And one thing I forgot... I didn't solve IP addresses collisions (two clients can have the same IP), but here are some ideas. You have to isolate clients one from any other. On wired network, it's what Cisco calls Private VLAN settings : a given ethernet port is only allowed to speak to gateway's port. Only the gateway can see all ports. On wireless network, you have to forbid frames bridging between clients. At Cisco's, they call this PSPF (Publicly Secure Packet Forwarding). If you use hostap[1] driver, you just have to set related sysctl entry (don't remember name, but it's self explanary) to 0 and you're done. -- http://www.netexit.com/~sid/ PGP KeyID: 157E98EE FingerPrint: FA62226DA9E72FA8AECAA240008B480E157E98EE >> Hi! I'm your friendly neighbourhood signature virus. >> Copy me to your signature file and help me spread!
