Blocking peer to peer over a Time Capsule WiFi router?
by beaugag2 - 8/20/09 7:27 AM
I'm sharing internet access but I don't want my guesses to practice p2p...
I can't find how to.
Time Capsule and Airport Utility 7.4.2
Attention forum users: We want you to try out the new CNET forums platform! Click here to read the details. Thanks!
by: beaugag2 August 20, 2009 7:27 AM PDT
0 people like this thread
Total posts: 7 (Showing page 1 of 1)
Not sure you can be that specific
by mrmacfixit - 8/20/09 12:50 PM
In Reply to: Blocking peer to peer over a Time Capsule WiFi router? by beaugag2
but you should be, probably are, using the Guest Network for your friends.
That way they do not have access to anywhere else on your network, just the internet.
Of course, the ultimate is to warn them and then shut them down if they ignore your warnings.
You do have your main wireless network protected with a password?
Guest but not friends!
Understanded but guests are not friends but tenants, and I provide them internet access over my account,so I receive a warning from my ISP to cease p2p cause of complaints.
I want to know if I can block the p2p protocol on the time capsule Wireless router because you know my guest are practicing these greyed activities...
router port blocking
If you block the ports that the p2p software is using, you can effectivly shut down their activities. I'm not at all aware of the capabilities of the Time Capsule router, you really have me puzzled by that one.
I realy investigate this problem but no answer and It's frustating me ...
I think Apple never planned to permit users to configure this ,they don't regard the security aspect of this expensive (Wireless Router) equipment.
Thank for your attention.
On an Apple Airport you can setup Guest network access, first, are you using this because it is very, very important. If not, turn it on. However, if you have an old Airport, the Guest network account feature is not available. The Guest network is only available on Airport Extreme and TimeCapsule that was introduced earlier this year (2009) and newer. Your firmware version does not tell you if your Airport can use Guest networking, you have to know the version of your Airport or T.C.
I will assume that you have an Airport or T.C. that does have Guest networking.
If Guest networking is turned off, you need to enter the Airport Utility and go to the Airport -> Wireless tabs (unfortunately I don't have a Airport to do this, so as I recall, you will see a button, or field where you can go to enter the Guest network info). When you turn on Guest networking, and give it a name (other than your current SSID (this is the wireless network name, but SSID is shorter), or change you current SSID to something else, and give you Guest network the old SSID you were just using).
Now with a Guest network in the same window you can "turn off file sharing between guests". Now, if they are Windows PCs, I suspect this may not turn of P2P for them. This is a bit more tricky. I would also strongly urge you, regardless of this network now being isolated from your other personal network, you will want to put a password on it, and I'd suggest WPA2 Personal, or at least WPA Personal!
You need to find out the TCP/IP "ports" that are used. You will also need to setup DHCP with NAT or what Apple likes to call "Share a Public IP" under the Internet -> Internet Connection tabs. You'll need to setup DHCP and NAT as you like. Set it up so that you have some "unused" IPs in your DHCP subnet range (i.e. in your fourth octet use only 1-100, this means that 101-254 are not "unsed" by DHCP if you use a 255.255.255.0 subnet). At least one of these unused IPs will be used in the next step.
When done there, go to the Advanced -> Port Mapping tabs. This is where you'll set the P2P ports up to be forwarded to one or more of the "unused" IPs. The reason I suggest keeping it in the same subnet is so that your Airport (or T.C.) will never send this traffic outside itself. It thinks the IP is somewhere connected to it. And since it's not your other "guests" will never leave your Airport with their P2P traffic.
Man, this is more complex than I realized, but it will work. It may be easier to tell everyone to buy an Apple and simply use the, "turn off file sharing between guests," feature. Ok, ok, it's just a suggestion.
hi, i am using the time capsule as a way to make etehrnet wifi, is there anyway i can block specific sites or games from going online?
Total posts: 7 (Showing page 1 of 1)