5
5
Would a Netgear range extender, for example WN2000RPTv2, create a separate network? I wasn't able to tell by looking at the user manual online. How do these things generally work? Does it just, as the name implies, amplify/extend the same network, or is it possible to configure it to function as a router (with its own private subnet, NAT, DHCP, etc.), treating the main network (the one being extended) as a router normally treats the outside world?
So...if I was using an extender to extend a freely available, widely available unprotected wireless network, would the devices connected via the extender be accessible from other devices on the main network that are not connected via the extender? Is there any difference between being attached to the main network, and being attached via the extender? Is the sole purpose of configuring the wireless "security" settings on the extender just to prevent others from using the extender, or is there indeed a private network being created just for the extender clients?
In other words, is there any security difference on a given PC if it connects via an extender vs. just connects directly to the original network?
Thanks!
@kyralessa: My goal is to do seamless roaming. I read that if we create the same SSIDs but with different channels, it should work. Do you think that is possible at all? – Zain Ally – 2015-01-05T14:17:54.763
@ZainAlly I don't recommend trying to do seamless roaming unless either all access points are wired to the same physical layer 2 Ethernet network or you're using devices specifically intended to do seamless roaming under other conditions. – David Schwartz – 2015-01-05T14:29:13.723
@David Schwartz, slightly off topic, but CAN you use an extender to create a separate subnet? – Wes Modes – 2017-04-03T20:47:38.407
@WesModes Yeah, but that has other disadvantages such as double NAT for Internet access and things that work on a LAN won't work when one device is connected to the extender and the other isn't. – David Schwartz – 2017-04-03T21:16:48.710
@david schwartz I ask because I'm trying to do this https://superuser.com/questions/1194879/connect-a-wireless-lan-to-a-wan-wirelessly?noredirect=1#comment1736612_1194879, and while it seems a little strange, it also seems like it would be technically simple. That is, create a subnet, hung wirelessly off of an existing wifi network. I don't care what joins the two, two routers back to back, an repeater with two radios, or a router and a WAP plugged in 'backwards.' I'm still struggling to figure it out.
– Wes Modes – 2017-04-03T21:31:59.090You need a WAP connected to the WAN plugged into the WAN port of the router. – David Schwartz – 2017-04-03T21:55:24.650
Thanks for your response. Interesting. Is this form of "impersonation" as secure as using a router? It sounds like you could not, for example, ping a device behind the extender (could you)? I know someone who is using an extender to extend the free network provided by their living place, in hopes that this is providing security from the main network (likely using whatever the default extender settings are). Seamless roaming is not an objective in this case. Is this a reasonable expectation? Are there forms of attack that he is vulnerable to by using an extender rather than a regular router? – Josh – 2013-04-24T03:43:58.590
@Josh: You can ping a device behind the extender as ping is an IP thing. No security is provided -- the extender does its best to make everything "just work", it's not trying to stop anything. To answer your last question, the answer is that your question is based on a false premise. A "regular router" doesn't provide any security anyway, except by accident. That it does is a myth. If you want security, you need a firewall. If by "regular router" you mean one with a firewall, then he loses the security the firewall would provide. – David Schwartz – 2013-04-24T15:37:11.330