So you now need to create the wireless networks that the devices will connect to. I tend to have two (plus a guest network). Given that there seems to be much magic associated with these settings on the forum, these may not be the most optimal settings but for me, in my location with a mix of 2.4g, 5g, Wifi5 and Wifi6 clients they seem to work. Always welcome to other views that can increase throughput...
| Setting | Main Wifi Network | IoT Wifi Network | Description |
|---|---|---|---|
| Enable | True | True | Simple on/off setting |
| Name | YourMainWifiNetwork |
IoT |
The name of the wifi network |
| Password | SomeComplexPassword |
ADifferentComplexPassword |
The password used to connect |
| Network | LAN | IoT | Allows the wifi to be associated to a specific network which is what we want |
| Wifi Band | 5Ghz | 2.4Ghz | I split mine so that all IoT devices (which normally have crappy radios) connect to 2.4Ghz and my main network uses the 5Ghz bands. Its a simple way of managing the RF channels for me, may not work for you.. |
| Broadcasting AP's | All | All | You may want to limit the AP's that broadcast.. |
| UAPSD | True | False | IoT devices typically won't support this so leave it off |
| Multicast Enhancement | False | False | As mentioned, I have a re-broadcast setup as the out of the box solution doesn't seem to work well for SONOS devices. |
| High Performance Devices | False | False | By making the split between bands at the Logical level then there is no need for devices to transition between 2.4 and 5G; The simple principle is keep stuff turned off unless you need it.. |
| BSS Transition | True | True | Based on information provided HERE |
| Proxy ARP | True | True | Based on information provided HERE |
| L2 Isolation | False | False | IF the devices are isolated then they cant talk to each other! |
| Legacy Support | False | False | I don't have any legacy devices (11b) so can turn this off |
| Enable Fast Roaming | False | False | I've only got a couple of AP's so don't roam very often. I've seen reported that some Apple devices struggle with this when enabled so based on principle above I leave it turned off |
| Bandwidth Profile | Default | Default | If you want to limit the bandwidth used by your wireless devices then this is where you can set it. Before I had my fibre connection installed I had this set to 1Mb for the IoT side as my 4G modem only gave me about 20Mbps for the whole house and working from home in a pandemic means many, many MS Teams/Zoom calls |
| Security Protocol | WPA-2 | WPA-2 | Its the safest option (aka takes a bit longer to hack). |
| Hide Wifi Name | False | True | I hide my IoT network, not for security but to just stop people from accidentally connecting to it. |
| PMF | Optional | Disabled | Main wifi is optional to maximize compatibility, IoT really shouldn't need it..given that its pretty much an untrusted network |
| Group Rekey Interval | False | False | Keep it simple |
| MAC address Filter | False | False | You could use this to only allow specific MAC addresses but c'mon, is it really worth it? |
| RADIUS MAC Authentication | False | False | No RADIUS server on my network |
| 2G Data Rate Control | False | False | Main LAN - don't have any 2.4Ghz devices. IoT LAN keep it simple |
| 5G Data Rate Control | True Data Rate: 12Mbps | False | Main LAN - trying to boost the speed. IoT LAN keep it simple |
| Require Clients to use rates at or above the specified value | True | False | If you are going to set a Data Rate then you want devices to use it |
| Send beacons at 6Mps | False | N/A | Main LAN - I've not had any issues keeping it at 12 Mbps. IoT LAN - not applicable as the data rates haven't changed |