As per the diagram, What is the best practice / way to secure my network?
I was thinking that I wanted to only allow Wireless tablets to get out if they establish a VPN connection to my Cisco 805. However, because the ADSL modem is on the same LAN segment as the 805, is there any way I can prevent the tablets from getting to 'Telecom Realm' if they haven't logged in via VPN connection?
N.B:- I think the default route of all the tablets should point to the 805, and the Wireless AP doesnt have any default route, so if anyone hack into the Wireless AP, they still will be locked in within the WLAN. But it doesnt solve my question above.