The above diagram shows my home network topology with ipfire. Everything is working fine in LAN and all it’s traffic passes through ipfire but I couldn’t send WiFi users’ traffic from my ADSL modem to ipfire and they will connect to internet without passing through ipfire. So, is there any way to send wifi traffics to ipfire? Thank you in advance.
If you are trying to have your wifi clients access some of the computers on the LAN (Green) then you need to create some firewall Port Forwarding rules to allow that.
The default setting for traffic from the internet (Red) to IPFire is blocked.
See the wiki for a lot of information on the firewall configuration. https://wiki.ipfire.org/configuration/firewall
If you are trying to have your wifi clients have the protection of IPFire in their communication to the internet then you need to have a wifi access point connected to IPfire. With your current configuration your wifi clients will bypass IPFire completely.
I have the following installation similar to your network:
Fritzbox (modem, router, wifi for VOIP, Whatspp, DECT)
2.ipfire (green=LAN and blue=WIFI network.
green is for serious work with DOT, IPS, Proxy;
blue is for leisure and a little bit more unsafe (Apple Laptop, Apple Watch, Mobiles and MS Laptops).
It works best for me.
But it needs an investment in a second WIFI
At present all clients connect via WiFi to the Netgear - I am planning on replacing the two port with a four port Protectlii appliance - this way I can segment wireless from wired clients.
All DHCP is done from the IPfire.
I guess there are many ways to skin a cat but I hope this helps.
Each client is protected by all devices on the way to the internet. The way is defined by gateway/routing rules in these devices.
Therefore all clients which shall be protected by IPFire ( which is connected to some WAN device ) must be connected to a local network of IPFire ( GREEN or BLUE ).
The installation in the opening post connects WiFi device to RED ( in terms of IPFire ), which is not controlled by IPFire.