I would like to set up some access points where customers can access the internet. The idea is to give wireless access to outside customers (each of them should have username and password) which has nothing to do with our corporate network. I have an ADSL line, access point, router, radius server for authentication but I have no idea how to do this.
As this access should be available in multiple locations I thought that I will build VPN tunnels from each location to the Radius server.
What I dont understand is: how can I provide an interface for the users to be able to authenticate themselves?
How will this interface interact with the Radius server?
How should I set up the router to block everything (except the VPN tunnel) as long the user is not authenticated and if the user is authenticated then allow everything?