Hope you’ve all had a great start into 2022.
My question is about a special set-up. I have two sites. On both sides I have a cablemodem and an IPFire box. They connecto to each other with OpenVPN. I can access every device, printer etc. from both sides and across the VPN. Works great. On both networks there is a Wifi-Router attached (creating a seperat sub-network) so I can walk around with a laptop and reach all devices on both sides and across the VPN. This works great too.
But now the problem is that I have customers who ask for a Wifi connection. What would be the best way to offer them Wifi internet and keeping them out of my internal network? They should be able to access the internet (for browsing, youtube etc.) but not the VPN-channel or my internal network server, printers etc. Is there a way to use a 3rd LAN-port on the IPFire Box where could connect the Wifi router and tell the IPFire box to only let that port access the web but not the VPN tunnel or the green network?