As you can see, getting a guest network up and running is easy if you have a router that supports dual bands. If not, you can do this with virtually any spare router that you connect to your existing wired or wireless network for this purpose.
Apple's AirPort Extreme Base Station is an investment at $179, but it'll last a good long while, and it's incredibly easy to administer from a Mac.
Refer to your specific router’s documentation for port blocking to block all ports except port 80 (used for accessing HTTP content) and port 443 (used for accessing HTTPS content). This will limit that router’s internet access to only web traffic. You can then unblock additional ports as necessary for different services, such as POP (110) or IMAP (143), which will allow email. Commonly used port numbers can be found at support.apple.com/kb/TS1629. By blocking/unblocking these port numbers, you’re restricting/allowing access to the people that connect to the guest network.
Port blocking is easy to do, but just the name may scare some. If you are in the market for a new router and wish to have guest networking without a mess of cabling or having to deal with blocking and opening ports, you may want to consider getting a dual-band router. Some can be pricy, but the AirPort Extreme ($179, apple.com) and Netgear routers (netgear.com) usually last a long time.
When putting together a wireless network, the most important piece of the puzzle is the wireless security. Unless you live in an extremely remote area, you need to enable some type of encryption. Most modern routers come with at least two types of encryption: WEP and WPA. While both do a good job, they were not created equal.
WEP (Wired Equivalent Privacy) was one of the first styles of wireless encryption brought about and is inherently insecure--several tools are available online that allow anyone to hack into a WEP-encrypted Wi-Fi network.
WPA (Wi-Fi Protected Access) is a more modern and more secure way of encrypting your wireless network. A newer standard of WPA, called WPA2, increases the security by adding additional behind-the-scenes features. WPA also has the advantage of letting you specify your own passphrase instead of using hard-to-remember hexadecimal values. So yes, use WPA2 whenever possible.
dougstrickland
April 30, 2010 at 5:19pm
I have this set up on my D-Link DIR-655 using the 'Guest Zone' - and it works really well.
But how can I create a 'landing page' that my guests see when they go through my network? Like what happens at a Starbucks or other hotspot?
dougstrickland
April 30, 2010 at 5:20pm
http://www.saksfifthavenue.com/main/ProductDetail.jsp?PRODUCT%3C%3Eprd_id=845524446240462&afsrc=1&site_refer=GGLBASE001&ci_src=14110944&ci_sku=ParentItem0452500341587
These look like something that my parents threw out after a garage sale in the 1980's...
feinberj
April 27, 2010 at 7:49am
The article and comments have been dropping hints, but so far nobody has come out and said that the Time Capsule supports guest networks. I will say that it definitely supports guest networking, provided that it's one of the newer models with dual networks. An Apple tech note specifically discusses guest networking on the "early 2009" airport extreme and time capsule:http://support.apple.com/kb/HT3477John FNew York, NY
desabraw
April 26, 2010 at 4:55pm
I have airport extreme 802.11n ver 7.4.2 but no guest set up option in the manual configuration panel.
tarkin
April 22, 2010 at 10:29am
My G5 iMac has a WiFi network setup with a password. Anyone with an iPod touch can connect to it no problem. However I've never been able to get a Windows laptop to connect. Would setting up a guest account fix this?
ppuu
April 21, 2010 at 6:45pm
What a great idea, excellent tips dude.
Lou
www.ultimate-privacy.at.tc
kermudgn
April 21, 2010 at 3:31pm
I have the router that Apple calls a Time Capsule.
After I click Manual Setup in step 1, I do not see Guest Network as shown in step 2.I thought this "Time Capsule" was a dual band router.
Is it not as good as a "Airport Extreme?"I am a recent convert from Windows and I like my Mac even with the childish names that Apple gives to its hardware.
jiubreyn
April 22, 2010 at 3:44am
To answer your question directly, the Time Capsule is no better or worse than the Airport Extreme Base Station. The Time Capsule is essentially an Airport Extreme Base Station with a hard drive for wireless backup built-in. Apple tends to upgrade their hardware and software on a regular basis, therefore depending on when you purchased your Time Capsule, it may not have dual-band capability.
wildmomo
April 21, 2010 at 2:02pm
I have a WGT624v3 Netgear, and I am not seeing any options for guest networks. Can you elaborate more on the version of this device. I am using the firmware from April, 2008 which seems to be the latest and greatest for the 624v3.
Thanks!
