ESP32: Security of wifi APSTA mode

[CloudsEder]

Hello everybody,

I've got a security concern about the ESP32 in Wifi APSTA mode using the ESP-IDF. Is it possible to reach other devices of the Station-WiFi through the AP of the ESP?

I would've assumed that it is not possible, but I wanted to be sure.

Thanks in advance

[Craige Hales]

I just tried connecting two different computers to the ESP32 AP at the same time. The two computers were assigned 192.168.5.2 and 192.168.5.3. The AP is 192.168.5.1. I can ping from 5.2 to 5.3 and from 5.3 to 5.2. That is what I'd expect from an AP, but I had not tried it before on the ESP32.

Edit: but that's not what you are asking, I think. When I connect via AP mode, I get the 192.168.5.x network, the ESP32's network. When I use the STA mode, the ESP32 shows up on my 192.168.4.x network, the house router. I think there would have to be a bridge to connect the two networks, and that bridge could be in the ESP32. I have not seen it.

I set my STA to sign in to the house router and the AP is there just for configuration setup. Connecting to the AP complains there is no internet available, but connects anyway. If the networks were bridged, I think the internet would become available.

Sorry I can't give you an absolute answer, but I believe you are correct.