f:3:216:3eff:fe7c:d1f3])
	by huchra.bufferbloat.net (Postfix) with ESMTP id BC8C721F126
	for <cerowrt-devel@lists.bufferbloat.net>;
	Wed, 21 Nov 2012 06:18:05 -0800 (PST)
Received: from obiwan.sandelman.ca (unknown [IPv6:2607:f0b0:f:2::247])
	by tuna.sandelman.ca (Postfix) with ESMTP id 8BD8420168;
	Wed, 21 Nov 2012 09:19:30 -0500 (EST)
Received: by obiwan.sandelman.ca (Postfix, from userid 179)
	id E2004FF01; Wed, 21 Nov 2012 09:17:39 -0500 (EST)
Received: from obiwan.sandelman.ca (localhost [127.0.0.1])
	by obiwan.sandelman.ca (Postfix) with ESMTP id C93171FDE6;
	Wed, 21 Nov 2012 09:17:39 -0500 (EST)
From: Michael Richardson <mcr@sandelman.ca>
To: Dave Taht <dave.taht@gmail.com>
In-Reply-To: <CAA93jw44UKxJDP4txYv4HSvKTQkdjc-sK=brgqfWz7xc3KxjCw@mail.gmail.com>
References: <19144.1353463409@obiwan.sandelman.ca>
	<CAA93jw44UKxJDP4txYv4HSvKTQkdjc-sK=brgqfWz7xc3KxjCw@mail.gmail.com>
X-Mailer: MH-E 8.3; nmh 1.3-dev; XEmacs 21.4 (patch 22)
X-Face: $\n1pF)h^`}$H>Hk{L"x@)JS7<%Az}5RyS@k9X%29-lHB$Ti.V>2bi.~ehC0;
	<'$9xN5Ub#
	z!G,p`nR&p7Fz@^UXIn156S8.~^@MJ*mMsD7=QFeq%AL4m<nPbLgmtKK-5dC@#:k
Date: Wed, 21 Nov 2012 09:17:39 -0500
Message-ID: <24006.1353507459@obiwan.sandelman.ca>
Sender: mcr@obiwan.sandelman.ca
Cc: cerowrt-devel <cerowrt-devel@lists.bufferbloat.net>
Subject: Re: [Cerowrt-devel] zones for other subnets
X-BeenThere: cerowrt-devel@lists.bufferbloat.net
X-Mailman-Version: 2.1.13
Precedence: list
List-Id: Development issues regarding the cerowrt test router project
	<cerowrt-devel.lists.bufferbloat.net>
List-Unsubscribe: <https://lists.bufferbloat.net/options/cerowrt-devel>,
	<mailto:cerowrt-devel-request@lists.bufferbloat.net?subject=unsubscribe>
List-Archive: <https://lists.bufferbloat.net/pipermail/cerowrt-devel>
List-Post: <mailto:cerowrt-devel@lists.bufferbloat.net>
List-Help: <mailto:cerowrt-devel-request@lists.bufferbloat.net?subject=help>
List-Subscribe: <https://lists.bufferbloat.net/listinfo/cerowrt-devel>,
	<mailto:cerowrt-devel-request@lists.bufferbloat.net?subject=subscribe>
X-List-Received-Date: Wed, 21 Nov 2012 14:18:06 -0000


>>>>> "Dave" == Dave Taht <dave.taht@gmail.com> writes:
    Dave> It's not quite clear what you want from the description. in
    Dave> the case of two cerowrt routers on different subnets connected
    Dave> over ethernet or the babel ssid, they just route
    Dave> automatically, no firewall rules required, so long as they are
    Dave> on different IP subnets

It's not the static IP routes that matter.
It's the firewall rules that matter.

    Dave> From a firewalling perspective, dealing with guest interfaces
    Dave> in particular is trickier.

... yes.
Other router is a classic wrt54gl (8M flash, I think), so it does not
speak babel at this time, as it runs at least one release behind.

I will write  FAQ about doing multiple networks via VLAN tags. 
Secret: ignore all of the stuff about the switch itself.

-- 
]       He who is tired of Weird Al is tired of life!           |  firewalls  [
]   Michael Richardson, Sandelman Software Works, Ottawa, ON    |net architect[
] mcr@sandelman.ottawa.on.ca http://www.sandelman.ottawa.on.ca/ |device driver[
   Kyoto Plus: watch the video <http://www.youtube.com/watch?v=kzx1ycLXQSE>
	               then sign the petition.