Home Network Community > Deco > Deco S4 no isolation from other clients on guest network
< Deco

Deco S4 no isolation from other clients on guest network

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

Deco S4 no isolation from other clients on guest network

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
Deco S4 no isolation from other clients on guest network
Deco S4 no isolation from other clients on guest network
2020-07-21 21:21:36 - last edited 2020-10-31 03:59:13
Model: Deco S4  
Hardware Version: V2
Firmware Version: 1.4.0 Build 20200628 Rel. 52605

Clients on the guest network can "see" each other (all services, all protocols). This is not how a guest network should function. Instead, security best practice is clients on a guest network should only be able to see the Internet and nothing more.

  0      
 
  0      
 
#1
Options
2 Reply
Re:Deco S4 no isolation from other clients on guest network
2020-07-23 06:38:22 - last edited 2020-10-31 03:59:13

@dev_null 

 

Hello,

 

Basically, when Deco works in router mode, the guest network is isolated from the main network, while the clients connected to the guest network can still "see" each other.

 

This will be recorded and forwarded to the related department as a feature request.

 

Thanks.

Check What's Currently Going on With Deco ▶Deco Starts Supporting Changing Wireless Channels! Deco BE85_1.1.1 Supports WireGuard VPN,Channel Selection and Matter Deco BE65_V2_1.1.0 Supports WireGuard VPN, Channel Selection and MoreDeco APP 3.8.102/3.8.112-Ready for A New Deco Onboarding Experience! Try to leave a Message if urgent help is required.
  0  
  0  
#2
Options
Re:Deco S4 no isolation from other clients on guest network
2020-10-31 03:58:50
Hi, This can easily be implemented by using VLAN's and judicious usage of interface device bridge(s). Here is a very important use case: IoT devices should ALWAYS be put onto a guest network. Security in such devices is an afterthought as history has shown time and time again, repeatedly, across major vendors and popular consumer product offerings. A critical piece of mitigating IoT device exploitation is by effectively isolating each device connected to a guest network from each other, including from the main network.
  0  
  0  
#3
Options

Information

Helpful: 0

Views: 1209

Replies: 2

Related Articles
 Deco s4 separate bands and guest network
410 0
Deco X20 NO Guest Network Isolation
5918 0
Deco M5 guest wifi isolation
28427 3
Deco S4 is not daisy chaining
1622 13
Deco S4 Lack of whitelist
859 4
Deco S4 Signal Source
516 0
About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.