wpa2-psk + wireless isolation = secure connection?

Question

from what I've read:

If I am on a wireless network without encryption, any other computer connected to that same network could easily (with right tools & knowledge) intercept any traffic I send/receive.

If I am on a wpa2-psk wireless network, the situation is better, but another computer connected to that same network could still (with right knowledge and tools, and capturing my initial 4-way handshake) intercept and decrypt any traffic I send/receive.

My question is: does enabling "wireless isolation" option in the access point/wireless router change this state of things? does it stop someone to be able to sniff and decrypt my traffic?

[EDIT:] This post clarifies how someone that is connected to a wpa2-psk network (and therefore knows the pre shared key) could sniff and decrypt traffic intended for another computer of the same network: Are WPA2 connections with a shared key secure?

Answers should establish the definition of 'Wireless Isolation'. But at least in the physical sense, it is a complete misnomer. — deed02392, Aug 08 '13 at 09:51
This is a definition that seems quite good to me: "Wireless Isolation, sometimes called client isolation, is a setting on a wireless router. When this setting is enabled it prevents a computer that is connected to the network by a wireless connection from accessing computers and resources that are connected to the network by a wired connection. It will also prevent one wirelessly connected device from connecting to another wirelessly connected device. In essence Isolating that device on the wireless network." (from: http://www.wirelessisolation.com/) — , Aug 10 '13 at 08:59

score 3 · Accepted Answer · answered Aug 07 '13 at 16:58

3

Wireless isolation will stop wireless clients from being able to talk to each other.

It will NOT however stop someone from sniffing the traffic and possibly decrypting it.

answered Aug 07 '13 at 16:58

Grant

1,056
8
15

It there a standard definition of "isolation"? – curiousguy Aug 08 '13 at 01:46
from my understanding this seems to be the case. if nobody else comes up with a different answer I'll mark this one as accepted. – Aug 10 '13 at 08:49

score 1 · Answer 2 · answered Aug 07 '13 at 16:11

does enabling "wireless isolation" option in the access point/wireless router change this state of things?

Yes, it'll mean the wireless clients on that SSID will only be able access the upstream network (this varies based on your network design) and they won‘t be able to access other wireless clients or other clients/servers on the same segment and vice versa.

score 1 · Answer 3 · answered Aug 08 '13 at 05:40

1

I hope this isn't irrelevant as you may already know this. If you have a reasonable sized network( home LAN) you can filter each device on your network as a 'white list'(via your router device ) , by using MAC address filtering. It may become a bit tedious to manage (as network size increases) but I feel it can help from a wifi security perspective.

answered Aug 08 '13 at 05:40

OmarK

11
3

people with enough knowledge and tools can easily find out the mac address of a white-listed network card and clone it, gaining access to the network. – Aug 08 '13 at 19:00
@xirtyllo Very good point , and appreciate your input on that. Thanks – OmarK Aug 09 '13 at 08:16

wpa2-psk + wireless isolation = secure connection?

3 Answers3