Although you’ll hear warnings about cybersecurity-related matters on just about every tech site, most home networks are still a bit too trusting. We believe that malware will never target our router, that private DNS is actually private, and that whatever settings our router came with are good enough for day-to-day use.
While all of those beliefs aren’t 100% wrong, they’re also not completely right. The convenience of keeping your network widely available is real, but it’s also why just one infected or sketchy device can start a chain reaction that affects your whole network. All you need is one router setting to stop it: AP isolation.
What AP isolation actually does
Your devices still get connected, but there’s a difference
AP isolation, sometimes called client isolation, wireless isolation, or device isolation, is a router setting that stops devices on the same Wi-Fi network from talking to each other directly. Those devices can still connect to the same router and get online, so there’s no problem there. They just lose that easy local access to every device sitting on the same network. Think stuff like connecting your phone to Windows via Wi-Fi or your MacBook and your iPhone being connected in a similar way.
This is an important distinction to remember here, because it’s not like toggling AP isolation on will suddenly disconnect every device that’s already using your network. What it will do is put a wall of sorts between every device, so not one of them will be able to discover or ping any of the other devices on the same network.
I’m sure you can see how this could be annoying or troublesome. I, too, like having my phone connect to my PC (although it’s far from perfect, coming from a Windows and Android user). But there are good reasons to consider AP isolation on some devices.
Quiz
Weird WiFi and networking quirks
Trivia challenge
From bizarre range tricks to hidden protocol secrets — how well do you really know your network?
WiFiProtocolsHardwareHistoryFun Facts
In 2012, a small village in Wales was mysteriously losing its broadband every morning at the same time. What was the cause?
Correct! An elderly villager’s old television set was emitting a powerful electrical signal every morning when he turned it on, wiping out broadband for the entire village. Engineers used a spectrum analyzer to track down the source after years of complaints. It’s a perfect example of how everyday electronics can wreak havoc on networking signals.
Not quite! The culprit was an old television set that an elderly resident switched on every morning, sending out a burst of electrical interference that killed broadband for the whole village. Engineers used specialist equipment to track it down after years of frustrating outages.
Why does placing your WiFi router near a fish tank often degrade wireless signal quality?
Correct! Water is a surprisingly effective absorber of 2.4GHz radio waves, which is the same frequency used by most WiFi routers. This is actually the same principle microwave ovens use to heat food — the frequency is tuned to excite water molecules. A large fish tank can create a significant dead zone behind it for WiFi signals.
Not quite! The answer is water absorption. Water molecules absorb 2.4GHz radio waves very efficiently — it’s the same reason microwave ovens cook food at that frequency. A large fish tank can significantly dampen your WiFi signal, creating dead zones on the other side of it.
The term ‘WiFi’ is often believed to stand for ‘Wireless Fidelity’, but what is the actual origin of the name?
Correct! ‘WiFi’ was coined by a branding consultancy called Interbrand in 1999, hired by the Wireless Ethernet Compatibility Alliance. It was designed purely as a marketable, memorable name — not an acronym. The ‘Wireless Fidelity’ backronym was actually invented afterward to give the name a plausible meaning, and even the Wi-Fi Alliance has admitted the term has no real meaning.
Not quite! WiFi was invented by a branding company called Interbrand as a catchy, memorable marketing term with no underlying meaning. The popular explanation that it stands for ‘Wireless Fidelity’ was actually created after the fact as a retronym, and even the Wi-Fi Alliance has acknowledged the name doesn’t technically stand for anything.
What is the maximum theoretical speed of the original 802.11 WiFi standard released in 1997?
Correct! The original 802.11 standard from 1997 topped out at just 2 Mbps — barely enough to stream a low-quality video today. It feels almost laughably slow compared to modern WiFi 6E speeds that can exceed 9 Gbps in ideal conditions. The jump in wireless speeds over just 25 years is one of the most dramatic improvements in consumer technology history.
Not quite! The original 802.11 standard could only manage 2 Mbps — painfully slow by today’s standards. The 11 Mbps speed came with 802.11b in 1999, which was a big deal at the time. Modern WiFi standards have improved speeds by over 4,000 times compared to that humble beginning.
Which common household appliance is most notorious for interfering with 2.4GHz WiFi networks?
Correct! Microwave ovens operate at approximately 2.45GHz, sitting almost exactly on top of the 2.4GHz WiFi band. When running, a microwave leaks enough radio frequency energy to noticeably disrupt nearby WiFi connections. This is one of the main reasons the 5GHz WiFi band became popular — it completely avoids this kitchen interference problem.
Not quite! Microwave ovens are the biggest culprit. They operate at around 2.45GHz, almost identical to the 2.4GHz WiFi frequency band. Even a well-shielded microwave leaks enough signal to cause noticeable interference. Switching to the 5GHz band on your router completely sidesteps this issue.
What unusual material was found to dramatically boost WiFi signal strength in experiments by researchers at Dartmouth College?
