>Buys new AP to cover a deadspot when going from attic to bedroom.
>Moves old AP from attic to bedroom.
>Installs new AP.
>Phone: *proceeds to ignore the existence of the 5GHz channels*
>*sigh*
(this is just my phone being stupid btw, it is known to be stupid)
So the new AP has wireless reception so good... My phone doesn't want to roam. 
Yes, @mikrotik's new hAP AX S's signal is so good, my phone just doesn't bother to roam.
Even standing in the kitchen (2 floors down, each floor being a slabs of concrete) I still get ~60%.
If you want to buy a single AP to cover most of the house... I think I can give this bugger quite a good recommendation.
@finlaydag33k @mikrotik Didn't start looking yet, but one wish for this year is a separate accesspoint for IoT applications and then a separate network for cameras too.
So, will have a look at this one.
For the home network there are two older routers in IP-sharing mode as repeaters, also for a few old POTS phones on the VoIP.
@AngelaScholder Why not use VLANs instead?
@finlaydag33k It would be a VLAN indeed, but I will need a WLAN access point as at least a lot of it is wireless.
And as it is from the front of the home to in the garage behind it it will probably have to be two access points.
Where possible it's all wired.
@AngelaScholder If you go with MikroTik, you can use 1 AP to provide multiple SSIDs, which you can use for specific VLANs.
Over here, an AP has 4 networks:
- The main network (which puts the device in a VLAN based on the user that's logged in via RADIUS - My devices get put in VLAN1001, my parents get put in VLAN1002).
- IoT network (VLAN1005).
- Guest network (VLAN1004).
- Open network with OWE (VLAN1006 - Which I turn on if we expect a lot of guests).
So luckily no need to use 2 APs for 2 "different types of devices" (just to "extend the range").
@finlaydag33k @AngelaScholder @mikrotik Exactly - and it's not hard to implement.
I have (due to reinforced walls) 4 APs in my house, 5 VLANs. 1 VLAN is the management VLAN (wired only), 3 VLANs for the inhabitants (me, wife and offspring) - 1 each. 1 VLAN for guests, off until needed. Having the Mikrotik APP in the phone makes it a non-issue to enable the guest "AP" when needed.
Mikrotik FTW any day and every day 🧨
@AngelaScholder "random guests" can use the open network here (with OWE if their device supports it) and end up in VLAN1006.
Guests that come here more often (like my gf and a friend of my dad) have login credentials for the RADIUS and end up in VLAN1005.
VLAN1006 can only use the internet (+ the local DNS server), has the lowest priority to bandwidth and even then still a cap (10mbps "generally" but can burst up-to max for 10 seconds).
VLAN1005 can also use casting (eg. to my TV or the speakers), use the printer, use the "shared NAS" (not my main NAS) + have a 50mbps cap (a higher priority than VLAN1006 and the IoT VLAN and burst up-to max for 30 seconds).
That's the fun of VLANs, you can just change the capabilities of whom can access what.
@AngelaScholder Yea, I don't generally recommend having it open.
For me it's open cus it makes it easier when guests are around (especially some that may have children that wanna play on their Switch or something).
And the button gives me "enough security" for my preferences (I can still see what devices pop on to monitor stuff).
@AngelaScholder That's why I have the button.
Without me pressing the button, the network isn't there.
So someone would have to be within range at the right moment to do that.
And indeed, there's still the logs of which device connected when... Tho I don't rely on that really (since MAC addresses and device names are easy to spoof).
@EF @AngelaScholder @finlaydag33k @ClickyMcTicker @mikrotik also - open does not necessarily imply no password. It simply means open for guests to use.
As for network abuse - if you have an active WiFi, I can without too much trouble hack it and google for plans for nuclear devices and voila - MIB are suddenly paying a visit... logs do you no good - I can even pretend to be you by cloning your mobile's MAC address.
Security is only what locks you choose - not whether you will be taken or not.
@AngelaScholder But what about an open network with OWE tho?
It has both encryption but doesn't need a publically known key?
@AngelaScholder To be fair, if CP and alike were such a big deal... Many places like restaurants and hotels would already have gotten rid of their public networks.
@AngelaScholder @EF @finlaydag33k @ClickyMcTicker @mikrotik
Good for you. Now, this discussion is about semantics and splitting hairs. Of course I have an opinion (everybody has one) - but I don't find it productive to compete who has the best/funniest/craziest/most obscene opinion, so I think abstaining from further semantical guidance of the discussion is of value. Back to installing Linux instead of Windows for my family. Saving money, sanity and self worth.
Aroop Roelofs
Angela Scholder
Þór Sigurðsson
ClickyMcTicker