Correct! Researchers at Dartmouth College discovered that custom-shaped 3D-printed plastic reflectors, coated in a thin layer of metal, could dramatically focus and redirect WiFi signals throughout a space. The reflectors could boost signal strength in desired areas by up to 55% while simultaneously reducing signal in areas where security or privacy was needed. It’s a remarkably cheap solution using off-the-shelf printing technology.
Not quite! Dartmouth College researchers found that 3D-printed plastic reflectors with a metallic coating could focus WiFi signals like a lens, improving signal strength by up to 55% in targeted areas. The approach also has a useful privacy angle — you can intentionally block signal from going outside your walls without expensive equipment.
What does the ‘ping’ command measure, and where does the name actually come from?
Correct! Ping measures the round-trip time for a data packet to travel to a host and back, measured in milliseconds. The name is inspired by sonar technology used in submarines — when sonar emits a pulse and ‘hears’ it bounce back, operators call that a ping. The networking tool was written by Mike Muuss in 1983, and he explicitly confirmed the sonar analogy was intentional.
Not quite! Ping measures round-trip latency — how long it takes for a packet to go to a destination and come back. The name comes from submarine sonar, where a sound pulse sent out and detected returning is called a ‘ping.’ Creator Mike Muuss confirmed this analogy in 1983 when he wrote the tool, though the ‘Packet InterNet Groper’ backronym was invented later.
What phenomenon causes WiFi speeds to mysteriously slow down when many neighbors are using their networks simultaneously, even if you’re not sharing bandwidth with them?
Correct! WiFi operates on shared radio frequency channels, and nearby routers broadcasting on the same channel compete for airtime even between separate networks. This is called co-channel interference, and it causes routers to ‘take turns’ transmitting more often, reducing effective throughput. Using a WiFi analyzer app to find the least congested channel — or switching to the less crowded 5GHz or 6GHz bands — can significantly improve speeds in dense neighborhoods.
Not quite! The culprit is channel congestion. WiFi channels are shared radio spectrum, and when many nearby networks use the same channel, they all have to take turns broadcasting — slowing everyone down even though no one is stealing your bandwidth. A WiFi analyzer can help you find a quieter channel, and moving to 5GHz or 6GHz usually helps escape the congestion.
Your Score
/ 8
Thanks for playing!
Why this helps when one device goes bad
Malware loves a flat network
Most home networks are pretty flat by default. By that I mean that you’ll likely have every device in the house sharing the same network space. Laptop, PC, NAS, TV, phone, tablet, etc., all of that stuff lives on the same Wi-Fi connection. Nothing wrong with that, but it does open the door to vulnerabilities that could affect the entire network instead of just one device.
If one device gets compromised, infected, or even just a tiny bit suspicious, you don’t want it freely scanning or prodding everything else on the network. Some devices get a lot less protection from cyber threats than others (especially IoT devices), and those can be a real gateway for malware and all other kinds of unwelcome problems.
AP isolation doesn’t magically clean that up, by the way. Your device can still get hit by threats, but at least this won’t happen to the entire network all at once. It can seriously protect you from more widespread issues.
Why you most likely shouldn’t use this on your main Wi-Fi
It largely depends on your priorities
This is where I need to stress that AP isolation isn’t one of those router settings you should just enable and call it a day. On your main Wi-Fi network, local device communication is probably doing more good than bad. I’d wager that you’re making some use of it every day, whether you know it or not.
Your phone talks to your PC, your laptop connects to the printer, your TV shows up as a casting target, and so on. All of that is helpful, and turning on AP isolation on your main Wi-Fi is going to put an end to it.
Instead of enabling it on your main Wi-Fi, the better move is to use it on a dedicated IoT network or a guest network. That’s where it makes the most sense, because those devices usually don’t need to talk to the other devices in your home anyway.
This gives you the best of both worlds; your main network stays convenient, and the questionable stuff goes to live in never-never land without any interaction with the devices you care about.
The forgotten network setting making your internet feel slow
Stop blaming your router for slow website loading times
Don’t isolate everything, isolate the right things
Being mindful about using AP isolation is the key to getting good results
The easiest way to think about AP isolation is basically just using it where internet access is the only thing the device really needs.
A random smart plug will often fall into that category (although it depends on your device). A security camera might, provided it doesn’t need local access to a local hub or recorder. A guest’s phone works, too.
But your main PC, NAS, TV, and other devices greatly benefit from talking to each other, so let them keep on yapping as long as you know you can trust them.
Malware is still real, and still a threat
I feel like these days, it’s easy to convince yourself that malware only ever targets “noteworthy” targets. Read: companies. But regular people still deal with it on a daily basis. Malware and ransomware attacks are commonplace, and especially those who are less tech-savvy may easily fall victim to threat actors. Meanwhile, just one compromised device can compromise an entire network. Being mindful always pays off.
- Supported standards
-
802.11.be, 802.11ac, 802.11ax, 802.11g, 802.11n
- Speeds
-
6500 Megabits Per Second
This TP-Link router is a much more affordable alternative to the Eero I shared above. It’s a Wi-Fi 7 router with a lot of the same bells and whistles, but a price tag that more people can stomach.